feat: update Next.js to v15.5.7 to address CVE-2025-55182

2026-01-20 22:24:28 +01:00 · 2025-12-03 12:48:53 -05:00
parent 3e6b4b75ec
commit b01c5dcd6a
3 changed files with 320 additions and 285 deletions
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -1,5 +1,11 @@
 # Changelog

+## Version 0.2.30
+
+### Fixed
+
+* Security: Updated Next.js from 15.2.3 to 15.5.7 to address CVE-2025-55182 (https://github.com/vercel/next.js/security/advisories/GHSA-9qr9-h5gf-34mp)
+
 ## Version 0.2.29

 ### Added
--- a/package-lock.json
+++ b/package-lock.json
--- a/package.json
+++ b/package.json
@@ -1,6 +1,6 @@
 {
  "name": "habittrove",
-  "version": "0.2.29",
+  "version": "0.2.30",
  "private": true,
  "scripts": {
    "dev": "next dev --turbopack",
@@ -48,7 +48,7 @@
    "linkify-react": "^4.2.0",
    "lucide-react": "^0.469.0",
    "luxon": "^3.5.0",
-    "next": "15.2.3",
+    "next": "^v15.5.7",
    "next-auth": "^5.0.0-beta.25",
    "next-intl": "^4.1.0",
    "next-themes": "^0.4.4",