[Snyk] Upgrade zod from 3.17.3 to 3.23.6 #168
Open
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
This PR was automatically created by Snyk using the credentials of a real user.
![snyk-top-banner](https://github.com/andygongea/OWASP-Benchmark/assets/818805/c518c423-16fe-447e-b67f-ad5a49b5d123)
Snyk has created this PR to upgrade zod from 3.17.3 to 3.23.6.
ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.
The recommended version is 116 versions ahead of your current version.
The recommended version was released on 22 days ago.
Issues fixed by the recommended upgrade:
SNYK-JS-BABELTRAVERSE-5962462
SNYK-JS-BRACES-6838727
SNYK-JS-FOLLOWREDIRECTS-6141137
SNYK-JS-MICROMATCH-6838728
SNYK-JS-SEMVER-3247795
SNYK-JS-SEMVER-3247795
SNYK-JS-ZOD-5925617
SNYK-JS-FOLLOWREDIRECTS-6444610
SNYK-JS-JSON5-3182856
SNYK-JS-JSON5-3182856
SNYK-JS-WORDWRAP-3149973
Release notes
Package name: zod
Commits:
Commits:
Commits:
Commits:
Commits:
This changes the default generics back to
any
to prevent breakages with common packager like@ hookform/resolvers
:Commits:
Zod 3.23 is now available. This is the final
3.x
release before Zod 4.0. To try it out:Features
z.string().date()
Zod can now validate ISO 8601 date strings. Thanks @ igalklebanov! #1766
z.string().time()
Zod can now validate ISO 8601 time strings. Thanks @ igalklebanov! #1766
You can specify sub-second precision using the
precision
option:z.string().duration()
Zod can now validate ISO 8601 duration strings. Thanks @ mastermatt! #3265
Improvements to
z.string().datetime()
Thanks @ bchrobot #2522
You can now allow unqualified (timezone-less) datetimes using the
local: true
flag.Plus, Zod now validates the day-of-month correctly to ensure no invalid dates (e.g. February 30th) pass validation. Thanks @ szamanr! #3391
z.string().base64()
Zod can now validate base64 strings. Thanks @ StefanTerdell! #3047
Improved discriminated unions
The following can now be used as discriminator keys in
z.discriminatedUnion()
:ZodOptional
ZodNullable
ZodReadonly
ZodBranded
ZodCatch
Misc
Breaking changes
There are no breaking changes to the public API of Zod. However some changes can impact ecosystem tools that rely on Zod internals.
ZodFirstPartySchemaTypes
Three new types have been added to the
ZodFirstPartySchemaTypes
union. This may impact some codegen libraries. #3247Unrecognized keys in
.pick()
and.omit()
This version fixes a bug where unknown keys were accidentally accepted in
.pick()
andomit()
. This has been fixed, which could cause compiler errors in some user code. #3255Bugfixes and performance
ZodFirstPartySchemaTypes
by @ MatthijsMud in #3247input
of.required()
readonly by @ KATT in #3301addQuestionMarks
, fix #2184 by @ colinhacks in #3352src
forbun test
by @ rotu in #3038Docs and ecosystem
zod-dev
utility to eco-system section by @ schalkventer in #3113orval
to "X to Zod" ecosystems by @ soartec-lab in #3397New Contributors