Growl is a Node.js library designed to deliver unobtrusive notifications, bringing the familiar Growl experience to your JavaScript applications. Version 1.6.1 refines the established functionality of version 1.6.0, offering developers a potentially more stable and polished experience. While the core purpose of providing Growl notifications remains consistent between the two versions, subtle improvements and bug fixes likely differentiate the newer release.
Developers choosing between these versions should prioritize stability and potential bug resolutions. Version 1.6.1, released on September 25, 2012, benefits from a slightly later release date than version 1.6.0, which came out on September 6, 2012. This suggests that 1.6.1 incorporates any immediate fixes or improvements identified in the preceding weeks following the 1.6.0 launch.
For new projects, opting for the latest version (1.6.1) is generally recommended to leverage any enhancements. However, projects already running smoothly with 1.6.0 might not require an immediate upgrade unless specific issues warrant it. Both versions are authored by TJ Holowaychuk and share the same fundamental purpose: delivering clean, unobtrusive notifications within a Node.js environment. Examining the change logs or commit history (if available) would provide a precise breakdown of the modifications between the two versions.
All the vulnerabilities related to the version 1.6.1 of the package
Growl before 1.10.0 vulnerable to Command Injection
Affected versions of growl do not properly sanitize input prior to passing it into a shell command, allowing for arbitrary command execution.
Update to version 1.10.0 or later.
