Zod, a TypeScript-first schema declaration and validation library providing static type inference, saw a minor version update from 1.1.0 to 1.1.1 on April 2nd, 2020. Both versions share the same core functionality and development dependencies, including tools like Jest for testing, TSLint and Prettier for code quality, and TypeScript itself for type safety. This suggests the update likely involves bug fixes, performance improvements, or minor enhancements that don't fundamentally alter the API or introduce new features. Developers using Zod for defining and validating data structures in TypeScript projects can seamlessly upgrade from 1.1.0 to 1.1.1 without expecting breaking changes. The identical dependency list indicates a stable development environment built on well-established tools.
A subtle increase in the unpacked size, from 152158 to 152166 bytes, hints at internal code adjustments, potentially optimizing existing features or addressing edge cases. While the core functionality remains the same, this suggests a refinement of the existing codebase, further solidifying the reliability of the library. The time delta is also a good indicator that the update was important and needed to be patched fast. Both versions were released on the same day. Given the shared feature set and development dependencies, the upgrade represents a low-risk, potentially beneficial update for developers already leveraging Zod in their projects.
All the vulnerabilities related to the version 1.1.1 of the package
Zod denial of service vulnerability
Zod version 3.22.2 allows an attacker to perform a denial of service while validating emails.
