Bumps [@auth0/auth0-spa-js](https://github.com/auth0/auth0-spa-js) from 2.2.0 to 2.3.0. <details> <summary>Release notes</summary> Sourced from <a href="https://github.com/auth0/auth0-spa-js/releases"><code>@auth0/auth0-spa-js</code>'s releases</a>. <blockquote> <h2>v2.3.0</h2> Fixed <ul> <li>Fix: Token Exchange Ignoring Scope and Audience Parameters <a href="https://redirect.github.com/auth0/auth0-spa-js/pull/1365">#1365</a> (<a href="https://github.com/tusharpandey13">tusharpandey13</a>)</li> <li>bugfix: Correctly extract origin from domainUrl <a href="https://redirect.github.com/auth0/auth0-spa-js/pull/1372">#1372</a> (<a href="https://github.com/tusharpandey13">tusharpandey13</a>)</li> </ul> </blockquote> </details> <details> <summary>Changelog</summary> Sourced from <a href="https://github.com/auth0/auth0-spa-js/blob/main/CHANGELOG.md"><code>@auth0/auth0-spa-js</code>'s changelog</a>. <blockquote> <h2><a href="https://github.com/auth0/auth0-spa-js/tree/v2.3.0">v2.3.0</a> (2025-07-16)</h2> <a href="https://github.com/auth0/auth0-spa-js/compare/v2.2.0...v2.3.0">Full Changelog</a> Fixed <ul> <li>Fix: Token Exchange Ignoring Scope and Audience Parameters <a href="https://redirect.github.com/auth0/auth0-spa-js/pull/1365">#1365</a> (<a href="https://github.com/tusharpandey13">tusharpandey13</a>)</li> <li>bugfix: Correctly extract origin from domainUrl <a href="https://redirect.github.com/auth0/auth0-spa-js/pull/1372">#1372</a> (<a href="https://github.com/tusharpandey13">tusharpandey13</a>)</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/auth0/auth0-spa-js/commit/17a7ad97bc9d40484453fcb7526ebf627716774a"><code>17a7ad9</code></a> Release v2.3.0 (<a href="https://redirect.github.com/auth0/auth0-spa-js/issues/1378">#1378</a>)</li> <li><a href="https://github.com/auth0/auth0-spa-js/commit/d79d576ad037b5df7a2994ebb9a9f2f78c579e87"><code>d79d576</code></a> Revert "fix: use npm registry for <code>@auth0/component-cdn-uploader</code> dependency" (...</li> <li><a href="https://github.com/auth0/auth0-spa-js/commit/e21f0c5090200b3ef10da7adebb0e33c1e8b5a63"><code>e21f0c5</code></a> Update doc string explaining organization name parameter (<a href="https://redirect.github.com/auth0/auth0-spa-js/issues/1333">#1333</a>)</li> <li><a href="https://github.com/auth0/auth0-spa-js/commit/520c5c00ea87dd29b083e126820e610e58e05013"><code>520c5c0</code></a> Fix: Token Exchange Ignoring Scope and Audience Parameters (<a href="https://redirect.github.com/auth0/auth0-spa-js/issues/1365">#1365</a>)</li> <li><a href="https://github.com/auth0/auth0-spa-js/commit/94379654610515f337ba672d1b8413cccfa006d3"><code>9437965</code></a> bugfix: Correctly extract origin from domainUrl (<a href="https://redirect.github.com/auth0/auth0-spa-js/issues/1372">#1372</a>)</li> <li><a href="https://github.com/auth0/auth0-spa-js/commit/6b584e85159075804e9b4c3aa8ac171f90499320"><code>6b584e8</code></a> build(deps-dev): Bump rollup from 2.79.1 to 2.79.2 (<a href="https://redirect.github.com/auth0/auth0-spa-js/issues/1309">#1309</a>)</li> <li><a href="https://github.com/auth0/auth0-spa-js/commit/6dbf94ca836846bf5da8298f5fcd87e5e3362e32"><code>6dbf94c</code></a> Merge branch 'main' into dependabot/npm_and_yarn/rollup-2.79.2</li> <li><a href="https://github.com/auth0/auth0-spa-js/commit/2e2c0d7362e68482d3384174d30e97b93d15a657"><code>2e2c0d7</code></a> build(deps-dev): Bump follow-redirects from 1.15.3 to 1.15.6 (<a href="https://redirect.github.com/auth0/auth0-spa-js/issues/1259">#1259</a>)</li> <li><a href="https://github.com/auth0/auth0-spa-js/commit/ab805392fb13d79638019340e6de73160149f018"><code>ab80539</code></a> Merge branch 'main' into dependabot/npm_and_yarn/follow-redirects-1.15.6</li> <li><a href="https://github.com/auth0/auth0-spa-js/commit/188fc54a70cfd361ea5a25b04949440b03fb6735"><code>188fc54</code></a> fix: use npm registry for <code>@auth0/component-cdn-uploader</code> dependency (<a href="https://redirect.github.com/auth0/auth0-spa-js/issues/1364">#1364</a>)</li> <li>Additional commits viewable in <a href="https://github.com/auth0/auth0-spa-js/compare/v2.2.0...v2.3.0">compare view</a></li> </ul> </details> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=@auth0/auth0-spa-js&package-manager=npm_and_yarn&previous-version=2.2.0&new-version=2.3.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>