feat: publish SSR under deprecated auth-helpers package names#127
Conversation
mandarini
force-pushed
the
feat/auth-helpers-release
branch
from
af085d9 to
3eb87ae
Compare
mandarini
force-pushed
the
feat/auth-helpers-release
branch
from
3eb87ae to
68da49a
Compare
mandarini
changed the title
mandarini
force-pushed
the
feat/auth-helpers-release
branch
from
68da49a to
b8a0358
Compare
|
I assume that if we're going to "break it loudly" then we're also going to shout it from the rooftops loudly one last time?? If I recall from past discussions, posts, etc, there are devs using the deprecated packages for targeted reasons - the react one specifically comes to mind but I may be mistaking it for the nextjs version. Perhaps the "pre-LLM" devs have all migrated away by now, but if we're gonna up-and-break folks then I'd recommend treading empathetically on this one. |
|
@j4w8n thank you for your comment! What would your suggestion be in this case? Along with merging this PR, to create a new discussion post, or? |
|
Hi @mandarini. Thanks for the follow-up. I think we have two audiences here: developers and community support. I'd consider these:
|
|
Maybe it won't be as bad as I think; especially if the published versions of the auth helpers stays the same. |
|
@j4w8n the |
|
Absolutely. But that confirms why I think it would be good to give people a heads-up. At the end of the day, it's Supabase's call; I just wanted to make sure I expressed my concern. |
|
I'll be merging this PR @j4w8n , thank you for all your comments. I will follow along with some of the things you suggested to support the community through the migration! |
🤖 I have created a release *beep* *boop* --- ## [0.8.0](v0.7.0...v0.8.0) (2025-11-26) ### Features * adds `cookies.encode` option allowing minimal cookie sizes ([#126](#126)) ([cf38b22](cf38b22)) * publish SSR under deprecated auth-helpers package names ([#127](#127)) ([e8b6102](e8b6102)) * update supabase-js to latest ([#133](#133)) ([d65044d](d65044d)) * update supabase-js to latest ([#145](#145)) ([08bf7d6](08bf7d6)) ### Bug Fixes * cookies console warnings ([#136](#136)) ([64ff6b3](64ff6b3)) --- This PR was generated with [Release Please](https://github.com/googleapis/release-please). See [documentation](https://github.com/googleapis/release-please#release-please). Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
3 participants
What kind of change does this PR introduce?
Feature - Package consolidation and multi-package publishing
What is the current behavior?
Currently,
@supabase/ssris only published under its own package name. Meanwhile, the deprecated@supabase/auth-helpers-*packages continue to receive thousands of weekly downloads, probably due to LLMs recommending them in code suggestions despite being deprecated for a long time.The deprecated packages:
@supabase/auth-helpers-nextjs(159k weekly downloads)@supabase/auth-helpers-react@supabase/auth-helpers-remix@supabase/auth-helpers-sveltekitWhat is the new behavior?
This PR enables
@supabase/ssrto be published under multiple package names simultaneously:Multi-package publishing: The release workflow now publishes the same codebase under 5 different npm package names:
@supabase/ssr(primary package)@supabase/auth-helpers-nextjs@supabase/auth-helpers-react@supabase/auth-helpers-remix@supabase/auth-helpers-sveltekitConsole warnings: When imported as a deprecated auth-helpers package, users see a prominent warning.
Updated documentation: README clearly explains the package consolidation and lists all deprecated packages.
Additional context
Users of the old auth-helpers packages will experience breaking changes when updating, as the APIs are not backward compatible. This is intentional - as discussed internally, we want to "break it loudly" to force users to notice and migrate.
Why this approach?
Related: supabase/auth-helpers#811