Skip to content

Comments

Upgrade nextjs to fix vulnerability#1054

Merged
elie222 merged 1 commit intomainfrom
chore/upgrade-nextjs
Dec 3, 2025
Merged

Upgrade nextjs to fix vulnerability#1054
elie222 merged 1 commit intomainfrom
chore/upgrade-nextjs

Conversation

@elie222
Copy link
Owner

@elie222 elie222 commented Dec 3, 2025
edited by coderabbitai bot
Loading

Upgrade apps/web to Next 15.5.7 to fix a vulnerability

Bump next to 15.5.7 in apps/web/package.json and update the lockfile; increment the app version in version.txt.

📍Where to Start

Start with the dependency bump in apps/web/package.json and verify resolved versions in pnpm-lock.yaml.

Macroscope summarized 02511f7.

Summary by CodeRabbit

  • Chores
    • Released version v2.21.33 with updated dependencies.

✏️ Tip: You can customize this high-level summary in your review settings.

@vercel
Copy link

vercel bot commented Dec 3, 2025

The latest updates on your projects. Learn more about Vercel for GitHub.

Project Deployment Preview Updated (UTC)
inbox-zero Building Building Preview Dec 3, 2025 8:45pm

@coderabbitai
Copy link
Contributor

coderabbitai bot commented Dec 3, 2025
edited
Loading

Caution

Review failed

The pull request is closed.

Walkthrough

Bumps Next.js dependency from version 15.5.6 to 15.5.7 in apps/web/package.json, and increments the application version from v2.21.32 to v2.21.33 in version.txt. No logic or functionality changes.

Changes

Cohort / File(s) Summary
Version & Dependency Updates
apps/web/package.json, version.txt		 Bumps Next.js from 15.5.6 to 15.5.7 and updates application version from v2.21.32 to v2.21.33

Estimated code review effort

🎯 2 (Simple) | ⏱️ ~5 minutes

  • Verify Next.js patch version 15.5.7 is the intended target and contains no breaking changes
  • Confirm version.txt aligns with the patch increment strategy

Possibly related PRs

  • Update packages #381: Also modifies apps/web/package.json to bump the "next" dependency to a different target version

Poem

🐰 Next.js hops from point six to point seven so fine,
Version numbers dance in perfect time,
A patch release, tidy and clean,
The freshest dependencies we've seen! ✨

✨ Finishing touches
🧪 Generate unit tests (beta)
  • Create PR with unit tests
  • Post copyable unit tests in a comment
  • Commit unit tests in branch chore/upgrade-nextjs
📜 Recent review details

Configuration used: Path: .coderabbit.yaml

Review profile: CHILL

Plan: Pro

📥 Commits

Reviewing files that changed from the base of the PR and between cc3c34c and 02511f7.

⛔ Files ignored due to path filters (1)
  • pnpm-lock.yaml is excluded by !**/pnpm-lock.yaml
📒 Files selected for processing (2)
  • apps/web/package.json (1 hunks)
  • version.txt (1 hunks)

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

Comment @coderabbitai help to get the list of available commands and usage tips.

@elie222 elie222 merged commit 2870ecb into main Dec 3, 2025
11 of 13 checks passed
cubic-dev-ai[bot]
cubic-dev-ai bot reviewed Dec 3, 2025
View reviewed changes
Copy link
Contributor

@cubic-dev-ai cubic-dev-ai bot left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

No issues found across 3 files

@coderabbitai coderabbitai bot mentioned this pull request Dec 14, 2025
Merged
@elie222 elie222 deleted the chore/upgrade-nextjs branch December 18, 2025 23:00
This was referenced Dec 31, 2025
Merged
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@cubic-dev-ai cubic-dev-ai[bot] cubic-dev-ai[bot] left review comments

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@elie222