Bump @fingerprintjs/fingerprintjs from 4.0.1 to 4.3.0

[dependabot]

Bumps @fingerprintjs/fingerprintjs from 4.0.1 to 4.3.0.

Release notes

Sourced from @​fingerprintjs/fingerprintjs's releases.

v4.3.0

• fix: A minus sign missing in the "timezone" entropy source fallback (#986)
• fix: The geometry and text images in the "canvas" entropy source are swapped (#990). They were swapped mistakenly in v4.1.0.

v4.2.2

• fix: WebGL console warning in Chrome 121 and Safari 17.4 (#983)

v4.2.1

• fix: An empty OS notification is shown in some cases (#969)

v4.2.0

• Add a new "reduced transparency" entropy source (#956)

• A new algorithm for audio fingerprint, which withstands Safari's anti-fingerprinting (#957)

• Increase the accuracy of Chromium Android detection (#965)

• Stop supporting old browsers:

  • iOS 11
  • Firefox 74 and older
  • Chrome 64 and older

  They cover 0.05% of all usages according to the Fingerprint Pro statistics. FingerprintJS won't stop working in these browsers immediately, we just won't check in them. See the list of currently supported browsers in the browser support guide.

v4.1.0

• Prepare for Safari 17 (#951)

  Safari 17 introduces anti-fingerprinting measures in private mode: some fingerprint components change. That made FingerprintJS produce different fingerprints. Unfortunately, we had to disable the entropy sources in Safari 17 for now to keep the fingerprints stable, because there is no apparent way to restore the original components. We keep looking for ways to get stable entropy from these sources.

Commits

• 45d3574 Bump the version to 4.3.0 (#1001)
• 8591892 Bump express from 4.18.2 to 4.19.2 (#995)
• e2d11f3 Fix unsupported BrowserStack browser combinations (#994)
• 193fb19 Bump webpack-dev-middleware from 5.3.3 to 5.3.4 (#993)
• a78043c Bump follow-redirects from 1.15.4 to 1.15.6 (#991)
• 5792a80 Bugfix: values of canvas geometry and text returned in reverse order. (#990)
• 5ae80b7 README Correction (#988)
• fb161e6 Fix the timezone test and a missing minus in the timezone fallback (#986)
• 872bb49 chore: Support yarn build on Windows machines (#985)
• b5a4f9c Bump the version to 4.2.2 (#984)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[vercel]

The latest updates on your projects. Learn more about Vercel for Git ↗︎

Name	Status	Preview	Comments	Updated (UTC)
personal-site	✅ Ready (Inspect)	Visit Preview	💬 Add feedback	Apr 25, 2024 5:18am