Skip to content

Bump @auth0/nextjs-auth0 from 4.14.0 to 4.17.1#29

Open
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/npm_and_yarn/auth0/nextjs-auth0-4.17.1
Open

Bump @auth0/nextjs-auth0 from 4.14.0 to 4.17.1#29
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/npm_and_yarn/auth0/nextjs-auth0-4.17.1

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Apr 21, 2026

Copy link
Copy Markdown

Bumps @auth0/nextjs-auth0 from 4.14.0 to 4.17.1.

Release notes

Sourced from @​auth0/nextjs-auth0's releases.

v4.17.1

Fixed

  • fix: defer AuthClientProvider construction when AUTH0_DOMAIN not set at build time #2604 (sleitor)
  • fix: Next.js edge runtime build error for crypto module #2564 (Piyush-85)

v4.17.0

Release v4.17.0 (minor release)

Added

Fixed

  • fix: prevent rolling session from re-creating a deleted session on concurrent logout #2530 (sleitor)

v4.16.2

Fixed

  • fix: Middleware should not throw ERR_JWE_INVALID #2546 (crob)
  • fix: preserve error details from HTTP 5xx OAuth responses #2533 (sleitor)

Security

  • chore(deps): update eslint to fix flatted vulnerability #2575 (Piyush-85)

Documentation

  • docs: clarify getAccessToken req/res usage in Route Handlers with custom cookies #2577 (Piyush-85)

v4.16.1

Fixed

  • fix: make withPageAuthRequired generic to support PageProps/LayoutProps types #2529 (sleitor)
  • fix: enable full generic type inference for withPageAuthRequired to correctly propagate PageProps and LayoutProps #2550 (Piyush-85)

v4.16.0

Added

Fixed

v4.15.0

Added

v4.14.1

... (truncated)

Changelog

Sourced from @​auth0/nextjs-auth0's changelog.

v4.17.1 (2026-04-16)

Full Changelog

Fixed

  • fix: defer AuthClientProvider construction when AUTH0_DOMAIN not set at build time #2604 (sleitor)
  • fix: Next.js edge runtime build error for crypto module #2564 (Piyush-85)

v4.17.0 (2026-04-09)

Full Changelog

Added

Fixed

  • fix: prevent rolling session from re-creating a deleted session on concurrent logout #2530 (sleitor)

v4.16.2 (2026-04-07)

Full Changelog

Fixed

  • fix: Middleware should not throw ERR_JWE_INVALID #2546 (crob)
  • fix: preserve error details from HTTP 5xx OAuth responses #2533 (sleitor)

Security

  • chore(deps): update eslint to fix flatted vulnerability #2575 (Piyush-85)

v4.16.1 (2026-03-25)

Full Changelog

Fixed

  • fix: make withPageAuthRequired generic to support PageProps/LayoutProps types #2529 (sleitor)
  • fix: enable full generic type inference for withPageAuthRequired to correctly propagate PageProps and LayoutProps #2550 (Piyush-85)

v4.16.0 (2026-02-27)

Full Changelog

Added

Fixed

v4.15.0 (2026-02-09)

Full Changelog

Added

... (truncated)

Commits
  • b06d30f chore: release v4.17.1 (#2615)
  • 5402224 Revert "feat: add optional update() to SessionDataStore (#2590)" (#2614)
  • 60dc4ae Revert "feat: add optional update() to SessionDataStore (#2590)"
  • f575965 chore(deps): bump next from 15.5.14 to 15.5.15 in /examples/with-next-intl (#...
  • 24f64d4 chore(deps): bump next in /examples/with-next-intl
  • eab075f chore(deps-dev): bump typedoc from 0.28.18 to 0.28.19 (#2610)
  • 4ec466c chore(deps-dev): bump typedoc from 0.28.18 to 0.28.19
  • 410086a chore(deps): bump openid-client from 6.8.2 to 6.8.3 (#2611)
  • d29095e chore(deps): bump openid-client from 6.8.2 to 6.8.3
  • 869e427 chore(deps): bump codecov/codecov-action from 5.5.3 to 6.0.0 (#2576)
  • Additional commits viewable in compare view
Maintainer changes

This version was pushed to npm by GitHub Actions, a new releaser for @​auth0/nextjs-auth0 since your current version.

Install script changes

This version adds prepare script that runs during installation. Review the package contents before updating.


Dependabot compatibility score

You can trigger a rebase of this PR by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
    You can disable automated security fix PRs for this repo from the Security Alerts page.

Note
Automatic rebases have been disabled on this pull request as it has been open for over 30 days.

Bumps [@auth0/nextjs-auth0](https://github.com/auth0/nextjs-auth0) from 4.14.0 to 4.17.1.
- [Release notes](https://github.com/auth0/nextjs-auth0/releases)
- [Changelog](https://github.com/auth0/nextjs-auth0/blob/main/CHANGELOG.md)
- [Commits](auth0/nextjs-auth0@v4.14.0...v4.17.1)

---
updated-dependencies:
- dependency-name: "@auth0/nextjs-auth0"
  dependency-version: 4.17.1
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code labels Apr 21, 2026
@vercel

vercel Bot commented Apr 21, 2026

Copy link
Copy Markdown

The latest updates on your projects. Learn more about Vercel for GitHub.

Project Deployment Actions Updated (UTC)
business-messaging-sample-tech-provider-app Ready Ready Preview, Comment Apr 21, 2026 3:23pm

Request Review

@meta-cla meta-cla Bot added the CLA Signed This label is managed by the Meta Open Source bot. label Apr 21, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

CLA Signed This label is managed by the Meta Open Source bot. dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code

Projects

None yet

Development

Successfully merging this pull request may close these issues.

0 participants