Zod is a TypeScript-first schema declaration and validation library renowned for its static type inference capabilities. Comparing versions 3.10.1 and 3.10.0, developers will find subtle yet important differences.
Both versions share identical core functionality and a comprehensive suite of development dependencies including jest, husky, tslib, eslint, rollup, and various plugins for linting, testing, and building. This indicates consistent tooling and a commitment to code quality. The license, repository, author, and funding information remained unchanged, ensuring continuity in terms of licensing and project support.
The most notable difference lies in the typescript version specified in devDependencies. Version 3.10.1 upgraded to typescript:^4.4.4 from typescript:^4.4.3 in version 3.10.0. While seemingly minor, this update brought the latest TypeScript features and bug fixes to the development process. Developers leveraging newer TypeScript capabilities in their projects will benefit from this compatibility directly with the build and testing environment using Zod. Minor changes may also be observed in the dist object, with unpackedSize changing from 422243 bytes to 422581 bytes. The release date of the newer version is also different.
For developers already using Zod, upgrading to 3.10.1 offers a seamless transition with no breaking changes apparent in the metadata, while benefiting from the incremental improvements delivered by the newer Typescript compiler.
All the vulnerabilities related to the version 3.10.1 of the package
Zod denial of service vulnerability
Zod version 3.22.2 allows an attacker to perform a denial of service while validating emails.
