Zod is a TypeScript-first schema declaration and validation library, known for its static type inference capabilities. Comparing versions 1.2.0 and 1.1.2, both share the same core development dependencies, including Jest for testing, TSLint and Prettier for code quality, Nodemon for development convenience, and TypeScript itself for type safety. The key differences lie in the release details and distribution package. Version 1.2.0, released on April 6, 2020, has a slightly larger distribution package with 94 files and an unpacked size of 158291 bytes. In contrast, version 1.1.2, released two days prior on April 4, 2020, comprises 88 files and an unpacked size of 148841 bytes.
For developers, this difference suggests that version 1.2.0 likely includes new features, bug fixes, or documentation updates that resulted in the increased file count and size. While the core functionalities and development dependencies remain consistent, users should consider upgrading to 1.2.0 to benefit from the latest improvements and potential performance enhancements. The consistent usage of tools like Jest and TSLint across both versions indicates a commitment to quality and maintainability, making Zod a reliable choice for schema validation in TypeScript projects. Be aware that the change can be very small, so look at the official changelog if you want to be sure about the change.
All the vulnerabilities related to the version 1.2.0 of the package
Zod denial of service vulnerability
Zod version 3.22.2 allows an attacker to perform a denial of service while validating emails.
