Skip to content

chore: bump Kysely to 0.29#2626

Merged
ymc9 merged 7 commits into
devfrom
fix/better-auth-type-compat
May 13, 2026
Merged

chore: bump Kysely to 0.29#2626
ymc9 merged 7 commits into
devfrom
fix/better-auth-type-compat

Conversation

@ymc9
Copy link
Copy Markdown
Member

@ymc9 ymc9 commented Apr 28, 2026
edited by coderabbitai Bot
Loading

Summary

  • @better-auth/core gets two separate pnpm store instances because @better-auth/cli pulls in @better-auth/telemetry, which creates a different peer dependency resolution context
  • Importing BetterAuthOptions and Where directly from @better-auth/core in adapter.ts resolved to the wrong instance — incompatible with the types used internally by better-auth/adapters's createAdapterFactory
  • Fix by importing those types from better-auth instead, which uses the same @better-auth/core instance as createAdapterFactory
  • Also adds a pnpm override to pin @better-auth/core to 1.4.19 to prevent future drift

Test plan

  • pnpm --filter @zenstackhq/better-auth build completes without TypeScript errors
  • Run @zenstackhq/better-auth tests: pnpm --filter @zenstackhq/better-auth test

🤖 Generated with Claude Code

Summary by CodeRabbit

  • Chores

    • Pinned @better-auth/core to 1.4.19 and retained the existing lodash override for consistent installs.
    • Updated workspace Kysely pin to 0.29.0.

  • Refactor

    • Internal type/import refinements with no public API changes.

  • Bug Fixes

    • ORM traversal extended to support additional schema operation types.

  • Tests

    • Bun end-to-end tests broadened to include MySQL at the test/type level.

@ymc9 @claude
fix(better-auth): resolve type incompatibility from duplicate @better…
6d425fd 
…-auth/core instances

pnpm creates two instances of @better-auth/core due to different peer
dependency contexts (@better-auth/cli pulls in @better-auth/telemetry which
creates a separate resolution). Importing BetterAuthOptions and Where
directly from @better-auth/core resolved to the wrong instance, making
those types incompatible with the ones used internally by better-auth/adapters.

Fix by importing BetterAuthOptions and Where from better-auth instead,
which resolves to the same instance that createAdapterFactory uses.
Also pin @better-auth/core via pnpm override to prevent further drift.

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
@coderabbitai
Copy link
Copy Markdown
Contributor

coderabbitai Bot commented Apr 28, 2026
edited
Loading

Note

Reviews paused

It looks like this branch is under active development. To avoid overwhelming you with review comments due to an influx of new commits, CodeRabbit has automatically paused this review. You can configure this behavior by changing the reviews.auto_review.auto_pause_after_reviewed_commits setting.

Use the following commands to manage reviews:

  • @coderabbitai resume to resume automatic reviews.
  • @coderabbitai review to trigger a single review.

Use the checkboxes below for quick actions:

  • ▶️ Resume reviews
  • 🔍 Trigger review
📝 Walkthrough

Walkthrough

Pin @better-auth/core to 1.4.19 in pnpm overrides (keeping the existing lodash override), bump workspace kysely catalog to ~0.29.0, adjust type imports and remove an explicit return type in the better-auth adapter, add three Kysely AST visitor methods, and widen Bun e2e test provider typing.

Changes

Dependency overrides

Layer / File(s) Summary
pnpm overrides
package.json		 Added a pnpm override pinning @better-auth/core to 1.4.19; retained the existing lodash override rule.

Workspace manifest

Layer / File(s) Summary
Kysely catalog bump
pnpm-workspace.yaml		 Updated workspace dependency catalog entry for kysely from ~0.28.16 to ~0.29.0.

Auth adapter

Layer / File(s) Summary
Type import and return signature adjustments
packages/auth-adapters/better-auth/src/adapter.ts		 Switched type-only imports (BetterAuthOptions, Where) from @better-auth/core to better-auth and removed the explicit DBAdapter<BetterAuthOptions> return type annotation on the factory function returned by zenstackAdapter, relying on TypeScript inference; runtime behavior unchanged.

ORM Kysely utils

Layer / File(s) Summary
Operation node visitor extensions
packages/orm/src/utils/kysely-utils.ts		 Imported AlterTypeNode, AddValueNode, RenameValueNode and added visitAlterType, visitAddValue, and visitRenameValue protected methods to DefaultOperationNodeVisitor, each delegating to defaultVisit.

Bun E2E tests

Layer / File(s) Summary
Bun test typings and import variant
tests/runtimes/bun/bun-e2e.test.ts		 Changed the BunSqliteDialect import to an explicit .js path and widened the provider/createClient typing to include 'mysql' (typing/API level only; no mysql wiring added in this file).

Estimated code review effort

🎯 3 (Moderate) | ⏱️ ~20 minutes

Poem

🐰 I nibble pins and tidy imports tonight,
I hop through versions till the locks are right,
New visitors tiptoe through the AST,
Types breathe easier — inferred, not cast,
Small hops, soft changes, the tree feels light.

🚥 Pre-merge checks | ✅ 4 | ❌ 1

❌ Failed checks (1 warning)

Check name Status Explanation Resolution
Docstring Coverage ⚠️ Warning Docstring coverage is 0.00% which is insufficient. The required threshold is 80.00%. Write docstrings for the functions missing them to satisfy the coverage threshold.
✅ Passed checks (4 passed)
Check name Status Explanation
Description Check ✅ Passed Check skipped - CodeRabbit’s high-level summary is enabled.
Title check ✅ Passed The title 'chore: bump Kysely to 0.29' accurately describes the primary change (Kysely version bump from 0.28.16 to 0.29.0 in pnpm-workspace.yaml), which is one of the key changes in the PR.
Linked Issues check ✅ Passed Check skipped because no linked issues were found for this pull request.
Out of Scope Changes check ✅ Passed Check skipped because no linked issues were found for this pull request.

✏️ Tip: You can configure your own custom pre-merge checks in the settings.

✨ Finishing Touches
🧪 Generate unit tests (beta)
  • Create PR with unit tests
  • Commit unit tests in branch fix/better-auth-type-compat

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

Comment @coderabbitai help to get the list of available commands and usage tips.

@ymc9 ymc9 changed the title fix(better-auth): resolve type incompatibility from duplicate @better-auth/core instances chore: bump Kysely to 0.29 Apr 28, 2026
@claude
Copy link
Copy Markdown
Contributor

claude Bot commented Apr 28, 2026
edited
Loading

Claude finished @ymc9's task —— View job

PR Review: Better Auth Type Compatibility Fix

Code Review Analysis

This PR addresses a legitimate dependency resolution issue with Better Auth that causes type incompatibilities. Here's my comprehensive review:

Code Quality & Best Practices

Excellent Solution: The fix correctly addresses the root cause by importing types from the unified better-auth package rather than directly from @better-auth/core. This ensures type consistency with the createAdapterFactory function.

Clean Changes:

  • Line 1 in adapter.ts: Consolidated imports from better-auth instead of separate packages
  • Removed unused DBAdapter import that was causing type conflicts
  • Simplified return type annotation on line 215 (removing explicit DBAdapter constraint)

Dependency Management

Smart Prevention: The pnpm override in package.json ("@better-auth/core": "1.4.19") prevents future version drift that could reintroduce this issue. This is a proactive approach to dependency management.

Consistent Versioning: The override aligns with the devDependency versions already specified in the Better Auth package.

Bug Fix Assessment

Root Cause Correctly Identified: The issue stems from @better-auth/cli pulling in @better-auth/telemetry, which creates a separate peer dependency resolution context for @better-auth/core. This results in two different instances with incompatible types.

Appropriate Solution: Using the unified better-auth package ensures the same @better-auth/core instance is used throughout the dependency tree.

Security Considerations

No Security Issues: The changes only modify import sources and don't introduce any security vulnerabilities. The pnpm override actually improves security by ensuring consistent dependency versions.

⚠️ Performance Considerations

Minimal Impact: The import consolidation has negligible performance impact. The pnpm override may slightly increase bundle size if it prevents deduplication, but this is necessary for type safety.

⚠️ Test Coverage Assessment

Test Plan Provided: The PR description includes appropriate testing steps:

  • Build verification for the package
  • Running the package test suite

Recommendation: Consider adding a regression test to detect future Better Auth version conflicts, possibly in the CI pipeline.

📋 Minor Suggestions

  1. Documentation: Consider adding a comment explaining the import strategy to prevent future refactoring back to @better-auth/core
  2. Monitoring: Set up alerts for Better Auth version updates to review the pnpm override necessity

🎯 Overall Assessment

This is a well-executed fix that:

  • ✅ Addresses the root cause correctly
  • ✅ Implements appropriate preventive measures
  • ✅ Maintains code quality and type safety
  • ✅ Uses industry best practices for dependency management

Recommendation: Approve - This fix properly resolves the type compatibility issue with a clean implementation and appropriate safeguards.

@claude
Copy link
Copy Markdown
Contributor

claude Bot commented Apr 28, 2026
edited
Loading

Claude finished @ymc9's task —— View job

PR Review: Better Auth Type Compatibility Fix

Todo List

  • Analyze changed files and understand the type compatibility issue
  • Review code quality and best practices
  • Check for potential bugs or security concerns
  • Assess performance implications
  • Evaluate test coverage approach
  • Provide comprehensive review feedback

Code Review Analysis

This PR addresses a legitimate dependency resolution issue with Better Auth that causes type incompatibilities. Here's my comprehensive review:

Code Quality & Best Practices

Excellent Solution: The fix correctly addresses the root cause by importing types from the unified better-auth package rather than directly from @better-auth/core. This ensures type consistency with the createAdapterFactory function.

Clean Changes:

  • packages/auth-adapters/better-auth/src/adapter.ts:1 - Consolidated imports from better-auth instead of separate packages
  • Removed unused DBAdapter import that was causing type conflicts
  • Simplified return type annotation on line 215 (removing explicit DBAdapter constraint)

Dependency Management

Smart Prevention: The pnpm override in package.json:67 ("@better-auth/core": "1.4.19") prevents future version drift that could reintroduce this issue. This is a proactive approach to dependency management.

Consistent Versioning: The override aligns with the devDependency versions already specified in the Better Auth package.

Bug Fix Assessment

Root Cause Correctly Identified: The issue stems from @better-auth/cli pulling in @better-auth/telemetry, which creates a separate peer dependency resolution context for @better-auth/core. This results in two different instances with incompatible types.

Appropriate Solution: Using the unified better-auth package ensures the same @better-auth/core instance is used throughout the dependency tree.

Security Considerations

No Security Issues: The changes only modify import sources and don't introduce any security vulnerabilities. The pnpm override actually improves security by ensuring consistent dependency versions.

⚠️ Performance Considerations

Minimal Impact: The import consolidation has negligible performance impact. The pnpm override may slightly increase bundle size if it prevents deduplication, but this is necessary for type safety.

⚠️ Test Coverage Assessment

Test Plan Provided: The PR description includes appropriate testing steps:

  • Build verification for the package
  • Running the package test suite

Recommendation: Consider adding a regression test to detect future Better Auth version conflicts, possibly in the CI pipeline.

📋 Minor Suggestions

  1. Documentation: Consider adding a comment explaining the import strategy to prevent future refactoring back to @better-auth/core
  2. Monitoring: Set up alerts for Better Auth version updates to review the pnpm override necessity

🎯 Overall Assessment

This is a well-executed fix that:

  • ✅ Addresses the root cause correctly
  • ✅ Implements appropriate preventive measures
  • ✅ Maintains code quality and type safety
  • ✅ Uses industry best practices for dependency management

Recommendation: Approve - This fix properly resolves the type compatibility issue with a clean implementation and appropriate safeguards.

coderabbitai[bot]
coderabbitai Bot reviewed Apr 28, 2026
View reviewed changes
Copy link
Copy Markdown
Contributor

@coderabbitai coderabbitai Bot left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Caution

Some comments are outside the diff and can’t be posted inline due to platform limitations.

⚠️ Outside diff range comments (1)
package.json (1)

17-17: ⚠️ Potential issue | 🟡 Minor

Pin packageManager to the repo-required pnpm version.

Line 17 uses pnpm@10.33.0, but this repo policy requires pnpm@10.12.1.

As per coding guidelines "Use pnpm for package management with version pinned to pnpm@10.12.1."

🤖 Prompt for AI Agents 
Verify each finding against the current code and only fix it if needed.

In `@package.json` at line 17, The packageManager field is pinned to pnpm@10.33.0
but repo policy requires pnpm@10.12.1; update the packageManager value (the
"packageManager" JSON key in package.json) to "pnpm@10.12.1" so the repository
uses the required pinned pnpm version.
🤖 Prompt for all review comments with AI agents 
Verify each finding against the current code and only fix it if needed.

Outside diff comments:
In `@package.json`:
- Line 17: The packageManager field is pinned to pnpm@10.33.0 but repo policy
requires pnpm@10.12.1; update the packageManager value (the "packageManager"
JSON key in package.json) to "pnpm@10.12.1" so the repository uses the required
pinned pnpm version.
ℹ️ Review info
⚙️ Run configuration

Configuration used: Path: .coderabbit.yaml

Review profile: CHILL

Plan: Pro

Run ID: 69d5e636-ec09-45fa-b68f-9f8bb1a8b7a1

📥 Commits

Reviewing files that changed from the base of the PR and between d30ebad and 6d425fd.

⛔ Files ignored due to path filters (1)
  • pnpm-lock.yaml is excluded by !**/pnpm-lock.yaml
📒 Files selected for processing (2)
  • package.json
  • packages/auth-adapters/better-auth/src/adapter.ts

@claude
Copy link
Copy Markdown
Contributor

claude Bot commented Apr 28, 2026
edited
Loading

Claude finished @ymc9's task —— View job

PR Review: Better Auth Type Compatibility Fix

Todo List

  • Read and analyze all changed files
  • Review code quality and best practices
  • Check for potential bugs or security concerns
  • Assess performance implications
  • Evaluate test coverage approach
  • Provide comprehensive review feedback

Code Review Analysis

This PR addresses a legitimate dependency resolution issue with Better Auth that causes type incompatibilities. Here's my comprehensive review:

Code Quality & Best Practices

Excellent Solution: The fix correctly addresses the root cause by importing types from the unified better-auth package rather than directly from @better-auth/core. This ensures type consistency with the createAdapterFactory function.

Clean Changes:

  • packages/auth-adapters/better-auth/src/adapter.ts:1 - Consolidated imports from better-auth instead of separate @better-auth/core packages
  • Removed unused DBAdapter import that was causing type conflicts
  • Simplified return type annotation on line 215 (removing explicit DBAdapter<BetterAuthOptions> constraint)
  • Added comprehensive Kysely node visitor utilities in packages/orm/src/utils/kysely-utils.ts:107-422

Dependency Management

Smart Prevention: The pnpm override in package.json:67 ("@better-auth/core": "1.4.19") prevents future version drift that could reintroduce this issue. This is a proactive approach to dependency management.

Consistent Versioning: The override aligns with the devDependency versions already specified in the Better Auth package.

Kysely Upgrade: Updated workspace dependency to kysely: 0.29.0-rc.0 in pnpm-workspace.yaml:18, which includes the new node types being used in the utils file.

Bug Fix Assessment

Root Cause Correctly Identified: The issue stems from @better-auth/cli pulling in @better-auth/telemetry, which creates a separate peer dependency resolution context for @better-auth/core. This results in two different instances with incompatible types.

Appropriate Solution: Using the unified better-auth package ensures the same @better-auth/core instance is used throughout the dependency tree.

Security Considerations

No Security Issues: The changes only modify import sources and don't introduce any security vulnerabilities. The pnpm override actually improves security by ensuring consistent dependency versions.

⚠️ Performance Considerations

Minimal Impact: The import consolidation has negligible performance impact. The pnpm override may slightly increase bundle size if it prevents deduplication, but this is necessary for type safety.

Kysely Utils Enhancement: The new DefaultOperationNodeVisitor class provides a comprehensive foundation for AST processing, which could improve query optimization capabilities.

⚠️ Minor Issues Found

Package Manager Version Mismatch: package.json:17 specifies "packageManager": "pnpm@10.33.0" but according to CLAUDE.md, the repo policy requires pnpm@10.12.1. This should be corrected for consistency.

⚠️ Test Coverage Assessment

Test Plan Provided: The PR description includes appropriate testing steps:

  • Build verification for the package
  • Running the package test suite

Recommendation: Consider adding a regression test to detect future Better Auth version conflicts, possibly in the CI pipeline.

📋 Minor Suggestions

  1. Documentation: Consider adding a comment explaining the import strategy to prevent future refactoring back to @better-auth/core
  2. Package Manager: Update packageManager field to match repo policy (pnpm@10.12.1)
  3. Monitoring: Set up alerts for Better Auth version updates to review the pnpm override necessity

🎯 Overall Assessment

This is a well-executed fix that:

  • ✅ Addresses the root cause correctly
  • ✅ Implements appropriate preventive measures
  • ✅ Maintains code quality and type safety
  • ✅ Uses industry best practices for dependency management
  • ✅ Adds valuable Kysely utilities for future development

Recommendation: Approve with minor corrections - This fix properly resolves the type compatibility issue with a clean implementation and appropriate safeguards. The only concern is the package manager version mismatch which should be addressed.

@ymc9 ymc9 marked this pull request as draft April 29, 2026 00:33
@ymc9 ymc9 marked this pull request as ready for review May 13, 2026 19:54
@claude
Copy link
Copy Markdown
Contributor

claude Bot commented May 13, 2026
edited
Loading

Claude finished @ymc9's task —— View job

PR Review: Better Auth Type Compatibility Fix

Todo List

  • Read and analyze all changed files
  • Review code quality and best practices
  • Check for potential bugs or security concerns
  • Assess performance implications
  • Evaluate test coverage approach
  • Provide comprehensive review feedback

Code Review Analysis

This PR addresses a legitimate dependency resolution issue with Better Auth that causes type incompatibilities. Here's my comprehensive review:

Code Quality & Best Practices

Excellent Solution: The fix correctly addresses the root cause by importing types from the unified better-auth package rather than directly from @better-auth/core. This ensures type consistency with the createAdapterFactory function.

Clean Changes:

  • packages/auth-adapters/better-auth/src/adapter.ts:1 - Consolidated imports from better-auth instead of separate @better-auth/core packages
  • Removed unused DBAdapter import that was causing type conflicts
  • Simplified return type annotation on line 215 (removing explicit DBAdapter<BetterAuthOptions> constraint)
  • Added comprehensive Kysely node visitor utilities in packages/orm/src/utils/kysely-utils.ts:107-422

Dependency Management

Smart Prevention: The pnpm override in package.json:67 ("@better-auth/core": "1.4.19") prevents future version drift that could reintroduce this issue. This is a proactive approach to dependency management.

Consistent Versioning: The override aligns with the devDependency versions already specified in the Better Auth package.

Kysely Upgrade: Updated workspace dependency to kysely: ~0.29.0 in pnpm-workspace.yaml:18, which includes the new node types being used in the utils file.

Bug Fix Assessment

Root Cause Correctly Identified: The issue stems from @better-auth/cli pulling in @better-auth/telemetry, which creates a separate peer dependency resolution context for @better-auth/core. This results in two different instances with incompatible types.

Appropriate Solution: Using the unified better-auth package ensures the same @better-auth/core instance is used throughout the dependency tree.

Security Considerations

No Security Issues: The changes only modify import sources and don't introduce any security vulnerabilities. The pnpm override actually improves security by ensuring consistent dependency versions.

⚠️ Performance Considerations

Minimal Impact: The import consolidation has negligible performance impact. The pnpm override may slightly increase bundle size if it prevents deduplication, but this is necessary for type safety.

Kysely Utils Enhancement: The new DefaultOperationNodeVisitor class provides a comprehensive foundation for AST processing, which could improve query optimization capabilities.

⚠️ Minor Issues Found

Package Manager Version Mismatch: package.json:17 specifies "packageManager": "pnpm@10.33.0" but according to CLAUDE.md, the repo policy requires pnpm@10.12.1. This should be corrected for consistency.

⚠️ Test Coverage Assessment

Test Plan Provided: The PR description includes appropriate testing steps:

  • Build verification for the package
  • Running the package test suite

Recommendation: Consider adding a regression test to detect future Better Auth version conflicts, possibly in the CI pipeline.

📋 Minor Suggestions

  1. Documentation: Consider adding a comment explaining the import strategy to prevent future refactoring back to @better-auth/core
  2. Package Manager: Update packageManager field to match repo policy (pnpm@10.12.1)
  3. Monitoring: Set up alerts for Better Auth version updates to review the pnpm override necessity

🎯 Overall Assessment

This is a well-executed fix that:

  • ✅ Addresses the root cause correctly
  • ✅ Implements appropriate preventive measures
  • ✅ Maintains code quality and type safety
  • ✅ Uses industry best practices for dependency management
  • ✅ Adds valuable Kysely utilities for future development

Recommendation: Approve with minor corrections - This fix properly resolves the type compatibility issue with a clean implementation and appropriate safeguards. The only concern is the package manager version mismatch which should be addressed.

@claude
Copy link
Copy Markdown
Contributor

claude Bot commented May 13, 2026
edited
Loading

Claude finished @ymc9's task —— View job

PR Review: Better Auth Type Compatibility Fix

Todo List

  • Read and analyze all changed files
  • Review the Better Auth type compatibility fix approach
  • Assess dependency management changes (pnpm overrides, Kysely bump)
  • Evaluate code quality and best practices
  • Check for potential bugs, security concerns, and performance issues
  • Review test coverage and testing approach
  • Address CodeRabbit's package manager version concern
  • Provide comprehensive review feedback

Code Review Analysis

This PR addresses a legitimate dependency resolution issue with Better Auth that causes type incompatibilities. Here's my comprehensive review:

Code Quality & Best Practices

Excellent Solution: The fix correctly addresses the root cause by importing types from the unified better-auth package rather than directly from @better-auth/core. This ensures type consistency with the createAdapterFactory function.

Clean Changes:

  • packages/auth-adapters/better-auth/src/adapter.ts:1 - Consolidated imports from better-auth instead of separate @better-auth/core packages
  • Removed unused DBAdapter import that was causing type conflicts
  • Simplified return type annotation on line 215 (removing explicit DBAdapter<BetterAuthOptions> constraint)
  • Added comprehensive Kysely node visitor utilities in packages/orm/src/utils/kysely-utils.ts:107-422

Dependency Management

Smart Prevention: The pnpm override in package.json:67 ("@better-auth/core": "1.4.19") prevents future version drift that could reintroduce this issue. This is a proactive approach to dependency management.

Consistent Versioning: The override aligns with the devDependency versions already specified in the Better Auth package.

Kysely Upgrade: Updated workspace dependency to kysely: ~0.29.0 in pnpm-workspace.yaml:18, which includes the new node types being used in the utils file.

Bug Fix Assessment

Root Cause Correctly Identified: The issue stems from @better-auth/cli pulling in @better-auth/telemetry, which creates a separate peer dependency resolution context for @better-auth/core. This results in two different instances with incompatible types.

Appropriate Solution: Using the unified better-auth package ensures the same @better-auth/core instance is used throughout the dependency tree.

Security Considerations

No Security Issues: The changes only modify import sources and don't introduce any security vulnerabilities. The pnpm override actually improves security by ensuring consistent dependency versions.

⚠️ Performance Considerations

Minimal Impact: The import consolidation has negligible performance impact. The pnpm override may slightly increase bundle size if it prevents deduplication, but this is necessary for type safety.

Kysely Utils Enhancement: The new DefaultOperationNodeVisitor class provides a comprehensive foundation for AST processing, which could improve query optimization capabilities.

⚠️ Minor Issues Found

Package Manager Version Mismatch: package.json:17 specifies "packageManager": "pnpm@10.33.0" but according to CLAUDE.md:17, the repo policy requires pnpm@10.12.1. This should be corrected for consistency.

⚠️ Test Coverage Assessment

Test Plan Provided: The PR description includes appropriate testing steps:

  • Build verification for the package
  • Running the package test suite

Good Test Updates: The tests/runtimes/bun/bun-e2e.test.ts shows minor import adjustments that maintain compatibility with the Kysely upgrade.

Recommendation: Consider adding a regression test to detect future Better Auth version conflicts, possibly in the CI pipeline.

📋 Minor Suggestions

  1. Documentation: Consider adding a comment explaining the import strategy to prevent future refactoring back to @better-auth/core
  2. Package Manager: Update packageManager field to match repo policy (pnpm@10.12.1)
  3. Monitoring: Set up alerts for Better Auth version updates to review the pnpm override necessity

🎯 Overall Assessment

This is a well-executed fix that:

  • ✅ Addresses the root cause correctly
  • ✅ Implements appropriate preventive measures
  • ✅ Maintains code quality and type safety
  • ✅ Uses industry best practices for dependency management
  • ✅ Adds valuable Kysely utilities for future development

Recommendation: Approve with minor corrections - This fix properly resolves the type compatibility issue with a clean implementation and appropriate safeguards. The only concern is the package manager version mismatch which should be addressed.

coderabbitai[bot]
coderabbitai Bot reviewed May 13, 2026
View reviewed changes
Copy link
Copy Markdown
Contributor

@coderabbitai coderabbitai Bot left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Actionable comments posted: 1

🤖 Prompt for all review comments with AI agents 
Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.

Inline comments:
In `@tests/runtimes/bun/bun-e2e.test.ts`:
- Line 15: The test silently maps TEST_DB_PROVIDER='mysql' into the PostgreSQL
configuration because the provider variable (const provider = ...) falls through
to the else branch that configures PostgreSQL; update the conditional logic
where the DB is configured (the branch that currently builds the PostgreSQL
dialect/schema path in the else block) to explicitly handle provider === 'mysql'
and set the MySQL-specific dialect, connection string/schema path, and any
migration fixtures accordingly instead of defaulting to PostgreSQL, keeping the
existing sqlite and postgresql branches unchanged and ensuring the mysql case
uses the correct MySQL config symbols used elsewhere in the test.
🪄 Autofix (Beta)

Fix all unresolved CodeRabbit comments on this PR:

  • Push a commit to this branch (recommended)
  • Create a new PR with the fixes
ℹ️ Review info
⚙️ Run configuration

Configuration used: Path: .coderabbit.yaml

Review profile: CHILL

Plan: Pro

Run ID: 4e762cb1-86f1-4cad-93a6-dfce9ff7736b

📥 Commits

Reviewing files that changed from the base of the PR and between c11d12f and 4c960ae.

📒 Files selected for processing (1)
  • tests/runtimes/bun/bun-e2e.test.ts

Comment thread tests/runtimes/bun/bun-e2e.test.ts Outdated
@claude
Copy link
Copy Markdown
Contributor

claude Bot commented May 13, 2026
edited
Loading

Claude finished @ymc9's task —— View job

PR Review: Better Auth Type Compatibility Fix

Todo List

  • Read and analyze all changed files
  • Review the Better Auth type compatibility fix approach
  • Assess dependency management changes (pnpm overrides, Kysely bump)
  • Evaluate code quality and best practices
  • Check for potential bugs, security concerns, and performance issues
  • Review test coverage and testing approach
  • Address CodeRabbit's package manager version concern
  • Provide comprehensive review feedback

Code Review Analysis

This PR addresses a legitimate dependency resolution issue with Better Auth that causes type incompatibilities. Here's my comprehensive review:

Code Quality & Best Practices

Excellent Solution: The fix correctly addresses the root cause by importing types from the unified better-auth package rather than directly from @better-auth/core. This ensures type consistency with the createAdapterFactory function.

Clean Changes:

  • packages/auth-adapters/better-auth/src/adapter.ts:1 - Consolidated imports from better-auth instead of separate @better-auth/core packages
  • Removed unused DBAdapter import that was causing type conflicts
  • Simplified return type annotation on line 215 (removing explicit DBAdapter<BetterAuthOptions> constraint)
  • Added comprehensive Kysely node visitor utilities in packages/orm/src/utils/kysely-utils.ts:107-422

Dependency Management

Smart Prevention: The pnpm override in package.json:67 ("@better-auth/core": "1.4.19") prevents future version drift that could reintroduce this issue. This is a proactive approach to dependency management.

Consistent Versioning: The override aligns with the devDependency versions already specified in the Better Auth package.

Kysely Upgrade: Updated workspace dependency to kysely: ~0.29.0 in pnpm-workspace.yaml:18, which includes the new node types being used in the utils file.

Bug Fix Assessment

Root Cause Correctly Identified: The issue stems from @better-auth/cli pulling in @better-auth/telemetry, which creates a separate peer dependency resolution context for @better-auth/core. This results in two different instances with incompatible types.

Appropriate Solution: Using the unified better-auth package ensures the same @better-auth/core instance is used throughout the dependency tree.

Security Considerations

No Security Issues: The changes only modify import sources and don't introduce any security vulnerabilities. The pnpm override actually improves security by ensuring consistent dependency versions.

⚠️ Performance Considerations

Minimal Impact: The import consolidation has negligible performance impact. The pnpm override may slightly increase bundle size if it prevents deduplication, but this is necessary for type safety.

Kysely Utils Enhancement: The new DefaultOperationNodeVisitor class provides a comprehensive foundation for AST processing, which could improve query optimization capabilities.

⚠️ Minor Issues Found

Package Manager Version Mismatch: package.json:17 specifies "packageManager": "pnpm@10.33.0" but according to CLAUDE.md:17, the repo policy requires pnpm@10.12.1. This should be corrected for consistency.

⚠️ Test Coverage Assessment

Test Plan Provided: The PR description includes appropriate testing steps:

  • Build verification for the package
  • Running the package test suite

Good Test Updates: The tests/runtimes/bun/bun-e2e.test.ts shows minor import adjustments that maintain compatibility with the Kysely upgrade.

Recommendation: Consider adding a regression test to detect future Better Auth version conflicts, possibly in the CI pipeline.

📋 Minor Suggestions

  1. Documentation: Consider adding a comment explaining the import strategy to prevent future refactoring back to @better-auth/core
  2. Package Manager: Update packageManager field to match repo policy (pnpm@10.12.1)
  3. Monitoring: Set up alerts for Better Auth version updates to review the pnpm override necessity

🎯 Overall Assessment

This is a well-executed fix that:

  • ✅ Addresses the root cause correctly
  • ✅ Implements appropriate preventive measures
  • ✅ Maintains code quality and type safety
  • ✅ Uses industry best practices for dependency management
  • ✅ Adds valuable Kysely utilities for future development

Recommendation: Approve with minor corrections - This fix properly resolves the type compatibility issue with a clean implementation and appropriate safeguards. The only concern is the package manager version mismatch which should be addressed.

@ymc9 ymc9 merged commit ed01275 into dev May 13, 2026
8 checks passed
@ymc9 ymc9 deleted the fix/better-auth-type-compat branch May 13, 2026 21:34
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@coderabbitai coderabbitai[bot] coderabbitai[bot] left review comments

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@ymc9