Zod is a TypeScript-first schema declaration and validation library renowned for its seamless static type inference capabilities. Version 3.5.1 follows closely on the heels of version 3.5.0, both sharing the same core philosophy and feature set aimed at simplifying data validation within TypeScript projects. A key observation when comparing the two releases is the consistency in development dependencies, suggesting a focus on internal improvements and bug fixes rather than a major overhaul of the tooling.
While the devDependencies remain identical, highlighting a stable development environment, there are subtle differences that can influence a developer's decision. The uncompressed size of the package has increased slightly from 454,416 bytes in version 3.5.0 to 462,613 bytes in version 3.5.1. This small increase may indicate minor additions or adjustments to the codebase. Furthermore, the release date of version 3.5.1 is slightly later than version 3.5.0, which means the newer version probably includes the latest bug fixes and small features.
For developers already utilizing Zod, upgrading to 3.5.1 is likely a worthwhile step to ensure they benefit from the most recent refinements and potentially address any discovered issues. Developers will want to check the changelog for details of the fixes and features added in this new version.
All the vulnerabilities related to the version 3.5.1 of the package
Zod denial of service vulnerability
Zod version 3.22.2 allows an attacker to perform a denial of service while validating emails.
