miel.truyen/nx
1
0
Fork 0
Code Issues Pull Requests Actions 5 Packages Projects Releases Wiki Activity

chore(nextjs): bump Next.js version to 14.2.16 (#28782)

Browse Source 
<!-- Please make sure you have read the submission guidelines before
posting an PR -->
<!--
https://github.com/nrwl/nx/blob/master/CONTRIBUTING.md#-submitting-a-pr
-->

<!-- Please make sure that your commit message follows our format -->
<!-- Example: `fix(nx): must begin with lowercase` -->

<!-- If this is a particularly complex change or feature addition, you
can request a dedicated Nx release for this pull request branch. Mention
someone from the Nx team or the `@nrwl/nx-pipelines-reviewers` and they
will confirm if the PR warrants its own release for testing purposes,
and generate it for you if appropriate. -->

## Current Behavior
<!-- This is the behavior we have today -->
Currently, the Next.js version in @nx/next is set to 14.0.3, which lacks
the latest features and improvements available in the 14.2.16 release.
Additionally, the current version has known vulnerabilities:


[GHSA-gp8f-8m3g-qvj9](https://github.com/advisories/GHSA-gp8f-8m3g-qvj9):
Cache Poisoning vulnerability in Next.js (versions before 14.1.0)

[GHSA-g77x-44xx-532m](https://github.com/advisories/GHSA-g77x-44xx-532m):
Denial of Service (DoS) condition in Next.js image optimization
(versions before 14.2.0)

## Expected Behavior
<!-- This is the behavior we should expect with the changes in this PR
-->
With this PR, the Next.js version in @nx/next is updated to 14.2.16,
addressing the listed vulnerabilities and bringing in the latest
features and bug fixes.

## Related Issue(s)
<!-- Please link the issue being fixed so it gets closed when this is
merged. -->

Fixes #
This commit is contained in:
Armin Gerina 2024-11-04 15:50:18 +01:00 committed by GitHub
parent 48db8ddc04
commit 39b0a6c959
No known key found for this signature in database
GPG Key ID: B5690EEEBB952194
3 changed files with 290 additions and 404 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
package.json
View File

@ -182,7 +182,7 @@
"enhanced-resolve": "^5.8.3",
"esbuild": "0.19.5",
"eslint": "8.57.0",
"eslint-config-next": "14.2.3",
"eslint-config-next": "14.2.16",
"eslint-config-prettier": "9.1.0",
"eslint-plugin-cypress": "2.14.0",
"eslint-plugin-import": "2.31.0",
@ -358,7 +358,7 @@
"json-schema-to-typescript": "^10.1.5",
"jsonpointer": "^5.0.0",
"license-checker": "^25.0.1",
"next": "14.2.5",
"next": "14.2.16",
"next-seo": "^5.13.0",
"node-machine-id": "1.1.12",
"npm-run-path": "^4.0.1",

4
packages/next/src/utils/versions.ts
View File

@ -1,7 +1,7 @@
export const nxVersion = require('../../package.json').version;
export const nextVersion = '14.2.3';
export const eslintConfigNextVersion = '14.2.3';
export const nextVersion = '14.2.16';
export const eslintConfigNextVersion = '14.2.16';
export const sassVersion = '1.62.1';
export const lessLoader = '11.1.0';
export const emotionServerVersion = '11.11.0';

686
pnpm-lock.yaml generated
View File

File diff suppressed because it is too large Load Diff