[PR #2029] [CLOSED] Bump next from 15.5.7 to 16.0.8 #28530

Closed
opened 2026-06-11 00:13:36 -05:00 by GiteaMirror · 0 comments
Owner

📋 Pull Request Information

Original PR: https://github.com/fosrl/pangolin/pull/2029
Author: @dependabot[bot]
Created: 12/10/2025
Status: Closed

Base: mainHead: dependabot/npm_and_yarn/next-16.0.8


📝 Commits (1)

  • 1e338ea Bump next from 15.5.7 to 16.0.8

📊 Changes

2 files changed (+43 additions, -43 deletions)

View changed files

📝 package-lock.json (+42 -42)
📝 package.json (+1 -1)

📄 Description

Bumps next from 15.5.7 to 16.0.8.

Release notes

Sourced from next's releases.

v16.0.8

[!NOTE] This release is backporting bug fixes. It does not include all pending features/changes on canary.

Core Changes

  • Update react version in cna templates (#86950)

Credits

Huge thanks to @​huozhi for helping!

v16.0.7

Please see CVE-2025-66478 for additional details about this release.

v16.0.6

[!NOTE] This release is backporting bug fixes. It does not include all pending features/changes on canary.

Core Changes

  • bump the browserslist version to silence a warning in CI (#86625)

Credits

Huge thanks to @​lukesandberg for helping!

v16.0.5

[!NOTE] This release is backporting bug fixes. It does not include all pending features/changes on canary.

Core Changes

  • fix(nodejs-middleware): await for body cloning to be properly finalized (#85418)

Credits

Huge thanks to @​lucasadrianof for helping!

v16.0.4

[!NOTE] This release is backporting bug fixes. It does not include all pending features/changes on canary.

Core Changes

  • fix: Rename proxy.js to middleware.js in NFT file (#86214)
  • fix: prevent fetch abort errors propagating to user error boundaries (#86277)
  • Turbopack: fix passing project options from napi (#86256)

Credits

... (truncated)

Commits

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

🔄 This issue represents a GitHub Pull Request. It cannot be merged through Gitea due to API limitations.

## 📋 Pull Request Information **Original PR:** https://github.com/fosrl/pangolin/pull/2029 **Author:** [@dependabot[bot]](https://github.com/apps/dependabot) **Created:** 12/10/2025 **Status:** ❌ Closed **Base:** `main` ← **Head:** `dependabot/npm_and_yarn/next-16.0.8` --- ### 📝 Commits (1) - [`1e338ea`](https://github.com/fosrl/pangolin/commit/1e338ea006cbe2c4c89dcf72adc237ea542912e1) Bump next from 15.5.7 to 16.0.8 ### 📊 Changes **2 files changed** (+43 additions, -43 deletions) <details> <summary>View changed files</summary> 📝 `package-lock.json` (+42 -42) 📝 `package.json` (+1 -1) </details> ### 📄 Description Bumps [next](https://github.com/vercel/next.js) from 15.5.7 to 16.0.8. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/vercel/next.js/releases">next's releases</a>.</em></p> <blockquote> <h2>v16.0.8</h2> <blockquote> <p>[!NOTE] This release is backporting bug fixes. It does <strong>not</strong> include all pending features/changes on canary.</p> </blockquote> <h3>Core Changes</h3> <ul> <li>Update react version in cna templates (<a href="https://redirect.github.com/vercel/next.js/issues/86950">#86950</a>)</li> </ul> <h3>Credits</h3> <p>Huge thanks to <a href="https://github.com/huozhi"><code>@​huozhi</code></a> for helping!</p> <h2>v16.0.7</h2> <p>Please see <a href="https://nextjs.org/blog/CVE-2025-66478">CVE-2025-66478</a> for additional details about this release.</p> <h2>v16.0.6</h2> <blockquote> <p>[!NOTE] This release is backporting bug fixes. It does <strong>not</strong> include all pending features/changes on canary.</p> </blockquote> <h3>Core Changes</h3> <ul> <li>bump the browserslist version to silence a warning in CI (<a href="https://redirect.github.com/vercel/next.js/issues/86625">#86625</a>)</li> </ul> <h3>Credits</h3> <p>Huge thanks to <a href="https://github.com/lukesandberg"><code>@​lukesandberg</code></a> for helping!</p> <h2>v16.0.5</h2> <blockquote> <p>[!NOTE] This release is backporting bug fixes. It does <strong>not</strong> include all pending features/changes on canary.</p> </blockquote> <h3>Core Changes</h3> <ul> <li>fix(nodejs-middleware): await for body cloning to be properly finalized (<a href="https://redirect.github.com/vercel/next.js/issues/85418">#85418</a>)</li> </ul> <h3>Credits</h3> <p>Huge thanks to <a href="https://github.com/lucasadrianof"><code>@​lucasadrianof</code></a> for helping!</p> <h2>v16.0.4</h2> <blockquote> <p>[!NOTE] This release is backporting bug fixes. It does <strong>not</strong> include all pending features/changes on canary.</p> </blockquote> <h3>Core Changes</h3> <ul> <li>fix: Rename proxy.js to middleware.js in NFT file (<a href="https://redirect.github.com/vercel/next.js/issues/86214">#86214</a>)</li> <li>fix: prevent fetch abort errors propagating to user error boundaries (<a href="https://redirect.github.com/vercel/next.js/issues/86277">#86277</a>)</li> <li>Turbopack: fix passing project options from napi (<a href="https://redirect.github.com/vercel/next.js/issues/86256">#86256</a>)</li> </ul> <h3>Credits</h3> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/vercel/next.js/commit/817ee56da939545d4b77cc54542f4c45a524e60a"><code>817ee56</code></a> v16.0.8</li> <li><a href="https://github.com/vercel/next.js/commit/b298173dba914e55bc25aa6bdc37d418d587830e"><code>b298173</code></a> Update react version in cna templates (<a href="https://redirect.github.com/vercel/next.js/issues/86950">#86950</a>)</li> <li><a href="https://github.com/vercel/next.js/commit/7492122a3bbc6655b64ccba04076c73ab418cdcc"><code>7492122</code></a> v16.0.7</li> <li><a href="https://github.com/vercel/next.js/commit/d21259d920f666814fa634e744d2c6e797ceae43"><code>d21259d</code></a> update version script</li> <li><a href="https://github.com/vercel/next.js/commit/b1a04a84e991b48b6558d15841b86f3017878607"><code>b1a04a8</code></a> Update React Version (<a href="https://redirect.github.com/vercel/next.js/issues/11">#11</a>)</li> <li><a href="https://github.com/vercel/next.js/commit/aab1edcb8d7a57a6f7a1637d0f87be84ea62edc8"><code>aab1edc</code></a> v16.0.6</li> <li><a href="https://github.com/vercel/next.js/commit/279f2e319e939af54db81f9f5db730501f755284"><code>279f2e3</code></a> bump the browserslist version to silence a warning in CI (<a href="https://redirect.github.com/vercel/next.js/issues/86625">#86625</a>)</li> <li><a href="https://github.com/vercel/next.js/commit/89ccb9fc86c13ca6aaaa5eb0e61c02c309abf1a3"><code>89ccb9f</code></a> v16.0.5</li> <li><a href="https://github.com/vercel/next.js/commit/75f63f70084de2198a22267fc344884b091f9d7c"><code>75f63f7</code></a> backport fix(nodejs-middleware): await for body cloning to be properly finali...</li> <li><a href="https://github.com/vercel/next.js/commit/d440c75650c79b8be450df5fd434afbfe230506a"><code>d440c75</code></a> v16.0.4</li> <li>Additional commits viewable in <a href="https://github.com/vercel/next.js/compare/v15.5.7...v16.0.8">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=next&package-manager=npm_and_yarn&previous-version=15.5.7&new-version=16.0.8)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> --- <sub>🔄 This issue represents a GitHub Pull Request. It cannot be merged through Gitea due to API limitations.</sub>
GiteaMirror added the pull-request label 2026-06-11 00:13:36 -05:00
Sign in to join this conversation.
1 Participants
Notifications
Due Date
No due date set.
Dependencies

No dependencies set.

Reference: github-starred/pangolin#28530