fix(docs): upgrade next to 16.2.6 security release + fumadocs-mdx 14.2.9#279
Conversation
Next.js 16.2.6 is a mandatory security release (13 CVEs). It introduced a Turbopack regression that hangs the fumadocs-mdx loader; bumping fumadocs-mdx to 14.2.9 fixes the hang. Also adds varlock deps required by next.config.ts.
|
The latest updates on your projects. Learn more about Vercel for GitHub.
|
|
📝 WalkthroughWalkthroughThe docs package configuration is updated to simplify the build pipeline by removing the varlock execution wrapper from the build script. Dependencies are concurrently updated: varlock is bumped to ^1.2.0 and fumadocs-mdx to 14.2.9. ChangesBuild Configuration
🎯 1 (Trivial) | ⏱️ ~2 minutes 🚥 Pre-merge checks | ✅ 4 | ❌ 1❌ Failed checks (1 inconclusive)
✅ Passed checks (4 passed)
✏️ Tip: You can configure your own custom pre-merge checks in the settings. ✨ Finishing Touches🧪 Generate unit tests (beta)
Comment |
![coderabbitai[bot]](https://avatars.githubusercontent.com/in/347564?s=60&v=4){kind=small}
There was a problem hiding this comment.
Actionable comments posted: 1
🤖 Prompt for all review comments with AI agents
Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.
Inline comments:
In `@apps/docs/package.json`:
- Line 7: Confirm and run the repository-level CI checks by executing "pnpm run
ci" from the repo root after updating the apps/docs package.json (the modified
"build" script), then commit only after the CI completes successfully; ensure
you mention this confirmation in the PR description or squash/merge checklist.
🪄 Autofix (Beta)
Fix all unresolved CodeRabbit comments on this PR:
- Push a commit to this branch (recommended)
- Create a new PR with the fixes
ℹ️ Review info
⚙️ Run configuration
Configuration used: Path: .coderabbit.yaml
Review profile: CHILL
Plan: Pro
Run ID: dc0716d0-7b8c-4d2b-90b4-3a10ffc399b5
⛔ Files ignored due to path filters (1)
pnpm-lock.yamlis excluded by!**/pnpm-lock.yaml
📒 Files selected for processing (1)
apps/docs/package.json
| "private": true, | ||
| "scripts": { | ||
| "build": "pnpm --filter @proofkit/typegen build && pnpm exec varlock run -- next build", | ||
| "build": "pnpm --filter @proofkit/typegen build && next build", |
There was a problem hiding this comment.
Confirm the required repo-root CI run before merge.
Please confirm pnpm run ci was executed from the repo root after this change, per the repo rule for JSON-file updates.
As per coding guidelines, **/*.{ts,tsx,js,jsx,json}: Always run pnpm run ci from repo root after task completion and before committing.
🤖 Prompt for AI Agents
Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.
In `@apps/docs/package.json` at line 7, Confirm and run the repository-level CI
checks by executing "pnpm run ci" from the repo root after updating the
apps/docs package.json (the modified "build" script), then commit only after the
CI completes successfully; ensure you mention this confirmation in the PR
description or squash/merge checklist.
@proofkit/better-auth
@proofkit/cli
create-proofkit
@proofkit/fmdapi
@proofkit/fmodata
@proofkit/typegen
@proofkit/webviewer
commit: |
1 participant
Summary
Test plan
next devwith Turbopack compiles /docs/[[...slug]] successfully (verified locally, 200 response in ~12s)Summary by CodeRabbit