search

Web3Auth / web3auth-wagmi-connector

Web3Auth connector for wagmi
25 stars 24 forks source link

[Snyk] Upgrade next from 13.4.5 to 13.5.6 #146

Closed chaitanyapotti closed 1 month ago

chaitanyapotti commented 2 months ago

snyk-top-banner

Snyk has created this PR to upgrade next from 13.4.5 to 13.5.6.

:information_source: Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

Issues fixed by the recommended upgrade:

Issue Score Exploit Maturity
high severity Regular Expression Denial of Service (ReDoS)
SNYK-JS-ZOD-5925617		 479 Proof of Concept
high severity HTTP Request Smuggling
SNYK-JS-NEXT-6828456		 479 No Known Exploit
high severity Denial of Service (DoS)
SNYK-JS-NEXT-7442548		 479 No Known Exploit
medium severity Improper Input Validation
SNYK-JS-POSTCSS-5926692		 479 No Known Exploit
medium severity Resource Exhaustion
SNYK-JS-NEXT-6032387		 479 Proof of Concept
Release notes
Package name: next
  • 13.5.6 - 2023-10-18
  • 13.5.6-canary.8 - 2023-10-19
  • 13.5.6-canary.7 - 2023-10-18
  • 13.5.6-canary.6 - 2023-10-18

    Core Changes

    • fix typos: #56870
    • Update React from 09fbee89d to a41957507: #56970
    • Reland "feat(turbopack): support basic next/dynamic": #56934
    • Add @ mui/icons-material to the default optimizePackageImports list: #56801

    Credits

    Huge thanks to @ xiaolou86, @ ztanner, @ sokra, and @ shuding for helping!

  • 13.5.6-canary.5 - 2023-10-17
    No content.
  • 13.5.6-canary.4 - 2023-10-17

    Core Changes

    • Adding component to @ next/third-parties: #56106
    • Replace Promise.withResolvers polyfill with DetachedPromise: #56954
    • chore(next/image)!: mark onLoadingComplete as deprecated in favor of onLoad: #56944
    • chore: lower Node.js version requirement: #56943

    Misc Changes

    • chore: reduce fs-extra usage in scripts/: #56917
    • chore(test): set COREPACK_ENABLE_STRICT: 0 for create-next-app tests: #56955

    Credits

    Huge thanks to @ janicklas-ralph, @ wyattjoh, @ SukkaW, @ styfle, and @ balazsorban44 for helping!

  • 13.5.6-canary.3 - 2023-10-17

    Core Changes

    • feat: set status code to 500 if unexpected error occurs before streaming in app router: #56236
    • cache: add unstable_noStore API: #56930

    Credits

    Huge thanks to @ dpnolte and @ feedthejim for helping!

  • 13.5.6-canary.2 - 2023-10-17

    Core Changes

    • feat(env): upgrade dotenv: #38481
    • Update Babel dependencies: #51962
    • perf: fix tracing for routes: #56924
    • build: Update swc_core to v0.86.1: #56770

    Credits

    Huge thanks to @ JuanM04, @ Andarist, @ feedthejim, and @ kdy1 for helping!

  • 13.5.6-canary.1 - 2023-10-16

    Core Changes

    • Update React from d900fadbf to 09fbee89d. Removes server context and experimental prefix for server action APIs: #56809

    Documentation Changes

    • Update 05-mdx.mdx . Fix key of the prop: #56883

    Credits

    Huge thanks to @ WhoAmIRUS and @ gnoff for helping!

  • 13.5.6-canary.0 - 2023-10-16

    Core Changes

    • perf: fix server trace file logic : #56898
    • feat: drop Node.js 16: #56896

    Misc Changes

    • improve next-image-proxy test: #56893
    • chore(test): test remote image from proxy: #56895
    • ensure kodiak is re-added to apps list after code-freeze action: #56907

    Credits

    Huge thanks to @ ztanner, @ styfle, @ feedthejim, and @ balazsorban44 for helping!

  • 13.5.5 - 2023-10-16

    Core Changes

    • Update parallelizing tasks with webpackBuildWorker config: #56287
    • Misc Typescript and export updates: #55841
    • chore: pass defineEnv from next.js to rust directly: #56216
    • Expose util internally for debugging: #56381
    • App Router - preinitialize chunks during SSR: #54752
    • fix: use fs.existsSync to avoid race condition: #56387
    • Ensure loader generated export default has name: #56388
    • Move Edge SSR event waitUntil into the handler: #56404
    • fix: avoid unnecessary existSync call: #56419
    • fix: avoid creation of buffers for read ops: #56421
    • fix empty externals list, pnpm special case, and project path: #56402
    • chore: extract edge-app-route loader template: #56424
    • Separate RSC and SSR jsx-runtime modules: #56438
    • Async Batcher: #56423
    • Fix cli log next.js color: #56448
    • Turbopack: Implement Server Actions: #53890
    • Component Module Types: #56454
    • refactor: rewrite config schema in zod: #56383
    • Dev Service: #56442
    • feat(turbopack): port next.js template loading logic: #56425
    • Chunking Refactor Step 1: #56467
    • Use native node:fs in taskfile.js: #56491
    • Loose RSC import restrictions for 3rd party packages: #56501
    • turbopack: Chunking Refactor Step 2 : #56504
    • update turbopack, fix sass peer dependency: #56508
    • Remove ServerDirectiveTransformer: #56496
    • Improve failed to fetch RSC error: #56517
    • misc: fix wrong next start start duration: #56512
    • turbopack: Extract as_chunk into shared ChunkType trait: #56506
    • Flatten recursive wildcard exports in barrel optimization: #56489
    • Turbopack + app router: always use externals for predefined packages: #56440
    • fix: log error cause: #56528
    • Unsilence Taskr Webpack errors: #56542
    • refactor: cleanup app render: #56538
    • fix: don't add isolateModules to tsconfig when extending from tsconfig with verbatimModuleSyntax: #54164
    • enable verbatimModuleSyntax to make type imports/exports explicit: #56551
    • Ensure react-server-dom-turbopack-experimental uses the right package: #56560
    • Fix build restart log: #56543
    • feat(turbopack): add support for edge app pages: #56426
    • Improve error handling of Server Actions with skewed deployment: #56618
    • misc: split app-render into smaller functions: #56611
    • remove unnecessary structuredClone: #56570
    • Fix trace ignore handling: #56674
    • fix(next-core): allow sass loader for foreign codes: #56679
    • Fix SSG query with experimental-compile: #56680
    • Ensure rewrites are included in build manifest when using Turbopack: #56692
    • fix static worker restart behavior: #56728
    • Improve internal waitUntil utility: #56720
    • Fix reconnection loop when devserver is offline: #56698
    • Fix ensurePage for client-side navigation to / in Turbopack: #56704
    • ci: add job summary to the test suite runs: #56742
    • Prefer module over main on main fields for app router server compiler: #56532
    • Check origins of Server Action requests: #56753
    • OpenTelemetry: ignore bubble errors to avoid spamming traces: #56625
    • fix(turbopack): always alias server-only and client-only: #56760
    • Utilize Promise.withResolvers: #56764
    • Revert "Prefer module over main on main fields for app router server compiler": #56766
    • Revalidate Type: #56763
    • Revert static worker refactor: #56767
    • memoize useParams: #56771
    • Turbopack: Chunking Refactoring: #56756
    • Chunking Refactoring followup fixes: #56789
    • put app code into a separate layer: #56800
    • fix: add x-forwarded-* headers: #56797
    • fix(turbopack): middleware path and aliases: #56804
    • Implement preferredRegion array in Turbopack: #56743
    • Fix build traces case: #56817
    • Revert "Drop ipc server headers filters (#56226)": #56836
    • Implement getOptimizedModuleAliases for Turbopack: #56839
    • chore: bump undici: #56851
    • bump: edge-runtime: #56856
    • feat(turbopack): support basic next/dynamic: #56389
    • Revert "feat(turbopack): support basic next/dynamic": #56885

    Documentation Changes

    • add digest property to error prop: #56339
    • Updates MDX docs: #56378
    • Update redirect.mdx: #56414
    • docs: add missing word: #56547
    • docs: update code snippet for correct file name: #56006
    • corrected sentence: #56595
    • clarify client components render on server on full page load: #55469
    • docs(router): clarify dynamic route slug is about a file name, not "folder": #56596
    • Update 01-contribution-guide.mdx: Fix a typo: #56665
    • fix(docs): adjust api route documentation examples: #56660
    • Updates Large Page Data error message doc to use JSON.parse to make reading output easier: #56713
    • Docs: Add missing description field: #56749
    • Changes codeblock filename delimiter: #56712
    • Update supported-browsers.mdx: #56815
    • docs: fix cypress script typo in 10-testing.mdx: #56765
    • Fix typo: #56863

    Example Changes

    • Maintenance: minor example dep bumps to fix moderate vulns: #56375
    • Update actions.ts: #56579
    • updated fauna fql v10: #56185
    • fix lint error from fauna example: #56719
    • chore(example): bump @ radix-ui/react-icons: #56452
    • fix: http2 example issue: #56768

    Misc Changes

    • Fix mjs import for Turbopack test: #56354
    • Add test case for the permalink option of useFormState: #56329
    • Fix code freeze disable handling: #56340
    • add cargo fmt to lint staged: #56430
    • fix: .../templates/*/app/layout.* import order: #56380
    • Update .node-version: #56460
    • Fix logging level in actions test: #56473
    • Remove app dir warning test: #56350
    • Use consistent name for App Router tests: #56352
    • Remove isTurbo check in custom-routes test: #56360
    • test: speed up isolated next instance test setup: #56525
    • Update rust-toolchain to nightly-2023-10-06: #56541
    • update test manifest: #56522
    • chore: bump pnpm to 8.9: #56649
    • fix: next dev with edge runtime on windows: #56502
    • invert test filtering logic to exclude known failing: #56663
    • (test only) Integration tests: remove flatMap polyfill: #56546
    • Use node:fs instead of fs-extra in .github/actions: #56536
    • Use unique names for separate test suites: #56695
    • misc: tweak stats github action: #56694
    • CI: add manual workflow for running e2e on prod:
  • © Githubissues.
  • Githubissues is a development platform for aggregating issues.