Ant Design, the popular React UI library, saw a minor version bump from 3.12.2 to 3.12.3, offering subtle improvements and refinements. Both versions retain the same core dependencies, ensuring continued compatibility with essential libraries like react, react-dom, lodash, and moment. Developers relying on these fundamental packages can upgrade seamlessly. The peer dependencies remain identical, stipulating react and react-dom versions of >=16.0.0, crucial for components to function correctly within a modern React ecosystem.
While the dependency lists appear largely unchanged, a critical difference resides within the "dist" metadata. Notably, the "unpackedSize" field experiences a slight decrease from 42541799 bytes in version 3.12.2 to 42423462 bytes in 3.12.3. This suggests underlying optimizations or the removal of redundant code, potentially leading to a marginally smaller bundle size and improved performance for applications using the updated library. The release date also indicates only a day between the two versions, so likely just bug fixes. Developers concerned about front-end footprint will appreciate this subtle enhancement. Also the size of the package is slightly smaller because they did some cleanup of not needed file. Ultimately both versions are really similar and developers can upgrade without worring about breaking changes.
All the vulnerabilities related to the version 3.12.3 of the package
node-fetch forwards secure headers to untrusted sites
node-fetch forwards secure headers such as authorization, www-authenticate, cookie, & cookie2 when redirecting to a untrusted site.
