Ant Design (antd) is a popular React UI library providing a rich set of pre-built components for building enterprise-grade applications. Version 2.13.3, released on September 22, 2017, follows closely on the heels of version 2.13.2, which was released on September 16, 2017. Examining the dependency lists, the primary difference between these versions lies in the updated version of the rc-slider dependency. Version 2.13.3 uses rc-slider version ~8.3.0, while version 2.13.2 uses rc-slider version ~8.2.0. This suggests that the update from 2.13.2 to 2.13.3 mainly addresses improvements or bug fixes within the slider component provided by rc-slider.
For developers using Ant Design, this means that upgrading from 2.13.2 to 2.13.3 involves primarily a refinement of the slider functionality. If your application heavily utilizes sliders, this update is recommended to benefit from potential bug fixes, performance improvements, or new features introduced in rc-slider version 8.3.0. If sliders are not a significant part of your application's UI, the update might be considered less critical but is still advisable to maintain your project on the latest stable release and ensure compatibility and stability. Both versions maintain the same peer dependency requirements for React and React DOM, ensuring a smooth upgrade path for users already within the React 15 or later ecosystem. The consistent use of semver ranges (e.g., ^2.18.1, ~1.4.0) across most dependencies indicates a focus on maintaining backward compatibility while allowing for minor updates within those dependencies.
All the vulnerabilities related to the version 2.13.3 of the package
node-fetch forwards secure headers to untrusted sites
node-fetch forwards secure headers such as authorization, www-authenticate, cookie, & cookie2 when redirecting to a untrusted site.
