Skip to content

chore: Upgrade packages to fix security issues#2245

Closed
ahuseyn wants to merge 1 commit intocanaryfrom
fix-security-issues
Closed

chore: Upgrade packages to fix security issues#2245
ahuseyn wants to merge 1 commit intocanaryfrom
fix-security-issues

Conversation

@ahuseyn
Copy link
Member

@ahuseyn ahuseyn commented Feb 2, 2026

Tasks

  • I have signed a Contributor License Agreement (CLA) with WP Engine.
  • If a code change, I have written testing instructions that the whole team & outside contributors can understand.
  • I have written and included a comprehensive changeset to properly document the changes I've made.

Description

This PR addresses security vulnerabilities by upgrading outdated packages.

Related Issue(s):

Testing

Screenshots

Documentation Changes

Dependant PRs

@ahuseyn ahuseyn requested a review from a team as a code owner February 2, 2026 15:26
@changeset-bot
Copy link

changeset-bot bot commented Feb 2, 2026

⚠️ No Changeset found

Latest commit: 777876e

Merging this PR will not cause a version bump for any packages. If these changes should not result in a new version, you're good to go. If these changes should result in a version bump, you need to add a changeset.

This PR includes no changesets

When changesets are added to this PR, you'll see the packages that this PR includes changesets for and the associated semver types

Click here to learn what changesets are, and how to add one.

Click here if you're a maintainer who wants to add a changeset to this PR

@ahuseyn ahuseyn self-assigned this Feb 2, 2026
@ahuseyn ahuseyn requested a review from josephfusco February 2, 2026 15:27
@github-project-automation github-project-automation bot moved this to 🆕 Backlog in Headless OSS Feb 2, 2026
@ahuseyn ahuseyn moved this from 🆕 Backlog to 👀 In review in Headless OSS Feb 2, 2026
@github-actions
Copy link
Contributor

github-actions bot commented Feb 2, 2026

📦 Next.js Bundle Analysis for @faustwp/getting-started-example

This analysis was generated by the Next.js Bundle Analysis action. 🤖

🎉 Global Bundle Size Decreased

Page Size (compressed)
global 257.45 KB (🟢 -8.92 KB)
Details

The global bundle is the javascript bundle that loads alongside every page. It is in its own category because its impact is much higher - an increase to its size means that every page on your website loads slower, and a decrease means every page loads faster.

Any third party scripts you have added directly to your app using the <script> tag are not accounted for in this analysis

If you want further insight into what is behind the changes, give @next/bundle-analyzer a try!

josephfusco
josephfusco approved these changes Feb 3, 2026
View reviewed changes
Copy link
Member

@josephfusco josephfusco left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Security fixes for examples look good

@ahuseyn ahuseyn enabled auto-merge (squash) February 3, 2026 12:14
@ahuseyn ahuseyn disabled auto-merge February 3, 2026 12:14
@ahuseyn
Copy link
Member Author

ahuseyn commented Feb 4, 2026

Completed by #2251

@ahuseyn ahuseyn closed this Feb 4, 2026
@github-project-automation github-project-automation bot moved this from 👀 In review to ✅ Closed in Headless OSS Feb 4, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@josephfusco josephfusco josephfusco approved these changes

Assignees

@ahuseyn ahuseyn

Labels

None yet

Projects

Headless OSS
Status: ✅ Closed

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@ahuseyn @josephfusco