npm - @niksbanna/bot-detector - Versions diffs - 1.0.0 → 1.0.2 - Mend

@niksbanna/bot-detector 1.0.0 → 1.0.2

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (10) hide show

package/README.md +37 -2
package/dist/bot-detector.cjs.js +3 -3
package/dist/bot-detector.cjs.js.map +2 -2
package/dist/bot-detector.esm.js +3 -3
package/dist/bot-detector.esm.js.map +2 -2
package/dist/bot-detector.iife.js +3 -3
package/dist/bot-detector.iife.js.map +2 -2
package/dist/bot-detector.iife.min.js +1 -1
package/package.json +5 -4
package/src/signals/automation/PuppeteerSignal.js +8 -3

package/README.md CHANGED Viewed

@@ -50,10 +50,11 @@ const result = await detector.detect();
 ### Browser Script Tag
+**ESM (recommended):**
 ```html
 <script type="module">
-  import { detect } from './dist/bot-detector.esm.js';
+  import { detect } from 'https://cdn.jsdelivr.net/npm/@niksbanna/bot-detector/dist/bot-detector.esm.js';
   const result = await detect();
   if (result.verdict === 'bot') {
     // Handle bot detection
@@ -61,6 +62,29 @@ const result = await detector.detect();
 </script>
 ```
+**Classic script tag (IIFE):**
+```html
+<!-- Full build -->
+<script src="https://cdn.jsdelivr.net/npm/@niksbanna/bot-detector/dist/bot-detector.iife.js"></script>
+<!-- Minified -->
+<script src="https://cdn.jsdelivr.net/npm/@niksbanna/bot-detector/dist/bot-detector.iife.min.js"></script>
+<script>
+  BotDetectorLib.detect().then(result => {
+    if (result.verdict === 'bot') {
+      // Handle bot detection
+    }
+  });
+</script>
+```
+**Named subpath imports (bundlers / Node.js):**
+```javascript
+// Full IIFE source
+import '@niksbanna/bot-detector/iife';
+// Minified IIFE source
+import '@niksbanna/bot-detector/iife.min';
+```
 ## Detection Result
 ```typescript
@@ -240,6 +264,17 @@ npm test
 npm run dev
 ```
+## Changelog
+### v1.0.2
+- **Fix:** `PuppeteerSignal` no longer false-positives on Angular apps — `__zone_symbol__*` bindings injected by Zone.js are now excluded from the suspicious-bindings check.
+- **Fix:** `PuppeteerSignal` no longer false-positives on normal Chrome pages — `incomplete-chrome-object` now only triggers when `window.chrome.runtime` is absent, not when `runtime.id` is undefined (which is normal outside of extensions).
+- **Fix:** Corrected `package.json` `browser` entry to point to ESM instead of IIFE, fixing import resolution in modern bundlers (Vite, webpack, Rollup, esbuild).
+- **Added:** Named export subpaths `./iife` and `./iife.min` for explicit IIFE access.
+### v1.0.0
+- Initial release.
 ## License
 MIT

package/dist/bot-detector.cjs.js CHANGED Viewed

@@ -2231,14 +2231,14 @@ var PuppeteerSignal = class extends Signal {
       confidence = Math.max(confidence, 0.9);
     }
     const suspiciousBindings = Object.keys(window).filter((key) => {
-      return key.startsWith("__") && typeof window[key] === "function";
+      return key.startsWith("__") && !key.startsWith("__zone_symbol__") && typeof window[key] === "function";
     });
-    if (suspiciousBindings.length > 3) {
+    if (suspiciousBindings.length > 5) {
       indicators.push("suspicious-bindings");
       confidence = Math.max(confidence, 0.5);
     }
     if (typeof window.chrome !== "undefined") {
-      if (!window.chrome.runtime || !window.chrome.runtime.id) {
+      if (!window.chrome.runtime) {
         indicators.push("incomplete-chrome-object");
         confidence = Math.max(confidence, 0.4);
       }