Ant Design (antd) is a popular React UI library offering a rich set of pre-built components for building enterprise-grade applications. Version 3.7.1 followed closely after version 3.7.0, offering minor bug fixes and improvements that could enhance the developer experience.
One significant difference between the versions lies in the rc-menu dependency. In 3.7.0, rc-menu was set to ~7.2.2, but in 3.7.1, it was downgraded to ~7.0.2. This change likely addresses potential issues introduced in the newer rc-menu version. Another smaller difference is that the react-lifecycles-compat under dependencies got downgraded ^3.0.4 to ^3.0.2.
In the devDependencies, 3.7.1 updated @yesmeck/offline-plugin from a github repo github:yesmeck/offline-plugin#fix-cache-key to the npm version ^5.0.5.
For developers considering antd, these subtle differences highlight the importance of staying updated with patch releases. While 3.7.0 provides a solid foundation with components like Form, Menu, Table, and more, the quick follow-up in 3.7.1 indicates a proactive approach to stability and potentially addresses reported problems that might have risen after the earlier release.
When adopting any UI library, closely monitor dependency updates, especially for widely used packages like rc-menu. Patch releases are typically crucial for fixing unexpected quirks introduced in feature updates. This also tells that the team is pushing bug fixes very fast and that they are very active.
All the vulnerabilities related to the version 3.7.1 of the package
node-fetch forwards secure headers to untrusted sites
node-fetch forwards secure headers such as authorization, www-authenticate, cookie, & cookie2 when redirecting to a untrusted site.
