React version 16.3.0, released on March 29, 2018, builds upon the solid foundation of its predecessor, version 16.2.0, released on November 28, 2017. While both versions share the same core dependencies, including fbjs, prop-types, loose-envify, and object-assign, and retain the MIT license and the official React GitHub repository, version 16.3.0 introduces enhancements that are valuable for developers.
The key difference lies in the included distribution metadata. Version 16.3.0 explicitly provides information about the distribution package, specifying that the tarball file contains 8 files and has an unpacked size of 118031 bytes. This detailed insight into the package structure offers developers a more transparent understanding of the library's footprint. Although not directly impacting the API or coding directly, the presence of fileCount and unpackedSize within the dist object offers better insight for debugging and dependency management automation.
For developers choosing between these versions, 16.3.0 provides a marginally better choice due to its enhanced metadata, though the core functionality remains consistent between the two. It is important to check the official React changelog for detailed information on bug fixes and feature additions introduced with this release as version numbers can indicate subtle but important changes.
All the vulnerabilities related to the version 16.3.0 of the package
node-fetch forwards secure headers to untrusted sites
node-fetch forwards secure headers such as authorization, www-authenticate, cookie, & cookie2 when redirecting to a untrusted site.
