Executive Summary
Vercel has introduced "Protected Source Maps," a new security feature that restricts access to production source map (`.map`) files. The feature places these files behind Vercel Authentication, ensuring only authenticated team members can access them for debugging, while the public receives a 404 error. This enhancement is enabled by default for all new projects and can be activated on existing projects without requiring a redeployment.
Key Takeaways
* Feature Name: Protected Source Maps.
* Primary Function: Restricts access to browser `.map` files to authenticated team members only.
* Security Mechanism: Utilizes Vercel Authentication to gate access, preventing public exposure of source code.
* Developer Benefit: Allows for secure debugging of minified production code with readable stack traces and original source file context.
* Default State: The feature is enabled by default on all new Vercel projects.
* Activation for Existing Projects: Can be enabled in "Settings → Deployment Protection" without needing to redeploy the application.
Strategic Importance
This feature strengthens Vercel's security offerings by default, addressing a common vector for source code exposure while maintaining essential debugging workflows for developers.