Skip to content

chore(deps): bump @supabase/ssr from 0.5.2 to 0.12.0 in the minor-and-patch group across 1 directory#10

Open
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/npm_and_yarn/minor-and-patch-9e0d3214bb
Open

chore(deps): bump @supabase/ssr from 0.5.2 to 0.12.0 in the minor-and-patch group across 1 directory#10
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/npm_and_yarn/minor-and-patch-9e0d3214bb

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jun 17, 2026
edited
Loading

Copy link
Copy Markdown

Bumps the minor-and-patch group with 1 update in the / directory: @supabase/ssr.

Updates @supabase/ssr from 0.5.2 to 0.12.0

Release notes

Sourced from @​supabase/ssr's releases.

v0.12.0

0.12.0 (2026-06-09)

Features

  • adds cookies.encode option allowing minimal cookie sizes (#126) (cf38b22)
  • bump cookie to 1.0.2 (#113) (b4a77b4)
  • cookies: add clearAuthCookiesAtScopes migration helper (#240) (4e47249)
  • full rewrite using getAll and setAll cookie methods (#1) (b6ae192)
  • improve cookie chunk handling via base64url+length encoding (#90) (6deb687)
  • pass cache headers to setAll to prevent CDN caching of auth responses (#176) (14962d2)
  • publish SSR under deprecated auth-helpers package names (#127) (e8b6102)
  • release workflow RC versioning and publish reliability (#164) (81e68f4)
  • update CI so it runs on release as well (#33) (4517996)
  • update supabase-js to latest (#133) (d65044d)
  • update supabase-js to latest (#145) (08bf7d6)
  • upgrade cookie dependency and cleanup imports (#77) (9524528)

Bug Fixes

  • add @​types/cookies to dependencies (#63) (47e5f16)
  • add create*Client string in x-client-info (#85) (f271acc)
  • allow cookies encode without getAll/setAll on browser client (#213) (89f3f28), closes #170
  • allow use of createBrowserClient without window present (#20) (27d868d)
  • auth: respect user-provided auth options in createBrowserClient (#167) (5f04837)
  • check chunkedCookie is string in server client (#57) (549fe62)
  • ci: remove packageManager field (#197) (6bf0226)
  • cookies console warnings (#136) (64ff6b3)
  • deprecate parse, serialize exports for more useful functions (#14) (0b5f881)
  • enable tree-shaking for browser bundles (#216) (f009d71)
  • fix createBrowserClient deprecation tsdoc (#17) (1df70ad)
  • force release (#98) (66710e8)
  • re-apply update CI so it runs on release as well (#49) (51d5a43)
  • release: pin npm to 11.5.2 so OIDC trusted publisher works (#249) (4af89f7)
  • remove optional dependencies (#41) (a48fe6f)
  • remove usage of internal type params (#123) (8f3e89e)
  • revert "update CI so it runs on release as well" (#44) (9d0e859)
  • revert: "feat: improve cookie chunk handling via base64url+length encoding (#90)" (#100) (2ea8e23)
  • set max-age default cookie option to 400 days (#54) (f4ed2e0)
  • set cookies for password recovery event (#32) (7dc1837)
  • set cookies when mfa challenge is verified (#27) (c217f53)
  • tsconfig: set explicit rootDir to silence TS6059 in consumer IDEs (#211) (a77ee8a), closes #209
  • update conventional commits ci to use main instead of master (#31) (bebce89)
  • update README session docs (#159) (b859905)
  • update type, remove unused imports, define AuthEvent type (#47) (4f4a375)
  • use skipAutoInitialize to prevent SSR token refresh race condition (#131) (0b7be28)
  • validate base64-prefixed chunked cookies decode to valid JSON (#210) (302cc0e)

... (truncated)

Changelog

Sourced from @​supabase/ssr's changelog.

0.12.0 (2026-06-09)

Features

  • adds cookies.encode option allowing minimal cookie sizes (#126) (cf38b22)
  • bump cookie to 1.0.2 (#113) (b4a77b4)
  • cookies: add clearAuthCookiesAtScopes migration helper (#240) (4e47249)
  • full rewrite using getAll and setAll cookie methods (#1) (b6ae192)
  • improve cookie chunk handling via base64url+length encoding (#90) (6deb687)
  • pass cache headers to setAll to prevent CDN caching of auth responses (#176) (14962d2)
  • publish SSR under deprecated auth-helpers package names (#127) (e8b6102)
  • release workflow RC versioning and publish reliability (#164) (81e68f4)
  • update CI so it runs on release as well (#33) (4517996)
  • update supabase-js to latest (#133) (d65044d)
  • update supabase-js to latest (#145) (08bf7d6)
  • upgrade cookie dependency and cleanup imports (#77) (9524528)

Bug Fixes

  • add @​types/cookies to dependencies (#63) (47e5f16)
  • add create*Client string in x-client-info (#85) (f271acc)
  • allow cookies encode without getAll/setAll on browser client (#213) (89f3f28), closes #170
  • allow use of createBrowserClient without window present (#20) (27d868d)
  • auth: respect user-provided auth options in createBrowserClient (#167) (5f04837)
  • check chunkedCookie is string in server client (#57) (549fe62)
  • ci: remove packageManager field (#197) (6bf0226)
  • cookies console warnings (#136) (64ff6b3)
  • deprecate parse, serialize exports for more useful functions (#14) (0b5f881)
  • enable tree-shaking for browser bundles (#216) (f009d71)
  • fix createBrowserClient deprecation tsdoc (#17) (1df70ad)
  • force release (#98) (66710e8)
  • re-apply update CI so it runs on release as well (#49) (51d5a43)
  • release: pin npm to 11.5.2 so OIDC trusted publisher works (#249) (4af89f7)
  • remove optional dependencies (#41) (a48fe6f)
  • remove usage of internal type params (#123) (8f3e89e)
  • revert "update CI so it runs on release as well" (#44) (9d0e859)
  • revert: "feat: improve cookie chunk handling via base64url+length encoding (#90)" (#100) (2ea8e23)
  • set max-age default cookie option to 400 days (#54) (f4ed2e0)
  • set cookies for password recovery event (#32) (7dc1837)
  • set cookies when mfa challenge is verified (#27) (c217f53)
  • tsconfig: set explicit rootDir to silence TS6059 in consumer IDEs (#211) (a77ee8a), closes #209
  • update conventional commits ci to use main instead of master (#31) (bebce89)
  • update README session docs (#159) (b859905)
  • update type, remove unused imports, define AuthEvent type (#47) (4f4a375)
  • use skipAutoInitialize to prevent SSR token refresh race condition (#131) (0b7be28)
  • validate base64-prefixed chunked cookies decode to valid JSON (#210) (302cc0e)

0.11.0 (2026-06-05)

... (truncated)

Commits
  • d8c9b60 chore(main): release 0.12.0 (#247)
  • 4af89f7 fix(release): pin npm to 11.5.2 so OIDC trusted publisher works (#249)
  • 164c7ab build(deps-dev): bump vitest from 1.6.1 to 4.1.0 in the npm_and_yarn group ac...
  • 2fd3333 chore: update @​supabase/supabase-js to v2.108.0 (#248)
  • dd766c4 chore(main): release 0.11.0 (#244)
  • 932931e build(deps): bump actions/checkout from 6.0.2 to 6.0.3 (#245)
  • 4e47249 feat(cookies): add clearAuthCookiesAtScopes migration helper (#240)
  • 34f2b6a chore: update @​supabase/supabase-js to v2.107.0 (#243)
  • 4292d04 chore: update @​supabase/supabase-js to v2.106.1 (#236)
  • a6896b1 chore: update @​supabase/supabase-js to v2.106.0 (#232)
  • Additional commits viewable in compare view
Maintainer changes

This version was pushed to npm by GitHub Actions, a new releaser for @​supabase/ssr since your current version.

@dependabot @github

dependabot Bot commented on behalf of github Jun 17, 2026

Copy link
Copy Markdown
Author

Labels

The following labels could not be found: automated, dependencies. Please create them before Dependabot can add them to a pull request.

Please fix the above issues or remove invalid values from dependabot.yml.

@vercel

vercel Bot commented Jun 17, 2026
edited
Loading

Copy link
Copy Markdown
Contributor

The latest updates on your projects. Learn more about Vercel for GitHub.

Project Deployment Actions Updated (UTC)
ufmt-stats Ready Ready Preview, Comment Jun 17, 2026 5:18am

@dependabot dependabot Bot changed the title chore(deps): bump @supabase/ssr from 0.5.2 to 0.12.0 in the minor-and-patch group chore(deps): bump @supabase/ssr from 0.5.2 to 0.12.0 in the minor-and-patch group across 1 directory Jun 17, 2026
@dependabot dependabot Bot force-pushed the dependabot/npm_and_yarn/minor-and-patch-9e0d3214bb branch from b12bcb7 to cb616fc Compare June 17, 2026 05:02
@dependabot dependabot Bot force-pushed the dependabot/npm_and_yarn/minor-and-patch-9e0d3214bb branch from cb616fc to fff2553 Compare June 17, 2026 05:13
@dependabot
chore(deps): bump @supabase/ssr
6a5b361 
Bumps the minor-and-patch group with 1 update in the / directory: [@supabase/ssr](https://github.com/supabase/ssr).


Updates `@supabase/ssr` from 0.5.2 to 0.12.0
- [Release notes](https://github.com/supabase/ssr/releases)
- [Changelog](https://github.com/supabase/ssr/blob/main/CHANGELOG.md)
- [Commits](supabase/ssr@v0.5.2...v0.12.0)

---
updated-dependencies:
- dependency-name: "@supabase/ssr"
  dependency-version: 0.12.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: minor-and-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot force-pushed the dependabot/npm_and_yarn/minor-and-patch-9e0d3214bb branch from fff2553 to 6a5b361 Compare June 17, 2026 05:17
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants