blog
blog copied to clipboard
Published
20 hours ago •
axetroy
axetroy
[Snyk] Security upgrade next from 12.2.0 to 13.5.4
This PR was automatically created by Snyk using the credentials of a real user.
Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.
Changes included in this PR
- Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
- package.json
Vulnerabilities that will be fixed
With an upgrade:
| Severity | Priority Score (*) | Issue | Breaking Change | Exploit Maturity |
|---|---|---|---|---|
 |
551/1000 Why? Recently disclosed, Has a fix available, CVSS 5.3 |
Improper Input Validation SNYK-JS-POSTCSS-5926692 |
Yes | No Known Exploit |
(*) Note that the real score may have changed since the PR was raised.
Commit messages
Package name: next
The new version differs by 250 commits.- 1e8dca4 v13.5.4
- 9e24d6f v13.5.4-canary.11
- 281ae41 Fix build output logging order (#56335)
- d7626ff Revert "misc: shortcut styled-jsx in external resolution (#56291)" (#56334)
- db48052 v13.5.4-canary.10
- 7df92b8 test: add flaky turbopack integration tests to manifest (#56309)
- eeb9b33 fix: Invalid URL (404) provided on server actions error (#56323)
- 3172cfe fix: support both decoded and encoded url requests of conventioned files (#56187)
- a2f9ef5 fix(next/client): keep hash when navigating from app to pages router (#56223)
- a970f28 Add code freeze GitHub actions for releasing (#56325)
- 5fbc23e misc: fix instrumentation with bundled server (#56318)
- 98432a4 Remove buildId test as it's no longer relevant (#56316)
- 86274e6 fix(#53190): add missing crossOrigin to assetsPrefix resources (#56311)
- e970e05 Reland static prefetches & fix prefetch bailout behavior (#56228)
- be952fb fix: typo in `with-stripe-typescript` example (#56274)
- 7f60cc8 Support serverRuntimeConfig and publicRuntimeConfig in Turbopack (#56310)
- 8d18ad6 update webp crate (#56307)
- ac95a20 Fix flaky test for size output (#56303)
- dba978f misc: shortcut styled-jsx in external resolution (#56291)
- 458dab8 misc: update code owners (#56290)
- 5254aae Update image.mdx (#56266)
- 0d4859b Update image.mdx (#56269)
- 59bda2d More Turbopack fixes (#56299)
- ecd94c1 misc: enable source maps for bundled runtime (#56289)
Check the changes in this PR to ensure they won't cause issues with your project.
Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.
For more information:
🧐 View latest project report
📚 Read more about Snyk's upgrade and patch logic
Learn how to fix vulnerabilities with free interactive lessons:
The latest updates on your projects. Learn more about Vercel for Git ↗︎
| Name | Status | Preview | Comments | Updated (UTC) |
|---|---|---|---|---|
| blog | ❌ Failed (Inspect) | Oct 3, 2023 8:49am |
![vercel[bot] avatar](https://avatars.githubusercontent.com/in/8329?v=4 "Published by a pub.dev verified publisher"){kind=small}