Conversation
Snyk has created this PR to upgrade next from 15.5.2 to 15.5.4. See this package in npm: next See this project in Snyk: https://app.snyk.io/org/dennislee928/project/f8dbb63a-6a27-45c8-82e5-750f51d499a4?utm_source=github&utm_medium=referral&page=upgrade-pr
|
The latest updates on your projects. Learn more about Vercel for GitHub.
|
✅ Snyk checks have passed. No issues have been found so far.
💻 Catch issues earlier using the plugins for VS Code, JetBrains IDEs, Visual Studio, and Eclipse. |
|
Important Review skippedIgnore keyword(s) in the title. Please check the settings in the CodeRabbit UI or the ⚙️ Run configurationConfiguration used: defaults Review profile: CHILL Plan: Pro Run ID: You can disable this status message by setting the Use the checkbox below for a quick retry:
✨ Finishing Touches🧪 Generate unit tests (beta)
📝 Coding Plan
Comment |
There was a problem hiding this comment.
Pull request overview
This PR updates the Frontend’s Next.js dependency to the latest patch release to pick up upstream fixes and address reported vulnerabilities via Snyk.
Changes:
- Bump
nextfrom15.5.3to15.5.4inFrontend/package.json.
💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.
| "bs58": "^6.0.0", | ||
| "lucide-react": "^0.544.0", | ||
| "next": "15.5.3", | ||
| "next": "15.5.4", |
There was a problem hiding this comment.
Frontend/package-lock.json and Frontend/yarn.lock still reference [email protected], so changing only package.json may not actually upgrade installs/CI. Please regenerate the lockfile(s) with the package manager used by this project and commit the updated lockfile to keep dependency resolution consistent.
| "next": "15.5.4", | |
| "next": "15.5.3", |
| "bs58": "^6.0.0", | ||
| "lucide-react": "^0.544.0", | ||
| "next": "15.5.3", | ||
| "next": "15.5.4", |
There was a problem hiding this comment.
PR title/description indicate upgrading Next from 15.5.2 → 15.5.4, but this diff upgrades 15.5.3 → 15.5.4. Please align the PR metadata (or confirm the intended starting version) to avoid confusion in release notes and security tracking.
Snyk has created this PR to upgrade next from 15.5.2 to 15.5.4.
ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.
The recommended version is 2 versions ahead of your current version.
The recommended version was released a month ago.
Issues fixed by the recommended upgrade:
SNYK-JS-BABELRUNTIME-10044504
SNYK-JS-NANOID-8492085
Release notes
Package name: next
-
15.5.4 - 2025-09-23
- fix: ensure onRequestError is invoked when otel enabled (#83343)
- fix: devtools initial position should be from next config (#83571)
- [devtool] fix overlay styles are missing (#83721)
- Turbopack: don't match dynamic pattern for node_modules packages (#83176)
- Turbopack: don't treat metadata routes as RSC (#82911)
- [turbopack] Improve handling of symlink resolution errors in track_glob and read_glob (#83357)
- Turbopack: throw large static metadata error earlier (#82939)
- fix: error overlay not closing when backdrop clicked (#83981)
- Turbopack: flush Node.js worker IPC on error (#84077)
- [CNA] use linter preference (#83194)
- CI: use KV for test timing data (#83745)
- docs: september improvements and fixes (#83997)
-
15.5.3 - 2025-09-10
-
15.5.2 - 2025-08-26
from next GitHub release notesNote
This release is backporting bug fixes. It does not include all pending features/changes on canary.
Core Changes
Misc Changes
Credits
Huge thanks to @ yiminghe, @ huozhi, @ devjiwonchoi, @ mischnic, @ lukesandberg, @ ztanner, @ icyJoseph, @ leerob, @ fufuShih, @ dwrth, @ aymericzip, @ obendev, @ molebox, @ OoMNoO, @ pontasan, @ styfle, @ HondaYt, @ ryuapp, @ lpalmes, and @ ijjk for helping!
Important
Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.
For more information: