Cybersecurity industry overreacts to React vulnerability, starts panic, burns own house down again

This commentary discusses CVE-2025-55182 affecting React Server Components, stressing that only sites running React v19 with Server Components are vulnerable, criticises widespread panic and premature mitigations (including a Cloudflare change that caused outages), and recommends calmly checking usage and patching if necessary.