Critical Security Vulnerability in React Server Components

A critical security vulnerability was announced in React Server Components, impacting specific versions of React and Vercel's Next.js. While most Replit applications are not affected by default, apps could be vulnerable if they installed the compromised packages or were created using the 'Mobile app [beta]' option. Replit has deployed mitigations via Google Cloud Armor for all published apps and patched the mobile template for new projects. Users are advised to upgrade their dependencies and can use the platform's Security Scanner and 'Fix with Agent' feature to identify and resolve the vulnerability.