Merge branch 'main' into jr/integration-build-serve

Author: jacekradko

.changeset/add-navigation-promise-tests.md

@@ -0,0 +1,2 @@
+---
+---

.changeset/bumpy-wings-travel.md

@@ -0,0 +1,7 @@
+---
+'@clerk/clerk-js': minor
+'@clerk/shared': minor
+'@clerk/ui': minor
+---
+
+Prevent modification of immutable attributes in UserProfile

.changeset/five-carrots-laugh.md

@@ -0,0 +1,6 @@
+---
+'@clerk/chrome-extension': minor
+'@clerk/ui': minor
+---
+
+Remove remotely hosted code from new @clerk/ui package

.changeset/flat-pets-taste.md

@@ -0,0 +1,5 @@
+---
+'@clerk/localizations': minor
+---
+
+Added en-XA locale to highlight unlocalized strings.

.changeset/jolly-parents-refuse.md

@@ -0,0 +1,5 @@
+---
+'@clerk/react': patch
+---
+
+Remove experimental tags on signal hooks

.changeset/shared-types-versions-fallback.md

@@ -0,0 +1,5 @@
+---
+"@clerk/shared": patch
+---
+
+Add `typesVersions` fallback so that `@clerk/shared/types` resolves correctly under `moduleResolution: "node"` in TypeScript.

.changeset/warm-pens-laugh.md

@@ -0,0 +1,5 @@
+---
+'@clerk/backend': patch
+---
+
+Remove experimental comment from Agent Tasks API

integration/tests/cache-components.test.ts

@@ -323,5 +323,61 @@ testAgainstRunningApps({ withEnv: [appConfigs.envs.withEmailCodes], withPattern:
       const userId = await userIdElement.textContent();
       expect(userId).toMatch(/^user_/);
     });
+
+    test('sign out completes and navigation promise resolves', async ({ page, context }) => {
+      const u = createTestUtils({ app, page, context });
+
+      // Sign in
+      await u.po.signIn.goTo();
+      await u.po.signIn.signInWithEmailAndInstantPassword({
+        email: fakeUser.email,
+        password: fakeUser.password,
+      });
+      await u.po.expect.toBeSignedIn();
+
+      // Navigate to a non-root page to ensure post-sign-out navigation is a real route change
+      await u.page.goToRelative('/auth-server-component');
+      await expect(u.page.getByText('auth() in Server Component')).toBeVisible();
+
+      // Sign out by explicitly awaiting the full signOut() promise.
+      // Internally, signOut() calls: onBeforeSetActive (cache invalidation) →
+      // session removal → navigate(redirectUrl) via routerPush → useInternalNavFun →
+      // startTransition(() => router.push(to)).
+      // The navigate() call awaits the promise from useInternalNavFun.
+      // If isPending doesn't cycle (the concern from removing usePathname in #7989),
+      // the navigation promise hangs and this evaluate call times out.
+      await page.evaluate(async () => {
+        await window.Clerk.signOut();
+      });
+
+      await u.po.expect.toBeSignedOut();
+    });
+
+    test('protected route redirects to sign-in after sign out', async ({ page, context }) => {
+      const u = createTestUtils({ app, page, context });
+
+      // Sign in and access protected route
+      await u.po.signIn.goTo();
+      await u.po.signIn.signInWithEmailAndInstantPassword({
+        email: fakeUser.email,
+        password: fakeUser.password,
+      });
+      await u.po.expect.toBeSignedIn();
+
+      await u.page.goToRelative('/protected');
+      await expect(u.page.getByText('Protected Route')).toBeVisible();
+
+      // Sign out
+      await page.evaluate(async () => {
+        await window.Clerk.signOut();
+      });
+
+      await u.po.expect.toBeSignedOut();
+
+      // Try to access protected route again — should redirect to sign-in
+      // This verifies cache invalidation worked correctly alongside navigation
+      await u.page.goToRelative('/protected');
+      await expect(page).toHaveURL(/sign-in/);
+    });
   },
 );

packages/backend/src/api/endpoints/AgentTaskApi.ts

@@ -48,9 +48,6 @@ type CreateAgentTaskParams = {
 const basePath = '/agents/tasks';
 
 export class AgentTaskAPI extends AbstractAPI {
-  /**
-   * @experimental This is an experimental API for the Agent Tokens feature that is available under a private beta, and the API is subject to change. It is advised to [pin](https://clerk.com/docs/pinning) the SDK version and the clerk-js version to avoid breaking changes.
-   */
   public async create(params: CreateAgentTaskParams) {
     return this.request<AgentTask>({
       method: 'POST',

packages/chrome-extension/src/react/ClerkProvider.tsx

@@ -1,7 +1,7 @@
 import type { Clerk } from '@clerk/clerk-js/no-rhc';
 import type { ClerkProviderProps as ClerkReactProviderProps } from '@clerk/react';
 import { InternalClerkProvider as ClerkReactProvider } from '@clerk/react/internal';
-import { ui } from '@clerk/ui';
+import { ui } from '@clerk/ui/no-rhc';
 import React from 'react';
 
 import { createClerkClient } from '../internal/clerk';