vinext 0.1.0 → 0.1.1

package/dist/build/assets-ignore.d.ts

@@ -0,0 +1,32 @@
+//#region src/build/assets-ignore.d.ts
+/**
+ * Build metadata that must never be served by the Cloudflare ASSETS binding.
+ *
+ * On Cloudflare Workers the ASSETS binding serves any uploaded file whose path
+ * matches the request BEFORE the Worker runs, so anything written into the
+ * client output directory (`dist/client`) is publicly fetchable unless excluded.
+ * Vite writes its build/SSR manifests under `dist/client/.vite/` (enabled for
+ * Cloudflare builds so the worker entry can compute lazy chunks), which would
+ * otherwise expose the full source-file → chunk mapping — including the paths of
+ * routes that are never linked from the UI.
+ *
+ * The Node production server already blocks `/.vite/` explicitly
+ * (see `server/static-file-cache.ts`); `.assetsignore` is the equivalent guard
+ * for the Cloudflare deployment target. wrangler matches `.assetsignore`
+ * patterns with `.gitignore` semantics (via the `ignore` package), so the bare
+ * `.vite` entry excludes the directory and everything beneath it.
+ */
+declare const DEFAULT_VINEXT_ASSET_IGNORE_PATTERNS: readonly string[];
+/**
+ * Ensure a `.assetsignore` in `clientDir` contains every pattern in `patterns`.
+ *
+ * Any pre-existing (user-authored) content is preserved verbatim and only the
+ * missing patterns are appended, so the result is idempotent across rebuilds
+ * and never clobbers a `.assetsignore` the developer wrote themselves.
+ *
+ * @returns `true` when the file was created or modified, `false` when it already
+ *          covered every requested pattern.
+ */
+declare function ensureAssetsIgnore(clientDir: string, patterns?: readonly string[]): boolean;
+//#endregion
+export { DEFAULT_VINEXT_ASSET_IGNORE_PATTERNS, ensureAssetsIgnore };

package/dist/build/assets-ignore.js

@@ -0,0 +1,48 @@
+import fs from "node:fs";
+import path from "node:path";
+//#region src/build/assets-ignore.ts
+/**
+* Build metadata that must never be served by the Cloudflare ASSETS binding.
+*
+* On Cloudflare Workers the ASSETS binding serves any uploaded file whose path
+* matches the request BEFORE the Worker runs, so anything written into the
+* client output directory (`dist/client`) is publicly fetchable unless excluded.
+* Vite writes its build/SSR manifests under `dist/client/.vite/` (enabled for
+* Cloudflare builds so the worker entry can compute lazy chunks), which would
+* otherwise expose the full source-file → chunk mapping — including the paths of
+* routes that are never linked from the UI.
+*
+* The Node production server already blocks `/.vite/` explicitly
+* (see `server/static-file-cache.ts`); `.assetsignore` is the equivalent guard
+* for the Cloudflare deployment target. wrangler matches `.assetsignore`
+* patterns with `.gitignore` semantics (via the `ignore` package), so the bare
+* `.vite` entry excludes the directory and everything beneath it.
+*/
+const DEFAULT_VINEXT_ASSET_IGNORE_PATTERNS = [".vite"];
+/** wrangler reads asset-exclusion patterns from this file in the assets dir. */
+const ASSETS_IGNORE_FILENAME = ".assetsignore";
+const GENERATED_HEADER = "# Keep build metadata out of the deployed asset bundle (generated by vinext)";
+/**
+* Ensure a `.assetsignore` in `clientDir` contains every pattern in `patterns`.
+*
+* Any pre-existing (user-authored) content is preserved verbatim and only the
+* missing patterns are appended, so the result is idempotent across rebuilds
+* and never clobbers a `.assetsignore` the developer wrote themselves.
+*
+* @returns `true` when the file was created or modified, `false` when it already
+*          covered every requested pattern.
+*/
+function ensureAssetsIgnore(clientDir, patterns = DEFAULT_VINEXT_ASSET_IGNORE_PATTERNS) {
+	const assetsIgnorePath = path.join(clientDir, ASSETS_IGNORE_FILENAME);
+	const existing = fs.existsSync(assetsIgnorePath) ? fs.readFileSync(assetsIgnorePath, "utf-8") : null;
+	const present = new Set((existing ?? "").split(/\r?\n/).map((line) => line.trim()).filter(Boolean));
+	const missing = patterns.filter((pattern) => !present.has(pattern));
+	if (missing.length === 0) return false;
+	const lines = existing && existing.trim().length > 0 ? [existing.replace(/\s*$/, "")] : [GENERATED_HEADER];
+	lines.push(...missing, "");
+	fs.mkdirSync(clientDir, { recursive: true });
+	fs.writeFileSync(assetsIgnorePath, lines.join("\n"));
+	return true;
+}
+//#endregion
+export { DEFAULT_VINEXT_ASSET_IGNORE_PATTERNS, ensureAssetsIgnore };

package/dist/build/client-build-config.d.ts

@@ -62,6 +62,32 @@ declare function createClientCodeSplittingConfig(clientManualChunks: (id: string
     name(moduleId: string): string | null;
   }[];
 };
+/**
+ * Regex matching any {@link FRAMEWORK_PACKAGES} package inside `node_modules`.
+ * Derived from the package list so the regex and {@link isRscFrameworkModule}
+ * predicate can't drift.
+ */
+declare const RSC_FRAMEWORK_CHUNK_TEST: RegExp;
+declare function isRscFrameworkModule(id: string): boolean;
+/**
+ * Output config that isolates React (and the RSC flight runtime) into a
+ * dedicated "framework" chunk in the RSC server build. Returns the bundler-
+ * appropriate shape: rolldown's `codeSplitting` for Vite 8+, Rollup's
+ * `manualChunks` for Vite 7. See {@link RSC_FRAMEWORK_CHUNK_TEST} for the
+ * motivation (issue #1549).
+ */
+declare function createRscFrameworkChunkOutputConfig(viteMajorVersion: number): {
+  codeSplitting: {
+    groups: {
+      name: string;
+      test: RegExp;
+    }[];
+  };
+  manualChunks?: undefined;
+} | {
+  manualChunks(id: string): string | undefined;
+  codeSplitting?: undefined;
+};
 /**
  * Rollup treeshake configuration for production client builds.
  *
@@ -129,4 +155,4 @@ type VinextBuildConfigWithLegacy = VinextBuildConfig & {
 declare function getBuildBundlerOptions(build: UserConfig["build"] | undefined): VinextBuildBundlerOptions | undefined;
 declare function withBuildBundlerOptions(viteMajorVersion: number, bundlerOptions: VinextBuildBundlerOptions): Partial<VinextBuildConfigWithLegacy>;
 //#endregion
-export { clientTreeshakeConfig, createClientAssetFileNames, createClientCodeSplittingConfig, createClientManualChunks, createClientOutputConfig, getBuildBundlerOptions, getClientTreeshakeConfigForVite, withBuildBundlerOptions };
+export { RSC_FRAMEWORK_CHUNK_TEST, clientTreeshakeConfig, createClientAssetFileNames, createClientCodeSplittingConfig, createClientManualChunks, createClientOutputConfig, createRscFrameworkChunkOutputConfig, getBuildBundlerOptions, getClientTreeshakeConfigForVite, isRscFrameworkModule, withBuildBundlerOptions };

package/dist/build/client-build-config.js

@@ -105,6 +105,63 @@ function createClientCodeSplittingConfig(clientManualChunks) {
 	};
 }
 /**
+* Matches React framework packages (and the RSC flight runtime) inside
+* `node_modules`. Used to split them into a dedicated "framework" chunk in the
+* RSC server build.
+*
+* Why the RSC build needs this: without an explicit framework chunk, the
+* bundler colocates React into whichever chunk first reaches it — typically the
+* RSC entry chunk, which also carries the root layout's CSS. Modules that only
+* import React for runtime helpers (notably `app/global-not-found.tsx`, which
+* replaces the root layout for route-miss 404s) then import that entry chunk
+* and inherit the root layout's CSS in their `serverResources` metadata. The
+* 404 document ends up linking the layout's stylesheet last, so the layout's
+* rules win the cascade over global-not-found's — the bug tracked in
+* https://github.com/cloudflare/vinext/issues/1549.
+*
+* Splitting React into its own (CSS-free) chunk means global-not-found imports
+* the framework chunk instead of the layout-bearing entry chunk, so it no
+* longer inherits the root layout's CSS. The match list mirrors the client
+* build's `framework` chunk, plus `react-server-dom-webpack` for the RSC flight
+* runtime that the server environment bundles.
+*
+* Uses `[\\/]` rather than `/` for the path separator so it matches on Windows
+* too, per the rolldown `codeSplitting` docs.
+*/
+const FRAMEWORK_PACKAGES = [
+	"react",
+	"react-dom",
+	"scheduler",
+	"react-server-dom-webpack"
+];
+/**
+* Regex matching any {@link FRAMEWORK_PACKAGES} package inside `node_modules`.
+* Derived from the package list so the regex and {@link isRscFrameworkModule}
+* predicate can't drift.
+*/
+const RSC_FRAMEWORK_CHUNK_TEST = new RegExp(`[\\\\/]node_modules[\\\\/](${FRAMEWORK_PACKAGES.join("|")})[\\\\/]`);
+function isRscFrameworkModule(id) {
+	if (!id.includes("node_modules")) return false;
+	const pkg = getPackageName(id);
+	return pkg !== null && FRAMEWORK_PACKAGES.includes(pkg);
+}
+/**
+* Output config that isolates React (and the RSC flight runtime) into a
+* dedicated "framework" chunk in the RSC server build. Returns the bundler-
+* appropriate shape: rolldown's `codeSplitting` for Vite 8+, Rollup's
+* `manualChunks` for Vite 7. See {@link RSC_FRAMEWORK_CHUNK_TEST} for the
+* motivation (issue #1549).
+*/
+function createRscFrameworkChunkOutputConfig(viteMajorVersion) {
+	if (viteMajorVersion >= 8) return { codeSplitting: { groups: [{
+		name: "framework",
+		test: RSC_FRAMEWORK_CHUNK_TEST
+	}] } };
+	return { manualChunks(id) {
+		return isRscFrameworkModule(id) ? "framework" : void 0;
+	} };
+}
+/**
 * Rollup treeshake configuration for production client builds.
 *
 * Uses the 'recommended' preset as a safe base, then overrides
@@ -171,4 +228,4 @@ function withBuildBundlerOptions(viteMajorVersion, bundlerOptions) {
 	return viteMajorVersion >= 8 ? { rolldownOptions: bundlerOptions } : { rollupOptions: bundlerOptions };
 }
 //#endregion
-export { clientTreeshakeConfig, createClientAssetFileNames, createClientCodeSplittingConfig, createClientManualChunks, createClientOutputConfig, getBuildBundlerOptions, getClientTreeshakeConfigForVite, withBuildBundlerOptions };
+export { RSC_FRAMEWORK_CHUNK_TEST, clientTreeshakeConfig, createClientAssetFileNames, createClientCodeSplittingConfig, createClientManualChunks, createClientOutputConfig, createRscFrameworkChunkOutputConfig, getBuildBundlerOptions, getClientTreeshakeConfigForVite, isRscFrameworkModule, withBuildBundlerOptions };

package/dist/cli.js

@@ -18,6 +18,7 @@ import { createRequire } from "node:module";
 import fs from "node:fs";
 import path from "node:path";
 import { pathToFileURL } from "node:url";
+import { randomBytes } from "node:crypto";
 import { execFileSync } from "node:child_process";
 //#region src/cli.ts
 /**
@@ -263,6 +264,7 @@ async function buildApp() {
 	const resolvedNextConfig = await resolveNextConfig(await loadNextConfig(root, PHASE_PRODUCTION_BUILD), root);
 	process.env.__VINEXT_SHARED_BUILD_ID = resolvedNextConfig.buildId;
 	process.env.__VINEXT_SHARED_RSC_COMPATIBILITY_ID = createRscCompatibilityId(resolvedNextConfig);
+	if (!process.env.__VINEXT_SHARED_REVALIDATE_SECRET) process.env.__VINEXT_SHARED_REVALIDATE_SECRET = randomBytes(32).toString("hex");
 	const outputMode = resolvedNextConfig.output;
 	const distDir = path.resolve(root, "dist");
 	if (outputMode === "standalone") {

package/dist/client/navigation-runtime.d.ts

@@ -26,6 +26,14 @@ type NavigationRuntimeFunctions = {
   commitHashNavigation?: (href: string, historyUpdateMode: NavigationRuntimeHistoryUpdateMode, scroll: boolean) => void;
   navigateExternal?: (href: string, historyUpdateMode: NavigationRuntimeHistoryUpdateMode) => Promise<void>;
   navigate?: NavigationRuntimeNavigate;
+  /**
+   * Called at the start of every App Router navigation so the <Link> shim can
+   * reset any link that is still showing a `useLinkStatus()` pending state but
+   * is not the one driving this navigation (e.g. a programmatic router.push or
+   * a shallow-routing transition). Registered by shims/link.tsx; decoupled
+   * through the runtime to avoid a circular import with shims/navigation.ts.
+   */
+  notifyLinkNavigationStart?: () => void;
   pingVisibleLinks?: () => void;
 };
 type NavigationRuntimeBootstrap = {

package/dist/client/navigation-runtime.js

@@ -31,7 +31,7 @@ function readRuntimeWindow() {
 }
 function isNavigationRuntimeFunctions(value) {
 	if (!isUnknownRecord(value)) return false;
-	return isOptionalRuntimeFunction(Reflect.get(value, "clearNavigationCaches")) && isOptionalRuntimeFunction(Reflect.get(value, "commitHashNavigation")) && isOptionalRuntimeFunction(Reflect.get(value, "navigateExternal")) && isOptionalRuntimeFunction(Reflect.get(value, "navigate")) && isOptionalRuntimeFunction(Reflect.get(value, "pingVisibleLinks"));
+	return isOptionalRuntimeFunction(Reflect.get(value, "clearNavigationCaches")) && isOptionalRuntimeFunction(Reflect.get(value, "commitHashNavigation")) && isOptionalRuntimeFunction(Reflect.get(value, "navigateExternal")) && isOptionalRuntimeFunction(Reflect.get(value, "navigate")) && isOptionalRuntimeFunction(Reflect.get(value, "notifyLinkNavigationStart")) && isOptionalRuntimeFunction(Reflect.get(value, "pingVisibleLinks"));
 }
 function isNavigationRuntimeRscChunk(value) {
 	if (typeof value === "string") return true;

package/dist/client/vinext-next-data.d.ts

@@ -10,7 +10,8 @@ type VinextNextData = {
   /** vinext-specific additions (not part of Next.js upstream). */__vinext?: {
     /** Absolute URL of the page module for dynamic import. */pageModuleUrl?: string; /** Absolute URL of the `_app` module for dynamic import. */
     appModuleUrl?: string; /** True when the Pages Router server has middleware/proxy configured. */
-    hasMiddleware?: boolean;
+    hasMiddleware?: boolean; /** True when build-time rewrites can affect the initial Pages Router ready state. */
+    hasRewrites?: boolean;
   };
 } & NEXT_DATA;
 type BrowserVinextNextData = NonNullable<Window["__NEXT_DATA__"]> & VinextNextData;

package/dist/config/config-matchers.d.ts

@@ -159,6 +159,25 @@ declare function sanitizeDestination(dest: string): string;
  * per RFC 3986, plus protocol-relative URLs (//).
  */
 declare function isExternalUrl(url: string): boolean;
+/**
+ * Merge the original request's query params into a config-redirect
+ * destination, preserving them on the resulting `Location`.
+ *
+ * Next.js carries the original request query across config redirects
+ * (`prepareDestination({ query: parsedUrl.query })` →
+ * `stringifyQuery(...)` in resolve-routes.ts). This matters for App Router
+ * RSC client navigations: the cache-busting `_rsc` query must survive the
+ * redirect so the browser's auto-followed request to the destination is
+ * still treated as an RSC fetch. Dropping it breaks RSC fetch semantics
+ * (issue #1529).
+ *
+ * Destination query params win — a request param is only carried over when
+ * the destination does not already specify that key. Mirrors the merge
+ * semantics in `proxyExternalRequest`. External destinations are returned
+ * untouched (a config redirect to another origin should not leak the
+ * original request's query).
+ */
+declare function preserveRedirectDestinationQuery(destination: string, requestSearch: string): string;
 /**
  * Proxy an incoming request to an external URL and return the upstream response.
  *
@@ -218,4 +237,4 @@ declare function applyLocaleToRoutes<T extends NextRedirect | NextRewrite>(route
   trailingSlash?: boolean;
 }): T[];
 //#endregion
-export { BasePathMatchState, RequestContext, applyLocaleToRoutes, applyMiddlewareRequestHeaders, checkHasConditions, escapeHeaderSource, isExternalUrl, isSafeRegex, matchConfigPattern, matchHeaders, matchRedirect, matchRewrite, normalizeHost, parseCookies, proxyExternalRequest, requestContextFromRequest, safeRegExp, sanitizeDestination };
+export { BasePathMatchState, RequestContext, applyLocaleToRoutes, applyMiddlewareRequestHeaders, checkHasConditions, escapeHeaderSource, isExternalUrl, isSafeRegex, matchConfigPattern, matchHeaders, matchRedirect, matchRewrite, normalizeHost, parseCookies, preserveRedirectDestinationQuery, proxyExternalRequest, requestContextFromRequest, safeRegExp, sanitizeDestination };

package/dist/config/config-matchers.js

@@ -764,6 +764,40 @@ function isExternalUrl(url) {
 	return /^[a-z][a-z0-9+.-]*:/i.test(url) || url.startsWith("//");
 }
 /**
+* Merge the original request's query params into a config-redirect
+* destination, preserving them on the resulting `Location`.
+*
+* Next.js carries the original request query across config redirects
+* (`prepareDestination({ query: parsedUrl.query })` →
+* `stringifyQuery(...)` in resolve-routes.ts). This matters for App Router
+* RSC client navigations: the cache-busting `_rsc` query must survive the
+* redirect so the browser's auto-followed request to the destination is
+* still treated as an RSC fetch. Dropping it breaks RSC fetch semantics
+* (issue #1529).
+*
+* Destination query params win — a request param is only carried over when
+* the destination does not already specify that key. Mirrors the merge
+* semantics in `proxyExternalRequest`. External destinations are returned
+* untouched (a config redirect to another origin should not leak the
+* original request's query).
+*/
+function preserveRedirectDestinationQuery(destination, requestSearch) {
+	if (requestSearch === "" || requestSearch === "?" || isExternalUrl(destination)) return destination;
+	const requestParams = new URLSearchParams(requestSearch);
+	if ([...requestParams.keys()].length === 0) return destination;
+	const hashIndex = destination.indexOf("#");
+	const hash = hashIndex === -1 ? "" : destination.slice(hashIndex);
+	const beforeHash = hashIndex === -1 ? destination : destination.slice(0, hashIndex);
+	const queryIndex = beforeHash.indexOf("?");
+	const pathPart = queryIndex === -1 ? beforeHash : beforeHash.slice(0, queryIndex);
+	const destQuery = queryIndex === -1 ? "" : beforeHash.slice(queryIndex + 1);
+	const merged = new URLSearchParams(destQuery);
+	const destKeys = new Set(merged.keys());
+	for (const [key, value] of requestParams) if (!destKeys.has(key)) merged.append(key, value);
+	const mergedQuery = merged.toString();
+	return mergedQuery === "" ? `${pathPart}${hash}` : `${pathPart}?${mergedQuery}${hash}`;
+}
+/**
 * Proxy an incoming request to an external URL and return the upstream response.
 *
 * Used for external rewrites (e.g. `/ph/:path*` → `https://us.i.posthog.com/:path*`).
@@ -925,4 +959,4 @@ function applyLocaleToRoutes(routes, i18n, type, options = {}) {
 	return out;
 }
 //#endregion
-export { applyLocaleToRoutes, applyMiddlewareRequestHeaders, checkHasConditions, escapeHeaderSource, isExternalUrl, isSafeRegex, matchConfigPattern, matchHeaders, matchRedirect, matchRewrite, normalizeHost, parseCookies, proxyExternalRequest, requestContextFromRequest, safeRegExp, sanitizeDestination };
+export { applyLocaleToRoutes, applyMiddlewareRequestHeaders, checkHasConditions, escapeHeaderSource, isExternalUrl, isSafeRegex, matchConfigPattern, matchHeaders, matchRedirect, matchRewrite, normalizeHost, parseCookies, preserveRedirectDestinationQuery, proxyExternalRequest, requestContextFromRequest, safeRegExp, sanitizeDestination };

package/dist/config/next-config.d.ts

@@ -132,7 +132,14 @@ type NextConfig = {
    */
   instrumentationClientInject?: string[]; /** Extra origins allowed to access the dev server. */
   allowedDevOrigins?: string[]; /** Maximum age in seconds for stale ISR entries before blocking regeneration. */
-  expireTime?: number; /** User agents that require blocking metadata in the initial head. */
+  expireTime?: number;
+  /**
+   * Maximum total length (in characters) of the preload `Link` header emitted
+   * during App Router SSR. React drops whole entries once the limit is
+   * exceeded; `0` disables emission entirely. Defaults to 6000.
+   * @see https://nextjs.org/docs/app/api-reference/config/next-config-js/reactMaxHeadersLength
+   */
+  reactMaxHeadersLength?: number; /** User agents that require blocking metadata in the initial head. */
   htmlLimitedBots?: RegExp | string;
   /**
    * Enable Cache Components (Next.js 16).
@@ -244,8 +251,14 @@ type ResolvedNextConfig = {
   serverActionsAllowedOrigins: string[]; /** Packages whose barrel imports should be optimized (from experimental.optimizePackageImports). */
   optimizePackageImports: string[]; /** Inline app CSS into production HTML (from experimental.inlineCss). */
   inlineCss: boolean; /** Parsed body size limit for server actions in bytes (from experimental.serverActions.bodySizeLimit). Defaults to 1MB. */
-  serverActionsBodySizeLimit: number; /** Route-level expire fallback in seconds for ISR entries with numeric revalidate. */
-  expireTime: number; /** Serialized htmlLimitedBots regexp source from next.config. */
+  serverActionsBodySizeLimit: number; /** Verbatim body size limit config value (e.g. "2mb") for the "Body exceeded {limit} limit" error. Defaults to "1 MB". */
+  serverActionsBodySizeLimitLabel: string; /** Route-level expire fallback in seconds for ISR entries with numeric revalidate. */
+  expireTime: number;
+  /**
+   * Maximum total length (in characters) of the preload `Link` header emitted
+   * during App Router SSR. `0` disables emission. Defaults to 6000.
+   */
+  reactMaxHeadersLength: number; /** Serialized htmlLimitedBots regexp source from next.config. */
   htmlLimitedBots: string | undefined;
   /**
    * Packages that should be treated as server-external (not bundled by Vite).

package/dist/config/next-config.js

@@ -72,6 +72,12 @@ const CONFIG_FILES = [
 ];
 const DEFAULT_EXPIRE_TIME = 31536e3;
 /**
+* Default cap for the App Router preload `Link` header length, matching the
+* Next.js `defaultConfig.reactMaxHeadersLength`.
+* @see https://nextjs.org/docs/app/api-reference/config/next-config-js/reactMaxHeadersLength
+*/
+const DEFAULT_REACT_MAX_HEADERS_LENGTH = 6e3;
+/**
 * Check whether an error indicates a CJS module was loaded in an ESM context
 * (i.e. the file uses `require()` which is not available in ESM).
 */
@@ -523,7 +529,9 @@ async function resolveNextConfig(config, root = process.cwd()) {
 			optimizePackageImports: [],
 			inlineCss: false,
 			serverActionsBodySizeLimit: 1 * 1024 * 1024,
+			serverActionsBodySizeLimitLabel: "1 MB",
 			expireTime: DEFAULT_EXPIRE_TIME,
+			reactMaxHeadersLength: DEFAULT_REACT_MAX_HEADERS_LENGTH,
 			htmlLimitedBots: void 0,
 			serverExternalPackages: [],
 			cacheHandler: void 0,
@@ -588,7 +596,9 @@ async function resolveNextConfig(config, root = process.cwd()) {
 	const experimental = readOptionalRecord(config.experimental);
 	const serverActionsConfig = readOptionalRecord(experimental?.serverActions);
 	const serverActionsAllowedOrigins = readStringArray(serverActionsConfig?.allowedOrigins);
-	const serverActionsBodySizeLimit = parseBodySizeLimit(readOptionalBodySizeLimit(serverActionsConfig?.bodySizeLimit));
+	const serverActionsBodySizeLimitConfig = readOptionalBodySizeLimit(serverActionsConfig?.bodySizeLimit);
+	const serverActionsBodySizeLimit = parseBodySizeLimit(serverActionsBodySizeLimitConfig);
+	const serverActionsBodySizeLimitLabel = serverActionsBodySizeLimitConfig === void 0 ? "1 MB" : String(serverActionsBodySizeLimitConfig);
 	const hashSalt = (readOptionalString(experimental?.outputHashSalt) ?? "") + (process.env.NEXT_HASH_SALT ?? "");
 	const htmlLimitedBots = resolveHtmlLimitedBots(config.htmlLimitedBots);
 	const rawOptimize = experimental?.optimizePackageImports;
@@ -658,7 +668,9 @@ async function resolveNextConfig(config, root = process.cwd()) {
 		optimizePackageImports,
 		inlineCss,
 		serverActionsBodySizeLimit,
+		serverActionsBodySizeLimitLabel,
 		expireTime: typeof config.expireTime === "number" ? config.expireTime : DEFAULT_EXPIRE_TIME,
+		reactMaxHeadersLength: typeof config.reactMaxHeadersLength === "number" ? config.reactMaxHeadersLength : DEFAULT_REACT_MAX_HEADERS_LENGTH,
 		htmlLimitedBots,
 		serverExternalPackages,
 		cacheHandler,
@@ -680,12 +692,28 @@ async function resolveNextConfig(config, root = process.cwd()) {
 	if (resolved.basePath !== "" && resolved.basePath !== "/" && resolved.assetPrefix === "") resolved.assetPrefix = resolved.basePath;
 	return resolved;
 }
+/**
+* Whether an alias target is a relative filesystem path (`./foo`, `../foo`,
+* or a bare `.`/`..`) that should be resolved against the project root.
+*
+* Both Next.js Turbopack `resolveAlias` and webpack `resolve.alias` accept two
+* kinds of values: relative/absolute file paths AND bare package specifiers
+* (e.g. `react`, `preact/compat`, `@scope/pkg`). Bare specifiers must be left
+* verbatim so Vite/Rolldown re-resolves them through node_modules — resolving
+* them against `root` mangles them into bogus `<root>/react` paths and breaks
+* the build with "No such file or directory". See cloudflare/vinext#1507.
+*/
+function isRelativeAliasTarget(value) {
+	return value === "." || value === ".." || value.startsWith("./") || value.startsWith("../");
+}
 function normalizeAliasEntries(aliases, root) {
 	if (!aliases) return {};
 	const normalized = {};
 	for (const [key, value] of Object.entries(aliases)) {
 		if (typeof value !== "string") continue;
-		normalized[key] = path.isAbsolute(value) ? value : path.resolve(root, value);
+		if (path.isAbsolute(value)) normalized[key] = value;
+		else if (isRelativeAliasTarget(value)) normalized[key] = path.resolve(root, value);
+		else normalized[key] = value;
 	}
 	return normalized;
 }