@rollup/plugin-commonjs helps Rollup users convert CommonJS modules into ES modules, which are the standard for modern JavaScript. Comparing versions 25.0.5 and 25.0.4 reveals key updates important for developers. While both versions share the same core functionality of converting CommonJS modules and maintain identical dependencies like glob, magic-string, and @rollup/pluginutils, the crucial difference lies in their compatibility with Rollup itself.
Version 25.0.5 expands its peer dependency for Rollup, explicitly declaring support for Rollup version 4 (rollup: ^2.68.0||^3.0.0||^4.0.0). Developers upgrading to Rollup 4 can now confidently use the latest plugin version. The previous version, 25.0.4, specified ^2.68.0||^3.0.0, limiting official support to Rollup 3.
Moreover, the devDependencies section highlights the development environment used to build the plugin. Note that, version 25.0.5 was tested during development with Rollup versions up to 4.0.0-24, while version 25.0.4 was tested with version 3.19.0.
The dist object also shows slight differences in the unpacked size of the packages, 182225 bytes vs 181739 bytes.
In essence, version 25.0.5 is the recommended choice for projects using or transitioning to Rollup 4, providing verified compatibility and potentially benefiting from any underlying improvements or fixes that accompany Rollup's new major version. Developers sticking with Rollup 3 can continue using version 25.0.4 but should consider upgrading to 25.0.5 when migrating to Rollup 4. These updates ensure smooth integration and optimal performance when using CommonJS modules within a Rollup-powered workflow.
The are not vulnerabilities for the version 25.0.5 of the package @rollup/plugin-commonjs
