If you believe you have found a security vulnerability in Next.js, we encourage you to let us know right away.
We will investigate all legitimate reports and do our best to quickly fix the problem.
Email responsible.disclosure@vercel.com
to disclose any security vulnerabilities.