Next.js Configuration
Audits next.config.js / next.config.ts for deprecated options, performance settings, and security headers.
Next.js configuration drives runtime behavior across the entire app: build performance, output mode, image optimization, security headers, and experimental flags. Misconfigurations are easy to miss but expensive — they affect every page request. This analysis surfaces deprecated options, missing recommended settings, and configuration that conflicts with the detected app architecture.
Severity guide
- info
- Configuration is reasonable; consider tightening based on the suggestion.
- warning
- A misconfiguration will affect performance, security, or build behavior.
- critical
- A misconfiguration is incompatible with the app structure or actively dangerous.
Remediation
Review the flagged option and align with current Next.js best practices.
Verify the option against the Next.js documentation for the deployed version. Remove deprecated options entirely; tighten security-related settings to recommended defaults.