NestJS is a popular Node.js framework for building efficient and scalable server-side applications. Comparing versions 9.3.0 and 9.2.1 of the @nestjs/common package reveals key updates for developers. A significant change is the replacement of the uuid dependency in version 9.2.1 with uid in 9.3.0. This swap from uuid version 9.0.0 to uid version 2.0.1 potentially impacts how unique identifiers are generated within NestJS applications, warranting investigation for developers reliant on generating unique IDs. Both versions maintain peer dependencies on essential packages like rxjs, cache-manager, class-validator, reflect-metadata, and class-transformer, ensuring compatibility with existing NestJS projects. The release date indicates a roughly two-month gap between the versions, with 9.3.0 landing on February 1, 2023, and 9.2.1 on November 29, 2022. tslib and iterare is the same for both versions. Furthermore, version 9.3.0 has slightly more files and a bigger unpacked size. Developers should carefully evaluate the implications of the uid migration before upgrading, considering how it might impact existing ID generation strategies. The official NestJS documentation and community resources are valuable for understanding the nuances and potential benefits of this update. The license, repository, author, and funding details remain constant, reflecting the project's ongoing maintenance and support.
All the vulnerabilities related to the version 9.3.0 of the package
nest allows a remote attacker to execute arbitrary code via the Content-Type header
File Upload vulnerability in nestjs nest prior to v.11.0.16 allows a remote attacker to execute arbitrary code via the Content-Type header.
