Skip to content

[stable33] build(deps): Bump ua-parser-js from 2.0.9 to 2.0.10#3062

Merged
github-actions[bot] merged 2 commits into
stable33from
dependabot/npm_and_yarn/stable33/ua-parser-js-2.0.10
Jun 9, 2026
Merged

[stable33] build(deps): Bump ua-parser-js from 2.0.9 to 2.0.10#3062
github-actions[bot] merged 2 commits into
stable33from
dependabot/npm_and_yarn/stable33/ua-parser-js-2.0.10

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jun 6, 2026
edited
Loading

Copy link
Copy Markdown
Contributor

Bumps ua-parser-js from 2.0.9 to 2.0.10.

Release notes

Sourced from ua-parser-js's releases.

v2.0.10

Version 2.0.10

  • Fix ReDoS vulnerability by limiting Client Hints input length (GHSA-9h5v-pfqq-x599)
  • Add new method useExtension() in UAParser to extend custom detection rules
  • Add new device vendor: Blackview, Coolpad, CUBOT, T-Mobile
  • Improve browser detection: Huawei Browser, UCBrowser
  • Improve OS detection: iOS
  • Identify WebView user-agent as inapp browser
  • extensions submodule:
    • Add new crawler: atlassian-bot, Audisto Crawler, AwarioBot, AwarioRssBot, AwarioSmartBot, BrightEdge Crawler, HubSpot Crawler, Meta-ExternalAds, Meta-WebIndexer, proximic, yacybot
    • Add new fetcher: Feedly, GoogleDocs, UptimeBot, virustotal
    • Add new library: phpcrawl
  • helpers submodule:
    • Fix isElectron() function return itself

What's Changed

New Contributors

Full Changelog: faisalman/ua-parser-js@2.0.9...2.0.10

Changelog

Sourced from ua-parser-js's changelog.

Version 2.0.10

  • Fix ReDoS vulnerability by limiting Client Hints input length (GHSA-9h5v-pfqq-x599)
  • Add new method useExtension() in UAParser to extend custom detection rules
  • Add new device vendor: Blackview, Coolpad, CUBOT, T-Mobile
  • Improve browser detection: Huawei Browser, UCBrowser
  • Improve OS detection: iOS
  • Identify WebView user-agent as inapp browser
  • extensions submodule:
    • Add new crawler: atlassian-bot, Audisto Crawler, AwarioBot, AwarioRssBot, AwarioSmartBot, BrightEdge Crawler, HubSpot Crawler, Meta-ExternalAds, Meta-WebIndexer, proximic, yacybot
    • Add new fetcher: Feedly, GoogleDocs, UptimeBot, virustotal
    • Add new library: phpcrawl
  • helpers submodule:
    • Fix isElectron() function return itself
Commits
  • 4121c59 Build: Bump version 2.0.10
  • 90354d3 Fix: Prevent ReDoS vulnerability by limiting Client Hints input length (GHSA-...
  • 3baa3bc Test: Increase nyc timeout to fix timeout error
  • 18d39b5 CI: Add GitHub Actions workflow to publish to Docker Hub
  • 58b5a0c Build: Add Dockerfile for container image build
  • 965c20d CI: Update fuzz test
  • ad97fea Build: Set sideEffects=false in package.json for tree shaking (#781)
  • 312598f CI: Add AI and spam detection to pull request workflow
  • 8f9e4dc Test: Fix relative path and update done() callback in CLI test spec
  • eb809ec Chore(license): Add THIRD_PARTY_NOTICES.md for third-party assets
  • Additional commits viewable in compare view

@dependabot dependabot Bot added 3. to review dependencies Pull requests that update a dependency file labels Jun 6, 2026
@dependabot dependabot Bot requested a review from nickvergessen as a code owner June 6, 2026 01:05
@dependabot dependabot Bot added 3. to review dependencies Pull requests that update a dependency file labels Jun 6, 2026
@github-actions github-actions Bot changed the title build(deps): Bump ua-parser-js from 2.0.9 to 2.0.10 [stable33] build(deps): Bump ua-parser-js from 2.0.9 to 2.0.10 Jun 6, 2026
@github-actions github-actions Bot enabled auto-merge June 6, 2026 01:42
@nickvergessen

nickvergessen commented Jun 9, 2026

Copy link
Copy Markdown
Member

@dependabot rebase

@dependabot
build(deps): Bump ua-parser-js from 2.0.9 to 2.0.10
635ec6d 
Bumps [ua-parser-js](https://github.com/faisalman/ua-parser-js) from 2.0.9 to 2.0.10.
- [Release notes](https://github.com/faisalman/ua-parser-js/releases)
- [Changelog](https://github.com/faisalman/ua-parser-js/blob/master/CHANGELOG.md)
- [Commits](faisalman/ua-parser-js@2.0.9...2.0.10)

---
updated-dependencies:
- dependency-name: ua-parser-js
  dependency-version: 2.0.10
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot changed the title [stable33] build(deps): Bump ua-parser-js from 2.0.9 to 2.0.10 build(deps): Bump ua-parser-js from 2.0.9 to 2.0.10 Jun 9, 2026
@dependabot dependabot Bot force-pushed the dependabot/npm_and_yarn/stable33/ua-parser-js-2.0.10 branch from c188dc4 to 635ec6d Compare June 9, 2026 12:29
@github-actions github-actions Bot changed the title build(deps): Bump ua-parser-js from 2.0.9 to 2.0.10 [stable33] build(deps): Bump ua-parser-js from 2.0.9 to 2.0.10 Jun 9, 2026
@nickvergessen

nickvergessen commented Jun 9, 2026

Copy link
Copy Markdown
Member

/compile

@nextcloud-command
chore(assets): Recompile assets
7be3b83 
Signed-off-by: nextcloud-command <nextcloud-command@users.noreply.github.com>
@github-actions github-actions Bot merged commit d321c9a into stable33 Jun 9, 2026
39 checks passed
@github-actions github-actions Bot deleted the dependabot/npm_and_yarn/stable33/ua-parser-js-2.0.10 branch June 9, 2026 12:34
@nextcloud-bot nextcloud-bot mentioned this pull request Jun 17, 2026
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@github-actions github-actions[bot] github-actions[bot] approved these changes

@nickvergessen nickvergessen Awaiting requested review from nickvergessen nickvergessen is a code owner

Assignees

No one assigned

Labels

3. to review dependencies Pull requests that update a dependency file

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@nickvergessen @nextcloud-command