@storybook/addon-viewport is a valuable tool for Storybook users aiming to build and test responsive components effectively. By allowing developers to adjust the Storybook's viewport size and orientation, it simplifies the process of ensuring components render correctly across different screen sizes and devices. Analyzing versions 6.1.20 and 6.1.19, the core functionality remains consistent, focusing on providing a responsive design testing environment.
The key distinction between the two versions lies in the updated dependencies of the 6.1.20 release. Specifically, dependencies like @storybook/api, @storybook/addons, @storybook/theming, @storybook/components, @storybook/core-events, and @storybook/client-logger are bumped from version 6.1.19 to 6.1.20. These updates typically incorporate bug fixes, performance improvements, and potentially new features within the broader Storybook ecosystem.
For developers, upgrading to version 6.1.20 is recommended to leverage the latest improvements and fixes within the Storybook framework. While the core API of the addon remains the same, ensuring compatibility and benefiting from the refined underlying dependencies will lead to a smoother and more robust development experience. Consider testing your Storybook setup after upgrading to ensure a seamless transition and to take advantage of any new capabilities introduced in the updated dependencies. The "react" and "react-dom" peer dependencies remain compatible with versions 16.8.0 and 17.0.0.
All the vulnerabilities related to the version 6.1.20 of the package
Cross site scripting in markdown-to-jsx
Versions of the package markdown-to-jsx before 7.4.0 are vulnerable to Cross-site Scripting (XSS) via the src property due to improper input sanitization. An attacker can execute arbitrary code by injecting a malicious iframe element in the markdown.
