Storybook's @storybook/addon-viewport allows developers to simulate different screen sizes within their Storybook environment, making responsive design testing and development significantly easier. Version 6.1.1 is a patch release improving upon the prior stable version 6.1.0. While the core functionality remains the same—simulating various viewports like common mobile devices and custom dimensions directly within Storybook— a key change lies in dependency versions. For example, version 6.1.1 upgrades internal Storybook dependencies like @storybook/api, @storybook/addons, @storybook/theming, @storybook/components, @storybook/core-events, and @storybook/client-logger all to version "6.1.1" from "6.1.0".
These internal dependency updates likely represent bug fixes, performance improvements or new features within the broader Storybook ecosystem that developers benefit from implicitly when upgrading the addon. The peer dependencies on react and react-dom remain compatible with versions ^16.8.0 or ^17.0.0, so most users shouldn't experience compatibility issues. Because it's a patch upgrade Storybook users are encouraged to upgrade to 6.1.1 to benefit from the improvements and bug fixes contained within the Storybook ecosystem. Considering both versions share identical file counts and unpacked sizes, the update should be seamless, focusing primarily on internal code enhancements rather than a significant overhaul of features, ensuring a stable and predictable experience for any user already familiar with the addon.
All the vulnerabilities related to the version 6.1.1 of the package
Cross site scripting in markdown-to-jsx
Versions of the package markdown-to-jsx before 7.4.0 are vulnerable to Cross-site Scripting (XSS) via the src property due to improper input sanitization. An attacker can execute arbitrary code by injecting a malicious iframe element in the markdown.
