cloudflare / vinext

Code / Commits
๐Ÿ“ Commits on main
Commits on February 27, 2026
ToddLiao
fix: detect src/app App Router (#90)
ToddLiao committed 2 days ago
a824784
mohammad
fix: log errors from failed error reporting calls (#133)
mohammad committed 2 days ago
2efc089
milkboy2564
fix(rsc): include cookies in RSC navigation and prefetch requests (#123)
milkboy2564 committed 2 days ago
1b5ecf7
Gentrit Biba
fix: add missing react-server-dom-webpack to App Router examples (#132)
Gentrit Biba committed 2 days ago
4a81f9f
gembleman
fix(navigation): cache getServerSnapshot fallback in useSearchParams (#79)
gembleman committed 2 days ago
083d765
ask-bonk[bot]
fix(routing): allow hyphens in dynamic segment param names (#78)
ask-bonk[bot] committed 3 days ago
aff5d24
Stephen Zhou
fix(image-imports): get cache (#59)
Stephen Zhou committed 3 days ago
2061ff6
Gentrit Biba
fix: use fileURLToPath for metadata-routes import in RSC entry (#130)
Gentrit Biba committed 3 days ago
7f33c24
luo jiyin
fix: correct various typos (#114)
luo jiyin committed 3 days ago
dff6da2
Steve Faulkner
fix: use decoded pathname for config matcher evaluation (#150)
Steve Faulkner committed 3 days ago
0c66d98
Steve Faulkner
fix: strip internal routing headers from dev server responses (#149)
Steve Faulkner committed 3 days ago
65f78a4
Steve Faulkner
fix: decode request pathname once at entry point for consistent routing (#148)
Steve Faulkner committed 3 days ago
6fb62b6
Commits on February 26, 2026
Sunil Pai
fix: fetch cache key generation โ€” handle all body types, include all headers minus blocklist (#111)
Sunil Pai committed 3 days ago
c4f50b6
Sunil Pai
harden CI workflows: frozen-lockfile, checksum verification (#113)
Sunil Pai committed 3 days ago
de9b679
Sunil Pai
chore: rebuild pages-basic fixture dist (#110)
Sunil Pai committed 3 days ago
12b3647
Sunil Pai
fix: dev sanitizeDestination now normalizes leading backslashes (#108)
Sunil Pai committed 3 days ago
940af68
Sunil Pai
fix: handle malformed percent-encoded URLs gracefully (#107)
Sunil Pai committed 3 days ago
8a618af
Sunil Pai
fix: close security gaps in init.ts shell exec and app-dev-server external proxy (#106)
Sunil Pai committed 3 days ago
fd01d7d
Sunil Pai
Security hardening: redirect sanitization, header stripping, ALS isolation tests, and safer command execution (#105)
Sunil Pai committed 3 days ago
0e750f7
Dane
fix: resolve CodeQL security alerts (ReDoS, incomplete sanitization, bad code gen) (#87)
Dane committed 4 days ago
98b2434
Steve Faulkner
fix: normalize request pathname before middleware and route matching (#102)
Steve Faulkner committed 4 days ago
8349544
Steve Faulkner
fix: validate image optimization content types and width bounds (#101)
Steve Faulkner committed 4 days ago
6986e10
Steve Faulkner
fix: add request validation to dev server (#98)
Steve Faulkner committed 4 days ago
16988a5
Steve Faulkner
fix: use AsyncLocalStorage.run() for request context isolation (#99)
Steve Faulkner committed 4 days ago
abad2e4
Steve Faulkner
fix: sanitize error messages in production mode (#97)
Steve Faulkner committed 4 days ago
7574231
Steve Faulkner
fix: enforce body size limit on App Router server actions (#96)
Steve Faulkner committed 4 days ago
708d85e
Steve Faulkner
fix: use Host header for server action origin check (#95)
Steve Faulkner committed 4 days ago
aca4641
Steve Faulkner
fix: validate module paths during client-side navigation (#94)
Steve Faulkner committed 4 days ago
af485ae
Steve Faulkner
fix: include relevant headers in fetch cache key (#93)
Steve Faulkner committed 4 days ago
dda1059
Steve Faulkner
fix: sanitize redirect destinations and digest parsing (#92)
Steve Faulkner committed 4 days ago
3ff59fa