Skip to content

[Flight] Add more DoS mitigations to Flight Reply, and harden Flight#35632

Merged
unstubbable merged 2 commits intofacebook:mainfrom
unstubbable:flight-dos-mitigations
Jan 26, 2026
Merged

[Flight] Add more DoS mitigations to Flight Reply, and harden Flight#35632
unstubbable merged 2 commits intofacebook:mainfrom
unstubbable:flight-dos-mitigations

Conversation

@unstubbable
Copy link
Collaborator

@unstubbable unstubbable commented Jan 26, 2026

This fixes security vulnerabilities in Server Functions.

@sebmarkbage @gnoff
@lubieowoce @unstubbable
[Flight] Add more DoS mitigations to Flight Reply, and harden Flight
0e72d28 
This fixes security vulnerabilities in Server Functions.

Co-authored-by: Josh Story <josh.c.story@gmail.com>
Co-authored-by: Janka Uryga <lolzatu2@gmail.com>
Co-authored-by: Hendrik Liebau <mail@hendrik-liebau.de>
@unstubbable unstubbable requested a review from eps1lon January 26, 2026 19:09
@meta-cla meta-cla bot added the CLA Signed label Jan 26, 2026
@github-actions github-actions bot added the React Core Team Opened by a member of the React Core Team label Jan 26, 2026
@react-sizebot
Copy link

react-sizebot commented Jan 26, 2026
edited
Loading

The size diff is too large to display in a single comment. The GitHub action for this pull request contains an artifact called 'sizebot-message.md' with the full message.

Generated by 🚫 dangerJS against d5324f4

@unstubbable unstubbable merged commit 1068027 into facebook:main Jan 26, 2026
233 of 234 checks passed
@unstubbable unstubbable deleted the flight-dos-mitigations branch January 26, 2026 19:25
github-actions bot pushed a commit that referenced this pull request Jan 26, 2026
@unstubbable
[Flight] Add more DoS mitigations to Flight Reply, and harden Flight (#…
ca63123 
…35632)

This fixes security vulnerabilities in Server Functions.

---------

Co-authored-by: Sebastian Markbåge <sebastian@calyptus.eu>
Co-authored-by: Josh Story <josh.c.story@gmail.com>
Co-authored-by: Janka Uryga <lolzatu2@gmail.com>
Co-authored-by: Sebastian Sebbie Silbermann <sebastian.silbermann@vercel.com>

DiffTrain build for [1068027](1068027)
This was referenced Jan 26, 2026
Closed
Closed
@eps1lon eps1lon mentioned this pull request Jan 26, 2026
Merged
WhenMoon-afk added a commit to WhenMoon-afk/substratia.io that referenced this pull request Jan 31, 2026
@WhenMoon-afk @claude
chore(deps): bump react 19.1.0 → 19.2.4 across web and mobile
141a2e1 
Minor version bump for react, react-dom, and react-test-renderer.
Includes security fixes: DoS mitigations for Server Actions and
hardened Server Components (facebook/react#35632).

Part of Dependabot PR #40 split strategy — safe minor bumps first.

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
@WhenMoon-afk WhenMoon-afk mentioned this pull request Jan 31, 2026
Merged
3 tasks
WhenMoon-afk added a commit to WhenMoon-afk/substratia.io that referenced this pull request Jan 31, 2026
@WhenMoon-afk @claude
chore(deps): bump react 19.1.0 → 19.2.4 across web and mobile (#41)
bcb41db 
Minor version bump for react, react-dom, and react-test-renderer.
Includes security fixes: DoS mitigations for Server Actions and
hardened Server Components (facebook/react#35632).

Part of Dependabot PR #40 split strategy — safe minor bumps first.

Co-authored-by: WhenMoon-afk <WhenMoon-afk@users.noreply.github.com>
Co-authored-by: Claude Opus 4.5 <noreply@anthropic.com>
@tnorlund tnorlund mentioned this pull request Feb 5, 2026
Merged
2 tasks
This was referenced Feb 5, 2026
Closed
Closed
Closed
Closed
Closed
Closed
Closed
Closed
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@eps1lon eps1lon eps1lon approved these changes

Assignees

No one assigned

Labels

CLA Signed React Core Team Opened by a member of the React Core Team

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

4 participants

@unstubbable @react-sizebot @eps1lon @sebmarkbage