Zod version 3.21.0 introduces incremental improvements over the previous stable release, 3.20.6, primarily focused on internal optimizations and refinements. While the core functionality of TypeScript-first schema declaration and validation remains consistent, developers should note the subtle shifts in the development environment dependencies. Both versions leverage the same suite of tools for building, testing, and linting, ensuring continuous code quality and reliability. Notable tools include typescript, eslint, prettier, and jest, used for type checking, code formatting, and unit testing, respectively.
A key distinction lies in the specific versions of the development dependencies employed. For instance, version 3.21.0 explicitly pins the typescript version to "~4.5.0", while version 3.20.6 uses "4.5". This could indicate a targeted alignment with a specific TypeScript feature set or bug fix, which provides more consistent behavior across different setups.
Furthermore, the unpacked size of version 3.21.0 is approximately 601KB, slightly larger than the 567KB of version 3.20.6. This size difference could stem from additions, refactoring, or updated dependencies. Potential users might consider this factor for scenarios with strict size constraints. The release date difference indicates active development, with version 3.21.0 released roughly three weeks after 3.20.6, suggesting continuous efforts to improve the library. Both versions maintain the same MIT license, author, funding, and repository information, affirming consistency in the project's governance and accessibility.
All the vulnerabilities related to the version 3.21.0 of the package
Zod denial of service vulnerability
Zod version 3.22.2 allows an attacker to perform a denial of service while validating emails.
