@nestjs/common is a core module within the NestJS framework, a powerful and progressive Node.js framework for building efficient, reliable and scalable server-side applications. Comparing versions 10.3.9 and 10.3.8 reveals subtle yet important updates for developers. Both versions share the same fundamental dependencies: uid, tslib, and iterare ensuring core functionality remains consistent. The peer dependencies also stay the same, requiring compatible versions of rxjs, class-validator, reflect-metadata, and class-transformer, which highlights NestJS's commitment to integration with established libraries. The core license and repository information also remains identical, demonstrating the project's stability and commitment from author Kamil Mysliwiec.
The most noticeable difference lies in the dist section and releaseDate. Version 10.3.9 was released on June 3rd, 2024, while 10.3.8 was released on April 19th, 2024. The newer version has a slightly larger unpacked size (428534 bytes vs 428360 bytes) which can indicates bug fixes, minor feature enhancements or performance improvements. The tarball URL also differs, pointing to the specific package version. For developers, upgrading to 10.3.9 likely brings stability improvements, addresses potential issues found in 10.3.8, and ensures compatibility with the latest ecosystem changes within the NestJS framework. While the changes might not be groundbreaking, keeping up-to-date is a good practice to benefit from all the latest improvements and potential security fixes.
All the vulnerabilities related to the version 10.3.9 of the package
nest allows a remote attacker to execute arbitrary code via the Content-Type header
File Upload vulnerability in nestjs nest prior to v.11.0.16 allows a remote attacker to execute arbitrary code via the Content-Type header.
