Marked 6.0.0 represents a notable update to the popular markdown parser, building upon the foundation of version 5.1.2. Both versions share the core functionality of providing a fast and reliable markdown parsing solution, evidenced by the continued presence of shared dependencies like cheerio, jasmine, recheck, titleize, uglify-js, commonmark, node-fetch, markdown-it, front-matter, highlight.js, eslint-plugin-n, semantic-release, vuln-regex-detector, eslint-plugin-import, @markedjs/html-differ, @semantic-release/git, @semantic-release/npm, eslint-plugin-promise, eslint-config-standard, @semantic-release/github, @semantic-release/commit-analyzer, and @semantic-release/release-notes-generator.
However, version 6.0.0 introduces significant changes in its development dependencies. Most notably, it transitions to using typescript and related tooling like ts-node, @typescript-eslint/parser, and @typescript-eslint/eslint-plugin and tsup indicating a shift towards a TypeScript-based development workflow, potentially improving code maintainability and offering better type safety for developers. This contrasts with version 5.1.2, which relies on @babel/core, @babel/preset-env, and @rollup/plugin-babel suggesting Babel-based transpilation. The removal of rollup in favor of tsup suggests a change in the module bundling strategy too. Also, version 6.0.0 includes the cross-env and ts-expect dependencies while the previous version counts with@babel/core and @babel/preset-env among others. The newer version also has a larger unpacked size (856469 bytes vs 445171 bytes) and more files (28 vs 22). These architectural differences likely reflect performance enhancements, new features, or internal refactoring. Developers considering upgrading should evaluate if the benefits of using TypeScript and newer tooling outweigh any potential breaking changes or compatibility issues.
The are not vulnerabilities for the version 6.0.0 of the package marked
