Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

[Snyk] Security upgrade next from 12.2.3 to 12.2.4 #3091

Open
wants to merge 1 commit into
base: main
Choose a base branch
from

Conversation

snyk-bot
Copy link

Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

merge advice

Changes included in this PR

  • Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
    • testapps/next-internal/package.json

Vulnerabilities that will be fixed

With an upgrade:
Severity Priority Score (*) Issue Breaking Change Exploit Maturity
medium severity 581/1000
Why? Recently disclosed, Has a fix available, CVSS 5.9
Uncaught Exception
SNYK-JS-NEXT-3011410
No No Known Exploit

(*) Note that the real score may have changed since the PR was raised.

Commit messages
Package name: next The new version differs by 115 commits.
  • d6cb795 v12.2.4
  • dbc38d6 v12.2.4-canary.12
  • 0febcc3 Add TypeScript to ant design example (#38470)
  • 147a24e fix: buffer is not usable on edge runtime (#39227)
  • d315ee1 Ensure On-Demand revalidate does not consider preview cookie (#39313)
  • 6b49d47 docs: add missing dot (#39314)
  • 58b920d feat(next-swc/wasm): export async interfaces (#39231)
  • de41597 Fix next/server being required during build (#39310)
  • 11c9d42 chore(trace): fix typo in trace-to-event-format.mjs (#39279)
  • 1039dd4 Enable concurrent mode by default in app-render (#39307)
  • ad687c9 v12.2.4-canary.11
  • 2722876 Add delay before exiting tests for log flushing (#39302)
  • 699564b Update Android NDK path for swc builds (#39298)
  • 45ae757 feat(config): implement a human readable ajv errors (#39291)
  • 2f49a4f Remove default setting for object-fit on future fill images (#39297)
  • 498d1e9 fix typo: docs/advanced-features/react-18/streaming.md (#39293)
  • fc8e024 chore: rename typo middlewares to interceptors in hot reloader (#39292)
  • a189542 [docs] Clarify polyfill support (#39272)
  • 4d0783d Flush styles effects (#39268)
  • b7efce6 v12.2.4-canary.10
  • 41ffe97 Fix URLPattern next/server export on deploy (#39290)
  • 213c42f Add section about migrating from `next/image` to `next/future/image` (#39270)
  • b799710 fix: use `if...else` in dockerfile (#39263)
  • cd3e054 Ensure middleware has single data fetch on query hydration with valid props (#39210)

See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.


Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic


Learn how to fix vulnerabilities with free interactive lessons:

🦉 Learn about vulnerability in an interactive lesson of Snyk Learn.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

Successfully merging this pull request may close these issues.

1 participant