Skip to content

[Snyk] Security upgrade next from 10.1.3 to 12.0.2

Leo Wang请求将snyk-fix-541479ba0ae9be73436cb210737b5e5e合并到master

Created by: snyk-bot

Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

Changes included in this PR

  • Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
    • website/package.json
    • website/package-lock.json

Vulnerabilities that will be fixed

With an upgrade:
Severity Priority Score (*) Issue Breaking Change Exploit Maturity
high severity 691/1000
Why? Recently disclosed, Has a fix available, CVSS 8.1		 Remote Code Execution (RCE)
SNYK-JS-SHELLQUOTE-1766506 		Yes No Known Exploit

(*) Note that the real score may have changed since the PR was raised.

Commit messages
Package name: next The new version differs by 250 commits.
  • 99abb8b v12.0.2
  • 9828790 v12.0.2-canary.14
  • 39283f1 Update swc (#30685)
  • 02e0dbc v12.0.2-canary.13
  • 8a6307f Remove isCommonJS check as it has been moved to next-swc (#30677)
  • 622a1a5 Provide default fallback _document and _app for for concurrent mode (#30642)
  • c12ae5e correct Next.js 11 upgrade instructions (#30665)
  • 90fad00 v12.0.2-canary.12
  • 4ada314 Add auto-commonjs and update swc (#30661)
  • d8cb8c5 Fixed "Expected jsx identifier" error on TypeScript generics & angle bracket type assertions in .ts files (#30619)
  • d7d1a05 Ensure native binary is available for release stats (#30649)
  • 77e1565 remove Object.fromEntries polyfill for node 10 in test utils (#30657)
  • 48874f1 Fix missing dev option for the middleware SSR loader (#30639)
  • c730f73 v12.0.2-canary.11
  • 18a3991 Fix check compiled step (#30645)
  • 097fb3c Revert incremental config to fix missing types (#30644)
  • aa70f46 v12.0.2-canary.10
  • 599081a Update output tracing to do separate passes (#30637)
  • f363cc8 update webpack (#30634)
  • b5a8916 Chore/rust workflow (#30577)
  • c03e284 make sure "webpack" exists in the repo for typings (#30371)
  • c53eaac v12.0.2-canary.9
  • 142af81 Relax warning for `next/image` loader width even more (#30624)
  • 842a130 Update to latest shell-quote (#30621)

See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information: 🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic

合并请求报告