Zod is a TypeScript-first schema declaration and validation library renowned for its seamless static type inference. Comparing versions 1.11.6 and 1.11.7 reveals subtle yet potentially impactful changes for developers. Both versions share identical core functionalities and development dependencies, including testing frameworks like Jest and ts-jest, linting tools such as tslint, and formatting utilities like Prettier. The TypeScript version remains consistent at 3.7, ensuring compatibility.
However, a notable difference lies within the dist object. Version 1.11.7 exhibits a slightly larger file count (127 vs. 122) and unpacked size (279428 vs. 278690), suggesting potential internal code modifications, optimizations, or added features that don't necessitate changes in the declared dependencies. Also the repository url is slightly different. Finally the release dates also show a time difference of about 30 minutes probably indicating a the resolution of a bug or a minor change.
For developers using Zod, these minor updates might signify bug fixes, performance improvements, or subtle enhancements. While the core API remains the same, upgrading to version 1.11.7 could offer a more refined and stable experience. It's always recommended to consult the changelog (if available) for a precise understanding of the changes implemented between these versions. Developers should prioritize the latest version, as it incorporates the newest improvements.
All the vulnerabilities related to the version 1.11.7 of the package
Zod denial of service vulnerability
Zod version 3.22.2 allows an attacker to perform a denial of service while validating emails.
