Zod, a TypeScript-first schema declaration and validation library, released version 3.5.4 shortly after 3.5.3, both on August 1st, 2021. While sharing identical descriptions, dependencies, and development dependencies, a closer look reveals subtle yet potentially impactful distinctions.
Developers considering an upgrade should note the slight differences in the dist section. Version 3.5.4 boasts an unpacked size of 465978 bytes, a small increase from the 463691 bytes in version 3.5.3. Although the fileCount remains unchanged at 55, this size difference implies modifications or additions within the package contents. Furthermore, the release date of version 3.5.4 is about an hour later than version 3.5.3
Given the minimal interval between releases, version 3.5.4 likely addresses a bug fix, performance tweak, or documentation update discovered immediately after publishing 3.5.3. Developers encountering unexpected behavior in version 3.5.3 might find relief in the incremental improvements of version 3.5.4.
Both versions maintain the same suite of development tools, encompassing testing frameworks like Jest and Ts-jest, linting and formatting tools such as ESLint, Prettier, and pertinent plugins, build tools like Rollup, and supporting libraries like Typescript and Ts-node. This shared toolchain guarantees a consistent development experience across both releases, assuring compatibility with existing workflows. For developers seeking meticulous schema validation and robust type inference in their TypeScript projects, either version offers a solid foundation, with 3.5.4 recommendable due to the increased size and possible included bugfixes.
All the vulnerabilities related to the version 3.5.4 of the package
Zod denial of service vulnerability
Zod version 3.22.2 allows an attacker to perform a denial of service while validating emails.
