Skip to content

Adjust approach for prerendering/SPA mode via headers #13453

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 1 commit into from
Apr 24, 2025
Merged

Adjust approach for prerendering/SPA mode via headers #13453

merged 1 commit into from
Apr 24, 2025

Conversation

@brophdawg11
Copy link
Contributor

No description provided.

@changeset-bot
Copy link

changeset-bot bot commented Apr 24, 2025

🦋 Changeset detected

Latest commit: 1694cae

The changes in this PR will be included in the next version bump.

This PR includes changesets to release 11 packages
Name Type
@react-router/dev Patch
react-router Patch
@react-router/fs-routes Patch
@react-router/remix-routes-option-adapter Patch
@react-router/architect Patch
@react-router/cloudflare Patch
react-router-dom Patch
@react-router/express Patch
@react-router/node Patch
@react-router/serve Patch
create-react-router Patch

Not sure what this means? Click here to learn what changesets are.

Click here if you're a maintainer who wants to add another changeset to this PR
@brophdawg11 brophdawg11 merged commit c843029 into dev Apr 24, 2025
8 checks passed
@brophdawg11 brophdawg11 deleted the brophdawg11/adjust-headers branch April 24, 2025 14:24
This was referenced Apr 24, 2025
Merged
Merged
@github-actions
Copy link
Contributor

🤖 Hello there,

We just published version 7.5.2 which includes this pull request. If you'd like to take it for a test run please try it out and let us know what you think!

Thanks!
@breadadams
Copy link

Hey @brophdawg11, are there any plans to backport this to v6?
@labkey-nicka
Copy link

Hey @brophdawg11, are there any plans to backport this to v6?

More so, does this even apply to v6? Doing a rough search of the v6 branch it does not contain X-React-Router-SPA-Mode. If it does not, then could the GHSA-f46r-rw29-r322 security advisory be updated to reflect affected versions more accurately?
@kirbysayshi
Copy link

@brophdawg11

More so, does this even apply to v6? Doing a rough search of the v6 branch it does not contain X-React-Router-SPA-Mode. If it does not, then could the GHSA-f46r-rw29-r322 security advisory be updated to reflect affected versions more accurately?

I just did my own investigation that I shared on Discord and wanted to share. We're on Remix, and I don't see any of the affected code in Remix or react-router v6. For now we've ignored the two advisories...

... but I'd love to have the advisories themselves amended to only target react-router >= 7 <= 7.5.1 to save someone else still on Remix the trouble. I spent an hour or two verifying this, I'd like to save others the time!
@brophdawg11
Copy link
Contributor Author

brophdawg11 commented Apr 24, 2025
edited
Loading

Hey folks - this is not an issue in React Router v6 or below (and therefore is not an issue in Remix v2). We forgot to include the lower bound in the "affected" field of the advisory. I've updated both with proper lower bounds but they are as follows:
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

CLA Signed

5 participants

@brophdawg11 @breadadams @labkey-nicka @kirbysayshi