Skip to content

Commit f80673a

Browse files
vercel[bot]vercel[bot]
authored
Fix React Server Components CVE vulnerabilities (#503)
Updated dependencies to fix Next.js and React CVE vulnerabilities. The fix-react2shell-next tool automatically updated the following packages to their secure versions: - next - react-server-dom-webpack - react-server-dom-parcel - react-server-dom-turbopack All package.json files have been scanned and vulnerable versions have been patched to the correct fixed versions based on the official React advisory. Co-authored-by: Vercel <vercel[bot]@users.noreply.github.com>
1 parent 690dc10 commit f80673a

File tree

2 files changed

+10
-10
lines changed

2 files changed

+10
-10
lines changed

package.json

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -20,7 +20,7 @@
2020
"@livekit/track-processors": "^0.6.0",
2121
"livekit-client": "2.16.0",
2222
"livekit-server-sdk": "2.14.2",
23-
"next": "15.2.6",
23+
"next": "15.2.8",
2424
"react": "18.3.1",
2525
"react-dom": "18.3.1",
2626
"react-hot-toast": "^2.5.2",

pnpm-lock.yaml

Lines changed: 9 additions & 9 deletions
Some generated files are not rendered by default. Learn more about customizing how changed files appear on GitHub.

0 commit comments

Comments
 (0)