A place for developers to talk about building on Farcaster.

/dev

It's super crazy that with a request header from the client, you could bypass the Next Auth middleware, and for so long.

This magnitude of vulnerability from such a popular framework is completely unacceptable.

If you are using Auth Middleware in Next.js patch your next version or manually patch your middleware.

It's super crazy that with a request header from the client, you could bypass the Next Auth middleware, and for so long.

This magnitude of vulnerability from such a popular framework is completely unacceptable.

If you are using Auth Middleware in Next.js patch your next version or manually patch your middleware.

https://www.youtube.com/watch?v=JbF_8g1EXj4