InfoQ

Vercel Releases React Best Practices Skill with 40+ Performance Rules for AI Agents

Vercel has launched "react-best-practices," an open-source repository featuring 40+ performance optimization rules for React and Next.js apps. Tailored for AI coding agents yet valuable for developers ...
Bleeping Computer

Hackers exploit critical React Native Metro bug to breach dev systems

Hackers are targeting developers by exploiting the critical vulnerability CVE-2025-11953 in the Metro server for React Native to deliver malicious payloads for Windows and Linux. On Windows, an ...
SecurityWeek

Critical React Native Vulnerability Exploited in the Wild

Albeit mainly considered a theoretical risk, the flaw has been exploited to disable protections and deliver malware. Tracked as CVE-2025-11953 (CVSS score of 9.8) and disclosed in early November, the ...
GitHub

React native CLI Problem

"@babel/core": "^7.25.2", "@babel/preset-env": "^7.25.3", "@babel/runtime": "^7.25.0", "@react-native-community/cli": "15.0.1", "@react-native-community/cli-platform ...
NPR

Native Americans say they're being swept up by ICE

This week the Oglala Sioux Tribe said tribal members were detained by Immigration and Customs Enforcement after raids in Minnesota. AP's Graham Lee Brewer tells us more. Then, President Trump is ...
The New York Times

Climate Change Threatens Way of Life for Native American Tribes in Pacific Northwest

Warming seas and increased flooding threaten a way of life for Native Americans who have called the Pacific Northwest coast their home for generations. Warming seas and increased flooding threaten a ...
Los Angeles Times

Native people refuse to be erased from America’s past, present or future

This is read by an automated voice. Please report any issues or inconsistencies here. President Trump seems determined to transform America into a straight white Christian nation. He filters our ...
CBS News

Dozens of Native Americans report being questioned or detained by ICE

As President Donald Trump's immigration crackdown continues, one community says they've felt unfairly targeted. This year, the Navajo Nation said dozens of Native Americans have been questioned or ...
Microsoft

Defending against the CVE-2025-55182 (React2Shell) vulnerability in React Server Components

CVE-2025-55182 (also referred to as React2Shell and includes CVE-2025-66478, which was merged into it) is a critical pre-authentication remote code execution (RCE) vulnerability affecting React Server ...
TechSpot

Critical vulnerability in React JS framework has a near 100% chance to be exploited

Facepalm: A widely used web technology is affected by a serious security vulnerability that can be exploited with minimal effort to compromise servers. Known as "React2Shell," the flaw may require ...
Bleeping Computer

Critical React, Next.js flaw lets hackers execute code on servers

A maximum severity vulnerability, dubbed 'React2Shell', in the React Server Components (RSC) 'Flight' protocol allows remote code execution without authentication in React and Next.js applications.