From 0cfacdf927864dcc0a80802d3fa5dfaf84b55f4b Mon Sep 17 00:00:00 2001
From: Roger Steve Ruiz <rogeruiz@truss.works>
Date: Fri, 22 Oct 2021 19:40:41 +0000
Subject: [PATCH] Resolve UA Parser JS to version 0.7.28;

This came up in Truss #infrasec-random as a security vulnerability. See
the [Slack thread there for more context][slack]

[slack]: https://trussworks.slack.com/archives/C5B2EAX96/p1634928729001500

See related security announcements here:

- faisalman/ua-parser-js#536
- facebook/docusaurus#5769

Co-authored-by: Felipe Lee <felipe@truss.works>
---
 package.json | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/package.json b/package.json
index 6e10b516b0c..12d71a7d2a6 100644
--- a/package.json
+++ b/package.json
@@ -82,7 +82,8 @@
     "immer": "^9.0.2",
     "url-parse": "^1.5.1",
     "y18n": "^5.0.5",
-    "webpack": "4.44.2"
+    "webpack": "4.44.2",
+    "**/ua-parser-js": "0.7.28"
   },
   "name": "client",
   "private": true,