Zod, a TypeScript-first schema declaration and validation library with static type inference, saw a minor version update from 1.10.2 to 1.10.3 in August 2020. While both versions share identical descriptions, dependencies, devDependencies including testing frameworks like Jest and build tools like Typescript, licenses, repository information, and author details, a key difference lies in their release dates and unpacked size. Version 1.10.3 was released on August 17, 2020, whereas version 1.10.2 was released on August 4, 2020.
Worth noting is that the unpacked size of the library saw a small increase, growing from 246436 bytes in 1.10.2 to 246899 bytes in 1.10.3. This ~400 byte increase usually signifies small code improvements, bug fixes, or potentially minor feature additions. For developers using Zod, this suggests a possible enhancement between these two versions. Developers seeking the most recent stable version at that time would have needed to update to 1.10.3 to benefit from the potential enhancements and bug fixes implemented since the previous release. The increase in size will likely be unseen by developers but the potential underlying code modifications may offer benefits such as better performance, improved type validation or other unmentioned code changes.
All the vulnerabilities related to the version 1.10.3 of the package
Zod denial of service vulnerability
Zod version 3.22.2 allows an attacker to perform a denial of service while validating emails.
