Sinon.js, a popular JavaScript testing library for spies, stubs, and mocks, released version 9.2.4 with subtle but potentially important changes compared to the previous stable version, 9.2.3. While the core functionality and most dependencies remain consistent, the key difference lies in the updated dependency of @sinonjs/samsam, moving from version 5.3.0 to 5.3.1. This likely includes minor bug fixes or performance improvements within the samsam library, which handles deep equality assertions and value comparison crucial for testing.
Developers upgrading to 9.2.4 should be aware of this dependency update and consider reviewing the samsam changelog for specific details if they encounter any unexpected behavior in their tests related to equality checks. The differences in the unpacked size of each package is also an evidence of code changes in the 5.3.1 library, the new version being slightly bigger.
Beyond this, both versions share the same robust set of features for creating versatile and reliable tests, including tools for stubbing functions, spying on method calls, and mocking complex objects. The library supports various assertion frameworks and seamlessly integrates into popular testing environments through the specified devDependencies like Mocha, ESLint, and Babel. By upgrading they will get the security fixes, increased reliability and overall improvements that the new @sinonjs/samsam brings and upgrading is always recommended when you work with open source libraries because a more modern version equals higher availability of support and better performance.
The are not vulnerabilities for the version 9.2.4 of the package sinon
