Security: Fix critical React Server Components vulnerability by dennishenry · Pull Request #11 · auth0-lab/cloudflare-agents-starter

dennishenry · 2025-12-04T13:34:19Z

Security Update: Fix Critical React Server Components Vulnerability

This PR addresses a critical security vulnerability in React Server Components disclosed on December 3, 2025.

Reference: https://react.dev/blog/2025/12/03/critical-security-vulnerability-in-react-server-components

This update patches a critical security vulnerability affecting React Server Components. All teams should prioritize reviewing and merging this PR.

This PR was automatically generated by the React vulnerability scanner.

Updates vulnerable versions of React and/or Next.js to address critical security vulnerability in React Server Components. See: https://react.dev/blog/2025/12/03/critical-security-vulnerability-in-react-server-components Packages updated: - react: 19.1.0 → 19.1.2 - react-dom: updated to 19.1.2 (compatibility)