[Snyk] Security upgrade react-router-dom from 6.15.0 to 6.30.3

[louayhouimli]

Snyk has created this PR to fix 3 vulnerabilities in the npm dependencies of this project.

Snyk changed the following file(s):

• package.json
• package-lock.json

Vulnerabilities that will be fixed with an upgrade:

	Issue	Score
	Cross-site Scripting (XSS) SNYK-JS-REMIXRUNROUTER-14908530	646
	Open Redirect SNYK-JS-REACTROUTER-14908286	641
	Open Redirect SNYK-JS-REMIXRUNROUTER-14908287	641

---

Important

• Check the changes in this PR to ensure they won't cause issues with your project.
• Max score is 1000. Note that the real score may have changed since the PR was raised.
• This PR was automatically created by Snyk using the credentials of a real user.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report
📜 Customise PR templates
🛠 Adjust project settings
📚 Read about Snyk's upgrade logic

---

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Open Redirect
🦉 Cross-site Scripting (XSS)

---

Summary by cubic

Upgrade react-router-dom to 6.30.3 to fix high-severity XSS and open redirect risks. Updates lockfile and aligns router dependencies.

• Dependencies
  • react-router-dom 6.15.0 → 6.30.3 (package.json, package-lock.json)
  • Transitive: react-router 6.30.3, @remix-run/router 1.23.2
  • Fixes: SNYK-JS-REMIXRUNROUTER-14908530 (XSS), SNYK-JS-REACTROUTER-14908286 and SNYK-JS-REMIXRUNROUTER-14908287 (open redirect)

^{Written for commit 137311e. Summary will update on new commits.}

[vercel]

The latest updates on your projects. Learn more about Vercel for GitHub.

Project	Deployment	Review	Updated (UTC)
louaydev	Error		Jan 19, 2026 9:03pm

[cubic-dev-ai]

No issues found across 2 files