Skip to content

[공통] Next.js 추가 보안 취약점 패치 반영#1252

Merged
ff1451 merged 1 commit intodevelopfrom
chore/#1251/nextjs-version-up
May 8, 2026
Merged

[공통] Next.js 추가 보안 취약점 패치 반영#1252
ff1451 merged 1 commit intodevelopfrom
chore/#1251/nextjs-version-up

Conversation

@ff1451
Copy link
Copy Markdown
Contributor

@ff1451 ff1451 commented May 8, 2026
edited by coderabbitai Bot
Loading

What is this PR? 🔍

Changes 📝

segment-prefetch routes 관련 Middleware/Proxy 우회 취약점 패치가 불완전해서 후속 수정이 되었기에 이에 맞춰 라이브러리 버전을 높입니다.

✔️ Please check if the PR fulfills these requirements

  • It's submitted to the correct branch, not the develop branch unconditionally?
  • If on a hotfix branch, ensure it targets main?
  • There are no warning message when you run yarn lint

Summary by CodeRabbit

릴리스 노트

  • Chores
    • 프레임워크 의존성을 최신 패치 버전으로 업데이트했습니다. 성능 개선 및 안정성 향상이 포함되어 있습니다.

@ff1451 ff1451 self-assigned this May 8, 2026
@ff1451 ff1451 added the ⚙ Setting 개발 환경 세팅 label May 8, 2026
@coderabbitai
Copy link
Copy Markdown

coderabbitai Bot commented May 8, 2026
edited
Loading

Review Change Stack
No actionable comments were generated in the recent review. 🎉

ℹ️ Recent review info
⚙️ Run configuration

Configuration used: Path: .coderabbit.yaml

Review profile: CHILL

Plan: Pro

Run ID: 9478e58d-ad27-4327-831a-4ad2c99628fc

📥 Commits

Reviewing files that changed from the base of the PR and between 465eb1d and f3a48af.

⛔ Files ignored due to path filters (5)
  • .pnp.cjs is excluded by !.pnp.cjs and included by **
  • .yarn/cache/@next-env-npm-15.5.18-43762b7e71-476db14578.zip is excluded by !**/.yarn/**, !**/*.zip, !.yarn/** and included by **
  • .yarn/cache/@next-swc-darwin-arm64-npm-15.5.18-ac1ed6c8cc-10.zip is excluded by !**/.yarn/**, !**/*.zip, !.yarn/** and included by **
  • .yarn/cache/next-npm-15.5.18-550477cf50-3e4c11beb3.zip is excluded by !**/.yarn/**, !**/*.zip, !.yarn/** and included by **
  • yarn.lock is excluded by !**/yarn.lock, !**/*.lock, !yarn.lock and included by **
📒 Files selected for processing (1)
  • package.json

개요

package.json에서 Next.js 의존성이 15.5.16에서 15.5.18로 업데이트되었습니다. 이는 보안 취약점 패치가 포함된 마이너 버전 업데이트입니다.

변경 사항

Next.js 보안 패치 반영

레이어 / 파일 설명
의존성 버전 업데이트
package.json		 Next.js 의존성 버전이 15.5.16에서 15.5.18로 업데이트되었습니다.

예상 코드 리뷰 노력

🎯 1 (사소함) | ⏱️ ~2분

관련 PR

  • BCSDLab/KOIN_WEB_RECODE#1250: 동일한 패키지의 Next.js 의존성을 수정하는 이전 PR (15.5.16으로 업데이트)로, 본 PR이 이를 15.5.18로 추가 업데이트합니다.

제안하는 리뷰어

  • JeongWon-CHO
  • ParkSungju01
  • kongwoojin
🚥 Pre-merge checks | ✅ 5
✅ Passed checks (5 passed)
Check name Status Explanation
Description Check ✅ Passed Check skipped - CodeRabbit’s high-level summary is enabled.
Title check ✅ Passed Pull request title clearly describes the main change: applying Next.js security vulnerability patches.
Linked Issues check ✅ Passed The code changes directly satisfy the linked issue #1251 objective of upgrading Next.js to version 15.5.18 for security patches.
Out of Scope Changes check ✅ Passed All changes are within scope; only Next.js dependency version updated from 15.5.16 to 15.5.18 as specified in the linked issue.
Docstring Coverage ✅ Passed No functions found in the changed files to evaluate docstring coverage. Skipping docstring coverage check.

✏️ Tip: You can configure your own custom pre-merge checks in the settings.

✨ Finishing Touches
🧪 Generate unit tests (beta)
  • Create PR with unit tests
  • Commit unit tests in branch chore/#1251/nextjs-version-up

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

Comment @coderabbitai help to get the list of available commands and usage tips.

@github-actions github-actions Bot requested review from JeongWon-CHO and dooohun May 8, 2026 14:06
dooohun
dooohun approved these changes May 8, 2026
View reviewed changes
Copy link
Copy Markdown
Contributor

@dooohun dooohun left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

빠른 대응 감사합니다~

@ff1451 ff1451 merged commit 0ae4a8b into develop May 8, 2026
5 checks passed
@github-actions github-actions Bot deleted the chore/#1251/nextjs-version-up branch May 8, 2026 15:52
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@dooohun dooohun dooohun approved these changes

@JeongWon-CHO JeongWon-CHO Awaiting requested review from JeongWon-CHO

Assignees

@ff1451 ff1451

Labels

⚙ Setting 개발 환경 세팅

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

[공통] Next.js 추가 보안 취약점 패치 반영

2 participants

@ff1451 @dooohun