Zod version 3.20.6 represents a minor iteration over the previous 3.20.5 release, both retaining the core functionality of a TypeScript-first schema declaration and validation library with static type inference designed to streamline data validation in TypeScript projects. Examining the package.json data, the developer dependencies remain identical. This means the tooling and build process haven't undergone significant changes between the versions, indicating a potentially focused update.
The primary noticeable difference lies in the dist object, specifically the unpackedSize. Version 3.20.6 shows an unpacked size of 567142 bytes, while 3.20.5 had 560958 bytes. The difference of around 6KB suggests that version 3.20.6 includes some additions or modifications to the codebase, which is not evident from the dependency list. This could encompass bug fixes, performance improvements, or small feature enhancements. Usually, a minor version bump implies either bug fixes or small features where no backwards compatibility is broken so users of the library can upgrade safely without any code breaking. Finally the release date for version 3.20.6 is one day after the version 3.20.5
All the vulnerabilities related to the version 3.20.6 of the package
Zod denial of service vulnerability
Zod version 3.22.2 allows an attacker to perform a denial of service while validating emails.
