@storybook/addon-viewport is a valuable tool for Storybook users, enabling them to simulate various screen sizes and resolutions directly within their component development environment. This addon streamlines responsive design testing and ensures components render correctly across diverse devices. Comparing versions 6.1.1 and 6.1.2, the core functionality remains consistent, focusing primarily on behind-the-scenes updates and dependency alignment within the Storybook ecosystem.
The notable distinction lies in the internal dependencies. Version 6.1.2 upgrades its internal dependencies "@storybook/api", "@storybook/addons", "@storybook/theming", "@storybook/components", "@storybook/core-events", and "@storybook/client-logger" from version 6.1.1 to 6.1.2. These changes, while seemingly minor, contribute to overall stability, bug fixes, and potentially performance improvements within the Storybook platform. Developers integrating this addon should benefit from a more refined and synchronized Storybook experience. The peer dependencies for react and react-dom remains unchanged.
While a direct feature addition isn't apparent between these versions, the synchronized dependency updates ensure compatibility and cohesiveness with the broader Storybook framework. Consequently, users looking to leverage the viewport addon for responsive design testing are encouraged to opt for the latest version (6.1.2) to capitalize on these under-the-hood enhancements and maintain a harmonious Storybook environment. The upgrade assures a more maintainable and potentially performant integration compared to sticking with the older 6.1.1 version.
All the vulnerabilities related to the version 6.1.2 of the package
Cross site scripting in markdown-to-jsx
Versions of the package markdown-to-jsx before 7.4.0 are vulnerable to Cross-site Scripting (XSS) via the src property due to improper input sanitization. An attacker can execute arbitrary code by injecting a malicious iframe element in the markdown.
