The @nestjs/common package is a fundamental component of the NestJS framework, a popular choice for building efficient and scalable Node.js server-side applications. Version 9.3.1 represents a minor update over the preceding stable version, 9.3.0. While both versions share identical dependencies, peer dependencies, licensing, repository details, author, and funding information, some subtle changes make version 9.3.1 noteworthy.
The core functionalities and APIs exposed by @nestjs/common remain consistent between the versions, ensuring a smooth transition for developers already working with NestJS. The dependencies uid, tslib, and iterare remain unchanged, indicating no alterations in the underlying utility libraries or TypeScript helper functions. Similarly, the peer dependencies, which represent external libraries that NestJS relies on but doesn't bundle directly, remain the same. This means developers can expect the same compatibility with versions of rxjs, cache-manager, class-validator, reflect-metadata, and class-transformer. The file count stays the same at 383 but the size of the unpacked package increments slightly form 421872 to 422005 which suggests a minor code improvement, bug fix, or documentation update.
The most evident distinction lies in the releaseDate, with version 9.3.1 released shortly after 9.3.0. This short window hints at a hotfix or urgent patch applied to address a potential issue identified in the initial 9.3.0 release. A detail that might be useful for debugging is knowing the exact release dates. Developers should consider upgrading to version 9.3.1 to leverage these potential improvements and ensure they are using the most up-to-date and stable version of the package.
All the vulnerabilities related to the version 9.3.1 of the package
nest allows a remote attacker to execute arbitrary code via the Content-Type header
File Upload vulnerability in nestjs nest prior to v.11.0.16 allows a remote attacker to execute arbitrary code via the Content-Type header.
