Skip to content

Commit 380a833

Browse files
vercel[bot]vercel[bot]
committed
Fix React Server Components CVE vulnerabilities
Updated dependencies to fix Next.js and React CVE vulnerabilities. The fix-react2shell-next tool automatically updated the following packages to their secure versions: - next - react-server-dom-webpack - react-server-dom-parcel - react-server-dom-turbopack All package.json files have been scanned and vulnerable versions have been patched to the correct fixed versions based on the official React advisory. Co-authored-by: Vercel <vercel[bot]@users.noreply.github.com>
1 parent 45d6d1e commit 380a833

2 files changed

Lines changed: 41 additions & 41 deletions

File tree

package-lock.json

Lines changed: 40 additions & 40 deletions
Some generated files are not rendered by default. Learn more about customizing how changed files appear on GitHub.

package.json

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -19,7 +19,7 @@
1919
"dotenv": "^17.2.1",
2020
"drizzle-orm": "^0.44.4",
2121
"graphql-tag": "^2.12.6",
22-
"next": "^15.4.4",
22+
"next": "15.4.10",
2323
"next-auth": "^5.0.0-beta.28",
2424
"react": "^19.1.1",
2525
"react-dom": "^19.1.1"

0 commit comments

Comments
 (0)