ci(repo): Version packages

[clerk-cookie]

This PR was opened by the Changesets release GitHub action. When you're ready to do a release, you can merge this and the packages will be published to npm automatically. If you're not ready to do a release yet, that's fine, whenever you add more changesets to main, this PR will be updated.

Releases

@clerk/clerk-js@6.11.0

Minor Changes

• Add user.updateMetadata() for updating current user's metadata attributes by merging existing values with the provided parameters. (#8537) by @brunol95

Patch Changes

• Fix dev browser recovery by clearing stale partitioned and non-partitioned dev browser cookie variants before minting a new dev browser. (#8538) by @brkalow

• Implement the provider selection step of <__experimental_ConfigureSSO />. Renders the two SAML provider tiles (Okta Workforce and Custom SAML Provider) with real icons sourced from img.clerk.com, tracks the picked provider in local state, and gates Step.Footer.Continue on a selection. Includes a warning callout about provider lock-in and a minor Step.Header alignment tweak. All user-visible strings are wired through @clerk/localizations, with translations for every supported locale. (#8503) by @iagodahlem

  Also extends the flow context with provider and setProvider, adds the deriveInitialStep helper, and wires the wizard's initialStepId so the configure flow remounts on the right step after a reload. Continue on Select Provider stages the chosen provider and advances to the next step; the enterprise connection is created on Verify Domain once the user's email is verified and primary.

• Fix toMeEnterpriseConnectionBody to produce the flat snake_case body shape the backend expects for user.createEnterpriseConnection and user.updateEnterpriseConnection. SAML and OIDC fields are now top-level prefixed (e.g., saml_idp_metadata_url) rather than nested under saml / oidc objects. Without this fix, IdP metadata submission in <__experimental_ConfigureSSO /> silently fails on the backend. (#8535) by @iagodahlem

• Update <ConfigureSSO /> in the context of organizations to only allow managing enterprise connections based on system permission (#8515) by @LauraBeatris

• Add monotonic token replacement based on oiat to prevent edge-minted tokens with stale claims from overwriting fresher DB-minted tokens in multi-tab scenarios. (#8097) by @nikosdouvlis

• Add verify/add email address step to <__experimental_ConfigureSSO /> (#8520) by @LauraBeatris

• Updated dependencies [1a4d7d1, a6916b1, 1084180, 39099b6, 18e0a1a]:

  • @clerk/shared@4.11.0

@clerk/shared@4.11.0

Minor Changes

• Add user.updateMetadata() for updating current user's metadata attributes by merging existing values with the provided parameters. (#8537) by @brunol95

Patch Changes

• Implement the Okta SAML metadata URL submission path in the Configure step of <__experimental_ConfigureSSO />. Adds a single text input for the IdP metadata URL; Continue posts { saml: { idpMetadataUrl } } via user.updateEnterpriseConnection wrapped in useReverification, with useCardState driving the loading state and handleError routing backend errors inline to the field or to the card-level error surface. Locale keys added under configureSSO.configureStep in en-US. Manual entry, file upload, SP-side copy rows, and the Okta admin-console walkthrough ship in follow-up PRs. (#8535) by @iagodahlem

• Implement the provider selection step of <__experimental_ConfigureSSO />. Renders the two SAML provider tiles (Okta Workforce and Custom SAML Provider) with real icons sourced from img.clerk.com, tracks the picked provider in local state, and gates Step.Footer.Continue on a selection. Includes a warning callout about provider lock-in and a minor Step.Header alignment tweak. All user-visible strings are wired through @clerk/localizations, with translations for every supported locale. (#8503) by @iagodahlem

  Also extends the flow context with provider and setProvider, adds the deriveInitialStep helper, and wires the wizard's initialStepId so the configure flow remounts on the right step after a reload. Continue on Select Provider stages the chosen provider and advances to the next step; the enterprise connection is created on Verify Domain once the user's email is verified and primary.

• Update <ConfigureSSO /> in the context of organizations to only allow managing enterprise connections based on system permission (#8515) by @LauraBeatris

• Add verify/add email address step to <__experimental_ConfigureSSO /> (#8520) by @LauraBeatris

@clerk/ui@1.10.0

Minor Changes

• Add fontFamilyMono appearance variable for customizing the monospace font used in Clerk components. Defaults to ui-monospace, SFMono-Regular, Menlo, Monaco, Consolas, monospace and is exposed as the --clerk-font-family-mono CSS variable. (#8546) by @alexcarpenter

Patch Changes

• Implement the Okta SAML metadata URL submission path in the Configure step of <__experimental_ConfigureSSO />. Adds a single text input for the IdP metadata URL; Continue posts { saml: { idpMetadataUrl } } via user.updateEnterpriseConnection wrapped in useReverification, with useCardState driving the loading state and handleError routing backend errors inline to the field or to the card-level error surface. Locale keys added under configureSSO.configureStep in en-US. Manual entry, file upload, SP-side copy rows, and the Okta admin-console walkthrough ship in follow-up PRs. (#8535) by @iagodahlem

• Implement the provider selection step of <__experimental_ConfigureSSO />. Renders the two SAML provider tiles (Okta Workforce and Custom SAML Provider) with real icons sourced from img.clerk.com, tracks the picked provider in local state, and gates Step.Footer.Continue on a selection. Includes a warning callout about provider lock-in and a minor Step.Header alignment tweak. All user-visible strings are wired through @clerk/localizations, with translations for every supported locale. (#8503) by @iagodahlem

  Also extends the flow context with provider and setProvider, adds the deriveInitialStep helper, and wires the wizard's initialStepId so the configure flow remounts on the right step after a reload. Continue on Select Provider stages the chosen provider and advances to the next step; the enterprise connection is created on Verify Domain once the user's email is verified and primary.

• Update <ConfigureSSO /> in the context of organizations to only allow managing enterprise connections based on system permission (#8515) by @LauraBeatris

• fix(ui): don't treat numeric usernames as phone numbers (#8532) by @thiskevinwang

• Fixed custom page icons not rendering in React 19 due to a forwarded ref overwriting the internal node reference. (#8534) by @wobsoriano

• Add verify/add email address step to <__experimental_ConfigureSSO /> (#8520) by @LauraBeatris

• Refactor <__experimental_ConfigureSSO /> into a layered primitive set: a state-driven Wizard, a UI-only Stepper, a Step compound, and ProfileCard chrome. No public component API change. Drops the central FooterActionsContext registry — each step now renders its own footer via Step.Footer.Previous / Step.Footer.Continue purely-presentational compounds. Adds a SelectProviderStep boilerplate filtered out of the breadcrumb. (#8493) by @iagodahlem

• Updated dependencies [1a4d7d1, a6916b1, 1084180, 39099b6, 18e0a1a]:

  • @clerk/localizations@4.6.3
  • @clerk/shared@4.11.0

@clerk/astro@3.2.3

Patch Changes

• Updated dependencies [1a4d7d1, a6916b1, 1084180, ee25cf2, 39099b6, 2377305, 18e0a1a]:
  • @clerk/shared@4.11.0
  • @clerk/backend@3.4.8

@clerk/backend@3.4.8

Patch Changes

• Fix JWT array audience validation (#8470) by @jescalan

• Require configured JWT header type. (#8471) by @jescalan

• Updated dependencies [1a4d7d1, a6916b1, 1084180, 39099b6, 18e0a1a]:

  • @clerk/shared@4.11.0

@clerk/chrome-extension@3.1.25

Patch Changes

• Updated dependencies [a492b1b, 1a4d7d1, a6916b1, 1a4d7d1, ed76cd7, 1084180, a1fc21c, 1e2e237, 9a360c9, 39099b6, 18e0a1a, 0f8aed2]:
  • @clerk/clerk-js@6.11.0
  • @clerk/shared@4.11.0
  • @clerk/ui@1.10.0
  • @clerk/react@6.6.3

@clerk/expo@3.2.11

Patch Changes

• Updated dependencies [a492b1b, 1a4d7d1, a6916b1, 1a4d7d1, 1084180, 1e2e237, 39099b6, 18e0a1a]:
  • @clerk/clerk-js@6.11.0
  • @clerk/shared@4.11.0
  • @clerk/react@6.6.3

@clerk/expo-passkeys@1.0.24

Patch Changes

• Updated dependencies [1a4d7d1, a6916b1, 1084180, 39099b6, 18e0a1a]:
  • @clerk/shared@4.11.0

@clerk/express@2.1.16

Patch Changes

• Updated dependencies [1a4d7d1, a6916b1, 1084180, ee25cf2, 39099b6, 2377305, 18e0a1a]:
  • @clerk/shared@4.11.0
  • @clerk/backend@3.4.8

@clerk/fastify@3.1.26

Patch Changes

• Updated dependencies [1a4d7d1, a6916b1, 1084180, ee25cf2, 39099b6, 2377305, 18e0a1a]:
  • @clerk/shared@4.11.0
  • @clerk/backend@3.4.8

@clerk/hono@0.1.26

Patch Changes

• Updated dependencies [1a4d7d1, a6916b1, 1084180, ee25cf2, 39099b6, 2377305, 18e0a1a]:
  • @clerk/shared@4.11.0
  • @clerk/backend@3.4.8

@clerk/localizations@4.6.3

Patch Changes

• Implement the Okta SAML metadata URL submission path in the Configure step of <__experimental_ConfigureSSO />. Adds a single text input for the IdP metadata URL; Continue posts { saml: { idpMetadataUrl } } via user.updateEnterpriseConnection wrapped in useReverification, with useCardState driving the loading state and handleError routing backend errors inline to the field or to the card-level error surface. Locale keys added under configureSSO.configureStep in en-US. Manual entry, file upload, SP-side copy rows, and the Okta admin-console walkthrough ship in follow-up PRs. (#8535) by @iagodahlem

• Implement the provider selection step of <__experimental_ConfigureSSO />. Renders the two SAML provider tiles (Okta Workforce and Custom SAML Provider) with real icons sourced from img.clerk.com, tracks the picked provider in local state, and gates Step.Footer.Continue on a selection. Includes a warning callout about provider lock-in and a minor Step.Header alignment tweak. All user-visible strings are wired through @clerk/localizations, with translations for every supported locale. (#8503) by @iagodahlem

  Also extends the flow context with provider and setProvider, adds the deriveInitialStep helper, and wires the wizard's initialStepId so the configure flow remounts on the right step after a reload. Continue on Select Provider stages the chosen provider and advances to the next step; the enterprise connection is created on Verify Domain once the user's email is verified and primary.

• Update <ConfigureSSO /> in the context of organizations to only allow managing enterprise connections based on system permission (#8515) by @LauraBeatris

• Add verify/add email address step to <__experimental_ConfigureSSO /> (#8520) by @LauraBeatris

• Updated dependencies [1a4d7d1, a6916b1, 1084180, 39099b6, 18e0a1a]:

  • @clerk/shared@4.11.0

@clerk/nextjs@7.3.4

Patch Changes

• Updated dependencies [1a4d7d1, a6916b1, 1084180, ee25cf2, 39099b6, 2377305, 18e0a1a]:
  • @clerk/shared@4.11.0
  • @clerk/backend@3.4.8
  • @clerk/react@6.6.3

@clerk/nuxt@2.4.3

Patch Changes

• Updated dependencies [1a4d7d1, a6916b1, 1084180, ee25cf2, 39099b6, 2377305, 18e0a1a]:
  • @clerk/shared@4.11.0
  • @clerk/backend@3.4.8
  • @clerk/vue@2.2.3

@clerk/react@6.6.3

Patch Changes

• Updated dependencies [1a4d7d1, a6916b1, 1084180, 39099b6, 18e0a1a]:
  • @clerk/shared@4.11.0

@clerk/react-router@3.2.4

Patch Changes

• Updated dependencies [1a4d7d1, a6916b1, 1084180, ee25cf2, 39099b6, 2377305, 18e0a1a]:
  • @clerk/shared@4.11.0
  • @clerk/backend@3.4.8
  • @clerk/react@6.6.3

@clerk/tanstack-react-start@1.2.4

Patch Changes

• Updated dependencies [1a4d7d1, a6916b1, 1084180, ee25cf2, 39099b6, 2377305, 18e0a1a]:
  • @clerk/shared@4.11.0
  • @clerk/backend@3.4.8
  • @clerk/react@6.6.3

@clerk/testing@2.0.28

Patch Changes

• Updated dependencies [1a4d7d1, a6916b1, 1084180, ee25cf2, 39099b6, 2377305, 18e0a1a]:
  • @clerk/shared@4.11.0
  • @clerk/backend@3.4.8

@clerk/vue@2.2.3

Patch Changes

• Updated dependencies [1a4d7d1, a6916b1, 1084180, 39099b6, 18e0a1a]:
  • @clerk/shared@4.11.0

@clerk/msw@0.0.24

Patch Changes

• Updated dependencies [1a4d7d1, a6916b1, 1084180, 39099b6, 18e0a1a]:
  • @clerk/shared@4.11.0

[vercel]

The latest updates on your projects. Learn more about Vercel for GitHub.

Project	Deployment	Actions	Updated (UTC)
clerk-js-sandbox	Ready	Preview, Comment	May 14, 2026 4:39pm

[pkg-pr-new]

Open in StackBlitz

@clerk/astro

npm i https://pkg.pr.new/@clerk/astro@8518

@clerk/backend

npm i https://pkg.pr.new/@clerk/backend@8518

@clerk/chrome-extension

npm i https://pkg.pr.new/@clerk/chrome-extension@8518

@clerk/clerk-js

npm i https://pkg.pr.new/@clerk/clerk-js@8518

@clerk/dev-cli

npm i https://pkg.pr.new/@clerk/dev-cli@8518

@clerk/expo

npm i https://pkg.pr.new/@clerk/expo@8518

@clerk/expo-passkeys

npm i https://pkg.pr.new/@clerk/expo-passkeys@8518

@clerk/express

npm i https://pkg.pr.new/@clerk/express@8518

@clerk/fastify

npm i https://pkg.pr.new/@clerk/fastify@8518

@clerk/hono

npm i https://pkg.pr.new/@clerk/hono@8518

@clerk/localizations

npm i https://pkg.pr.new/@clerk/localizations@8518

@clerk/nextjs

npm i https://pkg.pr.new/@clerk/nextjs@8518

@clerk/nuxt

npm i https://pkg.pr.new/@clerk/nuxt@8518

@clerk/react

npm i https://pkg.pr.new/@clerk/react@8518

@clerk/react-router

npm i https://pkg.pr.new/@clerk/react-router@8518

@clerk/shared

npm i https://pkg.pr.new/@clerk/shared@8518

@clerk/tanstack-react-start

npm i https://pkg.pr.new/@clerk/tanstack-react-start@8518

@clerk/testing

npm i https://pkg.pr.new/@clerk/testing@8518

@clerk/ui

npm i https://pkg.pr.new/@clerk/ui@8518

@clerk/upgrade

npm i https://pkg.pr.new/@clerk/upgrade@8518

@clerk/vue

npm i https://pkg.pr.new/@clerk/vue@8518

commit: 7f26512

[nikosdouvlis]

Blocking

We are proceeding