Tap-out is an npm package designed as an alternative TAP (Test Anything Protocol) parser, offering developers a streamlined way to process and interpret test results. Version 3.0.0 represents a notable update from its predecessor, version 2.1.0. While both versions share the same core dependencies - re-emitter, readable-stream, split, and trim - and development dependency tape suggesting a consistent functionality focused on parsing TAP output, a closer look reveals subtle but potentially impactful changes.
The most evident difference lies in the dist object, where unpackedSize in version 3.0.0 is slightly larger at 34224 bytes compared to 32983 bytes in version 2.1.0. This small increase in size might indicate minor code additions, bug fixes, or performance enhancements incorporated in the newer release. The file count remains constant at 16. Both versions are licensed under the MIT license, use the same repository, and are authored by Scott Corgan, indicating a continuous development effort. Developers considering upgrading should evaluate their existing TAP output streams to ensure compatibility and benefit from any potential performance tweaks or bug resolutions implemented in version 3.0.0. The releases happened nearly at the same day with a delta of aproximately 15 minutes.
All the vulnerabilities related to the version 3.0.0 of the package
Regular Expression Denial of Service in trim
All versions of package trim lower than 0.0.3 are vulnerable to Regular Expression Denial of Service (ReDoS) via trim().
