Skip to content

[Snyk] Security upgrade next from 14.1.3 to 14.2.32#172

Open
ntrianonFP wants to merge 1 commit intomainfrom
snyk-fix-03ab8e4cf242e33a70de8f0a968e9953
Open

[Snyk] Security upgrade next from 14.1.3 to 14.2.32#172
ntrianonFP wants to merge 1 commit intomainfrom
snyk-fix-03ab8e4cf242e33a70de8f0a968e9953

Conversation

@ntrianonFP
Copy link

@ntrianonFP ntrianonFP commented Sep 1, 2025

snyk-top-banner

Snyk has created this PR to fix 3 vulnerabilities in the npm dependencies of this project.

Snyk changed the following file(s):

  • examples/next/package.json

Vulnerabilities that will be fixed with an upgrade:

Issue Score
high severity Server-side Request Forgery (SSRF)
SNYK-JS-NEXT-12299318		   175  
medium severity Use of Cache Containing Sensitive Information
SNYK-JS-NEXT-12301496		   59  
low severity Missing Source Correlation of Multiple Independent Data
SNYK-JS-NEXT-12265451		   45  

Important

  • Check the changes in this PR to ensure they won't cause issues with your project.
  • Max score is 1000. Note that the real score may have changed since the PR was raised.
  • This PR was automatically created by Snyk using the credentials of a real user.

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report
📜 Customise PR templates
🛠 Adjust project settings
📚 Read about Snyk's upgrade logic

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Server-side Request Forgery (SSRF)
@github-actions
Copy link

github-actions bot commented Sep 1, 2025

This PR will create a patch release 🚀

2.7.1 (2025-09-01)

Bug Fixes

  • examples/next/package.json to reduce vulnerabilities (a4b36a8)

Build System

  • deps: bump the npm_and_yarn group across 2 directories with 4 updates (3dac3a4)
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

2 participants

@ntrianonFP @snyk-bot