[Snyk] Upgrade next from 16.2.4 to 16.2.5

[zachsis]

Snyk has created this PR to upgrade next from 16.2.4 to 16.2.5.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

---

• The recommended version is 1 version ahead of your current version.

• The recommended version was released 21 days ago.

Issues fixed by the recommended upgrade:

	Issue	Score	Exploit Maturity
	Allocation of Resources Without Limits or Throttling SNYK-JS-NEXT-16638674	225	Proof of Concept
	Allocation of Resources Without Limits or Throttling SNYK-JS-NEXT-16638678	225	No Known Exploit
	Authentication Bypass Using an Alternate Path or Channel SNYK-JS-NEXT-16638679	225	No Known Exploit
	Allocation of Resources Without Limits or Throttling SNYK-JS-NEXT-16638680	225	No Known Exploit
	Server-side Request Forgery (SSRF) SNYK-JS-NEXT-16638682	225	Proof of Concept
	Incorrect Authorization SNYK-JS-NEXT-16638683	225	No Known Exploit
	Authentication Bypass Using an Alternate Path or Channel SNYK-JS-NEXT-16638685	225	No Known Exploit
	Acceptance of Extraneous Untrusted Data With Trusted Data SNYK-JS-NEXT-16638675	225	No Known Exploit
	Interpretation Conflict SNYK-JS-NEXT-16638676	225	No Known Exploit
	Use of Weak Hash SNYK-JS-NEXT-16638677	225	No Known Exploit
	Cross-site Scripting (XSS) SNYK-JS-NEXT-16638681	225	No Known Exploit
	Cross-site Scripting (XSS) SNYK-JS-NEXT-16638684	225	No Known Exploit

Release notes

Package name: next

• 16.2.5 - 2026-05-06
• 16.2.4 - 2026-04-15

from next GitHub release notes

---

Important

• Check the changes in this PR to ensure they won't cause issues with your project.
• This PR was automatically created by Snyk using the credentials of a real user.
• Max score is 1000. Note that the real score may have changed since the PR was raised.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

• 🧐 View latest project report
• 📜 Customise PR templates
• 🛠 Adjust upgrade PR settings
• 🔕 Ignore this dependency or unsubscribe from future upgrade PRs

[CLAassistant]

Thank you for your submission! We really appreciate it. Like many open source projects, we ask that you sign our Contributor License Agreement before we can accept your contribution.
_{You have signed the CLA already but the status is still pending? Let us recheck it.}

[CLAassistant]

Thank you for your submission! We really appreciate it. Like many open source projects, we ask that you sign our Contributor License Agreement before we can accept your contribution.
_{You have signed the CLA already but the status is still pending? Let us recheck it.}

[github-actions]

PR Preview Action v1.8.1
🚀 View preview at https://instructure.design/pr-preview/pr-2571/
Built to branch gh-pages at 2026-05-27 22:26 UTC. Preview will be ready when the GitHub Pages deployment is complete.