# Changelog August 4, 2023

## ⛔️ Prevent Fake Accounts with Disposable Email Blocking

[View video](./01b656da0ea501ab509b413199953d50bfbe8922-1200x630.mp4)

Clerk now offers the ability to block disposable and temporary emails during sign-up. When this setting is enabled, emails entered during sign-up will be checked in real-time against a frequently updated database of over 160,000 known disposable email providers. If a match is found, the sign-up is blocked to prevent abuse from invalid accounts.

The setting can be enabled on the Settings page of the [Clerk Dashboard](https://dashboard.clerk.com) →

## ✨ Other Fixes & Improvements

- Enabled the `allowedRedirectOrigins` [prop](https://clerk.com/docs/reference/clerk-react/clerkprovider.md) in Clerk Hosted Pages to mitigate [unvalidated redirect vulnerabilities](https://cheatsheetseries.owasp.org/cheatsheets/Unvalidated_Redirects_and_Forwards_Cheat_Sheet.html) in production instances. With this setting, only same-origin redirects will be allowed from Hosted Pages.
- Fixed bugs in username sorting logic for the `Users` and `Members` tables in the Clerk Dashboard.
- Added a `user.hasImage` boolean to Clerk's [Frontend API](https://clerk.com/docs/reference/frontend-api) and [ClerkJS](https://www.npmjs.com/package/@clerk/clerk-js) package. This field indicates whether the user has a profile image and, if they do, whether their profile image was uploaded by the user or was sourced from their connected social provider.
  - This field can, for example, be used to ensure users have a profile image by allowing you to leverage it to build logic and a UI to display a profile image uploader if the user has signed up without a social provider and has not yet added a profile image.
- Added a new JWT template for [WunderGraph](https://wundergraph.com) in the Integrations section of the Clerk Dashboard.

## 📅 Events

![JWT token implementation guide](./c9ae8c00a0b84ad3a5427cc74fab7d0a1898cec1-2400x1260.png)

We're excited to announce that Clerk is sponsoring React Rally in Salt Lake City on August 17th and 18th. If you're planning on attending, let us know – we'd love to meet you! We'll have cookies, swag, and a surprise or two. And if you're not sure, there's still time 😉

[Grab your ticket here →](https://www.reactrally.com)

## 📚 Resources

- [Implementing Role-Based Access Control in the Next.js App Router](https://dev.to/musebe/implementing-role-based-access-control-in-nextjs-app-router-using-clerk-organizations-566g): In this tutorial written by [Eugene Musebe](https://twitter.com/_musebe), you will learn how to integrate RBAC in your Next.js app using organizations powered by Clerk.
- [How to Build an AI Companion](https://youtu.be/PjYWpd7xkaM): In this 6-hour tutorial on the [Code with Antonio](https://youtu.be/PjYWpd7xkaM) YouTube channel, you’ll learn how to build an AI Companion app using [Pinecone](https://www.pinecone.io), [Replicate](https://replicate.com), [Planetscale](https://planetscale.com), [Shadcn UI](https://ui.shadcn.com), and more!
- [How We Roll – Chapter 9: Infrastructure](https://clerk.com/blog/how-we-roll-infrastructure.md): In this chapter of How We Roll, [Dev Agrawal](https://twitter.com/devagrawal09) provides an in-depth look at the infrastructure that powers Clerk’s authentication capabilities.
- [A Comprehensive Guide to GDPR-Compliant Auth Solutions](https://medium.com/@sergei.nepryahin.work/a-comprehensive-guide-to-gdpr-compliant-auth-solutions-d20725edfb6c): If you’re interested in learning about GDPR compliant auth solutions, you’ll enjoy this in-depth article by [MadaShindeInai](https://twitter.com/madashindeinai).
- [Build and Deploy a Threads App](https://www.youtube.com/watch?v=O5cmLDVTgAs): Learn how to build a full stack Threads App in this [YouTube tutorial from JavaScript Mastery](https://www.youtube.com/watch?v=O5cmLDVTgAs) using [Next.js](https://nextjs.org), [Clerk](https://clerk.com/), [MongoDB](https://mongodb.com), [UploadThing](https://uploadthing.com), [Zod](https://zod.dev), and more!

## 🙌 Community Shoutouts

- Kudos to [Subham Bharadwaj](https://twitter.com/subh4mBharadwaz) on launching Scribbly, a digital journal app built with Next.js, [Shadcn UI](https://ui.shadcn.com), [Tinybird](https://www.tinybird.co) and auth powered by Clerk. Nice work!
- Big thank you to [Thibault Le Ouay](https://twitter.com/thibaultleouay) for open sourcing [openstatus.dev](https://www.openstatus.dev), a Statuspage alternative built with Clerk! The project is available [on GitHub](https://github.com/openstatusHQ/openstatus) for anyone to check out and contribute. Appreciate you contributing to open source software and giving back to the developer community!
- Shout out to [Ahmed El Aksaan](https://twitter.com/ixahmedxii), the founder of [Noodle.run](https://noodle.run), an open-source platform to help students manage and help super-power their productivity. They have already hit [10,000 GitHub stars](https://github.com/ixahmedxi/noodle), and growing, in record time!

Stay tuned for future updates. If you have feedback or suggestions, leave us feedback on the docs via [Docsly](https://docsly.dev), tweet us at [@clerk](https://x.com/clerk), or join the [Clerk Community](https://clerk.com/discord) on Discord.