Nuxt-windicss version 2.6.0 brings subtle but important updates compared to its predecessor, version 2.5.5, primarily concerning its core dependencies. Developers upgrading from 2.5.5 will find that the key difference lies in the @nuxt/kit and @nuxt/schema dependencies. Version 2.6.0 upgrades these to version 3.0.0 from 3.0.0-rc.13 making it a stable release. This is crucial for ensuring compatibility and leveraging the latest features within the Nuxt 3 ecosystem and resolves potential issues arising from using release candidates.
Both versions continue to rely on the popular Windi CSS framework (version 3.5.6) for rapid, utility-first CSS development within Nuxt.js projects. Both also include valuable tools like windicss-analysis for inspecting and optimizing your Windi CSS styles and vite-plugin-windicss and windicss-webpack-plugin allowing for seamless integration with both Vite and Webpack build processes respectively.
The upgrade represents a shift towards enhanced stability and full support for the stable Nuxt 3 release. By moving to the stable version, developers can expect fewer breaking changes and better long-term support, thus streamlining their workflow. Developers will also find that the core functionalities like hot module replacement (HMR), on-demand CSS generation, and customizable configurations of windicss remains the same.
All the vulnerabilities related to the version 2.6.0 of the package
Command Injection in lodash
lodash versions prior to 4.17.21 are vulnerable to Command Injection via the template function.
