ci(repo): Version packages#9195
Conversation
|
The latest updates on your projects. Learn more about Vercel for GitHub.
|
|
Important Review skippedIgnore keyword(s) in the title. ⛔ Ignored keywords (1)
Please check the settings in the CodeRabbit UI or the ⚙️ Run configurationConfiguration used: Repository YAML (base), Repository UI (inherited) Review profile: CHILL Plan: Pro Plus Run ID: You can disable this status message by setting the Use the checkbox below for a quick retry:
Comment |
@clerk/astro
@clerk/backend
@clerk/chrome-extension
@clerk/clerk-js
@clerk/electron
@clerk/electron-passkeys
@clerk/eslint-plugin
@clerk/expo
@clerk/expo-passkeys
@clerk/express
@clerk/fastify
@clerk/hono
@clerk/localizations
@clerk/nextjs
@clerk/nuxt
@clerk/react
@clerk/react-router
@clerk/shared
@clerk/tanstack-react-start
@clerk/testing
@clerk/ui
@clerk/upgrade
@clerk/vue
commit: |
API Changes Report
Summary
No API Changes DetectedAll packages have stable APIs with no detected changes. Report generated by Break Check Last ran on |
ec5d5a1 to
f2b56c3
Compare
f2b56c3 to
20def96
Compare
20def96 to
c72621d
Compare
This PR was opened by the Changesets release GitHub action. When you're ready to do a release, you can merge this and the packages will be published to npm automatically. If you're not ready to do a release yet, that's fine, whenever you add more changesets to main, this PR will be updated.
Releases
@clerk/backend@3.12.0
Minor Changes
Fix a cross-origin handshake bypass where
isKnownClerkReferrer()trusted overly broad referrer hosts as Clerk-owned: anyaccounts.*host (e.g.accounts.attacker.com), plus dev account-portal domains (*.accounts.devand legacy suffixes) on production instances. These let unrelated origins skip the handshake and its session-freshness check. The referrer is now trusted only for the accounts portal derived from the instance's frontend API, plus dev account-portal domains on non-production instances. (#9145) by @dominic-clerkAdd an optional
orgIdparameter tocreateSignInToken()for activating an Organization when the token is redeemed. (#9192) by @swolfandPatch Changes
Add the required
providerfield toCreateEnterpriseConnectionParams. The Backend API has always requiredproviderwhen creating an enterprise connection, so calls tocreateEnterpriseConnection()without it type-checked but failed at runtime. The field is typed to the supported provider values ('saml_custom','saml_okta','saml_google','saml_microsoft','oidc_custom','oidc_github_enterprise','oidc_gitlab'), so unsupported values are also caught at compile time. (#9155) by @manovotnyAdd the remaining optional enterprise connection parameters supported by the Backend API.
CreateEnterpriseConnectionParamsandUpdateEnterpriseConnectionParamsnow acceptallowOrganizationAccountLinking,customAttributes,authenticatable, anddisableJitProvisioning(update also acceptsdisableAdditionalIdentifications), and SAML params acceptloginHintfor configuring thelogin_hintsent to the IdP. (#9155) by @manovotnyAlign
CreateEnterpriseConnectionParamsandUpdateEnterpriseConnectionParamswith the Backend API contract: (#9155) by @manovotnynameanddomainsare now required onCreateEnterpriseConnectionParams. The Backend API already rejected requests missing either of them, so calls that omitted these fields failed at runtime; the types now surface this at compile time.syncUserAttributesonCreateEnterpriseConnectionParams. The Backend API ignores this parameter on create; useupdateEnterpriseConnection()to set it.provideronUpdateEnterpriseConnectionParams. The Backend API ignores this parameter on update; the provider cannot be changed after creation.@clerk/astro@3.4.20
Patch Changes
a009d91,ff5d991,a009d91,26530ce,a009d91]:@clerk/express@2.1.44
Patch Changes
a009d91,ff5d991,a009d91,26530ce,a009d91]:@clerk/fastify@3.1.54
Patch Changes
a009d91,ff5d991,a009d91,26530ce,a009d91]:@clerk/hono@0.1.54
Patch Changes
a009d91,ff5d991,a009d91,26530ce,a009d91]:@clerk/nextjs@7.5.21
Patch Changes
a009d91,ff5d991,a009d91,26530ce,a009d91]:@clerk/nuxt@2.6.20
Patch Changes
a009d91,ff5d991,a009d91,26530ce,a009d91]:@clerk/react-router@3.5.13
Patch Changes
a009d91,ff5d991,a009d91,26530ce,a009d91]:@clerk/tanstack-react-start@1.4.21
Patch Changes
a009d91,ff5d991,a009d91,26530ce,a009d91]:@clerk/testing@2.2.11
Patch Changes
a009d91,ff5d991,a009d91,26530ce,a009d91]: