[Security] Bump next from 7.0.3 to 10.0.5

[dependabot-preview[bot]]

Bumps next from 7.0.3 to 10.0.5. This update includes a security fix.

Vulnerabilities fixed

Sourced from The GitHub Security Advisory Database.

Moderate severity vulnerability that affects next

Impact

• Not affected: Deployments on ZEIT Now v2 (https://zeit.co) are not affected
• Not affected: Deployments using the serverless target
• Not affected: Deployments using next export
• Affected: Users of Next.js below 9.3.2

We recommend everyone to upgrade regardless of whether you can reproduce the issue or not.

Patches

https://github.com/zeit/next.js/releases/tag/v9.3.2

References

https://github.com/zeit/next.js/releases/tag/v9.3.2

Affected versions: < 9.3.2

Release notes

Sourced from next's releases.

v10.0.5-canary.12

Core Changes

• Add missing isReady declaration to NextRouter type: #20819

Documentation Changes

• Use vercel.app for blog starter URL: #20820

Example Changes

• Added with-mqtt-js example: #17939
• Update gtm.js: #20807
• feat: add Twilio Paste example: #20587

Misc Changes

• tests: add isReady field test for TS: #20821

Credits

Huge thanks to @smaktacular, @webda2l, @chibicode, @bar7b, and @SiTaggart for helping!

v10.0.5-canary.11

Core Changes

• Ensure i18n + API rewrite is handled correctly: #20751
• Update error for mis-matching path in getStaticPaths: #20767
• Only prefetch Link if router is in context: #19857

Documentation Changes

• Add docs for custom image loaders.: #20788
• Update static file serving doc to mention Next.js 10: #20815

Example Changes

• Fix mini typo in with-cookie-auth-fauna-example: #20808
• Guard useSwr() to avoid sending invalid request: #20671
• Fix: Build time error for with-mysql example #19635: #19636

Credits

Huge thanks to @leerob, @benbender, @ijjk, @timneutkens, @michael, @damusnet, and @farhankk360 for helping!

v10.0.5-canary.10

Core Changes

• fix(next-mdx): resolve webpack loader: #17983
• Move sizes var declaration just before used: #18402

Commits

• ef32e16 v10.0.5
• b2c6115 v10.0.5-canary.12
• 66a4972 feat: add Twilio Paste example (#20587)
• 54102b0 Update gtm.js (#20807)
• b580bea tests: add isReady field test for TS (#20821)
• 817cffd Use vercel.app for blog starter URL (#20820)
• 79e5615 Add missing isReady declaration to NextRouter type (#20819)
• 5fc8d48 Added with-mqtt-js example (#17939)
• 35a02d9 v10.0.5-canary.11
• 9a73db7 Fix: Build time error for with-mysql example #19635 (#19636)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language - `@dependabot badge me` will comment on this PR with code to add a "Dependabot enabled" badge to your readme Additionally, you can set the following in your Dependabot [dashboard](https://app.dependabot.com): - Update frequency (including time of day and day of week) - Pull request limits (per update run and/or open at any time) - Automerge options (never/patch/minor, and dev/runtime dependencies) - Out-of-range updates (receive only lockfile updates, if desired) - Security updates (receive only security updates, if desired)

[dependabot-preview[bot]]

Superseded by #463.