auth0 · daniloasis-auth0 · Nov 27, 2025 · Jan 7, 2026 · Nov 27, 2025 · Jan 7, 2026
@@ -0,0 +1,23 @@
+name: Vale
+
+on:
+  pull_request:
+    paths:
+      # Add paths to files we want Vale to check
+      - 'auth4genai/**/*.md'
+      - 'auth4genai/**/*.mdx'
+      - 'auth4genai/**/*.jsx'
+
+jobs:
+  vale:
+    name: runner / vale
+    runs-on: ubuntu-latest
+    steps:
+      - name: Install mdx2vast
+        run: npm install -g mdx2vast
+
+      - uses: actions/checkout@v4
+      - uses: errata-ai/vale-action@v2.1.1
+        with:
+          files: '["auth4genai/"]'
+          fail_on_error: true
@@ -22,7 +22,7 @@
 ; - Only use {/* vale off */} / {/* vale on */} for
 ;   narrow, one-off cases (quotes, unusual examples).
 
-StylesPath = .vale/styles
+StylesPath = auth4genai/.vale/styles
 
 ; Only report error-level issues. Suggestions and warnings are suppressed
 ; entirely so devs are not blocked on minor style nits.

@@ -386,7 +386,7 @@
       }
     ],
     "socials": {
-      "x": "https://twitter.com/auth0",
+      "x": "https://x.com/auth0",
       "github": "https://github.com/auth0/auth-for-genai",
       "linkedin": "https://linkedin.com/company/auth0"
     }

@@ -33,7 +33,7 @@ Make sure you have [uv](https://docs.astral.sh/uv/) installed and run the follow
 ```bash wrap lines
 cd backend
 uv sync
-uv add "auth0-ai-langchain>=1.0.0b5" "langgraph>=0.5.4" langchain-openai "langgraph-cli[inmem]>=0.3.6" --prerelease=allow
+uv add "auth0-ai-langchain>=1.0.1" "langgraph>=0.5.4" langchain-openai "langgraph-cli[inmem]>=0.3.6" --prerelease=allow
 ```
 
 ### Update the environment file

@@ -34,7 +34,7 @@ Make sure you have [uv](https://docs.astral.sh/uv/) installed and run the follow
 ```bash wrap lines
 cd backend
 uv sync
-uv add "auth0-ai-langchain>=1.0.0b5" openfga-sdk langgraph langchain-openai "langgraph-cli[inmem]" --prerelease=allow
+uv add "auth0-ai-langchain>=1.0.1" openfga-sdk langgraph langchain-openai "langgraph-cli[inmem]" --prerelease=allow
 ```
 
 ### Update the environment file

@@ -136,7 +136,7 @@ Make sure you have [uv](https://docs.astral.sh/uv/) installed and run the follow
 ```bash wrap lines
 cd backend
 uv sync
-uv add "auth0-ai-langchain>=1.0.0b5" "langgraph>=0.5.4" langchain-openai "langgraph-cli[inmem]>=0.3.6" google-api-python-client --prerelease=allow
+uv add "auth0-ai-langchain>=1.0.1" "langgraph>=0.5.4" langchain-openai "langgraph-cli[inmem]>=0.3.6" google-api-python-client --prerelease=allow
 ```
 
 ### Update your environment file

@@ -3,20 +3,17 @@
 
 # See Lychee docs for more config info: https://lychee.cli.rs/guides/config/
 
-cache = true               # TODO: Update GitHub Action to use the cache
 format = "detailed"        # Default output format is compact, so show more info
 verbose = "error"          # List additional information in output about errors
 no_progress = true         # Hide progress bar
 include_fragments = true   # Check anchor links
 include_verbatim = false   # Don't check links inside code blocks
 exclude_all_private = true # Exclude link local, loopback, and private IPs.
 
-# Treat these HTTP response codes as success.
-# 100-103, 200–299: Successful status codes. Lychee's default accept list.
-# 302 Found, 307 Temporary Redirect: Used in auth flows and login-gated docs.
-# 403 Forbidden: Often from blocking unauthenticated requests or bots.
-# 429 Too Many Requests: Often from rate-limiting bots.
-accept = ["100..=103", "200..=299", "302", "307", "403", "429"]
+# Cache only successful results to avoid re-checking valid links.
+# TODO: Update GitHub Action to use the cache
+cache = true
+cache_exclude_status = "300.."
 
 # Set a root dir so Lychee can resolve relative links to URIs, even though we
 # exclude relative links in the actual check.
@@ -31,23 +28,45 @@ exclude = [
     '^https://dashboard\.fga\.dev',
     '^https://accounts\.auth0\.com',
     '^https://oktawiki\.atlassian\.net/',
+    '^https://partners\.marketplace\.auth0\.com',
 
     # Exclude other sites that require interactive login.
     '^https://admin\.microsoft\.com',
     '^https://app\.mailjet\.com',
-    '^https://console\.aws\.amazon\.com',
+    '^https://(console|portal)\.aws\.amazon\.com',
+    '^https://portal\.azure\.com',
+    '^https://my\.sailthru\.com',
+    '^https://login\.constantcontact\.com',
+    '^https://console\.developers\.google\.com',
 
-    # Exclude anchors on our dynamically-rendered API docs.
+    # Exclude npmjs because they aggressively 403 anything bot-shaped.
+    '^https://www\.npmjs\.(com|org)',
+
+    # Exclude schema namespaces.
+    '^http://schemas\.xmlsoap\.org',
+    '^https://aws\.amazon\.com/SAML/Attributes',
+
+
+    # Exclude anchor links on pages that either load dynamically or use anchors
+    # in URLs in strange ways that don't correspond to page anchors.
+
+    # Our own dynamically-rendered API docs.
     '^https://auth0\.com/docs(?:/(fr-ca|ja-jp))?/api/authentication.*#',
     '^https://auth0\.com/docs(?:/(fr-ca|ja-jp))?/api/management/v2.*#',
-
-    # Exclude GitHub links specific lines in a file because Lychee can't check
-    # the line highlighting anchor.
-    '^https://github.com/.*#L[0-9]+',
+    # Dynamic docs
+    '^https://developer.adobe.com/marketo-apis/api/.*/#',
+    '^https://developer.apple.com/documentation/.*#',
+    '^https://developers.facebook.com/docs/.*#',
+    # GitHub line highlighting is dynamic.
+    '^https://github\.com/.*#L[0-9]+',
+    # canirequire uses the anchor to hold the search term.
+    '^https://auth0-extensions\.github\.io/canirequire/#',
+    # Alterian uses anchors to separate pages...?
+    '^https://cm.help.alterian.com/.*#',
 
     # Exclude non-resolving links in components (e.g. TokenVaultConfigBlock)
     # because Lychee doesn't recognize the component to skip the check.
     # TODO: Look into file preprocessing to remove links in components.
-    '^https://graph.microsoft.com',
-    '^https://auth.snapchat.com',
+    '^https://graph\.microsoft\.com',
+    '^https://auth\.snapchat\.com'
 ]