Skip to content

build(deps): bump @auth0/auth0-spa-js from 2.19.0 to 2.19.1#900

Merged
yogeshchoudhary147 merged 1 commit intomainfrom
dependabot/npm_and_yarn/auth0/auth0-spa-js-2.19.1
Apr 14, 2026
Merged

build(deps): bump @auth0/auth0-spa-js from 2.19.0 to 2.19.1#900
yogeshchoudhary147 merged 1 commit intomainfrom
dependabot/npm_and_yarn/auth0/auth0-spa-js-2.19.1

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot Bot commented on behalf of github Apr 14, 2026

Bumps @auth0/auth0-spa-js from 2.19.0 to 2.19.1.

Release notes

Sourced from @​auth0/auth0-spa-js's releases.

v2.19.1

Fixed

Changelog

Sourced from @​auth0/auth0-spa-js's changelog.

v2.19.1 (2026-04-13)

Full Changelog

Fixed

Commits
  • 54843bb Release v2.19.1 (#1593)
  • cd29e7d fix: MRRT token lookup incorrectly writing to cache (#1592)
  • ee9d0a2 fix: prevent ghost cache entry when stripping expired subset-matched token (#...
  • f6726fd fix: throw GenericError from worker path in revokeToken (#1589)
  • 1b4fb86 docs: add revokeRefreshToken examples (#1588)
  • 914599d fix(security): add .npmrc with ignore-scripts=true (#1587)
  • a78d1e2 fix: prevent script injection in GitHub Actions workflows (#1583)
  • See full diff in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot
build(deps): bump @auth0/auth0-spa-js from 2.19.0 to 2.19.1
e42fa46 
Bumps [@auth0/auth0-spa-js](https://github.com/auth0/auth0-spa-js) from 2.19.0 to 2.19.1.
- [Release notes](https://github.com/auth0/auth0-spa-js/releases)
- [Changelog](https://github.com/auth0/auth0-spa-js/blob/main/CHANGELOG.md)
- [Commits](auth0/auth0-spa-js@v2.19.0...v2.19.1)

---
updated-dependencies:
- dependency-name: "@auth0/auth0-spa-js"
  dependency-version: 2.19.1
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies One or more dependencies are being bumped javascript Pull requests that update Javascript code labels Apr 14, 2026
@dependabot dependabot Bot requested a review from a team as a code owner April 14, 2026 00:07
@yogeshchoudhary147 yogeshchoudhary147 merged commit 035ab3a into main Apr 14, 2026
7 of 9 checks passed
@yogeshchoudhary147 yogeshchoudhary147 deleted the dependabot/npm_and_yarn/auth0/auth0-spa-js-2.19.1 branch April 14, 2026 04:25
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@yogeshchoudhary147 yogeshchoudhary147 yogeshchoudhary147 approved these changes

Assignees

No one assigned

Labels

dependencies One or more dependencies are being bumped javascript Pull requests that update Javascript code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@yogeshchoudhary147