Zod, the TypeScript-first schema declaration and validation library, released version 3.16.1 as a minor update to the previous stable version, 3.16.0. Both versions maintain the same core functionality: providing developers with a robust and type-safe way to define and validate data structures within their TypeScript applications ensuring data integrity and consistency during runtime. The development dependencies remain identical between the two releases, indicating no fundamental changes to the tooling or build process. This consistency suggests that the upgrade from 3.16.0 to 3.16.1 should be seamless for most users.
The key observable difference lies in the dist object which contains information of the package in its distribution format. Version 3.16.1 reports a slightly larger unpacked size of 452,830 bytes, compared to 3.16.0's 450,923 bytes, an increased value of approximately 2KB. While seemingly small, this difference might reflect bug fixes, performance improvements, or minor code refactoring within the library's internal implementation. Developers adopting Zod should benefit from these incremental improvements as they strive for reliable runtime type validation. Given the negligible size difference, users can expect comparable performance between the two minor versions. The newer version was released eight days after the previous one confirming that the changes were marginal and required a fast release to quickly address a problem or add a feature.
All the vulnerabilities related to the version 3.16.1 of the package
Zod denial of service vulnerability
Zod version 3.22.2 allows an attacker to perform a denial of service while validating emails.
