Changelog

While Agent Runners take care of tasks on your site, you can now play games right in the UI. We’ve brought the same beloved build-time games to the Agent Runner page, so you can flip tiles, plan snake, install other games, or even create your own while your agent runs in the background.

A little delight, now everywhere you wait.

Learn more about the Netlify Entertainment System.

The third-party Prerender.io service for advanced prerendering is now available as an extension for all Netlify customers.

Previously, you needed a Netlify Pro plan or higher to set up Prerender.io with Netlify’s legacy in-app prerendering feature.

Prerender.io offers advanced configuration options and the Prerender.io dashboard. Learn more about the Prerender.io extension from the extension details page.

If you previously set up Prerender.io using Netlify’s legacy in-app prerendering feature, you need to update your configuration to continue using it this year. Learn more about your next steps and how to check if you need to update your configuration.

To check if your project still needs prerendering, see our prerendering needs checker documentation.

Configuration updates required for existing users

If you have a Netlify Pro plan and you set up the Prerender.io service with Netlify’s legacy prerendering feature (most likely before January 6, 2026), you’ll need to update your configuration to continue using it this year.

To check if your project is using Netlify’s legacy in-app prerendering feature, go to Project configuration > Build & deploy > Post processing > Prerendering from your Netlify project dashboard to see if the legacy prerendering feature is enabled.

Updates are required because Prerender.io no longer relies on Netlify’s legacy in-app prerendering feature, which is being deprecated and will stop working later this year.

Follow our migration steps to update your configuration before these key dates:

Learn more about this migration process in this migration post.

You can also reach out to Netlify Support for help.

Google’s Gemini 3 Flash Preview is now available through AI Gateway. You can call this model from Netlify Functions without configuring API keys; the AI Gateway provides the connection to Google for you.

Example usage in a Function:

import { GoogleGenAI } from '@google/genai';

export default async (request: Request, context: Context) => {
  const ai = new GoogleGenAI({});

  const response = await ai.models.generateContent({
    model: 'gemini-3-flash-preview',
    contents: 'How does AI work?'
  });

  return new Response(JSON.stringify({ answer: response.text }), {
    headers: { 'Content-Type': 'application/json' }
  });
};

This model works across any function type and is compatible with other Netlify primitives such as caching and rate limiting, giving you control over request behavior across your site.

See the AI Gateway documentation for details.

OpenAI’s GPT-image-1.5 is now available through AI Gateway. You can call this model from Netlify Functions without configuring API keys; the AI Gateway provides the connection to OpenAI for you.

Example usage in a Function:

import OpenAI from 'openai';
const ai = new OpenAI();

export default async (req, context) => {
    const response = await ai.images.generate({
        model: 'gpt-image-1.5',
        prompt: 'Generate a realistic image of a golden retriever working in an office',
        n: 1,
        size: '1024x1024',
        quality: 'low',
        output_format: 'jpeg',
        output_compression: 80
    });

    const imageBase64 = response.data[0].b64_json;
    const imageBuffer = Uint8Array.from(atob(imageBase64), c => c.charCodeAt(0));

    return new Response(imageBuffer, {
        status: 200,
        headers: {
            'content-type': 'image/jpeg',
            'cache-control': 'no-store'
        }
    });
}

This model works across any function type and is compatible with other Netlify primitives such as caching and rate limiting, giving you control over request behavior across your site.

See the AI Gateway documentation for details.

AI Gateway is now generally available (GA) for all Netlify users. Build AI-powered apps with confidence using our fully managed gateway that handles AI model keys, setup, and monitoring automatically.

For a deeper dive into AI Gateway capabilities, check out our latest blog post.

For a video overview of how the AI Gateway works with a fun demo project, check out our AI Gateway gameshow demo.

For other AI Gateway example projects, check out these videos:

• AI agent generates blog post images
• AI agent summarizes form submissions

Learn more in our AI Gateway documentation.

Availability

To use AI Gateway, you must have a Credit-based plan or an enabled Enterprise plan.

Learn more about pricing for AI features and monitoring their usage.

To request access to the AI Gateway for an Enterprise plan, reach out to your Netlify account manager.

Netlify Observability offers real-time visibility into your project’s production performance and resource usage.

Monitor requests, bandwidth, runtime behavior, functions, and Edge Functions to understand how your web project operates in production, fix errors, and optimize web performance.

Get a deep feature tour from our Observability blog post.

Try Observability

From your project overview, select Logs & metrics > Observability. To expand details for a request, select a request.

Availability

Observability is available for Credit-based plans and Enterprise plans. If you have a Legacy pricing plan, you can get a sneak peek at your observability data by checking out the widget from your Project Overview.

Note that if you have a Credit-based plan or have Observability enabled for an Enterprise plan, then Function Metrics will no longer be available to you as it is replaced by Observability.

If you do not have Observability, then Function Metrics will continue to be available to you.

Learn more in our Function metrics docs.

Other monitoring updates

As part of monitoring updates, we have also updated the names of some of our monitoring features.

Further info

To learn more, check out Observability docs.

The Prerender extension is now generally available (GA) for all Netlify users. The legacy prerendering feature is now deprecated with limited support.

Once set up, this extension automatically serves pre-rendered HTML to crawlers, agents, and preview services, while regular site visitors continue to receive your standard JavaScript application.

Prerendering ensures your app’s content is discoverable to AI agents, SEO crawlers, and preview services, such as for social media previews.

Prerendering is designed for apps that use JavaScript to generate page content instead of serving most or all content in HTML, such as for single-page applications (SPAs) built with frameworks like React, Vue, or Angular.

For a deeper dive on prerendering and the new extension, check out our latest blog post.

Does my project need prerendering?

Not sure if your web project needs prerendering?

Find out using our prerendering checker tool and your project URL.

Set up the Prerender extension

To try out the Prerender extension, install it from the Netlify extensions library.

If you have the legacy prerendering feature enabled, disable it in your site’s settings.

Learn more about setting up this extension from our Prerender extension documentation.

Deprecating the legacy prerendering feature

The legacy built-in prerendering feature is now deprecated and will gradually shut down and stop working.

Here is the deprecation timeline:

Note: Some customers on paid plans have a customized setup in which the legacy feature acted as a proxy to external prerendering vendors. Please reach out to Netlify Support for help on your next options.

Update (2025-12-12 00:41 UTC): The React and Next.js patches initially published on Dec. 11 at 21:10 incompletely addressed the vulnerabilities. A follow-up CVE was issued and follow-up patches have been released by the React and Next.js teams. All versions below have been updated accordingly. If you upgraded during this 3.5-hour window, please upgrade again.

Following last week’s critical vulnerability in React and Next.js, two additional vulnerabilities are being publicly disclosed today:

• CVE-2025-55184: Denial of Service (CVSS 7.5/10, high severity)
  • A malicious actor can send a request that makes the Next.js server hang.
  • On Netlify, this type of request gets interrupted by a timeout after 30–40 seconds. As Next.js on Netlify runs on automatically scaled serverless functions, there is no risk of impact to legitimate requests. However, this can have impacts to your monthly bill due to increased bandwidth and function CPU usage.
• CVE-2025-55183: Leaking Server Functions (CVSS 5.3/10, medium severity)
  • A malicious actor can send a request that leaks the compiled body of a given Server Function/Action.

Impact

In both cases, all Next.js sites using App Router are vulnerable. This includes all v14 releases up to and including 14.2.33, all v15 releases up to and including 15.5.7, all v16 releases up to and including 16.0.8, and v13.4+ if opted into the experimental.serverActions flag. (In the case of CVE-2025-55183, only sites actually using any Server Actions are vulnerable.)

We have collaborated with the React and Next.js teams to roll out mitigations to the Netlify network in advance of public disclosure.

However, as we’ve seen in the past week, malicious actors around the world are constantly working to quickly identify novel ways to exploit newly published vulnerabilities. The best protection is to upgrade.

What should I do?

Upgrade as soon as possible. Both vulnerabilities are patched in all these releases:

• Next.js 14.2.35
• Next.js 15.0.7, 15.1.11, 15.2.8, 15.3.8, 15.4.10, or 15.5.9
• Next.js 16.0.10

As Next.js 13 has been unsupported for over a year, the Next.js team has chosen not to patch it. If your site uses Next.js 13.4+ and has opted in to the experimental.serverActions flag, we strongly recommend upgrading to 14.2.34 or later as soon as possible (note: v14 is also technically unsupported).

To be abundantly clear: if you have upgraded to address last week’s CVE, you must upgrade once again.

Other RSC frameworks

These are React vulnerabilities, in the React Server Functions protocol present in all versions of React 19 up to and including 19.2.1.

The following RSC implementations are therefore vulnerable: waku, @parcel/rsc, @vitejs/plugin-rsc, react-server-dom-parcel, react-server-dom-webpack, react-server-dom-turbopack, and the React Router 7 RSC preview.

If you are using any of these, upgrade it to the latest version and upgrade react to 19.0.3, 19.1.4, or 19.2.3 as soon as possible.

Resources

• React disclosures
• Next.js disclosures

We are working continually with the React and Next.js teams and are committed to keeping your sites secure on Netlify.

This post was last updated on 2025-12-11 at 21:15 UTC

OpenAI’s GPT-5.2 and GPT-5.2-Pro are now available through AI Gateway and Agent Runners. You can call these models from Netlify Functions without configuring API keys; the AI Gateway provides the connection to OpenAI for you.

Example usage in a Function:

import { OpenAI } from "openai";

export default async () => {
  const openai = new OpenAI();

  const response = await openai.chat.completions.create({
    model: "gpt-5.2",
    messages: [
      { role: "user", content: "What are the key improvements in GPT-5.2?" }
    ]
  });

  return new Response(JSON.stringify(response), {
    headers: { "Content-Type": "application/json" }
  });
};

These models work across any function type and are compatible with other Netlify primitives such as caching and rate limiting, giving you control over request behavior across your site.

See the AI Gateway documentation for details.

Agent Runners support the same models, enabling AI to complete long-running coding tasks. You can learn more in the Agent Runners documentation.