Midnight Smoker has a new major version, 6.0.0, released on August 23, 2023, building on version 5.1.0, released just two days prior. Both versions are designed to run smoke tests against packages, simulating the publish process, ensuring quality and preventing unexpected issues. Key differences in dependencies highlight the evolution: v6.0.0 adds glob, is-file-esm, and zod along with its associated type definitions (@types/is-file-esm), introducing esm module support and schema validation using zod. The development dependencies remain largely consistent, suggesting a focus on internal improvements and new feature integration rather than significant tooling changes. The update also includes source-map-support as a dependency for debugging purposes. Notably, the dist information reveals a substantial increase in the package size from 289KB to 480KB and file count from 109 to 159, indicative of the added features and potentially more comprehensive test coverage. For developers, this upgrade offers enhanced functionality with esm module resolution and data validation baked in. Developers should evaluate these changes to ensure seamless integration with existing workflows and take advantage of the new features to robustly test their packages before publishing which will help with stability and minimize regressions.
All the vulnerabilities related to the version 6.0.0 of the package
Zod denial of service vulnerability
Zod version 3.22.2 allows an attacker to perform a denial of service while validating emails.
