Skip to content

Commit 09908c6

Browse files
ctatectate
authored
fix: upgrade Next.js to 16.0.9 (CVE-2025-55182) (#215)
This upgrade fixes CVE-2025-55182, a React Server Components RCE vulnerability. Co-authored-by: Chris Tate <ctate@users.noreply.github.com>
1 parent bc93dde commit 09908c6

File tree

2 files changed

+48
-48
lines changed

2 files changed

+48
-48
lines changed

package.json

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -54,7 +54,7 @@
5454
"lucide-react": "^0.544.0",
5555
"ms": "^2.1.3",
5656
"nanoid": "^5.1.5",
57-
"next": "16.0.7",
57+
"next": "16.0.9",
5858
"next-themes": "^0.4.6",
5959
"postgres": "^3.4.7",
6060
"react": "19.2.1",

pnpm-lock.yaml

Lines changed: 47 additions & 47 deletions
Some generated files are not rendered by default. Learn more about customizing how changed files appear on GitHub.

0 commit comments

Comments
 (0)