Skip to content

chore(deps): bump next from 16.0.1 to 16.0.7#470

Merged
ymc9 merged 70 commits intodevfrom
chore/merge-dev
Dec 5, 2025
Merged

chore(deps): bump next from 16.0.1 to 16.0.7#470
ymc9 merged 70 commits intodevfrom
chore/merge-dev

Conversation

@ymc9
Copy link
Member

@ymc9 ymc9 commented Dec 5, 2025

Bumps next from 16.0.1 to 16.0.7.

updated-dependencies:

  • dependency-name: next
    dependency-version: 16.0.7
    dependency-type: direct:production
    ...

Signed-off-by: dependabot[bot] support@github.com

ymc9 added 30 commits June 17, 2025 13:08
@ymc9
Merge pull request #29 from zenstackhq/dev
77ea76c 
merge dev to main
@ymc9
Merge pull request #31 from zenstackhq/dev
2db2993 
merge dev to main (3.0.0-alpha.4)
@ymc9
Merge pull request #44 from zenstackhq/dev
ca05f6d 
merge dev to main
@ymc9
Merge pull request #53 from zenstackhq/dev
50a3a79 
merge dev to main (v3.0.0-alpha.6)
@ymc9
Merge pull request #58 from zenstackhq/dev
7322db8 
merge dev to main
@ymc9
Merge pull request #61 from zenstackhq/dev
c225e62 
merge dev to main
@ymc9
Merge pull request #66 from zenstackhq/dev
f638291 
merge dev to main
@ymc9
Merge pull request #72 from zenstackhq/dev
d3e56be 
merge dev to main
@ymc9
Merge pull request #82 from zenstackhq/dev
04323de 
merge dev to main
@ymc9
Merge pull request #87 from zenstackhq/dev
8398575 
merge dev to main
@ymc9
Merge pull request #96 from zenstackhq/dev
8f8d6de 
merge dev to main
@ymc9
Merge pull request #99 from zenstackhq/dev
ed6cfe6 
merge dev to main
@ymc9
Merge pull request #119 from zenstackhq/dev
30fc2fa 
merge dev to main (v3.0.0-alpha.13)
@ymc9
Merge pull request #125 from zenstackhq/dev
c9d5e1d 
merge dev to main (v3.0.0-alpha.14)
@ymc9
Merge pull request #128 from zenstackhq/dev
99eb798 
merge dev to main (v3.0.0-alpha.15)
@ymc9
Merge pull request #132 from zenstackhq/dev
94a0c6f 
merge dev to main (v3.0.0-alpha.16)
@ymc9
Merge pull request #137 from zenstackhq/dev
c76ae24 
merge dev to main (v3.0.0-alpha.17)
@ymc9
Merge pull request #142 from zenstackhq/dev
4e359fc 
merge dev to main (v3.0.0-alpha.18)
@ymc9
Merge pull request #149 from zenstackhq/dev
0040e9d 
merge dev to main (v3.0.0-alpha.19)
@ymc9
Merge pull request #154 from zenstackhq/dev
9b36641 
merge dev to main
@ymc9
Merge pull request #157 from zenstackhq/dev
c10e48f 
merge dev to main (v3.0.0-alpha.21)
@ymc9
Merge pull request #160 from zenstackhq/dev
aec0096 
merge dev to main (v3.0.0-alpha.22)
@ymc9
Merge pull request #163 from zenstackhq/dev
726b826 
merge dev to main (v3.0.0-alpha.23)
@ymc9
Merge pull request #166 from zenstackhq/dev
a607b46 
merge dev to main (v3.0.0-alpha.24)
@ymc9
Merge pull request #174 from zenstackhq/dev
acbd2ae 
merge dev to main (v3.0.0-alpha.25)
@ymc9
Merge pull request #177 from zenstackhq/dev
6262b76 
merge dev to main (v3.0.0-alpha.26)
@ymc9
Merge pull request #185 from zenstackhq/dev
c5660c5 
merge dev to main (v3.0.0-alpha.27)
@ymc9
Merge pull request #188 from zenstackhq/dev
32691ce 
merge dev to main
@ymc9
Merge pull request #191 from zenstackhq/dev
23c58bd 
merge dev to main (v3.0.0-alpha.29)
@ymc9
Merge pull request #193 from zenstackhq/dev
be99d9a 
merge dev to main
ymc9 and others added 25 commits October 21, 2025 16:28
@ymc9
Merge pull request #319 from zenstackhq/dev
1e120f2 
merge dev to main (v3.0.0-beta.11)
@ymc9
Merge pull request #327 from zenstackhq/dev
ba3bbe8 
merge dev to main (v3.0.0-beta.12)
@ymc9
Merge pull request #330 from zenstackhq/dev
1b95b16 
merge dev to main (v3.0.0-beta.13)
@ymc9
Merge pull request #347 from zenstackhq/dev
7706cc3 
merge dev to main (v3.0.0-beta.14)
@ymc9
Merge pull request #354 from zenstackhq/dev
ead10f7 
merge dev to main (v3.0.0-beta.15)
@ymc9
Merge pull request #359 from zenstackhq/dev
cebd9d4 
merge dev to main (v3.0.0-beta.16)
@ymc9
Merge pull request #364 from zenstackhq/dev
25041d2 
merge dev to main (v3.0.0-beta.17)
@ymc9
Merge pull request #369 from zenstackhq/dev
bd75719 
merge dev to main (v3.0.0-beta.18)
@ymc9
Merge pull request #375 from zenstackhq/dev
aa97bc2 
merge dev to main (v3.0.0-beta.19)
@ymc9
Merge pull request #382 from zenstackhq/dev
ac87702 
merge dev to main (v3.0.0-beta.20)
@ymc9
Merge pull request #389 from zenstackhq/dev
e4226d5 
merge dev to main (v3.0.0-beta.21)
@ymc9
Merge pull request #398 from zenstackhq/dev
54fb434 
merge dev to main (v3.0.0-beta.22)
@ymc9
Merge pull request #406 from zenstackhq/dev
778526d 
merge dev to main (v3.0.0-beta.23)
@ymc9
Merge pull request #420 from zenstackhq/dev
5a36a7d 
merge dev to main (v3.0.0-beta.24)
@ymc9
Merge pull request #426 from zenstackhq/dev
a831866 
merge dev to main (better-auth README)
@ymc9
Merge pull request #435 from zenstackhq/dev
1e6f7ef 
merge dev to main (v3.0.0-beta.25)
@ymc9
Merge pull request #445 from zenstackhq/dev
29c4df2 
merge dev to main (v3.0.0-beta.26)
@ymc9
Merge pull request #460 from zenstackhq/dev
4b598bb 
merge dev to main (v3.0.0-beta.27)
@ymc9
Merge pull request #463 from zenstackhq/dev
e894020 
merge dev to main (add bun setup to CI)
@dependabot
chore(deps): bump next from 16.0.1 to 16.0.7
e7cbdfe 
Bumps [next](https://github.com/vercel/next.js) from 16.0.1 to 16.0.7.
- [Release notes](https://github.com/vercel/next.js/releases)
- [Changelog](https://github.com/vercel/next.js/blob/canary/release.js)
- [Commits](vercel/next.js@v16.0.1...v16.0.7)

---
updated-dependencies:
- dependency-name: next
  dependency-version: 16.0.7
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
@ymc9
chore(deps): bump next from 16.0.1 to 16.0.7 (#467)
45dd1f0 
* Initial plan

* chore: update pnpm-lock.yaml for next 16.0.7

Co-authored-by: ymc9 <104139426+ymc9@users.noreply.github.com>

---------

Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com>
Co-authored-by: ymc9 <104139426+ymc9@users.noreply.github.com>
@ymc9
Merge pull request #466 from zenstackhq/dependabot/npm_and_yarn/next-…
d913568 
…16.0.7

chore(deps): bump next from 16.0.1 to 16.0.7
@ymc9
Merge remote-tracking branch 'origin/main' into dev
b00e508
@ymc9
Merge branch 'dev' of https://github.com/zenstackhq/zenstack-v3 into dev
4987079
@ymc9
Merge branch 'dev' of https://github.com/zenstackhq/zenstack-v3 into dev
01fcffa
Copilot AI review requested due to automatic review settings December 5, 2025 00:37
Copilot AI reviewed Dec 5, 2025
View reviewed changes
Copy link
Contributor

Copilot AI left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Copilot wasn't able to review any files in this pull request.

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

@claude
Copy link

claude bot commented Dec 5, 2025
edited
Loading

Claude finished @ymc9's task —— View job

PR Review: Next.js Dependency Bump

This PR updates Next.js from 16.0.1 to 16.0.7 and includes related dependency updates.

Review Tasks:

  • Analyze current repository state and changes
  • Review Next.js changelog for breaking changes
  • Check package.json files for actual dependency changes
  • Verify build and test compatibility
  • Assess security implications
  • Provide comprehensive feedback

Key Findings:

✅ Positive Changes:

  1. Security Updates: Next.js 16.0.2-16.0.7 include important bug fixes and security improvements
  2. Catalog Management: Next.js version properly updated in pnpm-workspace.yaml catalog to 16.0.7
  3. Clean Dependencies: The glob dependency update (11.0.2 → 11.1.0) includes performance improvements

⚠️ Issues Found:

  1. Version Mismatch: In samples/next.js/package.json:

    • next: 16.0.7 ✅
    • eslint-config-next: 16.0.1 ❌ (should be 16.0.7)

    Impact: This mismatch could cause ESLint configuration incompatibilities

  2. Missing PR Description: The PR title mentions Next.js bump but the main visible changes in the diff are for glob dependency. This suggests the actual Next.js changes were in an earlier commit.

Recommendations:

🔧 Required Fix:

// samples/next.js/package.json
- "eslint-config-next": "16.0.1",
+ "eslint-config-next": "16.0.7",

📋 Code Quality:

  • The changes follow the repository's dependency management patterns using the catalog system
  • No breaking changes expected between these patch versions (16.0.1 → 16.0.7)

🛡️ Security Assessment:

  • Next.js 16.0.2+ includes fixes for several minor security issues
  • The glob update includes performance improvements and bug fixes
  • No critical vulnerabilities identified

Overall Assessment:

APPROVE with minor fix needed - The dependency updates are safe and beneficial, but the eslint-config-next version should be synchronized with the Next.js version to maintain consistency.

@ymc9 ymc9 merged commit 665c69e into dev Dec 5, 2025
5 checks passed
@ymc9 ymc9 deleted the chore/merge-dev branch December 5, 2025 00:37
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

Copilot code review Copilot Copilot left review comments

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@ymc9