@uekichinos/browser-gate 0.1.0

package/CHANGELOG.md

@@ -0,0 +1,13 @@
+# Changelog
+
+All notable changes to `@uekichinos/browser-gate` are documented here.
+
+## [0.1.0] - 2026-04-11
+### Added
+- Initial release
+- `browserGate()` — detect outdated browsers and redirect or callback
+- Feature detection mode (default) — checks globalThis, fetch, Promise.allSettled, IntersectionObserver, CSS.supports
+- Minimum version mode — configurable per-browser version thresholds
+- Latest version mode — live check via endoflife.date API with optional tolerance
+- All three modes combinable — any failure triggers the outdated handler
+- ESM, CJS, and IIFE builds

package/README.md

@@ -0,0 +1,193 @@
+# @uekichinos/browser-gate
+
+Detect outdated browsers and redirect or block access. Supports three detection modes — use one, two, or all three together.
+
+- **Feature detection** (default) — checks for modern browser APIs
+- **Minimum version** — fails if browser version is below your threshold
+- **Latest version** — live check via [endoflife.date](https://endoflife.date) API
+
+Zero dependencies. Works via ESM, CommonJS, or `<script>` tag.
+
+---
+
+## Installation
+
+```bash
+npm install @uekichinos/browser-gate
+```
+
+---
+
+## Quick start
+
+Place in `<head>` — before your app loads — so outdated browsers are caught early.
+
+```html
+<script type="module">
+  import { browserGate } from '@uekichinos/browser-gate'
+  await browserGate({ redirect: '/outdated' })
+</script>
+```
+
+---
+
+## API
+
+### `browserGate(options)`
+
+Returns a `Promise<void>`. Resolves silently if the browser passes all checks. Redirects or calls `onOutdated` if it fails.
+
+```ts
+await browserGate(options: BrowserGateOptions): Promise<void>
+```
+
+---
+
+## Options
+
+| Option | Type | Default | Description |
+|---|---|---|---|
+| `redirect` | `string` | — | URL to redirect to when outdated |
+| `onOutdated` | `(info: OutdatedInfo) => void` | — | Callback instead of redirect |
+| `features` | `FeatureKey[] \| true \| false` | `true` | Feature detection (see below) |
+| `minVersions` | `{ chrome?: number, firefox?: number, safari?: number, edge?: number, opera?: number }` | — | Minimum version per browser |
+| `checkLatest` | `boolean \| { tolerance?: number }` | — | Live latest-version check |
+
+Either `redirect` or `onOutdated` must be provided.
+
+---
+
+## Detection modes
+
+### Mode 1 — Feature detection (default)
+
+Runs automatically. Checks whether the browser supports five modern APIs:
+
+| Feature | Absent in |
+|---|---|
+| `globalThis` | IE11, very old browsers |
+| `fetch` | IE11 |
+| `Promise.allSettled` | Chrome < 76, Firefox < 71, Safari < 13 |
+| `IntersectionObserver` | IE11, old Safari |
+| `CSS.supports` | IE11 |
+
+```js
+// Default — checks all five features
+await browserGate({ redirect: '/outdated' })
+
+// Custom feature list
+await browserGate({
+  redirect: '/outdated',
+  features: ['fetch', 'IntersectionObserver'],
+})
+
+// Disable feature detection
+await browserGate({
+  redirect: '/outdated',
+  features: false,
+  minVersions: { chrome: 100 },
+})
+```
+
+### Mode 2 — Minimum version
+
+Checks the detected browser version against your thresholds. Only browsers you list are checked — others pass through.
+
+Uses User-Agent parsing. Note: UA strings can be spoofed, so this is best combined with feature detection.
+
+```js
+await browserGate({
+  redirect: '/outdated',
+  minVersions: {
+    chrome: 100,
+    firefox: 100,
+    safari: 15,
+    edge: 100,
+  },
+})
+```
+
+### Mode 3 — Latest version (async)
+
+Fetches live version data from [endoflife.date](https://endoflife.date) and checks whether the browser is up to date.
+
+Use `tolerance` to allow a few versions behind (useful since Chrome releases every 4 weeks).
+
+Fails open on network error, timeout (5s), or unrecognised browser — your users are never blocked due to an API outage.
+
+```js
+// Must be on latest
+await browserGate({ redirect: '/outdated', checkLatest: true })
+
+// Allow up to 2 versions behind
+await browserGate({ redirect: '/outdated', checkLatest: { tolerance: 2 } })
+```
+
+---
+
+## Combining all three modes
+
+Any failing check triggers the outdated handler.
+
+```js
+await browserGate({
+  redirect: '/outdated',
+  features: ['fetch', 'IntersectionObserver', 'CSS.supports'],
+  minVersions: { chrome: 100, safari: 15 },
+  checkLatest: { tolerance: 2 },
+})
+```
+
+---
+
+## `onOutdated` callback
+
+Use `onOutdated` instead of `redirect` to handle the outdated case yourself.
+
+```js
+await browserGate({
+  onOutdated: (info) => {
+    console.log(info.browser)  // 'chrome'
+    console.log(info.version)  // '80'
+    console.log(info.reasons)
+    // [
+    //   'Missing feature: IntersectionObserver',
+    //   'Below minimum version: chrome >= 100 (detected: 80)',
+    // ]
+
+    document.body.innerHTML = `<p>Please update your browser.</p>`
+  },
+})
+```
+
+---
+
+## Via `<script>` tag (no bundler)
+
+```html
+<script src="https://unpkg.com/@uekichinos/browser-gate/dist/index.global.js"></script>
+<script>
+  BrowserGate.browserGate({ redirect: '/outdated' })
+</script>
+```
+
+---
+
+## Supported browsers detected
+
+| Browser | Detected via |
+|---|---|
+| Chrome | `Chrome/XX` in UA |
+| Firefox | `Firefox/XX` in UA |
+| Safari | `Version/XX Safari` in UA |
+| Edge (Chromium) | `Edg/XX` in UA |
+| Edge (legacy) | `Edge/XX` in UA |
+| Opera | `OPR/XX` in UA |
+
+Unrecognised browsers always pass through.
+
+---
+
+## License
+
+MIT © [uekichinos](https://www.npmjs.com/~uekichinos)

package/SECURITY.md

@@ -0,0 +1,21 @@
+# Security Policy
+
+## Supported Versions
+
+| Version | Supported |
+|---------|-----------|
+| 0.1.x   | Yes       |
+
+## Reporting a Vulnerability
+
+If you discover a security vulnerability, please **do not** open a public GitHub issue.
+
+Instead, report it privately via GitHub:
+[https://github.com/uekichinos/browser-gate/security/advisories/new](https://github.com/uekichinos/browser-gate/security/advisories/new)
+
+Please include:
+- A description of the vulnerability
+- Steps to reproduce
+- Potential impact
+
+You can expect a response within **72 hours**. If the vulnerability is confirmed, a fix will be released as soon as possible and credited to you (unless you prefer to remain anonymous).

package/dist/index.cjs

@@ -0,0 +1,161 @@
+"use strict";
+var __defProp = Object.defineProperty;
+var __getOwnPropDesc = Object.getOwnPropertyDescriptor;
+var __getOwnPropNames = Object.getOwnPropertyNames;
+var __hasOwnProp = Object.prototype.hasOwnProperty;
+var __export = (target, all) => {
+  for (var name in all)
+    __defProp(target, name, { get: all[name], enumerable: true });
+};
+var __copyProps = (to, from, except, desc) => {
+  if (from && typeof from === "object" || typeof from === "function") {
+    for (let key of __getOwnPropNames(from))
+      if (!__hasOwnProp.call(to, key) && key !== except)
+        __defProp(to, key, { get: () => from[key], enumerable: !(desc = __getOwnPropDesc(from, key)) || desc.enumerable });
+  }
+  return to;
+};
+var __toCommonJS = (mod) => __copyProps(__defProp({}, "__esModule", { value: true }), mod);
+
+// src/index.ts
+var index_exports = {};
+__export(index_exports, {
+  browserGate: () => browserGate
+});
+module.exports = __toCommonJS(index_exports);
+
+// src/detect-features.ts
+var DEFAULT_FEATURES = [
+  "globalThis",
+  "fetch",
+  "Promise.allSettled",
+  "IntersectionObserver",
+  "CSS.supports"
+];
+function detectMissingFeatures(features) {
+  return features.filter((f) => !hasFeature(f));
+}
+function hasFeature(key) {
+  switch (key) {
+    case "globalThis":
+      return typeof globalThis !== "undefined";
+    case "fetch":
+      return typeof fetch !== "undefined";
+    case "Promise.allSettled":
+      return typeof Promise !== "undefined" && typeof Promise.allSettled === "function";
+    case "IntersectionObserver":
+      return typeof IntersectionObserver !== "undefined";
+    case "CSS.supports":
+      return typeof CSS !== "undefined" && typeof CSS.supports === "function";
+  }
+}
+
+// src/detect-latest.ts
+var ENDOFLIFE_URLS = {
+  chrome: "https://endoflife.date/api/chrome.json",
+  firefox: "https://endoflife.date/api/firefox.json",
+  safari: "https://endoflife.date/api/safari.json",
+  edge: "https://endoflife.date/api/edge.json"
+};
+var FETCH_TIMEOUT_MS = 5e3;
+async function checkLatestVersion(browser, tolerance = 0) {
+  if (browser.name === "unknown" || browser.version === null) {
+    return { passed: true };
+  }
+  const url = ENDOFLIFE_URLS[browser.name];
+  if (!url) return { passed: true };
+  try {
+    const controller = new AbortController();
+    const timer = setTimeout(() => controller.abort(), FETCH_TIMEOUT_MS);
+    const res = await fetch(url, { signal: controller.signal });
+    clearTimeout(timer);
+    if (!res.ok) return { passed: true };
+    const data = await res.json();
+    if (!Array.isArray(data) || data.length === 0) return { passed: true };
+    const latestCycle = parseInt(data[0].cycle, 10);
+    if (isNaN(latestCycle)) return { passed: true };
+    const diff = latestCycle - browser.version;
+    if (diff > tolerance) {
+      return {
+        passed: false,
+        reason: `Outdated: ${browser.name} ${browser.version} is ${diff} version(s) behind latest (${latestCycle})`
+      };
+    }
+    return { passed: true };
+  } catch {
+    return { passed: true };
+  }
+}
+
+// src/ua-parser.ts
+function parseUA(ua) {
+  const edgeMatch = ua.match(/Edg\/(\d+)/);
+  if (edgeMatch) return { name: "edge", version: parseInt(edgeMatch[1], 10) };
+  const edgeLegacyMatch = ua.match(/Edge\/(\d+)/);
+  if (edgeLegacyMatch) return { name: "edge", version: parseInt(edgeLegacyMatch[1], 10) };
+  const operaMatch = ua.match(/OPR\/(\d+)/);
+  if (operaMatch) return { name: "opera", version: parseInt(operaMatch[1], 10) };
+  const chromeMatch = ua.match(/Chrome\/(\d+)/);
+  if (chromeMatch) return { name: "chrome", version: parseInt(chromeMatch[1], 10) };
+  const firefoxMatch = ua.match(/Firefox\/(\d+)/);
+  if (firefoxMatch) return { name: "firefox", version: parseInt(firefoxMatch[1], 10) };
+  const safariMatch = ua.match(/Version\/(\d+).*Safari/);
+  if (safariMatch) return { name: "safari", version: parseInt(safariMatch[1], 10) };
+  return { name: "unknown", version: null };
+}
+
+// src/detect-version.ts
+function checkMinVersions(minVersions, ua) {
+  const browser = parseUA(ua);
+  if (browser.name === "unknown" || browser.version === null) {
+    return { passed: true };
+  }
+  const min = minVersions[browser.name];
+  if (min === void 0) return { passed: true };
+  if (browser.version < min) {
+    return {
+      passed: false,
+      reason: `Below minimum version: ${browser.name} >= ${min} (detected: ${browser.version})`
+    };
+  }
+  return { passed: true };
+}
+
+// src/index.ts
+async function browserGate(options) {
+  const ua = navigator.userAgent;
+  const browser = parseUA(ua);
+  const reasons = [];
+  if (options.features !== false) {
+    const featuresToCheck = options.features === true || options.features === void 0 ? DEFAULT_FEATURES : options.features;
+    const missing = detectMissingFeatures(featuresToCheck);
+    for (const f of missing) {
+      reasons.push(`Missing feature: ${f}`);
+    }
+  }
+  if (options.minVersions) {
+    const result = checkMinVersions(options.minVersions, ua);
+    if (!result.passed && result.reason) reasons.push(result.reason);
+  }
+  if (options.checkLatest) {
+    const tolerance = typeof options.checkLatest === "object" ? options.checkLatest.tolerance ?? 0 : 0;
+    const result = await checkLatestVersion(browser, tolerance);
+    if (!result.passed && result.reason) reasons.push(result.reason);
+  }
+  if (reasons.length === 0) return;
+  const info = {
+    browser: browser.name,
+    version: browser.version !== null ? String(browser.version) : null,
+    reasons
+  };
+  if (options.onOutdated) {
+    options.onOutdated(info);
+  } else if (options.redirect) {
+    window.location.href = options.redirect;
+  }
+}
+// Annotate the CommonJS export names for ESM import in node:
+0 && (module.exports = {
+  browserGate
+});
+//# sourceMappingURL=index.cjs.map

package/dist/index.d.cts

@@ -0,0 +1,71 @@
+type BrowserName = 'chrome' | 'firefox' | 'safari' | 'edge' | 'opera';
+type FeatureKey = 'globalThis' | 'fetch' | 'Promise.allSettled' | 'IntersectionObserver' | 'CSS.supports';
+interface OutdatedInfo {
+    /** Detected browser name e.g. `'chrome'`, or `'unknown'` if undetected */
+    browser: string;
+    /** Detected major version e.g. `'98'`, or `null` if undetected */
+    version: string | null;
+    /** List of reasons the browser was considered outdated */
+    reasons: string[];
+}
+interface BrowserGateOptions {
+    /**
+     * URL to redirect to when the browser is outdated.
+     * Either `redirect` or `onOutdated` must be provided.
+     */
+    redirect?: string;
+    /**
+     * Called with outdated browser info instead of redirecting.
+     * Either `redirect` or `onOutdated` must be provided.
+     */
+    onOutdated?: (info: OutdatedInfo) => void;
+    /**
+     * Feature detection mode (default — always runs unless set to `false`).
+     * - `true` or omitted — checks the default feature set
+     * - `FeatureKey[]` — checks only the specified features
+     * - `false` — disables feature detection entirely
+     */
+    features?: FeatureKey[] | boolean;
+    /**
+     * Minimum version mode — fail if the detected browser version is below the threshold.
+     * Only browsers listed here are checked; others are allowed through.
+     *
+     * @example
+     * { chrome: 100, firefox: 100, safari: 15, edge: 100 }
+     */
+    minVersions?: Partial<Record<BrowserName, number>>;
+    /**
+     * Latest version mode — fetch live data from endoflife.date and fail if
+     * the browser is behind the latest release (within optional tolerance).
+     * - `true` — zero tolerance (must be on latest)
+     * - `{ tolerance: N }` — allow up to N versions behind latest
+     */
+    checkLatest?: boolean | {
+        tolerance?: number;
+    };
+}
+
+/**
+ * Checks whether the current browser is outdated and redirects or calls
+ * `onOutdated` if it is. Resolves without doing anything if the browser passes.
+ *
+ * Three detection modes — use one, two, or all three together:
+ * - **Feature detection** (default) — checks for modern browser APIs
+ * - **Minimum version** — fails if browser version is below your threshold
+ * - **Latest version** — fetches live data from endoflife.date (async)
+ *
+ * @example
+ * // Default — feature detection only
+ * await browserGate({ redirect: '/outdated' })
+ *
+ * @example
+ * // All three combined
+ * await browserGate({
+ *   redirect: '/outdated',
+ *   minVersions: { chrome: 100, safari: 15 },
+ *   checkLatest: { tolerance: 2 },
+ * })
+ */
+declare function browserGate(options: BrowserGateOptions): Promise<void>;
+
+export { type BrowserGateOptions, type BrowserName, type FeatureKey, type OutdatedInfo, browserGate };

package/dist/index.d.ts

@@ -0,0 +1,71 @@
+type BrowserName = 'chrome' | 'firefox' | 'safari' | 'edge' | 'opera';
+type FeatureKey = 'globalThis' | 'fetch' | 'Promise.allSettled' | 'IntersectionObserver' | 'CSS.supports';
+interface OutdatedInfo {
+    /** Detected browser name e.g. `'chrome'`, or `'unknown'` if undetected */
+    browser: string;
+    /** Detected major version e.g. `'98'`, or `null` if undetected */
+    version: string | null;
+    /** List of reasons the browser was considered outdated */
+    reasons: string[];
+}
+interface BrowserGateOptions {
+    /**
+     * URL to redirect to when the browser is outdated.
+     * Either `redirect` or `onOutdated` must be provided.
+     */
+    redirect?: string;
+    /**
+     * Called with outdated browser info instead of redirecting.
+     * Either `redirect` or `onOutdated` must be provided.
+     */
+    onOutdated?: (info: OutdatedInfo) => void;
+    /**
+     * Feature detection mode (default — always runs unless set to `false`).
+     * - `true` or omitted — checks the default feature set
+     * - `FeatureKey[]` — checks only the specified features
+     * - `false` — disables feature detection entirely
+     */
+    features?: FeatureKey[] | boolean;
+    /**
+     * Minimum version mode — fail if the detected browser version is below the threshold.
+     * Only browsers listed here are checked; others are allowed through.
+     *
+     * @example
+     * { chrome: 100, firefox: 100, safari: 15, edge: 100 }
+     */
+    minVersions?: Partial<Record<BrowserName, number>>;
+    /**
+     * Latest version mode — fetch live data from endoflife.date and fail if
+     * the browser is behind the latest release (within optional tolerance).
+     * - `true` — zero tolerance (must be on latest)
+     * - `{ tolerance: N }` — allow up to N versions behind latest
+     */
+    checkLatest?: boolean | {
+        tolerance?: number;
+    };
+}
+
+/**
+ * Checks whether the current browser is outdated and redirects or calls
+ * `onOutdated` if it is. Resolves without doing anything if the browser passes.
+ *
+ * Three detection modes — use one, two, or all three together:
+ * - **Feature detection** (default) — checks for modern browser APIs
+ * - **Minimum version** — fails if browser version is below your threshold
+ * - **Latest version** — fetches live data from endoflife.date (async)
+ *
+ * @example
+ * // Default — feature detection only
+ * await browserGate({ redirect: '/outdated' })
+ *
+ * @example
+ * // All three combined
+ * await browserGate({
+ *   redirect: '/outdated',
+ *   minVersions: { chrome: 100, safari: 15 },
+ *   checkLatest: { tolerance: 2 },
+ * })
+ */
+declare function browserGate(options: BrowserGateOptions): Promise<void>;
+
+export { type BrowserGateOptions, type BrowserName, type FeatureKey, type OutdatedInfo, browserGate };

package/dist/index.global.js

@@ -0,0 +1,159 @@
+"use strict";
+var BrowserGate = (() => {
+  var __defProp = Object.defineProperty;
+  var __getOwnPropDesc = Object.getOwnPropertyDescriptor;
+  var __getOwnPropNames = Object.getOwnPropertyNames;
+  var __hasOwnProp = Object.prototype.hasOwnProperty;
+  var __export = (target, all) => {
+    for (var name in all)
+      __defProp(target, name, { get: all[name], enumerable: true });
+  };
+  var __copyProps = (to, from, except, desc) => {
+    if (from && typeof from === "object" || typeof from === "function") {
+      for (let key of __getOwnPropNames(from))
+        if (!__hasOwnProp.call(to, key) && key !== except)
+          __defProp(to, key, { get: () => from[key], enumerable: !(desc = __getOwnPropDesc(from, key)) || desc.enumerable });
+    }
+    return to;
+  };
+  var __toCommonJS = (mod) => __copyProps(__defProp({}, "__esModule", { value: true }), mod);
+
+  // src/index.ts
+  var index_exports = {};
+  __export(index_exports, {
+    browserGate: () => browserGate
+  });
+
+  // src/detect-features.ts
+  var DEFAULT_FEATURES = [
+    "globalThis",
+    "fetch",
+    "Promise.allSettled",
+    "IntersectionObserver",
+    "CSS.supports"
+  ];
+  function detectMissingFeatures(features) {
+    return features.filter((f) => !hasFeature(f));
+  }
+  function hasFeature(key) {
+    switch (key) {
+      case "globalThis":
+        return typeof globalThis !== "undefined";
+      case "fetch":
+        return typeof fetch !== "undefined";
+      case "Promise.allSettled":
+        return typeof Promise !== "undefined" && typeof Promise.allSettled === "function";
+      case "IntersectionObserver":
+        return typeof IntersectionObserver !== "undefined";
+      case "CSS.supports":
+        return typeof CSS !== "undefined" && typeof CSS.supports === "function";
+    }
+  }
+
+  // src/detect-latest.ts
+  var ENDOFLIFE_URLS = {
+    chrome: "https://endoflife.date/api/chrome.json",
+    firefox: "https://endoflife.date/api/firefox.json",
+    safari: "https://endoflife.date/api/safari.json",
+    edge: "https://endoflife.date/api/edge.json"
+  };
+  var FETCH_TIMEOUT_MS = 5e3;
+  async function checkLatestVersion(browser, tolerance = 0) {
+    if (browser.name === "unknown" || browser.version === null) {
+      return { passed: true };
+    }
+    const url = ENDOFLIFE_URLS[browser.name];
+    if (!url) return { passed: true };
+    try {
+      const controller = new AbortController();
+      const timer = setTimeout(() => controller.abort(), FETCH_TIMEOUT_MS);
+      const res = await fetch(url, { signal: controller.signal });
+      clearTimeout(timer);
+      if (!res.ok) return { passed: true };
+      const data = await res.json();
+      if (!Array.isArray(data) || data.length === 0) return { passed: true };
+      const latestCycle = parseInt(data[0].cycle, 10);
+      if (isNaN(latestCycle)) return { passed: true };
+      const diff = latestCycle - browser.version;
+      if (diff > tolerance) {
+        return {
+          passed: false,
+          reason: `Outdated: ${browser.name} ${browser.version} is ${diff} version(s) behind latest (${latestCycle})`
+        };
+      }
+      return { passed: true };
+    } catch {
+      return { passed: true };
+    }
+  }
+
+  // src/ua-parser.ts
+  function parseUA(ua) {
+    const edgeMatch = ua.match(/Edg\/(\d+)/);
+    if (edgeMatch) return { name: "edge", version: parseInt(edgeMatch[1], 10) };
+    const edgeLegacyMatch = ua.match(/Edge\/(\d+)/);
+    if (edgeLegacyMatch) return { name: "edge", version: parseInt(edgeLegacyMatch[1], 10) };
+    const operaMatch = ua.match(/OPR\/(\d+)/);
+    if (operaMatch) return { name: "opera", version: parseInt(operaMatch[1], 10) };
+    const chromeMatch = ua.match(/Chrome\/(\d+)/);
+    if (chromeMatch) return { name: "chrome", version: parseInt(chromeMatch[1], 10) };
+    const firefoxMatch = ua.match(/Firefox\/(\d+)/);
+    if (firefoxMatch) return { name: "firefox", version: parseInt(firefoxMatch[1], 10) };
+    const safariMatch = ua.match(/Version\/(\d+).*Safari/);
+    if (safariMatch) return { name: "safari", version: parseInt(safariMatch[1], 10) };
+    return { name: "unknown", version: null };
+  }
+
+  // src/detect-version.ts
+  function checkMinVersions(minVersions, ua) {
+    const browser = parseUA(ua);
+    if (browser.name === "unknown" || browser.version === null) {
+      return { passed: true };
+    }
+    const min = minVersions[browser.name];
+    if (min === void 0) return { passed: true };
+    if (browser.version < min) {
+      return {
+        passed: false,
+        reason: `Below minimum version: ${browser.name} >= ${min} (detected: ${browser.version})`
+      };
+    }
+    return { passed: true };
+  }
+
+  // src/index.ts
+  async function browserGate(options) {
+    const ua = navigator.userAgent;
+    const browser = parseUA(ua);
+    const reasons = [];
+    if (options.features !== false) {
+      const featuresToCheck = options.features === true || options.features === void 0 ? DEFAULT_FEATURES : options.features;
+      const missing = detectMissingFeatures(featuresToCheck);
+      for (const f of missing) {
+        reasons.push(`Missing feature: ${f}`);
+      }
+    }
+    if (options.minVersions) {
+      const result = checkMinVersions(options.minVersions, ua);
+      if (!result.passed && result.reason) reasons.push(result.reason);
+    }
+    if (options.checkLatest) {
+      const tolerance = typeof options.checkLatest === "object" ? options.checkLatest.tolerance ?? 0 : 0;
+      const result = await checkLatestVersion(browser, tolerance);
+      if (!result.passed && result.reason) reasons.push(result.reason);
+    }
+    if (reasons.length === 0) return;
+    const info = {
+      browser: browser.name,
+      version: browser.version !== null ? String(browser.version) : null,
+      reasons
+    };
+    if (options.onOutdated) {
+      options.onOutdated(info);
+    } else if (options.redirect) {
+      window.location.href = options.redirect;
+    }
+  }
+  return __toCommonJS(index_exports);
+})();
+//# sourceMappingURL=index.global.js.map

package/dist/index.js

@@ -0,0 +1,134 @@
+// src/detect-features.ts
+var DEFAULT_FEATURES = [
+  "globalThis",
+  "fetch",
+  "Promise.allSettled",
+  "IntersectionObserver",
+  "CSS.supports"
+];
+function detectMissingFeatures(features) {
+  return features.filter((f) => !hasFeature(f));
+}
+function hasFeature(key) {
+  switch (key) {
+    case "globalThis":
+      return typeof globalThis !== "undefined";
+    case "fetch":
+      return typeof fetch !== "undefined";
+    case "Promise.allSettled":
+      return typeof Promise !== "undefined" && typeof Promise.allSettled === "function";
+    case "IntersectionObserver":
+      return typeof IntersectionObserver !== "undefined";
+    case "CSS.supports":
+      return typeof CSS !== "undefined" && typeof CSS.supports === "function";
+  }
+}
+
+// src/detect-latest.ts
+var ENDOFLIFE_URLS = {
+  chrome: "https://endoflife.date/api/chrome.json",
+  firefox: "https://endoflife.date/api/firefox.json",
+  safari: "https://endoflife.date/api/safari.json",
+  edge: "https://endoflife.date/api/edge.json"
+};
+var FETCH_TIMEOUT_MS = 5e3;
+async function checkLatestVersion(browser, tolerance = 0) {
+  if (browser.name === "unknown" || browser.version === null) {
+    return { passed: true };
+  }
+  const url = ENDOFLIFE_URLS[browser.name];
+  if (!url) return { passed: true };
+  try {
+    const controller = new AbortController();
+    const timer = setTimeout(() => controller.abort(), FETCH_TIMEOUT_MS);
+    const res = await fetch(url, { signal: controller.signal });
+    clearTimeout(timer);
+    if (!res.ok) return { passed: true };
+    const data = await res.json();
+    if (!Array.isArray(data) || data.length === 0) return { passed: true };
+    const latestCycle = parseInt(data[0].cycle, 10);
+    if (isNaN(latestCycle)) return { passed: true };
+    const diff = latestCycle - browser.version;
+    if (diff > tolerance) {
+      return {
+        passed: false,
+        reason: `Outdated: ${browser.name} ${browser.version} is ${diff} version(s) behind latest (${latestCycle})`
+      };
+    }
+    return { passed: true };
+  } catch {
+    return { passed: true };
+  }
+}
+
+// src/ua-parser.ts
+function parseUA(ua) {
+  const edgeMatch = ua.match(/Edg\/(\d+)/);
+  if (edgeMatch) return { name: "edge", version: parseInt(edgeMatch[1], 10) };
+  const edgeLegacyMatch = ua.match(/Edge\/(\d+)/);
+  if (edgeLegacyMatch) return { name: "edge", version: parseInt(edgeLegacyMatch[1], 10) };
+  const operaMatch = ua.match(/OPR\/(\d+)/);
+  if (operaMatch) return { name: "opera", version: parseInt(operaMatch[1], 10) };
+  const chromeMatch = ua.match(/Chrome\/(\d+)/);
+  if (chromeMatch) return { name: "chrome", version: parseInt(chromeMatch[1], 10) };
+  const firefoxMatch = ua.match(/Firefox\/(\d+)/);
+  if (firefoxMatch) return { name: "firefox", version: parseInt(firefoxMatch[1], 10) };
+  const safariMatch = ua.match(/Version\/(\d+).*Safari/);
+  if (safariMatch) return { name: "safari", version: parseInt(safariMatch[1], 10) };
+  return { name: "unknown", version: null };
+}
+
+// src/detect-version.ts
+function checkMinVersions(minVersions, ua) {
+  const browser = parseUA(ua);
+  if (browser.name === "unknown" || browser.version === null) {
+    return { passed: true };
+  }
+  const min = minVersions[browser.name];
+  if (min === void 0) return { passed: true };
+  if (browser.version < min) {
+    return {
+      passed: false,
+      reason: `Below minimum version: ${browser.name} >= ${min} (detected: ${browser.version})`
+    };
+  }
+  return { passed: true };
+}
+
+// src/index.ts
+async function browserGate(options) {
+  const ua = navigator.userAgent;
+  const browser = parseUA(ua);
+  const reasons = [];
+  if (options.features !== false) {
+    const featuresToCheck = options.features === true || options.features === void 0 ? DEFAULT_FEATURES : options.features;
+    const missing = detectMissingFeatures(featuresToCheck);
+    for (const f of missing) {
+      reasons.push(`Missing feature: ${f}`);
+    }
+  }
+  if (options.minVersions) {
+    const result = checkMinVersions(options.minVersions, ua);
+    if (!result.passed && result.reason) reasons.push(result.reason);
+  }
+  if (options.checkLatest) {
+    const tolerance = typeof options.checkLatest === "object" ? options.checkLatest.tolerance ?? 0 : 0;
+    const result = await checkLatestVersion(browser, tolerance);
+    if (!result.passed && result.reason) reasons.push(result.reason);
+  }
+  if (reasons.length === 0) return;
+  const info = {
+    browser: browser.name,
+    version: browser.version !== null ? String(browser.version) : null,
+    reasons
+  };
+  if (options.onOutdated) {
+    options.onOutdated(info);
+  } else if (options.redirect) {
+    window.location.href = options.redirect;
+  }
+}
+export {
+  browserGate
+};
+//# sourceMappingURL=index.js.map

package/package.json

@@ -0,0 +1,66 @@
+{
+  "name": "@uekichinos/browser-gate",
+  "version": "0.1.0",
+  "description": "Detect outdated browsers and redirect or block access. Supports feature detection (default), minimum version checks, and live latest-version checks via endoflife.date — use one, two, or all three together.",
+  "keywords": [
+    "uekichinos",
+    "browser",
+    "outdated",
+    "browser-detect",
+    "browser-redirect",
+    "browser-gate",
+    "legacy-browser",
+    "browser-support",
+    "feature-detection"
+  ],
+  "author": {
+    "name": "uekichinos",
+    "url": "https://www.npmjs.com/~uekichinos"
+  },
+  "homepage": "https://github.com/uekichinos/browser-gate#readme",
+  "repository": {
+    "type": "git",
+    "url": "git+https://github.com/uekichinos/browser-gate.git"
+  },
+  "license": "MIT",
+  "funding": {
+    "type": "github",
+    "url": "https://github.com/sponsors/uekichinos"
+  },
+  "type": "module",
+  "main": "./dist/index.cjs",
+  "module": "./dist/index.js",
+  "types": "./dist/index.d.ts",
+  "exports": {
+    ".": {
+      "types": "./dist/index.d.ts",
+      "import": "./dist/index.js",
+      "require": "./dist/index.cjs"
+    }
+  },
+  "files": [
+    "dist/*.js",
+    "dist/*.cjs",
+    "dist/*.d.ts",
+    "dist/*.d.cts",
+    "dist/*.global.js",
+    "CHANGELOG.md",
+    "SECURITY.md"
+  ],
+  "publishConfig": {
+    "access": "public"
+  },
+  "scripts": {
+    "build": "tsup",
+    "prepublishOnly": "pnpm build && pnpm test",
+    "test": "vitest run",
+    "test:watch": "vitest",
+    "lint": "tsc --noEmit"
+  },
+  "devDependencies": {
+    "happy-dom": "^20.8.9",
+    "tsup": "^8.2.4",
+    "typescript": "^5.5.4",
+    "vitest": "^3.2.4"
+  }
+}