v16.1.7
📦 next-jsView on GitHub →
✨ 2 features🐛 3 fixes🔧 2 symbols
Summary
This release focuses on backporting critical security fixes and stability improvements, including patching request smuggling and addressing hanging streaming fetches in development.
Migration Steps
- Review security implications regarding Server Action submissions from privacy-sensitive contexts if you rely on this behavior.
✨ New Features
- Added LRU disk cache and configuration option `images.maximumDiskCacheSize` to next/image.
- Server actions submissions are now disallowed from privacy-sensitive contexts by default.
🐛 Bug Fixes
- Prevented streaming fetch calls from hanging in development mode.
- Ensured `maxPostponedStateSize` is always respected.
- Patched http-proxy to prevent request smuggling in rewrites.