Zod is a TypeScript-first schema declaration and validation library, designed to provide seamless static type inference. Comparing versions 1.11.10 and 1.11.9, both share the same core development dependencies including testing frameworks like Jest and Ts-Jest, linting tools like TSLint, and code formatters like Prettier ensuring code quality and consistency. They also utilize Typescript of version 3.5. The fundamental difference lies in the dist object, which encapsulates the packaged library. While both versions contain the identical number of files (122), version 1.11.10 has a slightly smaller unpacked size (280029 bytes versus 280234 bytes of v1.11.9),This small difference may indicate minor optimizations or modifications in the compiled code. Further distinguishing the versions is their release date: version 1.11.10 was published on October 29, 2020, whereas the prior version was published on September 23, 2020.
For developers using Zod, it's important to update to the latest patch version (1.11.10 in this case) within the same minor release, as patch releases often include bug fixes and minor improvements and the slight reduction in unpacked size could translate into improved perfomance. Always refer to the official Zod documentation and release notes for a comprehensive understanding of changes and potential migration considerations.
All the vulnerabilities related to the version 1.11.10 of the package
Zod denial of service vulnerability
Zod version 3.22.2 allows an attacker to perform a denial of service while validating emails.
