[Snyk] Security upgrade next from 14.0.1 to 14.2.35

[Jokacar10]

Snyk has created this PR to fix 12 vulnerabilities in the npm dependencies of this project.

Snyk changed the following file(s):

• package.json

⚠️ Warning

Failed to update the package-lock.json, please update manually before merging.

Vulnerabilities that will be fixed with an upgrade:

	Issue
	Race Condition SNYK-JS-NEXT-10176058
	Missing Origin Validation in WebSockets SNYK-JS-NEXT-10259370
	Missing Source Correlation of Multiple Independent Data SNYK-JS-NEXT-12265451
	Server-side Request Forgery (SSRF) SNYK-JS-NEXT-12299318
	Use of Cache Containing Sensitive Information SNYK-JS-NEXT-12301496
	Deserialization of Untrusted Data SNYK-JS-NEXT-14400636
	Server-Side Request Forgery (SSRF) SNYK-JS-NEXT-6828457
	Acceptance of Extraneous Untrusted Data With Trusted Data SNYK-JS-NEXT-8025427
	Uncontrolled Recursion SNYK-JS-NEXT-8186172
	Missing Authorization SNYK-JS-NEXT-8520073
	Allocation of Resources Without Limits or Throttling SNYK-JS-NEXT-8602067
	Improper Authorization SNYK-JS-NEXT-9508709

---

Important

• Check the changes in this PR to ensure they won't cause issues with your project.
• Max score is 1000. Note that the real score may have changed since the PR was raised.
• This PR was automatically created by Snyk using the credentials of a real user.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report
📜 Customise PR templates
🛠 Adjust project settings
📚 Read about Snyk's upgrade logic

---

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Race Condition
🦉 Server-side Request Forgery (SSRF)
🦉 Deserialization of Untrusted Data
🦉 More lessons are available in Snyk Learn

[vercel]

The latest updates on your projects. Learn more about Vercel for GitHub.

Project	Deployment	Review	Updated (UTC)
bitcoin-dev-project	Error		Dec 31, 2025 4:53am