UpgradeIntel — AI-Powered Dependency Changelog Analyzer

89 Dependencies

23 Updates Available

2 Critical

3 Breaking

18 Safe

🔴 Critical — Security Vulnerabilities

axios 1.6.2 → 1.7.9

CVE-2024-39338 ⚠️ 2 files affected

SSRF vulnerability in proxy handling — Attacker-controlled proxy URLs could bypass request validation. Your code uses proxy config in src/api/client.js.

lodash 4.17.20 → 4.17.21

CVE-2021-23337 ✅ No impact detected

Command injection in template() — Arbitrary code execution via template strings. Your codebase doesn't use _.template(), so this is safe to update.

🟡 Breaking Changes — Review Required

@tanstack/react-query 3.39.3 → 5.28.0

Major Version ⚠️ 12 files, 34 usages

TL;DR: Major rewrite with new API. Package renamed from react-query to @tanstack/react-query. Query keys now required to be arrays.

Breaking Changes

RENAMED useQuery signature changed — options now required as object
REMOVED QueryClient.cancelQueries() replaced with queryClient.cancelQueries({ queryKey })
CHANGED Query keys must be arrays: ['todos'] not 'todos'

Affected Files

src/hooks/useUserData.ts 8 usages

src/hooks/useTodos.ts 6 usages

src/components/Dashboard.tsx 5 usages

+ 9 more files

AI Migration Suggestion

Before → After

// Before (v3)
const { data } = useQuery('todos', fetchTodos)

// After (v5)
const { data } = useQuery({
  queryKey: ['todos'],
  queryFn: fetchTodos
})

next 13.5.6 → 14.1.0

Major Version ⚠️ 3 files affected

Node.js 18.17+ required. App Router is now stable. next/image improvements. Your project uses getServerSideProps which still works but is being phased out.

zod 3.21.4 → 3.22.4

Minor Breaking ⚠️ 1 file affected

Stricter email validation. z.string().email() now rejects some edge-case emails. Your validation in src/forms/signup.ts may reject previously-valid inputs.

🟢 Safe Updates — No Breaking Changes

typescript 5.3.2 → 5.4.2 Patch

eslint 8.55.0 → 8.57.0 Minor

prettier 3.1.0 → 3.2.5 Minor

tailwindcss 3.4.0 → 3.4.1 Patch

react-dom 18.2.0 → 18.2.0 Up to date

vitest 1.1.0 → 1.3.1 Minor

date-fns 3.0.0 → 3.3.1 Minor

framer-motion 10.16.16 → 11.0.8 Minor

Breaking Changes

Affected Files

AI Migration Suggestion

Scanning Dependencies...