Skip to content

Commit d238562

Browse files
vercel[bot]damianmarti
vercel[bot]
and
damianmarti
authored
Fix React Server Components CVE vulnerabilities (#9)
* Fix React Server Components CVE vulnerabilities Updated dependencies to fix Next.js and React CVE vulnerabilities. The fix-react2shell-next tool automatically updated the following packages to their secure versions: - next - react-server-dom-webpack - react-server-dom-parcel - react-server-dom-turbopack All package.json files have been scanned and vulnerable versions have been patched to the correct fixed versions based on the official React advisory. Co-authored-by: Vercel <vercel[bot]@users.noreply.github.com> * Add yarn.lock --------- Co-authored-by: Vercel <vercel[bot]@users.noreply.github.com> Co-authored-by: Damian <damianmarti@gmail.com>
1 parent 4c1cd05 commit d238562

File tree

2 files changed

+11
-11
lines changed

2 files changed

+11
-11
lines changed

packages/nextjs/package.json

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -25,7 +25,7 @@
2525
"burner-connector": "0.0.18",
2626
"daisyui": "5.0.9",
2727
"kubo-rpc-client": "~5.0.2",
28-
"next": "~15.2.3",
28+
"next": "15.2.8",
2929
"next-nprogress-bar": "~2.3.13",
3030
"next-themes": "~0.3.0",
3131
"pg": "^8.16.2",

yarn.lock

Lines changed: 10 additions & 10 deletions
Original file line numberDiff line numberDiff line change
@@ -1727,10 +1727,10 @@ __metadata:
17271727
languageName: node
17281728
linkType: hard
17291729

1730-
"@next/env@npm:15.2.5":
1731-
version: 15.2.5
1732-
resolution: "@next/env@npm:15.2.5"
1733-
checksum: 39b23d80e5b5984c9ee7ff65fe48e167becb35b87b7087a53a234fa3a0b80940626c1f3b9f9dfdcbfc9d647fd2faad67b3c6497fabb9993b0a45e3779984cec5
1730+
"@next/env@npm:15.2.8":
1731+
version: 15.2.8
1732+
resolution: "@next/env@npm:15.2.8"
1733+
checksum: df7606a0cca0b47b1157ef2e791c892f1fd6b9f715624e5aef48a3ca1de57d09cb3c821cc13c888a9b20ba8b17c5fb5742bb5ac6e0e7cd95f1e162fe33d9e59c
17341734
languageName: node
17351735
linkType: hard
17361736

@@ -2698,7 +2698,7 @@ __metadata:
26982698
eslint-config-prettier: ~10.1.1
26992699
eslint-plugin-prettier: ~5.2.4
27002700
kubo-rpc-client: ~5.0.2
2701-
next: ~15.2.3
2701+
next: 15.2.8
27022702
next-nprogress-bar: ~2.3.13
27032703
next-themes: ~0.3.0
27042704
pg: ^8.16.2
@@ -10330,11 +10330,11 @@ __metadata:
1033010330
languageName: node
1033110331
linkType: hard
1033210332

10333-
"next@npm:~15.2.3":
10334-
version: 15.2.5
10335-
resolution: "next@npm:15.2.5"
10333+
"next@npm:15.2.8":
10334+
version: 15.2.8
10335+
resolution: "next@npm:15.2.8"
1033610336
dependencies:
10337-
"@next/env": 15.2.5
10337+
"@next/env": 15.2.8
1033810338
"@next/swc-darwin-arm64": 15.2.5
1033910339
"@next/swc-darwin-x64": 15.2.5
1034010340
"@next/swc-linux-arm64-gnu": 15.2.5
@@ -10387,7 +10387,7 @@ __metadata:
1038710387
optional: true
1038810388
bin:
1038910389
next: dist/bin/next
10390-
checksum: 191464cc3b190977deb2cdc92bd61642f8558cbc31ec020e11bb4f34ed01ccae20953c0ba0a1f28d98bc3297c839e52434fc1a5ed7fd10f01a92641615fe7ec0
10390+
checksum: 8d60e137d7e425615fbf639a05f7268c99016b89237bebc20805fb63da18692fd2534ef5ccdda790ddf0c1fd12c5a32850eb87feb6f322b0f5432a83867972ca
1039110391
languageName: node
1039210392
linkType: hard
1039310393

0 commit comments

Comments
 (0)