Skip to content

ci(repo): Version packages #6510

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
wants to merge 1 commit into
base: main
Choose a base branch
from
Open

ci(repo): Version packages #6510

wants to merge 1 commit into from
+269 −86

Conversation

clerk-cookie
Copy link
Collaborator

@clerk-cookie clerk-cookie commented Aug 10, 2025
edited by coderabbitai bot
Loading

This PR was opened by the Changesets release GitHub action. When you're ready to do a release, you can merge this and the packages will be published to npm automatically. If you're not ready to do a release yet, that's fine, whenever you add more changesets to main, this PR will be updated.

Releases

@clerk/astro@2.11.0

Minor Changes

Patch Changes

@clerk/clerk-js@5.82.0

Minor Changes

  • [Billing Beta] Cleanup naming inconsistencies in billing dates. (#6513) by @panteliselef

    Migration

    • subscriptionItem.periodStartDate → subscriptionItem.periodStart
    • subscriptionItem.periodEndDate → subscriptionItem.periodEnd
    • subscriptionItem.canceledAtDate → subscriptionItem.canceledAt

  • [Experimental] Signal Errors (#6495) by @dstaley

  • Remove treatPendingAsSignedOut from Clerk options (#6497) by @LauraBeatris

Patch Changes

  • Use throttling instead of sampling for telemetry events of UI components on keyless apps. (#6514) by @panteliselef

  • Refactor ApplicationLogo rendering logic to account for oAuth logos within OAuthConsent component. (#6518) by @alexcarpenter

  • Trigger Next.js hooks on session status transition from active to pending to update authentication context state (#6511) by @LauraBeatris

  • Add .v0.app as a preferred popup origin for OAuth flows. (#6519) by @brkalow

  • Updated dependencies [b72a3dd, d93b0ed, 6459f7d, 0ff648a, 9084759]:

    • @clerk/types@4.75.0
    • @clerk/shared@3.19.0
    • @clerk/localizations@3.20.9

@clerk/clerk-react@5.41.0

Minor Changes

Patch Changes

@clerk/shared@3.19.0

Minor Changes

  • Update TelemetryCollector to accept a perEventSampling property for controling per-event sampling rates. (#6514) by @panteliselef

Patch Changes

@clerk/types@4.75.0

Minor Changes

  • [Billing Beta] Cleanup naming inconsistencies in billing dates. (#6513) by @panteliselef

    Migration

    • subscriptionItem.periodStartDate → subscriptionItem.periodStart
    • subscriptionItem.periodEndDate → subscriptionItem.periodEnd
    • subscriptionItem.canceledAtDate → subscriptionItem.canceledAt

  • [Experimental] Signal Errors (#6495) by @dstaley

  • Remove treatPendingAsSignedOut from Clerk options (#6497) by @LauraBeatris

Patch Changes

  • Add legalAcceptedAt to UserResource accessible by Clerk.user and useUser(). (#6517) by @thiskevinwang

@clerk/vue@1.10.0

Minor Changes

Patch Changes

@clerk/agent-toolkit@0.1.19

Patch Changes

@clerk/backend@2.7.1

Patch Changes

@clerk/chrome-extension@2.5.18

Patch Changes

@clerk/elements@0.23.51

Patch Changes

@clerk/clerk-expo@2.14.17

Patch Changes

@clerk/expo-passkeys@0.3.28

Patch Changes

@clerk/express@1.7.18

Patch Changes

  • Deprecates enableHandshake option in clerkMiddleware. This option is unnecessary for API requests since they don't trigger handshake flows. The option will be removed in a future version. (#6499) by @wobsoriano

  • Updated dependencies [b72a3dd, d93b0ed, 6459f7d, 0ff648a, 9084759]:

    • @clerk/types@4.75.0
    • @clerk/shared@3.19.0
    • @clerk/backend@2.7.1

@clerk/fastify@2.4.18

Patch Changes

@clerk/localizations@3.20.9

Patch Changes

@clerk/nextjs@6.30.1

Patch Changes

@clerk/nuxt@1.8.4

Patch Changes

@clerk/react-router@1.8.12

Patch Changes

@clerk/remix@4.10.12

Patch Changes

@clerk/tanstack-react-start@0.21.8

Patch Changes

@clerk/testing@1.10.12

Patch Changes

@clerk/themes@2.4.7

Patch Changes

Summary by CodeRabbit

  • New Features

    • User object now includes legalAcceptedAt, accessible via APIs/hooks.
    • Experimental: Signal Errors available in React and JS packages.

  • Deprecations

    • express: enableHandshake option in middleware is deprecated.

  • Migrations

    • Billing Beta: subscriptionItem.*Date fields renamed to periodStart/periodEnd/canceledAt.
    • Removed treatPendingAsSignedOut from framework and JS options.

  • Enhancements

    • Next.js: hooks now fire on session status change (active → pending).
    • OAuth popups now prefer .v0.app origin.

  • Chores

    • Version bumps and dependency updates across packages.

@vercel Vercel
Copy link

vercel bot commented Aug 10, 2025
edited
Loading

The latest updates on your projects. Learn more about Vercel for Git ↗︎

Project Deployment Preview Comments Updated (UTC)
clerk-js-sandbox Ready Preview 💬 Add feedback Aug 12, 2025 8:12am

@pkg-pr-new pkg.pr.new
Copy link

pkg-pr-new bot commented Aug 10, 2025

Open in StackBlitz

@clerk/agent-toolkit

npm i https://pkg.pr.new/@clerk/agent-toolkit@6510

@clerk/astro

npm i https://pkg.pr.new/@clerk/astro@6510

@clerk/backend

npm i https://pkg.pr.new/@clerk/backend@6510

@clerk/chrome-extension

npm i https://pkg.pr.new/@clerk/chrome-extension@6510

@clerk/clerk-js

npm i https://pkg.pr.new/@clerk/clerk-js@6510

@clerk/dev-cli

npm i https://pkg.pr.new/@clerk/dev-cli@6510

@clerk/elements

npm i https://pkg.pr.new/@clerk/elements@6510

@clerk/clerk-expo

npm i https://pkg.pr.new/@clerk/clerk-expo@6510

@clerk/expo-passkeys

npm i https://pkg.pr.new/@clerk/expo-passkeys@6510

@clerk/express

npm i https://pkg.pr.new/@clerk/express@6510

@clerk/fastify

npm i https://pkg.pr.new/@clerk/fastify@6510

@clerk/localizations

npm i https://pkg.pr.new/@clerk/localizations@6510

@clerk/nextjs

npm i https://pkg.pr.new/@clerk/nextjs@6510

@clerk/nuxt

npm i https://pkg.pr.new/@clerk/nuxt@6510

@clerk/clerk-react

npm i https://pkg.pr.new/@clerk/clerk-react@6510

@clerk/react-router

npm i https://pkg.pr.new/@clerk/react-router@6510

@clerk/remix

npm i https://pkg.pr.new/@clerk/remix@6510

@clerk/shared

npm i https://pkg.pr.new/@clerk/shared@6510

@clerk/tanstack-react-start

npm i https://pkg.pr.new/@clerk/tanstack-react-start@6510

@clerk/testing

npm i https://pkg.pr.new/@clerk/testing@6510

@clerk/themes

npm i https://pkg.pr.new/@clerk/themes@6510

@clerk/types

npm i https://pkg.pr.new/@clerk/types@6510

@clerk/upgrade

npm i https://pkg.pr.new/@clerk/upgrade@6510

@clerk/vue

npm i https://pkg.pr.new/@clerk/vue@6510

commit: 867ab3d

@coderabbitai coderabbitai
Copy link
Contributor

coderabbitai bot commented Aug 10, 2025
edited
Loading

📝 Walkthrough

Walkthrough

This PR updates many @clerk/* packages: package.json version bumps and new CHANGELOG entries that mostly document dependency updates (notably @clerk/types → 4.75.0 and @clerk/shared → 3.19.0). Several .changeset files were deleted or trimmed. The types package introduces API/type changes (adds UserResource.legalAcceptedAt and renames subscriptionItem.*Date fields) and some packages remove the ClerkOptions.treatPendingAsSignedOut option; other changes are documentation and dependency bumps.

Estimated code review effort

🎯 3 (Moderate) | ⏱️ ~15 minutes

Suggested reviewers

  • panteliselef
  • wobsoriano
  • LauraBeatris

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share
🪧 Tips

Chat

There are 3 ways to chat with CodeRabbit:

  • Review comments: Directly reply to a review comment made by CodeRabbit. Example:
    • I pushed a fix in commit <commit_id>, please review it.
    • Open a follow-up GitHub issue for this discussion.
  • Files and specific lines of code (under the "Files changed" tab): Tag @coderabbitai in a new review comment at the desired location with your query.
  • PR comments: Tag @coderabbitai in a new PR comment to ask questions about the PR branch. For the best results, please provide a very specific query, as very limited context is provided in this mode. Examples:
    • @coderabbitai gather interesting stats about this repository and render them as a table. Additionally, render a pie chart showing the language distribution in the codebase.
    • @coderabbitai read the files in the src/scheduler package and generate a class diagram using mermaid and a README in the markdown format.

Support

Need help? Create a ticket on our support page for assistance with any issues or questions.

CodeRabbit Commands (Invoked using PR/Issue comments)

Type @coderabbitai help to get the list of available commands.

Other keywords and placeholders

  • Add @coderabbitai ignore anywhere in the PR description to prevent this PR from being reviewed.
  • Add @coderabbitai summary to generate the high-level summary at a specific location in the PR description.
  • Add @coderabbitai anywhere in the PR title to generate the title automatically.

CodeRabbit Configuration File (.coderabbit.yaml)

  • You can programmatically configure CodeRabbit by adding a .coderabbit.yaml file to the root of your repository.
  • Please see the configuration documentation for more information.
  • If your editor has YAML language server enabled, you can add the path at the top of this file to enable auto-completion and validation: # yaml-language-server: $schema=https://coderabbit.ai/integrations/schema.v2.json

Status, Documentation and Community

  • Visit our Status Page to check the current availability of CodeRabbit.
  • Visit our Documentation for detailed information on how to use CodeRabbit.
  • Join our Discord Community to get help, request features, and share feedback.
  • Follow us on X/Twitter for updates and announcements.

coderabbitai[bot]
coderabbitai bot reviewed Aug 10, 2025
View reviewed changes
Copy link
Contributor

@coderabbitai coderabbitai bot left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Actionable comments posted: 8

🔭 Outside diff range comments (2)
packages/nextjs/package.json (1)

1-104: Detected lingering treatPendingAsSignedOut references

The scan found references to the removed treatPendingAsSignedOut option in multiple files across packages. All occurrences must be removed or updated to fully eliminate this option:

  • packages/vue/src/types.ts
  • packages/vue/src/components/controlComponents.ts
  • packages/vue/src/composables/useAuth.ts
  • packages/types/src/session.ts
  • packages/react/src/components/controlComponents.tsx
  • packages/react/src/hooks/useAuth.ts
  • packages/react/src/hooks/tests/useAuth.type.test.ts
  • packages/react/src/hooks/tests/useAuth.test.tsx
  • packages/shared/src/authorization.ts
  • packages/nextjs/src/app-router/server/controlComponents.tsx
  • packages/nextjs/src/app-router/server/auth.ts
  • packages/nextjs/src/server/data/getAuthDataFromRequest.ts
  • packages/nextjs/src/server/clerkMiddleware.ts
  • packages/astro/src/server/get-auth.ts
  • packages/astro/src/server/clerk-middleware.ts
  • packages/astro/src/react/hooks.ts
  • packages/astro/src/react/controlComponents.tsx
  • packages/backend/src/tokens/authStatus.ts
  • packages/backend/src/tokens/authObjects.ts

Please remove or update all these references to align with the option’s removal.

packages/react-router/package.json (1)

1-109: Add missing CHANGELOG entry for 1.8.12

The packages/react-router/CHANGELOG.md is missing a ## 1.8.12 section, which is needed to document this release. Please add a heading (for example ## 1.8.12 – YYYY-MM-DD) along with the notes for this version.

• File: packages/react-router/CHANGELOG.md
• Missing heading: ## 1.8.12

🧹 Nitpick comments (7)
packages/express/package.json (1)

65-65: Nit: normalize spacing in script command

Double space before --sig. Not harmful, but easy to tidy.

-    "publish:local": "pnpm yalc push --replace  --sig",
+    "publish:local": "pnpm yalc push --replace --sig",
packages/elements/package.json (1)

71-71: Tests note

No tests were changed in this PR. If any user-facing behavior depends on updated internal packages (e.g., option removals), consider adding or updating minimal smoke tests in affected packages/examples to guard against regressions.

I can draft smoke tests for the examples/nextjs app or package-level vitest suites if helpful.

packages/vue/CHANGELOG.md (1)

3-14: Add explicit before/after usage to aid migration.

Consider adding a short snippet to show how apps should adapt:

  • Before: useSession({ treatPendingAsSignedOut: true/false }), <SignedIn treatPendingAsSignedOut={...} />
  • After: rely on default pending-session semantics (no option)

This helps consumers spot and remove obsolete config quickly.

packages/clerk-js/CHANGELOG.md (1)

3-8: Add a short migration note for the removed treatPendingAsSignedOut option

A brief “Migration” hint will help consumers adjust quickly (what to do if they previously set it to false).

 ## 5.82.0

 ### Minor Changes

-- Remove `treatPendingAsSignedOut` from Clerk options ([#6497](https://github.com/clerk/javascript/pull/6497)) by [@LauraBeatris](https://github.com/LauraBeatris)
+- Remove `treatPendingAsSignedOut` from Clerk options ([#6497](https://github.com/clerk/javascript/pull/6497)) by [@LauraBeatris](https://github.com/LauraBeatris)
+  - Migration: Pending sessions are now always treated as signed-out. If you previously relied on
+    `treatPendingAsSignedOut: false`, switch to explicit checks:
+    - Prefer `Clerk.isSignedIn` for signed-in state checks.
+    - Or check `Clerk.session?.status === 'active'` when you need to distinguish between `pending` and `active`.
packages/expo/CHANGELOG.md (1)

3-11: Add a brief heads-up about a potentially observable change from deps

Since this patch bumps @clerk/types@4.75.0 (which removes treatPendingAsSignedOut), consider noting this here to help Expo consumers diagnose type errors after upgrade.

Proposed addition:

 ## 2.14.17

 ### Patch Changes

 - Updated dependencies [[`6459f7d`](https://github.com/clerk/javascript/commit/6459f7dabe5f163f48ed73106bb901d8187da3e2)]:
   - @clerk/clerk-js@5.82.0
   - @clerk/clerk-react@5.41.0
   - @clerk/types@4.75.0
   - @clerk/shared@3.18.2
+  
+  Note: `@clerk/types@4.75.0` removes the `treatPendingAsSignedOut` option. If your app passed this option to Clerk provider/components, please remove it to avoid type errors.
packages/react-router/CHANGELOG.md (1)

3-11: Call out removal of treatPendingAsSignedOut via dependency bump

This patch only updates deps, but @clerk/types@4.75.0 drops treatPendingAsSignedOut. React Router apps passing this option to <ClerkProvider> may see type errors. A one-liner here would prevent confusion.

Proposed addition:

 ## 1.8.12

 ### Patch Changes

 - Updated dependencies [[`6459f7d`](https://github.com/clerk/javascript/commit/6459f7dabe5f163f48ed73106bb901d8187da3e2)]:
   - @clerk/clerk-react@5.41.0
   - @clerk/types@4.75.0
   - @clerk/backend@2.7.1
   - @clerk/shared@3.18.2
+
+  Note: `@clerk/types@4.75.0` removes the `treatPendingAsSignedOut` option. If you previously passed this option to `<ClerkProvider>`, remove it to resolve type errors.
packages/nextjs/CHANGELOG.md (1)

3-12: Nit: Consider adding a one-liner clarifying no functional changes.

Add “No functional or API changes; dependency updates only.” to make it explicit for consumers skimming the log.

📜 Review details

Configuration used: CodeRabbit UI
Review profile: CHILL
Plan: Pro

📥 Commits

Reviewing files that changed from the base of the PR and between 6459f7d and 867ab3d.

📒 Files selected for processing (45)
  • .changeset/shiny-pants-jump.md (0 hunks)
  • packages/agent-toolkit/CHANGELOG.md (1 hunks)
  • packages/agent-toolkit/package.json (1 hunks)
  • packages/astro/CHANGELOG.md (1 hunks)
  • packages/astro/package.json (1 hunks)
  • packages/backend/CHANGELOG.md (1 hunks)
  • packages/backend/package.json (1 hunks)
  • packages/chrome-extension/CHANGELOG.md (1 hunks)
  • packages/chrome-extension/package.json (1 hunks)
  • packages/clerk-js/CHANGELOG.md (1 hunks)
  • packages/clerk-js/package.json (1 hunks)
  • packages/elements/CHANGELOG.md (1 hunks)
  • packages/elements/package.json (1 hunks)
  • packages/expo-passkeys/CHANGELOG.md (1 hunks)
  • packages/expo-passkeys/package.json (1 hunks)
  • packages/expo/CHANGELOG.md (1 hunks)
  • packages/expo/package.json (1 hunks)
  • packages/express/CHANGELOG.md (1 hunks)
  • packages/express/package.json (1 hunks)
  • packages/fastify/CHANGELOG.md (1 hunks)
  • packages/fastify/package.json (1 hunks)
  • packages/localizations/CHANGELOG.md (1 hunks)
  • packages/localizations/package.json (1 hunks)
  • packages/nextjs/CHANGELOG.md (1 hunks)
  • packages/nextjs/package.json (1 hunks)
  • packages/nuxt/CHANGELOG.md (1 hunks)
  • packages/nuxt/package.json (1 hunks)
  • packages/react-router/CHANGELOG.md (1 hunks)
  • packages/react-router/package.json (1 hunks)
  • packages/react/CHANGELOG.md (1 hunks)
  • packages/react/package.json (1 hunks)
  • packages/remix/CHANGELOG.md (1 hunks)
  • packages/remix/package.json (1 hunks)
  • packages/shared/CHANGELOG.md (1 hunks)
  • packages/shared/package.json (1 hunks)
  • packages/tanstack-react-start/CHANGELOG.md (1 hunks)
  • packages/tanstack-react-start/package.json (1 hunks)
  • packages/testing/CHANGELOG.md (1 hunks)
  • packages/testing/package.json (1 hunks)
  • packages/themes/CHANGELOG.md (1 hunks)
  • packages/themes/package.json (1 hunks)
  • packages/types/CHANGELOG.md (1 hunks)
  • packages/types/package.json (1 hunks)
  • packages/vue/CHANGELOG.md (1 hunks)
  • packages/vue/package.json (1 hunks)
💤 Files with no reviewable changes (1)
  • .changeset/shiny-pants-jump.md
🧰 Additional context used
📓 Path-based instructions (5)
**/*.{js,jsx,ts,tsx,json,css,scss,md,yaml,yml}

📄 CodeRabbit Inference Engine (.cursor/rules/development.mdc)

Use Prettier for consistent code formatting

Files:

  • packages/remix/package.json
  • packages/tanstack-react-start/package.json
  • packages/themes/package.json
  • packages/agent-toolkit/package.json
  • packages/types/package.json
  • packages/localizations/package.json
  • packages/nextjs/package.json
  • packages/nuxt/package.json
  • packages/expo/package.json
  • packages/react/package.json
  • packages/vue/package.json
  • packages/shared/package.json
  • packages/expo-passkeys/package.json
  • packages/express/package.json
  • packages/astro/package.json
  • packages/testing/package.json
  • packages/backend/package.json
  • packages/localizations/CHANGELOG.md
  • packages/vue/CHANGELOG.md
  • packages/elements/package.json
  • packages/nuxt/CHANGELOG.md
  • packages/astro/CHANGELOG.md
  • packages/shared/CHANGELOG.md
  • packages/chrome-extension/package.json
  • packages/express/CHANGELOG.md
  • packages/expo-passkeys/CHANGELOG.md
  • packages/react-router/package.json
  • packages/testing/CHANGELOG.md
  • packages/clerk-js/package.json
  • packages/fastify/CHANGELOG.md
  • packages/elements/CHANGELOG.md
  • packages/types/CHANGELOG.md
  • packages/fastify/package.json
  • packages/backend/CHANGELOG.md
  • packages/agent-toolkit/CHANGELOG.md
  • packages/react/CHANGELOG.md
  • packages/react-router/CHANGELOG.md
  • packages/remix/CHANGELOG.md
  • packages/themes/CHANGELOG.md
  • packages/expo/CHANGELOG.md
  • packages/chrome-extension/CHANGELOG.md
  • packages/tanstack-react-start/CHANGELOG.md
  • packages/nextjs/CHANGELOG.md
  • packages/clerk-js/CHANGELOG.md
packages/*/package.json

📄 CodeRabbit Inference Engine (.cursor/rules/global.mdc)

All publishable packages should be placed under the packages/ directory

packages/*/package.json: All publishable packages must be located in the 'packages/' directory.
All packages must be published under the @clerk namespace on npm.
Semantic versioning must be used across all packages.

Files:

  • packages/remix/package.json
  • packages/tanstack-react-start/package.json
  • packages/themes/package.json
  • packages/agent-toolkit/package.json
  • packages/types/package.json
  • packages/localizations/package.json
  • packages/nextjs/package.json
  • packages/nuxt/package.json
  • packages/expo/package.json
  • packages/react/package.json
  • packages/vue/package.json
  • packages/shared/package.json
  • packages/expo-passkeys/package.json
  • packages/express/package.json
  • packages/astro/package.json
  • packages/testing/package.json
  • packages/backend/package.json
  • packages/elements/package.json
  • packages/chrome-extension/package.json
  • packages/react-router/package.json
  • packages/clerk-js/package.json
  • packages/fastify/package.json
**/*

⚙️ CodeRabbit Configuration File

If there are no tests added or modified as part of the PR, please suggest that tests be added to cover the changes.

Files:

  • packages/remix/package.json
  • packages/tanstack-react-start/package.json
  • packages/themes/package.json
  • packages/agent-toolkit/package.json
  • packages/types/package.json
  • packages/localizations/package.json
  • packages/nextjs/package.json
  • packages/nuxt/package.json
  • packages/expo/package.json
  • packages/react/package.json
  • packages/vue/package.json
  • packages/shared/package.json
  • packages/expo-passkeys/package.json
  • packages/express/package.json
  • packages/astro/package.json
  • packages/testing/package.json
  • packages/backend/package.json
  • packages/localizations/CHANGELOG.md
  • packages/vue/CHANGELOG.md
  • packages/elements/package.json
  • packages/nuxt/CHANGELOG.md
  • packages/astro/CHANGELOG.md
  • packages/shared/CHANGELOG.md
  • packages/chrome-extension/package.json
  • packages/express/CHANGELOG.md
  • packages/expo-passkeys/CHANGELOG.md
  • packages/react-router/package.json
  • packages/testing/CHANGELOG.md
  • packages/clerk-js/package.json
  • packages/fastify/CHANGELOG.md
  • packages/elements/CHANGELOG.md
  • packages/types/CHANGELOG.md
  • packages/fastify/package.json
  • packages/backend/CHANGELOG.md
  • packages/agent-toolkit/CHANGELOG.md
  • packages/react/CHANGELOG.md
  • packages/react-router/CHANGELOG.md
  • packages/remix/CHANGELOG.md
  • packages/themes/CHANGELOG.md
  • packages/expo/CHANGELOG.md
  • packages/chrome-extension/CHANGELOG.md
  • packages/tanstack-react-start/CHANGELOG.md
  • packages/nextjs/CHANGELOG.md
  • packages/clerk-js/CHANGELOG.md
packages/localizations/**/*

📄 CodeRabbit Inference Engine (.cursor/rules/monorepo.mdc)

Localization files must be placed in 'packages/localizations/'.

Files:

  • packages/localizations/package.json
  • packages/localizations/CHANGELOG.md
packages/**/CHANGELOG.md

📄 CodeRabbit Inference Engine (.cursor/rules/development.mdc)

Maintain detailed changelogs

Files:

  • packages/localizations/CHANGELOG.md
  • packages/vue/CHANGELOG.md
  • packages/nuxt/CHANGELOG.md
  • packages/astro/CHANGELOG.md
  • packages/shared/CHANGELOG.md
  • packages/express/CHANGELOG.md
  • packages/expo-passkeys/CHANGELOG.md
  • packages/testing/CHANGELOG.md
  • packages/fastify/CHANGELOG.md
  • packages/elements/CHANGELOG.md
  • packages/types/CHANGELOG.md
  • packages/backend/CHANGELOG.md
  • packages/agent-toolkit/CHANGELOG.md
  • packages/react/CHANGELOG.md
  • packages/react-router/CHANGELOG.md
  • packages/remix/CHANGELOG.md
  • packages/themes/CHANGELOG.md
  • packages/expo/CHANGELOG.md
  • packages/chrome-extension/CHANGELOG.md
  • packages/tanstack-react-start/CHANGELOG.md
  • packages/nextjs/CHANGELOG.md
  • packages/clerk-js/CHANGELOG.md
⏰ Context from checks skipped due to timeout of 90000ms. You can increase the timeout in your CodeRabbit configuration to a maximum of 15 minutes (900000ms). (5)
  • GitHub Check: Build Packages
  • GitHub Check: Formatting | Dedupe | Changeset
  • GitHub Check: semgrep/ci
  • GitHub Check: Analyze (javascript-typescript)
  • GitHub Check: semgrep-cloud-platform/scan
🔇 Additional comments (48)
packages/themes/package.json (1)

3-3: Approve version 2.4.7 release

  • packages/themes/package.json correctly updated to "version": "2.4.7", with dependencies still workspace-pinned.
  • packages/themes/CHANGELOG.md contains a “## 2.4.7” heading and lists @clerk/types@4.75.0 under updated dependencies.
  • No code changes detected; proceed with CI smoke tests.
packages/shared/package.json (1)

3-3: Patch bump to 3.18.2 verified and approved
Changelog entry and workspace dependencies are correct:

  • packages/shared/CHANGELOG.md includes “## 3.18.2” on line 3
  • All downstream packages reference "@clerk/shared": "workspace:^" as expected
packages/expo-passkeys/package.json (1)

3-3: Patch bump to v0.3.28 verified

  • Changelog entry for 0.3.28 exists (packages/expo-passkeys/CHANGELOG.md:3).
  • Expo peer/dev dependency ranges unchanged (peerDependencies.expo: >=50 <54, devDependencies.expo: ~52.0.47).
packages/backend/package.json (1)

3-3: Patch bump to v2.7.1 verified – changelog entry and test scripts are in place

  • packages/backend/CHANGELOG.md contains the “## 2.7.1” entry (line 3).
  • packages/backend/package.json still defines the test script (run-s test:node test:edge-runtime test:cloudflare-miniflare).

Everything looks good—CI (Vitest) should pass.

packages/nextjs/package.json (1)

3-3: Patch bump looks correct; dependencies/peers remain consistent.

Version 6.30.1 is a patch bump aligned with workspace deps. Peer "next" range includes devDependency 14.2.31. All OK.

packages/tanstack-react-start/package.json (1)

3-3: Version bump to 0.21.8 looks good; peer ranges compatible.

Peers (^1.127.0) cover dev deps (1.128.x). No issues spotted.

packages/express/package.json (1)

3-3: Patch bump to 1.7.18 looks good and consistent with dependency updates.

packages/remix/package.json (1)

3-3: Version bump to 4.10.12 is appropriate; deps/peers remain aligned.

packages/elements/package.json (1)

3-3: Patch bump to 0.23.51 looks correct; workspace dependency alignment maintained.

packages/nuxt/package.json (1)

3-3: ✅ Nuxt Package 1.8.4 Bump Verified

  • CHANGELOG.md contains the “## 1.8.4” entry
  • No references to the removed treatPendingAsSignedOut option remain

All checks passed—this version bump is ready to merge.

packages/clerk-js/package.json (1)

3-3: Release bump to 5.82.0 approved; removal of treatPendingAsSignedOut confirmed

All checks passed:

  • packages/clerk-js/package.json is updated to version 5.82.0
  • CHANGELOG.md contains the “## 5.82.0” entry with the removal note
  • No remaining references to treatPendingAsSignedOut in code or docs
packages/localizations/package.json (1)

3-3: Patch bump for @clerk/localizations v3.20.9 verified

All consistency checks passed:

  • packages/localizations/package.json: name (@clerk/localizations) and version (3.20.9) are correct
  • packages/localizations/CHANGELOG.md: contains a “## 3.20.9” entry
  • packages/clerk-js/package.json: depends on "@clerk/localizations": "workspace:^"

✅ Approved.

packages/expo/package.json (1)

3-3: Patch bump approved: version 2.14.17 entry found in CHANGELOG and treatPendingAsSignedOut references removed.

packages/vue/package.json (1)

3-3: Changelog entry and version bump confirmed

I’ve verified that:

  • packages/vue/package.json is bumped to 1.10.0
  • packages/vue/CHANGELOG.md has a “## 1.10.0” section under Minor Changes with
    “Remove treatPendingAsSignedOut from Clerk options (#6497)”

Since treatPendingAsSignedOut was an opt-in/experimental flag and is now folded into the default behavior, its removal is non-breaking per our semver policy, and the changelog explicitly documents it.

Optional: as this PR doesn’t include runtime tests, consider adding or updating smoke tests in the Vue package/examples to guard against any regressions.

packages/agent-toolkit/package.json (2)

3-3: Patch bump LGTM

0.1.19 for dependency refresh matches semver expectations. No other metadata changes.

3-3: CHANGELOG entry for 0.1.19 verified

  • packages/agent-toolkit/CHANGELOG.md includes a “## 0.1.19” section
  • It lists the updated internal dependencies:
    • @clerk/types@4.75.0
    • @clerk/backend@2.7.1
    • @clerk/shared@3.18.2

No further action required.

packages/testing/package.json (2)

3-3: Patch bump LGTM

1.10.12 for dependency refresh is appropriate; no script/config changes.

3-3: Changelog entry for 1.10.12 verified
The packages/testing/CHANGELOG.md includes a “## 1.10.12” section and correctly lists the updated internal dependencies (@clerk/types@4.75.0, @clerk/backend@2.7.1, @clerk/shared@3.18.2). No further changes needed.

packages/react/package.json (1)

3-3: Confirm SemVer Bump & Changelog
The changelog in packages/react/CHANGELOG.md has a valid 5.41.0 entry and explicitly notes the removal of treatPendingAsSignedOut. Please confirm that removing this option is considered non-breaking under your versioning policy.
Consider adding a minimal smoke (or downstream e2e) test to verify initialization still works without that prop.

packages/chrome-extension/package.json (2)

3-3: Patch bump LGTM

2.5.18 for dependency updates is appropriate. No other package metadata changed.

3-3: Changelog verification passed for v2.5.18
packages/chrome-extension/CHANGELOG.md includes:

  • A ## 2.5.18 entry
  • Updated dependencies:
    • @clerk/clerk-js@5.82.0
    • @clerk/clerk-react@5.41.0
    • @clerk/shared@3.18.2

No further changes needed.

packages/fastify/package.json (1)

3-3: Patch bump looks good

Semantic versioning respected; metadata, engines, peer deps, and exports remain consistent.

packages/themes/CHANGELOG.md (1)

3-9: Changelog entry and package.json version are in sync

  • packages/themes/package.json version is 2.4.7
  • Top CHANGELOG entry is “## 2.4.7”
  • @clerk/types@4.75.0 is correctly referenced in the patch changes

All checks pass—no further action needed.

packages/elements/CHANGELOG.md (1)

3-11: Sanity check passed: version alignment and dependency mentions verified

  • packages/elements/package.json version is 0.23.51
  • Top changelog heading is “## 0.23.51”
  • Dependencies @clerk/clerk-react@5.41.0, @clerk/types@4.75.0, and @clerk/shared@3.18.2 are all listed

No further changes needed.

packages/shared/CHANGELOG.md (1)

3-9: Version bump coherence verified

All checks passed:

  • packages/shared/package.json version is 3.18.2
  • Top changelog entry is “## 3.18.2”
  • CHANGELOG.md mentions “@clerk/types@4.75.0”

No further action needed.

packages/localizations/CHANGELOG.md (1)

3-9: Changelog entry looks good

Patch-only dependency bump is clearly documented and consistent with prior formatting. Nothing else to change.

packages/expo-passkeys/CHANGELOG.md (1)

3-10: Changelog entry LGTM

Dependency bumps only; formatting and links look consistent with the repo’s conventions.

packages/react-router/package.json (1)

3-3: Semver patch bump is appropriate

No API changes here; version bump aligns with dependency updates across the repo.

packages/nuxt/CHANGELOG.md (2)

3-11: Nuxt changelog entry is clear and consistent

Dependency-only patch; formatting and commit linking are correct.

3-11: Verified: No treatPendingAsSignedOut in packages/nuxt
A scoped search of packages/nuxt returned zero matches for treatPendingAsSignedOut. Since this PR only bumps dependencies in the Nuxt integration, no lingering references to the removed option were reintroduced.

packages/agent-toolkit/CHANGELOG.md (1)

3-10: Changelog patch entry reads well

Dependency bump only; formatting and commit link are consistent with prior entries.

packages/testing/CHANGELOG.md (1)

3-11: Dependencies are workspace-aligned; no code changes needed

  • The packages/testing/package.json declares @clerk/types, @clerk/backend, and @clerk/shared as workspace:^, so they automatically resolve to v4.75.0, v2.7.1, and v3.18.2 respectively.
  • No occurrences of the removed helper option treatPendingAsSignedOut were found in the test code.
  • This is a pure dependency bump with no functional changes—consider adding a brief post-release smoke validation (e.g., importing @clerk/testing with the new versions to confirm type compatibility).
packages/fastify/CHANGELOG.md (3)

3-11: Patch entry looks correct and consistent.

Version 2.4.18 with dependency bumps only is appropriate and consistent with prior entries.

3-11: Add/confirm a minimal smoke test for Fastify v5 with updated backend SDK.

Given the dependency bumps, consider or confirm a simple integration test that registers the plugin on Fastify v5 (Node ≥ 20) and exercises a protected route to catch regressions early.

3-11: No changes needed—workspace protocol handles version resolution

All internal @clerk/* dependencies in package.json are intentionally specified as workspace:^. Both Yarn and pnpm will automatically replace the workspace protocol with the actual version number (as declared in each package’s version field) when publishing. You don’t need to manually pin @clerk/types@4.75.0, @clerk/backend@2.7.1, or @clerk/shared@3.18.2 in each package manifest.

packages/types/CHANGELOG.md (2)

3-8: Semver and scope are appropriate.

Minor bump (4.75.0) for removing an option is correct and the note is concise.

3-8: Ensure dependent packages updated tests accordingly.

Packages exposing useSession, useAuth, or client-control components should have tests updated for the new default behavior (pending sessions surfaced). If none changed in this PR, please schedule follow-ups.

packages/vue/CHANGELOG.md (3)

3-14: Changelog entry reads well; versioning is correct.

Minor for removal + patch dependency bumps to @clerk/types@4.75.0 and @clerk/shared@3.18.2 looks right.

3-14: Update component/composable tests to reflect pending-session defaults.

If component or composable tests asserted behavior gated by treatPendingAsSignedOut, adjust them to the new default pending-session semantics.

3-14: Dependencies are aligned via workspace protocol

Both packages/vue and packages/nuxt use workspace:^, which automatically pulls in the updated versions:

  • packages/vue/package.json → @clerk/types & @clerk/shared via workspace:^ (now at 4.75.0 & 3.18.2)
  • packages/nuxt/package.json → @clerk/vue via workspace:^ (now at 1.10.0)

No manual version bumps required.

packages/tanstack-react-start/CHANGELOG.md (1)

3-12: Changelog entry verified and consistent
The package version in packages/tanstack-react-start/package.json is 0.21.8, and each @clerk/* workspace package (clerk-react 5.41.0, types 4.75.0, backend 2.7.1, shared 3.18.2) matches the versions listed in the CHANGELOG. No further changes needed.

packages/backend/CHANGELOG.md (1)

3-10: Approve CHANGELOG entry
Changelog entry is accurate and follows repo conventions. The package.json intentionally uses workspace: dependencies for internal packages; the numeric versions (4.75.0 and 3.18.2) are applied during publish. No further changes needed.

packages/remix/CHANGELOG.md (1)

3-11: Changelog entry looks correct and consistent.

Patch bump with nested list formatting is clear and Prettier-friendly. Dependency versions align with the release train.

packages/clerk-js/CHANGELOG.md (2)

3-15: Changelog entry structure: LGTM

Version header, Minor/Patch sections, PR/commit links, and dependency versions are consistent and clear.

11-14: Changelog dependency versions are in sync with workspace packages

The workspace:^ protocol in packages/clerk-js/package.json ensures each dependency resolves to the current workspace package version. As verified:

  • @clerk/types → 4.75.0
  • @clerk/localizations → 3.20.9
  • @clerk/shared → 3.18.2

No changes needed.

packages/nextjs/CHANGELOG.md (3)

3-12: LGTM: Patch entry correctly lists dependency bumps only.

The structure and content match the repo’s changelog convention. No functional/API changes are implied here.

3-12: Confirm no Next.js-facing change from treatPendingAsSignedOut removal.

Other packages removed this option in this release train. If @clerk/nextjs is unaffected, current entry is fine; if there’s any indirect behavioral change (types or default behavior) surfacing here, consider adding a brief note.

7-11: Update verification to inspect subpackage versions

Next.js uses workspace:^ for all @clerk/* deps, so checking its package.json won’t surface explicit version numbers. Instead, confirm that each subpackage’s own version field matches the changelog:

• packages/clerk-react/package.json → version “5.41.0”
• packages/types/package.json → version “4.75.0”
• packages/backend/package.json → version “2.7.1”
• packages/shared/package.json → version “3.18.2”

You can run:

#!/usr/bin/env bash
set -euo pipefail

for pkg in clerk-react types backend shared; do
  file="packages/$pkg/package.json"
  ver=$(jq -r .version "$file")
  echo "$pkg$ver"
done

Ensure each printed version matches the changelog above.

packages/astro/CHANGELOG.md Outdated
Comment on lines 3 to 15
## 2.11.0

### Minor Changes

- Remove `treatPendingAsSignedOut` from Clerk options ([#6497](https://github.com/clerk/javascript/pull/6497)) by [@LauraBeatris](https://github.com/LauraBeatris)

### Patch Changes

- Updated dependencies [[`6459f7d`](https://github.com/clerk/javascript/commit/6459f7dabe5f163f48ed73106bb901d8187da3e2)]:
- @clerk/types@4.75.0
- @clerk/backend@2.7.1
- @clerk/shared@3.18.2

Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

💡 Verification agent

🧩 Analysis chain

Clarify migration for the removed option and verify codebase parity

  • Add a concise “Migration” sub-bullet under “Minor Changes” stating that pending sessions remain treated as signed-out by default and the configuration option is no longer available. If users previously relied on treatPendingAsSignedOut: false via middleware helpers (e.g., getAuth/auth), mention the current recommended approach or link to docs.

Confirm no lingering references in the Astro package, and that dependencies match:

Also, since no tests were modified, consider a quick E2E/manual check list (middleware auth flow with pending session, basic rendering) to validate the default behavior after removal. I can provide a concise checklist if needed.

🏁 Script executed:

#!/bin/bash
# Ensure no stale references remain
rg -n --hidden --glob '!**/dist/**' --glob '!**/build/**' 'treatPendingAsSignedOut' packages/astro

# Validate dependency versions in @clerk/astro
jq '.dependencies, .peerDependencies, .devDependencies' packages/astro/package.json | rg '@clerk/(types|backend|shared)' -n

Length of output: 3766

Add migration instructions for removed treatPendingAsSignedOut option

  • Verified that there are no stale treatPendingAsSignedOut references outside the changelog and that @clerk/types, @clerk/backend, and @clerk/shared remain on workspace:^ in packages/astro/package.json.
  • In packages/astro/CHANGELOG.md, under ## 2.11.0### Minor Changes, insert a “Migration” sub-bullet:
 ### Minor Changes

 - Remove `treatPendingAsSignedOut` from Clerk options ([#6497](https://github.com/clerk/javascript/pull/6497)) by [@LauraBeatris](https://github.com/LauraBeatris)
+- Migration: Pending sessions are now treated as signed-out by default. To opt into treating pending sessions as authenticated, pass `treatPendingAsSignedOut: false` to middleware helpers (`getAuth`, `auth`) or client hooks/components (`useAuth`, `<SignedIn>`, `<Protect>`). See the migration guide in our docs: https://docs.clerk.dev/migration/treatPendingAsSignedOut
  • (Optional) Add/update an E2E test or manual checklist covering middleware and client hooks to confirm default signed-out behavior still works as expected.
📝 Committable suggestion

‼️ IMPORTANT
Carefully review the code before committing. Ensure that it accurately replaces the highlighted code, contains no missing lines, and has no issues with indentation. Thoroughly test & benchmark the code to ensure it meets the requirements.

Suggested change
## 2.11.0
### Minor Changes
- Remove `treatPendingAsSignedOut` from Clerk options ([#6497](https://github.com/clerk/javascript/pull/6497)) by [@LauraBeatris](https://github.com/LauraBeatris)
### Patch Changes
- Updated dependencies [[`6459f7d`](https://github.com/clerk/javascript/commit/6459f7dabe5f163f48ed73106bb901d8187da3e2)]:
- @clerk/types@4.75.0
- @clerk/backend@2.7.1
- @clerk/shared@3.18.2
## 2.11.0
### Minor Changes
- Remove `treatPendingAsSignedOut` from Clerk options ([#6497](https://github.com/clerk/javascript/pull/6497)) by [@LauraBeatris](https://github.com/LauraBeatris)
- Migration: Pending sessions are now treated as signed-out by default. To opt into treating pending sessions as authenticated, pass `treatPendingAsSignedOut: false` to middleware helpers (`getAuth`, `auth`) or client hooks/components (`useAuth`, `<SignedIn>`, `<Protect>`). See the migration guide in our docs: https://docs.clerk.dev/migration/treatPendingAsSignedOut
### Patch Changes
- Updated dependencies [[`6459f7d`](https://github.com/clerk/javascript/commit/6459f7dabe5f163f48ed73106bb901d8187da3e2)]:
- @clerk/types@4.75.0
- @clerk/backend@2.7.1
- @clerk/shared@3.18.2
🤖 Prompt for AI Agents 
In packages/astro/CHANGELOG.md between lines 3 and 15, add a migration note
under the Minor Changes section for version 2.11.0. Specifically, insert a new
sub-bullet titled "Migration" below the existing bullet about removing
`treatPendingAsSignedOut` that explains the removal and any necessary steps for
users to update their code. Optionally, add or update an E2E test or manual
checklist to verify that middleware and client hooks behave correctly with the
default signed-out state.

packages/astro/package.json
@@ -1,6 +1,6 @@
{
"name": "@clerk/astro",
"version": "2.10.15",
"version": "2.11.0",
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

💡 Verification agent

🧩 Analysis chain

Minor bump aligns with option removal; validate docs and changelog.

2.11.0 is appropriate for the removal of treatPendingAsSignedOut. Confirm CHANGELOG entry and no lingering references.

🏁 Script executed:

#!/bin/bash
set -euo pipefail

# 1) Confirm package name
jq -r .name packages/astro/package.json | grep -x '@clerk/astro' >/dev/null

# 2) CHANGELOG includes 2.11.0
if [ -f packages/astro/CHANGELOG.md ]; then
  rg -n $'^##\\s+2\\.11\\.0\\b' packages/astro/CHANGELOG.md -n || {
    echo "Missing CHANGELOG entry for 2.11.0 in packages/astro/CHANGELOG.md"; exit 1;
  }
fi

# 3) Ensure removed option isn't referenced in astro package
rg -n --hidden -S 'treatPendingAsSignedOut' packages/astro || true

echo "packages/astro checks passed."

Length of output: 3757

Remove all treatPendingAsSignedOut references from the Astro integration

The v2.11.0 changelog entry is in place, but the removed option still appears in both docs and code. Please strip out or update every occurrence before bumping the version:

• packages/astro/CHANGELOG.md
– Remove historical usage examples and mentions of treatPendingAsSignedOut under v2.11.0 (and earlier entries).
• packages/astro/src/react/controlComponents.tsx
– Props and useAuth calls on lines 12–13 and 21–22 still reference the option.
• packages/astro/src/react/hooks.ts
– Default parameter and option forwarding on lines 88 and 119.
• packages/astro/src/server/clerk-middleware.ts
locals.auth signature and forwarding on lines 255–256.
• packages/astro/src/server/get-auth.ts
– Function signature and spread of treatPendingAsSignedOut on lines 16 and 43.

Once these are cleaned up, the minor bump to 2.11.0 will correctly reflect the removal.

🤖 Prompt for AI Agents 
In packages/astro/CHANGELOG.md, packages/astro/src/react/controlComponents.tsx
(lines 12-13, 21-22), packages/astro/src/react/hooks.ts (lines 88, 119),
packages/astro/src/server/clerk-middleware.ts (lines 255-256), and
packages/astro/src/server/get-auth.ts (lines 16, 43), remove all references to
the treatPendingAsSignedOut option including props, function parameters, calls,
and documentation mentions. This involves deleting or updating code and comments
to no longer include treatPendingAsSignedOut, ensuring the version bump to
2.11.0 accurately reflects its removal.

packages/chrome-extension/CHANGELOG.md Outdated
Comment on lines 3 to 11
## 2.5.18

### Patch Changes

- Updated dependencies [[`6459f7d`](https://github.com/clerk/javascript/commit/6459f7dabe5f163f48ed73106bb901d8187da3e2)]:
- @clerk/clerk-js@5.82.0
- @clerk/clerk-react@5.41.0
- @clerk/shared@3.18.2

Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

💡 Verification agent

🧩 Analysis chain

Dependency bump entry looks good; verify package.json sync

Lists the expected versions for this coordinated release. Please verify package.json entries match.

🏁 Script executed:

#!/bin/bash
set -euo pipefail

pkg="packages/chrome-extension/package.json"

echo "Checking @clerk/chrome-extension version matches changelog 2.5.18..."
jq -r '.version' "$pkg"

check_dep() {
  name="$1"; want="$2"
  have=$(jq -r --arg n "$name" '
    .dependencies[$n] // .peerDependencies[$n] // .devDependencies[$n] // ""' "$pkg" | sed -E 's/^[\^~]//')
  echo "$name => $have (expected: $want)"
  test "$have" = "$want"
}

check_dep "@clerk/clerk-js" "5.82.0"
check_dep "@clerk/clerk-react" "5.41.0"
check_dep "@clerk/shared" "3.18.2"

echo "OK"

Length of output: 681

Package.json dependencies are out of sync with CHANGELOG
The changelog lists these new versions under 2.5.18, but in packages/chrome-extension/package.json you're still pulling from the workspace. Please update to match:

• packages/chrome-extension/package.json

   "dependencies": {
-    "@clerk/clerk-js": "workspace:^",
+    "@clerk/clerk-js": "^5.82.0",
-    "@clerk/clerk-react": "workspace:^",
+    "@clerk/clerk-react": "^5.41.0",
-    "@clerk/shared":     "workspace:^"
+    "@clerk/shared":     "^3.18.2"
   }

After updating, re-run npm install (or yarn) and ensure everything builds as expected.

📝 Committable suggestion

‼️ IMPORTANT
Carefully review the code before committing. Ensure that it accurately replaces the highlighted code, contains no missing lines, and has no issues with indentation. Thoroughly test & benchmark the code to ensure it meets the requirements.

Suggested change
## 2.5.18
### Patch Changes
- Updated dependencies [[`6459f7d`](https://github.com/clerk/javascript/commit/6459f7dabe5f163f48ed73106bb901d8187da3e2)]:
- @clerk/clerk-js@5.82.0
- @clerk/clerk-react@5.41.0
- @clerk/shared@3.18.2
"dependencies": {
- "@clerk/clerk-js": "workspace:^",
+ "@clerk/clerk-js": "^5.82.0",
- "@clerk/clerk-react": "workspace:^",
+ "@clerk/clerk-react": "^5.41.0",
- "@clerk/shared": "workspace:^"
+ "@clerk/shared": "^3.18.2"
}
🤖 Prompt for AI Agents 
In packages/chrome-extension/CHANGELOG.md lines 3 to 11, the changelog lists
updated dependency versions for @clerk/clerk-js, @clerk/clerk-react, and
@clerk/shared under version 2.5.18, but packages/chrome-extension/package.json
still references these dependencies from the workspace. Update the package.json
dependencies to use the exact versions listed in the changelog (5.82.0, 5.41.0,
and 3.18.2 respectively), then run npm install or yarn to update the lockfile
and verify the build succeeds.

packages/express/CHANGELOG.md Outdated
Comment on lines 3 to 13
## 1.7.18

### Patch Changes

- Updated dependencies [[`6459f7d`](https://github.com/clerk/javascript/commit/6459f7dabe5f163f48ed73106bb901d8187da3e2)]:
- @clerk/types@4.75.0
- @clerk/backend@2.7.1
- @clerk/shared@3.18.2

Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

💡 Verification agent

🧩 Analysis chain

Changelog entry looks good; verify package.json alignment

Entry correctly documents a patch bump of internal deps. Please verify the package.json matches these versions.

🏁 Script executed:

#!/bin/bash
set -euo pipefail

pkg="packages/express/package.json"

echo "Checking @clerk/express version matches changelog 1.7.18..."
jq -r '.version' "$pkg"

echo "Checking dependency versions (allowing ^ prefix)..."
check_dep() {
  name="$1"; want="$2"
  have=$(jq -r --arg n "$name" '
    .dependencies[$n] // .peerDependencies[$n] // .devDependencies[$n] // ""' "$pkg" | sed -E 's/^[\^~]//')
  echo "$name => $have (expected: $want)"
  test "$have" = "$want"
}

check_dep "@clerk/types" "4.75.0"
check_dep "@clerk/backend" "2.7.1"
check_dep "@clerk/shared" "3.18.2"

echo "OK"

Length of output: 734

Align package.json dependencies with CHANGELOG

The verification script indicates that packages/express/package.json is still using the Yarn workspace protocol ("workspace:^") instead of the explicit version ranges documented in the changelog. Please update it to match 1.7.18:

• packages/express/package.json

  • "@clerk/types": "^4.75.0"
  • "@clerk/backend": "^2.7.1"
  • "@clerk/shared": "^3.18.2"

Suggested diff:

--- a/packages/express/package.json
+++ b/packages/express/package.json
@@ dependencies {
-  "@clerk/types":   "workspace:^",
-  "@clerk/backend": "workspace:^",
-  "@clerk/shared":  "workspace:^",
+  "@clerk/types":   "^4.75.0",
+  "@clerk/backend": "^2.7.1",
+  "@clerk/shared":  "^3.18.2",
}

Committable suggestion skipped: line range outside the PR's diff.

🤖 Prompt for AI Agents 
In packages/express/package.json around the dependency declarations, update the
versions of @clerk/types, @clerk/backend, and @clerk/shared from the Yarn
workspace protocol format ("workspace:^") to explicit version ranges matching
the changelog for version 1.7.18: set "@clerk/types" to "^4.75.0",
"@clerk/backend" to "^2.7.1", and "@clerk/shared" to "^3.18.2".

packages/react/CHANGELOG.md Outdated
Comment on lines 3 to 16
## 5.41.0

### Minor Changes

- Remove `treatPendingAsSignedOut` from Clerk options ([#6497](https://github.com/clerk/javascript/pull/6497)) by [@LauraBeatris](https://github.com/LauraBeatris)

### Patch Changes

- Updated dependencies [[`6459f7d`](https://github.com/clerk/javascript/commit/6459f7dabe5f163f48ed73106bb901d8187da3e2)]:
- @clerk/types@4.75.0
- @clerk/shared@3.18.2

Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

💡 Verification agent

🧩 Analysis chain

Add a brief migration note and verify removal coverage

  • Consider appending a one-liner under “Minor Changes” clarifying the behavioral outcome and what to do next. Example: “Pending sessions continue to be treated as signed-out by default; the option has been removed.” If there’s a recommended alternative for customizing pending-session handling, link it.
  • The entry already references the PR; adding a short “Migration” sub-bullet will reduce ambiguity for consumers skimming the changelog.

Run a quick sweep to ensure no remaining references to the removed option in this package:

Also confirm the dependency bumps reflected in the changelog match the package.json:

If you want, I can propose the exact “Migration” wording as a diff to the changelog.

🏁 Script executed:

#!/bin/bash
# Verify removed option isn't referenced in @clerk/clerk-react
rg -n --hidden --glob '!**/dist/**' --glob '!**/build/**' 'treatPendingAsSignedOut' packages/react

Length of output: 3863

🏁 Script executed:

#!/bin/bash
# Validate dependency versions in @clerk/clerk-react
jq '.dependencies, .peerDependencies, .devDependencies' packages/react/package.json | rg '@clerk/(types|shared)' -n

Length of output: 188

Add a concise migration note for the removed treatPendingAsSignedOut option

The changelog should briefly explain the new default behavior and point consumers to the alternative opt-out APIs. For example:

## 5.41.0

### Minor Changes

- Remove `treatPendingAsSignedOut` from ClerkProvider options ([#6497](https://github.com/clerk/javascript/pull/6497))
+ **Migration:** Pending sessions are now treated as signed-out by default.  
+ To restore previous behavior, pass `treatPendingAsSignedOut` to your hook or control component, e.g.  
+ ```tsx
+ const { session } = useSession({ treatPendingAsSignedOut: false });
+ // or
+ <Protect treatPendingAsSignedOut={false}>…</Protect>
+ ```

– This one-liner under “Minor Changes” clarifies what changed and where to apply the option now.

Verify removal coverage in the React package

Run a quick grep to ensure the prop was removed from the global provider API:

rg -n 'ClerkProvider.*treatPendingAsSignedOut' packages/react

If no hits are returned, you’ve successfully dropped it from <ClerkProvider>.

🤖 Prompt for AI Agents 
In packages/react/CHANGELOG.md lines 3 to 14, add a concise migration note under
"Minor Changes" explaining the removal of the treatPendingAsSignedOut option,
its new default behavior, and how to opt out using useSession or Protect
components with treatPendingAsSignedOut set to false. Also, verify the option's
removal from the React package by running a grep search for
treatPendingAsSignedOut in ClerkProvider within packages/react to confirm it is
no longer present.

packages/remix/CHANGELOG.md Outdated
Comment on lines 7 to 11
- Updated dependencies [[`6459f7d`](https://github.com/clerk/javascript/commit/6459f7dabe5f163f48ed73106bb901d8187da3e2)]:
- @clerk/clerk-react@5.41.0
- @clerk/types@4.75.0
- @clerk/backend@2.7.1
- @clerk/shared@3.18.2
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

💡 Verification agent

🧩 Analysis chain

Surface the removed treatPendingAsSignedOut option for consumer awareness.

Since @clerk/types@4.75.0 removes this deprecated option and Remix apps often pass Clerk options via @clerk/clerk-react, adding a short note helps prevent type errors for consumers.

Apply this minimal addition under Patch Changes:

 ### Patch Changes

 - Updated dependencies [[`6459f7d`](https://github.com/clerk/javascript/commit/6459f7dabe5f163f48ed73106bb901d8187da3e2)]:
   - @clerk/clerk-react@5.41.0
   - @clerk/types@4.75.0
   - @clerk/backend@2.7.1
   - @clerk/shared@3.18.2
+ - Note: `@clerk/types@4.75.0` removes the deprecated `treatPendingAsSignedOut` option. If your app passed this via `ClerkProvider` (or related helpers), remove it to avoid TypeScript errors.

Quick check for lingering usage across the repo:

🏁 Script executed:

#!/bin/bash
set -euo pipefail

# Find references to the removed option outside changelogs/docs
rg -n --no-ignore -S 'treatPendingAsSignedOut' -g '!**/CHANGELOG.md' -g '!**/*.md'

Length of output: 7157

Add note about treatPendingAsSignedOut removal to CHANGELOG.md

Since bumping to @clerk/types@4.75.0 removes the deprecated treatPendingAsSignedOut option, Remix users passing this into ClerkProvider (or related helpers) will see TypeScript errors. Please update packages/remix/CHANGELOG.md:

• File: packages/remix/CHANGELOG.md
• Location: under “### Patch Changes”

Apply:

 ### Patch Changes

 - Updated dependencies [[`6459f7d`](https://github.com/clerk/javascript/commit/6459f7dabe5f163f48ed73106bb901d8187da3e2)]:
   - @clerk/clerk-react@5.41.0
   - @clerk/types@4.75.0
   - @clerk/backend@2.7.1
   - @clerk/shared@3.18.2
+  - Note: `@clerk/types@4.75.0` removed the deprecated `treatPendingAsSignedOut` option. If you passed this via `ClerkProvider` (or through any helper), remove it to avoid TypeScript errors.
📝 Committable suggestion

‼️ IMPORTANT
Carefully review the code before committing. Ensure that it accurately replaces the highlighted code, contains no missing lines, and has no issues with indentation. Thoroughly test & benchmark the code to ensure it meets the requirements.

Suggested change
- Updated dependencies [[`6459f7d`](https://github.com/clerk/javascript/commit/6459f7dabe5f163f48ed73106bb901d8187da3e2)]:
- @clerk/clerk-react@5.41.0
- @clerk/types@4.75.0
- @clerk/backend@2.7.1
- @clerk/shared@3.18.2
### Patch Changes
- Updated dependencies [[`6459f7d`](https://github.com/clerk/javascript/commit/6459f7dabe5f163f48ed73106bb901d8187da3e2)]:
- @clerk/clerk-react@5.41.0
- @clerk/types@4.75.0
- @clerk/backend@2.7.1
- @clerk/shared@3.18.2
- Note: `@clerk/types@4.75.0` removed the deprecated `treatPendingAsSignedOut` option. If you passed this via `ClerkProvider` (or through any helper), remove it to avoid TypeScript errors.
🤖 Prompt for AI Agents 
In packages/remix/CHANGELOG.md around lines 7 to 11, add a note under the "###
Patch Changes" section about the removal of the deprecated
`treatPendingAsSignedOut` option in `@clerk/types@4.75.0`. Mention that Remix
users passing this option to `ClerkProvider` or related helpers will encounter
TypeScript errors due to this removal. Insert this information clearly to inform
users of the breaking change.

packages/types/CHANGELOG.md Outdated
Comment on lines 3 to 18
## 4.75.0

### Minor Changes

- Remove `treatPendingAsSignedOut` from Clerk options ([#6497](https://github.com/clerk/javascript/pull/6497)) by [@LauraBeatris](https://github.com/LauraBeatris)

Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

💡 Verification agent

🧩 Analysis chain

Add a short migration note and sweep stale references.

To reduce upgrade friction, consider adding one or two lines showing the before/after for apps that previously set treatPendingAsSignedOut. Also verify there are no lingering references in code, docs, or tests.

Run:

If any hits appear in public APIs or tests, update them to reflect that pending sessions are no longer treated as signed out by configuration.

🏁 Script executed:

#!/bin/bash
set -euo pipefail

echo "Searching for deprecated option references..."
rg -n --hidden --glob '!**/dist/**' --glob '!**/build/**' 'treatPendingAsSignedOut|treat_pending_as_signed_out'

echo
echo "Checking for tests relying on prior behavior (pending vs signed-out)..."
rg -n --hidden --glob '!**/dist/**' --glob '!**/build/**' \
  -e 'useSession\(|useAuth\(' \
  -e '<SignedIn\b' -e '<Protect\b' \
  -e 'pending session' -e 'pending.*signed[- ]?out'

Length of output: 50765

Add migration note for removing treatPendingAsSignedOut and clean up stale references

The v4.75.0 entry in packages/types/CHANGELOG.md currently just says that we removed treatPendingAsSignedOut, but it doesn’t show users how to migrate. Please update it with a before/after snippet:

### Migration
If you were using `treatPendingAsSignedOut`, simply remove it—pending sessions are now returned by default.

Before (<= 4.74.x):
```js
useAuth({ treatPendingAsSignedOut: false });

After (4.75.0+):

useAuth();

Also, our global grep shows many lingering `treatPendingAsSignedOut` mentions across types, shared code, control components, tests, docs, and other CHANGELOGs. Please sweep these stale references (or confirm they should remain) to avoid confusion. Key locations include (but aren’t limited to):

- packages/types/src/session.ts  
- packages/shared/src/authorization.ts  
- packages/vue/src/components/controlComponents.ts  
- packages/react/src/hooks/useAuth.ts  
- Multiple CHANGELOG.md files in other packages

<details>
<summary>🤖 Prompt for AI Agents</summary>

In packages/types/CHANGELOG.md around lines 3 to 8, add a migration note under
the v4.75.0 entry explaining how to migrate from using treatPendingAsSignedOut
by showing a before and after code snippet. Additionally, perform a thorough
search across the codebase to remove or confirm removal of all stale
treatPendingAsSignedOut references in files like packages/types/src/session.ts,
packages/shared/src/authorization.ts,
packages/vue/src/components/controlComponents.ts,
packages/react/src/hooks/useAuth.ts, and other CHANGELOG.md files to prevent
confusion.


</details>

<!-- fingerprinting:phantom:triton:capybara -->

<!-- This is an auto-generated comment by CodeRabbit -->

packages/types/package.json
@@ -1,6 +1,6 @@
{
"name": "@clerk/types",
"version": "4.74.0",
"version": "4.75.0",
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

💡 Verification agent

🧩 Analysis chain

Semver bump to 4.75.0 looks correct; ensure deprecation removal is reflected across the repo.
Minor bump aligns with removing a deprecated option. Confirm changelog entry exists and usages are removed.

🏁 Script executed:

#!/bin/bash
# Verify changelog entry exists for 4.75.0
rg -n $'^##\\s+4\\.75\\.0' packages/types/CHANGELOG.md

# Confirm no lingering references to removed option remain
rg -n --hidden --glob '!**/dist/**' 'treatPendingAsSignedOut'

# Sanity-check all publishable packages live under packages/ and use @clerk namespace
jq -r '.name' packages/*/package.json | sed 's/^/@/!q' >/dev/null && echo "OK: All packages appear under @clerk"

# Prettier check (format is enforced via repo script, but ensure JSON is valid)
jq . packages/types/package.json >/dev/null && echo "OK: JSON parses"

Length of output: 16101

Cleanup deprecation and finalize v4.75.0

  • ✅ Confirmed ## 4.75.0 entry in packages/types/CHANGELOG.md.
  • ✅ packages/types/package.json parses without errors.
  • ⚠️ A lingering treatPendingAsSignedOut?: boolean; remains in packages/types/src/session.ts (line 39). Remove this property to complete the deprecation.
  • ⚠️ The namespace check script errored on the sed expression—please verify all publishable packages in packages/ use the @clerk/… naming convention.
🤖 Prompt for AI Agents 
In packages/types/src/session.ts at line 39, remove the deprecated property
`treatPendingAsSignedOut?: boolean;` to complete the deprecation cleanup. Also,
verify that all package names in the packages/ directory follow the `@clerk/`
namespace convention to fix the namespace check script error.

@github-actions github-actions bot force-pushed the changeset-release/main branch from 867ab3d to e8437dc Compare August 11, 2025 07:38
@github-actions github-actions bot force-pushed the changeset-release/main branch from e8437dc to adba157 Compare August 11, 2025 07:52
coderabbitai[bot]
coderabbitai bot reviewed Aug 11, 2025
View reviewed changes
Copy link
Contributor

@coderabbitai coderabbitai bot left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Actionable comments posted: 0

🧹 Nitpick comments (2)
packages/nuxt/CHANGELOG.md (2)

7-12: Call out indirect option removal via @clerk/vue 1.10.0.

Since @clerk/nuxt re-exports Vue SDK pieces, noting the removal of the treatPendingAsSignedOut option in @clerk/vue can help Nuxt consumers assess impact.

Consider this addition:

 ### Patch Changes

-- Updated dependencies [[`6459f7d`](https://github.com/clerk/javascript/commit/6459f7dabe5f163f48ed73106bb901d8187da3e2)]:
+- Updated dependencies [[`6459f7d`](https://github.com/clerk/javascript/commit/6459f7dabe5f163f48ed73106bb901d8187da3e2)]:
   - @clerk/types@4.75.0
   - @clerk/vue@1.10.0
   - @clerk/backend@2.7.1
   - @clerk/shared@3.18.2
+
+- Note: This release consumes @clerk/vue@1.10.0, which removes the `treatPendingAsSignedOut` option from Clerk options. @clerk/nuxt APIs are unchanged; update app code if you were using this option.

3-12: Add a minimal compatibility test (types/smoke) for the dependency bump.

No tests changed in this PR. Consider a CI check (typecheck/build of the Nuxt example app) to ensure compatibility with @clerk/vue@1.10.0 and updated types/shared/backend.

I can draft a lightweight CI job that builds a sample Nuxt app using @clerk/nuxt and runs tsc against it.

📜 Review details

Configuration used: CodeRabbit UI
Review profile: CHILL
Plan: Pro

📥 Commits

Reviewing files that changed from the base of the PR and between 867ab3d and e8437dc.

📒 Files selected for processing (45)
  • .changeset/shiny-pants-jump.md (0 hunks)
  • packages/agent-toolkit/CHANGELOG.md (1 hunks)
  • packages/agent-toolkit/package.json (1 hunks)
  • packages/astro/CHANGELOG.md (1 hunks)
  • packages/astro/package.json (1 hunks)
  • packages/backend/CHANGELOG.md (1 hunks)
  • packages/backend/package.json (1 hunks)
  • packages/chrome-extension/CHANGELOG.md (1 hunks)
  • packages/chrome-extension/package.json (1 hunks)
  • packages/clerk-js/CHANGELOG.md (1 hunks)
  • packages/clerk-js/package.json (1 hunks)
  • packages/elements/CHANGELOG.md (1 hunks)
  • packages/elements/package.json (1 hunks)
  • packages/expo-passkeys/CHANGELOG.md (1 hunks)
  • packages/expo-passkeys/package.json (1 hunks)
  • packages/expo/CHANGELOG.md (1 hunks)
  • packages/expo/package.json (1 hunks)
  • packages/express/CHANGELOG.md (1 hunks)
  • packages/express/package.json (1 hunks)
  • packages/fastify/CHANGELOG.md (1 hunks)
  • packages/fastify/package.json (1 hunks)
  • packages/localizations/CHANGELOG.md (1 hunks)
  • packages/localizations/package.json (1 hunks)
  • packages/nextjs/CHANGELOG.md (1 hunks)
  • packages/nextjs/package.json (1 hunks)
  • packages/nuxt/CHANGELOG.md (1 hunks)
  • packages/nuxt/package.json (1 hunks)
  • packages/react-router/CHANGELOG.md (1 hunks)
  • packages/react-router/package.json (1 hunks)
  • packages/react/CHANGELOG.md (1 hunks)
  • packages/react/package.json (1 hunks)
  • packages/remix/CHANGELOG.md (1 hunks)
  • packages/remix/package.json (1 hunks)
  • packages/shared/CHANGELOG.md (1 hunks)
  • packages/shared/package.json (1 hunks)
  • packages/tanstack-react-start/CHANGELOG.md (1 hunks)
  • packages/tanstack-react-start/package.json (1 hunks)
  • packages/testing/CHANGELOG.md (1 hunks)
  • packages/testing/package.json (1 hunks)
  • packages/themes/CHANGELOG.md (1 hunks)
  • packages/themes/package.json (1 hunks)
  • packages/types/CHANGELOG.md (1 hunks)
  • packages/types/package.json (1 hunks)
  • packages/vue/CHANGELOG.md (1 hunks)
  • packages/vue/package.json (1 hunks)
💤 Files with no reviewable changes (1)
  • .changeset/shiny-pants-jump.md
✅ Files skipped from review due to trivial changes (6)
  • packages/express/package.json
  • packages/localizations/CHANGELOG.md
  • packages/chrome-extension/CHANGELOG.md
  • packages/agent-toolkit/package.json
  • packages/expo/CHANGELOG.md
  • packages/react-router/CHANGELOG.md
🚧 Files skipped from review as they are similar to previous changes (34)
  • packages/clerk-js/CHANGELOG.md
  • packages/chrome-extension/package.json
  • packages/clerk-js/package.json
  • packages/localizations/package.json
  • packages/vue/package.json
  • packages/react/package.json
  • packages/testing/package.json
  • packages/themes/package.json
  • packages/elements/package.json
  • packages/expo/package.json
  • packages/nextjs/package.json
  • packages/tanstack-react-start/package.json
  • packages/types/package.json
  • packages/expo-passkeys/package.json
  • packages/shared/package.json
  • packages/elements/CHANGELOG.md
  • packages/nuxt/package.json
  • packages/themes/CHANGELOG.md
  • packages/astro/package.json
  • packages/react-router/package.json
  • packages/agent-toolkit/CHANGELOG.md
  • packages/remix/CHANGELOG.md
  • packages/testing/CHANGELOG.md
  • packages/vue/CHANGELOG.md
  • packages/remix/package.json
  • packages/react/CHANGELOG.md
  • packages/backend/package.json
  • packages/nextjs/CHANGELOG.md
  • packages/tanstack-react-start/CHANGELOG.md
  • packages/expo-passkeys/CHANGELOG.md
  • packages/fastify/package.json
  • packages/types/CHANGELOG.md
  • packages/express/CHANGELOG.md
  • packages/astro/CHANGELOG.md
🧰 Additional context used
📓 Path-based instructions (3)
**/*.{js,jsx,ts,tsx,json,css,scss,md,yaml,yml}

📄 CodeRabbit Inference Engine (.cursor/rules/development.mdc)

Use Prettier for consistent code formatting

Files:

  • packages/backend/CHANGELOG.md
  • packages/shared/CHANGELOG.md
  • packages/fastify/CHANGELOG.md
  • packages/nuxt/CHANGELOG.md
packages/**/CHANGELOG.md

📄 CodeRabbit Inference Engine (.cursor/rules/development.mdc)

Maintain detailed changelogs

Files:

  • packages/backend/CHANGELOG.md
  • packages/shared/CHANGELOG.md
  • packages/fastify/CHANGELOG.md
  • packages/nuxt/CHANGELOG.md
**/*

⚙️ CodeRabbit Configuration File

If there are no tests added or modified as part of the PR, please suggest that tests be added to cover the changes.

Files:

  • packages/backend/CHANGELOG.md
  • packages/shared/CHANGELOG.md
  • packages/fastify/CHANGELOG.md
  • packages/nuxt/CHANGELOG.md
🔇 Additional comments (6)
packages/shared/CHANGELOG.md (1)

3-9: LGTM: 3.18.2 entry correctly documents the dependency bump

Formatting and structure match prior entries; commit reference and @clerk/types@4.75.0 are accurate. No user-facing changes implied here.

packages/backend/CHANGELOG.md (1)

3-10: LGTM: 2.7.1 patch entry reflects the coordinated dependency bumps

Accurately lists @clerk/types@4.75.0 and @clerk/shared@3.18.2 with the correct commit link. No behavioral/API changes indicated, which aligns with this release wave.

packages/fastify/CHANGELOG.md (2)

3-11: Changelog entry for 2.4.18 looks correct and consistent.

Dependency versions and commit link align with the PR summary; formatting matches prior entries. Good to ship.

7-10: Dependencies Are Correctly Specified via Workspaces
The packages/fastify/package.json uses workspace:^ for all three internal packages, which will automatically track the bumped versions (4.75.0, 2.7.1, and 3.18.2) defined in their own package.json files. No manual caret‐range changes are needed here.

packages/nuxt/CHANGELOG.md (2)

3-6: Changelog entry format looks good.

Heading and Patch Changes section are consistent with previous entries.

3-12: Verified @clerk/nuxt Version & Dependencies

  • packages/nuxt/package.json is correctly bumped to 1.8.4
  • All four Clerk packages are listed under dependencies as workspace:^ (picking up the repo-wide bumped versions for @clerk/vue, @clerk/types, @clerk/backend, and @clerk/shared)
  • No peerDependencies are declared (none required for this package)

No changes required.

coderabbitai[bot]
coderabbitai bot reviewed Aug 11, 2025
View reviewed changes
Copy link
Contributor

@coderabbitai coderabbitai bot left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Actionable comments posted: 1

🧹 Nitpick comments (2)
packages/tanstack-react-start/CHANGELOG.md (2)

3-6: Optional: add a brief note if there are consumer-visible changes

If these bumps introduce any notable behavior changes (e.g., deprecations like treatPendingAsSignedOut) affecting this package’s users, add a one-liner under Patch Changes. If not applicable, ignore.

3-11: Test coverage and smoke validation for dependency bumps

No tests were modified in this versioning PR. Ensure existing e2e/smoke tests cover this package against the updated @clerk/* versions and that example apps still build.

I can draft a minimal CI job to run a build/smoke for this package if helpful.

📜 Review details

Configuration used: CodeRabbit UI
Review profile: CHILL
Plan: Pro

📥 Commits

Reviewing files that changed from the base of the PR and between c0bd034 and 478b835.

📒 Files selected for processing (45)
  • .changeset/shiny-pants-jump.md (0 hunks)
  • packages/agent-toolkit/CHANGELOG.md (1 hunks)
  • packages/agent-toolkit/package.json (1 hunks)
  • packages/astro/CHANGELOG.md (1 hunks)
  • packages/astro/package.json (1 hunks)
  • packages/backend/CHANGELOG.md (1 hunks)
  • packages/backend/package.json (1 hunks)
  • packages/chrome-extension/CHANGELOG.md (1 hunks)
  • packages/chrome-extension/package.json (1 hunks)
  • packages/clerk-js/CHANGELOG.md (1 hunks)
  • packages/clerk-js/package.json (1 hunks)
  • packages/elements/CHANGELOG.md (1 hunks)
  • packages/elements/package.json (1 hunks)
  • packages/expo-passkeys/CHANGELOG.md (1 hunks)
  • packages/expo-passkeys/package.json (1 hunks)
  • packages/expo/CHANGELOG.md (1 hunks)
  • packages/expo/package.json (1 hunks)
  • packages/express/CHANGELOG.md (1 hunks)
  • packages/express/package.json (1 hunks)
  • packages/fastify/CHANGELOG.md (1 hunks)
  • packages/fastify/package.json (1 hunks)
  • packages/localizations/CHANGELOG.md (1 hunks)
  • packages/localizations/package.json (1 hunks)
  • packages/nextjs/CHANGELOG.md (1 hunks)
  • packages/nextjs/package.json (1 hunks)
  • packages/nuxt/CHANGELOG.md (1 hunks)
  • packages/nuxt/package.json (1 hunks)
  • packages/react-router/CHANGELOG.md (1 hunks)
  • packages/react-router/package.json (1 hunks)
  • packages/react/CHANGELOG.md (1 hunks)
  • packages/react/package.json (1 hunks)
  • packages/remix/CHANGELOG.md (1 hunks)
  • packages/remix/package.json (1 hunks)
  • packages/shared/CHANGELOG.md (1 hunks)
  • packages/shared/package.json (1 hunks)
  • packages/tanstack-react-start/CHANGELOG.md (1 hunks)
  • packages/tanstack-react-start/package.json (1 hunks)
  • packages/testing/CHANGELOG.md (1 hunks)
  • packages/testing/package.json (1 hunks)
  • packages/themes/CHANGELOG.md (1 hunks)
  • packages/themes/package.json (1 hunks)
  • packages/types/CHANGELOG.md (1 hunks)
  • packages/types/package.json (1 hunks)
  • packages/vue/CHANGELOG.md (1 hunks)
  • packages/vue/package.json (1 hunks)
💤 Files with no reviewable changes (1)
  • .changeset/shiny-pants-jump.md
✅ Files skipped from review due to trivial changes (5)
  • packages/remix/package.json
  • packages/nuxt/package.json
  • packages/fastify/CHANGELOG.md
  • packages/testing/CHANGELOG.md
  • packages/types/CHANGELOG.md
🚧 Files skipped from review as they are similar to previous changes (38)
  • packages/expo-passkeys/package.json
  • packages/express/package.json
  • packages/elements/package.json
  • packages/tanstack-react-start/package.json
  • packages/react/package.json
  • packages/types/package.json
  • packages/expo/package.json
  • packages/vue/package.json
  • packages/fastify/package.json
  • packages/shared/package.json
  • packages/backend/package.json
  • packages/testing/package.json
  • packages/clerk-js/package.json
  • packages/agent-toolkit/package.json
  • packages/react/CHANGELOG.md
  • packages/express/CHANGELOG.md
  • packages/nextjs/package.json
  • packages/astro/CHANGELOG.md
  • packages/chrome-extension/package.json
  • packages/chrome-extension/CHANGELOG.md
  • packages/react-router/package.json
  • packages/remix/CHANGELOG.md
  • packages/astro/package.json
  • packages/themes/package.json
  • packages/clerk-js/CHANGELOG.md
  • packages/backend/CHANGELOG.md
  • packages/expo-passkeys/CHANGELOG.md
  • packages/react-router/CHANGELOG.md
  • packages/themes/CHANGELOG.md
  • packages/nuxt/CHANGELOG.md
  • packages/localizations/CHANGELOG.md
  • packages/shared/CHANGELOG.md
  • packages/nextjs/CHANGELOG.md
  • packages/vue/CHANGELOG.md
  • packages/localizations/package.json
  • packages/expo/CHANGELOG.md
  • packages/elements/CHANGELOG.md
  • packages/agent-toolkit/CHANGELOG.md
🧰 Additional context used
📓 Path-based instructions (3)
**/*.{js,jsx,ts,tsx,json,css,scss,md,yaml,yml}

📄 CodeRabbit Inference Engine (.cursor/rules/development.mdc)

Use Prettier for consistent code formatting

Files:

  • packages/tanstack-react-start/CHANGELOG.md
packages/**/CHANGELOG.md

📄 CodeRabbit Inference Engine (.cursor/rules/development.mdc)

Maintain detailed changelogs

Files:

  • packages/tanstack-react-start/CHANGELOG.md
**/*

⚙️ CodeRabbit Configuration File

If there are no tests added or modified as part of the PR, please suggest that tests be added to cover the changes.

Files:

  • packages/tanstack-react-start/CHANGELOG.md
⏰ Context from checks skipped due to timeout of 90000ms. You can increase the timeout in your CodeRabbit configuration to a maximum of 15 minutes (900000ms). (2)
  • GitHub Check: Analyze (javascript-typescript)
  • GitHub Check: semgrep-cloud-platform/scan
🔇 Additional comments (1)
packages/tanstack-react-start/CHANGELOG.md (1)

3-11: Changelog entry looks good for 0.21.8

Accurately reflects dependency bumps and links to the commit. Formatting is consistent with prior entries.

packages/tanstack-react-start/CHANGELOG.md Outdated
Comment on lines 7 to 11
- Updated dependencies [[`6459f7d`](https://github.com/clerk/javascript/commit/6459f7dabe5f163f48ed73106bb901d8187da3e2)]:
- @clerk/clerk-react@5.41.0
- @clerk/types@4.75.0
- @clerk/backend@2.7.1
- @clerk/shared@3.18.2
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

💡 Verification agent

🧩 Analysis chain

Verify package.json version and dependency ranges match the changelog

Please confirm:

  • packages/tanstack-react-start/package.json version is 0.21.8
  • dependencies/peerDependencies align with:
    • @clerk/clerk-react 5.41.0
    • @clerk/types 4.75.0
    • @clerk/backend 2.7.1
    • @clerk/shared 3.18.2

Run this script from repo root:

🏁 Script executed:

#!/bin/bash
set -euo pipefail

PKG=packages/tanstack-react-start/package.json

echo "Checking package version..."
jq -r '.version' "$PKG"

echo "Expected: 0.21.8"
act_ver=$(jq -r '.version' "$PKG")
test "$act_ver" = "0.21.8" && echo "OK: version matches" || { echo "ERROR: version mismatch ($act_ver)"; exit 1; }

check_dep() {
  local name="$1" expected="$2"
  # Prefer dependencies > peerDependencies > devDependencies
  val=$(jq -r --arg n "$name" '
    (.dependencies[$n] // .peerDependencies[$n] // .devDependencies[$n] // "")' "$PKG")
  if [ -z "$val" ] || [ "$val" = "null" ]; then
    echo "WARN: $name not found in dependencies/peerDependencies/devDependencies"
    return 0
  fi
  # Accept exact or caret ranges starting with expected
  if [[ "$val" == "$expected" || "$val" == ^"$expected" || "$val" == "~$expected" ]]; then
    echo "OK: $name -> $val"
  else
    echo "ERROR: $name -> $val (expected $expected or compatible range)"
    exit 1
  fi
}

echo "Checking dependency ranges..."
check_dep "@clerk/clerk-react" "5.41.0"
check_dep "@clerk/types" "4.75.0"
check_dep "@clerk/backend" "2.7.1"
check_dep "@clerk/shared" "3.18.2"

echo "All checks passed."

Length of output: 1074

Fix dependency versions in package.json to match CHANGELOG

The changelog was updated to bump the Clerk packages to specific versions, but in packages/tanstack-react-start/package.json these are still using the workspace protocol. Please update them to explicit, compatible ranges:

• File: packages/tanstack-react-start/package.json

  • Replace
    "@clerk/clerk-react": "workspace:^"
    with
    "@clerk/clerk-react": "^5.41.0"
  • Replace
    "@clerk/types": "workspace:^"
    with
    "@clerk/types": "^4.75.0"
  • Replace
    "@clerk/backend": "workspace:^"
    with
    "@clerk/backend": "^2.7.1"
  • Replace
    "@clerk/shared": "workspace:^"
    with
    "@clerk/shared": "^3.18.2"

Example diff snippet:

--- a/packages/tanstack-react-start/package.json
+++ b/packages/tanstack-react-start/package.json
@@ dependencies {
-  "@clerk/clerk-react": "workspace:^",
+  "@clerk/clerk-react": "^5.41.0",
@@ peerDependencies {
-  "@clerk/types": "workspace:^",
+  "@clerk/types": "^4.75.0",
-  "@clerk/backend": "workspace:^",
+  "@clerk/backend": "^2.7.1",
-  "@clerk/shared": "workspace:^"
+  "@clerk/shared": "^3.18.2"
}

Once those are updated, the package.json dependencies will align with the changelog’s release notes.

📝 Committable suggestion

‼️ IMPORTANT
Carefully review the code before committing. Ensure that it accurately replaces the highlighted code, contains no missing lines, and has no issues with indentation. Thoroughly test & benchmark the code to ensure it meets the requirements.

Suggested change
- Updated dependencies [[`6459f7d`](https://github.com/clerk/javascript/commit/6459f7dabe5f163f48ed73106bb901d8187da3e2)]:
- @clerk/clerk-react@5.41.0
- @clerk/types@4.75.0
- @clerk/backend@2.7.1
- @clerk/shared@3.18.2
--- a/packages/tanstack-react-start/package.json
+++ b/packages/tanstack-react-start/package.json
@@ dependencies {
- "@clerk/clerk-react": "workspace:^",
+ "@clerk/clerk-react": "^5.41.0",
@@ peerDependencies {
- "@clerk/types": "workspace:^",
+ "@clerk/types": "^4.75.0",
- "@clerk/backend": "workspace:^",
+ "@clerk/backend": "^2.7.1",
- "@clerk/shared": "workspace:^"
+ "@clerk/shared": "^3.18.2"
}
🤖 Prompt for AI Agents 
In packages/tanstack-react-start/package.json (around where Clerk deps are
declared, corresponding to the CHANGELOG note between lines 7–11), the
package.json still uses workspace:^ for Clerk packages; replace the workspace
protocol with the explicit versions from the changelog: change
"@clerk/clerk-react": "workspace:^" to "@clerk/clerk-react": "^5.41.0",
"@clerk/types": "workspace:^" to "@clerk/types": "^4.75.0", "@clerk/backend":
"workspace:^" to "@clerk/backend": "^2.7.1", and "@clerk/shared": "workspace:^"
to "@clerk/shared": "^3.18.2" so the dependency ranges match the CHANGELOG.

@github-actions github-actions bot force-pushed the changeset-release/main branch from 478b835 to d480c07 Compare August 11, 2025 14:14
coderabbitai[bot]
coderabbitai bot reviewed Aug 11, 2025
View reviewed changes
Copy link
Contributor

@coderabbitai coderabbitai bot left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Actionable comments posted: 1

♻️ Duplicate comments (1)
packages/astro/CHANGELOG.md (1)

5-8: Add a concise Migration note under Minor Changes

Users need a clear path now that this option is removed from Clerk options. Add a sub-bullet explaining that pending sessions are treated as signed-out by default, and that opting into treating pending sessions as authenticated should be done via per-helper/hook/component options (e.g., getAuth/auth, useAuth, , ), not via Clerk options anymore.

Apply this diff:

 ### Minor Changes

 - Remove `treatPendingAsSignedOut` from Clerk options ([#6497](https://github.com/clerk/javascript/pull/6497)) by [@LauraBeatris](https://github.com/LauraBeatris)
+  - Migration: Pending sessions continue to be treated as signed-out by default. The `treatPendingAsSignedOut` setting is no longer supported via Clerk options. If you previously configured it there, set it per helper/hook/component instead (e.g., `getAuth`/`auth` options, `useAuth`, `<SignedIn>`, `<Protect>`).
📜 Review details

Configuration used: CodeRabbit UI
Review profile: CHILL
Plan: Pro

📥 Commits

Reviewing files that changed from the base of the PR and between 478b835 and d480c07.

📒 Files selected for processing (45)
  • .changeset/shiny-pants-jump.md (0 hunks)
  • packages/agent-toolkit/CHANGELOG.md (1 hunks)
  • packages/agent-toolkit/package.json (1 hunks)
  • packages/astro/CHANGELOG.md (1 hunks)
  • packages/astro/package.json (1 hunks)
  • packages/backend/CHANGELOG.md (1 hunks)
  • packages/backend/package.json (1 hunks)
  • packages/chrome-extension/CHANGELOG.md (1 hunks)
  • packages/chrome-extension/package.json (1 hunks)
  • packages/clerk-js/CHANGELOG.md (1 hunks)
  • packages/clerk-js/package.json (1 hunks)
  • packages/elements/CHANGELOG.md (1 hunks)
  • packages/elements/package.json (1 hunks)
  • packages/expo-passkeys/CHANGELOG.md (1 hunks)
  • packages/expo-passkeys/package.json (1 hunks)
  • packages/expo/CHANGELOG.md (1 hunks)
  • packages/expo/package.json (1 hunks)
  • packages/express/CHANGELOG.md (1 hunks)
  • packages/express/package.json (1 hunks)
  • packages/fastify/CHANGELOG.md (1 hunks)
  • packages/fastify/package.json (1 hunks)
  • packages/localizations/CHANGELOG.md (1 hunks)
  • packages/localizations/package.json (1 hunks)
  • packages/nextjs/CHANGELOG.md (1 hunks)
  • packages/nextjs/package.json (1 hunks)
  • packages/nuxt/CHANGELOG.md (1 hunks)
  • packages/nuxt/package.json (1 hunks)
  • packages/react-router/CHANGELOG.md (1 hunks)
  • packages/react-router/package.json (1 hunks)
  • packages/react/CHANGELOG.md (1 hunks)
  • packages/react/package.json (1 hunks)
  • packages/remix/CHANGELOG.md (1 hunks)
  • packages/remix/package.json (1 hunks)
  • packages/shared/CHANGELOG.md (1 hunks)
  • packages/shared/package.json (1 hunks)
  • packages/tanstack-react-start/CHANGELOG.md (1 hunks)
  • packages/tanstack-react-start/package.json (1 hunks)
  • packages/testing/CHANGELOG.md (1 hunks)
  • packages/testing/package.json (1 hunks)
  • packages/themes/CHANGELOG.md (1 hunks)
  • packages/themes/package.json (1 hunks)
  • packages/types/CHANGELOG.md (1 hunks)
  • packages/types/package.json (1 hunks)
  • packages/vue/CHANGELOG.md (1 hunks)
  • packages/vue/package.json (1 hunks)
💤 Files with no reviewable changes (1)
  • .changeset/shiny-pants-jump.md
✅ Files skipped from review due to trivial changes (8)
  • packages/backend/package.json
  • packages/fastify/package.json
  • packages/chrome-extension/CHANGELOG.md
  • packages/expo/package.json
  • packages/remix/CHANGELOG.md
  • packages/types/package.json
  • packages/expo-passkeys/CHANGELOG.md
  • packages/nextjs/CHANGELOG.md
🚧 Files skipped from review as they are similar to previous changes (34)
  • packages/expo-passkeys/package.json
  • packages/elements/package.json
  • packages/testing/package.json
  • packages/agent-toolkit/package.json
  • packages/nextjs/package.json
  • packages/themes/package.json
  • packages/express/package.json
  • packages/express/CHANGELOG.md
  • packages/themes/CHANGELOG.md
  • packages/react-router/package.json
  • packages/nuxt/package.json
  • packages/vue/package.json
  • packages/expo/CHANGELOG.md
  • packages/backend/CHANGELOG.md
  • packages/remix/package.json
  • packages/chrome-extension/package.json
  • packages/types/CHANGELOG.md
  • packages/tanstack-react-start/package.json
  • packages/testing/CHANGELOG.md
  • packages/astro/package.json
  • packages/localizations/package.json
  • packages/shared/package.json
  • packages/react/package.json
  • packages/react-router/CHANGELOG.md
  • packages/shared/CHANGELOG.md
  • packages/agent-toolkit/CHANGELOG.md
  • packages/elements/CHANGELOG.md
  • packages/localizations/CHANGELOG.md
  • packages/clerk-js/package.json
  • packages/vue/CHANGELOG.md
  • packages/clerk-js/CHANGELOG.md
  • packages/react/CHANGELOG.md
  • packages/tanstack-react-start/CHANGELOG.md
  • packages/nuxt/CHANGELOG.md
🧰 Additional context used
📓 Path-based instructions (3)
**/*.{js,jsx,ts,tsx,json,css,scss,md,yaml,yml}

📄 CodeRabbit Inference Engine (.cursor/rules/development.mdc)

Use Prettier for consistent code formatting

Files:

  • packages/astro/CHANGELOG.md
  • packages/fastify/CHANGELOG.md
packages/**/CHANGELOG.md

📄 CodeRabbit Inference Engine (.cursor/rules/development.mdc)

Maintain detailed changelogs

Files:

  • packages/astro/CHANGELOG.md
  • packages/fastify/CHANGELOG.md
**/*

⚙️ CodeRabbit Configuration File

If there are no tests added or modified as part of the PR, please suggest that tests be added to cover the changes.

Files:

  • packages/astro/CHANGELOG.md
  • packages/fastify/CHANGELOG.md
⏰ Context from checks skipped due to timeout of 90000ms. You can increase the timeout in your CodeRabbit configuration to a maximum of 15 minutes (900000ms). (2)
  • GitHub Check: Analyze (javascript-typescript)
  • GitHub Check: semgrep-cloud-platform/scan
🔇 Additional comments (1)
packages/fastify/CHANGELOG.md (1)

3-11: Dependencies Verified in package.json

All three packages—@clerk/types, @clerk/backend, and @clerk/shared—are declared as workspace:^ in packages/fastify/package.json, which correctly picks up the newly bumped versions (4.75.0, 2.7.1, 3.18.2) via the workspace protocol. No further changes needed.

@github-actions github-actions bot force-pushed the changeset-release/main branch from d480c07 to 8cde277 Compare August 11, 2025 14:49
@github-actions github-actions bot force-pushed the changeset-release/main branch from 8cde277 to 7715389 Compare August 11, 2025 14:57
@github-actions github-actions bot force-pushed the changeset-release/main branch from 7715389 to d0ac7a5 Compare August 11, 2025 15:17
coderabbitai[bot]
coderabbitai bot reviewed Aug 11, 2025
View reviewed changes
Copy link
Contributor

@coderabbitai coderabbitai bot left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Actionable comments posted: 0

🧹 Nitpick comments (2)
packages/clerk-js/CHANGELOG.md (2)

5-8: Add a short migration note for the removed option

Removing a public option benefits from explicit “what to do now” guidance. Consider adding a brief migration snippet to streamline upgrades.

 ### Minor Changes

-- Remove `treatPendingAsSignedOut` from Clerk options ([#6497](https://github.com/clerk/javascript/pull/6497)) by [@LauraBeatris](https://github.com/LauraBeatris)
+- Remove `treatPendingAsSignedOut` from Clerk options ([#6497](https://github.com/clerk/javascript/pull/6497)) by [@LauraBeatris](https://github.com/LauraBeatris)
+
+  Migration:
+  - If you previously set `treatPendingAsSignedOut: true`, you can safely remove it — pending sessions are treated as signed-out by default since 5.59.0.
+  - If you relied on `treatPendingAsSignedOut: false`, review any custom logic around pending sessions and prefer using `Clerk.isSignedIn` where applicable.
+  - See the v5 upgrade guide for details on pending session semantics.

11-16: Clarify scope of the Next.js hooks note

The bullet mentions Next.js hooks under the clerk-js changelog. Please clarify whether this behavior change originates in clerk-js (affecting Next.js integrations) or in @clerk/nextjs, and cross-reference the @clerk/nextjs entry if applicable. This helps readers know where to look and what to bump.

📜 Review details

Configuration used: CodeRabbit UI
Review profile: CHILL
Plan: Pro

📥 Commits

Reviewing files that changed from the base of the PR and between d480c07 and d0ac7a5.

📒 Files selected for processing (46)
  • .changeset/evil-ideas-stop.md (0 hunks)
  • .changeset/shiny-pants-jump.md (0 hunks)
  • packages/agent-toolkit/CHANGELOG.md (1 hunks)
  • packages/agent-toolkit/package.json (1 hunks)
  • packages/astro/CHANGELOG.md (1 hunks)
  • packages/astro/package.json (1 hunks)
  • packages/backend/CHANGELOG.md (1 hunks)
  • packages/backend/package.json (1 hunks)
  • packages/chrome-extension/CHANGELOG.md (1 hunks)
  • packages/chrome-extension/package.json (1 hunks)
  • packages/clerk-js/CHANGELOG.md (1 hunks)
  • packages/clerk-js/package.json (1 hunks)
  • packages/elements/CHANGELOG.md (1 hunks)
  • packages/elements/package.json (1 hunks)
  • packages/expo-passkeys/CHANGELOG.md (1 hunks)
  • packages/expo-passkeys/package.json (1 hunks)
  • packages/expo/CHANGELOG.md (1 hunks)
  • packages/expo/package.json (1 hunks)
  • packages/express/CHANGELOG.md (1 hunks)
  • packages/express/package.json (1 hunks)
  • packages/fastify/CHANGELOG.md (1 hunks)
  • packages/fastify/package.json (1 hunks)
  • packages/localizations/CHANGELOG.md (1 hunks)
  • packages/localizations/package.json (1 hunks)
  • packages/nextjs/CHANGELOG.md (1 hunks)
  • packages/nextjs/package.json (1 hunks)
  • packages/nuxt/CHANGELOG.md (1 hunks)
  • packages/nuxt/package.json (1 hunks)
  • packages/react-router/CHANGELOG.md (1 hunks)
  • packages/react-router/package.json (1 hunks)
  • packages/react/CHANGELOG.md (1 hunks)
  • packages/react/package.json (1 hunks)
  • packages/remix/CHANGELOG.md (1 hunks)
  • packages/remix/package.json (1 hunks)
  • packages/shared/CHANGELOG.md (1 hunks)
  • packages/shared/package.json (1 hunks)
  • packages/tanstack-react-start/CHANGELOG.md (1 hunks)
  • packages/tanstack-react-start/package.json (1 hunks)
  • packages/testing/CHANGELOG.md (1 hunks)
  • packages/testing/package.json (1 hunks)
  • packages/themes/CHANGELOG.md (1 hunks)
  • packages/themes/package.json (1 hunks)
  • packages/types/CHANGELOG.md (1 hunks)
  • packages/types/package.json (1 hunks)
  • packages/vue/CHANGELOG.md (1 hunks)
  • packages/vue/package.json (1 hunks)
💤 Files with no reviewable changes (2)
  • .changeset/evil-ideas-stop.md
  • .changeset/shiny-pants-jump.md
✅ Files skipped from review due to trivial changes (8)
  • packages/expo/package.json
  • packages/localizations/CHANGELOG.md
  • packages/vue/package.json
  • packages/express/CHANGELOG.md
  • packages/clerk-js/package.json
  • packages/agent-toolkit/CHANGELOG.md
  • packages/nextjs/CHANGELOG.md
  • packages/agent-toolkit/package.json
🚧 Files skipped from review as they are similar to previous changes (35)
  • packages/fastify/package.json
  • packages/chrome-extension/package.json
  • packages/localizations/package.json
  • packages/expo-passkeys/package.json
  • packages/testing/package.json
  • packages/astro/package.json
  • packages/remix/package.json
  • packages/themes/package.json
  • packages/types/package.json
  • packages/nextjs/package.json
  • packages/react/package.json
  • packages/backend/package.json
  • packages/express/package.json
  • packages/chrome-extension/CHANGELOG.md
  • packages/backend/CHANGELOG.md
  • packages/shared/package.json
  • packages/nuxt/CHANGELOG.md
  • packages/vue/CHANGELOG.md
  • packages/tanstack-react-start/package.json
  • packages/elements/CHANGELOG.md
  • packages/react/CHANGELOG.md
  • packages/themes/CHANGELOG.md
  • packages/react-router/package.json
  • packages/types/CHANGELOG.md
  • packages/tanstack-react-start/CHANGELOG.md
  • packages/remix/CHANGELOG.md
  • packages/testing/CHANGELOG.md
  • packages/fastify/CHANGELOG.md
  • packages/react-router/CHANGELOG.md
  • packages/astro/CHANGELOG.md
  • packages/elements/package.json
  • packages/expo/CHANGELOG.md
  • packages/shared/CHANGELOG.md
  • packages/expo-passkeys/CHANGELOG.md
  • packages/nuxt/package.json
🧰 Additional context used
📓 Path-based instructions (3)
**/*.{js,jsx,ts,tsx,json,css,scss,md,yaml,yml}

📄 CodeRabbit Inference Engine (.cursor/rules/development.mdc)

Use Prettier for consistent code formatting

Files:

  • packages/clerk-js/CHANGELOG.md
packages/**/CHANGELOG.md

📄 CodeRabbit Inference Engine (.cursor/rules/development.mdc)

Maintain detailed changelogs

Files:

  • packages/clerk-js/CHANGELOG.md
**/*

⚙️ CodeRabbit Configuration File

If there are no tests added or modified as part of the PR, please suggest that tests be added to cover the changes.

Files:

  • packages/clerk-js/CHANGELOG.md
⏰ Context from checks skipped due to timeout of 90000ms. You can increase the timeout in your CodeRabbit configuration to a maximum of 15 minutes (900000ms). (1)
  • GitHub Check: semgrep-cloud-platform/scan

@github-actions github-actions bot force-pushed the changeset-release/main branch from d0ac7a5 to 16191dc Compare August 11, 2025 15:38
coderabbitai[bot]
coderabbitai bot reviewed Aug 11, 2025
View reviewed changes
Copy link
Contributor

@coderabbitai coderabbitai bot left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Actionable comments posted: 0

🧹 Nitpick comments (2)
packages/clerk-js/CHANGELOG.md (2)

5-8: Add migration notes for removed treatPendingAsSignedOut and sanity-check semver

Removing a public option can surprise consumers. Please include a short “Migration” note under this bullet to explain what changes (and that pending is treated as signed-out by default) and how to update apps. Also confirm that shipping this as a minor version adheres to your release policy.

Proposed snippet to append under the Minor Change:

- Remove `treatPendingAsSignedOut` from Clerk options ([#6497](https://github.com/clerk/javascript/pull/6497)) by [@LauraBeatris](https://github.com/LauraBeatris)
+ Remove `treatPendingAsSignedOut` from Clerk options ([#6497](https://github.com/clerk/javascript/pull/6497)) by [@LauraBeatris](https://github.com/LauraBeatris)
+
+ Migration:
+ - The option is no longer supported. Pending sessions are treated as signed-out by default.
+ - Replace any conditional logic relying on `treatPendingAsSignedOut` with checks on `isSignedIn` and/or `session.status`.
+   Example:
+   ```ts
+   // Before
+   const { isSignedIn, session } = useAuth();
+   const signedOut = !isSignedIn || session?.status === 'pending';
+
+   // After
+   const { isSignedIn } = useAuth();
+   const signedOut = !isSignedIn; // pending is already treated as signed-out
+   ```

11-16: Clarify which Next.js hooks are affected by active → pending transitions

“Trigger Next.js hooks” is vague. Please name the specific hooks to make the impact clear (e.g., useAuth, useUser, useSession, and/or server auth()), and briefly state the expected behavior change (e.g., re-render or state update).

Suggested wording:

- Trigger Next.js hooks on session status transition from `active` to `pending` to update authentication context state
+ Trigger @clerk/nextjs hooks (e.g., `useAuth`, `useUser`, `useSession`, and/or server `auth()`) on session status transition from `active` to `pending` so the authentication context re-evaluates and updates accordingly
📜 Review details

Configuration used: CodeRabbit UI
Review profile: CHILL
Plan: Pro

📥 Commits

Reviewing files that changed from the base of the PR and between d0ac7a5 and 16191dc.

📒 Files selected for processing (49)
  • .changeset/eight-walls-flash.md (0 hunks)
  • .changeset/evil-ideas-stop.md (0 hunks)
  • .changeset/mean-jobs-stare.md (0 hunks)
  • .changeset/shiny-pants-jump.md (0 hunks)
  • .changeset/wild-loops-write.md (0 hunks)
  • packages/agent-toolkit/CHANGELOG.md (1 hunks)
  • packages/agent-toolkit/package.json (1 hunks)
  • packages/astro/CHANGELOG.md (1 hunks)
  • packages/astro/package.json (1 hunks)
  • packages/backend/CHANGELOG.md (1 hunks)
  • packages/backend/package.json (1 hunks)
  • packages/chrome-extension/CHANGELOG.md (1 hunks)
  • packages/chrome-extension/package.json (1 hunks)
  • packages/clerk-js/CHANGELOG.md (1 hunks)
  • packages/clerk-js/package.json (1 hunks)
  • packages/elements/CHANGELOG.md (1 hunks)
  • packages/elements/package.json (1 hunks)
  • packages/expo-passkeys/CHANGELOG.md (1 hunks)
  • packages/expo-passkeys/package.json (1 hunks)
  • packages/expo/CHANGELOG.md (1 hunks)
  • packages/expo/package.json (1 hunks)
  • packages/express/CHANGELOG.md (1 hunks)
  • packages/express/package.json (1 hunks)
  • packages/fastify/CHANGELOG.md (1 hunks)
  • packages/fastify/package.json (1 hunks)
  • packages/localizations/CHANGELOG.md (1 hunks)
  • packages/localizations/package.json (1 hunks)
  • packages/nextjs/CHANGELOG.md (1 hunks)
  • packages/nextjs/package.json (1 hunks)
  • packages/nuxt/CHANGELOG.md (1 hunks)
  • packages/nuxt/package.json (1 hunks)
  • packages/react-router/CHANGELOG.md (1 hunks)
  • packages/react-router/package.json (1 hunks)
  • packages/react/CHANGELOG.md (1 hunks)
  • packages/react/package.json (1 hunks)
  • packages/remix/CHANGELOG.md (1 hunks)
  • packages/remix/package.json (1 hunks)
  • packages/shared/CHANGELOG.md (1 hunks)
  • packages/shared/package.json (1 hunks)
  • packages/tanstack-react-start/CHANGELOG.md (1 hunks)
  • packages/tanstack-react-start/package.json (1 hunks)
  • packages/testing/CHANGELOG.md (1 hunks)
  • packages/testing/package.json (1 hunks)
  • packages/themes/CHANGELOG.md (1 hunks)
  • packages/themes/package.json (1 hunks)
  • packages/types/CHANGELOG.md (1 hunks)
  • packages/types/package.json (1 hunks)
  • packages/vue/CHANGELOG.md (1 hunks)
  • packages/vue/package.json (1 hunks)
💤 Files with no reviewable changes (5)
  • .changeset/evil-ideas-stop.md
  • .changeset/mean-jobs-stare.md
  • .changeset/eight-walls-flash.md
  • .changeset/shiny-pants-jump.md
  • .changeset/wild-loops-write.md
✅ Files skipped from review due to trivial changes (8)
  • packages/shared/package.json
  • packages/nuxt/CHANGELOG.md
  • packages/astro/package.json
  • packages/chrome-extension/CHANGELOG.md
  • packages/elements/CHANGELOG.md
  • packages/shared/CHANGELOG.md
  • packages/expo-passkeys/CHANGELOG.md
  • packages/expo/CHANGELOG.md
🚧 Files skipped from review as they are similar to previous changes (35)
  • packages/tanstack-react-start/package.json
  • packages/backend/package.json
  • packages/testing/package.json
  • packages/clerk-js/package.json
  • packages/agent-toolkit/package.json
  • packages/remix/package.json
  • packages/expo-passkeys/package.json
  • packages/fastify/package.json
  • packages/vue/package.json
  • packages/react-router/package.json
  • packages/types/package.json
  • packages/chrome-extension/package.json
  • packages/express/package.json
  • packages/nextjs/package.json
  • packages/themes/package.json
  • packages/localizations/package.json
  • packages/nuxt/package.json
  • packages/react/package.json
  • packages/vue/CHANGELOG.md
  • packages/backend/CHANGELOG.md
  • packages/types/CHANGELOG.md
  • packages/remix/CHANGELOG.md
  • packages/elements/package.json
  • packages/react/CHANGELOG.md
  • packages/fastify/CHANGELOG.md
  • packages/expo/package.json
  • packages/agent-toolkit/CHANGELOG.md
  • packages/themes/CHANGELOG.md
  • packages/tanstack-react-start/CHANGELOG.md
  • packages/nextjs/CHANGELOG.md
  • packages/astro/CHANGELOG.md
  • packages/testing/CHANGELOG.md
  • packages/localizations/CHANGELOG.md
  • packages/express/CHANGELOG.md
  • packages/react-router/CHANGELOG.md
🧰 Additional context used
📓 Path-based instructions (3)
**/*.{js,jsx,ts,tsx,json,css,scss,md,yaml,yml}

📄 CodeRabbit Inference Engine (.cursor/rules/development.mdc)

Use Prettier for consistent code formatting

Files:

  • packages/clerk-js/CHANGELOG.md
packages/**/CHANGELOG.md

📄 CodeRabbit Inference Engine (.cursor/rules/development.mdc)

Maintain detailed changelogs

Files:

  • packages/clerk-js/CHANGELOG.md
**/*

⚙️ CodeRabbit Configuration File

If there are no tests added or modified as part of the PR, please suggest that tests be added to cover the changes.

Files:

  • packages/clerk-js/CHANGELOG.md
⏰ Context from checks skipped due to timeout of 90000ms. You can increase the timeout in your CodeRabbit configuration to a maximum of 15 minutes (900000ms). (2)
  • GitHub Check: Analyze (javascript-typescript)
  • GitHub Check: semgrep-cloud-platform/scan

@github-actions github-actions bot force-pushed the changeset-release/main branch from 16191dc to 4cc971a Compare August 11, 2025 17:31
coderabbitai[bot]
coderabbitai bot reviewed Aug 11, 2025
View reviewed changes
Copy link
Contributor

@coderabbitai coderabbitai bot left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Actionable comments posted: 0

♻️ Duplicate comments (1)
packages/react/CHANGELOG.md (1)

5-8: Add a concise migration note under “Minor Changes” for the removed option

Please add a one-liner to reduce ambiguity for consumers skimming the changelog.

 ### Minor Changes

-- Remove `treatPendingAsSignedOut` from Clerk options ([#6497](https://github.com/clerk/javascript/pull/6497)) by [@LauraBeatris](https://github.com/LauraBeatris)
+- Remove `treatPendingAsSignedOut` from ClerkProvider options ([#6497](https://github.com/clerk/javascript/pull/6497)) by [@LauraBeatris](https://github.com/LauraBeatris)
+  - Migration: Pending sessions are treated as signed-out by default. To restore prior behavior, pass `treatPendingAsSignedOut: false` to your hooks or control components, e.g.:
+    - `useSession({ treatPendingAsSignedOut: false })` or `useAuth({ treatPendingAsSignedOut: false })`
+    - `<Protect treatPendingAsSignedOut={false}>…</Protect>` or `<SignedIn treatPendingAsSignedOut={false}>…</SignedIn>`
🧹 Nitpick comments (3)
packages/express/package.json (1)

3-3: No test changes detected — ensure coverage for the deprecation path

If not already covered, add/confirm tests around the deprecated enableHandshake option in clerkMiddleware (e.g., deprecation warning and unchanged runtime behavior).

I can draft focused tests or a checklist to validate behavior if helpful.

packages/react/CHANGELOG.md (2)

7-7: Clarify wording: “Clerk options” → “ClerkProvider options”

Avoids confusion with other packages’ “Clerk” options.

-- Remove `treatPendingAsSignedOut` from Clerk options
+- Remove `treatPendingAsSignedOut` from ClerkProvider options

3-13: No tests changed in this PR—ensure behavior is covered upstream

Since this is a release PR, verify upstream PRs include test coverage for the default “pending → signed-out” behavior and for hook/component-level opt-outs.

📜 Review details

Configuration used: CodeRabbit UI
Review profile: CHILL
Plan: Pro

📥 Commits

Reviewing files that changed from the base of the PR and between 16191dc and 4cc971a.

📒 Files selected for processing (49)
  • .changeset/eight-walls-flash.md (0 hunks)
  • .changeset/evil-ideas-stop.md (0 hunks)
  • .changeset/mean-jobs-stare.md (0 hunks)
  • .changeset/shiny-pants-jump.md (0 hunks)
  • .changeset/wild-loops-write.md (0 hunks)
  • packages/agent-toolkit/CHANGELOG.md (1 hunks)
  • packages/agent-toolkit/package.json (1 hunks)
  • packages/astro/CHANGELOG.md (1 hunks)
  • packages/astro/package.json (1 hunks)
  • packages/backend/CHANGELOG.md (1 hunks)
  • packages/backend/package.json (1 hunks)
  • packages/chrome-extension/CHANGELOG.md (1 hunks)
  • packages/chrome-extension/package.json (1 hunks)
  • packages/clerk-js/CHANGELOG.md (1 hunks)
  • packages/clerk-js/package.json (1 hunks)
  • packages/elements/CHANGELOG.md (1 hunks)
  • packages/elements/package.json (1 hunks)
  • packages/expo-passkeys/CHANGELOG.md (1 hunks)
  • packages/expo-passkeys/package.json (1 hunks)
  • packages/expo/CHANGELOG.md (1 hunks)
  • packages/expo/package.json (1 hunks)
  • packages/express/CHANGELOG.md (1 hunks)
  • packages/express/package.json (1 hunks)
  • packages/fastify/CHANGELOG.md (1 hunks)
  • packages/fastify/package.json (1 hunks)
  • packages/localizations/CHANGELOG.md (1 hunks)
  • packages/localizations/package.json (1 hunks)
  • packages/nextjs/CHANGELOG.md (1 hunks)
  • packages/nextjs/package.json (1 hunks)
  • packages/nuxt/CHANGELOG.md (1 hunks)
  • packages/nuxt/package.json (1 hunks)
  • packages/react-router/CHANGELOG.md (1 hunks)
  • packages/react-router/package.json (1 hunks)
  • packages/react/CHANGELOG.md (1 hunks)
  • packages/react/package.json (1 hunks)
  • packages/remix/CHANGELOG.md (1 hunks)
  • packages/remix/package.json (1 hunks)
  • packages/shared/CHANGELOG.md (1 hunks)
  • packages/shared/package.json (1 hunks)
  • packages/tanstack-react-start/CHANGELOG.md (1 hunks)
  • packages/tanstack-react-start/package.json (1 hunks)
  • packages/testing/CHANGELOG.md (1 hunks)
  • packages/testing/package.json (1 hunks)
  • packages/themes/CHANGELOG.md (1 hunks)
  • packages/themes/package.json (1 hunks)
  • packages/types/CHANGELOG.md (1 hunks)
  • packages/types/package.json (1 hunks)
  • packages/vue/CHANGELOG.md (1 hunks)
  • packages/vue/package.json (1 hunks)
💤 Files with no reviewable changes (5)
  • .changeset/eight-walls-flash.md
  • .changeset/mean-jobs-stare.md
  • .changeset/shiny-pants-jump.md
  • .changeset/evil-ideas-stop.md
  • .changeset/wild-loops-write.md
✅ Files skipped from review due to trivial changes (9)
  • packages/types/package.json
  • packages/remix/CHANGELOG.md
  • packages/react-router/package.json
  • packages/remix/package.json
  • packages/vue/CHANGELOG.md
  • packages/agent-toolkit/CHANGELOG.md
  • packages/testing/CHANGELOG.md
  • packages/astro/CHANGELOG.md
  • packages/nuxt/CHANGELOG.md
🚧 Files skipped from review as they are similar to previous changes (33)
  • packages/react/package.json
  • packages/shared/package.json
  • packages/astro/package.json
  • packages/vue/package.json
  • packages/tanstack-react-start/package.json
  • packages/expo/package.json
  • packages/agent-toolkit/package.json
  • packages/elements/package.json
  • packages/expo-passkeys/package.json
  • packages/backend/package.json
  • packages/chrome-extension/package.json
  • packages/themes/CHANGELOG.md
  • packages/clerk-js/package.json
  • packages/localizations/package.json
  • packages/chrome-extension/CHANGELOG.md
  • packages/localizations/CHANGELOG.md
  • packages/themes/package.json
  • packages/shared/CHANGELOG.md
  • packages/clerk-js/CHANGELOG.md
  • packages/tanstack-react-start/CHANGELOG.md
  • packages/backend/CHANGELOG.md
  • packages/expo-passkeys/CHANGELOG.md
  • packages/fastify/package.json
  • packages/express/CHANGELOG.md
  • packages/testing/package.json
  • packages/nuxt/package.json
  • packages/nextjs/CHANGELOG.md
  • packages/react-router/CHANGELOG.md
  • packages/expo/CHANGELOG.md
  • packages/elements/CHANGELOG.md
  • packages/types/CHANGELOG.md
  • packages/nextjs/package.json
  • packages/fastify/CHANGELOG.md
🧰 Additional context used
📓 Path-based instructions (4)
**/*.{js,jsx,ts,tsx,json,css,scss,md,yaml,yml}

📄 CodeRabbit Inference Engine (.cursor/rules/development.mdc)

Use Prettier for consistent code formatting

Files:

  • packages/express/package.json
  • packages/react/CHANGELOG.md
packages/*/package.json

📄 CodeRabbit Inference Engine (.cursor/rules/global.mdc)

All publishable packages should be placed under the packages/ directory

packages/*/package.json: All publishable packages must be located in the 'packages/' directory.
All packages must be published under the @clerk namespace on npm.
Semantic versioning must be used across all packages.

Files:

  • packages/express/package.json
**/*

⚙️ CodeRabbit Configuration File

If there are no tests added or modified as part of the PR, please suggest that tests be added to cover the changes.

Files:

  • packages/express/package.json
  • packages/react/CHANGELOG.md
packages/**/CHANGELOG.md

📄 CodeRabbit Inference Engine (.cursor/rules/development.mdc)

Maintain detailed changelogs

Files:

  • packages/react/CHANGELOG.md
🔇 Additional comments (3)
packages/express/package.json (2)

3-3: Semver patch bump to 1.7.18 looks correct

Patch bump aligns with a non-breaking deprecation and internal dependency updates. Package location under packages/ and scoped name @clerk/express comply with guidelines.

3-3: Changelog entry & related package versions confirmed

  • packages/express/CHANGELOG.md includes an entry for 1.7.18 with the deprecation note
  • packages/types is at 4.75.0
  • packages/shared is at 3.19.0
  • packages/backend is at 2.7.1

All versions are aligned.

packages/react/CHANGELOG.md (1)

9-14: ✅ Changelog dependency bumps are accurate

The versions listed in packages/react/CHANGELOG.md
– @clerk/types 4.75.0
– @clerk/shared 3.19.0

match the actual package versions in packages/types and packages/shared. No changes needed.

@github-actions github-actions bot force-pushed the changeset-release/main branch from 4cc971a to bfcbd8a Compare August 11, 2025 18:13
coderabbitai[bot]
coderabbitai bot reviewed Aug 11, 2025
View reviewed changes
Copy link
Contributor

@coderabbitai coderabbitai bot left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Actionable comments posted: 0

♻️ Duplicate comments (1)
packages/react/CHANGELOG.md (1)

5-8: Clarify scope (“ClerkProvider options”) and add a concise Migration note with examples

“Clerk options” is ambiguous in this package; this change removes the prop from ClerkProvider. Also, add a short migration sub-bullet to show how to opt out at the hook/control level.

Proposed diff:

 ### Minor Changes

-- Remove `treatPendingAsSignedOut` from Clerk options ([#6497](https://github.com/clerk/javascript/pull/6497)) by [@LauraBeatris](https://github.com/LauraBeatris)
+- Remove `treatPendingAsSignedOut` from `ClerkProvider` options ([#6497](https://github.com/clerk/javascript/pull/6497)) by [@LauraBeatris](https://github.com/LauraBeatris)
+  - Migration: Pending sessions continue to be treated as signed-out by default.
+    To restore the previous behavior (include pending), set the option where it’s now supported:
+    - Hooks
+      ```tsx
+      const { isSignedIn, session } = useSession({ treatPendingAsSignedOut: false });
+      const { isSignedIn: a, session: s } = useAuth({ treatPendingAsSignedOut: false });
+      ```
+    - Control components
+      ```tsx
+      <Protect treatPendingAsSignedOut={false}>{children}</Protect>
+      <SignedIn treatPendingAsSignedOut={false}>{children}</SignedIn>
+      ```

Quick verification to ensure the provider prop is no longer referenced in this package:

#!/bin/bash
# Verify there are no lingering references to the prop on ClerkProvider
rg -n --hidden --glob '!**/dist/**' --glob '!**/build/**' 'ClerkProvider.*treatPendingAsSignedOut' packages/react || true

# Optional: inventory any remaining mentions for follow-ups (hooks/components usage is expected)
rg -n --hidden --glob '!**/dist/**' --glob '!**/build/**' 'treatPendingAsSignedOut' packages/react || true
🧹 Nitpick comments (1)
packages/react/CHANGELOG.md (1)

3-14: Optional: add a one-liner about verification/testing expectations

Consider appending a short “Verification” note (not code) indicating that pending-session behavior remains the default and that hook/control overrides were validated. Helps consumers and internal release QA.

📜 Review details

Configuration used: CodeRabbit UI
Review profile: CHILL
Plan: Pro

📥 Commits

Reviewing files that changed from the base of the PR and between 4cc971a and bfcbd8a.

📒 Files selected for processing (51)
  • .changeset/bitter-waves-burn.md (0 hunks)
  • .changeset/eight-walls-flash.md (0 hunks)
  • .changeset/evil-ideas-stop.md (0 hunks)
  • .changeset/mean-jobs-stare.md (0 hunks)
  • .changeset/shiny-pants-jump.md (0 hunks)
  • .changeset/slow-shoes-give.md (0 hunks)
  • .changeset/wild-loops-write.md (0 hunks)
  • packages/agent-toolkit/CHANGELOG.md (1 hunks)
  • packages/agent-toolkit/package.json (1 hunks)
  • packages/astro/CHANGELOG.md (1 hunks)
  • packages/astro/package.json (1 hunks)
  • packages/backend/CHANGELOG.md (1 hunks)
  • packages/backend/package.json (1 hunks)
  • packages/chrome-extension/CHANGELOG.md (1 hunks)
  • packages/chrome-extension/package.json (1 hunks)
  • packages/clerk-js/CHANGELOG.md (1 hunks)
  • packages/clerk-js/package.json (1 hunks)
  • packages/elements/CHANGELOG.md (1 hunks)
  • packages/elements/package.json (1 hunks)
  • packages/expo-passkeys/CHANGELOG.md (1 hunks)
  • packages/expo-passkeys/package.json (1 hunks)
  • packages/expo/CHANGELOG.md (1 hunks)
  • packages/expo/package.json (1 hunks)
  • packages/express/CHANGELOG.md (1 hunks)
  • packages/express/package.json (1 hunks)
  • packages/fastify/CHANGELOG.md (1 hunks)
  • packages/fastify/package.json (1 hunks)
  • packages/localizations/CHANGELOG.md (1 hunks)
  • packages/localizations/package.json (1 hunks)
  • packages/nextjs/CHANGELOG.md (1 hunks)
  • packages/nextjs/package.json (1 hunks)
  • packages/nuxt/CHANGELOG.md (1 hunks)
  • packages/nuxt/package.json (1 hunks)
  • packages/react-router/CHANGELOG.md (1 hunks)
  • packages/react-router/package.json (1 hunks)
  • packages/react/CHANGELOG.md (1 hunks)
  • packages/react/package.json (1 hunks)
  • packages/remix/CHANGELOG.md (1 hunks)
  • packages/remix/package.json (1 hunks)
  • packages/shared/CHANGELOG.md (1 hunks)
  • packages/shared/package.json (1 hunks)
  • packages/tanstack-react-start/CHANGELOG.md (1 hunks)
  • packages/tanstack-react-start/package.json (1 hunks)
  • packages/testing/CHANGELOG.md (1 hunks)
  • packages/testing/package.json (1 hunks)
  • packages/themes/CHANGELOG.md (1 hunks)
  • packages/themes/package.json (1 hunks)
  • packages/types/CHANGELOG.md (1 hunks)
  • packages/types/package.json (1 hunks)
  • packages/vue/CHANGELOG.md (1 hunks)
  • packages/vue/package.json (1 hunks)
💤 Files with no reviewable changes (7)
  • .changeset/slow-shoes-give.md
  • .changeset/evil-ideas-stop.md
  • .changeset/mean-jobs-stare.md
  • .changeset/shiny-pants-jump.md
  • .changeset/bitter-waves-burn.md
  • .changeset/wild-loops-write.md
  • .changeset/eight-walls-flash.md
✅ Files skipped from review due to trivial changes (3)
  • packages/testing/package.json
  • packages/vue/package.json
  • packages/fastify/CHANGELOG.md
🚧 Files skipped from review as they are similar to previous changes (38)
  • packages/fastify/package.json
  • packages/themes/package.json
  • packages/react-router/package.json
  • packages/backend/package.json
  • packages/tanstack-react-start/package.json
  • packages/nextjs/package.json
  • packages/remix/package.json
  • packages/localizations/package.json
  • packages/react/package.json
  • packages/chrome-extension/package.json
  • packages/types/package.json
  • packages/nuxt/package.json
  • packages/express/package.json
  • packages/elements/package.json
  • packages/astro/package.json
  • packages/expo/package.json
  • packages/express/CHANGELOG.md
  • packages/expo-passkeys/package.json
  • packages/types/CHANGELOG.md
  • packages/themes/CHANGELOG.md
  • packages/backend/CHANGELOG.md
  • packages/agent-toolkit/CHANGELOG.md
  • packages/agent-toolkit/package.json
  • packages/nuxt/CHANGELOG.md
  • packages/clerk-js/CHANGELOG.md
  • packages/expo/CHANGELOG.md
  • packages/shared/CHANGELOG.md
  • packages/remix/CHANGELOG.md
  • packages/clerk-js/package.json
  • packages/astro/CHANGELOG.md
  • packages/testing/CHANGELOG.md
  • packages/localizations/CHANGELOG.md
  • packages/shared/package.json
  • packages/chrome-extension/CHANGELOG.md
  • packages/vue/CHANGELOG.md
  • packages/expo-passkeys/CHANGELOG.md
  • packages/elements/CHANGELOG.md
  • packages/tanstack-react-start/CHANGELOG.md
🧰 Additional context used
📓 Path-based instructions (3)
**/*.{js,jsx,ts,tsx,json,css,scss,md,yaml,yml}

📄 CodeRabbit Inference Engine (.cursor/rules/development.mdc)

Use Prettier for consistent code formatting

Files:

  • packages/react/CHANGELOG.md
  • packages/react-router/CHANGELOG.md
  • packages/nextjs/CHANGELOG.md
packages/**/CHANGELOG.md

📄 CodeRabbit Inference Engine (.cursor/rules/development.mdc)

Maintain detailed changelogs

Files:

  • packages/react/CHANGELOG.md
  • packages/react-router/CHANGELOG.md
  • packages/nextjs/CHANGELOG.md
**/*

⚙️ CodeRabbit Configuration File

If there are no tests added or modified as part of the PR, please suggest that tests be added to cover the changes.

Files:

  • packages/react/CHANGELOG.md
  • packages/react-router/CHANGELOG.md
  • packages/nextjs/CHANGELOG.md
⏰ Context from checks skipped due to timeout of 90000ms. You can increase the timeout in your CodeRabbit configuration to a maximum of 15 minutes (900000ms). (2)
  • GitHub Check: Analyze (javascript-typescript)
  • GitHub Check: semgrep-cloud-platform/scan
🔇 Additional comments (4)
packages/react/CHANGELOG.md (1)

11-13: Dependencies section LGTM

The bumps to @clerk/types@4.75.0 and @clerk/shared@3.19.0 align with the release plan.

packages/react-router/CHANGELOG.md (1)

3-12: Changelog entry looks good and consistent.

  • Version header and “Patch Changes” structure match the project’s style.
  • Dependency versions align with the release plan: @clerk/clerk-react@5.41.0, @clerk/types@4.75.0, @clerk/shared@3.19.0, @clerk/backend@2.7.1.
packages/nextjs/CHANGELOG.md (2)

3-12: Changelog entry is correct and follows established conventions.

  • Proper placement and formatting of the 6.30.1 patch entry.
  • Dependency versions match the intended release set.

3-12: CHANGELOG version matches package.json and workspace dependency ranges

I’ve verified that:

  • packages/nextjs/package.json is at version 6.30.1
  • packages/react-router/package.json is at version 1.8.12
  • Both use workspace:^ ranges for @clerk/clerk-react, @clerk/types, @clerk/shared, and @clerk/backend, which correctly pick up the bumped versions

No further changes are needed here.

@github-actions github-actions bot force-pushed the changeset-release/main branch from bfcbd8a to f95f67c Compare August 11, 2025 18:28
coderabbitai[bot]
coderabbitai bot reviewed Aug 11, 2025
View reviewed changes
Copy link
Contributor

@coderabbitai coderabbitai bot left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Actionable comments posted: 0

🧹 Nitpick comments (1)
packages/backend/CHANGELOG.md (1)

3-10: Optional: Clarify no functional changes

Consider adding a short line like “No functional changes; dependency updates only” under Patch Changes to set expectations for consumers scanning the log.

📜 Review details

Configuration used: CodeRabbit UI
Review profile: CHILL
Plan: Pro

📥 Commits

Reviewing files that changed from the base of the PR and between bfcbd8a and f95f67c.

📒 Files selected for processing (52)
  • .changeset/bitter-waves-burn.md (0 hunks)
  • .changeset/eight-walls-flash.md (0 hunks)
  • .changeset/evil-ideas-stop.md (0 hunks)
  • .changeset/mean-jobs-stare.md (0 hunks)
  • .changeset/shiny-pants-jump.md (0 hunks)
  • .changeset/slow-shoes-give.md (0 hunks)
  • .changeset/twelve-breads-repair.md (0 hunks)
  • .changeset/wild-loops-write.md (0 hunks)
  • packages/agent-toolkit/CHANGELOG.md (1 hunks)
  • packages/agent-toolkit/package.json (1 hunks)
  • packages/astro/CHANGELOG.md (1 hunks)
  • packages/astro/package.json (1 hunks)
  • packages/backend/CHANGELOG.md (1 hunks)
  • packages/backend/package.json (1 hunks)
  • packages/chrome-extension/CHANGELOG.md (1 hunks)
  • packages/chrome-extension/package.json (1 hunks)
  • packages/clerk-js/CHANGELOG.md (1 hunks)
  • packages/clerk-js/package.json (1 hunks)
  • packages/elements/CHANGELOG.md (1 hunks)
  • packages/elements/package.json (1 hunks)
  • packages/expo-passkeys/CHANGELOG.md (1 hunks)
  • packages/expo-passkeys/package.json (1 hunks)
  • packages/expo/CHANGELOG.md (1 hunks)
  • packages/expo/package.json (1 hunks)
  • packages/express/CHANGELOG.md (1 hunks)
  • packages/express/package.json (1 hunks)
  • packages/fastify/CHANGELOG.md (1 hunks)
  • packages/fastify/package.json (1 hunks)
  • packages/localizations/CHANGELOG.md (1 hunks)
  • packages/localizations/package.json (1 hunks)
  • packages/nextjs/CHANGELOG.md (1 hunks)
  • packages/nextjs/package.json (1 hunks)
  • packages/nuxt/CHANGELOG.md (1 hunks)
  • packages/nuxt/package.json (1 hunks)
  • packages/react-router/CHANGELOG.md (1 hunks)
  • packages/react-router/package.json (1 hunks)
  • packages/react/CHANGELOG.md (1 hunks)
  • packages/react/package.json (1 hunks)
  • packages/remix/CHANGELOG.md (1 hunks)
  • packages/remix/package.json (1 hunks)
  • packages/shared/CHANGELOG.md (1 hunks)
  • packages/shared/package.json (1 hunks)
  • packages/tanstack-react-start/CHANGELOG.md (1 hunks)
  • packages/tanstack-react-start/package.json (1 hunks)
  • packages/testing/CHANGELOG.md (1 hunks)
  • packages/testing/package.json (1 hunks)
  • packages/themes/CHANGELOG.md (1 hunks)
  • packages/themes/package.json (1 hunks)
  • packages/types/CHANGELOG.md (1 hunks)
  • packages/types/package.json (1 hunks)
  • packages/vue/CHANGELOG.md (1 hunks)
  • packages/vue/package.json (1 hunks)
💤 Files with no reviewable changes (8)
  • .changeset/shiny-pants-jump.md
  • .changeset/evil-ideas-stop.md
  • .changeset/wild-loops-write.md
  • .changeset/twelve-breads-repair.md
  • .changeset/slow-shoes-give.md
  • .changeset/eight-walls-flash.md
  • .changeset/bitter-waves-burn.md
  • .changeset/mean-jobs-stare.md
✅ Files skipped from review due to trivial changes (6)
  • packages/expo/package.json
  • packages/shared/CHANGELOG.md
  • packages/react-router/CHANGELOG.md
  • packages/expo/CHANGELOG.md
  • packages/react/package.json
  • packages/chrome-extension/CHANGELOG.md
🚧 Files skipped from review as they are similar to previous changes (35)
  • packages/fastify/package.json
  • packages/react-router/package.json
  • packages/agent-toolkit/package.json
  • packages/vue/package.json
  • packages/clerk-js/package.json
  • packages/chrome-extension/package.json
  • packages/astro/package.json
  • packages/localizations/package.json
  • packages/testing/package.json
  • packages/tanstack-react-start/package.json
  • packages/types/package.json
  • packages/shared/package.json
  • packages/themes/package.json
  • packages/testing/CHANGELOG.md
  • packages/backend/package.json
  • packages/react/CHANGELOG.md
  • packages/express/package.json
  • packages/elements/package.json
  • packages/themes/CHANGELOG.md
  • packages/tanstack-react-start/CHANGELOG.md
  • packages/remix/package.json
  • packages/express/CHANGELOG.md
  • packages/astro/CHANGELOG.md
  • packages/fastify/CHANGELOG.md
  • packages/remix/CHANGELOG.md
  • packages/elements/CHANGELOG.md
  • packages/expo-passkeys/package.json
  • packages/nuxt/CHANGELOG.md
  • packages/expo-passkeys/CHANGELOG.md
  • packages/vue/CHANGELOG.md
  • packages/clerk-js/CHANGELOG.md
  • packages/types/CHANGELOG.md
  • packages/localizations/CHANGELOG.md
  • packages/nextjs/package.json
  • packages/agent-toolkit/CHANGELOG.md
🧰 Additional context used
📓 Path-based instructions (4)
**/*.{js,jsx,ts,tsx,json,css,scss,md,yaml,yml}

📄 CodeRabbit Inference Engine (.cursor/rules/development.mdc)

Use Prettier for consistent code formatting

Files:

  • packages/backend/CHANGELOG.md
  • packages/nuxt/package.json
  • packages/nextjs/CHANGELOG.md
packages/**/CHANGELOG.md

📄 CodeRabbit Inference Engine (.cursor/rules/development.mdc)

Maintain detailed changelogs

Files:

  • packages/backend/CHANGELOG.md
  • packages/nextjs/CHANGELOG.md
**/*

⚙️ CodeRabbit Configuration File

If there are no tests added or modified as part of the PR, please suggest that tests be added to cover the changes.

Files:

  • packages/backend/CHANGELOG.md
  • packages/nuxt/package.json
  • packages/nextjs/CHANGELOG.md
packages/*/package.json

📄 CodeRabbit Inference Engine (.cursor/rules/global.mdc)

All publishable packages should be placed under the packages/ directory

packages/*/package.json: All publishable packages must be located in the 'packages/' directory.
All packages must be published under the @clerk namespace on npm.
Semantic versioning must be used across all packages.

Files:

  • packages/nuxt/package.json
⏰ Context from checks skipped due to timeout of 90000ms. You can increase the timeout in your CodeRabbit configuration to a maximum of 15 minutes (900000ms). (2)
  • GitHub Check: Analyze (javascript-typescript)
  • GitHub Check: semgrep-cloud-platform/scan
🔇 Additional comments (4)
packages/nuxt/package.json (1)

3-3: Approve version bump for @clerk/nuxt to v1.8.4

  • packages/nuxt/package.json shows @clerk/nuxt@1.8.4.
  • All @clerk/* dependencies use workspace:^.
  • CHANGELOG.md includes a “## 1.8.4” entry with the appropriate updates.

Version bump is semver-correct, matches the changelog, and no other changes are required.

packages/backend/CHANGELOG.md (2)

3-10: LGTM: Dependency-only patch entry reads correctly

The 2.7.1 section and dependency bumps look consistent with previous changelog style and the release intent.

3-10: Version coherence verified successfully

The verification confirms that the version bump is properly implemented:

Backend package version: Correctly updated to 2.7.1 in packages/backend/package.json
Downstream dependencies: All packages that depend on @clerk/backend use workspace:^, which automatically resolves to the latest local version (2.7.1)
Legacy references: The 2.7.0 references found are historical entries in CHANGELOGs and lockfiles from previous versions, plus unrelated third-party packages—none affect the current release

The monorepo workspace configuration ensures dependency coherence automatically, and the changelog entry correctly reflects the new 2.7.1 version with appropriate dependency updates.

packages/nextjs/CHANGELOG.md (1)

3-12: Dependencies and stale references verified for packages/nextjs

  • package.json dependencies are correctly set to workspace:^ per our monorepo conventions.
  • No @clerk/clerk-react peerDependency is declared here, which matches the current package structure.
  • rg search confirms there are no unintended or stale treatPendingAsSignedOut usages—all found references correspond to newly introduced APIs.
  • Changelog formatting and content remain consistent with project standards.

Recommend scheduling a quick smoke/e2e run for @clerk/nextjs against the updated versions before final release.

@github-actions github-actions bot force-pushed the changeset-release/main branch from f95f67c to 534f1c1 Compare August 11, 2025 21:13
coderabbitai[bot]
coderabbitai bot reviewed Aug 11, 2025
View reviewed changes
Copy link
Contributor

@coderabbitai coderabbitai bot left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Actionable comments posted: 1

♻️ Duplicate comments (4)
packages/remix/CHANGELOG.md (1)

5-12: Add explicit note about removed treatPendingAsSignedOut to prevent TS breakages

Surface the deprecation removal so Remix consumers know to drop the option when upgrading to @clerk/types@4.75.0.

Apply:

 ### Patch Changes

 - Updated dependencies [[`d93b0ed`](https://github.com/clerk/javascript/commit/d93b0edf4adc57d48a26cb08444192887ccec659), [`6459f7d`](https://github.com/clerk/javascript/commit/6459f7dabe5f163f48ed73106bb901d8187da3e2), [`0ff648a`](https://github.com/clerk/javascript/commit/0ff648aeac0e2f5481596a98c8046d9d58a7bf75), [`9084759`](https://github.com/clerk/javascript/commit/90847593300be605e1ee1c06dac147ce68b25dc7)]:
   - @clerk/clerk-react@5.41.0
   - @clerk/types@4.75.0
   - @clerk/shared@3.19.0
   - @clerk/backend@2.7.1
+ - Note: `@clerk/types@4.75.0` removed the deprecated `treatPendingAsSignedOut` option. If you passed this via `ClerkProvider` (or related helpers), remove it to avoid TypeScript errors.
packages/react/CHANGELOG.md (1)

5-10: Add a concise migration note for removed treatPendingAsSignedOut.

Clarify the behavioral outcome and where to set it now. A short migration bullet under “Minor Changes” reduces ambiguity for consumers.

 ## 5.41.0

 ### Minor Changes

 - [Experimental] Signal Errors ([#6495](https://github.com/clerk/javascript/pull/6495)) by [@dstaley](https://github.com/dstaley)
-- Remove `treatPendingAsSignedOut` from Clerk options ([#6497](https://github.com/clerk/javascript/pull/6497)) by [@LauraBeatris](https://github.com/LauraBeatris)
+- Remove `treatPendingAsSignedOut` from ClerkProvider options ([#6497](https://github.com/clerk/javascript/pull/6497)) by [@LauraBeatris](https://github.com/LauraBeatris)
+  - Migration: Pending sessions are now treated as signed-out by default.  
+    To preserve previous behavior, pass `treatPendingAsSignedOut={false}` to your hooks or control components, e.g.:
+    - `const { session } = useSession({ treatPendingAsSignedOut: false });`
+    - `<Protect treatPendingAsSignedOut={false}>…</Protect>`
packages/types/CHANGELOG.md (2)

5-10: Add a concise Migration note for treatPendingAsSignedOut removal.

This will reduce upgrade friction and make the change self-contained in the changelog.

Apply this diff to add a migration subsection under Minor Changes:

 ## 4.75.0

 ### Minor Changes

 - [Experimental] Signal Errors ([#6495](https://github.com/clerk/javascript/pull/6495)) by [@dstaley](https://github.com/dstaley)

 - Remove `treatPendingAsSignedOut` from Clerk options ([#6497](https://github.com/clerk/javascript/pull/6497)) by [@LauraBeatris](https://github.com/LauraBeatris)
+#### Migration
+If your app set `treatPendingAsSignedOut`, remove it — pending sessions are now returned by default and there is no replacement.

Example before/after for common setups:

// Before (<= 4.74.x)
<ClerkProvider {...props} options={{ treatPendingAsSignedOut: false }} />
// or
useAuth({ treatPendingAsSignedOut: false });

// After (4.75.0+)
<ClerkProvider {...props} />
useAuth();

Tip: This completes the removal surfaced earlier in 4.72.0 (useSession always returns pending sessions). Linking both helps readers understand the full scope.

3-11: Sweep stale references to treatPendingAsSignedOut across the repo.

We’ve previously flagged lingering references. Please re-run a sweep to ensure the removal is complete across code, docs, tests, and other CHANGELOGs.

Use this lightweight grep:

#!/bin/bash
set -euo pipefail

echo "Searching for deprecated option references..."
rg -n --hidden --glob '!**/dist/**' --glob '!**/build/**' \
  'treatPendingAsSignedOut|treat_pending_as_signed_out'
🧹 Nitpick comments (4)
packages/agent-toolkit/CHANGELOG.md (1)

3-11: Optional: Clarify no runtime changes for consumers.

If this package has no code changes beyond dependency bumps, explicitly call that out to reduce noise for readers scanning release notes.

 ## 0.1.19

 ### Patch Changes

 - Updated dependencies [[`d93b0ed`](https://github.com/clerk/javascript/commit/d93b0edf4adc57d48a26cb08444192887ccec659), [`6459f7d`](https://github.com/clerk/javascript/commit/6459f7dabe5f163f48ed73106bb901d8187da3e2), [`0ff648a`](https://github.com/clerk/javascript/commit/0ff648aeac0e2f5481596a98c8046d9d58a7bf75), [`9084759`](https://github.com/clerk/javascript/commit/90847593300be605e1ee1c06dac147ce68b25dc7)]:
   - @clerk/types@4.75.0
   - @clerk/shared@3.19.0
   - @clerk/backend@2.7.1
+  - Note: Dependency bumps only; no runtime changes in this package.
packages/react/CHANGELOG.md (2)

9-9: Tighten wording: “Clerk options” → “ClerkProvider options”.

Makes the note precise within the React package context.

- - Remove `treatPendingAsSignedOut` from Clerk options ([#6497](https://github.com/clerk/javascript/pull/6497)) by [@LauraBeatris](https://github.com/LauraBeatris)
+ - Remove `treatPendingAsSignedOut` from ClerkProvider options ([#6497](https://github.com/clerk/javascript/pull/6497)) by [@LauraBeatris](https://github.com/LauraBeatris)

7-7: Flag “Experimental” scope for Signal Errors with a brief disclaimer.

Add a one-liner that the API is experimental and subject to change; if accessed via an experimental path, mention it.

- - [Experimental] Signal Errors ([#6495](https://github.com/clerk/javascript/pull/6495)) by [@dstaley](https://github.com/dstaley)
+ - [Experimental] Signal Errors ([#6495](https://github.com/clerk/javascript/pull/6495)) by [@dstaley](https://github.com/dstaley) — Experimental and subject to change.
packages/types/CHANGELOG.md (1)

3-14: Consider adding/updating tests or type assertions for the changes.

  • Ensure type tests (or build-time assertions) cover removal of treatPendingAsSignedOut from public types.
  • Add a type-level check or fixture exercising legalAcceptedAt on UserResource to prevent regressions.

If helpful, I can open a follow-up to:

  • add a tiny tsd-style test validating UserResource['legalAcceptedAt'] type and nullability, and
  • assert absence of treatPendingAsSignedOut in exported types.
📜 Review details

Configuration used: CodeRabbit UI
Review profile: CHILL
Plan: Pro

📥 Commits

Reviewing files that changed from the base of the PR and between f95f67c and 534f1c1.

📒 Files selected for processing (53)
  • .changeset/bitter-waves-burn.md (0 hunks)
  • .changeset/eight-walls-flash.md (0 hunks)
  • .changeset/evil-ideas-stop.md (0 hunks)
  • .changeset/happy-dodos-sneeze.md (0 hunks)
  • .changeset/mean-jobs-stare.md (0 hunks)
  • .changeset/shiny-pants-jump.md (0 hunks)
  • .changeset/slow-shoes-give.md (0 hunks)
  • .changeset/twelve-breads-repair.md (0 hunks)
  • .changeset/wild-loops-write.md (0 hunks)
  • packages/agent-toolkit/CHANGELOG.md (1 hunks)
  • packages/agent-toolkit/package.json (1 hunks)
  • packages/astro/CHANGELOG.md (1 hunks)
  • packages/astro/package.json (1 hunks)
  • packages/backend/CHANGELOG.md (1 hunks)
  • packages/backend/package.json (1 hunks)
  • packages/chrome-extension/CHANGELOG.md (1 hunks)
  • packages/chrome-extension/package.json (1 hunks)
  • packages/clerk-js/CHANGELOG.md (1 hunks)
  • packages/clerk-js/package.json (1 hunks)
  • packages/elements/CHANGELOG.md (1 hunks)
  • packages/elements/package.json (1 hunks)
  • packages/expo-passkeys/CHANGELOG.md (1 hunks)
  • packages/expo-passkeys/package.json (1 hunks)
  • packages/expo/CHANGELOG.md (1 hunks)
  • packages/expo/package.json (1 hunks)
  • packages/express/CHANGELOG.md (1 hunks)
  • packages/express/package.json (1 hunks)
  • packages/fastify/CHANGELOG.md (1 hunks)
  • packages/fastify/package.json (1 hunks)
  • packages/localizations/CHANGELOG.md (1 hunks)
  • packages/localizations/package.json (1 hunks)
  • packages/nextjs/CHANGELOG.md (1 hunks)
  • packages/nextjs/package.json (1 hunks)
  • packages/nuxt/CHANGELOG.md (1 hunks)
  • packages/nuxt/package.json (1 hunks)
  • packages/react-router/CHANGELOG.md (1 hunks)
  • packages/react-router/package.json (1 hunks)
  • packages/react/CHANGELOG.md (1 hunks)
  • packages/react/package.json (1 hunks)
  • packages/remix/CHANGELOG.md (1 hunks)
  • packages/remix/package.json (1 hunks)
  • packages/shared/CHANGELOG.md (1 hunks)
  • packages/shared/package.json (1 hunks)
  • packages/tanstack-react-start/CHANGELOG.md (1 hunks)
  • packages/tanstack-react-start/package.json (1 hunks)
  • packages/testing/CHANGELOG.md (1 hunks)
  • packages/testing/package.json (1 hunks)
  • packages/themes/CHANGELOG.md (1 hunks)
  • packages/themes/package.json (1 hunks)
  • packages/types/CHANGELOG.md (1 hunks)
  • packages/types/package.json (1 hunks)
  • packages/vue/CHANGELOG.md (1 hunks)
  • packages/vue/package.json (1 hunks)
🔥 Files not summarized due to errors (1)
  • .changeset/slow-shoes-give.md: Error: Server error: no LLM provider could handle the message
💤 Files with no reviewable changes (9)
  • .changeset/slow-shoes-give.md
  • .changeset/twelve-breads-repair.md
  • .changeset/eight-walls-flash.md
  • .changeset/happy-dodos-sneeze.md
  • .changeset/bitter-waves-burn.md
  • .changeset/wild-loops-write.md
  • .changeset/evil-ideas-stop.md
  • .changeset/shiny-pants-jump.md
  • .changeset/mean-jobs-stare.md
✅ Files skipped from review due to trivial changes (11)
  • packages/expo-passkeys/package.json
  • packages/nextjs/package.json
  • packages/expo-passkeys/CHANGELOG.md
  • packages/nuxt/package.json
  • packages/elements/CHANGELOG.md
  • packages/backend/CHANGELOG.md
  • packages/expo/package.json
  • packages/chrome-extension/package.json
  • packages/localizations/CHANGELOG.md
  • packages/chrome-extension/CHANGELOG.md
  • packages/shared/CHANGELOG.md
🚧 Files skipped from review as they are similar to previous changes (29)
  • packages/astro/package.json
  • packages/testing/package.json
  • packages/react-router/package.json
  • packages/types/package.json
  • packages/fastify/package.json
  • packages/react/package.json
  • packages/elements/package.json
  • packages/tanstack-react-start/package.json
  • packages/fastify/CHANGELOG.md
  • packages/themes/package.json
  • packages/clerk-js/package.json
  • packages/localizations/package.json
  • packages/vue/package.json
  • packages/agent-toolkit/package.json
  • packages/express/package.json
  • packages/backend/package.json
  • packages/clerk-js/CHANGELOG.md
  • packages/remix/package.json
  • packages/themes/CHANGELOG.md
  • packages/react-router/CHANGELOG.md
  • packages/testing/CHANGELOG.md
  • packages/expo/CHANGELOG.md
  • packages/vue/CHANGELOG.md
  • packages/shared/package.json
  • packages/nextjs/CHANGELOG.md
  • packages/tanstack-react-start/CHANGELOG.md
  • packages/astro/CHANGELOG.md
  • packages/nuxt/CHANGELOG.md
  • packages/express/CHANGELOG.md
🧰 Additional context used
📓 Path-based instructions (3)
**/*.{js,jsx,ts,tsx,json,css,scss,md,yaml,yml}

📄 CodeRabbit Inference Engine (.cursor/rules/development.mdc)

Use Prettier for consistent code formatting

Files:

  • packages/agent-toolkit/CHANGELOG.md
  • packages/react/CHANGELOG.md
  • packages/types/CHANGELOG.md
  • packages/remix/CHANGELOG.md
packages/**/CHANGELOG.md

📄 CodeRabbit Inference Engine (.cursor/rules/development.mdc)

Maintain detailed changelogs

Files:

  • packages/agent-toolkit/CHANGELOG.md
  • packages/react/CHANGELOG.md
  • packages/types/CHANGELOG.md
  • packages/remix/CHANGELOG.md
**/*

⚙️ CodeRabbit Configuration File

If there are no tests added or modified as part of the PR, please suggest that tests be added to cover the changes.

Files:

  • packages/agent-toolkit/CHANGELOG.md
  • packages/react/CHANGELOG.md
  • packages/types/CHANGELOG.md
  • packages/remix/CHANGELOG.md
⏰ Context from checks skipped due to timeout of 90000ms. You can increase the timeout in your CodeRabbit configuration to a maximum of 15 minutes (900000ms). (2)
  • GitHub Check: Analyze (javascript-typescript)
  • GitHub Check: semgrep-cloud-platform/scan
🔇 Additional comments (3)
packages/agent-toolkit/CHANGELOG.md (2)

3-11: Changelog entry reads well and matches a patch bump.

Version header, “Patch Changes” section, and dependency list look consistent with prior entries and semver expectations.

3-11: Confirm workspace dependency bumps and lockfile

Although packages/agent‐toolkit/package.json is correctly at 0.1.19 and uses workspace:^ for its @clerk/* deps, you need to verify that the actual versions have been bumped and locked down:

• Check the root workspace/package.json (or your mono-repo config) to ensure

  • @clerk/types → 4.75.0
  • @clerk/shared → 3.19.0
  • @clerk/backend → 2.7.1

• Regenerate your lockfile (npm install/pnpm install/yarn install) and confirm it contains those exact versions.
• Run your e2e/integration tests for agent flows to catch any transitive‐update breakages.

packages/react/CHANGELOG.md (1)

13-15: ✅ Changelog dependency bump and provider‐level API removal look correct.

  • The changelog’s updates to @clerk/types@4.75.0 and @clerk/shared@3.19.0 align with the workspace:^ specifiers in packages/react/package.json.
  • treatPendingAsSignedOut has been fully removed from the ClerkProvider API (no occurrences in packages/react/src/contexts/ClerkProvider.tsx or its types).
  • Hook- and component-level opts (useAuth({ treatPendingAsSignedOut }), <Protect />, <SignedIn />, etc.) remain in place as intended.

packages/types/CHANGELOG.md

### Patch Changes

- Add `legalAcceptedAt` to UserResource accessible by `Clerk.user` and `useUser()`. ([#6517](https://github.com/clerk/javascript/pull/6517)) by [@thiskevinwang](https://github.com/thiskevinwang)
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

💡 Verification agent

🧩 Analysis chain

Clarify legalAcceptedAt type/nullability and add a short usage example.

The entry doesn't state whether this is a Date, ISO string, epoch number, or possibly null. Please document the shape to avoid ambiguity and show a quick usage snippet.

Suggested changelog tweak:

- Add `legalAcceptedAt` to UserResource accessible by `Clerk.user` and `useUser()`. ([#6517](https://github.com/clerk/javascript/pull/6517)) by [@thiskevinwang](https://github.com/thiskevinwang)
+ Add `legalAcceptedAt` to UserResource accessible by `Clerk.user` and `useUser()`. ([#6517](https://github.com/clerk/javascript/pull/6517)) by [@thiskevinwang](https://github.com/thiskevinwang)
+ 
+ Type: <document exact type and nullability here, e.g. `Date | null` or `string (ISO 8601) | null`>.
+ 
+ Example:
+ ```ts
+ const { user } = useUser();
+ // e.g., if ISO string
+ const accepted = user?.legalAcceptedAt ? new Date(user.legalAcceptedAt) : null;
+ ```

Run this script to verify the implementation and type shape in the repo:

🏁 Script executed:

#!/bin/bash
set -euo pipefail

echo "Grepping for legalAcceptedAt definitions/usages..."
rg -n --hidden --glob '!**/dist/**' --glob '!**/build/**' \
  -e '\blegalAcceptedAt\b' -e 'legal_accepted_at' -e 'legalAcceptedAt\??:\s*' || true

echo
echo "Show nearby context for type declarations within @clerk/types..."
rg -n -A4 -B4 --hidden --glob '!**/dist/**' --glob '!**/build/**' \
  'interface .*User.*|type .*User.*|export .*User.*' | sed -n '1,200p'

Length of output: 16605

Specify legalAcceptedAt type and add usage example in CHANGELOG.md

The legalAcceptedAt field on UserResource is a JavaScript Date or null (it’s converted from the backend’s epoch timestamp). Please update the changelog entry to clarify this and show a quick usage snippet.

• File: packages/types/CHANGELOG.md
• Line: 13

Suggested changelog tweak:

- Add `legalAcceptedAt` to UserResource accessible by `Clerk.user` and `useUser()`. ([#6517](https://github.com/clerk/javascript/pull/6517)) by [@thiskevinwang](https://github.com/thiskevinwang)
+ Add `legalAcceptedAt` to UserResource accessible by `Clerk.user` and `useUser()`. ([#6517](https://github.com/clerk/javascript/pull/6517)) by [@thiskevinwang](https://github.com/thiskevinwang)
+
+ Type: `Date | null`.
+
+ Example:
+ ```ts
+ const { user } = useUser();
+ if (user.legalAcceptedAt) {
+   // user.legalAcceptedAt is a Date object
+   console.log(user.legalAcceptedAt.toISOString());
+ }
+ ```
🤖 Prompt for AI Agents 
In packages/types/CHANGELOG.md around line 13, the changelog entry should
clarify that UserResource.legalAcceptedAt is a JavaScript Date or null
(converted from the backend epoch) and include a short usage example; update the
line to state the type as "Date | null" and append a minimal snippet
demonstrating checking for user.legalAcceptedAt and calling toISOString() (or
otherwise handling the Date) so readers know how to use the field.

@github-actions github-actions bot force-pushed the changeset-release/main branch from 534f1c1 to f356246 Compare August 12, 2025 08:11
coderabbitai[bot]
coderabbitai bot reviewed Aug 12, 2025
View reviewed changes
Copy link
Contributor

@coderabbitai coderabbitai bot left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Actionable comments posted: 1

♻️ Duplicate comments (1)
packages/remix/CHANGELOG.md (1)

5-12: Add consumer-facing note about removed treatPendingAsSignedOut to prevent TS errors

This release surfaces the removal from @clerk/types@4.75.0 to Remix users via dependency bumps. Please add an explicit note under Patch Changes so consumers know to remove the option from ClerkProvider and related helpers.

Apply this diff within the 4.10.12 “Patch Changes” section:

 ### Patch Changes

 - Updated dependencies [[`b72a3dd`](https://github.com/clerk/javascript/commit/b72a3dda2467720e5dc8cab3e7e6a110f3beb79b), [`d93b0ed`](https://github.com/clerk/javascript/commit/d93b0edf4adc57d48a26cb08444192887ccec659), [`6459f7d`](https://github.com/clerk/javascript/commit/6459f7dabe5f163f48ed73106bb901d8187da3e2), [`0ff648a`](https://github.com/clerk/javascript/commit/0ff648aeac0e2f5481596a98c8046d9d58a7bf75), [`9084759`](https://github.com/clerk/javascript/commit/90847593300be605e1ee1c06dac147ce68b25dc7)]:
   - @clerk/types@4.75.0
   - @clerk/clerk-react@5.41.0
   - @clerk/shared@3.19.0
   - @clerk/backend@2.7.1
+
+ - Note: `@clerk/types@4.75.0` removed the deprecated `treatPendingAsSignedOut` option. If you passed this via `ClerkProvider` (or related helpers), remove it to avoid TypeScript errors.
🧹 Nitpick comments (3)
packages/clerk-js/CHANGELOG.md (3)

9-14: Fix heading level for Migration subsection

"## Migration" is at the same level as "## 5.82.0", which breaks the hierarchy. Use a lower-level header (e.g., "###" to match sibling sections) to keep structure consistent.

-  ## Migration
+### Migration

23-23: Capitalize OAuth correctly

"oAuth" should be "OAuth".

- - Refactor ApplicationLogo rendering logic to account for oAuth logos within OAuthConsent component. ([#6518](https://github.com/clerk/javascript/pull/6518)) by [@alexcarpenter](https://github.com/alexcarpenter)
+ - Refactor ApplicationLogo rendering logic to account for OAuth logos within the OAuthConsent component. ([#6518](https://github.com/clerk/javascript/pull/6518)) by [@alexcarpenter](https://github.com/alexcarpenter)

11-13: Optional: clarify cross-package impact of migration

Consider adding a short note that these billing date renames are also reflected in @clerk/types@4.75.0 and downstream SDKs, so consumers should update type usages accordingly.

📜 Review details

Configuration used: CodeRabbit UI
Review profile: CHILL
Plan: Pro

📥 Commits

Reviewing files that changed from the base of the PR and between 534f1c1 and f356246.

📒 Files selected for processing (54)
  • .changeset/bitter-waves-burn.md (0 hunks)
  • .changeset/chilly-ravens-cover.md (0 hunks)
  • .changeset/eight-walls-flash.md (0 hunks)
  • .changeset/evil-ideas-stop.md (0 hunks)
  • .changeset/happy-dodos-sneeze.md (0 hunks)
  • .changeset/mean-jobs-stare.md (0 hunks)
  • .changeset/shiny-pants-jump.md (0 hunks)
  • .changeset/slow-shoes-give.md (0 hunks)
  • .changeset/twelve-breads-repair.md (0 hunks)
  • .changeset/wild-loops-write.md (0 hunks)
  • packages/agent-toolkit/CHANGELOG.md (1 hunks)
  • packages/agent-toolkit/package.json (1 hunks)
  • packages/astro/CHANGELOG.md (1 hunks)
  • packages/astro/package.json (1 hunks)
  • packages/backend/CHANGELOG.md (1 hunks)
  • packages/backend/package.json (1 hunks)
  • packages/chrome-extension/CHANGELOG.md (1 hunks)
  • packages/chrome-extension/package.json (1 hunks)
  • packages/clerk-js/CHANGELOG.md (1 hunks)
  • packages/clerk-js/package.json (1 hunks)
  • packages/elements/CHANGELOG.md (1 hunks)
  • packages/elements/package.json (1 hunks)
  • packages/expo-passkeys/CHANGELOG.md (1 hunks)
  • packages/expo-passkeys/package.json (1 hunks)
  • packages/expo/CHANGELOG.md (1 hunks)
  • packages/expo/package.json (1 hunks)
  • packages/express/CHANGELOG.md (1 hunks)
  • packages/express/package.json (1 hunks)
  • packages/fastify/CHANGELOG.md (1 hunks)
  • packages/fastify/package.json (1 hunks)
  • packages/localizations/CHANGELOG.md (1 hunks)
  • packages/localizations/package.json (1 hunks)
  • packages/nextjs/CHANGELOG.md (1 hunks)
  • packages/nextjs/package.json (1 hunks)
  • packages/nuxt/CHANGELOG.md (1 hunks)
  • packages/nuxt/package.json (1 hunks)
  • packages/react-router/CHANGELOG.md (1 hunks)
  • packages/react-router/package.json (1 hunks)
  • packages/react/CHANGELOG.md (1 hunks)
  • packages/react/package.json (1 hunks)
  • packages/remix/CHANGELOG.md (1 hunks)
  • packages/remix/package.json (1 hunks)
  • packages/shared/CHANGELOG.md (1 hunks)
  • packages/shared/package.json (1 hunks)
  • packages/tanstack-react-start/CHANGELOG.md (1 hunks)
  • packages/tanstack-react-start/package.json (1 hunks)
  • packages/testing/CHANGELOG.md (1 hunks)
  • packages/testing/package.json (1 hunks)
  • packages/themes/CHANGELOG.md (1 hunks)
  • packages/themes/package.json (1 hunks)
  • packages/types/CHANGELOG.md (1 hunks)
  • packages/types/package.json (1 hunks)
  • packages/vue/CHANGELOG.md (1 hunks)
  • packages/vue/package.json (1 hunks)
💤 Files with no reviewable changes (10)
  • .changeset/happy-dodos-sneeze.md
  • .changeset/wild-loops-write.md
  • .changeset/twelve-breads-repair.md
  • .changeset/bitter-waves-burn.md
  • .changeset/eight-walls-flash.md
  • .changeset/mean-jobs-stare.md
  • .changeset/evil-ideas-stop.md
  • .changeset/chilly-ravens-cover.md
  • .changeset/slow-shoes-give.md
  • .changeset/shiny-pants-jump.md
✅ Files skipped from review due to trivial changes (15)
  • packages/elements/package.json
  • packages/react-router/package.json
  • packages/agent-toolkit/package.json
  • packages/expo-passkeys/CHANGELOG.md
  • packages/react-router/CHANGELOG.md
  • packages/astro/package.json
  • packages/chrome-extension/CHANGELOG.md
  • packages/testing/package.json
  • packages/nextjs/package.json
  • packages/vue/package.json
  • packages/themes/CHANGELOG.md
  • packages/tanstack-react-start/CHANGELOG.md
  • packages/express/CHANGELOG.md
  • packages/nextjs/CHANGELOG.md
  • packages/agent-toolkit/CHANGELOG.md
🚧 Files skipped from review as they are similar to previous changes (26)
  • packages/localizations/package.json
  • packages/react/package.json
  • packages/tanstack-react-start/package.json
  • packages/fastify/package.json
  • packages/backend/package.json
  • packages/expo-passkeys/package.json
  • packages/themes/package.json
  • packages/shared/package.json
  • packages/clerk-js/package.json
  • packages/express/package.json
  • packages/nuxt/package.json
  • packages/chrome-extension/package.json
  • packages/remix/package.json
  • packages/types/package.json
  • packages/expo/package.json
  • packages/vue/CHANGELOG.md
  • packages/fastify/CHANGELOG.md
  • packages/react/CHANGELOG.md
  • packages/localizations/CHANGELOG.md
  • packages/expo/CHANGELOG.md
  • packages/nuxt/CHANGELOG.md
  • packages/astro/CHANGELOG.md
  • packages/testing/CHANGELOG.md
  • packages/shared/CHANGELOG.md
  • packages/types/CHANGELOG.md
  • packages/elements/CHANGELOG.md
🧰 Additional context used
📓 Path-based instructions (3)
**/*.{js,jsx,ts,tsx,json,css,scss,md,yaml,yml}

📄 CodeRabbit Inference Engine (.cursor/rules/development.mdc)

Use Prettier for consistent code formatting

Files:

  • packages/remix/CHANGELOG.md
  • packages/clerk-js/CHANGELOG.md
  • packages/backend/CHANGELOG.md
packages/**/CHANGELOG.md

📄 CodeRabbit Inference Engine (.cursor/rules/development.mdc)

Maintain detailed changelogs

Files:

  • packages/remix/CHANGELOG.md
  • packages/clerk-js/CHANGELOG.md
  • packages/backend/CHANGELOG.md
**/*

⚙️ CodeRabbit Configuration File

If there are no tests added or modified as part of the PR, please suggest that tests be added to cover the changes.

Files:

  • packages/remix/CHANGELOG.md
  • packages/clerk-js/CHANGELOG.md
  • packages/backend/CHANGELOG.md
⏰ Context from checks skipped due to timeout of 90000ms. You can increase the timeout in your CodeRabbit configuration to a maximum of 15 minutes (900000ms). (2)
  • GitHub Check: Analyze (javascript-typescript)
  • GitHub Check: semgrep-cloud-platform/scan
🔇 Additional comments (1)
packages/backend/CHANGELOG.md (1)

3-6: Changelog entry added for 2.7.1 looks correct and consistent

  • Scope and heading hierarchy are consistent with prior entries.
  • Properly categorized under "Patch Changes".
  • No functional notes beyond dependency bumps, which aligns with the PR’s intent.

packages/backend/CHANGELOG.md
Comment on lines +7 to +10
- Updated dependencies [[`b72a3dd`](https://github.com/clerk/javascript/commit/b72a3dda2467720e5dc8cab3e7e6a110f3beb79b), [`d93b0ed`](https://github.com/clerk/javascript/commit/d93b0edf4adc57d48a26cb08444192887ccec659), [`6459f7d`](https://github.com/clerk/javascript/commit/6459f7dabe5f163f48ed73106bb901d8187da3e2), [`0ff648a`](https://github.com/clerk/javascript/commit/0ff648aeac0e2f5481596a98c8046d9d58a7bf75), [`9084759`](https://github.com/clerk/javascript/commit/90847593300be605e1ee1c06dac147ce68b25dc7)]:
- @clerk/types@4.75.0
- @clerk/shared@3.19.0

Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

💡 Verification agent

🧩 Analysis chain

Request: verify versions align across package.json and dependents

The changelog states updated dependencies to @clerk/types@4.75.0 and @clerk/shared@3.19.0 for @clerk/backend@2.7.1. Please verify:

  • packages/backend/package.json version is 2.7.1
  • packages/backend/package.json depends on the declared versions of @clerk/types and @clerk/shared
  • Other packages that depend on @clerk/backend reference 2.7.1 (or a compatible range)

🏁 Script executed:

#!/bin/bash
set -euo pipefail

echo "1) Verify @clerk/backend version is 2.7.1"
fd -a package.json packages | while read -r f; do
  if jq -e '.name=="@clerk/backend"' "$f" >/dev/null 2>&1; then
    echo "Found: $f"
    jq '{name, version, dependencies}' "$f"
    ver=$(jq -r '.version' "$f")
    if [[ "$ver" != "2.7.1" ]]; then
      echo "ERROR: @clerk/backend version is $ver, expected 2.7.1"
      exit 1
    fi
    echo "OK: @clerk/backend version is 2.7.1"
    echo
    echo "2) Verify dependencies on @clerk/types and @clerk/shared"
    types_ver=$(jq -r '.dependencies["@clerk/types"] // .devDependencies["@clerk/types"] // ""' "$f")
    shared_ver=$(jq -r '.dependencies["@clerk/shared"] // .devDependencies["@clerk/shared"] // ""' "$f")
    echo "@clerk/types: $types_ver"
    echo "@clerk/shared: $shared_ver"

    # Accept exact or ranged specifiers as long as they include the target version
    if [[ "$types_ver" != *"4.75.0"* ]]; then
      echo "ERROR: @clerk/types is $types_ver, expected to include 4.75.0"
      exit 1
    fi
    if [[ "$shared_ver" != *"3.19.0"* ]]; then
      echo "ERROR: @clerk/shared is $shared_ver, expected to include 3.19.0"
      exit 1
    fi
    echo "OK: dependency versions match changelog"
  fi
done

echo
echo "3) Verify dependents reference @clerk/backend 2.7.1 (or compatible)"
fd -a package.json packages | while read -r f; do
  dep=$(jq -r '.dependencies["@clerk/backend"] // .devDependencies["@clerk/backend"] // empty' "$f")
  if [[ -n "$dep" ]]; then
    echo "$f -> @clerk/backend: $dep"
    # Require either exact 2.7.1 or a range that includes it (e.g., ^2.7.1 or ~2.7.1)
    if [[ "$dep" =~ ^[~^]?2\.7\.1($|[^0-9]) ]]; then
      : # OK
    else
      echo "WARN: Dependent uses a different specifier ($dep). Confirm this is intended."
    fi
  fi
done

echo
echo "Done."

Length of output: 2725

Align dependency specifiers in packages/backend/package.json with changelog

The changelog for @clerk/backend@2.7.1 states that @clerk/types was bumped to 4.75.0 and @clerk/shared to 3.19.0, but the manifest uses workspace ranges instead:

• packages/backend/package.json

  • "@clerk/types": "workspace:^"
  • "@clerk/shared": "workspace:^"

Please update these to explicit semver ranges matching the changelog, for example:

--- a/packages/backend/package.json
+++ b/packages/backend/package.json
@@ dependencies
-  "@clerk/types": "workspace:^",
-  "@clerk/shared": "workspace:^",
+  "@clerk/types": "^4.75.0",
+  "@clerk/shared": "^3.19.0",

Once updated, also confirm that any packages depending on @clerk/backend reference ^2.7.1 (or another range that includes 2.7.1).

📝 Committable suggestion

‼️ IMPORTANT
Carefully review the code before committing. Ensure that it accurately replaces the highlighted code, contains no missing lines, and has no issues with indentation. Thoroughly test & benchmark the code to ensure it meets the requirements.

Suggested change
- Updated dependencies [[`b72a3dd`](https://github.com/clerk/javascript/commit/b72a3dda2467720e5dc8cab3e7e6a110f3beb79b), [`d93b0ed`](https://github.com/clerk/javascript/commit/d93b0edf4adc57d48a26cb08444192887ccec659), [`6459f7d`](https://github.com/clerk/javascript/commit/6459f7dabe5f163f48ed73106bb901d8187da3e2), [`0ff648a`](https://github.com/clerk/javascript/commit/0ff648aeac0e2f5481596a98c8046d9d58a7bf75), [`9084759`](https://github.com/clerk/javascript/commit/90847593300be605e1ee1c06dac147ce68b25dc7)]:
- @clerk/types@4.75.0
- @clerk/shared@3.19.0
"dependencies": {
"@clerk/types": "^4.75.0",
"@clerk/shared": "^3.19.0",
// …other dependencies
}
🤖 Prompt for AI Agents 
In packages/backend/CHANGELOG.md around lines 7 to 10, the changelog says
@clerk/types@4.75.0 and @clerk/shared@3.19.0 but packages/backend/package.json
currently uses "workspace:^" specifiers; update packages/backend/package.json to
pin those dependencies to explicit semver ranges that match the changelog (e.g.
"@clerk/types": "^4.75.0", "@clerk/shared": "^3.19.0"), save the file, run any
install/test steps to ensure no breakage, and then verify any packages that
depend on @clerk/backend reference a range that includes 2.7.1 (for example
"^2.7.1") and update them if necessary.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@coderabbitai coderabbitai[bot] coderabbitai[bot] left review comments

At least 1 approving review is required to merge this pull request.

Assignees
No one assigned
Labels
agent-toolkit astro backend chrome-extension clerk-js elements expo express fastify localizations nextjs nuxt react react-router remix tanstack testing themes types vue
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@clerk-cookie