Zod, a TypeScript-first schema declaration and validation library renowned for its static type inference, released version 3.15.0 shortly after version 3.14.5 on May 6th, 2022. While both versions maintain identical development dependencies, suggesting no major shifts in tooling or testing infrastructure, a closer look reveals subtle differences of potential interest to developers. The core description, author, license, repository, and funding details remained constant, ensuring continuity in project governance and support.
The key observable variation lies in the dist object, specifically the unpackedSize. Version 3.15.0 presents a slightly smaller unpacked size of 445835 bytes compared to version 3.14.5's 445845 bytes. This 10-byte reduction, while seemingly insignificant, could indicate minor code optimizations, refined data structures, or removal of redundant elements. Developers focused on minimizing bundle size or optimizing performance might find this change relevant. Also, the release dates are different so there were ~7 minutes between the releases, which suggest it could be a patch of some kind.
Beyond these technical nuances, the stability in dependencies suggests a focus on incremental improvements and bug fixes rather than sweeping architectural changes. Developers adopting either version can expect a consistent development experience, backed by the same robust set of testing and linting tools. The library emphasizes maintaining a predictable and type-safe schema validation process. By choosing between the 2 versions the developers won't find any considerable difference.
All the vulnerabilities related to the version 3.15.0 of the package
Zod denial of service vulnerability
Zod version 3.22.2 allows an attacker to perform a denial of service while validating emails.
