chore(deps): bump next from 13.5.6 to 14.2.35

[dependabot]

Bumps next from 13.5.6 to 14.2.35.

Release notes

Sourced from next's releases.

v14.2.35

Please see the Next.js Security Update for information about this security patch.

Commits

• 7b940d9 v14.2.35
• 7c1be85 Backport facebook/react#35351 for 14.2.34 (#87095)
• f307368 v14.2.34
• 8e43882 Update React Version (#36)
• 385e8c2 Backport Next.js changes to v14.2.34 (#29)
• 7a2cf51 update version script
• 778e7bf lock swc binaries
• 5a97b40 v14.2.33
• cb88824 backport(v14): omit searchParam data from FlightRouterState before transport ...
• 89ee561 v14.2.32
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  You can disable automated security fix PRs for this repo from the Security Alerts page.

[cursor]

PR Summary

Upgrade Next.js from 13.5.6 to 14.2.35 (security patch) with corresponding lockfile updates and Playwright bump, raising Node requirements to >=18.

• Dependencies:
  • Upgrade next to ^14.2.35 in package.json (security patch).
  • Refresh lockfile for Next 14:
    • Bump @next/env, platform @next/swc-* binaries, and @swc/helpers.
    • Update transitive deps (e.g., caniuse-lite) and add graceful-fs under next.
    • Remove legacy watchpack/glob-to-regexp entries.
    • Raise Next runtime requirement to Node >=18.17.0 and add optional peer @playwright/test.
  • Testing/E2E: bump playwright and @playwright/test to 1.57.0 (Node >=18).

^{Written by Cursor Bugbot for commit 80ce1c9. This will update automatically on new commits. Configure here.}

[cursor]

Bug: Deprecated next export command will fail in Next.js 14

The next export command in the "export" script (line 9 of package.json) is deprecated and removed in Next.js 14. With this upgrade from 13.5.6 to 14.2.35, running npm run export will fail. Next.js 14 requires using output: 'export' in next.config.js instead, and the static files are output during next build rather than via a separate export command.

 

[cursor]

Bug: ESLint plugin version mismatch with Next.js 14

The next package is updated to ^14.2.35 but @next/eslint-plugin-next remains at ^13.4.12 (line 79). This version mismatch can cause ESLint rules to be outdated or incompatible with Next.js 14 patterns, potentially missing new lint violations or producing false positives for deprecated patterns. The ESLint plugin version should generally match the major Next.js version.

 

[dependabot]

Superseded by #48.