Skip to content

chore(deps): bump next from 15.5.9 to 15.5.10 in /packages/web#960

Merged
brendan-kellam merged 5 commits intomainfrom
dependabot/npm_and_yarn/packages/web/next-15.5.10
Feb 27, 2026
Merged

chore(deps): bump next from 15.5.9 to 15.5.10 in /packages/web#960
brendan-kellam merged 5 commits intomainfrom
dependabot/npm_and_yarn/packages/web/next-15.5.10

Conversation

@dependabot
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Feb 27, 2026

Bumps next from 15.5.9 to 15.5.10.

Release notes

Sourced from next's releases.

v15.5.10

Please refer the following changelogs for more information about this security release:

Commits

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
    You can disable automated security fix PRs for this repo from the Security Alerts page.

@dependabot
chore(deps): bump next from 15.5.9 to 15.5.10 in /packages/web
3c37305 
Bumps [next](https://github.com/vercel/next.js) from 15.5.9 to 15.5.10.
- [Release notes](https://github.com/vercel/next.js/releases)
- [Changelog](https://github.com/vercel/next.js/blob/canary/release.js)
- [Commits](vercel/next.js@v15.5.9...v15.5.10)

---
updated-dependencies:
- dependency-name: next
  dependency-version: 15.5.10
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code labels Feb 27, 2026
@github-actions

This comment has been minimized.

Sign in to view
@brendan-kellam
Copy link
Contributor

brendan-kellam commented Feb 27, 2026

@claude add a changelog

@claude
Copy link

claude bot commented Feb 27, 2026
edited
Loading

Claude finished @brendan-kellam's task in 30s —— View job

Changelog Entry Added

  • Gather context
  • Understand request
  • Read CHANGELOG.md
  • Add changelog entry
  • Commit and push

Added the following entry to CHANGELOG.md under [Unreleased] > Changed:

- Bumped `next` to `15.5.10` (security release: CVE-2025-59471, CVE-2025-59472, CVE-2026-23864). [#960](https://github.com/sourcebot-dev/sourcebot/pull/960)

@brendan-kellam
Copy link
Contributor

brendan-kellam commented Feb 27, 2026

@claude run yarn install to update the lockfile

@claude
Copy link

claude bot commented Feb 27, 2026
edited
Loading

Claude finished @brendan-kellam's task in 22s —— View job

Tasks

  • Analyze request
  • Run yarn install to update the lockfile
  • Commit and push changes

I'm unable to run yarn install because it requires approval in the current permission mode. The yarn install command needs to be allowed in the tool permissions to update the lockfile.

To proceed, you can either:

  1. Allow the yarn install command in the Claude Code action's allowedTools configuration, or
  2. Run yarn install locally and push the updated yarn.lock to the branch

brendan-kellam added a commit that referenced this pull request Feb 27, 2026
@brendan-kellam @claude
chore: update CHANGELOG for #960
4bf2532 
Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
@brendan-kellam brendan-kellam enabled auto-merge (squash) February 27, 2026 22:10
@brendan-kellam brendan-kellam merged commit 7f5a5fa into main Feb 27, 2026
9 checks passed
@brendan-kellam brendan-kellam deleted the dependabot/npm_and_yarn/packages/web/next-15.5.10 branch February 27, 2026 22:19
@github-actions github-actions bot mentioned this pull request Feb 27, 2026
Open
brendan-kellam added a commit that referenced this pull request Feb 27, 2026
@brendan-kellam @claude
chore(deps): bump @react-email/preview-server to 5.2.8 (#961)
cf7c304 
* chore(deps): bump @react-email/preview-server to 5.2.8

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>

* chore: update CHANGELOG for #960

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>

* Fix changelog

---------

Co-authored-by: Claude Sonnet 4.6 <noreply@anthropic.com>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@brendan-kellam brendan-kellam brendan-kellam approved these changes

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@brendan-kellam