Version Details and Security Vulnerabilities

📦

redux

3.7.0

Comparision Betweeen 3.7.0 and 3.6.0

Identify the differences between the current version of the package and the previous one.

Version

Dependencies

Dev Dependencies

Peer Dependencies

Distributed Files

N/A

Unpacked Size

N/A

Version 3.7.0 Details

Redux 3.7.0 and 3.6.0, both predictable state containers for JavaScript applications, showcase subtle but important evolutions. A key difference lies in their dependencies. While both rely on core packages like lodash, lodash-es, and loose-envify, version 3.7.0 upgrades symbol-observable to ^1.0.3 from 1.0.2 in version 3.6.0, potentially offering enhanced observable support.

More notably, the development dependencies reveal significant tooling updates. Version 3.7.0 utilizes newer versions of ESLint (^4.0.0) with accompanying plugins, along with a modern Jest testing framework (^20.0.4), and Rollup for bundling (^0.43.0). This signifies a shift towards contemporary linting, testing, and build processes. The older version 3.6.0 used older tooling versions like ESLint (^1.10.3), Mocha for testing and Webpack for bundling.

Developers upgrading to 3.7.0 will benefit from improved code quality checks with updated ESLint configurations and plugins, optimized build processes attributed to Rollup, and robust testing capabilities with Jest. Consider these benefits when deciding which version is suitable for your project. The upgrade provides a more streamlined and maintainable development workflow, aligning with current best practices in JavaScript development resulting in better performance and less future bugs.

Security Vulnerabilities

This site is an independent open-source project and is not affiliated with, endorsed by, or sponsored by npm, Inc. or GitHub, Inc. The name “npm” is a registered trademark of npm, Inc., used here solely to describe compatibility and reference publicly available npm package data.