"ua-parser-js": "0.7.30" have a wrong

Question

Closed this issue 3 years ago · 3 comments

Uncaught TypeError: e[r].toUpperCase is not a function

Answer 1 · 2021-10-28T00:07:28.000Z

I'm sorry, is there something in this project that's causing your problem?

Answer 2 · 2021-10-28T17:04:20.000Z

Hi! Regarding ua-parser-js, what about bumping to v1 in order to be safe? Malicious versions have been unpublished though
https://portswigger.net/daily-swig/popular-npm-package-ua-parser-js-poisoned-with-cryptomining-password-stealing-malware

Answer 3 · 2021-11-10T17:37:33.000Z

1.0.0 was also hijacked so it's no more safe. I won't be bumping across major versions here without also bumping our major version.