Vercel Sandbox 正式啟用:安全執行不受信任的程式碼與 AI 生成腳本★ 80
Vercel Changelog135 days agoReleaseVercel officially announced that its secure execution environment, "Vercel Sandbox," has reached General Availability (GA). As generative AI and AI Agents…
Vercel 發布 CVE-2025-59471 與 CVE-2025-59472 安全漏洞摘要公告★ 75
Vercel Changelog139 days agoIncidentVercel officially published a summary advisory on January 26, 2026 covering two security vulnerabilities: CVE-2025-59471 and CVE-2025-59472. While the detailed…
Vercel 發布 CVE-2026-23864 安全漏洞說明公告★ 75
Vercel Changelog139 days agoIncidentVercel officially published a summary report for security vulnerability **CVE-2026-23864** on January 26, 2026. This is an important security advisory…
Import AI 441:我的 AI Agent 開始工作了,你的呢?以及如何用「毒泉」污染 AI 系統★ 75
Import AI (Jack Clark)146 days agoCommentary### The Age of Practical AI Agents Has Arrived In this edition of his column, Jack Clark shares his personal breakthrough in using AI Agents. Previously, many…
Vercel 推出團隊級「部署保護」預設設定,簡化多專案安全管理
Vercel Changelog152 days agoReleaseVercel recently announced an important update for team management and security: administrators can now configure "Team-wide defaults for Deployment…
Vercel 自動化保護繞過功能(Protection Bypass for Automation)現已支援多個金鑰(Multiple Secrets)
Vercel Changelog152 days agoReleaseVercel has recently made an important upgrade to its Deployment Protection feature. Previously, to prevent unauthorized users from accessing test or preview…
Vercel Secure Compute 正式開放自助服務 (Self-Serve)
Vercel Changelog158 days agoReleaseVercel recently announced that its "Secure Compute" feature, designed for enterprise users, has officially transitioned to a self-serve model. Previously, if…
Vercel 推出百萬美元黑客挑戰賽:懸賞突破「React2Shell」沙箱防護★ 75
Vercel Changelog177 days agoReleaseVercel officially announced the launch of a striking security challenge — the "React2Shell" $1 Million Hacker Challenge. This initiative invites the world's…
Vercel 執行階段日誌(Runtime Logs)現已支援顯示 Referer 來源網址
Vercel Changelog184 days agoReleaseVercel has published an official update announcing that HTTP `Referer` header information has been formally added to the Runtime Logs of its platform services…
React Server Components 安全更新:修復 DoS 阻斷服務與原始碼洩露漏洞★ 85
Vercel Changelog185 days agoReleaseVercel has officially published an important security update announcement for React Server Components (RSC), aimed at addressing security vulnerabilities that…
Vercel 推出自動化 React2Shell 漏洞修復功能★ 85
Vercel Changelog188 days agoReleaseVercel has officially announced that fully automated remediation and protection against the "React2Shell" security vulnerability is now available. React2Shell…
Vercel 推出「統一安全行動儀表板」,一站式管理專案安全威脅
Vercel Changelog188 days agoReleaseVercel has announced the launch of a new "Unified Security Actions Dashboard," designed to provide development teams and enterprise users with a centralized…
React2Shell 安全公告:Vercel 發布防範指南與安全資源★ 85
Vercel Changelog191 days agoIncidentVercel has recently published an official Security Bulletin addressing the "React2Shell" security threat, providing a series of practical protective resources…
Vercel 預設將阻擋含有安全漏洞的 Next.js 應用程式進行新部署★ 75
Vercel Changelog191 days agoReleaseVercel has issued an update announcing that, in order to protect the security of the platform and its users, it will by default block new deployments of…
Vercel 發布 CVE-2025-55182 安全漏洞公告
Vercel Changelog193 days agoIncidentVercel has recently published a security vulnerability advisory regarding **CVE-2025-55182**. While the Changelog page has not yet provided detailed…
Vercel 發表「設計即安全」:全新升級的 Firewall 防火牆體驗
Vercel Changelog202 days agoReleaseVercel recently unveiled an overhauled Firewall experience built around the philosophy of "Security through design." As web threats grow increasingly…
Vercel 發布安全警示:應對 Shai-Hulud 2.0 供應鏈攻擊威脅★ 75
Vercel Changelog202 days agoIncidentVercel has officially published a security advisory regarding the "Shai-Hulud 2.0 Supply Chain Compromise." "Shai-Hulud" refers to malicious supply chain…
Vercel 新增安全功能:現可要求部署必須使用經密碼學驗證的 Commit
Vercel Changelog202 days agoReleaseIn modern software development workflows, a Git commit's author identity is surprisingly easy to forge — a developer simply needs to change the email in their…
Vercel Firewall 推出全新改進的分析體驗,提升安全流量監控效率
Vercel Changelog206 days agoReleaseVercel has recently announced a new and improved analytics experience update for its Web Application Firewall (Vercel Firewall). This improvement is designed…
Nous Research 如何利用 Vercel BotID 大規模阻擋自動化惡意攻擊
Vercel Changelog219 days agoBusiness### Background and Challenge: Automated Abuse Targeting AI Services Nous Research, a leading open-source AI research organization, has released many popular…
Vercel 正式支援後量子密碼學 (Post-Quantum Cryptography)
Vercel Changelog219 days agoReleaseVercel recently announced that its Edge Network now officially supports Post-Quantum Cryptography (PQC). As quantum computing technology advances rapidly…
CVE-2025-48985:Vercel AI SDK 輸入驗證繞過漏洞安全公告★ 75
Vercel Changelog220 days agoIncidentVercel has officially published a security advisory in its Changelog disclosing a security vulnerability identified as **CVE-2025-48985**, which indicates that…
CVE-2025-52662:Nuxt DevTools 存在 XSS 跨網站指令碼漏洞
Vercel Changelog220 days agoIncident### Vulnerability Overview Vercel recently published a security advisory disclosing a vulnerability identified as **CVE-2025-52662** in Nuxt DevTools, a…
Vercel 限時免費開放 BotID 深度分析功能至 1 月 15 日
Vercel Changelog221 days agoReleaseVercel has announced a limited-time offer in its official Changelog: from now until January 15, 2026, all users can access the "BotID Deep Analysis" feature…
Vercel 支援透過靜態 IP 路由構建流量,提升企業級安全防護
Vercel Changelog222 days agoReleaseVercel recently announced an important security update in its Changelog: support for routing build traffic through static IPs. In the past, when Vercel…
Vercel 推出 BotID 深度分析功能:即時攔截複雜的惡意 Bot 網路★ 75
Vercel Changelog226 days agoReleaseVercel recently announced a major security update, introducing the "BotID Deep Analysis" feature and sharing how the technology successfully intercepted a…
Vercel 取得 TISAX AL2 資訊安全認證,進軍歐洲汽車產業供應鏈
Vercel Changelog228 days agoBusinessVercel has officially announced that it has obtained TISAX (Trusted Information Security Assessment Exchange) Assessment Level 2 (AL2) certification. This is a…
Vercel 取得 TISAX AL2 安全合規認證,擴大服務汽車產業合作夥伴
Vercel Changelog228 days agoBusinessFrontend cloud platform Vercel announced that it has officially obtained TISAX (Trusted Information Security Assessment Exchange) AL2 (Assessment Level 2)…
在 Vercel 防火牆中管理 Next.js Server Actions★ 75
Vercel Changelog233 days agoReleaseNext.js Server Actions are a powerful feature that allows developers to call server-side functions directly from client components, greatly simplifying the…
Google DeepMind 推出 CodeMender:專為程式碼安全設計的 AI Agent★ 82
Google DeepMind Blog233 days agoReleaseGoogle DeepMind has unveiled a new AI Agent called "CodeMender," designed to leverage advanced artificial intelligence to automatically remediate critical…