feat(astro): Support Astro v7

[wobsoriano]

Description

Adds Astro 7 support for @clerk/astro.

Astro 7 now uses the Rust-based .astro compiler as the only compiler. The new compiler is stricter and surfaced an invalid top-level return; (ref) inside the inline script emitted by UserButton custom menu item rendering.

This PR updates the script flow to avoid that error while preserving the existing behavior.

Fixes #8963

Resolves USER-5610

Checklist

• pnpm test runs as expected.
• pnpm build runs as expected.
• (If applicable) JSDoc comments have been added or updated for any package exports
• (If applicable) Documentation has been updated

Type of change

• 🐛 Bug fix
• 🌟 New feature
• 🔨 Breaking change
• 📖 Refactoring / dependency upgrade / documentation
• other:

Summary by CodeRabbit

• New Features
  • Added support for Astro 7.
• Bug Fixes
  • Fixed compilation failures when using custom UserButton menu items in Astro 7.
• Chores
  • Removed Tailwind CSS from the default Astro template.
  • Updated Astro and related dependency versions in the template.
• Tests
  • Added an Astro v6 compatibility check and skipped a middleware expectation that differs in Astro 7 production routing.

[vercel]

The latest updates on your projects. Learn more about Vercel for GitHub.

Project	Deployment	Actions	Updated (UTC)
clerk-js-sandbox	Ready	Preview, Comment	Jun 23, 2026 9:51pm
swingset	Ready	Preview, Comment	Jun 23, 2026 9:51pm

[changeset-bot]

🦋 Changeset detected

Latest commit: a72ad23

The changes in this PR will be included in the next version bump.

This PR includes changesets to release 1 package

Name	Type
@clerk/astro	Minor

Not sure what this means? Click here to learn what changesets are.

Click here if you're a maintainer who wants to add another changeset to this PR

[coderabbitai]

📝 Walkthrough

Walkthrough

Adds Astro v7 to @clerk/astro peer dependencies, fixes a MenuItemRenderer.astro compile failure caused by a top-level return statement (now replaced with an else branch plus optional-chaining guards), removes Tailwind from the astro-node integration template, adds a Playwright build-compatibility test for Astro v6, and updates machine auth test infrastructure with Origin headers.

Changes

Astro v7 Compatibility

Layer / File(s)	Summary
Peer dependency expansion and changesets packages/astro/package.json, .changeset/floppy-buckets-help.md, .changeset/fresh-astro-menu-items.md	peerDependencies.astro is extended to include ^7.0.0. Two changeset entries record a minor release for Astro 7 support and a patch release for the UserButton menu item compile fix.
MenuItemRenderer inline script refactor packages/astro/src/astro-components/interactive/UserButton/MenuItemRenderer.astro	The top-level return guard that caused Astro 7 compile failures is replaced with an else branch. Optional chaining is added when accessing userButtonComponentMap and safeId, and the customMenuItems append is gated on both being present.
Integration template cleanup and compatibility tests integration/templates/astro-node/astro.config.mjs, integration/templates/astro-node/package.json, integration/tests/astro/compatibility.test.ts, integration/tests/astro/middleware.test.ts, integration/testUtils/machineAuthHelpers.ts	@astrojs/tailwind import, tailwind() call, and tailwindcss dependency are removed from the astro-node template; @astrojs/* and astro versions are bumped. A new serial Playwright test clones the app with pinned Astro v6 deps, builds it, and asserts the output excludes Illegal return statement. The double-encoded URL middleware test is skipped with an Astro 7 routing note. Machine auth tests add Origin header computation and header inclusion in session-token POST requests.

Estimated code review effort

🎯 2 (Simple) | ⏱️ ~12 minutes

Suggested reviewers

• alexcarpenter

Poem

🐇 Hop hop, no more return in the way,
Astro 7 compiles smoothly today!
Tailwind's gone from the template so bare,
Optional chaining floats through the air.
The bunny ships minor, patches, and tests—
v7 support is among the best! 🌟

🚥 Pre-merge checks | ✅ 5

✅ Passed checks (5 passed)

Check name	Status	Explanation
Description Check	✅ Passed	Check skipped - CodeRabbit’s high-level summary is enabled.
Title check	✅ Passed	The title 'feat(astro): Support Astro v7' clearly and concisely summarizes the main objective of the pull request—adding Astro v7 support.
Linked Issues check	✅ Passed	The PR successfully addresses the core requirement from issue #8963: refactoring MenuItemRenderer.astro to eliminate the invalid top-level return statement while preserving functionality.
Out of Scope Changes check	✅ Passed	All changes are directly scoped to enabling Astro v7 support: updating package versions, extending peer dependencies, fixing the compiler error, and adding compatibility tests.
Docstring Coverage	✅ Passed	No functions found in the changed files to evaluate docstring coverage. Skipping docstring coverage check.

_{✏️ Tip: You can configure your own custom pre-merge checks in the settings.}

✨ Finishing Touches

📝 Generate docstrings

• Create stacked PR
• Commit on current branch

---

_{Comment @coderabbitai help to get the list of available commands.}

[pkg-pr-new]

Open in StackBlitz

@clerk/astro

npm i https://pkg.pr.new/@clerk/astro@8974

@clerk/backend

npm i https://pkg.pr.new/@clerk/backend@8974

@clerk/chrome-extension

npm i https://pkg.pr.new/@clerk/chrome-extension@8974

@clerk/clerk-js

npm i https://pkg.pr.new/@clerk/clerk-js@8974

@clerk/electron

npm i https://pkg.pr.new/@clerk/electron@8974

@clerk/electron-passkeys

npm i https://pkg.pr.new/@clerk/electron-passkeys@8974

@clerk/eslint-plugin

npm i https://pkg.pr.new/@clerk/eslint-plugin@8974

@clerk/expo

npm i https://pkg.pr.new/@clerk/expo@8974

@clerk/expo-passkeys

npm i https://pkg.pr.new/@clerk/expo-passkeys@8974

@clerk/express

npm i https://pkg.pr.new/@clerk/express@8974

@clerk/fastify

npm i https://pkg.pr.new/@clerk/fastify@8974

@clerk/hono

npm i https://pkg.pr.new/@clerk/hono@8974

@clerk/localizations

npm i https://pkg.pr.new/@clerk/localizations@8974

@clerk/nextjs

npm i https://pkg.pr.new/@clerk/nextjs@8974

@clerk/nuxt

npm i https://pkg.pr.new/@clerk/nuxt@8974

@clerk/react

npm i https://pkg.pr.new/@clerk/react@8974

@clerk/react-router

npm i https://pkg.pr.new/@clerk/react-router@8974

@clerk/shared

npm i https://pkg.pr.new/@clerk/shared@8974

@clerk/tanstack-react-start

npm i https://pkg.pr.new/@clerk/tanstack-react-start@8974

@clerk/testing

npm i https://pkg.pr.new/@clerk/testing@8974

@clerk/ui

npm i https://pkg.pr.new/@clerk/ui@8974

@clerk/upgrade

npm i https://pkg.pr.new/@clerk/upgrade@8974

@clerk/vue

npm i https://pkg.pr.new/@clerk/vue@8974

commit: a72ad23

[wobsoriano]

dont need tailwind in this...

[github-actions]

API Changes Report

Generated by Break Check on 2026-06-23T21:51:58.060Z

Summary

Metric	Count
Packages analyzed	19
Packages with changes	0
🔴 Breaking changes	0
🟡 Non-breaking changes	0
🟢 Additions	0

No API Changes Detected

All packages have stable APIs with no detected changes.

---

Report generated by Break Check

_{Last ran on a72ad23.}

[wobsoriano]

the change basically just removed the early return; in favor of wrapping the menu-item registration logic in the existing else branch

[wobsoriano]

Astro v6 compatibility smoke test

[coderabbitai]

🧹 Nitpick comments (1)

integration/tests/astro/middleware.test.ts (1)

183-186: 📐 Maintainability & Code Quality | 🔵 Trivial | ⚡ Quick win

Avoid a permanent unconditional skip for this regression case.

test.skip(true, ...) disables this check in every run, so routing/auth regressions here can silently reappear. Prefer a tracked test.fixme (with issue ID) or a version-gated skip so coverage returns automatically when the matcher behavior is fixed.

🤖 Prompt for AI Agents

Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.

In `@integration/tests/astro/middleware.test.ts` around lines 183 - 186, The
test.skip(true, ...) call unconditionally disables this regression test in every
run, which allows routing and auth regressions to silently reappear. Replace
this with test.fixme(...) that includes a tracked issue ID reference, or
implement version-gated conditional skip logic based on the Astro version so the
test coverage automatically resumes when the routing normalization issue is
resolved. The key is to make the skip temporary and tracked rather than
permanent.

🤖 Prompt for all review comments with AI agents

Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.

Nitpick comments:
In `@integration/tests/astro/middleware.test.ts`:
- Around line 183-186: The test.skip(true, ...) call unconditionally disables
this regression test in every run, which allows routing and auth regressions to
silently reappear. Replace this with test.fixme(...) that includes a tracked
issue ID reference, or implement version-gated conditional skip logic based on
the Astro version so the test coverage automatically resumes when the routing
normalization issue is resolved. The key is to make the skip temporary and
tracked rather than permanent.

---

ℹ️ Review info

⚙️ Run configuration

Configuration used: Repository YAML (base), Repository UI (inherited)

Review profile: CHILL

Plan: Pro Plus

Run ID: 1b4b2e9c-0535-4606-8b56-033870a8b624

📥 Commits

Reviewing files that changed from the base of the PR and between fecc5e8 and 2db93cb.

📒 Files selected for processing (4)

• integration/tests/astro/compatibility.test.ts
• integration/tests/astro/middleware.test.ts
• packages/astro/package.json
• packages/astro/src/astro-components/interactive/UserButton/MenuItemRenderer.astro

🚧 Files skipped from review as they are similar to previous changes (3)

• integration/tests/astro/compatibility.test.ts
• packages/astro/package.json
• packages/astro/src/astro-components/interactive/UserButton/MenuItemRenderer.astro

[coderabbitai]

Actionable comments posted: 1

🤖 Prompt for all review comments with AI agents

Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.

Inline comments:
In `@integration/testUtils/machineAuthHelpers.ts`:
- Around line 275-281: In the POST request handling blocks, the status assertion
must be moved before the JSON parsing. Currently, the code calls
postWithSessionRes.json() before checking postWithSessionRes.status(), which
means if the response is an error, the json() call may fail before the status
assertion runs, obscuring the actual failure. Reorder the statements so that
expect(postWithSessionRes.status()).toBe(200) is called immediately after the
post request completes, before calling await postWithSessionRes.json(). Apply
this same fix to both the postWithSessionRes block and the similar block
referenced in the "Also applies to" comment.

🪄 Autofix (Beta)

Fix all unresolved CodeRabbit comments on this PR:

• Push a commit to this branch (recommended)
• Create a new PR with the fixes

---

ℹ️ Review info

⚙️ Run configuration

Configuration used: Repository YAML (base), Repository UI (inherited)

Review profile: CHILL

Plan: Pro Plus

Run ID: af4cda56-7137-4065-a8e4-43d80f4d8263

📥 Commits

Reviewing files that changed from the base of the PR and between 2db93cb and a72ad23.

📒 Files selected for processing (1)

• integration/testUtils/machineAuthHelpers.ts

[coderabbitai]

🩺 Stability & Availability | 🟡 Minor | ⚡ Quick win

Assert response status before parsing JSON bodies in POST branches.

json() can throw on non-JSON error responses before the status assertion runs, which obscures the real failure. Assert status first, then parse.

Suggested patch

       const postWithSessionRes = await u.page.request.post(url, {
         headers: { Origin: origin },
       });
-      const sessionData = await postWithSessionRes.json();
       expect(postWithSessionRes.status()).toBe(200);
+      const sessionData = await postWithSessionRes.json();
       expect(sessionData.userId).toBe(fakeBapiUser.id);
       expect(sessionData.tokenType).toBe(TokenType.SessionToken);

       const postWithApiKeyRes = await u.page.request.post(url, {
         headers: { Authorization: `Bearer ${fakeAPIKey.secret}`, Origin: origin },
       });
-      const apiKeyData = await postWithApiKeyRes.json();
       expect(postWithApiKeyRes.status()).toBe(200);
+      const apiKeyData = await postWithApiKeyRes.json();
       expect(apiKeyData.userId).toBe(fakeBapiUser.id);
       expect(apiKeyData.tokenType).toBe(TokenType.ApiKey);

Also applies to: 283-285

🤖 Prompt for AI Agents

Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.

In `@integration/testUtils/machineAuthHelpers.ts` around lines 275 - 281, In the
POST request handling blocks, the status assertion must be moved before the JSON
parsing. Currently, the code calls postWithSessionRes.json() before checking
postWithSessionRes.status(), which means if the response is an error, the json()
call may fail before the status assertion runs, obscuring the actual failure.
Reorder the statements so that expect(postWithSessionRes.status()).toBe(200) is
called immediately after the post request completes, before calling await
postWithSessionRes.json(). Apply this same fix to both the postWithSessionRes
block and the similar block referenced in the "Also applies to" comment.

[wobsoriano]

dont think it's worth it to update since we're removing it anyway