Zod is a TypeScript-first schema declaration and validation library, highly prized for its static type inference capabilities. Version 1.0.15 was released on March 29, 2020, shortly after version 1.0.14 which was released on March 28, 2020, suggesting a quick iteration addressing potential bugs or minor improvements. While both versions share identical dependencies like Jest, TSLint, Nodemon, ts-jest, Prettier, and @types/jest, the key difference lies in the TypeScript version specified as a dev dependency. Version 1.0.15 uses Typescript 3.2, whereas version 1.0.14 uses Typescript 3.1. This means the newer version likely incorporates features or bug fixes specific to TypeScript 3.2. Developers should consider upgrading to version 1.0.15 when using Typescript 3.2 or newer to ensure the best compatibility and potentially benefit from enhanced type checking and language features. Furthermore, the unpacked size of version 1.0.15 (123188 bytes) is slightly larger than version 1.0.14 (120732 bytes), implying code additions or modifications that may include new features or refined functionalities - although the change in size is not very significant. For developers invested in robust schema validation within their TypeScript projects, Zod offers a concise and type-safe approach, streamlining data validation and ensuring type consistency throughout the application. These updates demonstrate Zod's active development and commitment to staying current with the TypeScript ecosystem.
All the vulnerabilities related to the version 1.0.15 of the package
Zod denial of service vulnerability
Zod version 3.22.2 allows an attacker to perform a denial of service while validating emails.
