Zod is a TypeScript-first schema declaration and validation library, prized for its robust static type inference capabilities. Comparing versions 1.11.11 and 1.11.12, developers will find subtle but potentially important differences. Both versions maintain identical dependencies and development dependencies, indicating a stable core and development environment. The licensing and authorship remain consistent, ensuring continuity for projects already using Zod. The key differences reside in the dist object. Version 1.11.12 features a slightly larger tarball, a difference in the number of files included (126 vs 123), and an increased unpacked size (314232 vs 308122). These differences suggest that version 1.11.12 likely contains additional features, bug fixes, or internal optimizations not present in the prior version. The release dates also provide insight; version 1.11.12 was released significantly later, indicating that the changes incorporated were deemed necessary after a period of use and refinement on version 1.11.11. For developers, this signals a potentially worthwhile upgrade, offering the benefits of a more recent and possibly more polished release of the library, especially considering the relatively short iteration cycles. While specific details require deeper investigation into the commit history, the size differences hint at valuable enhancements.
All the vulnerabilities related to the version 1.11.12 of the package
Zod denial of service vulnerability
Zod version 3.22.2 allows an attacker to perform a denial of service while validating emails.
