NestJS's @nestjs/common package has been updated from version 11.0.7 to 11.0.8. Both versions cater to building robust and scalable Node.js web applications, providing the essential building blocks for creating NestJS modules and components. Key dependencies like uid, tslib, and iterare remain consistent between the releases, ensuring continuity in core functionality. Similarly, peer dependencies such as rxjs, class-validator, reflect-metadata, and class-transformer also remain unchanged, indicating that existing projects should experience seamless upgrades.
While the fundamental dependencies and peer dependencies remain the same, a notable difference lies in the unpacked size, increasing slightly from 453,247 bytes in version 11.0.7 to 453,280 bytes in version 11.0.8. This suggests the inclusion of minor enhancements or bug fixes. Furthermore, the release dates indicate that version 11.0.8 was published on February 6, 2025, while 11.0.7 was released on January 31, 2025. For developers already using @nestjs/common, upgrading to 11.0.8 is advisable to leverage the latest refinements. When upgrading it is always good to check the change log on the official github repository of nestjs projects. Always make sure that the new version that you are installing is compatible with the rest of the installed modules. Projects initiating new NestJS endeavors can directly opt for version 11.0.8 to benefit from any recent improvements.
All the vulnerabilities related to the version 11.0.8 of the package
nest allows a remote attacker to execute arbitrary code via the Content-Type header
File Upload vulnerability in nestjs nest prior to v.11.0.16 allows a remote attacker to execute arbitrary code via the Content-Type header.
