ESLint v7.28.0 introduces subtle yet significant updates compared to its predecessor, v7.27.0, making it an appealing upgrade for developers prioritizing stability and up-to-date dependencies. While the core functionality of this AST-based JavaScript linter remains consistent, crucial improvements reside in its dependency tree.
Notably, the glob-parent dependency advances from version 5.0.0 to 5.1.2. This seemingly small bump can impact projects that rely on glob pattern matching for file inclusion and exclusion during linting, patching potential security vulnerabilities and adding new functionalities. In addition, @eslint/eslintrc was updated from ^0.4.1 to ^0.4.2, and eslint-plugin-eslint-plugin was updated from ^2.2.1 to ^3.0.3, which may bring minor bug fixes or new features.
Furthermore, examining the dist object reveals a slight increase in the unpacked size of the package, from 3,146,771 bytes in v7.27.0 to 3,155,327 bytes in v7.28.0. This suggests that new features, updated documentation, or updated/new dependencies have been included. The fileCount remains the same at 393.
For developers, upgrading to v7.28.0 provides the benefit of receiving the latest security patches and potentially unlocking access to enhanced globbing capabilities within their ESLint configurations. Before upgrading, review your configuration files to ensure compatibility with the updates. Keep in mind that even minor updates can trigger subtle changes in linting behavior.
The are not vulnerabilities for the version 7.28.0 of the package eslint
