@nestjs/common is a fundamental package for building robust and scalable Node.js server-side applications using the Nest framework. Comparing versions 9.3.5 and 9.3.4 reveals subtle but potentially important distinctions for developers. Both versions share the same core dependencies like uid, tslib, and iterare, and peer dependencies including rxjs, cache-manager, class-validator, reflect-metadata, and class-transformer, ensuring compatibility with existing Nest projects. The license, repository, author, and funding details also remain consistent, indicating a stable and well-maintained project.
However, the release date differs slightly. Version 9.3.5 was released a short time after 9.3.4. The significant difference lies within the dist object. While both versions have the same number of files (383), the unpacked size of version 9.3.5 (422396 bytes) is slightly larger than that of 9.3.4 (422122 bytes). This suggests that version 9.3.5 may contain bug fixes, performance improvements, or minor feature additions that have increased the overall package size. Developers upgrading from 9.3.4 should be aware of this slight size increase. While the difference may be negligible for most applications, it's worth considering for resource-constrained environments. Always consult the official NestJS changelog for detailed information on specific changes in each release to make informed decisions about upgrading.
All the vulnerabilities related to the version 9.3.5 of the package
nest allows a remote attacker to execute arbitrary code via the Content-Type header
File Upload vulnerability in nestjs nest prior to v.11.0.16 allows a remote attacker to execute arbitrary code via the Content-Type header.
