@clerk/nextjs@7.1.0
📦 clerkView on GitHub →
✨ 1 features🐛 1 fixes🔧 1 symbols
Summary
This release introduces an internal hook for OAuth consent metadata fetching and patches a high-severity denial-of-service vulnerability in Next.js by updating the devDependency.
Migration Steps
- If you use the Next.js App Router, upgrade to Next.js 15.5.15 or 16.2.3 to mitigate the security vulnerability.
✨ New Features
- Introduce internal useOAuthConsent() hook for fetching OAuth consent screen metadata for the signed-in user.
🐛 Bug Fixes
- Bumped next devDependency to 15.5.15 to address CVE-2026-23869 (high-severity DoS vulnerability in React Server Components).