NestJS developers will find the latest release of @nestjs/common, version 10.4.0, an incremental update over the previous stable version, 10.3.10. Both versions share the same core dependencies, including uid, tslib, and iterare, indicating stability in the underlying utilities. Similarly, the peer dependencies remain unchanged, requiring rxjs, class-validator, reflect-metadata, and class-transformer for full functionality, ensuring backward compatibility for existing projects. The licensing, repository details, author, and funding information are also identical across both releases, solidifying the project's commitment to open-source principles and continuous development. The key difference lies in the dist section, where unpackedSize increased from 429350 bytes in version 10.3.10 to 430343 bytes in version 10.4.0. This indicates potential additions of new features, bug fixes, or performance improvements that contributed to the slight increase in package size. Most importantly the release date is the most significative difference with version 10.4.0 released on 2024-08-12 while version 10.3.10 was released on 2024-07-01. Developers should upgrade to version 10.4.0 to benefit from the latest enhancements and fixes, ensuring a more robust and optimized NestJS application.
All the vulnerabilities related to the version 10.4.0 of the package
nest allows a remote attacker to execute arbitrary code via the Content-Type header
File Upload vulnerability in nestjs nest prior to v.11.0.16 allows a remote attacker to execute arbitrary code via the Content-Type header.
