Gathering detailed insights and metrics for ua-parser-js
Gathering detailed insights and metrics for ua-parser-js
Gathering detailed insights and metrics for ua-parser-js
Gathering detailed insights and metrics for ua-parser-js
"Unmask Your Traffic" - UAParser.js: The Essential Web Development Tool for User-Agent Detection
npm install ua-parser-js
99.5
Supply Chain
98.8
Quality
90
Maintenance
100
Vulnerability
80.6
License
Module System
Min. Node Version
Typescript Support
Node Version
NPM Version
9,300 Stars
1,183 Commits
1,195 Forks
129 Watching
9 Branches
132 Contributors
Updated on 28 Nov 2024
Minified
Minified + Gzipped
JavaScript (98.94%)
TypeScript (0.77%)
Shell (0.29%)
Cumulative downloads
Total Downloads
Last day
-7.7%
2,569,420
Compared to previous day
Last week
1.9%
14,679,410
Compared to previous week
Last month
9.4%
61,113,452
Compared to previous month
Last year
12.2%
649,092,337
Compared to previous year
The most comprehensive, compact, & up-to-date isomorphic JavaScript library to detect user's Browser, Engine, OS, CPU, and Device type/model. Runs either in browser (client-side) or node.js (server-side).
version 1.x
: https://github.com/faisalman/ua-parser-js/tree/1.0.x#documentationversion 2.x
: https://docs.uaparser.devBefore upgrading from v0.7
/ v1.0
, please read CHANGELOG to
see what's new & breaking.
Open-Source Editions | PRO / Commercial Editions | ||||
---|---|---|---|---|---|
License options | MIT (v0.7~v1.0) | AGPL (>=v2.0) | PRO Personal | PRO Business | PRO Enterprise |
Browser detection | ⚠️ | ✅ | ✅ | ✅ | ✅ |
CPU detection | ⚠️ | ✅ | ✅ | ✅ | ✅ |
Device detection | ⚠️ | ✅ | ✅ | ✅ | ✅ |
Engine detection | ⚠️ | ✅ | ✅ | ✅ | ✅ |
OS detection | ⚠️ | ✅ | ✅ | ✅ | ✅ |
Bot detection | ❌ | ✅ | ✅ | ✅ | ✅ |
AI Bot detection | ❌ | ✅ | ✅ | ✅ | ✅ |
Extras (Apps, Libs, Emails, Media Players, etc) detection | ❌ | ✅ | ✅ | ✅ | ✅ |
Enhanced detection result | ❌ | ✅ | ✅ | ✅ | ✅ |
Client Hints support | ❌ | ✅ | ✅ | ✅ | ✅ |
CommonJS support | ✅ | ✅ | ✅ | ✅ | ✅ |
ES modules support | ❌ | ✅ | ✅ | ✅ | ✅ |
npm module | ✅ | ✅ | ✅ | ✅ | ✅ |
TypeScript declarations | ⚠️ | ✅ | ✅ | ✅ | ✅ |
Allows commercial use | ✅ | ✅ | ❌ | ✅ | ✅ |
Permissive (non-copyleft) license | ✅ | ❌ | ✅ | ✅ | ✅ |
Unlimited use per 1 license | ✅ | ✅ | ✅ | ❌ | ✅ |
1-year product support | ❌ | ❌ | ✅ | ✅ | ✅ |
Lifetime updates | ✅ | ✅ | ✅ | ✅ | ✅ |
Price | FREE (License) | FREE (License) | $14 (License) | $29 (License) | $599 (License) |
GET THE PRO PACKAGES 📥 |
Please read CONTRIBUTING guide first for the instruction details.
Made with contributors-img.
Support the open-source editions of UAParser.js on OpenCollective or GitHub Sponsors.
The latest stable version of the package.
Stable Version
8
7.5/10
Summary
ReDoS Vulnerability in ua-parser-js version
Affected Versions
>= 0.8.0, < 1.0.33
Patched Versions
1.0.33
7.5/10
Summary
ReDoS Vulnerability in ua-parser-js version
Affected Versions
< 0.7.33
Patched Versions
0.7.33
8.8/10
Summary
Embedded malware in ua-parser-js
Affected Versions
= 1.0.0
Patched Versions
1.0.1
8.8/10
Summary
Embedded malware in ua-parser-js
Affected Versions
= 0.8.0
Patched Versions
0.8.1
8.8/10
Summary
Embedded malware in ua-parser-js
Affected Versions
= 0.7.29
Patched Versions
0.7.30
7.5/10
Summary
Regular Expression Denial of Service in ua-parser-js
Affected Versions
< 0.7.22
Patched Versions
0.7.22
7.5/10
Summary
ua-parser-js Regular Expression Denial of Service vulnerability
Affected Versions
< 0.7.23
Patched Versions
0.7.23
7.5/10
Summary
Regular Expression Denial of Service (ReDoS) in ua-parser-js
Affected Versions
>= 0.7.14, < 0.7.24
Patched Versions
0.7.24
Reason
no binaries found in the repo
Reason
14 different organizations found -- score normalized to 10
Details
Reason
no dangerous workflow patterns detected
Reason
update tool detected
Details
Reason
project is fuzzed with [OSSFuzz]
Reason
license file detected
Details
Reason
11 commit(s) out of 30 and 4 issue activity out of 30 found in the last 90 days -- score normalized to 10
Reason
publishing workflow detected
Details
Reason
security policy file detected
Details
Reason
dependency not pinned by hash detected -- score normalized to 9
Details
Reason
non read-only tokens detected in GitHub workflows
Details
Reason
4 out of 5 merged PRs checked by a CI test -- score normalized to 8
Reason
SAST tool detected but not run on all commmits
Details
Reason
badge detected: passing
Reason
branch protection is not maximal on development and all release branches
Details
Reason
5 out of last 30 changesets reviewed before merge -- score normalized to 1
Score
Last Scanned on 2024-03-19
The Open Source Security Foundation is a cross-industry collaboration to improve the security of open source software (OSS). The Scorecard provides security health metrics for open source projects.
Learn More