Zod, a TypeScript-first schema declaration and validation library renowned for its static type inference, saw a minor version update from 3.9.1 to 3.9.2. While the core functionality remains consistent, reflected in the identical dependencies and development dependencies, subtle yet crucial improvements differentiate the two versions. Both versions maintain the same suite of development tools, including testing frameworks like Jest and TypeScript-related linting and building tools, such as ESLint, Rollup, and the TypeScript compiler itself.
The key difference lies in the distribution details. Zod 3.9.2 has a slightly larger unpacked size of 496143 bytes compared to 495642 bytes in version 3.9.1. This increase, while relatively small, suggests internal optimizations, bug fixes or the addition of new minor features that contribute to the overall library size. Developers should note the release dates: version 3.9.2 was released on 2021-09-28, a few days after version 3.9.1 (2021-09-25). This rapid release cycle often indicates the resolution of issues identified shortly after the initial 3.9.1 release. For developers using Zod, upgrading to version 3.9.2 is recommended to benefit from the most recent enhancements and refined functionalities, ensuring the most stable and performant experience. The small size difference and quick turnaround to the new release suggests small bug fixes and improvements.
All the vulnerabilities related to the version 3.9.2 of the package
Zod denial of service vulnerability
Zod version 3.22.2 allows an attacker to perform a denial of service while validating emails.
