Zod version 1.9.0 represents a minor update to the TypeScript-first schema declaration and validation library, building upon the foundation laid by version 1.8.0. While the core functionality and development dependencies remain consistent between the two releases—with shared tools like Jest for testing, TSLint for linting, and TypeScript itself for type checking—key differences lie in the distribution specifics.
Notably, version 1.9.0 exhibits a reduced footprint, with a "dist" consisting of 112 files and an unpacked size of 254737, compared to version 1.8.0's 145 files and 325413 unpacked size. This suggests potential optimizations in the packaging process, possibly through code minification, dependency trimming, or improved build configurations. For developers, this translates to a potentially smaller installation size and faster download times when incorporating Zod into their projects. The release dates also indicate a rapid succession, with version 1.9.0 arriving shortly after 1.8.0, hinting at bug fixes or immediate improvements that the maintainers deemed essential.
Both versions maintain the MIT license and the same author and repository details, signifying continuity in ownership and development practices. Developers considering Zod for schema validation can confidently leverage either version, knowing that they benefit from static type inference and a focus on TypeScript-first design, but version 1.9.0 offers a more streamlined package potentially.
All the vulnerabilities related to the version 1.9.0 of the package
Zod denial of service vulnerability
Zod version 3.22.2 allows an attacker to perform a denial of service while validating emails.
