[Snyk] Upgrade ua-parser-js from 2.0.6 to 2.0.9

[nkammah]

Snyk has created this PR to upgrade ua-parser-js from 2.0.6 to 2.0.9.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

---

• The recommended version is 3 versions ahead of your current version.

• The recommended version was released 3 months ago.

Issues fixed by the recommended upgrade:

	Issue	Score	Exploit Maturity
	Arbitrary Code Injection SNYK-JS-PROTOBUFJS-16094665	868	Proof of Concept
	Arbitrary Code Injection SNYK-JS-PROTOBUFJS-16094665	868	Proof of Concept

Breaking Change Risk

Notice: This assessment is enhanced by AI.

Release notes

Package name: ua-parser-js

• 2.0.9 - 2026-02-03
  

  Version 2.0.9

  • Restore icons directory
  • Add new browser: Aloha Browser, Avira Secure Browser, Lighthouse, Luakit, Norton Private Browser
  • Add new OS: Vega OS
  • Improve OS detection: watchOS
  • extensions submodule:
    • Add new crawler: atlassian-bot, Cloudflare-AutoRAG, Google-NotebookLM, SemrushBot-SWA
    • Add new fetcher: FlipboardProxy

  What's Changed

  • Add icons directory to package files by @ Pek5892 in #823

  New Contributors

  • @ Pek5892 made their first contribution in #823

  Full Changelog: 2.0.8...2.0.9

• 2.0.8 - 2026-01-13
  

  Version 2.0.8

  • Resolve syntax error related to import renaming in ESM build
  • Add new browser: HiBrowser, Opera Neon
  • Add new engine: Dillo
  • Improve browser detection: Brave, TikTok
  • Improve device detection: OnePlus
  • Improve OS detection: Firefox OS
  • extensions submodule:
    • Add new CLI: PowerShell
    • Add new email: Alpine, Android, AquaMail, Balsa, Barca, Canary, Claws Mail, eM Client, Eudora, FairEmail, Geary, Gnus, Horde::IMP, Lotus-Notes, IncrediMail, K-9 Mail, Mailbird, MailMate, Mailspring, Mutt, Newton, Nine, NylasMail, Outlook-Express, Pegasus Mail, PocoMail, Postbox, ProtonMail Bridge, Quala, R2Mail2, Rainloop, Roundcube Webmail, SamsungEmail, Spicebird, SquirrelMail, Sylpheed, The Bat!, Trojita, Turnpike, tutanota-desktop, Wanderlust, Windows-Live-Mail
    • Add new library: http.rb, Jetty, ocaml-cohttp
  • helpers submodule:
    • Add new method: getOutlookEdition() to map Outlook versions to their marketing editions

  What's Changed

  • Improve existing browser detection for Tiktok by @ giantyo26 in #817
  • feat(email): expand email client detection & add Outlook edition helper by @ cougrimes in #819
  • chore: update pattern to ONLY include top-level js files in dist by @ hyperz111 in #820

  New Contributors

  • @ giantyo26 made their first contribution in #817
  • @ cougrimes made their first contribution in #819
  • @ hyperz111 made their first contribution in #820

  Full Changelog: 2.0.7...2.0.8

• 2.0.7 - 2025-12-09
  

  Version 2.0.7

  • Add support for chaining withClientHints() & withFeatureCheck()
  • Add new browser: Atlas, Steam
  • Add new device vendor: Anbernic, Logitech, Valve
  • Improve device detection: Xiaomi
  • Improve OS detection: iOS
  • Split helpers submodule into several new submodules:
    • bot-detection:
      • isAIAssistant()
      • isAICrawler()
      • isBot()
    • browser-detection
      • isChromeFamily()
      • isElectron()
      • isFromEU()
      • isStandalonePWA()
    • device-detection
      • getDeviceVendor()
      • isAppleSilicon()
  • Update extensions submodule:
    • Add new fetcher: Nova Act
    • Add new library: Bun, Dart, Deno, hackney, Node.js, rest-client, undici

  Full Changelog: 2.0.6...2.0.7

• 2.0.6 - 2025-10-10
  

  Version 2.0.6

  • Add new CLI feature: processing batch user-agent data from file and output as JSON
  • Fix setUA(): trim leading space from user-agent string input
  • Replace undici dependency with node's internal Headers
  • Add new browser: Bing, Qwant
  • Add new device vendor: Hisense, Wiko
  • Improve browser detection: Mozilla, Pale Moon
  • Improve CPU detection: 68k
  • Improve device detection: Apple, BlackBerry, Huawei, Nokia, Xiaomi
  • Improve OS detection: iOS 26
  • extensions submodule:
    • Add new fetcher: Discordbot, KeybaseBot, Slackbot, Slackbot-LinkExpanding, Slack-ImgProxy, Twitterbot
    • Add new crawler: Qwantbot-news, SurdotlyBot, SwiftBot

  What's Changed

  • chore: Replace Undici by native Headers by @ regseb in #805

  New Contributors

  • @ regseb made their first contribution in #805

  Full Changelog: 2.0.5...2.0.6

from ua-parser-js GitHub release notes

---

Important

• Check the changes in this PR to ensure they won't cause issues with your project.
• This PR was automatically created by Snyk using the credentials of a real user.
• Max score is 1000. Note that the real score may have changed since the PR was raised.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

• 🧐 View latest project report
• 📜 Customise PR templates
• 🛠 Adjust upgrade PR settings
• 🔕 Ignore this dependency or unsubscribe from future upgrade PRs

[nkammah]

This is a patch version upgrade that includes bug fixes and feature additions. No breaking changes are documented between versions 2.0.6 and 2.0.9.

Key Changes:

• v2.0.7: Added new browser and device detections, and introduced support for chaining withClientHints() & withFeatureCheck().
• v2.0.8: Resolved a syntax error related to an import in the ESM build and added more detection capabilities.
• v2.0.9: Restored a missing directory and added further browser and crawler detections.

These changes are non-breaking and provide bug fixes and enhanced detection accuracy.

Source: GitHub Releases

Notice 🤖: This content was augmented using artificial intelligence. AI-generated content may contain errors and should be reviewed for accuracy before use.