Vercel Blog
vercel.com/
Introducing the Dubai Vercel region (dxb1)
Dubai (dxb1) is now part of Vercel’s global edge network, improving latency for users in the Middle East, Africa, and Central Asia.
Tray.ai cut build times from a day to minutes with Vercel
Tray.ai cut build times from a full day to just two minutes after migrating to Vercel. By consolidating infrastructure and updating their tech stack, they now deliver over a million monthly page views with a faster, more resilient site.
Improved unhandled Node.js errors in Fluid compute
Fluid compute now gracefully handles Node.js uncaught exceptions and unhandled rejections to provide better isolation between requests.
Improved team overview page
The Vercel team overview now sorts by your activity, can be filtered by repository, and shows a window into your usage.
Building efficient MCP servers
MCP is becoming the standard for building AI model integrations. See how you can use Vercel's open-source MCP adapter to quickly build your own MCP server, like the teams at Zapier, Composio, and Solana.
Designing and building the Vercel Ship conference platform
Here's how we designed and built our Vercel Ship conference platform. We generated 15,000+ images and videos with tools like Flux, Veo 2, Runway, and Ideogram. Then, we moved to v0 for prototyping. See our iterations, examples, tech stack, and more.
Filter runtime logs for fatal function errors
You can now filter your runtime logs to identify fatal function errors, such as Node.js crashes, in the Vercel Logs UI.
How we’re adapting SEO for LLMs and AI search
AI is changing how content gets discovered. Now, SEO ranking ≠ LLM visibility. No one has all the answers, but here's how we're adapting our approach to SEO for LLMs and AI search.
Observability added to AI Gateway alpha
Vercel Observability now includes a dedicated AI section to surface metrics related to the AI Gateway.
Claude Code and Cursor Agent no longer require a team seat
Claude Code and Cursor Agent can now trigger builds on Vercel without a team seat, as a part of our bot detection policies.
Bot Protection is now generally available
Vercel's Bot Protection managed ruleset allows users to mitigate unwanted bot activity on their projects in a single click
Pre-generate SSL certs, now in the Domains dashboard
The Domains Dashboard now enables zero-downtime migration by allowing SSL certificates to be pre-provisioned before migrating domains.
The no-nonsense approach to AI agent development
Learn how to build reliable, domain-specific AI agents by simulating tasks manually, structuring logic with code, and optimizing with real-world feedback. A clear, hands-on approach to practical automation.
New firewall challenge metrics now available
You can now monitor and query for challenge outcomes with two new metrics, available in the Firewall and Observability dashboards.
Introducing the v0 composite model family
Learn how v0's composite AI models combine RAG, frontier LLMs, and AutoFix to build accurate, up-to-date web app code with fewer errors and faster output.
Fluid compute now supports ISR background and on-demand revalidation
Fluid compute now supports both background and on-demand revalidations across all Vercel projects. This update brings the same performance and efficiency improvements to on-demand cache updates, with no configuration changes required.
Faster login flow and new Google Sign-in support
We’ve improved the login experience with a new design and support for Google sign-in, including Google One Tap. Signing in with Google is now a single-click experience.
Fluid compute: Evolving serverless for AI workloads
Fluid, our newly announced compute model, eliminates wasted compute by maximizing resource efficiency. Instead of launching a new function for every request, it intelligently reuses available capacity, ensuring that compute isn’t sitting idle.
CVE-2025-48068
A low-severity vulnerability in the Next.js dev server has been addressed. It affects versions 13.0.0 through 14.2.29, and 15.0.0 through 15.2.1 when using the App Router and involves Cross-site WebSocket hijacking (CSWSH) to perform the exploit.
AI query prompting now available in Observability Plus
AI query prompting is now available in Observability Plus, allowing users to write or edit log queries using natural language. Generate shareable, bookmarkable queries without writing syntax.
Faster CDN proxying to external origins
Vercel’s upgraded CDN connection pooling speeds up proxying to external backends by up to 60%, cutting latency for both low-traffic and high-traffic apps.
Middleware insights now available in Vercel Observability
The Vercel Observability dashboard now includes a dedicated view for middleware, showing invocation counts and performance metrics.
Rate limiting now available on Hobby, with higher included usage on Pro
The first 1,000,000 allowed rate limit requests per month are now included. Hobby teams also get 1 free rate limit rule per project, up to the same included allotment.
Vercel security roundup: improved bot defenses, DoS mitigations, and insights
Since February, Vercel blocked over 148 billion attacks from 108 million IPs. This roundup highlights improvements to bot protection, DoS mitigation, and firewall tooling to help teams build securely by default.
External API caching insights now in Observability
External API caching insights. are now available in Observability for external API calls using Vercel Data Cache.
Vercel Blob is now generally available
Vercel Blob is now generally available, bringing high-performance storage integrated with the Vercel application delivery platform.
How Vapi built their MCP server on Vercel
Vapi has used Vercel's MCP Adapter to deploy and host their MCP server on Vercel, leveraging the benefits of Fluid Compute
Vercel Blob is now generally available: Cost-efficient, durable storage
Vercel Blob is now generally available, providing durable object storage that's integrated with Vercel's application delivery network.
Introducing the AI Gateway
With the AI Gateway, build with any model instantly. No API keys, no configuration, no vendor lock-in.
Vercel Blob insights now available in Observability
The Observability dashboard now includes a dedicated tab for Vercel Blob, which provides visibility into how Blob stores are used across your applications.
Hypertune joins the Vercel Marketplace
Hypertune is now on the Vercel Marketplace—get native feature flags, A/B testing, and dynamic config with one-click setup and unified billing. Type-safe, edge-ready, and built for modern workflows to help you ship faster.
45% faster build initialization
Customers on all plans can now benefit from faster build cache restoration times. We've made architectural improvements to builds to help customers build faster.
How Fern delivers 6M+ monthly views and 80% faster docs with Vercel
Fern used Vercel and Next.js to achieve efficient multi-tenancy, faster development cycles, and 50-80% faster load times
How Consensys rebuilt MetaMask.io with Vercel and Next.js
Learn how Consensys modernized MetaMask.io using Vercel and Next.js—cutting deployment times, improving collaboration across teams, and unlocking dynamic content with serverless architecture.
New one-click AI bot managed ruleset
Protect your content from unauthorized AI crawlers with Vercel's new AI bot managed ruleset, offering one-click protection against known AI bots while automatically updating to catch new crawlers without any maintenance.
Proxied responses now cacheable via CDN-Cache-Control headers
Vercel's CDN now supports CDN-Cache-Control headers for external backends, giving you simple, powerful caching control without any configuration changes.
Resources tab allows instant searching and filtering of functions, middleware, and static assets
The Resources tab is replacing the Functions tab for deployments in the Vercel Dashboard. It displays and allows you to search and filter middleware, static assets, and functions.
Updated v0 pricing
More flexible pricing for v0 that scales with your usage and lets you pay on-demand through credits.
The spring 2025 cohort of Vercel’s Open Source Program
Announcing the spring 2025 cohort of Vercel's Open Source Program. Open source community frameworks, libraries, and tools we rely on every day to build the web,
New quick actions in Observability
Copy, filter, or exclude any value in Observability queries with new one-click actions, making it faster to analyze incoming traffic.
New usage dashboard for Enterprise users
We’ve launched a new usage dashboard for Enterprise teams to analyze Vercel usage and costs with detailed breakdowns and export options.
Up to 80% pricing reduction for Web Analytics
Hobby and Pro teams on Vercel now have higher usage limits on Web Analytics, including reduced costs and smaller billable increments
CDN origin timeout increased to two minutes
Vercel’s CDN proxy read timeout now increased to 120 seconds across all plans, enabling long-running AI workloads and reducing 504 gateway timeout errors. Available immediately at no cost, including Hobby (free) plans.
MCP server support on Vercel
Run MCP servers on with Next.js or Node.js in your Vercel project with 1st class support for Anthropic's MCP SDK
Bot activity and crawler insights now in Observability
Find out which ai crawlers or search engines are scraping your content. Act later on using Vercel Firewall if wanted
Flags Explorer is now generally available
View and override feature flags in your browser with Flags Explorer – now generally available for all customers
Faster builds now available with compute upgrades on paid plans
Enhanced Builds can now be enabled on demand per project for Pro and Enterprise teams. These builds offer double the compute. Customers already using Enhanced Builds are seeing, with no action required, up to 25% reductions in build times.
Introducing the Flags Explorer, first-party integrations, and updates to the Flags SDK
Introducing first-party integrations, the Flags Explorer, and improvements to the Flags SDK to improve feature flag workflow on Vercel.
Join the Vercel AI Accelerator
A six-week program to help you scale your AI company offering over $4M in credits from Vercel, v0, AWS, and leading AI platforms
Track a request's full lifecycle with session tracing
Vercel session tracing is now available on all plans, providing insight into steps Vercel's infrastructure took to serve a request alongside user code spans.
Information disclosure in Flags SDK (CVE-2025-46332)
Vercel discovered and patched an information disclosure vulnerability in the Flags SDK (CVE-2025-46332). Users should upgrade to [email protected].
Serve personalized content faster with Vary support
Vercel now supports the HTTP Vary header, enabling faster delivery of personalized, cached content based on location and language. Improve site performance and reduce compute automatically with Edge Network caching.
How v0 is building SEO-optimized sites by default
Understanding how v0 ensures everything you create is seo-ready by default, without changing how you build
Create custom WAF rules directly from the Vercel Firewall tab
Vercel customers can now create custom WAF rules directly from the chart displayed on the Firewall tab of the Vercel dashboard.
Optionally disable deployment_status webhook events for GitHub Actions
You can now disable webhook events that Vercel sends to GitHub Actions that create many notifications on GitHub pull requests.
iOS developers can now offer commission-free payments on web
The open web wins: A U.S. court ended Apple’s 27% fee on external payments, letting developers link freely and offer better, direct checkout experiences.
Checks API support added for Marketplace integration providers
Vercel Marketplace now supports the Checks API, enabling providers to deliver automated post-deployment tests and surface results directly in the dashboard. Improve developer experience with seamless quality checks and actionable insights
Protection against React Router and Remix vulnerabilities
Security researchers reviewing the Remix web framework have discovered two high-severity vulnerabilities in React Router. Vercel proactively deployed mitigation to the Vercel Firewall and Vercel customers are protected.
Pricing for on-demand concurrent builds reduced by over 50%
Pricing for on-demand concurrent builds has been reduced by more than 50%. Billable intervals have also been lowered from 10 minutes to 1 minute.
Improved experience for managing project domains
We've significantly improved the Project Domains page to provide a faster, cleaner, and more intuitive management experience.
Pro customers can now deploy faster without build queues
On-demand concurrent builds are now available for Pro and Enterprise teams with a new 5-minute slot size for greater flexibility.
Updates to Vercel Toolbar shortcuts
The Vercel Toolbar now lets users set custom keyboard shortcuts to show and hide the Toolbar Menu, and add shortcuts for frequently used tools. The default shortcut to open the Toolbar Menu also changes to avoid conflicts with website Cmd+K menus.
Fluid compute is now the default for new projects
Fluid compute is now enabled by default for all new projects on Vercel, bringing improvements in efficiency, scalability, and cost effectiveness.
Prisma joins the Vercel Marketplace
Prisma Postgres is now available on the Vercel Marketplace as a Database provider—offering serverless performance, global caching, and integrated billing for fullstack and edge apps.
Bot Protection is now in public beta
Vercel's Bot Protection managed ruleset allows users to mitigate unwanted bot activity on their projects in a single click
Node.js Vercel Functions now support request cancellation
Vercel Functions using Node.js can now detect when a request cancellation and stop execution before completion.
Bot Protection: One-click managed ruleset now in public beta
Mitigate unwanted bot traffic by challenging requests from non-browser sources. Now available in public beta and free for all users on all plans.
CVE-2025-32421
A low severity cache poisoning vulnerability was discovered in Next.js. This affects versions 14.2.9 through <15.1.6 as a bypass of the previous CVE-2024-46982.
Becoming an AI engineering company
The question isn’t if AI will transform your business, but how to use it to maintain your competitive edge. Vercel CTO Malte Ubl shows how companies can understand AI’s fundamental shifts, adapt their skills, and integrate AI into their businesses.
Lower pricing for Fast Data Transfer
Lower the price of Fast Data Transfer (FDT) for Vercel regions in Asia Pacific, Latin America, and Africa by up to 50%.
Enhanced Builds now have double the compute
Enterprise customers using Enhanced Build Machines now benefit from 8 of our faster CPUs. This upgrade is available today and has delivered an average 20 percent improvement in build performance across high-volume projects.
Protection against React Router vulnerability CVE-2025-31137
Research in the Remix web framework revealed a vulnerability in React router. Investigations determined that Vercel and customers are unaffected.
Life of a Vercel request: Application-aware routing
Vercel's gateway leverages framework-defined infrastructure to intelligently load balance, protect, and route applications at-scale and with any architecture complexity.
Update on Spain and LALIGA blocks of the internet
A Spanish court has empowered LALIGA to block entire IP addresses tied to unauthorized football streams—causing legitimate websites hosted on Vercel to become inaccessible in Spain.
Vercel Observability is now route-aware for SvelteKit apps
Improved route-level visibility to Vercel Observability for SvelteKit projects using @sveltejs/adapter-vercel v5.7.0. Dynamic segments like /blog/[slug] now appear as individual routes.
Migrating Grep from Create React App to Next.js
We migrated grep.app from Create React App to Next.js. We break down how we combined single-page app speed with React Server Component efficiency. 70% faster First Contentful Paint, 73% quicker network request completion, now searching 1M repos.
Legacy build image is being deprecated on August 1, 2025
The legacy build image will be deprecated on August 1, 2025, alongside the deprecation of Node.js 18.
Grok 3 now available on Vercel Marketplace
Grok 3 is now available on the Vercel Marketplace, allowing users to access xAI's latest large language models directly from their Vercel projects
Introducing Chat SDK
Chat SDK is a free, open-source template, powered by Next.js and the AI SDK, that helps you build chatbot applications.
Automatic mitigation of Google and Bing crawl delay, via Vercel’s Skew Protection
The maximum age for Skew Protection is now extended to 60 days for requests coming from web crawlers such as Googlebot or Bingbot.
Sentry, Checkly, and Dash0 join the Vercel Marketplace
The Observability category on the Vercel Marketplace brings native integrations from Sentry, Checkly, and Dash0, making it easier to monitor, debug, and optimize your applications—all in one place.
Expanding observability on Vercel
The Vercel Marketplace adds new native integrations from Sentry, Checkly, and Dash0. Use the tools you already trust to monitor, measure, and debug your apps with integrated billing, single sign-on, and access to provider dashboards from Vercel.
Trigger GitHub Actions with enriched deployment data from Vercel
You can now use repository_dispatch events in GitHub Actions for your Vercel projects, simplifying how you trigger GitHub Actions workflows in response to Vercel deployments.
Protectd: Evolving Vercel’s always-on denial-of-service mitigations
Protectd is our new real-time security engine that blocks DDoS attacks faster than ever—built to detect, learn from, and stop threats before they reach your app. Now powering sub-second protection across all regions by default.
Llama 4 is now available on Vercel Marketplace
Llama 4 is now available on Vercel Marketplace via Groq to bring bring state-of-the-art AI capabilities like multimodal input to your Vercel projects.
Run and share custom queries in Observability Plus
You can now use the all new querying interface to visualize, analyze and dig deep into your observability data
Vercel Secure Compute now supports multiple environments
Users can now associate each project environment—Production, Preview, and custom—with a distinct Secure Compute network directly from the project settings
Multi-Factor Authentication (MFA) is now available
Multi-Factor Authentication (MFA) is now available. You can now secure your personal account using Multi-Factor Authentication (MFA) with Time-based One-Time Passwords (TOTP)
How PAIGE grew revenue by 22% with Shopify, Next.js, and Vercel
Seeking an improved online experience, PAIGE reimagined their ecommerce strategy by simplifying their headless tech stack—one powered by Shopify, Next.js, and Vercel—that ultimately boosted their revenue by 22% and increased conversion rates by 76%.
CVE-2025-30218
In the process of remediating CVE-2025-29927, we looked at other possible exploits of Middleware. We independently verified this low severity vulnerability at the same time as two further reports from independent researchers.
Attack Challenge Mode now allows verified bots and Vercel cron jobs
Vercel's Attack Challenge Mode blocks attacks while securely allowing verified webhooks, search engines, and analytics tools.
The no-nonsense guide to composable commerce
Composable commerce projects frequently become overly complex, leading to missed objectives and unnecessary costs. At Vercel, we take a no-nonsense approach to composable commerce that's solely focused on business outcomes.
Yarn 2+ dependency caching now supported
Vercel's build cache now supports Yarn 2+ dependencies. Previously, dependencies were only cached for npm, pnpm, and Yarn 1.
Flags SDK 3.2
Flags SDK 3.2 now supports precomputing pattern in SvelteKit, making it possible to use feature flags on static pages without causing layout shift or jank.
Postmortem on Next.js Middleware bypass
Last week, we published CVE-2025-29927 and patched a critical severity vulnerability in Next.js. Here’s our post-incident analysis and next steps.
Protection against Next.js CVE-2025-29927
A security vulnerability in Next.js was responsibly disclosed, which allows malicious actors to bypass authorization in Middleware when targetting the x-middleware-subrequest header.
Flags SDK now supports OpenFeature
The newly released @flags-sdk/openfeature Flags SDK adapter for OpenFeature allows using any Node.js OpenFeature provider with the Flags SDK.
AI SDK 4.2
AI SDK 4.2 introduces MCP clients, reasoning, image generation with language models, message parts, sources, and more
Lockfile-aware deployment skipping for monorepos
Vercel now maps dependencies in your package manager’s lockfile to applications in your monorepo, skipping unaffected projects for monorepos.
xAI joins the Vercel Marketplace
xAI joins the Vercel Marketplace to help users access Grok's large language models directly from their Vercel projects
xAI and Vercel partner to bring zero-friction AI to developers
Vercel partners with xAI to bring Grok models directly to your Vercel projects through the Vercel Marketplace—and soon v0—with no additional signup required. xAI adds a new free tier through Vercel to enable quick prototyping and experimentation.
Vercel Firewall protects against the SAMLStorm vulnerability
Vercel firewall protects customers against node-saml vulnerability SAMLStorm affecting SAML implementations
Groq, fal, and DeepInfra join the Vercel Marketplace
Groq, fal, and DeepInfra now have first-party AI integrations available on the Vercel Marketplace for all users.