Skip to content

Commit d937f87

Browse files
vercel[bot]vercel[bot]
committed
Fix React Server Components CVE vulnerabilities
Updated dependencies to fix Next.js and React CVE vulnerabilities. The fix-react2shell-next tool automatically updated the following packages to their secure versions: - next - react-server-dom-webpack - react-server-dom-parcel - react-server-dom-turbopack All package.json files have been scanned and vulnerable versions have been patched to the correct fixed versions based on the official React advisory. Co-authored-by: Vercel <vercel[bot]@users.noreply.github.com>
1 parent b97756a commit d937f87

File tree

2 files changed

+43
-43
lines changed

2 files changed

+43
-43
lines changed

package-lock.json

Lines changed: 42 additions & 42 deletions
Some generated files are not rendered by default. Learn more about customizing how changed files appear on GitHub.

package.json

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -29,7 +29,7 @@
2929
"html2canvas": "^1.4.1",
3030
"lucide-react": "^0.456.0",
3131
"mini-svg-data-uri": "^1.4.4",
32-
"next": "15.0.3",
32+
"next": "15.0.7",
3333
"next-themes": "^0.4.3",
3434
"openai": "^4.72.0",
3535
"react": "^18.3.1",

0 commit comments

Comments
 (0)