-
Notifications
You must be signed in to change notification settings - Fork 0
[Snyk] Upgrade zod from 3.17.3 to 3.23.8 #2
base: master
Are you sure you want to change the base?
Conversation
Snyk has created this PR to upgrade zod from 3.17.3 to 3.23.8. See this package in npm: zod See this project in Snyk: https://app.snyk.io/org/ramzimalhas/project/e7dcbcc3-ba8b-4e7d-a78d-c3f48462d1ae?utm_source=github&utm_medium=referral&page=upgrade-pr
|
Changes made by this pull request: package-lock.json package.json |
Important Review skippedIgnore keyword(s) in the title. Please check the settings in the CodeRabbit UI or the You can disable this status message by setting the Thank you for using CodeRabbit. We offer it for free to the OSS community and would appreciate your support in helping us grow. If you find it useful, would you consider giving us a shout-out on your favorite social media? TipsChatThere are 3 ways to chat with CodeRabbit:
Note: Be mindful of the bot's finite context window. It's strongly recommended to break down tasks such as reading entire modules into smaller chunks. For a focused discussion, use review comments to chat about specific files and their changes, instead of using the PR comments. CodeRabbit Commands (invoked as PR comments)
Additionally, you can add CodeRabbit Configuration File (
|
Snyk has created this PR to upgrade zod from 3.17.3 to 3.23.8.
ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.
The recommended version is 118 versions ahead of your current version.
The recommended version was released on 3 months ago.
Issues fixed by the recommended upgrade:
SNYK-JS-ZOD-5925617
Release notes
Package name: zod
Commits:
Commits:
Commits:
Commits:
Commits:
Commits:
Commits:
This changes the default generics back to
any
to prevent breakages with common packager like@ hookform/resolvers
:Commits:
Zod 3.23 is now available. This is the final
3.x
release before Zod 4.0. To try it out:Features
z.string().date()
Zod can now validate ISO 8601 date strings. Thanks @ igalklebanov! #1766
z.string().time()
Zod can now validate ISO 8601 time strings. Thanks @ igalklebanov! #1766
You can specify sub-second precision using the
precision
option:z.string().duration()
Zod can now validate ISO 8601 duration strings. Thanks @ mastermatt! #3265
Improvements to
z.string().datetime()
Thanks @ bchrobot #2522
You can now allow unqualified (timezone-less) datetimes using the
local: true
flag.Plus, Zod now validates the day-of-month correctly to ensure no invalid dates (e.g. February 30th) pass validation. Thanks @ szamanr! #3391
z.string().base64()
Zod can now validate base64 strings. Thanks @ StefanTerdell! #3047
Improved discriminated unions
The following can now be used as discriminator keys in
z.discriminatedUnion()
:ZodOptional
ZodNullable
ZodReadonly
ZodBranded
ZodCatch
Misc
Breaking changes
There are no breaking changes to the public API of Zod. However some changes can impact ecosystem tools that rely on Zod internals.
ZodFirstPartySchemaTypes
Three new types have been added to the
ZodFirstPartySchemaTypes
union. This may impact some codegen libraries. #3247Unrecognized keys in
.pick()
and.omit()
This version fixes a bug where unknown keys were accidentally accepted in
.pick()
andomit()
. This has been fixed, which could cause compiler errors in some user code. #3255Bugfixes and performance
ZodFirstPartySchemaTypes
by @ MatthijsMud in #3247input
of.required()
readonly by @ KATT in #3301addQuestionMarks
, fix #2184 by @ colinhacks in #3352src
forbun test
by @ rotu in #3038Docs and ecosystem
zod-dev
utility to eco-system section by @ schalkventer in #3113orval
to "X to Zod" ecosystems by @ soartec-lab in #3397New Contributors