Skip to content

chore(deps): bump ua-parser-js and @creit.tech/stellar-wallets-kit#124

Open
dependabot[bot] wants to merge 1 commit into
developfrom
dependabot/npm_and_yarn/multi-8ab05d46c7
Open

chore(deps): bump ua-parser-js and @creit.tech/stellar-wallets-kit#124
dependabot[bot] wants to merge 1 commit into
developfrom
dependabot/npm_and_yarn/multi-8ab05d46c7

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jun 16, 2026

Copy link
Copy Markdown
Contributor

Bumps ua-parser-js to 2.0.10 and updates ancestor dependency @creit.tech/stellar-wallets-kit. These dependencies need to be updated together.

Updates ua-parser-js from 2.0.9 to 2.0.10

Release notes

Sourced from ua-parser-js's releases.

v2.0.10

Version 2.0.10

  • Fix ReDoS vulnerability by limiting Client Hints input length (GHSA-9h5v-pfqq-x599)
  • Add new method useExtension() in UAParser to extend custom detection rules
  • Add new device vendor: Blackview, Coolpad, CUBOT, T-Mobile
  • Improve browser detection: Huawei Browser, UCBrowser
  • Improve OS detection: iOS
  • Identify WebView user-agent as inapp browser
  • extensions submodule:
    • Add new crawler: atlassian-bot, Audisto Crawler, AwarioBot, AwarioRssBot, AwarioSmartBot, BrightEdge Crawler, HubSpot Crawler, Meta-ExternalAds, Meta-WebIndexer, proximic, yacybot
    • Add new fetcher: Feedly, GoogleDocs, UptimeBot, virustotal
    • Add new library: phpcrawl
  • helpers submodule:
    • Fix isElectron() function return itself

What's Changed

New Contributors

Full Changelog: faisalman/ua-parser-js@2.0.9...2.0.10

Changelog

Sourced from ua-parser-js's changelog.

Version 2.0.10

  • Fix ReDoS vulnerability by limiting Client Hints input length (GHSA-9h5v-pfqq-x599)
  • Add new method useExtension() in UAParser to extend custom detection rules
  • Add new device vendor: Blackview, Coolpad, CUBOT, T-Mobile
  • Improve browser detection: Huawei Browser, UCBrowser
  • Improve OS detection: iOS
  • Identify WebView user-agent as inapp browser
  • extensions submodule:
    • Add new crawler: atlassian-bot, Audisto Crawler, AwarioBot, AwarioRssBot, AwarioSmartBot, BrightEdge Crawler, HubSpot Crawler, Meta-ExternalAds, Meta-WebIndexer, proximic, yacybot
    • Add new fetcher: Feedly, GoogleDocs, UptimeBot, virustotal
    • Add new library: phpcrawl
  • helpers submodule:
    • Fix isElectron() function return itself
Commits
  • 4121c59 Build: Bump version 2.0.10
  • 90354d3 Fix: Prevent ReDoS vulnerability by limiting Client Hints input length (GHSA-...
  • 3baa3bc Test: Increase nyc timeout to fix timeout error
  • 18d39b5 CI: Add GitHub Actions workflow to publish to Docker Hub
  • 58b5a0c Build: Add Dockerfile for container image build
  • 965c20d CI: Update fuzz test
  • ad97fea Build: Set sideEffects=false in package.json for tree shaking (#781)
  • 312598f CI: Add AI and spam detection to pull request workflow
  • 8f9e4dc Test: Fix relative path and update done() callback in CLI test spec
  • eb809ec Chore(license): Add THIRD_PARTY_NOTICES.md for third-party assets
  • Additional commits viewable in compare view

Updates @creit.tech/stellar-wallets-kit from 1.5.0 to 1.9.5

Release notes

Sourced from @​creit.tech/stellar-wallets-kit's releases.

v1.9.5

1.9.5 (2025-09-05)

Add

  • Update the supported wallets everytime the modal is opened instead of just when the kit instance is created

v1.9.4

1.9.4 (2025-09-05)

Change

  • Upgrade Freighter's module so it handles the two different ways Freighter answer to the signMessage method.

v1.9.3

1.9.3 (2025-09-03)

Change

  • Upgrade Freighter API's library to latest

Fix

  • Update the types in kit's class so it includes the new skipRequestAccess parameter

v1.9.2

1.9.2 (2025-09-02)

Add

  • Include a skipRequestAccess parameter for devs that need to ignore the requestAccess to freighter when calling the getAddress method.

v1.9.1

1.9.1 (2025-08-26)

Change

  • Downgrade Albedo library to 0.12.0

v1.9.0

1.9.0 (2025-08-25)

add

  • Add a new isPlatformWrapper logic so modules can check if they are the ones that will be used by the user without the need of the user manually picking it.
  • Klever wallet module

Change

  • Update @​stellar/stellar-sdk version to latest
  • Update Trezor library

v1.8.0

1.8.0 (2025-08-13)

add

  • xBull message signing logic
  • Upgrade xBull Wallet Connect library version

v1.7.7

1.7.7 (2025-07-28)

Fix

  • Allow scrolling the modal (needed for small screens)

v1.7.6

... (truncated)

Changelog

Sourced from @​creit.tech/stellar-wallets-kit's changelog.

1.9.5 (2025-09-05)

Add

  • Update the supported wallets everytime the modal is opened instead of just when the kit instance is created

1.9.4 (2025-09-05)

Change

  • Upgrade Freighter's module so it handles the two different ways Freighter answer to the signMessage method.

1.9.3 (2025-09-03)

Change

  • Upgrade Freighter API's library to latest

Fix

  • Update the types in kit's class so it includes the new skipRequestAccess parameter

1.9.2 (2025-09-02)

Add

  • Include a skipRequestAccess parameter for devs that need to ignore the requestAccess to freighter when calling the getAddress method.

1.9.1 (2025-08-26)

Change

  • Downgrade Albedo library to 0.12.0

1.9.0 (2025-08-25)

add

  • Add a new isPlatformWrapper logic so modules can check if they are the ones that will be used by the user without the need of the user manually picking it.
  • Klever wallet module

Change

  • Update @​stellar/stellar-sdk version to latest
  • Update Trezor library
  • Update Albedo library

1.8.0 (2025-08-13)

... (truncated)

Commits
  • 9d1377b Upgrade v1.9.5
  • 5248e23 Update the supported wallet everytime the modal is opened instead of just whe...
  • ee83516 Update Freighter module to handle the two signMessage versions of Freighter.
  • 16d3898 Update Freighter module to handle the two signMessage versions of Freighter.
  • 3ddffc1 Upgrade to 1.9.3
  • 5a4d348 Upgrade to 1.9.2
  • 3b7dcc3 Include a skipRequestAccess parameter for devs that need to ignore the `req...
  • ae21b3b Hotfix package.json version
  • 65cfcf0 Upgrade to 1.9.1
  • 816c2aa Upgrade to 1.9.0
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
    You can disable automated security fix PRs for this repo from the Security Alerts page.

@dependabot
chore(deps): bump ua-parser-js and @creit.tech/stellar-wallets-kit
996f654 
Bumps [ua-parser-js](https://github.com/faisalman/ua-parser-js) to 2.0.10 and updates ancestor dependency [@creit.tech/stellar-wallets-kit](https://github.com/Creit-Tech/Stellar-Wallets-Kit). These dependencies need to be updated together.


Updates `ua-parser-js` from 2.0.9 to 2.0.10
- [Release notes](https://github.com/faisalman/ua-parser-js/releases)
- [Changelog](https://github.com/faisalman/ua-parser-js/blob/master/CHANGELOG.md)
- [Commits](faisalman/ua-parser-js@2.0.9...2.0.10)

Updates `@creit.tech/stellar-wallets-kit` from 1.5.0 to 1.9.5
- [Release notes](https://github.com/Creit-Tech/Stellar-Wallets-Kit/releases)
- [Changelog](https://github.com/Creit-Tech/Stellar-Wallets-Kit/blob/main/CHANGELOG.md)
- [Commits](Creit-Tech/Stellar-Wallets-Kit@v1.5.0...v1.9.5)

---
updated-dependencies:
- dependency-name: ua-parser-js
  dependency-version: 2.0.10
  dependency-type: indirect
- dependency-name: "@creit.tech/stellar-wallets-kit"
  dependency-version: 1.9.5
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code labels Jun 16, 2026
@vercel

vercel Bot commented Jun 16, 2026
edited
Loading

Copy link
Copy Markdown
Contributor

The latest updates on your projects. Learn more about Vercel for GitHub.

Project Deployment Actions Updated (UTC)
dapp Ready Ready Preview, Comment Jun 16, 2026 9:15am

Request Review

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants