build(deps): bump auth0-python from 4.13.0 to 5.0.0 in /back

[dependabot]

Bumps auth0-python from 4.13.0 to 5.0.0.

Release notes

Sourced from auth0-python's releases.

5.0.0

What's New in v5.0.0

⚠️ BREAKING CHANGES - Major Rewrite

This is a complete rewrite of the Auth0 Python SDK with significant breaking changes from v4.x. Users will need to update their code when migrating from v4.x to v5.0.0.

Added Features

• New Fern-generated SDK: Complete Management API rewrite generated from Auth0's OpenAPI specifications
• Hierarchical package structure: Organized Management APIs into logical sub-clients for better discoverability
• Strongly typed interfaces: Pydantic models provide specific request/response types replacing generic dictionaries
• Automatic token management: Built-in client credentials handling with automatic token refresh
• Enhanced pagination: New SyncPager and AsyncPager classes for easy iteration over paginated results
• First-class async support: Full async/await support with AsyncManagementClient
• Better IDE support: Improved code completion, type hints, and inline documentation

Key Breaking Changes

• Import paths changed from from auth0.management import Auth0 to from auth0.management import ManagementClient
• Client initialization changed from Auth0(domain, management_token) to ManagementClient(domain, client_id, client_secret) with automatic token management
• Response types changed from dictionaries to Pydantic models (use .model_dump() to convert back to dict)
• Method organization changed from flat (client.users.list()) to hierarchical where applicable
• Pagination parameters changed - some endpoints use per_page, others use take
• Python version requirement increased from ≥3.7 to ≥3.8
• Error handling changed from Auth0Error to ApiError base class

Important Notes

• ✅ The authentication package is NOT affected by these changes. Authentication APIs remain the same between v4 and v5.
• 📚 Complete migration guide available at v5_MIGRATION_GUIDE.md
• 🎯 This is the stable GA release following v5.0.0-beta.0
• 🔧 Auth0 telemetry headers implemented with dynamic versioning (no manual updates needed)
• 📖 Full API reference available at reference.md

5.0.0b0

⚠️ BREAKING CHANGES - Major Rewrite

This is a beta release of the upcoming major version. It introduces breaking changes, particularly in the Management API client. Please refer to the v5 Migration Guide for detailed upgrade instructions.

---

✍️ What's New

• ✨ OpenAPI-Generated: Complete rewrite generated from Auth0's OpenAPI specifications using Fern
• 📦 Better Organization: Hierarchical package structure with logical sub-clients for improved discoverability
• 🔒 Type Safety: Strongly typed request/response objects using Pydantic replace generic dictionaries
• ✨ Enhanced Developer Experience: Better IntelliSense, code completion, and documentation
• 🚀 Future-Proof: Easier maintenance and updates as Auth0's API evolves

... (truncated)

Changelog

Sourced from auth0-python's changelog.

5.0.0 (2026-02-04)

Full Changelog

📢 This is the official v5.0.0 release with significant improvements and breaking changes.

Breaking Changes

• Complete rewrite of Management API client - Generated from Auth0's OpenAPI specifications using Fern
• Python 3.7 support dropped - Minimum required version is now Python 3.8
• Management API client restructured - Methods organized into modular sub-clients for better discoverability
• Method signatures changed - Consistent and predictable naming conventions across all endpoints
• Response types changed - Strongly-typed Pydantic models replace generic dictionaries
• Import paths changed - from auth0.management.core.api_error import ApiError instead of from auth0.exceptions import Auth0Error
• Pagination defaults changed - include_totals=True is now the default for list operations
• Client initialization simplified - ManagementClient takes domain instead of full base_url

Added

• First-class async support with AsyncAuth0 and AsyncManagementClient
• Automatic token management with client credentials in ManagementClient
• Built-in pagination support with include_totals=True by default
• Type-safe request/response objects using Pydantic models
• Better IntelliSense and code completion support
• Comprehensive API reference documentation
• Migration guide for upgrading from v4.x

Changed

• Management API client fully regenerated using Fern
• Package structure reorganized with hierarchical sub-clients
• Error handling updated to use ApiError base class
• Documentation updated with v5 examples

Note

• Authentication API remains fully backward compatible - no changes required
• See v5_MIGRATION_GUIDE.md for detailed upgrade instructions

Commits

• ae22a65 Release 5.0.0 (#774)
• 02ccb63 chore: update telemetry to Auth0 format with dynamic versioning (#773)
• 69c1a9e 🌿 Fern Regeneration -- February 3, 2026 (#772)
• 81cdca7 chore: update Fern configuration and fix GitHub templates (#770)
• f966475 Merge v5 branch into master – Auth0 Python SDK v5.0.0 (#768)
• 1233acd feat: add v5 CI and publish workflows (#765)
• 7c492bf feat: Add Ask DeepWiki badge (#760)
• c0a091a feat: Add Ask DeepWiki badge
• 43b34e9 feat: add Claude Code PR Review workflow (#752)
• 7d1357a chore(deps): bump github/codeql-action from 3 to 4 (#751)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[sentry]

Codecov Report

✅ All modified and coverable lines are covered by tests.
✅ Project coverage is 77.99%. Comparing base (6eda97e) to head (3e6b6d9).

Additional details and impacted files

@@           Coverage Diff           @@
##           master    #2568   +/-   ##
=======================================
  Coverage   77.99%   77.99%           
=======================================
  Files         281      281           
  Lines       20098    20098           
  Branches     2029     2029           
=======================================
  Hits        15676    15676           
  Misses       4376     4376           
  Partials       46       46           

Flag	Coverage Δ
frontend	70.03% <ø> (ø)
sharedComponents	61.63% <ø> (ø)

Flags with carried forward coverage won't be shown. Click here to find out more.

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:

• ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.
• 📦 JS Bundle Analysis: Save yourself from yourself by tracking and limiting bundle sizes in JS merges.

[pylipp]

@dependabot rebase

[pylipp]

@copilot read the migration guide provided here and adjust the back-end codebase such that the tests work again (run pytest back/test/endpoint_tests) (staying on a version below v5 is not an option)

[Copilot]

@pylipp I've opened a new pull request, #2576, to work on those changes. Once the pull request is ready, I'll request review from you.