[Snyk] Security upgrade next from 10.1.3 to 12.0.2
Created by: snyk-bot
Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.
Changes included in this PR
- Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
- website/package.json
- website/package-lock.json
Vulnerabilities that will be fixed
With an upgrade:
Severity | Priority Score (*) | Issue | Breaking Change | Exploit Maturity |
---|---|---|---|---|
691/1000 Why? Recently disclosed, Has a fix available, CVSS 8.1 |
Remote Code Execution (RCE) SNYK-JS-SHELLQUOTE-1766506 |
Yes | No Known Exploit |
(*) Note that the real score may have changed since the PR was raised.
Commit messages
Package name: next
The new version differs by 250 commits.- 99abb8b v12.0.2
- 9828790 v12.0.2-canary.14
- 39283f1 Update swc (#30685)
- 02e0dbc v12.0.2-canary.13
- 8a6307f Remove isCommonJS check as it has been moved to next-swc (#30677)
- 622a1a5 Provide default fallback _document and _app for for concurrent mode (#30642)
- c12ae5e correct Next.js 11 upgrade instructions (#30665)
- 90fad00 v12.0.2-canary.12
- 4ada314 Add auto-commonjs and update swc (#30661)
- d8cb8c5 Fixed "Expected jsx identifier" error on TypeScript generics & angle bracket type assertions in .ts files (#30619)
- d7d1a05 Ensure native binary is available for release stats (#30649)
- 77e1565 remove Object.fromEntries polyfill for node 10 in test utils (#30657)
- 48874f1 Fix missing dev option for the middleware SSR loader (#30639)
- c730f73 v12.0.2-canary.11
- 18a3991 Fix check compiled step (#30645)
- 097fb3c Revert incremental config to fix missing types (#30644)
- aa70f46 v12.0.2-canary.10
- 599081a Update output tracing to do separate passes (#30637)
- f363cc8 update webpack (#30634)
- b5a8916 Chore/rust workflow (#30577)
- c03e284 make sure "webpack" exists in the repo for typings (#30371)
- c53eaac v12.0.2-canary.9
- 142af81 Relax warning for `next/image` loader width even more (#30624)
- 842a130 Update to latest shell-quote (#30621)
Check the changes in this PR to ensure they won't cause issues with your project.
Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.
For more information: 🧐 View latest project report