search

MethSarcus / visualeague

Webapp for fantasy football league stats
https://www.visualeague.com
4 stars 5 forks source link

[Snyk] Upgrade next from 14.2.9 to 14.2.11 #391

Open MethSarcus opened 1 month ago

MethSarcus commented 1 month ago

snyk-top-banner

Snyk has created this PR to upgrade next from 14.2.9 to 14.2.11.

:information_source: Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

Issues fixed by the recommended upgrade:

Issue Score Exploit Maturity
high severity Acceptance of Extraneous Untrusted Data With Trusted Data
SNYK-JS-NEXT-8025427		 721 No Known Exploit
Release notes
Package name: next
  • 14.2.11 - 2024-09-12

    Note

    This release is backporting bug fixes. It does not include all pending features/changes on canary.

    Core Changes

    • fix: correct metadata url suffix (#69959)
    • fix: setting assetPrefix to URL format breaks HMR (#70040)
    • Update revalidateTag to batch tags in one request (#65296)

    Credits

    Huge thanks to @ huozhi, @ devjiwonchoi, and @ ijjk for helping!

  • 14.2.10 - 2024-09-11

    Note

    This release is backporting bug fixes. It does not include all pending features/changes on canary.

    Core Changes

    • Remove invalid fallback revalidate value (#69990)
    • Revert server action optimization (#69925)
    • Add ability to customize Cache-Control (#69802)

    Credits

    Huge thanks to @ huozhi and @ ijjk for helping!

  • 14.2.9 - 2024-09-09

    Note

    This release is backporting bug fixes. It does not include all pending features/changes on canary.

    Core Changes

    • Revert "Fix esm property def in flight loader (#66990)" (#69749)
    • Disable experimental.optimizeServer by default to fix failed server action (#69788)
    • Fix middleware fallback: false case (#69799)
    • Fix status code for /_not-found route (#64058) (#69808)
    • Fix metadata prop merging (#69807)
    • create-next-app: fix font file corruption when using import alias (#69806)

    Credits

    Huge thanks to @ huozhi, @ ztanner, @ ijjk, and @ lubieowoce for helping!

from next GitHub release notes

[!IMPORTANT]

  • Check the changes in this PR to ensure they won't cause issues with your project.
  • This PR was automatically created by Snyk using the credentials of a real user.
  • Max score is 1000. Note that the real score may have changed since the PR was raised.

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

vercel[bot] commented 1 month ago

The latest updates on your projects. Learn more about Vercel for Git ↗︎

Name Status Preview Comments Updated (UTC)
visualeague ✅ Ready (Inspect) Visit Preview 💬 Add feedback Oct 4, 2024 11:59am