Merge pull request #79 from upstash/vercel/react-server-components-cve-vu-khca9o

dev-ups · web-flow · commit 3aeb76357490 · 2025-12-12T13:41:04.000+03:00
Fix React Server Components CVE vulnerabilities
diff --git a/examples/middleware-rewrites/package.json b/examples/middleware-rewrites/package.json
@@ -14,7 +14,7 @@
     "@types/react-dom": "^18.3.0",
     "@upstash/edge-flags": "workspace:*",
     "@upstash/redis": "^1.31.6",
-    "next": "14.2.4",
+    "next": "14.2.35",
     "react": "^18.3.1",
     "react-dom": "18.3.1",
     "typescript": "5.5.2"
diff --git a/examples/nextjs/package.json b/examples/nextjs/package.json
@@ -12,7 +12,7 @@
     "@heroicons/react": "^2.0.13",
     "@tremor/react": "^1.6.0",
     "@upstash/edge-flags": "workspace:*",
-    "next": "^14.2.4",
+    "next": "14.2.35",
     "react": "^18.3.1",
     "react-dom": "^18.2.0"
   },
diff --git a/packages/dashboard/package.json b/packages/dashboard/package.json
@@ -20,7 +20,7 @@
   "dependencies": {
     "dotenv": "^16.0.3",
     "minimist": "^1.2.8",
-    "next": "^14.2.4",
+    "next": "14.2.35",
     "opener": "^1.5.2"
   },
   "devDependencies": {
diff --git a/pnpm-lock.yaml b/pnpm-lock.yaml
