Skip to content

ci(repo): Version packages #6602

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
wants to merge 1 commit into
base: main
Choose a base branch
from
Open

ci(repo): Version packages #6602

wants to merge 1 commit into from

Conversation

clerk-cookie
Copy link
Collaborator

@clerk-cookie clerk-cookie commented Aug 21, 2025
edited by coderabbitai bot
Loading

This PR was opened by the Changesets release GitHub action. When you're ready to do a release, you can merge this and the packages will be published to npm automatically. If you're not ready to do a release yet, that's fine, whenever you add more changesets to main, this PR will be updated.

Releases

@clerk/[email protected]

Minor Changes

  • Reuses existing Auth object from the server handler when using getAuth() (#6595) by @wobsoriano

    The createClerkHandler helper now returns a Promise and requires awaiting during setup to ensure authentication context is available at the earliest possible point in the request lifecycle, before any router loaders or server functions execute

    // server.ts
import { createStartHandler, defineHandlerCallback, defaultStreamHandler } from '@tanstack/react-start/server';
import { createRouter } from './router';
import { createClerkHandler } from '@clerk/tanstack-react-start/server';

const handlerFactory = createClerkHandler(
  createStartHandler({
    createRouter,
  }),
);

export default defineHandlerCallback(async event => {
  const startHandler = await handlerFactory(defaultStreamHandler); // awaited
  return startHandler(event);
});

Patch Changes

@clerk/[email protected]

Patch Changes

@clerk/[email protected]

Patch Changes

@clerk/[email protected]

Patch Changes

@clerk/[email protected]

Patch Changes

@clerk/[email protected]

Patch Changes

@clerk/[email protected]

Patch Changes

@clerk/[email protected]

Patch Changes

@clerk/[email protected]

Patch Changes

@clerk/[email protected]

Patch Changes

@clerk/[email protected]

Patch Changes

@clerk/[email protected]

Patch Changes

@clerk/[email protected]

Patch Changes

@clerk/[email protected]

Patch Changes

@clerk/[email protected]

Patch Changes

@clerk/[email protected]

Patch Changes

@clerk/[email protected]

Patch Changes

@clerk/[email protected]

Patch Changes

@clerk/[email protected]

Patch Changes

@clerk/[email protected]

Patch Changes

@clerk/[email protected]

Patch Changes

@clerk/[email protected]

Patch Changes

Summary by CodeRabbit

  • New Features

    • Nuxt: Option to pass treatPendingAsSignedOut in auth functions.
    • TanStack Start: Auth handler now awaitable; reuses existing Auth; supports treatPendingAsSignedOut.
    • Clerk JS: Allow payment method selection during trial checkout.

  • Improvements

    • Clerk JS: Clear API keys revoke confirmation on modal close.
    • Updated password-based instance detection in settings.
    • Clearer error message when an active organization is required.

  • Chores

    • Version and dependency bumps across packages; no breaking changes.

@vercel Vercel
Copy link

vercel bot commented Aug 21, 2025
edited
Loading

The latest updates on your projects. Learn more about Vercel for GitHub.

Project Deployment Preview Comments Updated (UTC)
clerk-js-sandbox Ready Ready Preview Comment Aug 24, 2025 2:32am

@pkg-pr-new pkg.pr.new
Copy link

pkg-pr-new bot commented Aug 21, 2025

Open in StackBlitz

@clerk/agent-toolkit

npm i https://pkg.pr.new/@clerk/agent-toolkit@6602

@clerk/astro

npm i https://pkg.pr.new/@clerk/astro@6602

@clerk/backend

npm i https://pkg.pr.new/@clerk/backend@6602

@clerk/chrome-extension

npm i https://pkg.pr.new/@clerk/chrome-extension@6602

@clerk/clerk-js

npm i https://pkg.pr.new/@clerk/clerk-js@6602

@clerk/dev-cli

npm i https://pkg.pr.new/@clerk/dev-cli@6602

@clerk/elements

npm i https://pkg.pr.new/@clerk/elements@6602

@clerk/clerk-expo

npm i https://pkg.pr.new/@clerk/clerk-expo@6602

@clerk/expo-passkeys

npm i https://pkg.pr.new/@clerk/expo-passkeys@6602

@clerk/express

npm i https://pkg.pr.new/@clerk/express@6602

@clerk/fastify

npm i https://pkg.pr.new/@clerk/fastify@6602

@clerk/localizations

npm i https://pkg.pr.new/@clerk/localizations@6602

@clerk/nextjs

npm i https://pkg.pr.new/@clerk/nextjs@6602

@clerk/nuxt

npm i https://pkg.pr.new/@clerk/nuxt@6602

@clerk/clerk-react

npm i https://pkg.pr.new/@clerk/clerk-react@6602

@clerk/react-router

npm i https://pkg.pr.new/@clerk/react-router@6602

@clerk/remix

npm i https://pkg.pr.new/@clerk/remix@6602

@clerk/shared

npm i https://pkg.pr.new/@clerk/shared@6602

@clerk/tanstack-react-start

npm i https://pkg.pr.new/@clerk/tanstack-react-start@6602

@clerk/testing

npm i https://pkg.pr.new/@clerk/testing@6602

@clerk/themes

npm i https://pkg.pr.new/@clerk/themes@6602

@clerk/types

npm i https://pkg.pr.new/@clerk/types@6602

@clerk/upgrade

npm i https://pkg.pr.new/@clerk/upgrade@6602

@clerk/vue

npm i https://pkg.pr.new/@clerk/vue@6602

commit: 7f8d7d2

@coderabbitai coderabbitai
Copy link
Contributor

coderabbitai bot commented Aug 21, 2025
edited
Loading

📝 Walkthrough

Walkthrough

This PR updates many package versions and inserts new patch entries into multiple CHANGELOG.md files across the monorepo. Several .changeset files were removed or trimmed (.changeset/fluffy-spiders-grab.md trimmed; .changeset/cold-glasses-watch.md, .changeset/common-clowns-speak.md, .changeset/itchy-zoos-shake.md, .changeset/tall-worms-pull.md, .changeset/ninety-wombats-think.md, .changeset/plain-bottles-press.md deleted). Changes are limited to package.json version fields, changelogs, and changeset documents; there are no source code, exported API signature, or runtime behavior changes in this diff.

Estimated code review effort

🎯 1 (Trivial) | ⏱️ ~3 minutes

Possibly related PRs

Suggested labels

types, localizations, themes

Suggested reviewers

  • panteliselef
  • LauraBeatris
  • brkalow

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share
🪧 Tips

Chat

There are 3 ways to chat with CodeRabbit:

  • Review comments: Directly reply to a review comment made by CodeRabbit. Example:
    • I pushed a fix in commit <commit_id>, please review it.
    • Open a follow-up GitHub issue for this discussion.
  • Files and specific lines of code (under the "Files changed" tab): Tag @coderabbitai in a new review comment at the desired location with your query.
  • PR comments: Tag @coderabbitai in a new PR comment to ask questions about the PR branch. For the best results, please provide a very specific query, as very limited context is provided in this mode. Examples:
    • @coderabbitai gather interesting stats about this repository and render them as a table. Additionally, render a pie chart showing the language distribution in the codebase.
    • @coderabbitai read the files in the src/scheduler package and generate a class diagram using mermaid and a README in the markdown format.

Support

Need help? Create a ticket on our support page for assistance with any issues or questions.

CodeRabbit Commands (Invoked using PR/Issue comments)

Type @coderabbitai help to get the list of available commands.

Other keywords and placeholders

  • Add @coderabbitai ignore anywhere in the PR description to prevent this PR from being reviewed.
  • Add @coderabbitai summary to generate the high-level summary at a specific location in the PR description.
  • Add @coderabbitai anywhere in the PR title to generate the title automatically.

CodeRabbit Configuration File (.coderabbit.yaml)

  • You can programmatically configure CodeRabbit by adding a .coderabbit.yaml file to the root of your repository.
  • Please see the configuration documentation for more information.
  • If your editor has YAML language server enabled, you can add the path at the top of this file to enable auto-completion and validation: # yaml-language-server: $schema=https://coderabbit.ai/integrations/schema.v2.json

Status, Documentation and Community

  • Visit our Status Page to check the current availability of CodeRabbit.
  • Visit our Documentation for detailed information on how to use CodeRabbit.
  • Join our Discord Community to get help, request features, and share feedback.
  • Follow us on X/Twitter for updates and announcements.

coderabbitai[bot]
coderabbitai bot reviewed Aug 21, 2025
View reviewed changes
Copy link
Contributor

@coderabbitai coderabbitai bot left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Actionable comments posted: 5

Caution

Some comments are outside the diff and can’t be posted inline due to platform limitations.

⚠️ Outside diff range comments (1)
packages/nextjs/package.json (1)

94-97: Add Next.js v13.x to CI Test Matrix

The peerDependencies in packages/nextjs/package.json declare support for Next ^13.5.7, ^14.2.25, and ^15.2.3, but the CI workflow only runs tests against Next 14 and 15. Without exercising Next 13 (minimum or latest), regressions on v13.x will go undetected.

Action items:

  • In .github/workflows/ci.yml, extend the matrix.next-version to include the v13 minimum (13.5.7). For example: 
    matrix:
  next-version: ['13.5.7', '14', '15']
  • (Optional) For more thorough coverage, split into two axes to test both minima and latest patches per major: 
    matrix:
  next-major: [13, 14, 15]
  next-version:
    - ${{ next-major == 13 && '13.5.7' || next-major == 14 && '14.2.25' || next-major == 15 && '15.2.3' }}
    - ${{ next-major }}.x         # latest patch for each major
  • Ensure that the E2E_NEXTJS_VERSION environment variable still uses ${{ matrix.next-version }}.

Updating this will guarantee CI exercises all declared peer ranges, preventing undetected breakages on Next.js v13.x.

🧹 Nitpick comments (6)
packages/express/package.json (1)

3-3: Version bump to 1.7.25 is consistent with dependency-only changes.

  • Package metadata, exports, and engines unchanged; semver patch is appropriate.
  • Peer range includes Express 4 and 5, which matches current support policy.
  • No tests added in this PR; relying on existing test suite is acceptable for a changeset-only release.
packages/elements/package.json (1)

3-3: Elements patch bump to 0.23.58 is appropriate.

  • No API surface changes in this file; only metadata updated.
  • Peer range includes Next "^15" while devDependency is "14.2.31". If you're validating against Next 15 in CI, great; otherwise consider adding a canary lane before GA.
  • No new tests; existing integration/e2e in examples/nextjs likely cover regressions.
packages/remix/package.json (1)

3-3: Remix patch bump to 4.11.5 approved.

  • Dependencies remain on workspace:^ which will resolve to @clerk/[email protected] after publish.
  • Peer ranges for React/Remix unchanged; continue to match supported versions.
  • No tests in this PR; existing vitest suite should suffice for a dependency-only release.
packages/backend/CHANGELOG.md (1)

3-9: Changelog entry is present and scoped to dependency updates.

If relevant to backend consumers, consider a brief note that this release pulls in @clerk/shared changes removing an unused generateUuid utility (no runtime impact expected). Optional.

packages/shared/CHANGELOG.md (1)

3-8: Nice and concise patch note; consider clarifying scope to avoid ambiguity.

Nit: since “generateUuid” was removed, explicitly stating it was an internal/unused utility can reassure consumers that there’s no breaking API removal. For example: “Removed unused internal generateUuid utility.”

packages/expo/CHANGELOG.md (1)

7-11: Optional: cross-reference notable upstream changes.

Since @clerk/[email protected] removes an unused utility (not user-facing here), consider a brief note like “No Expo-specific changes; transitively includes @clerk/shared cleanup” for extra traceability. Totally optional given existing repo-wide entries.

📜 Review details

Configuration used: CodeRabbit UI

Review profile: CHILL

Plan: Pro

💡 Knowledge Base configuration:

  • MCP integration is disabled by default for public repositories
  • Jira integration is disabled
  • Linear integration is disabled by default for public repositories

You can enable these sources in your CodeRabbit configuration.

📥 Commits

Reviewing files that changed from the base of the PR and between ce49740 and 7f8d7d2.

📒 Files selected for processing (39)
  • .changeset/fluffy-spiders-grab.md (0 hunks)
  • packages/agent-toolkit/CHANGELOG.md (1 hunks)
  • packages/agent-toolkit/package.json (1 hunks)
  • packages/astro/CHANGELOG.md (1 hunks)
  • packages/astro/package.json (1 hunks)
  • packages/backend/CHANGELOG.md (1 hunks)
  • packages/backend/package.json (1 hunks)
  • packages/chrome-extension/CHANGELOG.md (1 hunks)
  • packages/chrome-extension/package.json (1 hunks)
  • packages/clerk-js/CHANGELOG.md (1 hunks)
  • packages/clerk-js/package.json (1 hunks)
  • packages/elements/CHANGELOG.md (1 hunks)
  • packages/elements/package.json (1 hunks)
  • packages/expo-passkeys/CHANGELOG.md (1 hunks)
  • packages/expo-passkeys/package.json (1 hunks)
  • packages/expo/CHANGELOG.md (1 hunks)
  • packages/expo/package.json (1 hunks)
  • packages/express/CHANGELOG.md (1 hunks)
  • packages/express/package.json (1 hunks)
  • packages/fastify/CHANGELOG.md (1 hunks)
  • packages/fastify/package.json (1 hunks)
  • packages/nextjs/CHANGELOG.md (1 hunks)
  • packages/nextjs/package.json (1 hunks)
  • packages/nuxt/CHANGELOG.md (1 hunks)
  • packages/nuxt/package.json (1 hunks)
  • packages/react-router/CHANGELOG.md (1 hunks)
  • packages/react-router/package.json (1 hunks)
  • packages/react/CHANGELOG.md (1 hunks)
  • packages/react/package.json (1 hunks)
  • packages/remix/CHANGELOG.md (1 hunks)
  • packages/remix/package.json (1 hunks)
  • packages/shared/CHANGELOG.md (1 hunks)
  • packages/shared/package.json (1 hunks)
  • packages/tanstack-react-start/CHANGELOG.md (1 hunks)
  • packages/tanstack-react-start/package.json (1 hunks)
  • packages/testing/CHANGELOG.md (1 hunks)
  • packages/testing/package.json (1 hunks)
  • packages/vue/CHANGELOG.md (1 hunks)
  • packages/vue/package.json (1 hunks)
💤 Files with no reviewable changes (1)
  • .changeset/fluffy-spiders-grab.md
🧰 Additional context used
📓 Path-based instructions (4)
**/*.{js,jsx,ts,tsx,json,css,scss,md,yaml,yml}

📄 CodeRabbit inference engine (.cursor/rules/development.mdc)

Use Prettier for consistent code formatting

Files:

  • packages/astro/package.json
  • packages/nextjs/package.json
  • packages/elements/package.json
  • packages/clerk-js/package.json
  • packages/shared/package.json
  • packages/react-router/package.json
  • packages/nuxt/CHANGELOG.md
  • packages/expo/package.json
  • packages/agent-toolkit/package.json
  • packages/backend/package.json
  • packages/expo/CHANGELOG.md
  • packages/vue/package.json
  • packages/express/package.json
  • packages/react-router/CHANGELOG.md
  • packages/expo-passkeys/CHANGELOG.md
  • packages/testing/CHANGELOG.md
  • packages/chrome-extension/package.json
  • packages/remix/package.json
  • packages/nextjs/CHANGELOG.md
  • packages/tanstack-react-start/package.json
  • packages/chrome-extension/CHANGELOG.md
  • packages/nuxt/package.json
  • packages/remix/CHANGELOG.md
  • packages/clerk-js/CHANGELOG.md
  • packages/shared/CHANGELOG.md
  • packages/elements/CHANGELOG.md
  • packages/agent-toolkit/CHANGELOG.md
  • packages/express/CHANGELOG.md
  • packages/testing/package.json
  • packages/astro/CHANGELOG.md
  • packages/tanstack-react-start/CHANGELOG.md
  • packages/backend/CHANGELOG.md
  • packages/fastify/package.json
  • packages/fastify/CHANGELOG.md
  • packages/vue/CHANGELOG.md
  • packages/react/CHANGELOG.md
  • packages/react/package.json
  • packages/expo-passkeys/package.json
packages/*/package.json

📄 CodeRabbit inference engine (.cursor/rules/global.mdc)

All publishable packages should be placed under the packages/ directory

packages/*/package.json: All publishable packages must be located in the 'packages/' directory.
All packages must be published under the @clerk namespace on npm.
Semantic versioning must be used across all packages.

Files:

  • packages/astro/package.json
  • packages/nextjs/package.json
  • packages/elements/package.json
  • packages/clerk-js/package.json
  • packages/shared/package.json
  • packages/react-router/package.json
  • packages/expo/package.json
  • packages/agent-toolkit/package.json
  • packages/backend/package.json
  • packages/vue/package.json
  • packages/express/package.json
  • packages/chrome-extension/package.json
  • packages/remix/package.json
  • packages/tanstack-react-start/package.json
  • packages/nuxt/package.json
  • packages/testing/package.json
  • packages/fastify/package.json
  • packages/react/package.json
  • packages/expo-passkeys/package.json
**/*

⚙️ CodeRabbit configuration file

If there are no tests added or modified as part of the PR, please suggest that tests be added to cover the changes.

Files:

  • packages/astro/package.json
  • packages/nextjs/package.json
  • packages/elements/package.json
  • packages/clerk-js/package.json
  • packages/shared/package.json
  • packages/react-router/package.json
  • packages/nuxt/CHANGELOG.md
  • packages/expo/package.json
  • packages/agent-toolkit/package.json
  • packages/backend/package.json
  • packages/expo/CHANGELOG.md
  • packages/vue/package.json
  • packages/express/package.json
  • packages/react-router/CHANGELOG.md
  • packages/expo-passkeys/CHANGELOG.md
  • packages/testing/CHANGELOG.md
  • packages/chrome-extension/package.json
  • packages/remix/package.json
  • packages/nextjs/CHANGELOG.md
  • packages/tanstack-react-start/package.json
  • packages/chrome-extension/CHANGELOG.md
  • packages/nuxt/package.json
  • packages/remix/CHANGELOG.md
  • packages/clerk-js/CHANGELOG.md
  • packages/shared/CHANGELOG.md
  • packages/elements/CHANGELOG.md
  • packages/agent-toolkit/CHANGELOG.md
  • packages/express/CHANGELOG.md
  • packages/testing/package.json
  • packages/astro/CHANGELOG.md
  • packages/tanstack-react-start/CHANGELOG.md
  • packages/backend/CHANGELOG.md
  • packages/fastify/package.json
  • packages/fastify/CHANGELOG.md
  • packages/vue/CHANGELOG.md
  • packages/react/CHANGELOG.md
  • packages/react/package.json
  • packages/expo-passkeys/package.json
packages/**/CHANGELOG.md

📄 CodeRabbit inference engine (.cursor/rules/development.mdc)

Maintain detailed changelogs

Files:

  • packages/nuxt/CHANGELOG.md
  • packages/expo/CHANGELOG.md
  • packages/react-router/CHANGELOG.md
  • packages/expo-passkeys/CHANGELOG.md
  • packages/testing/CHANGELOG.md
  • packages/nextjs/CHANGELOG.md
  • packages/chrome-extension/CHANGELOG.md
  • packages/remix/CHANGELOG.md
  • packages/clerk-js/CHANGELOG.md
  • packages/shared/CHANGELOG.md
  • packages/elements/CHANGELOG.md
  • packages/agent-toolkit/CHANGELOG.md
  • packages/express/CHANGELOG.md
  • packages/astro/CHANGELOG.md
  • packages/tanstack-react-start/CHANGELOG.md
  • packages/backend/CHANGELOG.md
  • packages/fastify/CHANGELOG.md
  • packages/vue/CHANGELOG.md
  • packages/react/CHANGELOG.md
⏰ Context from checks skipped due to timeout of 90000ms. You can increase the timeout in your CodeRabbit configuration to a maximum of 15 minutes (900000ms). (6)
  • GitHub Check: Build Packages
  • GitHub Check: Formatting | Dedupe | Changeset
  • GitHub Check: semgrep/ci
  • GitHub Check: Analyze (javascript-typescript)
  • GitHub Check: semgrep-cloud-platform/scan
  • GitHub Check: semgrep-cloud-platform/scan
🔇 Additional comments (42)
packages/vue/package.json (1)

3-3: Patch version bump verified and no regressions detected; ready to merge

  • No external generateUuid usage remains outside packages/shared (OK).
  • All named packages under packages/ are scoped to @clerk/*.
  • Every public package specifies publishConfig.access: "public".
  • @clerk/shared version is confirmed at 3.22.1.

The bump from 1.11.4 → 1.11.5 aligns with workspace dependencies and publishing guidelines.

Two light suggestions (optional):

  • Vue’s peer dependency stays at "^3.2.0" while devDependency is pinned to "3.5.18". If testing passes on 3.5.x, consider widening the lower bound (e.g., "^3.2.0 || ^3.5.0").
  • No new tests were added—integration/e2e covers this bump, but you could add a smoke-test matrix job for a publish dry-run.
packages/astro/package.json (1)

3-3: Astro package patch to 2.11.7 looks good and matches the repo-wide bump.

  • Peer range "^4.15.0 || ^5.0.0" and devDependency "^5.12.9" remain compatible.
  • No source or export changes in this diff; safe to publish as patch.
  • As a small precaution, ensure the "imports" map still passes attw/publint after the bump (CI should cover).
packages/nuxt/package.json (2)

3-3: Nuxt package version bump looks correct and consistent with the release train.

Patch bump to 1.8.11 aligns with the dependency rollups described in the PR objectives. No other metadata/export surface changed. LGTM.

3-3: CHANGELOG entry verified for version 1.8.11

The file packages/nuxt/CHANGELOG.md already contains the “## 1.8.11” section and references commit ce49740, so no further changes are needed.

packages/nextjs/package.json (1)

3-3: Next.js package version bump is scoped and safe.

6.31.5 is a patch-only bump with no export or dependency surface changes in this file. Looks good.

packages/testing/CHANGELOG.md (2)

3-10: Changelog entry is accurate; dependency-only patch is clearly documented.

The 1.11.4 section lists updated deps and references ce49740. This meets the changelog guidance for dependency bumps. LGTM.

3-10: All set: CHANGELOG version matches package.json and no pending changesets detected

Version 1.11.4 in packages/testing/CHANGELOG.md aligns with the packages/testing/package.json, and no unreleased .changeset files for @clerk/testing remain. No further action required.

packages/shared/package.json (2)

127-145: No tests changed — nothing required for version bumps.

This is a release-only patch with no code diffs. Relying on the existing test suite is sufficient; no action needed.

3-3: No stale generateUuid imports detected; safe to merge version bump.

A search across the monorepo (excluding node_modules and dist) returned only the CHANGELOG entry noting the removal of generateUuid—no code files are still importing or using it.

  • Search result: only references in packages/shared/CHANGELOG.md confirming removal, no import/usages elsewhere.
packages/clerk-js/CHANGELOG.md (2)

3-9: Changelog entry looks correct and consistent.

  • Version header and “Patch Changes” subsection follow the existing style.
  • The dependency bump to @clerk/[email protected] matches the PR objective for this package.

7-9: No action needed—version alignment confirmed

All checks pass for the clerk-js release:

  • packages/clerk-js/package.json is at version 5.88.1.
  • Its dependency on @clerk/shared uses the workspace protocol (workspace:^), consistent with the repo’s package management policy.
  • No stray references to older @clerk/shared versions were found outside of the workspace spec.
  • The CHANGELOG.md contains the header for 5.88.1.
packages/react/CHANGELOG.md (2)

3-9: Changelog entry looks good and consistent with repo conventions.

  • Version header, "Patch Changes" section, and dependency bump with commit link are all correct. No source or API changes implied here, which matches the PR objectives.

3-9: Verification Complete: All Versions, Changelogs, and generateUuid References Are Correct

  • ✅ packages/react/package.json is at version 5.43.2
  • ✅ packages/expo/package.json is at version 2.14.24
  • ✅ packages/expo-passkeys/package.json is at version 0.3.35
  • ✅ packages/agent-toolkit/package.json is at version 0.1.26
  • ✅ packages/fastify/package.json is at version 2.4.25
  • ## 5.43.2 header and commit ce49740d474d6dd9da5096982ea4e9f14cf68f09 are present in packages/react/CHANGELOG.md
  • ✅ Matching ## <version> entries exist in the other package CHANGELOGs
  • ✅ No remaining references to the removed generateUuid utility

No further action required.

packages/expo/package.json (1)

3-3: Version bump verified; ready to merge.

  • packages/expo/package.json: updated to version 2.14.24
  • packages/expo/CHANGELOG.md: confirmed presence of header ## 2.14.24
packages/expo-passkeys/package.json (1)

3-3: Patch version and changelog confirmed

  • packages/expo-passkeys/package.json: version updated to "0.3.35"
  • packages/expo-passkeys/CHANGELOG.md: verified “## 0.3.35” entry exists

Approving these isolated version-only changes. No further action required.

packages/agent-toolkit/package.json (1)

3-3: Verified agent-toolkit version bump to 0.1.26

  • package.json now reflects version “0.1.26” (packages/agent-toolkit/package.json).
  • Node >= 20 engine requirement remains unchanged.
  • No changes to exports or dependency surface.
  • CHANGELOG.md contains the “## 0.1.26” entry as expected (packages/agent-toolkit/CHANGELOG.md).
packages/fastify/package.json (1)

3-3: Approve Fastify 2.4.25 patch bump (changelog verified)

  • packages/fastify/package.json (line 3): version updated to 2.4.25
  • packages/fastify/CHANGELOG.md: contains “## 2.4.25” as expected

LGTM—peer/dev dependencies, export map, and type paths remain unchanged.

packages/chrome-extension/package.json (1)

3-3: Action Required: Manual verification of CHANGELOG and workspace dependency pins

The automated checks ran successfully but surfaced the following items that need your attention:

  • Missing CHANGELOG.md
    packages/elements/examples/nextjs ([email protected]) has no CHANGELOG.md; please add one or confirm this example is exempt.
  • generateUuid scan
    No occurrences of generateUuid remain outside of CHANGELOGs or dist folders.
  • Node engines
    All bumped packages (including @clerk/[email protected]) specify compatible Node versions (>=18.17.0 or >=20 where expected).
  • Workspace:^ dependency pins
    The pinning check failed with a parsing error on packages/agent-toolkit/package.json. Please manually verify that all internal @clerk/* dependencies use workspace:^ where appropriate.

Once you’ve added the missing CHANGELOG or confirmed its omission and validated internal workspace pins, this review can be marked as resolved.

packages/react/package.json (1)

3-3: Patch version bump to 5.43.2 is clean.

No export map, files, deps, or peerDeps changes—safe patch release.

packages/react-router/package.json (1)

3-3: Version bump to 1.9.5 looks correct and aligned with dependency updates.

No other field changes in this PR—OK.

The engines field for this package is node >=20.0.0, while many sibling packages use >=18.17.0. If this stricter floor is intentional (e.g., due to ESM or Node APIs used during SSR/build), ignore; otherwise consider aligning. The script in my first comment prints an engines summary to confirm intent across packages.

packages/tanstack-react-start/package.json (1)

3-3: Patch bump to 0.22.5 is fine.

Exports, peerDeps, and scripts unchanged—good for a dependency-only release.

packages/testing/package.json (2)

3-3: Semver patch bump looks correct for a Changesets release.

Package is under the @clerk scope, publishConfig is public, engines and peer ranges unchanged. No runtime/API deltas implied by this metadata-only change.

3-3: Sanity check complete: version and changelog are in sync

All verifications passed without issue:

  • packages/testing/package.json reports version 1.11.4
  • packages/testing/CHANGELOG.md contains the “## 1.11.4” entry
  • Workspace dependencies (@clerk/backend, @clerk/shared, @clerk/types) remain correctly set to workspace:^

No further changes needed.

packages/express/CHANGELOG.md (3)

3-10: Changelog entry is consistent and scoped to dependency updates.

Version 1.7.25 documents updates to @clerk/[email protected] and @clerk/[email protected] with the commit reference. Format matches prior entries.

3-3: ✅ Version alignment confirmed

packages/express/package.json is set to version 1.7.25, matching the CHANGELOG entry. No further action required.

7-10: generateUuid removal safe – no downstream references found

I ran a repository-wide search for generateUuid (excluding CHANGELOGs and build artifacts) and found no occurrences, confirming that no packages are importing or using this utility. The removal in @clerk/[email protected] will not introduce any runtime breaks.

packages/agent-toolkit/CHANGELOG.md (2)

3-10: Agent Toolkit changelog entry looks good.

Patch release 0.1.26 correctly lists updated deps (shared 3.22.1, backend 2.9.5) and references the anchoring commit. No additional notes needed.

3-10: Version alignment verified

  • The version in packages/agent-toolkit/package.json is 0.1.26, which exactly matches the ## 0.1.26 entry in CHANGELOG.md. No further changes are needed.
packages/remix/CHANGELOG.md (1)

3-11: Changelog entry approved – no lingering generateUuid usages found

  • Verified that the bump to @clerk/[email protected], @clerk/[email protected], and @clerk/[email protected] correctly reflects the PR scope and follows semantic versioning.
  • Ran a repo-wide search for generateUuid (excluding changelogs and build artifacts) and found no remaining references, confirming the utility’s removal is safe.

No further changes required.

packages/expo-passkeys/CHANGELOG.md (1)

3-9: ✅ Expo Passkeys changelog entry validated

  • packages/shared/package.json is at version 3.22.1
  • packages/shared/CHANGELOG.md contains a ## 3.22.1 section

All references align with the release automation pattern—no further changes needed.

packages/clerk-js/package.json (1)

3-3: Changelog entry verified for version 5.88.1

File: packages/clerk-js/package.json
Lines: 3-3

Snippet showing the final state of code at these lines

  "version": "5.88.1",

Comment
Version bump to 5.88.1 is appropriate and scoped to metadata.

  • Patch bump aligns with dependency-only changes elsewhere in the PR.
  • No other fields changed; engines, publishConfig, and workspace dependencies remain consistent.
  • CHANGELOG.md contains a “## 5.88.1” section (line 3) and explicitly references @clerk/[email protected] (line 8), confirming the shared-dependency bump is documented.
packages/backend/package.json (1)

3-3: Backend version bump to 2.9.5 verified

All automated checks passed—version, changelog entry, and dependency update are consistent, and there are no lingering references to the removed shared utility:

  • packages/backend/package.json: "version": "2.9.5"
  • packages/backend/CHANGELOG.md: entry ## 2.9.5 (line 3)
  • packages/backend/CHANGELOG.md: - @clerk/[email protected] (line 8)
  • No occurrences of generateUuid outside changelogs
packages/elements/CHANGELOG.md (1)

3-10: Changelog Entry Verified – No Action Needed

All checks confirm that:

  • packages/elements/package.json version is 0.23.58, matching the changelog header.
  • The monorepo uses workspace:^ for internal Clerk dependencies, which ensures they resolve to the newly bumped versions (e.g. @clerk/[email protected], @clerk/[email protected]) without hard-coding each range.
  • The ## 0.23.58 header is present in packages/elements/CHANGELOG.md at line 3.

No updates to the changelog or package metadata are required.

packages/nextjs/CHANGELOG.md (1)

3-11: Changelog entry looks good and consistent with prior sections.

  • Version header, “Patch Changes” heading, and dependency bullets match the repo’s existing style for patch releases.
  • The commit reference anchor syntax is correct and consistent with earlier entries.
packages/chrome-extension/CHANGELOG.md (1)

3-11: Changelog entry and manifest alignment confirmed

  • packages/chrome-extension/package.json version is 2.5.25, matching the CHANGELOG entry.
  • Dependency specs correctly resolve to the workspace package versions:
    • @clerk/shared → v3.22.1
    • @clerk/clerk-js → v5.88.1
    • @clerk/clerk-react → v5.43.2
  • No code changes here; tests aren’t required. Please ensure any release smoke checks (install/import sanity) pass post-merge.
packages/react-router/CHANGELOG.md (1)

3-11: Approve: React Router v1.9.5 Changelog and Package Versions Verified
All dependency versions in the changelog entry—@clerk/[email protected], @clerk/[email protected], @clerk/[email protected]—are confirmed to match the monorepo package versions, and the package.json’s workspace:^ placeholders correctly resolve to these releases. Changes look good; approving merge.

packages/tanstack-react-start/CHANGELOG.md (2)

3-11: Changelog entry for 0.22.5 looks correct and consistent with the release plan.

  • Version scoped to patch.
  • Dependencies list matches the PR summary and references the commit hash.

3-11: Version and Changelog Alignment Confirmed

  • The package’s version in packages/tanstack-react-start/package.json is 0.22.5, which matches the CHANGELOG header “## 0.22.5.”
  • This package uses monorepo workspace specifications ("workspace:^") for its @clerk/* dependencies by design, so there are no hard-pinned version numbers in package.json.
  • The CHANGELOG correctly documents the patch-level bumps to @clerk/[email protected], @clerk/[email protected], and @clerk/[email protected].

No further changes are required here.

packages/astro/CHANGELOG.md (2)

3-10: Astro 2.11.7 changelog entry is clear and matches the dependency bumps.

3-10: Sanity check passed: Astro package.json and CHANGELOG are fully in sync.

All verified values match exactly:

  • packages/astro/package.json version is 2.11.7
  • @clerk/shared is pinned to 3.22.1
  • @clerk/backend is pinned to 2.9.5
  • CHANGELOG.md’s “## 2.11.7” header and dependency snippet correctly reflect these versions

No further changes required.

packages/shared/CHANGELOG.md (1)

3-8: ✅ Removal of generateUuid and version bump to 3.22.1 verified

  • packages/shared/package.json is correctly at version 3.22.1.
  • No remaining imports/usages of generateUuid anywhere in the repo.
  • The shared entrypoints no longer export generateUuid.

All set—no further action required.

packages/expo/CHANGELOG.md (1)

3-11: Changelog entry looks correct and consistent with the release plan.

packages/expo/CHANGELOG.md Outdated
Comment on lines 3 to 12
## 2.14.24

### Patch Changes

- Updated dependencies [[`ce49740`](https://github.com/clerk/javascript/commit/ce49740d474d6dd9da5096982ea4e9f14cf68f09)]:
- @clerk/[email protected]
- @clerk/[email protected]
- @clerk/[email protected]

Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

💡 Verification agent

🧩 Analysis chain

Sanity-check package.json matches this changelog.

Let’s automatically verify the Expo package version and pinned internal dependency versions align with the entry to avoid drift.

🏁 Script executed:

#!/bin/bash
set -euo pipefail

# Find the expo package.json
EXPO_PKG_JSON="$(fd -a 'package.json' packages/expo | head -n1)"

echo "Checking ${EXPO_PKG_JSON}"

# 1) Verify version bump
jq -r '.name, .version' "${EXPO_PKG_JSON}"

# Expect version 2.14.24
jq -e 'select(.version=="2.14.24")' "${EXPO_PKG_JSON}" >/dev/null || {
  echo "ERROR: packages/expo version is not 2.14.24"; exit 1;
}

# 2) Verify internal dependency pins (no carets, exact matches)
jq -r '.dependencies["@clerk/shared"], .dependencies["@clerk/clerk-js"], .dependencies["@clerk/clerk-react"]' "${EXPO_PKG_JSON}"

jq -e 'select(.dependencies["@clerk/shared"]=="3.22.1")' "${EXPO_PKG_JSON}" >/dev/null || { echo "ERROR: @clerk/shared != 3.22.1"; exit 1; }
jq -e 'select(.dependencies["@clerk/clerk-js"]=="5.88.1")' "${EXPO_PKG_JSON}" >/dev/null || { echo "ERROR: @clerk/clerk-js != 5.88.1"; exit 1; }
jq -e 'select(.dependencies["@clerk/clerk-react"]=="5.43.2")' "${EXPO_PKG_JSON}" >/dev/null || { echo "ERROR: @clerk/clerk-react != 5.43.2"; exit 1; }

# 3) Confirm the changelog entry exists
rg -n '^## 2\.14\.24$' packages/expo/CHANGELOG.md || { echo "ERROR: Changelog header missing"; exit 1; }

echo "All checks passed ✅"

Length of output: 614

I want to locate the correct Expo package.json and confirm its version. Let’s list all package.json files under packages/expo and check their names and versions:

🏁 Script executed:

#!/bin/bash
set -euo pipefail

echo "Searching for version 2.14.24 in packages/expo…"
grep -R '"version": "2.14.24"' -n packages/expo || echo "→ No matches for version 2.14.24"

echo ""
echo "Listing all package.json in packages/expo with name@version…"
fd 'package.json' packages/expo | while read -r pkg; do
  printf "\nFile: %s\n" "$pkg"
  jq -r '"Name: \(.name) | Version: \(.version)"' "$pkg" || echo "→ Failed to parse JSON"
done

Length of output: 2065

I’ll verify that packages/expo/package.json has the correct version and pinned dependencies:

🏁 Script executed:

#!/bin/bash
set -euo pipefail

PKG="packages/expo/package.json"
echo "File: $PKG"
echo "Version: $(jq -r .version $PKG)"
echo ""

echo "Dependencies:"
for dep in "@clerk/shared" "@clerk/clerk-js" "@clerk/clerk-react"; do
  ver=$(jq -r --arg dep "$dep" '.dependencies[$dep] // empty' $PKG)
  if [[ -z "$ver" ]]; then
    echo " - $dep: missing"
  else
    echo " - $dep: $ver"
  fi
done

Length of output: 1095

Update Expo package.json dependency pins to match the changelog

The packages/expo/package.json is correctly bumped to version 2.14.24, but its internal dependencies still use the monorepo workspace alias instead of the exact versions listed in CHANGELOG.md:

• In packages/expo/package.json

 "dependencies": {
-    "@clerk/shared": "workspace:^",
-    "@clerk/clerk-js": "workspace:^",
-    "@clerk/clerk-react": "workspace:^",
+    "@clerk/shared": "3.22.1",
+    "@clerk/clerk-js": "5.88.1",
+    "@clerk/clerk-react": "5.43.2",
  …
 }

Please replace each workspace:^ entry with the exact version from the changelog so that the published package aligns with the documented patch.

📝 Committable suggestion

‼️ IMPORTANT
Carefully review the code before committing. Ensure that it accurately replaces the highlighted code, contains no missing lines, and has no issues with indentation. Thoroughly test & benchmark the code to ensure it meets the requirements.

Suggested change
## 2.14.24
### Patch Changes
- Updated dependencies [[`ce49740`](https://github.com/clerk/javascript/commit/ce49740d474d6dd9da5096982ea4e9f14cf68f09)]:
- @clerk/shared@3.22.1
- @clerk/clerk-js@5.88.1
- @clerk/clerk-react@5.43.2
// packages/expo/package.json
"dependencies": {
"@clerk/shared": "3.22.1",
"@clerk/clerk-js": "5.88.1",
"@clerk/clerk-react": "5.43.2",
}
🤖 Prompt for AI Agents 
In packages/expo/CHANGELOG.md around lines 3 to 11 you documented
@clerk/[email protected], @clerk/[email protected] and @clerk/[email protected], but
packages/expo/package.json still uses workspace:^ aliases; update
packages/expo/package.json to replace each dependency using the workspace:^
alias for these three packages with the exact versions from the changelog (set
@clerk/shared to 3.22.1, @clerk/clerk-js to 5.88.1, and @clerk/clerk-react to
5.43.2) so the published package.json matches the CHANGELOG.

packages/fastify/CHANGELOG.md Outdated
Comment on lines 3 to 11
## 2.4.25

### Patch Changes

- Updated dependencies [[`ce49740`](https://github.com/clerk/javascript/commit/ce49740d474d6dd9da5096982ea4e9f14cf68f09)]:
- @clerk/[email protected]
- @clerk/[email protected]

Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

💡 Verification agent

🧩 Analysis chain

LGTM: changelog entry matches the release PR and dependency bumps

Run this quick check to verify package.json and the changelog are in sync and that dependency ranges reflect the new versions (exact or caret):

🏁 Script executed:

#!/bin/bash
set -euo pipefail

echo "Verify package version"
jq -r .version packages/fastify/package.json | grep -x '2.4.25'

echo "Verify dependency bumps are present somewhere in package.json (dependencies/dev/peer)"
rg -nP '"@clerk/shared"\s*:\s*"\^?3\.22\.1"' packages/fastify/package.json
rg -nP '"@clerk/backend"\s*:\s*"\^?2\.9\.5"' packages/fastify/package.json

echo "Topmost changelog entry present"
rg -n '^## 2\.4\.25$' packages/fastify/CHANGELOG.md | head -n1

echo "All good ✅"

Length of output: 403

🏁 Script executed:

#!/bin/bash
set -euo pipefail

echo "Checking @clerk/shared entries in package.json"
rg -n '"@clerk/shared"' packages/fastify/package.json

echo "Checking @clerk/backend entries in package.json"
rg -n '"@clerk/backend"' packages/fastify/package.json

Length of output: 419

Update fastify package.json dependencies to match changelog

The changelog correctly records version 2.4.25 and the bumped dependencies, but packages/fastify/package.json still uses workspace:^ for both peers instead of the new version ranges. These must be updated to keep the package in sync.

• File: packages/fastify/package.json
– Change
"@clerk/shared": "workspace:^"
to
"@clerk/shared": "^3.22.1"
– Change
"@clerk/backend": "workspace:^"
to
"@clerk/backend": "^2.9.5"

Once updated, verify the version ("2.4.25") and that the changelog’s top entry (## 2.4.25) remains at the head.

🤖 Prompt for AI Agents 
In packages/fastify/CHANGELOG.md around lines 3 to 10, the changelog documents
release 2.4.25 with bumped dependencies but packages/fastify/package.json still
references workspace:^ for those peers; open packages/fastify/package.json and
replace "@clerk/shared": "workspace:^" with "@clerk/shared": "^3.22.1" and
"@clerk/backend": "workspace:^" with "@clerk/backend": "^2.9.5", ensure the
package.json version remains "2.4.25", save, and confirm the changelog top entry
"## 2.4.25" remains unchanged at the head.

packages/nextjs/CHANGELOG.md Outdated
Comment on lines 7 to 10
- Updated dependencies [[`ce49740`](https://github.com/clerk/javascript/commit/ce49740d474d6dd9da5096982ea4e9f14cf68f09)]:
- @clerk/[email protected]
- @clerk/[email protected]
- @clerk/[email protected]
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

💡 Verification agent

🧩 Analysis chain

Verify that the declared bumps reflect actual package.json versions and that the commit exists.

Before merging, please cross-check that:

  • packages/nextjs/package.json version is 6.31.5
  • @clerk/shared is 3.22.1, @clerk/backend is 2.9.5, and @clerk/clerk-react is 5.43.2 in dependencies or peerDependencies
  • the referenced commit ce49740 exists in the repo
  • no lingering references to the removed generateUuid utility remain after @clerk/[email protected]

Run this script from the repo root:

🏁 Script executed:

#!/bin/bash
set -euo pipefail

echo "1) Check nextjs version equals 6.31.5"
jq -r '.version' packages/nextjs/package.json

echo -e "\n2) Check dependency/peerDependency versions used by @clerk/nextjs"
for dep in "@clerk/shared" "@clerk/backend" "@clerk/clerk-react"; do
  want=""
  case "$dep" in
    "@clerk/shared") want="3.22.1" ;;
    "@clerk/backend") want="2.9.5" ;;
    "@clerk/clerk-react") want="5.43.2" ;;
  esac
  have_dep=$(jq -r --arg d "$dep" '.dependencies[$d] // empty' packages/nextjs/package.json)
  have_peer=$(jq -r --arg d "$dep" '.peerDependencies[$d] // empty' packages/nextjs/package.json)
  have="${have_dep:-$have_peer}"
  echo "$dep => $have"
  if [[ -n "$have" && "$have" != "$want" ]]; then
    echo "Mismatch for $dep: expected $want" >&2; exit 1
  fi
done

echo -e "\n3) Ensure commit exists"
git cat-file -t ce49740d474d6dd9da5096982ea4e9f14cf68f09 >/dev/null && echo "Commit found"

echo -e "\n4) Ensure no usage of removed generateUuid remains"
rg -n --hidden -S '\bgenerateUuid\s*\(' -g '!**/dist/**' -g '!**/build/**' || echo "No usages found"

Length of output: 883

Fix dependency version mismatch and re-verify bumps

The @clerk/shared dependency in packages/nextjs/package.json is still set to workspace:^ rather than the bumped version 3.22.1 declared in the CHANGELOG. This needs to be corrected before merging. Please:

  • Update packages/nextjs/package.json to use:
    • "@clerk/shared": "3.22.1"
    • "@clerk/backend": "2.9.5"
    • "@clerk/clerk-react": "5.43.2"
  • After updating, re-run the version check script to confirm no mismatches remain.
  • Verify that commit ce49740 exists in the repo.
  • Ensure there are no lingering references to the removed generateUuid utility anywhere outside of build/dist files.
🤖 Prompt for AI Agents 
In packages/nextjs/CHANGELOG.md around lines 7 to 10: the changelog lists bumped
deps but packages/nextjs/package.json still uses workspace:^ for @clerk/shared
and likely mismatched versions for the other two; update
packages/nextjs/package.json to set "@clerk/shared": "3.22.1", "@clerk/backend":
"2.9.5", and "@clerk/clerk-react": "5.43.2", then run the repository version
check script to confirm no mismatches remain, verify that commit
ce49740d474d6dd9da5096982ea4e9f14cf68f09 exists in the repo (e.g., git fetch &&
git show), and perform a codebase search (excluding build/dist folders) to
ensure there are no remaining references to the removed generateUuid utility.

packages/nuxt/CHANGELOG.md Outdated
Comment on lines 3 to 35
## 1.8.11

### Patch Changes

- Updated dependencies [[`ce49740`](https://github.com/clerk/javascript/commit/ce49740d474d6dd9da5096982ea4e9f14cf68f09)]:
- @clerk/[email protected]
- @clerk/[email protected]
- @clerk/[email protected]

Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

💡 Verification agent

🧩 Analysis chain

LGTM: Nuxt changelog correctly documents 1.8.11 with the expected deps

Use this to confirm package.json and the new changelog entry are aligned:

🏁 Script executed:

#!/bin/bash
set -euo pipefail

echo "Verify package version"
jq -r .version packages/nuxt/package.json | grep -x '1.8.11'

echo "Verify dependency bumps across dependency fields"
rg -nP '"@clerk/shared"\s*:\s*"\^?3\.22\.1"' packages/nuxt/package.json
rg -nP '"@clerk/backend"\s*:\s*"\^?2\.9\.5"' packages/nuxt/package.json
rg -nP '"@clerk/vue"\s*:\s*"\^?1\.11\.5"' packages/nuxt/package.json

echo "Topmost changelog entry present"
rg -n '^## 1\.8\.11$' packages/nuxt/CHANGELOG.md | head -n1

echo "All good ✅"

Length of output: 323

To capture the exact dependency lines and verify the changelog entry, let’s run a more detailed check:

🏁 Script executed:

#!/usr/bin/env bash
set -euo pipefail

echo "==> Package version:"
jq -r .version packages/nuxt/package.json

echo ""
echo "==> Full dependencies section:"
grep -n '"dependencies"' packages/nuxt/package.json -A5

echo ""
echo "==> @clerk/shared line(s):"
grep -n '"@clerk/shared"' packages/nuxt/package.json || echo "  ↳ not found"

echo ""
echo "==> @clerk/backend line(s):"
grep -n '"@clerk/backend"' packages/nuxt/package.json || echo "  ↳ not found"

echo ""
echo "==> @clerk/vue line(s):"
grep -n '"@clerk/vue"' packages/nuxt/package.json || echo "  ↳ not found"

echo ""
echo "==> Changelog top entry for 1.8.11:"
grep -n '^## 1\.8\.11' packages/nuxt/CHANGELOG.md -A5 || echo "  ↳ not found"

Length of output: 1302

Mismatch between CHANGELOG and package.json dependencies

The new changelog entry for v1.8.11 documents updated dependencies, but the packages/nuxt/package.json still uses workspace references rather than the released versions. Please update the dependency specifications to match the changelog before publishing:

• In packages/nuxt/package.json under "dependencies":

   "dependencies": {
-    "@clerk/backend": "workspace:^",
-    "@clerk/shared": "workspace:^",
-    "@clerk/vue": "workspace:^",
+    "@clerk/backend": "^2.9.5",
+    "@clerk/shared": "^3.22.1",
+    "@clerk/vue": "^1.11.5",
     "@nuxt/kit": "^3.17.7",
     // …
   },

After making these changes, run your install command (npm install/pnpm install) to update the lockfile and ensure the correct versions are published.

📝 Committable suggestion

‼️ IMPORTANT
Carefully review the code before committing. Ensure that it accurately replaces the highlighted code, contains no missing lines, and has no issues with indentation. Thoroughly test & benchmark the code to ensure it meets the requirements.

Suggested change
## 1.8.11
### Patch Changes
- Updated dependencies [[`ce49740`](https://github.com/clerk/javascript/commit/ce49740d474d6dd9da5096982ea4e9f14cf68f09)]:
- @clerk/shared@3.22.1
- @clerk/backend@2.9.5
- @clerk/vue@1.11.5
// File: packages/nuxt/package.json
{
// …
"dependencies": {
"@clerk/backend": "^2.9.5",
"@clerk/shared": "^3.22.1",
"@clerk/vue": "^1.11.5",
"@nuxt/kit": "^3.17.7",
// …
},
// …
}
🤖 Prompt for AI Agents 
In packages/nuxt/CHANGELOG.md around lines 3 to 11: the changelog shows updated
dependencies for v1.8.11 but packages/nuxt/package.json still uses workspace
references; update packages/nuxt/package.json "dependencies" to reference the
released versions listed in the changelog (@clerk/[email protected],
@clerk/[email protected], @clerk/[email protected]) instead of workspace: entries, save the
file, then run your package manager install (npm install or pnpm install) to
refresh the lockfile so the published package includes the correct versions.

@github-actions github-actions bot force-pushed the changeset-release/main branch from 7f8d7d2 to 385ef9e Compare August 21, 2025 19:23
@github-actions github-actions bot force-pushed the changeset-release/main branch from 385ef9e to 5ed5041 Compare August 22, 2025 08:52
@github-actions github-actions bot force-pushed the changeset-release/main branch from 5ed5041 to 7d62606 Compare August 22, 2025 17:00
coderabbitai[bot]
coderabbitai bot reviewed Aug 22, 2025
View reviewed changes
Copy link
Contributor

@coderabbitai coderabbitai bot left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Actionable comments posted: 0

🧹 Nitpick comments (1)
packages/types/CHANGELOG.md (1)

5-8: Optional: clarify “no action required” for SDK consumers

Consider a short follow-up bullet to make the impact explicit for readers scanning the log.

Apply this diff:

 ### Patch Changes

-- Remove unused `__internal_hasAfterAuthFlows` property ([#6609](https://github.com/clerk/javascript/pull/6609)) by [@LauraBeatris](https://github.com/LauraBeatris)
+- Remove unused `__internal_hasAfterAuthFlows` property ([#6609](https://github.com/clerk/javascript/pull/6609)) by [@LauraBeatris](https://github.com/LauraBeatris)
+  - Internal-only types cleanup; no action required for app developers.
📜 Review details

Configuration used: CodeRabbit UI

Review profile: CHILL

Plan: Pro

💡 Knowledge Base configuration:

  • MCP integration is disabled by default for public repositories
  • Jira integration is disabled
  • Linear integration is disabled by default for public repositories

You can enable these sources in your CodeRabbit configuration.

📥 Commits

Reviewing files that changed from the base of the PR and between 5ed5041 and 7d62606.

📒 Files selected for processing (46)
  • .changeset/cold-glasses-watch.md (0 hunks)
  • .changeset/fluffy-spiders-grab.md (0 hunks)
  • packages/agent-toolkit/CHANGELOG.md (1 hunks)
  • packages/agent-toolkit/package.json (1 hunks)
  • packages/astro/CHANGELOG.md (1 hunks)
  • packages/astro/package.json (1 hunks)
  • packages/backend/CHANGELOG.md (1 hunks)
  • packages/backend/package.json (1 hunks)
  • packages/chrome-extension/CHANGELOG.md (1 hunks)
  • packages/chrome-extension/package.json (1 hunks)
  • packages/clerk-js/CHANGELOG.md (1 hunks)
  • packages/clerk-js/package.json (1 hunks)
  • packages/elements/CHANGELOG.md (1 hunks)
  • packages/elements/package.json (1 hunks)
  • packages/expo-passkeys/CHANGELOG.md (1 hunks)
  • packages/expo-passkeys/package.json (1 hunks)
  • packages/expo/CHANGELOG.md (1 hunks)
  • packages/expo/package.json (1 hunks)
  • packages/express/CHANGELOG.md (1 hunks)
  • packages/express/package.json (1 hunks)
  • packages/fastify/CHANGELOG.md (1 hunks)
  • packages/fastify/package.json (1 hunks)
  • packages/localizations/CHANGELOG.md (1 hunks)
  • packages/localizations/package.json (1 hunks)
  • packages/nextjs/CHANGELOG.md (1 hunks)
  • packages/nextjs/package.json (1 hunks)
  • packages/nuxt/CHANGELOG.md (1 hunks)
  • packages/nuxt/package.json (1 hunks)
  • packages/react-router/CHANGELOG.md (1 hunks)
  • packages/react-router/package.json (1 hunks)
  • packages/react/CHANGELOG.md (1 hunks)
  • packages/react/package.json (1 hunks)
  • packages/remix/CHANGELOG.md (1 hunks)
  • packages/remix/package.json (1 hunks)
  • packages/shared/CHANGELOG.md (1 hunks)
  • packages/shared/package.json (1 hunks)
  • packages/tanstack-react-start/CHANGELOG.md (1 hunks)
  • packages/tanstack-react-start/package.json (1 hunks)
  • packages/testing/CHANGELOG.md (1 hunks)
  • packages/testing/package.json (1 hunks)
  • packages/themes/CHANGELOG.md (1 hunks)
  • packages/themes/package.json (1 hunks)
  • packages/types/CHANGELOG.md (1 hunks)
  • packages/types/package.json (1 hunks)
  • packages/vue/CHANGELOG.md (1 hunks)
  • packages/vue/package.json (1 hunks)
💤 Files with no reviewable changes (2)
  • .changeset/cold-glasses-watch.md
  • .changeset/fluffy-spiders-grab.md
✅ Files skipped from review due to trivial changes (12)
  • packages/localizations/package.json
  • packages/themes/CHANGELOG.md
  • packages/localizations/CHANGELOG.md
  • packages/themes/package.json
  • packages/types/package.json
  • packages/remix/package.json
  • packages/expo/CHANGELOG.md
  • packages/vue/CHANGELOG.md
  • packages/clerk-js/CHANGELOG.md
  • packages/agent-toolkit/CHANGELOG.md
  • packages/shared/CHANGELOG.md
  • packages/backend/package.json
🚧 Files skipped from review as they are similar to previous changes (30)
  • packages/agent-toolkit/package.json
  • packages/react/package.json
  • packages/astro/package.json
  • packages/react-router/package.json
  • packages/nuxt/package.json
  • packages/testing/package.json
  • packages/chrome-extension/package.json
  • packages/nextjs/package.json
  • packages/shared/package.json
  • packages/tanstack-react-start/package.json
  • packages/expo/package.json
  • packages/vue/package.json
  • packages/fastify/package.json
  • packages/expo-passkeys/package.json
  • packages/backend/CHANGELOG.md
  • packages/remix/CHANGELOG.md
  • packages/expo-passkeys/CHANGELOG.md
  • packages/nextjs/CHANGELOG.md
  • packages/chrome-extension/CHANGELOG.md
  • packages/fastify/CHANGELOG.md
  • packages/express/package.json
  • packages/astro/CHANGELOG.md
  • packages/elements/CHANGELOG.md
  • packages/elements/package.json
  • packages/nuxt/CHANGELOG.md
  • packages/tanstack-react-start/CHANGELOG.md
  • packages/react-router/CHANGELOG.md
  • packages/testing/CHANGELOG.md
  • packages/react/CHANGELOG.md
  • packages/express/CHANGELOG.md
🧰 Additional context used
📓 Path-based instructions (4)
**/*.{js,jsx,ts,tsx,json,css,scss,md,yaml,yml}

📄 CodeRabbit inference engine (.cursor/rules/development.mdc)

Use Prettier for consistent code formatting

Files:

  • packages/types/CHANGELOG.md
  • packages/clerk-js/package.json
packages/**/CHANGELOG.md

📄 CodeRabbit inference engine (.cursor/rules/development.mdc)

Maintain detailed changelogs

Files:

  • packages/types/CHANGELOG.md
**/*

⚙️ CodeRabbit configuration file

If there are no tests added or modified as part of the PR, please suggest that tests be added to cover the changes.

Files:

  • packages/types/CHANGELOG.md
  • packages/clerk-js/package.json
packages/*/package.json

📄 CodeRabbit inference engine (.cursor/rules/global.mdc)

All publishable packages should be placed under the packages/ directory

packages/*/package.json: All publishable packages must be located in the 'packages/' directory.
All packages must be published under the @clerk namespace on npm.
Semantic versioning must be used across all packages.

Files:

  • packages/clerk-js/package.json
⏰ Context from checks skipped due to timeout of 90000ms. You can increase the timeout in your CodeRabbit configuration to a maximum of 15 minutes (900000ms). (3)
  • GitHub Check: Analyze (javascript-typescript)
  • GitHub Check: semgrep-cloud-platform/scan
  • GitHub Check: semgrep-cloud-platform/scan
🔇 Additional comments (4)
packages/types/CHANGELOG.md (2)

3-8: LGTM — clear, scoped patch note

  • Entry accurately describes the change and links to the originating PR (#6609).
  • Style and tense match the rest of the changelog; patch bump is appropriate for removing an internal-only flag.

3-8: All references to __internal_hasAfterAuthFlows have been removed

A repository‐wide search confirmed there are no remaining occurrences of the internal flag outside of the changelog:

  • Searched for __internal_hasAfterAuthFlows (excluding CHANGELOG files): no matches found
  • Searched for hasAfterAuthFlows (excluding CHANGELOG files): no matches found

Removal is therefore safe and no further action is required.

packages/clerk-js/package.json (2)

3-3: Semver patch bump looks good for a changesets release.

Version updated to 5.88.1, consistent with a patch release and the PR’s objective to publish package updates. Package remains under packages/ and @clerk scope, satisfying publishing guidelines.

3-3: All checks passed for clerk-js 5.88.1 release

  • Verified packages/clerk-js/CHANGELOG.md contains the new ## 5.88.1 entry.
  • No lingering 5.88.0 mentions in docs, config, or source files—remaining hits are only in other packages’ own CHANGELOG.md.
  • Internal @clerk/* dependencies in packages/clerk-js/package.json remain correctly set to workspace:^.

@github-actions github-actions bot force-pushed the changeset-release/main branch from 7d62606 to 9b28cc8 Compare August 22, 2025 17:09
coderabbitai[bot]
coderabbitai bot reviewed Aug 22, 2025
View reviewed changes
Copy link
Contributor

@coderabbitai coderabbitai bot left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Actionable comments posted: 1

🧹 Nitpick comments (1)
packages/astro/CHANGELOG.md (1)

3-11: Optional: add a one‑line “Impact” note for consumers.

Consider adding a short note like “No runtime/API changes; dependency bumps only” to set expectations for users scanning the changelog.

 ## 2.11.7

 ### Patch Changes
+- Internal: dependency updates only; no runtime or API changes.

 - Updated dependencies [[`d52714e`](https://github.com/clerk/javascript/commit/d52714e4cb7f369c74826cd4341c58eb1900abe4), [`ce49740`](https://github.com/clerk/javascript/commit/ce49740d474d6dd9da5096982ea4e9f14cf68f09)]:
   - @clerk/[email protected]
   - @clerk/[email protected]
   - @clerk/[email protected]
📜 Review details

Configuration used: CodeRabbit UI

Review profile: CHILL

Plan: Pro

💡 Knowledge Base configuration:

  • MCP integration is disabled by default for public repositories
  • Jira integration is disabled
  • Linear integration is disabled by default for public repositories

You can enable these sources in your CodeRabbit configuration.

📥 Commits

Reviewing files that changed from the base of the PR and between 7d62606 and 9b28cc8.

📒 Files selected for processing (47)
  • .changeset/cold-glasses-watch.md (0 hunks)
  • .changeset/common-clowns-speak.md (0 hunks)
  • .changeset/fluffy-spiders-grab.md (0 hunks)
  • packages/agent-toolkit/CHANGELOG.md (1 hunks)
  • packages/agent-toolkit/package.json (1 hunks)
  • packages/astro/CHANGELOG.md (1 hunks)
  • packages/astro/package.json (1 hunks)
  • packages/backend/CHANGELOG.md (1 hunks)
  • packages/backend/package.json (1 hunks)
  • packages/chrome-extension/CHANGELOG.md (1 hunks)
  • packages/chrome-extension/package.json (1 hunks)
  • packages/clerk-js/CHANGELOG.md (1 hunks)
  • packages/clerk-js/package.json (1 hunks)
  • packages/elements/CHANGELOG.md (1 hunks)
  • packages/elements/package.json (1 hunks)
  • packages/expo-passkeys/CHANGELOG.md (1 hunks)
  • packages/expo-passkeys/package.json (1 hunks)
  • packages/expo/CHANGELOG.md (1 hunks)
  • packages/expo/package.json (1 hunks)
  • packages/express/CHANGELOG.md (1 hunks)
  • packages/express/package.json (1 hunks)
  • packages/fastify/CHANGELOG.md (1 hunks)
  • packages/fastify/package.json (1 hunks)
  • packages/localizations/CHANGELOG.md (1 hunks)
  • packages/localizations/package.json (1 hunks)
  • packages/nextjs/CHANGELOG.md (1 hunks)
  • packages/nextjs/package.json (1 hunks)
  • packages/nuxt/CHANGELOG.md (1 hunks)
  • packages/nuxt/package.json (1 hunks)
  • packages/react-router/CHANGELOG.md (1 hunks)
  • packages/react-router/package.json (1 hunks)
  • packages/react/CHANGELOG.md (1 hunks)
  • packages/react/package.json (1 hunks)
  • packages/remix/CHANGELOG.md (1 hunks)
  • packages/remix/package.json (1 hunks)
  • packages/shared/CHANGELOG.md (1 hunks)
  • packages/shared/package.json (1 hunks)
  • packages/tanstack-react-start/CHANGELOG.md (1 hunks)
  • packages/tanstack-react-start/package.json (1 hunks)
  • packages/testing/CHANGELOG.md (1 hunks)
  • packages/testing/package.json (1 hunks)
  • packages/themes/CHANGELOG.md (1 hunks)
  • packages/themes/package.json (1 hunks)
  • packages/types/CHANGELOG.md (1 hunks)
  • packages/types/package.json (1 hunks)
  • packages/vue/CHANGELOG.md (1 hunks)
  • packages/vue/package.json (1 hunks)
💤 Files with no reviewable changes (3)
  • .changeset/common-clowns-speak.md
  • .changeset/fluffy-spiders-grab.md
  • .changeset/cold-glasses-watch.md
✅ Files skipped from review due to trivial changes (13)
  • packages/chrome-extension/CHANGELOG.md
  • packages/fastify/package.json
  • packages/chrome-extension/package.json
  • packages/remix/CHANGELOG.md
  • packages/vue/CHANGELOG.md
  • packages/elements/CHANGELOG.md
  • packages/tanstack-react-start/CHANGELOG.md
  • packages/nextjs/CHANGELOG.md
  • packages/shared/CHANGELOG.md
  • packages/express/CHANGELOG.md
  • packages/backend/CHANGELOG.md
  • packages/fastify/CHANGELOG.md
  • packages/clerk-js/CHANGELOG.md
🚧 Files skipped from review as they are similar to previous changes (30)
  • packages/testing/package.json
  • packages/express/package.json
  • packages/react/package.json
  • packages/themes/package.json
  • packages/agent-toolkit/CHANGELOG.md
  • packages/shared/package.json
  • packages/expo/package.json
  • packages/vue/package.json
  • packages/remix/package.json
  • packages/react-router/package.json
  • packages/localizations/package.json
  • packages/nuxt/package.json
  • packages/backend/package.json
  • packages/nextjs/package.json
  • packages/expo-passkeys/package.json
  • packages/types/package.json
  • packages/clerk-js/package.json
  • packages/testing/CHANGELOG.md
  • packages/nuxt/CHANGELOG.md
  • packages/astro/package.json
  • packages/tanstack-react-start/package.json
  • packages/agent-toolkit/package.json
  • packages/expo/CHANGELOG.md
  • packages/elements/package.json
  • packages/themes/CHANGELOG.md
  • packages/expo-passkeys/CHANGELOG.md
  • packages/react/CHANGELOG.md
  • packages/react-router/CHANGELOG.md
  • packages/localizations/CHANGELOG.md
  • packages/types/CHANGELOG.md
🧰 Additional context used
📓 Path-based instructions (3)
**/*.{js,jsx,ts,tsx,json,css,scss,md,yaml,yml}

📄 CodeRabbit inference engine (.cursor/rules/development.mdc)

Use Prettier for consistent code formatting

Files:

  • packages/astro/CHANGELOG.md
packages/**/CHANGELOG.md

📄 CodeRabbit inference engine (.cursor/rules/development.mdc)

Maintain detailed changelogs

Files:

  • packages/astro/CHANGELOG.md
**/*

⚙️ CodeRabbit configuration file

If there are no tests added or modified as part of the PR, please suggest that tests be added to cover the changes.

Files:

  • packages/astro/CHANGELOG.md
⏰ Context from checks skipped due to timeout of 90000ms. You can increase the timeout in your CodeRabbit configuration to a maximum of 15 minutes (900000ms). (3)
  • GitHub Check: Analyze (javascript-typescript)
  • GitHub Check: semgrep-cloud-platform/scan
  • GitHub Check: semgrep-cloud-platform/scan
🔇 Additional comments (1)
packages/astro/CHANGELOG.md (1)

3-11: Changelog entry is consistent and correctly scoped to dependency bumps.

packages/astro/CHANGELOG.md Outdated
Comment on lines 3 to 11
## 2.11.7

### Patch Changes

- Updated dependencies [[`d52714e`](https://github.com/clerk/javascript/commit/d52714e4cb7f369c74826cd4341c58eb1900abe4), [`ce49740`](https://github.com/clerk/javascript/commit/ce49740d474d6dd9da5096982ea4e9f14cf68f09)]:
- @clerk/[email protected]
- @clerk/[email protected]
- @clerk/[email protected]

Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

💡 Verification agent

🧩 Analysis chain

Verify package.json version and dependency pins match the changelog.

Run this to ensure packages/astro/package.json reflects 2.11.7 and depends on the listed versions.

🏁 Script executed:

#!/bin/bash
set -euo pipefail

file="packages/astro/package.json"

echo "Checking $file"
jq -r '.name,.version' "$file"

echo "Asserting version == 2.11.7"
test "$(jq -r '.version' "$file")" = "2.11.7" || { echo "Version mismatch"; exit 1; }

echo "Checking dependency ranges:"
jq -r '.dependencies | to_entries[] | select(.key|IN("@clerk/types","@clerk/shared","@clerk/backend")) | "\(.key)=\(.value)"' "$file"

req_types="^4.81.1"
req_shared="^3.22.1"
req_backend="^2.9.5"

test "$(jq -r '.dependencies["@clerk/types"]' "$file")" = "$req_types"
test "$(jq -r '.dependencies["@clerk/shared"]' "$file")" = "$req_shared"
test "$(jq -r '.dependencies["@clerk/backend"]' "$file")" = "$req_backend"

echo "OK ✅"

Length of output: 813

Update Astro package dependency versions to match the changelog

The package.json version is correctly set to 2.11.7, but the dependency entries for @clerk/types, @clerk/shared, and @clerk/backend are still using workspace references rather than the specific versions listed in the CHANGELOG. Please update them as follows:

• File: packages/astro/package.json

  • Change 
    -  "@clerk/types":  "workspace:^",
-  "@clerk/shared": "workspace:^",
-  "@clerk/backend":"workspace:^"
    to 
    +  "@clerk/types":  "^4.81.1",
+  "@clerk/shared": "^3.22.1",
+  "@clerk/backend":"^2.9.5"

This ensures the Astro package reflects the patch dependency upgrades noted under version 2.11.7 in CHANGELOG.md.

📝 Committable suggestion

‼️ IMPORTANT
Carefully review the code before committing. Ensure that it accurately replaces the highlighted code, contains no missing lines, and has no issues with indentation. Thoroughly test & benchmark the code to ensure it meets the requirements.

Suggested change
## 2.11.7
### Patch Changes
- Updated dependencies [[`d52714e`](https://github.com/clerk/javascript/commit/d52714e4cb7f369c74826cd4341c58eb1900abe4), [`ce49740`](https://github.com/clerk/javascript/commit/ce49740d474d6dd9da5096982ea4e9f14cf68f09)]:
- @clerk/types@4.81.1
- @clerk/shared@3.22.1
- @clerk/backend@2.9.5
// packages/astro/package.json
{
"name": "@clerk/astro",
"version": "2.11.7",
"dependencies": {
"@clerk/types": "^4.81.1",
"@clerk/shared": "^3.22.1",
"@clerk/backend": "^2.9.5"
}
}
🤖 Prompt for AI Agents 
In packages/astro/package.json (reference CHANGELOG.md lines 3-11), the package
lists for @clerk/types, @clerk/shared, and @clerk/backend still use workspace
references; update those dependency entries to the exact patch versions from the
changelog: set @clerk/types to 4.81.1, @clerk/shared to 3.22.1, and
@clerk/backend to 2.9.5, replacing any "workspace:*" or similar workspace
specifiers so the Astro package.json matches the CHANGELOG for version 2.11.7.

@github-actions github-actions bot force-pushed the changeset-release/main branch from 9b28cc8 to d9b7708 Compare August 22, 2025 18:20
coderabbitai[bot]
coderabbitai bot reviewed Aug 22, 2025
View reviewed changes
Copy link
Contributor

@coderabbitai coderabbitai bot left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Actionable comments posted: 0

♻️ Duplicate comments (1)
packages/expo/CHANGELOG.md (1)

3-11: Ensure package.json pins these internal deps to the exact versions listed here (not workspace:^).

This was already flagged by the verification agent; reiterating to avoid drift between what’s published and what the changelog documents.

Run this quick check from repo root:

#!/bin/bash
set -euo pipefail
PKG=packages/expo/package.json

echo "Checking pinned versions in $PKG"

jq -e 'select(.version=="2.14.24")' "$PKG" >/dev/null || { echo "packages/expo version != 2.14.24"; exit 1; }

for dep ver in \
  "@clerk/clerk-js 5.88.1" \
  "@clerk/clerk-react 5.43.2" \
  "@clerk/types 4.81.1" \
  "@clerk/shared 3.22.1"
do
  set -- $dep $ver
  name=$1; want=$2
  got=$(jq -r --arg d "$name" '.dependencies[$d] // empty' "$PKG")
  [[ "$got" == "$want" ]] || { echo "$name expected $want, found '$got'"; exit 1; }
  [[ "$got" != workspace:* ]] || { echo "$name must not use workspace:*"; exit 1; }
done

echo "Expo deps are pinned and match the changelog ✅"
🧹 Nitpick comments (2)
packages/expo/CHANGELOG.md (2)

5-11: Optional: Call out that this release is dependency-only (no user-facing changes).

Helps readers scanning the log.

Apply this small addition:

 ## 2.14.24

 ### Patch Changes
+ - No user-facing changes in this release; internal dependencies updated for alignment across the monorepo.
 - Updated dependencies [[`c42ce6c`](https://github.com/clerk/javascript/commit/c42ce6cd1ba040591f948d1872e67e24ee15454c), [`d52714e`](https://github.com/clerk/javascript/commit/d52714e4cb7f369c74826cd4341c58eb1900abe4), [`ce49740`](https://github.com/clerk/javascript/commit/ce49740d474d6dd9da5096982ea4e9f14cf68f09), [`7168243`](https://github.com/clerk/javascript/commit/7168243d4e538404c4f816cb04da5eade264c4e5)]:
   - @clerk/[email protected]
   - @clerk/[email protected]
   - @clerk/[email protected]
   - @clerk/[email protected]

3-11: CI safeguard suggestion: add a release check that validates changelog vs. package.json for Expo.

Given this PR primarily versions packages, a lightweight check prevents future drift without adding runtime tests.

I can provide a reusable script that fails the pipeline when any @clerk/* dep in packages/expo/CHANGELOG.md doesn’t match packages/expo/package.json—let me know if you want me to open a follow-up PR with it.

📜 Review details

Configuration used: CodeRabbit UI

Review profile: CHILL

Plan: Pro

💡 Knowledge Base configuration:

  • MCP integration is disabled by default for public repositories
  • Jira integration is disabled
  • Linear integration is disabled by default for public repositories

You can enable these sources in your CodeRabbit configuration.

📥 Commits

Reviewing files that changed from the base of the PR and between 9b28cc8 and d9b7708.

📒 Files selected for processing (48)
  • .changeset/cold-glasses-watch.md (0 hunks)
  • .changeset/common-clowns-speak.md (0 hunks)
  • .changeset/fluffy-spiders-grab.md (0 hunks)
  • .changeset/itchy-zoos-shake.md (0 hunks)
  • packages/agent-toolkit/CHANGELOG.md (1 hunks)
  • packages/agent-toolkit/package.json (1 hunks)
  • packages/astro/CHANGELOG.md (1 hunks)
  • packages/astro/package.json (1 hunks)
  • packages/backend/CHANGELOG.md (1 hunks)
  • packages/backend/package.json (1 hunks)
  • packages/chrome-extension/CHANGELOG.md (1 hunks)
  • packages/chrome-extension/package.json (1 hunks)
  • packages/clerk-js/CHANGELOG.md (1 hunks)
  • packages/clerk-js/package.json (1 hunks)
  • packages/elements/CHANGELOG.md (1 hunks)
  • packages/elements/package.json (1 hunks)
  • packages/expo-passkeys/CHANGELOG.md (1 hunks)
  • packages/expo-passkeys/package.json (1 hunks)
  • packages/expo/CHANGELOG.md (1 hunks)
  • packages/expo/package.json (1 hunks)
  • packages/express/CHANGELOG.md (1 hunks)
  • packages/express/package.json (1 hunks)
  • packages/fastify/CHANGELOG.md (1 hunks)
  • packages/fastify/package.json (1 hunks)
  • packages/localizations/CHANGELOG.md (1 hunks)
  • packages/localizations/package.json (1 hunks)
  • packages/nextjs/CHANGELOG.md (1 hunks)
  • packages/nextjs/package.json (1 hunks)
  • packages/nuxt/CHANGELOG.md (1 hunks)
  • packages/nuxt/package.json (1 hunks)
  • packages/react-router/CHANGELOG.md (1 hunks)
  • packages/react-router/package.json (1 hunks)
  • packages/react/CHANGELOG.md (1 hunks)
  • packages/react/package.json (1 hunks)
  • packages/remix/CHANGELOG.md (1 hunks)
  • packages/remix/package.json (1 hunks)
  • packages/shared/CHANGELOG.md (1 hunks)
  • packages/shared/package.json (1 hunks)
  • packages/tanstack-react-start/CHANGELOG.md (1 hunks)
  • packages/tanstack-react-start/package.json (1 hunks)
  • packages/testing/CHANGELOG.md (1 hunks)
  • packages/testing/package.json (1 hunks)
  • packages/themes/CHANGELOG.md (1 hunks)
  • packages/themes/package.json (1 hunks)
  • packages/types/CHANGELOG.md (1 hunks)
  • packages/types/package.json (1 hunks)
  • packages/vue/CHANGELOG.md (1 hunks)
  • packages/vue/package.json (1 hunks)
💤 Files with no reviewable changes (4)
  • .changeset/common-clowns-speak.md
  • .changeset/itchy-zoos-shake.md
  • .changeset/cold-glasses-watch.md
  • .changeset/fluffy-spiders-grab.md
✅ Files skipped from review due to trivial changes (10)
  • packages/shared/package.json
  • packages/nuxt/CHANGELOG.md
  • packages/react-router/package.json
  • packages/tanstack-react-start/package.json
  • packages/types/CHANGELOG.md
  • packages/expo-passkeys/CHANGELOG.md
  • packages/shared/CHANGELOG.md
  • packages/clerk-js/package.json
  • packages/fastify/package.json
  • packages/react-router/CHANGELOG.md
🚧 Files skipped from review as they are similar to previous changes (33)
  • packages/expo/package.json
  • packages/testing/package.json
  • packages/themes/package.json
  • packages/astro/package.json
  • packages/react/package.json
  • packages/elements/package.json
  • packages/nuxt/package.json
  • packages/vue/CHANGELOG.md
  • packages/chrome-extension/package.json
  • packages/localizations/package.json
  • packages/agent-toolkit/package.json
  • packages/types/package.json
  • packages/themes/CHANGELOG.md
  • packages/nextjs/package.json
  • packages/expo-passkeys/package.json
  • packages/remix/package.json
  • packages/vue/package.json
  • packages/clerk-js/CHANGELOG.md
  • packages/astro/CHANGELOG.md
  • packages/remix/CHANGELOG.md
  • packages/localizations/CHANGELOG.md
  • packages/tanstack-react-start/CHANGELOG.md
  • packages/express/package.json
  • packages/chrome-extension/CHANGELOG.md
  • packages/agent-toolkit/CHANGELOG.md
  • packages/express/CHANGELOG.md
  • packages/elements/CHANGELOG.md
  • packages/testing/CHANGELOG.md
  • packages/backend/package.json
  • packages/fastify/CHANGELOG.md
  • packages/nextjs/CHANGELOG.md
  • packages/backend/CHANGELOG.md
  • packages/react/CHANGELOG.md
🧰 Additional context used
📓 Path-based instructions (3)
**/*.{js,jsx,ts,tsx,json,css,scss,md,yaml,yml}

📄 CodeRabbit inference engine (.cursor/rules/development.mdc)

Use Prettier for consistent code formatting

Files:

  • packages/expo/CHANGELOG.md
packages/**/CHANGELOG.md

📄 CodeRabbit inference engine (.cursor/rules/development.mdc)

Maintain detailed changelogs

Files:

  • packages/expo/CHANGELOG.md
**/*

⚙️ CodeRabbit configuration file

If there are no tests added or modified as part of the PR, please suggest that tests be added to cover the changes.

Files:

  • packages/expo/CHANGELOG.md
⏰ Context from checks skipped due to timeout of 90000ms. You can increase the timeout in your CodeRabbit configuration to a maximum of 15 minutes (900000ms). (3)
  • GitHub Check: Analyze (javascript-typescript)
  • GitHub Check: semgrep-cloud-platform/scan
  • GitHub Check: semgrep-cloud-platform/scan
🔇 Additional comments (1)
packages/expo/CHANGELOG.md (1)

3-11: Changelog entry looks correct for 2.14.24.

Versions and commit references align with the PR summary and past releases’ format. No issues spotted in wording or structure.

@github-actions github-actions bot force-pushed the changeset-release/main branch from d9b7708 to d08d606 Compare August 22, 2025 18:57
@github-actions github-actions bot force-pushed the changeset-release/main branch from d08d606 to d3601a9 Compare August 22, 2025 20:35
coderabbitai[bot]
coderabbitai bot reviewed Aug 22, 2025
View reviewed changes
Copy link
Contributor

@coderabbitai coderabbitai bot left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Actionable comments posted: 0

♻️ Duplicate comments (1)
packages/nextjs/CHANGELOG.md (1)

3-12: 6.31.5 entry reads well; please re-verify package.json pins and linked commits.

The dependency versions in this changelog match the PR objectives. Before merging, ensure packages/nextjs/package.json (and peers) actually pin these versions (not workspace:^ or mismatched ranges) and that the referenced commits exist. Also sanity-check that no lingering usages of the removed generateUuid utility remain after bumping @clerk/[email protected].

Run from repo root:

#!/bin/bash
set -euo pipefail

echo "1) @clerk/nextjs version should be 6.31.5"
jq -r '.version' packages/nextjs/package.json

echo -e "\n2) Check dependency/peerDependency pins for @clerk/nextjs"
declare -A want=(
  ["@clerk/clerk-react"]="5.43.2"
  ["@clerk/types"]="4.81.1"
  ["@clerk/shared"]="3.22.1"
  ["@clerk/backend"]="2.9.5"
)
for dep in "${!want[@]}"; do
  have_dep=$(jq -r --arg d "$dep" '.dependencies[$d] // empty' packages/nextjs/package.json)
  have_peer=$(jq -r --arg d "$dep" '.peerDependencies[$d] // empty' packages/nextjs/package.json)
  have="${have_dep:-$have_peer}"
  echo "$dep => ${have:-<missing>}"
  if [[ -z "${have}" ]]; then
    echo "Missing $dep (dep or peerDep)" >&2; exit 1
  fi
  if [[ "${have}" != "${want[$dep]}" ]]; then
    echo "Mismatch for $dep: expected exactly ${want[$dep]} (not ${have})" >&2; exit 1
  fi
done

echo -e "\n3) Verify referenced commits exist"
for c in d52714e4cb7f369c74826cd4341c58eb1900abe4 ce49740d474d6dd9da5096982ea4e9f14cf68f09; do
  git cat-file -t "$c" >/dev/null && echo "Commit $c found"
done

echo -e "\n4) Ensure no usages of removed generateUuid remain (excluding build output)"
rg -n --hidden -S '\bgenerateUuid\s*\(' -g '!**/dist/**' -g '!**/build/**' || echo "No usages found"
🧹 Nitpick comments (1)
packages/nextjs/CHANGELOG.md (1)

3-12: Optional CI guard to prevent changelog/package.json drift.

Since this PR is release automation, consider adding a lightweight CI check that fails if CHANGELOG-declared internal bumps don’t match package.json pins for the same package. This avoids future “workspace:^” stragglers slipping through.

I can provide a repo-wide script or a GitHub Action workflow that parses each packages/*/CHANGELOG.md top entry and compares it to package.json. Want me to draft it?

📜 Review details

Configuration used: CodeRabbit UI

Review profile: CHILL

Plan: Pro

💡 Knowledge Base configuration:

  • MCP integration is disabled by default for public repositories
  • Jira integration is disabled
  • Linear integration is disabled by default for public repositories

You can enable these sources in your CodeRabbit configuration.

📥 Commits

Reviewing files that changed from the base of the PR and between d08d606 and d3601a9.

📒 Files selected for processing (50)
  • .changeset/cold-glasses-watch.md (0 hunks)
  • .changeset/common-clowns-speak.md (0 hunks)
  • .changeset/fluffy-spiders-grab.md (0 hunks)
  • .changeset/itchy-zoos-shake.md (0 hunks)
  • .changeset/khaki-ravens-cheer.md (0 hunks)
  • .changeset/tall-worms-pull.md (0 hunks)
  • packages/agent-toolkit/CHANGELOG.md (1 hunks)
  • packages/agent-toolkit/package.json (1 hunks)
  • packages/astro/CHANGELOG.md (1 hunks)
  • packages/astro/package.json (1 hunks)
  • packages/backend/CHANGELOG.md (1 hunks)
  • packages/backend/package.json (1 hunks)
  • packages/chrome-extension/CHANGELOG.md (1 hunks)
  • packages/chrome-extension/package.json (1 hunks)
  • packages/clerk-js/CHANGELOG.md (1 hunks)
  • packages/clerk-js/package.json (1 hunks)
  • packages/elements/CHANGELOG.md (1 hunks)
  • packages/elements/package.json (1 hunks)
  • packages/expo-passkeys/CHANGELOG.md (1 hunks)
  • packages/expo-passkeys/package.json (1 hunks)
  • packages/expo/CHANGELOG.md (1 hunks)
  • packages/expo/package.json (1 hunks)
  • packages/express/CHANGELOG.md (1 hunks)
  • packages/express/package.json (1 hunks)
  • packages/fastify/CHANGELOG.md (1 hunks)
  • packages/fastify/package.json (1 hunks)
  • packages/localizations/CHANGELOG.md (1 hunks)
  • packages/localizations/package.json (1 hunks)
  • packages/nextjs/CHANGELOG.md (1 hunks)
  • packages/nextjs/package.json (1 hunks)
  • packages/nuxt/CHANGELOG.md (1 hunks)
  • packages/nuxt/package.json (1 hunks)
  • packages/react-router/CHANGELOG.md (1 hunks)
  • packages/react-router/package.json (1 hunks)
  • packages/react/CHANGELOG.md (1 hunks)
  • packages/react/package.json (1 hunks)
  • packages/remix/CHANGELOG.md (1 hunks)
  • packages/remix/package.json (1 hunks)
  • packages/shared/CHANGELOG.md (1 hunks)
  • packages/shared/package.json (1 hunks)
  • packages/tanstack-react-start/CHANGELOG.md (1 hunks)
  • packages/tanstack-react-start/package.json (1 hunks)
  • packages/testing/CHANGELOG.md (1 hunks)
  • packages/testing/package.json (1 hunks)
  • packages/themes/CHANGELOG.md (1 hunks)
  • packages/themes/package.json (1 hunks)
  • packages/types/CHANGELOG.md (1 hunks)
  • packages/types/package.json (1 hunks)
  • packages/vue/CHANGELOG.md (1 hunks)
  • packages/vue/package.json (1 hunks)
💤 Files with no reviewable changes (6)
  • .changeset/fluffy-spiders-grab.md
  • .changeset/cold-glasses-watch.md
  • .changeset/tall-worms-pull.md
  • .changeset/common-clowns-speak.md
  • .changeset/khaki-ravens-cheer.md
  • .changeset/itchy-zoos-shake.md
✅ Files skipped from review due to trivial changes (9)
  • packages/nextjs/package.json
  • packages/remix/package.json
  • packages/expo-passkeys/CHANGELOG.md
  • packages/react/package.json
  • packages/nuxt/CHANGELOG.md
  • packages/types/CHANGELOG.md
  • packages/chrome-extension/CHANGELOG.md
  • packages/backend/CHANGELOG.md
  • packages/remix/CHANGELOG.md
🚧 Files skipped from review as they are similar to previous changes (34)
  • packages/nuxt/package.json
  • packages/express/package.json
  • packages/tanstack-react-start/package.json
  • packages/expo-passkeys/package.json
  • packages/clerk-js/package.json
  • packages/testing/package.json
  • packages/react-router/package.json
  • packages/vue/package.json
  • packages/types/package.json
  • packages/fastify/package.json
  • packages/shared/package.json
  • packages/agent-toolkit/package.json
  • packages/localizations/package.json
  • packages/localizations/CHANGELOG.md
  • packages/chrome-extension/package.json
  • packages/expo/package.json
  • packages/elements/CHANGELOG.md
  • packages/react-router/CHANGELOG.md
  • packages/astro/package.json
  • packages/react/CHANGELOG.md
  • packages/themes/package.json
  • packages/elements/package.json
  • packages/agent-toolkit/CHANGELOG.md
  • packages/expo/CHANGELOG.md
  • packages/fastify/CHANGELOG.md
  • packages/express/CHANGELOG.md
  • packages/astro/CHANGELOG.md
  • packages/vue/CHANGELOG.md
  • packages/testing/CHANGELOG.md
  • packages/themes/CHANGELOG.md
  • packages/clerk-js/CHANGELOG.md
  • packages/backend/package.json
  • packages/shared/CHANGELOG.md
  • packages/tanstack-react-start/CHANGELOG.md
🧰 Additional context used
📓 Path-based instructions (3)
**/*.{js,jsx,ts,tsx,json,css,scss,md,yaml,yml}

📄 CodeRabbit inference engine (.cursor/rules/development.mdc)

Use Prettier for consistent code formatting

Files:

  • packages/nextjs/CHANGELOG.md
packages/**/CHANGELOG.md

📄 CodeRabbit inference engine (.cursor/rules/development.mdc)

Maintain detailed changelogs

Files:

  • packages/nextjs/CHANGELOG.md
**/*

⚙️ CodeRabbit configuration file

If there are no tests added or modified as part of the PR, please suggest that tests be added to cover the changes.

Files:

  • packages/nextjs/CHANGELOG.md
⏰ Context from checks skipped due to timeout of 90000ms. You can increase the timeout in your CodeRabbit configuration to a maximum of 15 minutes (900000ms). (3)
  • GitHub Check: Analyze (javascript-typescript)
  • GitHub Check: semgrep-cloud-platform/scan
  • GitHub Check: semgrep-cloud-platform/scan

@github-actions github-actions bot force-pushed the changeset-release/main branch from d3601a9 to 0197604 Compare August 22, 2025 21:08
coderabbitai[bot]
coderabbitai bot reviewed Aug 22, 2025
View reviewed changes
Copy link
Contributor

@coderabbitai coderabbitai bot left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Actionable comments posted: 1

🧹 Nitpick comments (3)
packages/testing/CHANGELOG.md (1)

5-10: Optional: Call out “dependency-only” explicitly for faster scanning

Adding a short note helps consumers quickly identify there are no code/API changes.

 ## 1.11.4

 ### Patch Changes

+- Dependency-only release: no source or public API changes.
 - Updated dependencies [[`d52714e`](https://github.com/clerk/javascript/commit/d52714e4cb7f369c74826cd4341c58eb1900abe4), [`ce49740`](https://github.com/clerk/javascript/commit/ce49740d474d6dd9da5096982ea4e9f14cf68f09), [`a26ecae`](https://github.com/clerk/javascript/commit/a26ecae09fd06cd34f094262f038a8eefbb23f7d)]:
   - @clerk/[email protected]
   - @clerk/[email protected]
   - @clerk/[email protected]
packages/expo-passkeys/CHANGELOG.md (2)

5-9: Optionally clarify that this is a dependency-only update.

Adding a short note helps consumers quickly assess impact.

Apply this diff to add the clarifying bullet:

 ### Patch Changes

+- No runtime changes; internal dependency bumps only.
 - Updated dependencies [[`d52714e`](https://github.com/clerk/javascript/commit/d52714e4cb7f369c74826cd4341c58eb1900abe4), [`ce49740`](https://github.com/clerk/javascript/commit/ce49740d474d6dd9da5096982ea4e9f14cf68f09), [`a26ecae`](https://github.com/clerk/javascript/commit/a26ecae09fd06cd34f094262f038a8eefbb23f7d)]:
   - @clerk/[email protected]
   - @clerk/[email protected]

3-9: Tests note for this PR.

No tests changed in this PR. For a dependency-only bump, additional tests aren’t strictly necessary; however, if we have Expo passkeys smoke/E2E flows, consider scheduling a CI matrix run against the new @clerk/types and @clerk/shared to catch accidental type or runtime regressions.

I can draft a lightweight Detox/Expo smoke scenario checklist to validate passkey create/auth flows on iOS/Android with this bump—want me to open a follow-up issue?

📜 Review details

Configuration used: CodeRabbit UI

Review profile: CHILL

Plan: Pro

💡 Knowledge Base configuration:

  • MCP integration is disabled by default for public repositories
  • Jira integration is disabled
  • Linear integration is disabled by default for public repositories

You can enable these sources in your CodeRabbit configuration.

📥 Commits

Reviewing files that changed from the base of the PR and between d3601a9 and 0197604.

📒 Files selected for processing (51)
  • .changeset/cold-glasses-watch.md (0 hunks)
  • .changeset/common-clowns-speak.md (0 hunks)
  • .changeset/fluffy-spiders-grab.md (0 hunks)
  • .changeset/itchy-zoos-shake.md (0 hunks)
  • .changeset/khaki-ravens-cheer.md (0 hunks)
  • .changeset/ninety-wombats-think.md (0 hunks)
  • .changeset/tall-worms-pull.md (0 hunks)
  • packages/agent-toolkit/CHANGELOG.md (1 hunks)
  • packages/agent-toolkit/package.json (1 hunks)
  • packages/astro/CHANGELOG.md (1 hunks)
  • packages/astro/package.json (1 hunks)
  • packages/backend/CHANGELOG.md (1 hunks)
  • packages/backend/package.json (1 hunks)
  • packages/chrome-extension/CHANGELOG.md (1 hunks)
  • packages/chrome-extension/package.json (1 hunks)
  • packages/clerk-js/CHANGELOG.md (1 hunks)
  • packages/clerk-js/package.json (1 hunks)
  • packages/elements/CHANGELOG.md (1 hunks)
  • packages/elements/package.json (1 hunks)
  • packages/expo-passkeys/CHANGELOG.md (1 hunks)
  • packages/expo-passkeys/package.json (1 hunks)
  • packages/expo/CHANGELOG.md (1 hunks)
  • packages/expo/package.json (1 hunks)
  • packages/express/CHANGELOG.md (1 hunks)
  • packages/express/package.json (1 hunks)
  • packages/fastify/CHANGELOG.md (1 hunks)
  • packages/fastify/package.json (1 hunks)
  • packages/localizations/CHANGELOG.md (1 hunks)
  • packages/localizations/package.json (1 hunks)
  • packages/nextjs/CHANGELOG.md (1 hunks)
  • packages/nextjs/package.json (1 hunks)
  • packages/nuxt/CHANGELOG.md (1 hunks)
  • packages/nuxt/package.json (1 hunks)
  • packages/react-router/CHANGELOG.md (1 hunks)
  • packages/react-router/package.json (1 hunks)
  • packages/react/CHANGELOG.md (1 hunks)
  • packages/react/package.json (1 hunks)
  • packages/remix/CHANGELOG.md (1 hunks)
  • packages/remix/package.json (1 hunks)
  • packages/shared/CHANGELOG.md (1 hunks)
  • packages/shared/package.json (1 hunks)
  • packages/tanstack-react-start/CHANGELOG.md (1 hunks)
  • packages/tanstack-react-start/package.json (1 hunks)
  • packages/testing/CHANGELOG.md (1 hunks)
  • packages/testing/package.json (1 hunks)
  • packages/themes/CHANGELOG.md (1 hunks)
  • packages/themes/package.json (1 hunks)
  • packages/types/CHANGELOG.md (1 hunks)
  • packages/types/package.json (1 hunks)
  • packages/vue/CHANGELOG.md (1 hunks)
  • packages/vue/package.json (1 hunks)
💤 Files with no reviewable changes (7)
  • .changeset/ninety-wombats-think.md
  • .changeset/fluffy-spiders-grab.md
  • .changeset/cold-glasses-watch.md
  • .changeset/common-clowns-speak.md
  • .changeset/khaki-ravens-cheer.md
  • .changeset/tall-worms-pull.md
  • .changeset/itchy-zoos-shake.md
✅ Files skipped from review due to trivial changes (11)
  • packages/nuxt/package.json
  • packages/types/CHANGELOG.md
  • packages/themes/CHANGELOG.md
  • packages/fastify/CHANGELOG.md
  • packages/expo-passkeys/package.json
  • packages/localizations/CHANGELOG.md
  • packages/elements/CHANGELOG.md
  • packages/themes/package.json
  • packages/fastify/package.json
  • packages/tanstack-react-start/CHANGELOG.md
  • packages/chrome-extension/CHANGELOG.md
🚧 Files skipped from review as they are similar to previous changes (29)
  • packages/types/package.json
  • packages/vue/package.json
  • packages/react-router/package.json
  • packages/remix/package.json
  • packages/astro/package.json
  • packages/express/CHANGELOG.md
  • packages/backend/package.json
  • packages/nextjs/package.json
  • packages/elements/package.json
  • packages/remix/CHANGELOG.md
  • packages/shared/CHANGELOG.md
  • packages/shared/package.json
  • packages/localizations/package.json
  • packages/chrome-extension/package.json
  • packages/react/CHANGELOG.md
  • packages/express/package.json
  • packages/vue/CHANGELOG.md
  • packages/react/package.json
  • packages/expo/package.json
  • packages/nextjs/CHANGELOG.md
  • packages/agent-toolkit/CHANGELOG.md
  • packages/astro/CHANGELOG.md
  • packages/tanstack-react-start/package.json
  • packages/agent-toolkit/package.json
  • packages/react-router/CHANGELOG.md
  • packages/nuxt/CHANGELOG.md
  • packages/clerk-js/CHANGELOG.md
  • packages/expo/CHANGELOG.md
  • packages/testing/package.json
🧰 Additional context used
📓 Path-based instructions (4)
**/*.{js,jsx,ts,tsx,json,css,scss,md,yaml,yml}

📄 CodeRabbit inference engine (.cursor/rules/development.mdc)

Use Prettier for consistent code formatting

Files:

  • packages/testing/CHANGELOG.md
  • packages/expo-passkeys/CHANGELOG.md
  • packages/backend/CHANGELOG.md
  • packages/clerk-js/package.json
packages/**/CHANGELOG.md

📄 CodeRabbit inference engine (.cursor/rules/development.mdc)

Maintain detailed changelogs

Files:

  • packages/testing/CHANGELOG.md
  • packages/expo-passkeys/CHANGELOG.md
  • packages/backend/CHANGELOG.md
**/*

⚙️ CodeRabbit configuration file

If there are no tests added or modified as part of the PR, please suggest that tests be added to cover the changes.

Files:

  • packages/testing/CHANGELOG.md
  • packages/expo-passkeys/CHANGELOG.md
  • packages/backend/CHANGELOG.md
  • packages/clerk-js/package.json
packages/*/package.json

📄 CodeRabbit inference engine (.cursor/rules/global.mdc)

All publishable packages should be placed under the packages/ directory

packages/*/package.json: All publishable packages must be located in the 'packages/' directory.
All packages must be published under the @clerk namespace on npm.
Semantic versioning must be used across all packages.

Files:

  • packages/clerk-js/package.json
⏰ Context from checks skipped due to timeout of 90000ms. You can increase the timeout in your CodeRabbit configuration to a maximum of 15 minutes (900000ms). (3)
  • GitHub Check: Analyze (javascript-typescript)
  • GitHub Check: semgrep-cloud-platform/scan
  • GitHub Check: semgrep-cloud-platform/scan
🔇 Additional comments (7)
packages/clerk-js/package.json (1)

3-3: Semver patch bump and changelog entry verified

  • Version updated from 5.88.0 to 5.88.1 in packages/clerk-js/package.json
  • packages/clerk-js/CHANGELOG.md includes a “## 5.88.1” heading
  • No consumers pin @clerk/clerk-js to an exact version (all use workspace:^, ^, or *)
  • Internal dependencies (@clerk/localizations, @clerk/shared, @clerk/types) are set to workspace:^
  • package name (@clerk/clerk-js) and publishConfig.access: public are correct

LGTM. Since there were no test changes in this PR, if 5.88.1 introduces any runtime behavior changes (e.g., UI flow tweaks, password detection adjustments), please consider adding or updating smoke tests and integration snapshots. I’m happy to help draft those.

packages/testing/CHANGELOG.md (2)

3-11: LGTM: Version bump entry is consistent and accurate

No source or API changes implied here; changelog style matches the rest of the file.

3-11: Ignore workspace dependency versions
The packages/testing/package.json intentionally uses Yarn’s workspace protocol (workspace:^) to reference local packages. On publish, these are automatically substituted with the exact versions (4.81.1, 3.22.1, 2.9.5) listed in the changelog. No change is necessary here.

Likely an incorrect or invalid review comment.

packages/backend/CHANGELOG.md (3)

3-10: Changelog entry for 2.9.5 looks correct and consistent.

  • Follows existing structure (heading, “Patch Changes”, “Updated dependencies” with linked SHAs).
  • SemVer bump to patch aligns with dependency-only updates.

3-10: No tests needed for this doc-only change.

This PR updates changelogs/versions only; no source code changed in backend, so no test updates are required.

7-9: All versions align with CHANGELOG and package.json

The backend package is at version 2.9.5 in packages/backend/package.json, matching the “## 2.9.5” entry in CHANGELOG.md.
The workspace dependencies for @clerk/types and @clerk/shared resolve to 4.81.1 and 3.22.1 respectively (per the local packages in packages/types and packages/shared), which aligns with the updated dependencies listed in CHANGELOG.md.

No action needed.

packages/expo-passkeys/CHANGELOG.md (1)

3-9: Changelog entry reads clean and aligns with repo conventions.

  • Version header and “Patch Changes” section match existing style.
  • Dependency bump details and commit refs are present and formatted consistently.

packages/expo-passkeys/CHANGELOG.md
Comment on lines +3 to +9
## 0.3.35

### Patch Changes

- Updated dependencies [[`d52714e`](https://github.com/clerk/javascript/commit/d52714e4cb7f369c74826cd4341c58eb1900abe4), [`ce49740`](https://github.com/clerk/javascript/commit/ce49740d474d6dd9da5096982ea4e9f14cf68f09), [`a26ecae`](https://github.com/clerk/javascript/commit/a26ecae09fd06cd34f094262f038a8eefbb23f7d)]:
- @clerk/[email protected]
- @clerk/[email protected]
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

💡 Verification agent

🧩 Analysis chain

Verify package.json alignment with this changelog.

Ensure packages/expo-passkeys/package.json reflects:

  • version: 0.3.35
  • deps/peerDeps on @clerk/types 4.81.1 and @clerk/shared 3.22.1 (caret ranges acceptable)

Run this script from repo root:

🏁 Script executed:

#!/bin/bash
set -euo pipefail

PKG=packages/expo-passkeys/package.json

echo "Checking $PKG"
test -f "$PKG" || { echo "Missing $PKG"; exit 1; }

VERSION=$(jq -r '.version' "$PKG")
echo "version: $VERSION"
test "$VERSION" = "0.3.35" || { echo "Expected version 0.3.35"; exit 1; }

# Helper to fetch a dep version from any dep section
get_dep() {
  local name=$1
  jq -r --arg name "$name" '
    (.dependencies[$name] // .peerDependencies[$name] // .devDependencies[$name] // "")' "$PKG"
}

TYPES_VER=$(get_dep "@clerk/types")
SHARED_VER=$(get_dep "@clerk/shared")

echo "@clerk/types: ${TYPES_VER:-<not found>}"
echo "@clerk/shared: ${SHARED_VER:-<not found>}"

# Strip leading ^ or ~ for comparison
strip_prefix() { sed -E 's/^[\^~]//' <<<"${1:-}"; }

test "$(strip_prefix "$TYPES_VER")" = "4.81.1" || { echo "Expected @clerk/types 4.81.1 (got $TYPES_VER)"; exit 1; }
test "$(strip_prefix "$SHARED_VER")" = "3.22.1" || { echo "Expected @clerk/shared 3.22.1 (got $SHARED_VER)"; exit 1; }

echo "All good ✅"

Length of output: 1140

🏁 Script executed:

#!/bin/bash
set -euo pipefail

# Show the two Clerk dependencies with a couple of lines of context
grep -n '"@clerk/types"' -C2 packages/expo-passkeys/package.json
grep -n '"@clerk/shared"' -C2 packages/expo-passkeys/package.json

Length of output: 402

Update expo-passkeys dependencies to match changelog

The package version is correct (0.3.35), but both Clerk dependencies still point to the workspace rather than the published versions. Please update them as follows:

• File: packages/expo-passkeys/package.json
– Lines ~36–37

-  "dependencies": {
-    "@clerk/shared": "workspace:^",
-    "@clerk/types": "workspace:^"
-  },
+  "dependencies": {
+    "@clerk/shared": "^3.22.1",
+    "@clerk/types": "^4.81.1"
+  },

This will ensure alignment with the changelog’s patch update.

📝 Committable suggestion

‼️ IMPORTANT
Carefully review the code before committing. Ensure that it accurately replaces the highlighted code, contains no missing lines, and has no issues with indentation. Thoroughly test & benchmark the code to ensure it meets the requirements.

Suggested change
## 0.3.35
### Patch Changes
- Updated dependencies [[`d52714e`](https://github.com/clerk/javascript/commit/d52714e4cb7f369c74826cd4341c58eb1900abe4), [`ce49740`](https://github.com/clerk/javascript/commit/ce49740d474d6dd9da5096982ea4e9f14cf68f09), [`a26ecae`](https://github.com/clerk/javascript/commit/a26ecae09fd06cd34f094262f038a8eefbb23f7d)]:
- @clerk/types@4.81.1
- @clerk/shared@3.22.1
"dependencies": {
"@clerk/shared": "^3.22.1",
"@clerk/types": "^4.81.1"
},
🤖 Prompt for AI Agents 
In packages/expo-passkeys/package.json around lines 36–37, the dependencies for
@clerk/types and @clerk/shared still reference the workspace instead of the
published versions listed in CHANGELOG.md; replace the workspace entries with
the exact published versions "@clerk/types": "4.81.1" and "@clerk/shared":
"3.22.1" (remove the "workspace:" protocol), save the file, and update/install
lockfile (npm/yarn/pnpm) so the lockfile reflects the new versions.

@github-actions github-actions bot force-pushed the changeset-release/main branch from 0197604 to e4372d4 Compare August 24, 2025 01:58
coderabbitai[bot]
coderabbitai bot reviewed Aug 24, 2025
View reviewed changes
Copy link
Contributor

@coderabbitai coderabbitai bot left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Actionable comments posted: 0

♻️ Duplicate comments (1)
packages/expo-passkeys/CHANGELOG.md (1)

3-10: Changelog entry LGTM; please verify package.json matches these dependency bumps (no workspace: prefixes).

The notes correctly document @clerk/[email protected] and @clerk/[email protected] for 0.3.35. Please double-check packages/expo-passkeys/package.json reflects:

  • version: 0.3.35
  • deps (or peerDeps) on @clerk/types 4.81.1 and @clerk/shared 3.22.1 with caret ranges, not workspace:.

Run from repo root:

#!/usr/bin/env bash
set -euo pipefail

PKG=packages/expo-passkeys/package.json
test -f "$PKG" || { echo "Missing $PKG"; exit 1; }

echo "Checking $PKG"
jq -r '.name, .version' "$PKG"

VERSION=$(jq -r '.version' "$PKG")
[[ "$VERSION" == "0.3.35" ]] || { echo "Expected version 0.3.35 (got $VERSION)"; exit 1; }

# helper to get a dep from any section
get_dep() {
  local name=$1
  jq -r --arg name "$name" '
    (.dependencies[$name] // .peerDependencies[$name] // .devDependencies[$name] // empty)' "$PKG"
}

for dep ver in "@clerk/types" "4.81.1" "@clerk/shared" "3.22.1"; do
  :
done

TYPES=$(get_dep "@clerk/types");   echo "@clerk/types -> ${TYPES:-<not found>}"
SHARED=$(get_dep "@clerk/shared");  echo "@clerk/shared -> ${SHARED:-<not found>}"

[[ -n "${TYPES:-}" ]]  || { echo "Missing @clerk/types dependency"; exit 1; }
[[ -n "${SHARED:-}" ]] || { echo "Missing @clerk/shared dependency"; exit 1; }

case "$TYPES" in workspace:*) echo "Replace workspace: in @clerk/types"; exit 1;; esac
case "$SHARED" in workspace:*) echo "Replace workspace: in @clerk/shared"; exit 1;; esac

strip() { sed -E 's/^[\^~]//' <<<"$1"; }
[[ "$(strip "$TYPES")"  == "4.81.1" ]] || { echo "Expected @clerk/types ^4.81.1"; exit 1; }
[[ "$(strip "$SHARED")" == "3.22.1" ]] || { echo "Expected @clerk/shared ^3.22.1"; exit 1; }

echo "All good ✅"

Also, since this is a dependency-only bump for expo-passkeys, no tests are required; however, if you maintain an integration/smoke matrix, consider a quick CI job to ensure these semver bumps don’t regress passkey flows on iOS/Android/Web.

🧹 Nitpick comments (2)
packages/react/CHANGELOG.md (2)

9-9: Nit: punctuation and phrasing consistency

Most bullets in this changelog don’t end with a period. Also, the wording reads a bit awkward. Suggest aligning punctuation and improving phrasing.

Apply this diff:

-- Improve assertion error for requiring active organization. ([#6606](https://github.com/clerk/javascript/pull/6606)) by [@panteliselef](https://github.com/panteliselef)
+- Improve assertion error when an active organization is required ([#6606](https://github.com/clerk/javascript/pull/6606)) by [@panteliselef](https://github.com/panteliselef)

3-14: Release QA reminder: ensure smoke tests cover the two user-facing items

No source changes in this package here, but the batch includes:

  • removal of an unused internal prop
  • improved assertion error path

Please confirm CI and e2e smoke tests cover a basic render of components that might hit the “active organization required” assertion, across a project pinned to @clerk/[email protected].

Happy to draft a minimal e2e checklist or a Playwright/Cypress smoke spec if useful.

📜 Review details

Configuration used: CodeRabbit UI

Review profile: CHILL

Plan: Pro

💡 Knowledge Base configuration:

  • MCP integration is disabled by default for public repositories
  • Jira integration is disabled
  • Linear integration is disabled by default for public repositories

You can enable these sources in your CodeRabbit configuration.

📥 Commits

Reviewing files that changed from the base of the PR and between 0197604 and e4372d4.

📒 Files selected for processing (52)
  • .changeset/cold-glasses-watch.md (0 hunks)
  • .changeset/common-clowns-speak.md (0 hunks)
  • .changeset/fluffy-spiders-grab.md (0 hunks)
  • .changeset/itchy-zoos-shake.md (0 hunks)
  • .changeset/khaki-ravens-cheer.md (0 hunks)
  • .changeset/ninety-wombats-think.md (0 hunks)
  • .changeset/plain-bottles-press.md (0 hunks)
  • .changeset/tall-worms-pull.md (0 hunks)
  • packages/agent-toolkit/CHANGELOG.md (1 hunks)
  • packages/agent-toolkit/package.json (1 hunks)
  • packages/astro/CHANGELOG.md (1 hunks)
  • packages/astro/package.json (1 hunks)
  • packages/backend/CHANGELOG.md (1 hunks)
  • packages/backend/package.json (1 hunks)
  • packages/chrome-extension/CHANGELOG.md (1 hunks)
  • packages/chrome-extension/package.json (1 hunks)
  • packages/clerk-js/CHANGELOG.md (1 hunks)
  • packages/clerk-js/package.json (1 hunks)
  • packages/elements/CHANGELOG.md (1 hunks)
  • packages/elements/package.json (1 hunks)
  • packages/expo-passkeys/CHANGELOG.md (1 hunks)
  • packages/expo-passkeys/package.json (1 hunks)
  • packages/expo/CHANGELOG.md (1 hunks)
  • packages/expo/package.json (1 hunks)
  • packages/express/CHANGELOG.md (1 hunks)
  • packages/express/package.json (1 hunks)
  • packages/fastify/CHANGELOG.md (1 hunks)
  • packages/fastify/package.json (1 hunks)
  • packages/localizations/CHANGELOG.md (1 hunks)
  • packages/localizations/package.json (1 hunks)
  • packages/nextjs/CHANGELOG.md (1 hunks)
  • packages/nextjs/package.json (1 hunks)
  • packages/nuxt/CHANGELOG.md (1 hunks)
  • packages/nuxt/package.json (1 hunks)
  • packages/react-router/CHANGELOG.md (1 hunks)
  • packages/react-router/package.json (1 hunks)
  • packages/react/CHANGELOG.md (1 hunks)
  • packages/react/package.json (1 hunks)
  • packages/remix/CHANGELOG.md (1 hunks)
  • packages/remix/package.json (1 hunks)
  • packages/shared/CHANGELOG.md (1 hunks)
  • packages/shared/package.json (1 hunks)
  • packages/tanstack-react-start/CHANGELOG.md (1 hunks)
  • packages/tanstack-react-start/package.json (1 hunks)
  • packages/testing/CHANGELOG.md (1 hunks)
  • packages/testing/package.json (1 hunks)
  • packages/themes/CHANGELOG.md (1 hunks)
  • packages/themes/package.json (1 hunks)
  • packages/types/CHANGELOG.md (1 hunks)
  • packages/types/package.json (1 hunks)
  • packages/vue/CHANGELOG.md (1 hunks)
  • packages/vue/package.json (1 hunks)
💤 Files with no reviewable changes (8)
  • .changeset/ninety-wombats-think.md
  • .changeset/cold-glasses-watch.md
  • .changeset/common-clowns-speak.md
  • .changeset/plain-bottles-press.md
  • .changeset/khaki-ravens-cheer.md
  • .changeset/itchy-zoos-shake.md
  • .changeset/tall-worms-pull.md
  • .changeset/fluffy-spiders-grab.md
✅ Files skipped from review due to trivial changes (9)
  • packages/agent-toolkit/package.json
  • packages/localizations/CHANGELOG.md
  • packages/tanstack-react-start/package.json
  • packages/themes/package.json
  • packages/expo/CHANGELOG.md
  • packages/shared/package.json
  • packages/fastify/CHANGELOG.md
  • packages/expo-passkeys/package.json
  • packages/express/CHANGELOG.md
🚧 Files skipped from review as they are similar to previous changes (33)
  • packages/nuxt/package.json
  • packages/remix/package.json
  • packages/fastify/package.json
  • packages/types/package.json
  • packages/testing/package.json
  • packages/vue/package.json
  • packages/expo/package.json
  • packages/nextjs/package.json
  • packages/shared/CHANGELOG.md
  • packages/astro/package.json
  • packages/clerk-js/package.json
  • packages/backend/package.json
  • packages/chrome-extension/package.json
  • packages/react-router/package.json
  • packages/elements/package.json
  • packages/react/package.json
  • packages/themes/CHANGELOG.md
  • packages/tanstack-react-start/CHANGELOG.md
  • packages/nuxt/CHANGELOG.md
  • packages/localizations/package.json
  • packages/express/package.json
  • packages/clerk-js/CHANGELOG.md
  • packages/agent-toolkit/CHANGELOG.md
  • packages/remix/CHANGELOG.md
  • packages/chrome-extension/CHANGELOG.md
  • packages/types/CHANGELOG.md
  • packages/nextjs/CHANGELOG.md
  • packages/backend/CHANGELOG.md
  • packages/vue/CHANGELOG.md
  • packages/elements/CHANGELOG.md
  • packages/react-router/CHANGELOG.md
  • packages/testing/CHANGELOG.md
  • packages/astro/CHANGELOG.md
🧰 Additional context used
📓 Path-based instructions (3)
**/*.{js,jsx,ts,tsx,json,css,scss,md,yaml,yml}

📄 CodeRabbit inference engine (.cursor/rules/development.mdc)

Use Prettier for consistent code formatting

Files:

  • packages/react/CHANGELOG.md
  • packages/expo-passkeys/CHANGELOG.md
packages/**/CHANGELOG.md

📄 CodeRabbit inference engine (.cursor/rules/development.mdc)

Maintain detailed changelogs

Files:

  • packages/react/CHANGELOG.md
  • packages/expo-passkeys/CHANGELOG.md
**/*

⚙️ CodeRabbit configuration file

If there are no tests added or modified as part of the PR, please suggest that tests be added to cover the changes.

Files:

  • packages/react/CHANGELOG.md
  • packages/expo-passkeys/CHANGELOG.md
⏰ Context from checks skipped due to timeout of 90000ms. You can increase the timeout in your CodeRabbit configuration to a maximum of 15 minutes (900000ms). (3)
  • GitHub Check: semgrep-cloud-platform/scan
  • GitHub Check: Analyze (javascript-typescript)
  • GitHub Check: semgrep-cloud-platform/scan
🔇 Additional comments (2)
packages/react/CHANGELOG.md (2)

3-14: LGTM on the 5.43.2 entry

Version header, “Patch Changes” section, PR links, and dependency bump formatting match the established style in this file. Nothing blocking.

11-14: All dependency updates verified and correct

  • packages/types/CHANGELOG.md contains a “## 4.81.1” entry
  • packages/shared/CHANGELOG.md contains a “## 3.22.1” entry
  • packages/react/package.json lists both @clerk/types and @clerk/shared under dependencies with the workspace:^ protocol, which will resolve to caret‐prefixed versions (e.g. ^4.81.1 and ^3.22.1) on publish—consistent with repo policy

No further changes needed.

@github-actions github-actions bot force-pushed the changeset-release/main branch from e4372d4 to c72088c Compare August 24, 2025 02:20
coderabbitai[bot]
coderabbitai bot reviewed Aug 24, 2025
View reviewed changes
Copy link
Contributor

@coderabbitai coderabbitai bot left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Actionable comments posted: 0

🧹 Nitpick comments (1)
packages/react/CHANGELOG.md (1)

7-11: Normalize bullet punctuation for consistency

Most bullets in this changelog omit trailing periods. Consider removing the period at the end of the second bullet to match the prevailing style.

- - Improve assertion error for requiring active organization. ([#6606](https://github.com/clerk/javascript/pull/6606)) by [@panteliselef](https://github.com/panteliselef)
+ - Improve assertion error for requiring active organization ([#6606](https://github.com/clerk/javascript/pull/6606)) by [@panteliselef](https://github.com/panteliselef)
📜 Review details

Configuration used: CodeRabbit UI

Review profile: CHILL

Plan: Pro

💡 Knowledge Base configuration:

  • MCP integration is disabled by default for public repositories
  • Jira integration is disabled
  • Linear integration is disabled by default for public repositories

You can enable these sources in your CodeRabbit configuration.

📥 Commits

Reviewing files that changed from the base of the PR and between e4372d4 and c72088c.

📒 Files selected for processing (52)
  • .changeset/cold-glasses-watch.md (0 hunks)
  • .changeset/common-clowns-speak.md (0 hunks)
  • .changeset/fluffy-spiders-grab.md (0 hunks)
  • .changeset/itchy-zoos-shake.md (0 hunks)
  • .changeset/khaki-ravens-cheer.md (0 hunks)
  • .changeset/ninety-wombats-think.md (0 hunks)
  • .changeset/plain-bottles-press.md (0 hunks)
  • .changeset/tall-worms-pull.md (0 hunks)
  • packages/agent-toolkit/CHANGELOG.md (1 hunks)
  • packages/agent-toolkit/package.json (1 hunks)
  • packages/astro/CHANGELOG.md (1 hunks)
  • packages/astro/package.json (1 hunks)
  • packages/backend/CHANGELOG.md (1 hunks)
  • packages/backend/package.json (1 hunks)
  • packages/chrome-extension/CHANGELOG.md (1 hunks)
  • packages/chrome-extension/package.json (1 hunks)
  • packages/clerk-js/CHANGELOG.md (1 hunks)
  • packages/clerk-js/package.json (1 hunks)
  • packages/elements/CHANGELOG.md (1 hunks)
  • packages/elements/package.json (1 hunks)
  • packages/expo-passkeys/CHANGELOG.md (1 hunks)
  • packages/expo-passkeys/package.json (1 hunks)
  • packages/expo/CHANGELOG.md (1 hunks)
  • packages/expo/package.json (1 hunks)
  • packages/express/CHANGELOG.md (1 hunks)
  • packages/express/package.json (1 hunks)
  • packages/fastify/CHANGELOG.md (1 hunks)
  • packages/fastify/package.json (1 hunks)
  • packages/localizations/CHANGELOG.md (1 hunks)
  • packages/localizations/package.json (1 hunks)
  • packages/nextjs/CHANGELOG.md (1 hunks)
  • packages/nextjs/package.json (1 hunks)
  • packages/nuxt/CHANGELOG.md (1 hunks)
  • packages/nuxt/package.json (1 hunks)
  • packages/react-router/CHANGELOG.md (1 hunks)
  • packages/react-router/package.json (1 hunks)
  • packages/react/CHANGELOG.md (1 hunks)
  • packages/react/package.json (1 hunks)
  • packages/remix/CHANGELOG.md (1 hunks)
  • packages/remix/package.json (1 hunks)
  • packages/shared/CHANGELOG.md (1 hunks)
  • packages/shared/package.json (1 hunks)
  • packages/tanstack-react-start/CHANGELOG.md (1 hunks)
  • packages/tanstack-react-start/package.json (1 hunks)
  • packages/testing/CHANGELOG.md (1 hunks)
  • packages/testing/package.json (1 hunks)
  • packages/themes/CHANGELOG.md (1 hunks)
  • packages/themes/package.json (1 hunks)
  • packages/types/CHANGELOG.md (1 hunks)
  • packages/types/package.json (1 hunks)
  • packages/vue/CHANGELOG.md (1 hunks)
  • packages/vue/package.json (1 hunks)
💤 Files with no reviewable changes (8)
  • .changeset/khaki-ravens-cheer.md
  • .changeset/plain-bottles-press.md
  • .changeset/cold-glasses-watch.md
  • .changeset/tall-worms-pull.md
  • .changeset/itchy-zoos-shake.md
  • .changeset/fluffy-spiders-grab.md
  • .changeset/ninety-wombats-think.md
  • .changeset/common-clowns-speak.md
✅ Files skipped from review due to trivial changes (5)
  • packages/expo-passkeys/package.json
  • packages/themes/CHANGELOG.md
  • packages/remix/CHANGELOG.md
  • packages/nextjs/CHANGELOG.md
  • packages/shared/CHANGELOG.md
🚧 Files skipped from review as they are similar to previous changes (37)
  • packages/themes/package.json
  • packages/astro/package.json
  • packages/clerk-js/package.json
  • packages/fastify/package.json
  • packages/react-router/package.json
  • packages/tanstack-react-start/package.json
  • packages/vue/CHANGELOG.md
  • packages/remix/package.json
  • packages/vue/package.json
  • packages/types/package.json
  • packages/testing/package.json
  • packages/react/package.json
  • packages/express/package.json
  • packages/expo/package.json
  • packages/backend/package.json
  • packages/elements/package.json
  • packages/localizations/package.json
  • packages/agent-toolkit/package.json
  • packages/express/CHANGELOG.md
  • packages/nuxt/CHANGELOG.md
  • packages/astro/CHANGELOG.md
  • packages/nuxt/package.json
  • packages/chrome-extension/package.json
  • packages/clerk-js/CHANGELOG.md
  • packages/types/CHANGELOG.md
  • packages/agent-toolkit/CHANGELOG.md
  • packages/shared/package.json
  • packages/nextjs/package.json
  • packages/elements/CHANGELOG.md
  • packages/fastify/CHANGELOG.md
  • packages/expo/CHANGELOG.md
  • packages/localizations/CHANGELOG.md
  • packages/tanstack-react-start/CHANGELOG.md
  • packages/react-router/CHANGELOG.md
  • packages/chrome-extension/CHANGELOG.md
  • packages/expo-passkeys/CHANGELOG.md
  • packages/backend/CHANGELOG.md
🧰 Additional context used
📓 Path-based instructions (3)
**/*.{js,jsx,ts,tsx,json,css,scss,md,yaml,yml}

📄 CodeRabbit inference engine (.cursor/rules/development.mdc)

Use Prettier for consistent code formatting

Files:

  • packages/react/CHANGELOG.md
  • packages/testing/CHANGELOG.md
packages/**/CHANGELOG.md

📄 CodeRabbit inference engine (.cursor/rules/development.mdc)

Maintain detailed changelogs

Files:

  • packages/react/CHANGELOG.md
  • packages/testing/CHANGELOG.md
**/*

⚙️ CodeRabbit configuration file

If there are no tests added or modified as part of the PR, please suggest that tests be added to cover the changes.

Files:

  • packages/react/CHANGELOG.md
  • packages/testing/CHANGELOG.md
⏰ Context from checks skipped due to timeout of 90000ms. You can increase the timeout in your CodeRabbit configuration to a maximum of 15 minutes (900000ms). (3)
  • GitHub Check: Analyze (javascript-typescript)
  • GitHub Check: semgrep-cloud-platform/scan
  • GitHub Check: semgrep-cloud-platform/scan
🔇 Additional comments (2)
packages/testing/CHANGELOG.md (1)

3-11: All verified: packages/testing version & deps align with CHANGELOG 1.11.4

  • packages/testing/package.json version is 1.11.4, matching the ## 1.11.4 entry in CHANGELOG.md
  • Dependencies for @clerk/types, @clerk/shared, and @clerk/backend are declared as workspace:^, which correctly picks up the new bumped versions in this monorepo setup
  • CHANGELOG.md contains exactly one ## 1.11.4 header, so no duplicate entries
packages/react/CHANGELOG.md (1)

3-14: LGTM: Entry matches release scope and dependency versions

  • Version 5.43.2, patch-only notes, and dependency bumps to @clerk/[email protected] and @clerk/[email protected] align with the PR objectives. Links and attributions look correct, and formatting is consistent with the surrounding changelog style.

@github-actions github-actions bot force-pushed the changeset-release/main branch from c72088c to f148514 Compare August 24, 2025 02:31
coderabbitai[bot]
coderabbitai bot reviewed Aug 24, 2025
View reviewed changes
Copy link
Contributor

@coderabbitai coderabbitai bot left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Actionable comments posted: 0

♻️ Duplicate comments (2)
packages/expo-passkeys/CHANGELOG.md (1)

3-10: Verify package.json alignment and remove any workspace: ranges for published deps.

Echoing the prior verification note: ensure packages/expo-passkeys/package.json reflects version 0.3.35 and that @clerk/shared and @clerk/types depend on the published ranges (^3.22.1 and ^4.81.1), not workspace:. Also ensure the lockfile is updated accordingly.

Run from repo root:

#!/bin/bash
set -euo pipefail

PKG=packages/expo-passkeys/package.json

echo "Checking $PKG"
test -f "$PKG" || { echo "Missing $PKG"; exit 1; }

# 1) Version
VER=$(jq -r '.version' "$PKG")
echo "version: $VER"
test "$VER" = "0.3.35" || { echo "Expected version 0.3.35"; exit 1; }

# 2) Helper to read dep from any section
get_dep() {
  local name=$1
  jq -r --arg name "$name" '
    (.dependencies[$name] // .peerDependencies[$name] // .devDependencies[$name] // "")' "$PKG"
}

TYPES_VER=$(get_dep "@clerk/types")
SHARED_VER=$(get_dep "@clerk/shared")

echo "@clerk/types declared as: ${TYPES_VER:-<not found>}"
echo "@clerk/shared declared as: ${SHARED_VER:-<not found>}"

# 3) Must not use workspace protocol
if grep -n '"@clerk/\(types\|shared\)"\s*:\s*"workspace:' "$PKG"; then
  echo "Found workspace: protocol for published deps — please replace with caret ranges."
  exit 1
fi

# 4) Strip ^ or ~ for comparison
strip_prefix() { sed -E 's/^[\^~]//' <<<"${1:-}"; }

test "$(strip_prefix "$TYPES_VER")" = "4.81.1" || { echo "Expected @clerk/types ^4.81.1 (got $TYPES_VER)"; exit 1; }
test "$(strip_prefix "$SHARED_VER")" = "3.22.1" || { echo "Expected @clerk/shared ^3.22.1 (got $SHARED_VER)"; exit 1; }

echo "expo-passkeys/package.json aligns with CHANGELOG ✅"
packages/astro/CHANGELOG.md (1)

3-11: 2.11.7 changelog entry looks good; verify package.json stays in sync with listed dependency bumps

Echoing the earlier review on this package: ensure packages/astro/package.json reflects version 2.11.7 and pins the internal deps to ^4.81.1, ^3.22.1, and ^2.9.5, respectively.

Run to verify:

#!/bin/bash
set -euo pipefail

pkg="packages/astro/package.json"

echo "Checking $pkg"
jq -r '.name,.version' "$pkg"

# Version
test "$(jq -r '.version' "$pkg")" = "2.11.7" || { echo "Version mismatch in $pkg"; exit 1; }

# Dependencies
req_types="^4.81.1"
req_shared="^3.22.1"
req_backend="^2.9.5"

test "$(jq -r '.dependencies["@clerk/types"]'   "$pkg")" = "$req_types"
test "$(jq -r '.dependencies["@clerk/shared"]'  "$pkg")" = "$req_shared"
test "$(jq -r '.dependencies["@clerk/backend"]' "$pkg")" = "$req_backend"

echo "OK ✅"
🧹 Nitpick comments (8)
packages/expo-passkeys/CHANGELOG.md (1)

3-10: Optional: add a brief note if there’s any user-facing change from @clerk/shared/@clerk/types bumps.

If these bumps include behavior adjustments relevant to expo-passkeys consumers, consider a one-liner under Patch Changes to call it out; otherwise current dependency-only note is fine.

Happy to draft wording if there’s a notable impact worth surfacing.

packages/astro/CHANGELOG.md (1)

3-11: Add a lightweight release guard to keep CHANGELOG and package.json aligned

Since this PR batch is changelog + version bumps only, consider adding a tiny CI check that parses the topmost CHANGELOG entry and verifies package.json matches it. This reduces human review load on release PRs.

Prototype script:

#!/bin/bash
set -euo pipefail

pkg="packages/astro/package.json"
chlog="packages/astro/CHANGELOG.md"

# Extract the first version section (topmost "## x.y.z")
top_section_lines=$(awk 'BEGIN{printit=0} 
  /^##[[:space:]]+[0-9]+\./ { if (++seen==1) {printit=1; next} else {printit=0} } 
  printit { print }' "$chlog")

want_types=$(printf "%s\n" "$top_section_lines" | rg -o '@clerk/types@[\d. ]+'    | head -1 | sed 's/.*@//; s/@/ /; s/  */ /g' | awk '{print "^"$2}')
want_shared=$(printf "%s\n" "$top_section_lines" | rg -o '@clerk/shared@[\d. ]+'   | head -1 | sed 's/.*@//; s/@/ /; s/  */ /g' | awk '{print "^"$2}')
want_backend=$(printf "%s\n" "$top_section_lines" | rg -o '@clerk/backend@[\d. ]+' | head -1 | sed 's/.*@//; s/@/ /; s/  */ /g' | awk '{print "^"$2}')

got_types=$(jq -r '.dependencies["@clerk/types"]' "$pkg")
got_shared=$(jq -r '.dependencies["@clerk/shared"]' "$pkg")
got_backend=$(jq -r '.dependencies["@clerk/backend"]' "$pkg")

echo "Expect (from CHANGELOG): types=$want_types, shared=$want_shared, backend=$want_backend"
echo "Found  (package.json)  : types=$got_types, shared=$got_shared, backend=$got_backend"

test "$got_types"   = "$want_types"
test "$got_shared"  = "$want_shared"
test "$got_backend" = "$want_backend"

echo "CHANGELOG and package.json are aligned ✅"

I can open a small PR to wire this into the release workflow if helpful.

packages/tanstack-react-start/CHANGELOG.md (6)

3-6: Add release date to the new version header for traceability

Including the release date helps consumers correlate changes with published versions and automate audits.

Apply this minimal tweak:

-## 0.23.0
+## 0.23.0 — 2025-08-24

7-9: Call out the behavior change as “Breaking” and fix missing period

  • This is a behavior change that requires awaiting the handler factory. Given the package is pre-1.0, “Minor” can include breaking changes, but it’s still worth explicitly flagging to reduce upgrade friction.
  • The paragraph currently misses a trailing period.
-  The `createClerkHandler` helper now returns a Promise and requires awaiting during setup to ensure authentication context is available at the earliest possible point in the request lifecycle, before any router loaders or server functions execute
+  [Breaking] The `createClerkHandler` helper now returns a Promise and requires awaiting during setup to ensure authentication context is available at the earliest possible point in the request lifecycle, before any router loaders or server functions execute.

11-27: Add a short migration “Before vs After” to make the change copy-pasteable

The example looks good. A concise before/after snippet will make the breaking aspect unmistakable for upgraders scanning the changelog.

   ```ts
   // server.ts
   import { createStartHandler, defineHandlerCallback, defaultStreamHandler } from '@tanstack/react-start/server';
   import { createRouter } from './router';
   import { createClerkHandler } from '@clerk/tanstack-react-start/server';

+  // Migration from <= 0.22.x
+  // Before (sync):
+  // export default defineHandlerCallback(event => {
+  //   const startHandler = handlerFactory(defaultStreamHandler);
+  //   return startHandler(event);
+  // });
+  //
+  // After (await):
   const handlerFactory = createClerkHandler(
     createStartHandler({
       createRouter,
     }),
   );

   export default defineHandlerCallback(async event => {
     const startHandler = await handlerFactory(defaultStreamHandler); // awaited
     return startHandler(event);
   });

---

`31-42`: **Make the TanStack Start snippet immediately runnable by including imports**

Minor DX polish: adding imports avoids confusion when copy-pasting into fresh files.


```diff
   ```ts
+  import { createServerFn } from '@tanstack/react-start';
+  import { getWebRequest } from '@tanstack/react-start/server';
+  import { getAuth } from '@clerk/tanstack-react-start/server';
   const authStateFn = createServerFn({ method: 'GET' }).handler(async () => {
     const request = getWebRequest();
     const { userId } = await getAuth(request, { treatPendingAsSignedOut: false }); // defaults to true

     return { userId };
   });


---

`46-52`: **Optionally add types to the Nuxt example for stricter TS users**

If the docs target TS by default, a lightweight type hint helps strict projects.


```diff
   ```ts
-  export default eventHandler(event => {
+  import type { H3Event } from 'h3';
+  export default eventHandler((event: H3Event) => {
     const { userId } = event.context.auth({ treatPendingAsSignedOut: false }); // defaults to true

     return { userId };
   });


---

`3-58`: **Consider adding a minimal test or example app smoke check for the async handler path**

Since this release changes initialization semantics, a smoke test in the examples/fixtures that awaits the handler and exercises an authenticated request would guard against regressions.


Happy to propose a small Playwright/Node smoke that boots a TanStack Start example, hits a route that reads `userId` via `getAuth`, and asserts a 200.

</blockquote></details>

</blockquote></details>

<details>
<summary>📜 Review details</summary>

**Configuration used**: CodeRabbit UI

**Review profile**: CHILL

**Plan**: Pro

**💡 Knowledge Base configuration:**

- MCP integration is disabled by default for public repositories
- Jira integration is disabled
- Linear integration is disabled by default for public repositories

You can enable these sources in your CodeRabbit configuration.

<details>
<summary>📥 Commits</summary>

Reviewing files that changed from the base of the PR and between c72088c41efe29069b6a61c6952c1580c8832a63 and f148514fc77201a877099ef716ccac585bb3f2d6.

</details>

<details>
<summary>📒 Files selected for processing (52)</summary>

* `.changeset/cold-glasses-watch.md` (0 hunks)
* `.changeset/common-clowns-speak.md` (0 hunks)
* `.changeset/fluffy-spiders-grab.md` (0 hunks)
* `.changeset/itchy-zoos-shake.md` (0 hunks)
* `.changeset/khaki-ravens-cheer.md` (0 hunks)
* `.changeset/ninety-wombats-think.md` (0 hunks)
* `.changeset/plain-bottles-press.md` (0 hunks)
* `.changeset/tall-worms-pull.md` (0 hunks)
* `packages/agent-toolkit/CHANGELOG.md` (1 hunks)
* `packages/agent-toolkit/package.json` (1 hunks)
* `packages/astro/CHANGELOG.md` (1 hunks)
* `packages/astro/package.json` (1 hunks)
* `packages/backend/CHANGELOG.md` (1 hunks)
* `packages/backend/package.json` (1 hunks)
* `packages/chrome-extension/CHANGELOG.md` (1 hunks)
* `packages/chrome-extension/package.json` (1 hunks)
* `packages/clerk-js/CHANGELOG.md` (1 hunks)
* `packages/clerk-js/package.json` (1 hunks)
* `packages/elements/CHANGELOG.md` (1 hunks)
* `packages/elements/package.json` (1 hunks)
* `packages/expo-passkeys/CHANGELOG.md` (1 hunks)
* `packages/expo-passkeys/package.json` (1 hunks)
* `packages/expo/CHANGELOG.md` (1 hunks)
* `packages/expo/package.json` (1 hunks)
* `packages/express/CHANGELOG.md` (1 hunks)
* `packages/express/package.json` (1 hunks)
* `packages/fastify/CHANGELOG.md` (1 hunks)
* `packages/fastify/package.json` (1 hunks)
* `packages/localizations/CHANGELOG.md` (1 hunks)
* `packages/localizations/package.json` (1 hunks)
* `packages/nextjs/CHANGELOG.md` (1 hunks)
* `packages/nextjs/package.json` (1 hunks)
* `packages/nuxt/CHANGELOG.md` (1 hunks)
* `packages/nuxt/package.json` (1 hunks)
* `packages/react-router/CHANGELOG.md` (1 hunks)
* `packages/react-router/package.json` (1 hunks)
* `packages/react/CHANGELOG.md` (1 hunks)
* `packages/react/package.json` (1 hunks)
* `packages/remix/CHANGELOG.md` (1 hunks)
* `packages/remix/package.json` (1 hunks)
* `packages/shared/CHANGELOG.md` (1 hunks)
* `packages/shared/package.json` (1 hunks)
* `packages/tanstack-react-start/CHANGELOG.md` (1 hunks)
* `packages/tanstack-react-start/package.json` (1 hunks)
* `packages/testing/CHANGELOG.md` (1 hunks)
* `packages/testing/package.json` (1 hunks)
* `packages/themes/CHANGELOG.md` (1 hunks)
* `packages/themes/package.json` (1 hunks)
* `packages/types/CHANGELOG.md` (1 hunks)
* `packages/types/package.json` (1 hunks)
* `packages/vue/CHANGELOG.md` (1 hunks)
* `packages/vue/package.json` (1 hunks)

</details>

<details>
<summary>💤 Files with no reviewable changes (8)</summary>

* .changeset/tall-worms-pull.md
* .changeset/common-clowns-speak.md
* .changeset/khaki-ravens-cheer.md
* .changeset/plain-bottles-press.md
* .changeset/cold-glasses-watch.md
* .changeset/itchy-zoos-shake.md
* .changeset/fluffy-spiders-grab.md
* .changeset/ninety-wombats-think.md

</details>

<details>
<summary>✅ Files skipped from review due to trivial changes (8)</summary>

* packages/react/package.json
* packages/vue/package.json
* packages/elements/package.json
* packages/tanstack-react-start/package.json
* packages/localizations/CHANGELOG.md
* packages/backend/package.json
* packages/react-router/CHANGELOG.md
* packages/expo-passkeys/package.json

</details>

<details>
<summary>🚧 Files skipped from review as they are similar to previous changes (32)</summary>

* packages/remix/package.json
* packages/types/package.json
* packages/localizations/package.json
* packages/testing/package.json
* packages/nuxt/package.json
* packages/types/CHANGELOG.md
* packages/nextjs/package.json
* packages/astro/package.json
* packages/expo/package.json
* packages/react/CHANGELOG.md
* packages/agent-toolkit/package.json
* packages/fastify/package.json
* packages/react-router/package.json
* packages/express/package.json
* packages/themes/package.json
* packages/agent-toolkit/CHANGELOG.md
* packages/shared/package.json
* packages/remix/CHANGELOG.md
* packages/themes/CHANGELOG.md
* packages/fastify/CHANGELOG.md
* packages/chrome-extension/package.json
* packages/elements/CHANGELOG.md
* packages/chrome-extension/CHANGELOG.md
* packages/nextjs/CHANGELOG.md
* packages/testing/CHANGELOG.md
* packages/express/CHANGELOG.md
* packages/clerk-js/CHANGELOG.md
* packages/nuxt/CHANGELOG.md
* packages/shared/CHANGELOG.md
* packages/vue/CHANGELOG.md
* packages/backend/CHANGELOG.md
* packages/expo/CHANGELOG.md

</details>

<details>
<summary>🧰 Additional context used</summary>

<details>
<summary>📓 Path-based instructions (4)</summary>

<details>
<summary>**/*.{js,jsx,ts,tsx,json,css,scss,md,yaml,yml}</summary>


**📄 CodeRabbit inference engine (.cursor/rules/development.mdc)**

> Use Prettier for consistent code formatting

Files:
- `packages/clerk-js/package.json`
- `packages/astro/CHANGELOG.md`
- `packages/tanstack-react-start/CHANGELOG.md`
- `packages/expo-passkeys/CHANGELOG.md`

</details>
<details>
<summary>packages/*/package.json</summary>


**📄 CodeRabbit inference engine (.cursor/rules/global.mdc)**

> All publishable packages should be placed under the packages/ directory
> 
> `packages/*/package.json`: All publishable packages must be located in the 'packages/' directory.
> All packages must be published under the @clerk namespace on npm.
> Semantic versioning must be used across all packages.

Files:
- `packages/clerk-js/package.json`

</details>
<details>
<summary>**/*</summary>


**⚙️ CodeRabbit configuration file**

> If there are no tests added or modified as part of the PR, please suggest that tests be added to cover the changes.

Files:
- `packages/clerk-js/package.json`
- `packages/astro/CHANGELOG.md`
- `packages/tanstack-react-start/CHANGELOG.md`
- `packages/expo-passkeys/CHANGELOG.md`

</details>
<details>
<summary>packages/**/CHANGELOG.md</summary>


**📄 CodeRabbit inference engine (.cursor/rules/development.mdc)**

> Maintain detailed changelogs

Files:
- `packages/astro/CHANGELOG.md`
- `packages/tanstack-react-start/CHANGELOG.md`
- `packages/expo-passkeys/CHANGELOG.md`

</details>

</details>

</details>

<details>
<summary>⏰ Context from checks skipped due to timeout of 90000ms. You can increase the timeout in your CodeRabbit configuration to a maximum of 15 minutes (900000ms). (3)</summary>

* GitHub Check: Analyze (javascript-typescript)
* GitHub Check: semgrep-cloud-platform/scan
* GitHub Check: semgrep-cloud-platform/scan

</details>

</details>

<details>
<summary>🔇 Additional comments (4)</summary><blockquote>

<details>
<summary>packages/clerk-js/package.json (1)</summary><blockquote>

`3-3`: **Verified: version bump to 5.88.1 is correct**  

All checks passed:  
- packages/clerk-js/package.json version is 5.88.1  
- CHANGELOG.md contains a “## 5.88.1” entry  
- No internal packages pin @clerk/clerk-js to a fixed version  
- publishConfig.access is set to “public”  

Approving these changes.

</blockquote></details>
<details>
<summary>packages/expo-passkeys/CHANGELOG.md (1)</summary><blockquote>

`3-10`: **LGTM: 0.3.35 entry is clear and consistent.**

- Patch note lists the correct bumped deps: @clerk/[email protected] and @clerk/[email protected].
- Formatting matches existing changelog style (header, Patch Changes, bullets, commit refs).

</blockquote></details>
<details>
<summary>packages/tanstack-react-start/CHANGELOG.md (2)</summary><blockquote>

`3-58`: **Changelog content LGTM overall**

- Clear bullets, code samples, and links.
- The addition of `treatPendingAsSignedOut` usage examples is helpful.

---

`54-58`: **Dependency versions are already aligned—no changes needed**

The `packages/tanstack-react-start/package.json` correctly uses the `workspace:^` protocol to reference the local Clerk packages, which themselves are at the updated versions:

- @clerk/clerk-react → 5.43.2  
- @clerk/types       → 4.81.1  
- @clerk/shared      → 3.22.1  
- @clerk/backend     → 2.9.5  

Peer dependencies on `@tanstack/react-start` and `@tanstack/react-router` remain at `^1.131.0`, matching the project’s expectations. Since the monorepo convention is to use `workspace:^` for internal packages, the changelog and manifest are effectively in lockstep.

</blockquote></details>

</blockquote></details>

<!-- This is an auto-generated comment by CodeRabbit for review status -->

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@coderabbitai coderabbitai[bot] coderabbitai[bot] left review comments

At least 1 approving review is required to merge this pull request.

Assignees
No one assigned
Labels
agent-toolkit astro backend chrome-extension clerk-js elements expo express fastify nextjs nuxt react react-router remix tanstack testing vue
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@clerk-cookie