Zod, a TypeScript-first schema declaration and validation library, saw a minor update from version 1.2.5 to 1.2.6. While the core functionality and dependency stack remain consistent – with shared development dependencies like Jest, TSLint, Nodemon, and TypeScript – a few subtle differences exist. The most notable change lies in the dist section regarding distribution metadata. Version 1.2.6 exhibits a slightly smaller unpacked size of 196986 bytes compared to version 1.2.5's 197246 bytes. Both versions maintain the same fileCount of 115. This difference in unpacked size may represent minor code optimizations or adjustments to included files within the package. Additionally, the release date distinguishes the versions, with 1.2.6 being published on April 22, 2020, succeeding the April 17, 2020 release of 1.2.5. For developers using Zod, this update likely involves negligible breaking changes, focusing instead on potential performance enhancements or bug fixes. Given the shared dependency graph, the upgrade should be seamless, and the core validation and type inference features of the library would remain reliable. Users can expect the same excellent developer experience for defining schemas and ensuring type safety in their Typescript codebases.
All the vulnerabilities related to the version 1.2.6 of the package
Zod denial of service vulnerability
Zod version 3.22.2 allows an attacker to perform a denial of service while validating emails.
