React

The React Foundation has officially launched, hosted by the Linux Foundation. Read more here: react.dev/blog/2026/02/2…

Thank you to @infinite_red @OldMissionHQ @arcjet @RenderATL for being React Conf 2025's Silver sponsors!

Thank you to @MuxHQ for being React Conf 2025's Livestream sponsor! Learn more here: mux.com

Thank you for joining React Conf 2025, we hope to see you at the next React Conf!

We found that the fix to address the DoS vulnerability in React Server Components (CVE-2025-55184) was incomplete and does not prevent an attack in a specific case. This is disclosed as CVE-2025-67779. New patches are available now, please update immediately.

These vulnerabilities are present in the patches published last week for React2Shell. Even though they do not allow for Remote Code Execution they are high severity and you should update (again) immediately. react.dev/blog/2025/12/1…

Researchers have found two new vulnerabilities in React Server Components while attempting to exploit the patches last week. These are new issues, separate from the critical CVE last week. The patch for React2Shell remains effective for the Remote Code Execution exploit.