@storybook/addon-actions versions 3.4.6 and 3.4.5 are both action logger addons designed to enhance Storybook development workflows by providing developers with the ability to monitor and inspect actions triggered within their components. Both versions share nearly identical dependency structures, including vital libraries such as uuid for generating unique identifiers, glamor and glamorous for styling, deep-equal to make deep comparisons of values, prop-types for runtime type checking, and react-inspector for interactive React element inspection. The peer dependencies also remain the same, requiring react, react-dom, and @storybook/addons version 3.3.0 or higher.
The key difference between version 3.4.6 and 3.4.5 lies in an update to the @storybook/components dependency; version 3.4.6 utilizes @storybook/components version 3.4.6, while 3.4.5 relies on version 3.4.5 of the same package. This suggests that the primary changes introduced in 3.4.6 are likely related to improvements, bug fixes, or new features within the Storybook components ecosystem. Developers upgrading to 3.4.6 from 3.4.5 should anticipate enhancements related to the look and feel, usability, or functionality of Storybook's UI elements. The later version was released about 10 days after the first one. It is important to check the changelog associated with @storybook/components specifically for details surrounding fixes or enhancements. Using Action Logger in Storybook empowers developers to visualize and examine the actions executed within their stories, thus facilitating streamlined debugging and a deeper understanding of component behavior during development.
All the vulnerabilities related to the version 3.4.6 of the package
node-fetch forwards secure headers to untrusted sites
node-fetch forwards secure headers such as authorization, www-authenticate, cookie, & cookie2 when redirecting to a untrusted site.
