Microsoft

Developer-targeting campaign using malicious Next.js repositories

A developer-targeting campaign leveraged malicious Next.js repositories to trigger a covert RCE-to-C2 chain through standard ...
InfoWorld

Developers urged to immediately upgrade React, Next.js

Critical vulnerability in React library should be treated by IT as they did Log4j - as an emergency, warns one expert. Developers using the React 19 library for building application interfaces are ...
heise online

Web development: Next.js 15.3 drives the Bundler Turbopack forward

With the webpack successor Turbopack, alpha builds are now possible and the TypeScript language service plug-in has become faster and more reliable. The React framework Next.js has reached version ...
InfoWorld

Next.js 16 features explicit caching, AI-powered debugging

Announced October 21, Next.js 16 now is generally available, with installation instructions available at nextjs.org. Highlights include Cache Components, a new set of features designed to make caching ...