Sourced from next's\r\nreleases.
\r\n\r\n\r\nv14.2.10
\r\n\r\n\r\n[!NOTE]
\r\n
\r\nThis release is backporting bug fixes. It does not\r\ninclude all pending features/changes on canary.Core Changes
\r\n\r\n
\r\n- Remove invalid fallback revalidate value (vercel/next.js#69990)
\r\n- Revert server action optimization (vercel/next.js#69925)
\r\n- Add ability to customize Cache-Control (#69802)
\r\nCredits
\r\nHuge thanks to
\r\n@huozhi
and@ijjk
for helping!v14.2.9
\r\n\r\n\r\n[!NOTE]
\r\n
\r\nThis release is backporting bug fixes. It does not\r\ninclude all pending features/changes on canary.Core Changes
\r\n\r\n
\r\n- Revert "Fix esm property def in flight loader (#66990)"\r\n(#69749)
\r\n- Disable experimental.optimizeServer by default to fix failed server\r\naction (#69788)
\r\n- Fix middleware fallback: false case (#69799)
\r\n- Fix status code for /_not-found route (#64058)\r\n(#69808)
\r\n- Fix metadata prop merging (#69807)
\r\n- create-next-app: fix font file corruption when using import alias\r\n(#69806)
\r\nCredits
\r\nHuge thanks to
\r\n@huozhi
,@ztanner
,@ijjk
, and@lubieowoce
for\r\nhelping!v14.2.8
\r\nWhat's Changed
\r\n\r\n\r\n[!NOTE]
\r\n
\r\nThis release is backporting bug fixes and minor improvements. It does\r\nnot include all pending features/changes on canary.Support
\r\nesmExternals
in app directory\r\n
\r\n- Support esm externals in app router (#65041)
\r\n- Turbopack: Allow client components from foreign code in app routes\r\n(#64751)
\r\n- Turbopack: add support for esm externals in app dir (#64918)
\r\n- other related PRs: #66990\r\n#66727\r\n#66286\r\n#65519
\r\nReading cookies set in middleware in components and actions
\r\n\r\n\r\n
... (truncated)
\r\n937651f
\r\nv14.2.107ed7f12
\r\nRemove invalid fallback revalidate value (#69990)99de057
\r\nRevert server action optimization (#69925)24647b9
\r\nAdd ability to customize Cache-Control (#69802)6fa8982
\r\nv14.2.97998745
\r\ntest: lock ts type check (#69889)4bd3849
\r\ncreate-next-app: fix font file corruption when using import alias (#69806)3756801
\r\ntest: check most possible combination of CNA flags9a72ad6
\r\nunpin CNA tests from 14.2.3747d365
\r\nFix metadata prop merging (#69807)3e46a48
\r\n6.5.7accb61e
\r\nlib: DER signature decoding correction03e06e1
\r\n6.5.67ac5360
\r\nMerge commit from forkSourced from micromatch's\r\nreleases.
\r\n\r\n\r\n4.0.8
\r\nUltimate release that fixes both CVE-2024-4067 and CVE-2024-4068. We\r\nconsider the issues low-priority, so even if you see automated scanners\r\nsaying otherwise, don't be scared.
\r\n
Sourced from micromatch's\r\nchangelog.
\r\n\r\n\r\n[4.0.8] - 2024-08-22
\r\n\r\n
\r\n- backported CVE-2024-4067 fix (from v4.0.6) over to 4.x branch
\r\n[4.0.7] - 2024-05-22
\r\n\r\n
\r\n- this is basically v4.0.5, with some README updates
\r\n- it is vulnerable to CVE-2024-4067
\r\n- Updated braces to v3.0.3 to avoid CVE-2024-4068
\r\n- does NOT break API compatibility
\r\n[4.0.6] - 2024-05-21
\r\n\r\n
\r\n- Added
\r\nhasBraces
to check if a pattern contains\r\nbraces.- Fixes CVE-2024-4067
\r\n- BREAKS API COMPATIBILITY
\r\n- Should be labeled as a major release, but it's not.
\r\n
8bd704e
\r\n4.0.8a0e6841
\r\nrun verb to generate README documentation4ec2884
\r\nMerge branch 'v4' into hauserkristof-feature/v4.0.803aa805
\r\nMerge pull request #266\r\nfrom hauserkristof/feature/v4.0.8814f5f7
\r\nlint67fcce6
\r\nfix: CHANGELOG about braces & CVE-2024-4068, v4.0.5113f2e3
\r\nfix: CVE numbers in CHANGELOGd9dbd9a
\r\nfeat: updated CHANGELOG2ab1315
\r\nfix: use actions/setup-node@v41406ea3
\r\nfeat: rework test to work on macos with node 10,12 and 1474b2db2
\r\n3.0.388f1429
\r\nupdate eslint. lint, fix unit tests.415d660
\r\nSnyk js braces 6838727 (#40)190510f
\r\nfix tests, skip 1 test in test/braces.expand716eb9f
\r\nreadme bumpa5851e5
\r\nMerge pull request #37\r\nfrom coderaiser/fix/vulnerability2092bd1
\r\nfeature: braces: add maxSymbols (https://github.com/micromatch/braces/issues/...9f5b4cf
\r\nfix: vulnerability (https://security.snyk.io/vuln/SNYK-JS-BRACES-6838727)98414f9
\r\nremove funding file665ab5d
\r\nupdate keepEscaping doc (#27)