The yaml-eslint-parser package, designed to provide ESLint-compatible parsing of YAML files, has seen notable changes between versions 1.2.3 and 1.3.0. A key difference is the dropping of lodash as a direct dependency, streamlining the package and potentially reducing its footprint. Both versions support core functionality with yaml and eslint-visitor-keys, ensuring continued compatibility and feature parity in basic YAML parsing for ESLint.
The development dependencies reflect significant updates in the ESLint ecosystem. Version 1.3.0 showcases upgrades to ESLint itself (from version 8.x to 9.x) and related plugins like @typescript-eslint/*, reflecting efforts to keep the parser aligned with the latest linting standards and TypeScript features. Developers upgrading should be aware of potential breaking changes in these core dependencies. New additions like @eslint-community/eslint-plugin-eslint-comments and @ota-meshi/eslint-plugin at a higher version, suggest enhanced linting capabilities. The jump in @typescript-eslint/parser version from 7.x to 8.x should be noted by those using TypeScript within their YAML configurations.
Furthermore, the releaseDate indicates a substantial gap between releases, with version 1.3.0 purportedly released far into the future. This is clearly an error and must be taken into consideration. The upgrade indicates a focus on modernizing the development environment and incorporating newer linting rules and TypeScript support. A key decision for developers hinges on whether the benefits of these updated dependencies outweigh any potential compatibility issues introduced by the changes. Always consider the impact of the updated linter rules.
The are not vulnerabilities for the version 1.3.0 of the package yaml-eslint-parser
