Next.js

Empty release to ensure `next@latest` points at a stable release. Next.js only allows publishing with Trusted Publishing enabled. In order to fix NPM dist-tags, we have to release a new version. Updat…

Release with no changes in an attempt to fix `next@latest` pointing at a prerelease version.

> [!NOTE] > This release is backporting bug fixes. It does not include all pending features/changes on canary. Core Changes - [15.5.x] Don't drop `FormData` entries Other - [15.5.x] Fix CI Credits Hug…

> [!NOTE] > This release is backporting bug fixes. It does not include all pending features/changes on canary. Core Changes - Backport documentation fixes for v16.2 - [backport] Patch `playwright-core…

This release contains security fixes for the following advisories: High: - GHSA-8h8q-6873-q5fj: Denial of Service with Server Components - [GHSA-267c-6grr-h53f: Middleware / Proxy bypass in App Router…

> [!NOTE] > This release contains security fixes and backported bug fixes. It does not include all pending features/changes on canary. Security Fixes The following advisories have been addressed: High…

This release contains security fixes for the following advisories: High: - GHSA-8h8q-6873-q5fj: Denial of Service with Server Components - [GHSA-267c-6grr-h53f: Middleware / Proxy bypass in App Router…

This release contains security fixes for the following advisories: High: - GHSA-8h8q-6873-q5fj: Denial of Service with Server Components - [GHSA-267c-6grr-h53f: Middleware / Proxy bypass in App Router…

Misc Changes - Rename prefetch option `force-runtime` to `allow-runtime`: #94568 - Remove unstable_instant agent hints; insights validate by default: #94577 - [turbopack] Use an arena for `JSValue`s:…

> [!NOTE] > This release is backporting bug fixes. It does not include all pending features/changes on canary. Core Changes - chore: Bump reqwest to 0.13.2 (Fixes Google Fonts with Turbopack for Windo…

Please refer the following changelogs for more information about this security release:

> [!NOTE] > This release is backporting security and bug fixes. For more information about the fixed security vulnerability, please see The release does not include all pending features/changes on can…

Core Changes - Support type cast expressions in page static info extractor: #92837 - Fix dev mode hydration failure when page is served from HTTP cache: #92892 - [devtools] Preserve full code frames i…

> [!NOTE] > This release is backporting bug fixes. It does not include all pending features/changes on canary. Core Changes - feat(next/image): add lru disk cache and images.maximumDiskCacheSize - Fix…

> [!NOTE] > This release is backporting bug fixes. It does not include all pending features/changes on canary. Core Changes - backport: Move expanded adapters docs to API reference - Backport: TypeScr…

> [!NOTE] > This release is backporting bug fixes. It does not include all pending features/changes on canary. Core Changes - fix: patch http-proxy to prevent request smuggling in rewrites (See: CVE-2…

> [!NOTE] > This release is backporting bug fixes. It does not include all pending features/changes on canary. Core Changes - [Cache Components] Prevent streaming fetch calls from hanging in dev - App…

> [!TIP] > Check out our Next v16.2 Blog Post to learn more about this release. Core Changes - Upgrade React from `f93b9fd4-20251217` to `65eec428-20251218`: #87323 - Turbopack: Create junction points…