dreambo8563 / vue-device-detector Goto Github PK

Because it uses a window, it doesn't work for SSR.

Our npm audit detected a high vulnerability inside the dependencies of vue-device-detector through the commitizen package:

┌───────────────┬──────────────────────────────────────────────────────────────┐
│ High │ Prototype Pollution │
├───────────────┼──────────────────────────────────────────────────────────────┤
│ Package │ merge │
│ Patched in │ >=2.1.1 │
├───────────────┼──────────────────────────────────────────────────────────────┤
│ Dependency of │ vue-device-detector │
├───────────────┼──────────────────────────────────────────────────────────────┤
│ Path │ vue-device-detector > commitizen > find-node-modules > merge │
├───────────────┼──────────────────────────────────────────────────────────────┤
│ More info │ https://npmjs.com/advisories/1666 │
└───────────────┴──────────────────────────────────────────────────────────────┘
(Sorry for bad layout, it wont stick)

I'm aware this cannot be fixed here, but I did wonder why commitizen is set not as devDependencies. Looking into the package, it does not seem to contribute in the final released code.

I haven't used commitizen myself, but am curious to know if having it as a dependency instead of a devDependency is required.

The devDependency @vue/cli-plugin-babel was updated from 3.5.3 to 3.5.4.

🚨 View failing branch.

This version is covered by your current version range and after updating it in your project the build failed.

@vue/cli-plugin-babel is a devDependency of this project. It might not break your production code or affect downstream projects, but probably breaks your build or test tools, which may prevent deploying or publishing.

Your Greenkeeper Bot 🌴

$device.android is true, while I am on windows chrome

Ipad with last os (13) is not detect as ipad or ios by library.
It seems that the userAgent has changed (see this link )

The devDependency @vue/cli-service was updated from 3.5.2 to 3.5.3.

🚨 View failing branch.

This version is covered by your current version range and after updating it in your project the build failed.

@vue/cli-service is a devDependency of this project. It might not break your production code or affect downstream projects, but probably breaks your build or test tools, which may prevent deploying or publishing.

Your Greenkeeper Bot 🌴

The devDependency eslint was updated from 5.15.3 to 5.16.0.

🚨 View failing branch.

This version is covered by your current version range and after updating it in your project the build failed.

eslint is a devDependency of this project. It might not break your production code or affect downstream projects, but probably breaks your build or test tools, which may prevent deploying or publishing.

Your Greenkeeper Bot 🌴

Hey! Love the package. Could you add support for the new iPhone 12 mini? Not sure how to detect currently..

Some functions may need to deal with different situations even in Wechat and Wechat Miniapp(微信小程序), there are different UAs for both, please split Wechat-all, Wechat-web and Wechat-miniapp, so programs can handle different logics.

The devDependency eslint-plugin-vue was updated from 5.2.2 to 5.2.3.

🚨 View failing branch.

This version is covered by your current version range and after updating it in your project the build failed.

eslint-plugin-vue is a devDependency of this project. It might not break your production code or affect downstream projects, but probably breaks your build or test tools, which may prevent deploying or publishing.

Your Greenkeeper Bot 🌴

Will be plugin available for Vue3?

Hello, I was reading through the Docs and I see 'windows' as a return property but no 'desktop' or 'pc' option. So all desktop environments just return with 'windows' as true? Or is this information missed on Linux and macOS?

Thanks