Ant Design (antd) saw a minor update from version 0.11.1 to 0.11.2 in early January 2016. While the core UI design language and dependency structure remained largely consistent, a few notable changes occurred primarily in the development environment.
The core dependencies for the UI components (like rc-menu, rc-tabs, and rc-table) remained the same, indicating a focus on stability in the component library itself. However, the react and react-dom dependencies shifted from a specific version ~0.14.2 to a wider range 0.14.x in the newer version, which suggests an effort to accommodate future minor updates within React 0.14. This can provide more flexibility for developers regarding their React versioning.
In the development dependencies, the update from 0.11.1 to 0.11.2 saw a change in the react-addons-test-utils dependency, moving from ~0.14.2 to 0.14.x. This mirrors the react and react-dom change. The release date also shifted, with 0.11.2 being published few days after 0.11.1 so it's likely the new version contains some bug fixes or minor improvements. If you want to use Ant Design it's better to download the newer 0.11.2 version and to start from there, as it contains the last bug fixes. This also indicates a focus on ensuring compatibility within the React 0.14 ecosystem.
All the vulnerabilities related to the version 0.11.2 of the package
semver vulnerable to Regular Expression Denial of Service
Versions of the package semver before 7.5.2 on the 7.x branch, before 6.3.1 on the 6.x branch, and all other versions before 5.7.2 are vulnerable to Regular Expression Denial of Service (ReDoS) via the function new Range, when untrusted user data is provided as a range.
