Upgrade NextJS to 15.5.7

From [Security Advisory: CVE-2025-66478](https://nextjs.org/blog/CVE-2025-66478):

> 
> A critical vulnerability has been identified in the React Server Components (RSC) protocol. The issue is rated CVSS 10.0 and can allow remote code execution when processing attacker-controlled requests in unpatched environments.
> 
> This vulnerability originates in the upstream React implementation ([CVE-2025-55182](https://www.cve.org/CVERecord?id=CVE-2025-55182)). This advisory ([CVE-2025-66478](https://github.com/vercel/next.js/security/advisories/GHSA-9qr9-h5gf-34mp)) tracks the downstream impact on Next.js applications using the App Router.
> 
> [Impact](https://nextjs.org/blog/CVE-2025-66478#impact)
> The vulnerable RSC protocol allowed untrusted inputs to influence server-side execution behavior. Under specific conditions, an attacker could craft requests that trigger unintended server execution paths. This can result in remote code execution in unpatched environments.

NextJS is currently at ^15.5.4, should be upgraded to ^15.5.7


Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Upgrade NextJS to 15.5.7 #256

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Upgrade NextJS to 15.5.7 #256

Description

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions