@storybook/addon-viewport is a valuable tool for Storybook users focused on responsive design and ensuring component adaptability across various screen sizes. Versions 6.1.8 and 6.1.7, while seemingly close, hold subtle differences that can impact the development workflow. Both versions provide the core functionality of allowing developers to dynamically adjust the Storybook viewport to simulate different devices like mobile phones or tablets, streamlining responsive testing within the Storybook environment. The key difference lies in the internal dependencies. Version 6.1.8 upgrades dependencies like @storybook/api, @storybook/addons, @storybook/theming, @storybook/components, @storybook/core-events, and @storybook/client-logger from 6.1.7 to 6.1.8. Meaning bug-fixing and minor upgrades from the Storybook core packages. While the core functionality related to viewport manipulation remains the same, developers upgrading to 6.1.8 benefit from the latest enhancements and potentially bug fixes included within those Storybook dependencies. Developers choosing between versions should consider that 6.1.8 is the newer release,suggesting that it incorporates the latest improvements and stability patches. Developers using older Storybook versions might want to consider if these changes, including upgrading the Storybook core dependencies, create compatibility issues. Developers on the latest Storybook version should always prefer the latest @storybook/addon-viewport package.
All the vulnerabilities related to the version 6.1.8 of the package
Cross site scripting in markdown-to-jsx
Versions of the package markdown-to-jsx before 7.4.0 are vulnerable to Cross-site Scripting (XSS) via the src property due to improper input sanitization. An attacker can execute arbitrary code by injecting a malicious iframe element in the markdown.
