The Backend SDK now includes createBulk() on WaitlistEntryAPI, so you can create multiple waitlist entries in a single API call. Pass an array of entries with optional notify flags per entry. Ideal for CSV imports, CRM syncs, and batch replay during traffic spikes.
SignUp now supports email link verification through sendEmailLink() and waitForEmailLinkVerification(). Users receive a verification link instead of a code, and the flow completes automatically once they click. Verification status (verified, expired, client mismatch) is exposed on the verifications object, and relative redirect URLs are safely resolved to absolute URLs per environment.
<ClerkProvider dynamic> now supports async initialState on React 19+. Instead of awaiting auth state at the top-level provider, session data resolves where it's consumed in hooks via React.use(). No Suspense boundary needed around your provider, and root layouts stay static and predictable.
When "Require multi-factor authentication" is enabled, users without MFA are now prompted to complete setup on their next sign-in or immediately after sign-up via a new setup_mfa session task, with full UI for SMS and authenticator app enrollment plus backup codes.
@clerk/nextjs now detects when auth() or currentUser() is called inside a Next.js 16 "use cache" function and throws a clear, actionable error with a code example showing the correct pattern. No more cryptic headers() failures when adopting cache components.