Production build fixes target route generation and CSS ordering.
Clerk updates in 2026-w19
Introduced GA release separating alerts into Monitors and Alerts for finer-grained tracking.
Patched high‑severity vulnerabilities including DoS via server components, middleware/proxy bypasses, SSRF in WebSocket upgrades, and cache poisoning in React Server Component responses.
Address multiple high, moderate, and low severity security advisories (DoS, SSRF, XSS, cache poisoning, and middleware proxy bypass)
Patched multiple high‑severity security vulnerabilities (DoS, SSRF, proxy bypass, cache poisoning, XSS) across Server Components, Middleware, and Image Optimization.
Patched high‑severity vulnerabilities such as denial‑of‑service, proxy bypass, SSRF, and cache exhaustion across server components, middleware, and caching layers.
Application Metrics reach General Availability with high‑cardinality, trace‑connected data.
Introduces Snapshots in Early Access for image storage, diffing, and CI integration
Checkout recovery flows expose more controls for abandoned sessions.
Cross-Event Querying is now generally available
Session token refresh timing is adjusted for better reliability.