UglifyJS, a widely used JavaScript toolkit for parsing, mangling, compressing, and beautifying code, saw a minor version update from 3.17.3 to 3.17.4. Both versions maintain consistent core functionality and share the same core development dependencies like acorn (version ~8.7.1) for parsing and semver (version ~6.3.0) for semantic versioning. The license remains BSD-2-Clause, and the repository is located at the same GitHub URL managed by Mihai Bazon.
The primary difference lies in the internal workings, suggested by the slight increase in unpackedSize from 1280650 bytes in version 3.17.3 to 1281238 bytes in version 3.17.4. This indicates that version 3.17.4 likely includes bug fixes, performance improvements, or minor feature enhancements that were not present in the previous iteration. The releaseDate confirms that 3.17.4 was released later on October 23, 2022, compared to 3.17.3 released on October 5, 2022, supporting the idea, that the later package version includes changes made to the older one.
For developers using UglifyJS, upgrading to version 3.17.4 is recommended. The package changes are minor but beneficial, as it potentially offers more stable performance and addressing of issues discovered post-release of version 3.17.3. The increased size and later release date implies refinements that will optimize the compression and code simplification process.
The are not vulnerabilities for the version 3.17.4 of the package uglify-js
