Capture-website version 0.3.1 brings minor updates over its predecessor, version 0.3.0, focusing primarily on dependency adjustments. The core functionality of capturing website screenshots remains consistent, making it still a valuable tool for developers needing automated screenshot generation. The most notable change lies in the updated puppeteer dependency, moving from version 1.13.0 to 1.14.0. This upgrade likely incorporates bug fixes, performance improvements, and possibly new features within Puppeteer itself, which directly benefits capture-website users by ensuring a more stable and feature-rich browser automation experience.
Beyond puppeteer, there are also subtle shifts in the development dependencies. ava sees an upgrade from 1.2.0 to 1.4.1, tsd from 0.7.0 to 0.7.1, image-size from version 0.7.1 to 0.7.2 and create-test-server from version 2.1.1 to 2.4.0. These updates typically introduce more robust testing capabilities and potentially streamlined development workflows, although they don't directly impact the end-user's experience. The core dependencies like file-url and tough-cookie remain unchanged, suggesting stability in those areas. The release date difference indicates a relatively short timeframe between the two versions, implying that 0.3.1 is likely a patch release addressing issues found or improvements made shortly after the 0.3.0 release. Developers should consider upgrading to 0.3.1 to leverage the benefits of the updated puppeteer version and the latest development tooling enhancements.
All the vulnerabilities related to the version 0.3.1 of the package
tough-cookie Prototype Pollution vulnerability
Versions of the package tough-cookie before 4.1.3 are vulnerable to Prototype Pollution due to improper handling of Cookies when using CookieJar in rejectPublicSuffixes=false mode. This issue arises from the manner in which the objects are initialized.
