Ant Design witnessed a notable evolution between versions 0.9.5 and 0.10.0, offering developers refined tools and updated dependencies. Version 0.10.0 brought significant updates to several core components. In the dependencies, several 'rc-' components, like rc-menu rc-tabs, rc-tree, rc-util, rc-table, rc-dialog, rc-select, rc-slider, rc-switch, rc-upload, rc-animate, rc-tooltip, rc-calendar, rc-collapse, rc-dropdown, rc-progress, rc-pagination, rc-time-picker, rc-input-number, rc-notification and rc-form-validation got updated to newer versions, suggesting improvements in these underlying building blocks of the UI framework. The update from react-slick version 0.8.0 to 0.9.1 indicates enhancements in the carousel component.
Furthermore, the update from gregorian-calendar 3.0.0 to 4.0.1 and gregorian-calendar-format 3.0.1 to 4.0.4 suggests changes on how dates are handled.
On the development side, React jumped from version 0.13.0 to 0.14.2 and React-DOM was added with the same version, aligning the library with current React standards. These updates provide developers with access to performance improvements, bug fixes, and new features introduced in these React versions. Other updated development dependencies include babel, eslint, history, webpack and jest-cli. Developers should evaluate these changes when migrating as the new versions may have breaking changes.
All the vulnerabilities related to the version 0.10.0 of the package
semver vulnerable to Regular Expression Denial of Service
Versions of the package semver before 7.5.2 on the 7.x branch, before 6.3.1 on the 6.x branch, and all other versions before 5.7.2 are vulnerable to Regular Expression Denial of Service (ReDoS) via the function new Range, when untrusted user data is provided as a range.
