[Snyk] Security upgrade next from 13.1.2 to 13.5.8

[sumansaurabh]

User description

Snyk has created this PR to fix 1 vulnerabilities in the npm dependencies of this project.

Snyk changed the following file(s):

• apps/file-q-and-a/nextjs/package.json
• apps/file-q-and-a/nextjs/package-lock.json

Vulnerabilities that will be fixed with an upgrade:

	Issue	Score
	Allocation of Resources Without Limits or Throttling SNYK-JS-NEXT-8602067	631

---

Important

• Check the changes in this PR to ensure they won't cause issues with your project.
• Max score is 1000. Note that the real score may have changed since the PR was raised.
• This PR was automatically created by Snyk using the credentials of a real user.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report
📜 Customise PR templates
🛠 Adjust project settings
📚 Read about Snyk's upgrade logic

---

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Allocation of Resources Without Limits or Throttling

---

Description

• Upgraded next dependency to version 13.5.8 to address security vulnerabilities.
• Added busboy and streamsearch dependencies to enhance functionality.
• Updated postcss and nanoid to their latest versions for improved performance.
• This PR resolves one vulnerability related to resource allocation.

---

Changes walkthrough 📝

Relevant files

Enhancement

package.json Update Next.js Dependency Version                                                apps/file-q-and-a/nextjs/package.json Updated next dependency from 13.1.2 to 13.5.8. +1/-1      package-lock.json Upgrade Dependencies in Package Lock                                          apps/file-q-and-a/nextjs/package-lock.json Upgraded next and related dependencies to version 13.5.8. Added new dependencies: busboy and streamsearch. Updated postcss and nanoid to newer versions. +211/-249

---

💡 Penify usage:
Comment /help on the PR to get a list of all available Penify tools and their descriptions

[penify-dev]

PR Review 🔍

⏱️ Estimated effort to review [1-5]	2, because the changes are primarily version upgrades in package.json and package-lock.json, which are straightforward to review.
🧪 Relevant tests	No
⚡ Possible issues	No
🔒 Security concerns	No

[penify-dev]

PR Code Suggestions ✨

Category	Suggestion	Score
Possible issue	Review the changelog for potential breaking changes in the new version Consider reviewing the changelog for next version 13.5.8 to ensure that there are no breaking changes that could affect your application. apps/file-q-and-a/nextjs/package.json [30] -"next": "13.5.8", +"next": "13.5.8", // Ensure compatibility with breaking changes Suggestion importance[1-10]: 7 Why: The suggestion is relevant as it prompts the developer to check for breaking changes, which is important when updating dependencies, but it does not directly improve the code itself.	7