chore(deps): Bump the next-ecosystem group across 1 directory with 4 updates

[dependabot]

Bumps the next-ecosystem group with 4 updates in the / directory: @next/bundle-analyzer, next, next-auth and eslint-config-next.

Updates @next/bundle-analyzer from 15.5.12 to 16.2.1

Release notes

Sourced from @​next/bundle-analyzer's releases.

v16.2.1

[!NOTE] This release is backporting bug fixes. It does not include all pending features/changes on canary.

Core Changes

• docs: post release amends (#91715)
• docs: fix broken Activity Patterns demo link in preserving UI state guide (#91698)
• Fix adapter outputs for dynamic metadata routes (#91680)
• Turbopack: fix webpack loader runner layer (#91727)
• Fix server actions in standalone mode with cacheComponents (#91711)
• turbo-persistence: remove Unmergeable mmap advice (#91713)
• Fix layout segment optimization: move app-page imports to server-utility transition (#91701)
• Turbopack: lazy require metadata and handle TLA (#91705)
• [turbopack] Respect {eval:true} in worker_threads constructors (#91666)

Credits

Huge thanks to @​icyJoseph, @​abhishekmardiya, @​ijjk, @​mischnic, @​unstubbable, @​sokra, and @​lukesandberg for helping!

v16.2.1-canary.5

Misc Changes

• docs: use ErrorInfo type consistently in catchError docs: #91744

Credits

Huge thanks to @​devjiwonchoi for helping!

v16.2.1-canary.4

Core Changes

• Fix adapter outputs for dynamic metadata routes: #91680

Misc Changes

• Turbopack: fix webpack loader runner layer: #91727
• [turbopack] Remove incorrect debug_assert in try_read_task_cell: #91699
• Add module count field to module graph tracing spans: #91697
• turbopack-cli: add --persistent-caching flag for filesystem-backed cache: #91657
• Turbopack: pull in updated vercel/nft tests: #91651
• Update Rspack development test manifest: #91695
• [test] Unflake use-node-streams-env-precedence test: #91733
• Update Rspack production test manifest: #91694
• [turbopack] Improve regressed build speed on cross-compiled MUSL: #91477

Credits

Huge thanks to @​ijjk, @​mischnic, @​sokra, @​vercel-release-bot, @​unstubbable, and @​mmastrac for helping!

v16.2.1-canary.3

... (truncated)

Commits

• ed7d2ce v16.2.1
• c5c94df v16.2.0
• 3683192 v16.2.0-canary.104
• 6689814 v16.2.0-canary.103
• ad66dbc v16.2.0-canary.102
• b856498 v16.2.0-canary.101
• 136b77e v16.2.0-canary.100
• 0f59973 v16.2.0-canary.99
• 792522d v16.2.0-canary.98
• 2769b55 v16.2.0-canary.97
• Additional commits viewable in compare view

Updates next from 15.5.12 to 15.5.14

Release notes

Sourced from next's releases.

v15.5.14

[!NOTE] This release is backporting bug fixes. It does not include all pending features/changes on canary.

Core Changes

• feat(next/image): add lru disk cache and images.maximumDiskCacheSize (#91660)
• Fix(pages-router): restore Content-Length and ETag for /_next/data/ JSON responses (#90304)

Credits

Huge thanks to @​styfle and @​lllomh for helping!

v15.5.13

[!NOTE] This release is backporting bug fixes. It does not include all pending features/changes on canary.

Core Changes

• fix: patch http-proxy to prevent request smuggling in rewrites (See: CVE-2026-29057)

Credits

Huge thanks to @​ztanner for helping!

Commits

• d7b012d v15.5.14
• 2b05251 [backport] feat(next/image): add lru disk cache and `images.maximumDiskCacheS...
• f88cee9 Backport: Fix(pages-router): restore Content-Length and ETag for /_next/data/...
• cfd5f53 v15.5.13
• 15f2891 [backport]: fix: patch http-proxy to prevent request smuggling in rewrites (#...
• See full diff in compare view

Updates next-auth from 5.0.0-beta.25 to 5.0.0-beta.30

Release notes

Sourced from next-auth's releases.

next-auth@5.0.0-beta.29

What's Changed

• fix: always check typeof BroadcastChannel by @​maiconcarraro in nextauthjs/next-auth#12937
• fix(providers): enable OIDC capabilities for Keycloak by @​jvllmr in nextauthjs/next-auth#12964
• Fix typo: succesful -> successful by @​changeworld in nextauthjs/next-auth#12973
• Fix undefined providerId by @​Regloom in nextauthjs/next-auth#12947
• docs: fix typo profie -> profile by @​changeworld in nextauthjs/next-auth#12987
• docs: Fix typo initalization -> initialization by @​changeworld in nextauthjs/next-auth#12989
• docs: Fix typo depencies -> dependencies by @​changeworld in nextauthjs/next-auth#12983
• docs: add missing "key" prop for form element in providerMap iterator by @​frshaad in nextauthjs/next-auth#13023
• chore(docs): fix typo Minmum -> Minimum by @​changeworld in nextauthjs/next-auth#13007
• chore(docs): fix typo Avaliable Scopes -> Available Scopes by @​changeworld in nextauthjs/next-auth#13009
• fix(adapter): transistion to surrealdb@^1.0.0 by @​dvanmali in nextauthjs/next-auth#11911
• Fix(provider): Mailgun region selection by @​benhovinga in nextauthjs/next-auth#13027
• fix(next-auth): add missing middleware wrapper type to auth function by @​k-taro56 in nextauthjs/next-auth#13026
• Update extending-the-session.mdx by @​adriancuadrado in nextauthjs/next-auth#13064
• fix(adapters): handle P2025 errors without importing Prisma namespace by @​karl-barbour in nextauthjs/next-auth#13061
• chore(docs): Fix syntax error in RBAC guide by @​benhovinga in nextauthjs/next-auth#12733
• fix(provider): Microsoft Entra ID by @​benhovinga in nextauthjs/next-auth#12616
• Update index.ts by @​adriancuadrado in nextauthjs/next-auth#13066

New Contributors

• @​maiconcarraro made their first contribution in nextauthjs/next-auth#12937
• @​jvllmr made their first contribution in nextauthjs/next-auth#12964
• @​Regloom made their first contribution in nextauthjs/next-auth#12947
• @​frshaad made their first contribution in nextauthjs/next-auth#13023
• @​dvanmali made their first contribution in nextauthjs/next-auth#11911
• @​adriancuadrado made their first contribution in nextauthjs/next-auth#13064
• @​karl-barbour made their first contribution in nextauthjs/next-auth#13061

Full Changelog: https://github.com/nextauthjs/next-auth/compare/next-auth@5.0.0-beta.28...next-auth@5.0.0-beta.29

Commits

• See full diff in compare view

Maintainer changes

This version was pushed to npm by himself_65, a new releaser for next-auth since your current version.

Updates eslint-config-next from 15.5.12 to 16.2.1

Release notes

Sourced from eslint-config-next's releases.

v16.2.1

[!NOTE] This release is backporting bug fixes. It does not include all pending features/changes on canary.

Core Changes

• docs: post release amends (#91715)
• docs: fix broken Activity Patterns demo link in preserving UI state guide (#91698)
• Fix adapter outputs for dynamic metadata routes (#91680)
• Turbopack: fix webpack loader runner layer (#91727)
• Fix server actions in standalone mode with cacheComponents (#91711)
• turbo-persistence: remove Unmergeable mmap advice (#91713)
• Fix layout segment optimization: move app-page imports to server-utility transition (#91701)
• Turbopack: lazy require metadata and handle TLA (#91705)
• [turbopack] Respect {eval:true} in worker_threads constructors (#91666)

Credits

Huge thanks to @​icyJoseph, @​abhishekmardiya, @​ijjk, @​mischnic, @​unstubbable, @​sokra, and @​lukesandberg for helping!

v16.2.1-canary.5

Misc Changes

• docs: use ErrorInfo type consistently in catchError docs: #91744

Credits

Huge thanks to @​devjiwonchoi for helping!

v16.2.1-canary.4

Core Changes

• Fix adapter outputs for dynamic metadata routes: #91680

Misc Changes

• Turbopack: fix webpack loader runner layer: #91727
• [turbopack] Remove incorrect debug_assert in try_read_task_cell: #91699
• Add module count field to module graph tracing spans: #91697
• turbopack-cli: add --persistent-caching flag for filesystem-backed cache: #91657
• Turbopack: pull in updated vercel/nft tests: #91651
• Update Rspack development test manifest: #91695
• [test] Unflake use-node-streams-env-precedence test: #91733
• Update Rspack production test manifest: #91694
• [turbopack] Improve regressed build speed on cross-compiled MUSL: #91477

Credits

Huge thanks to @​ijjk, @​mischnic, @​sokra, @​vercel-release-bot, @​unstubbable, and @​mmastrac for helping!

v16.2.1-canary.3

... (truncated)

Commits

• ed7d2ce v16.2.1
• c5c94df v16.2.0
• 3683192 v16.2.0-canary.104
• 6689814 v16.2.0-canary.103
• ad66dbc v16.2.0-canary.102
• b856498 v16.2.0-canary.101
• 136b77e v16.2.0-canary.100
• 0f59973 v16.2.0-canary.99
• 792522d v16.2.0-canary.98
• 2769b55 v16.2.0-canary.97
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[dependabot]

Labels

The following labels could not be found: automated. Please create it before Dependabot can add it to a pull request.

Please fix the above issues or remove invalid values from dependabot.yml.