Command-line-usage is a valuable Node.js package designed to simplify the generation of command-line help messages for your applications. Examining versions 2.0.2 and 2.0.3 reveals some key updates developers should be aware of.
The primary difference lies in dependency updates. Version 2.0.3 upgrades the "typical" dependency from version 2.3.1 to version 2.4.2, "feature-detect-es6" from 1.0.0 to 1.2.0, and introduces newer development dependencies: "tape" is bumped from version ^4.0.0 to ^4.4.0, and "jsdoc-to-markdown" goes from version ^1.1.1 to ^1.3.3. Babel (specifically babel-preset-es2015) has also been added as a development dependency in 2.0.3.
These upgrades likely incorporate bug fixes, performance improvements, or new features within those respective packages. Notably, the change in feature-detect-es6 may indicate an improvement in ES6 feature detection capabilities within the command-line-usage package. The introduction of babel-preset-es2015 suggests a potential move toward using more modern JavaScript syntax in the development process of command-line-usage.
For developers using this library, the upgrade from 2.0.2 to 2.0.3 provides the advantages of these dependency updates, which could lead to enhanced stability, better ES6 support, and improved documentation generation through the upgraded jsdoc-to-markdown version. Consider upgrading to version 2.0.3 to benefit from these improvements, ensuring compatibility with your project's tooling and dependencies.
All the vulnerabilities related to the version 2.0.3 of the package
Prototype Pollution in deep-extend
Versions of deep-extend before 0.5.1 are vulnerable to prototype pollution.
Update to version 0.5.1 or later.
