SaaS security
Security practices, vulnerability updates and authorization guidance.
CVE-2026-23864 - React Server Components DoS Vulnerabilities
Multiple denial of service vulnerabilities discovered in React Server Components. All Achromatic starter kits updated to patched versions.
React DoS & Source Code Exposure - Starter Kits Updated
Two new React Server Components vulnerabilities discovered. All Achromatic starter kits updated to patched versions.
All Starter Kits Upgraded to Next.js 16.0.7 - React2Shell Security Patch
We've upgraded all Achromatic starter kits to Next.js 16.0.7 to address the critical React2Shell vulnerability (CVE-2025-55182). Your projects are now protected against this maximum-severity security flaw.
SaaS Security Best Practices for Next.js Applications
Essential security practices for building secure SaaS applications in Next.js. Covers authentication, authorization, data protection, API security, and common vulnerabilities.
How to Implement Multi-Tenancy in Next.js: A Step-by-Step Guide
A practical guide to implementing multi-tenant architecture in Next.js. Learn database strategies, middleware patterns, and security considerations with working code examples.