The @types/mri package provides TypeScript definitions for the mri package, a lightweight command-line argument parser. Version 1.2.0 represents a significant shift in how these type definitions are handled compared to the previous stable version, 1.1.5. Most notably, version 1.2.0 declares that mri now provides its *own* type definitions, essentially making @types/mri version 1.2.0 a stub or placeholder. This means that instead of @types/mri containing the actual type definitions, it now simply points to the type definitions included directly within the mri package itself.
For developers, this change has important implications. If you're using mri version 1.2.0 of @types/mri or later it is preferable to install or update mri itself to the latest version since this is now responsible for supplying the types. This approach simplifies dependency management as you remove a potentially redundant dependency and ensures you always have the most up-to-date type information that is actively maintained by the mri package developers. The previous version 1.1.5, on the other hand, contained the actual type definitions within the @types/mri package itself and had a larger unpacked size suggesting it contains actual type definition.
The dependency change in 1.2.0 also reflects modern best practices, where libraries are increasingly including their own type definitions instead of relying on DefinitelyTyped. This approach generally leads to better type accuracy and more timely updates.
The are not vulnerabilities for the version 1.2.0 of the package @types/mri
