[Snyk] Security upgrade next from 10.0.8 to 11.1.1

[snyk-bot]

Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

Changes included in this PR

• Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
  • examples/styled-jsx-with-csp/package.json

Vulnerabilities that will be fixed

With an upgrade:

Severity	Priority Score (*)	Issue	Breaking Change	Exploit Maturity
	586/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 5.3	Regular Expression Denial of Service (ReDoS) SNYK-JS-BROWSERSLIST-1090194	No	Proof of Concept
	449/1000 Why? Has a fix available, CVSS 4.7	Open Redirect SNYK-JS-NEXT-1540422	Yes	No Known Exploit
	556/1000 Why? Recently disclosed, Has a fix available, CVSS 5.4	Cross-site Scripting (XSS) SNYK-JS-NEXT-1577139	Yes	No Known Exploit
	586/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 5.3	Regular Expression Denial of Service (ReDoS) SNYK-JS-POSTCSS-1090595	No	Proof of Concept
	586/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 5.3	Regular Expression Denial of Service (ReDoS) SNYK-JS-POSTCSS-1255640	No	Proof of Concept

(*) Note that the real score may have changed since the PR was raised.

Commit messages

Package name: next

The new version differs by 250 commits.

• 804971f v11.1.1
• 194d70f v11.1.1-canary.19
• 36d922f Add apiVersion to config (Add apiVersion to config vercel/next.js#28610)
• a60690f v11.1.1-canary.18
• 7afc97c Add CSP to Image Optimization API (Add CSP to Image Optimization API vercel/next.js#28620)
• 8711c5c Tests: Remove unnecessary await (Tests: Remove unnecessary await vercel/next.js#28594)
• d209435 Small grammar fixes (Small grammar fixes vercel/next.js#28590)
• 04cc37f Add docs for using pageExtensions to colocate other files with page components (Add docs for using pageExtensions to colocate other files with page components vercel/next.js#22740)
• f1dbc92 Ensure dev server side errors are correct (Ensure dev server side errors are correct vercel/next.js#28520)
• 27c2937 Update with-jest packages and docs (Update with-jest packages and docs vercel/next.js#28209)
• 2cc2cb4 Support for functional Document components (Support for functional Document components vercel/next.js#28515)
• d8093ec Update warning when parent styles break `next/image` (Update warning when parent styles break next/image vercel/next.js#28517)
• ed6ce1a v11.1.1-canary.17
• 9442925 handle edge case for no-import-document rule ([ESLint Plugin] Handles edge case for no-import-document-in-page rule vercel/next.js#28261)
• 220fa9c Update to use the latest MongoDB best practices to limit connection pooling issues. (Update to use the latest MongoDB best practices to limit connection pooling issues. vercel/next.js#28350)
• 877f982 Use recommended pattern in testing example (Use recommended pattern in testing example vercel/next.js#28404)
• d835402 v11.1.1-canary.16
• ead10f1 Fix handling for 204 status code with a body (Fix handling for 204 status code with a body vercel/next.js#28479)
• f216855 Update i18n locales limit to warning (Update i18n locales limit to warning vercel/next.js#28429)
• 74c349d Add prop-types in package.json (Add prop-types in package.json vercel/next.js#28481)
• c65248d Remove unused imports
• a509d90 v11.1.1-canary.15
• 9316dc0 Add default trace format that is exported automatically (Add default trace format that is exported automatically vercel/next.js#28461)
• 706547e Ensure error is shown correctly for empty headers field (Ensure error is shown correctly for empty headers field vercel/next.js#28430)

See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic