micromatch is a highly optimized JavaScript glob matching library for wildcard and glob-pattern matching in Node.js. It’s designed as a faster drop-in alternative to minimatch and multimatch, providing functions for matching lists of strings and checking whether a single string matches one or more glob patterns.
Project status
- Actively maintained: The repository shows a recent upstream push (2024-08-26) and a patch update (4.0.8) that explicitly addresses security issues (CVE-2024-4067, CVE-2024-4068), suggesting ongoing maintenance rather than abandonment.
- Apparent update cadence: Updates appear infrequent, with the last two documented version changes separated by a long gap (4.0.4 and 4.0.3 in 2021, followed by 4.0.8 in 2024). This points to an occasional maintenance cadence focused on fixes.
AI summary generated Today
Recent updates
4.0.8
8/26/2024Release 4.0.8 is a patch release that claims to address security issues CVE-2024-4067 and CVE-2024-4068. The release notes do not document any other functional or API changes.
Security4.0.4
4/10/2021Version 4.0.4 is a small release that primarily bumps the micromatch dependency picomatch from ^2.2.1 to ^2.2.3. The only release note provided is that this updates picomatch to fix regression #179, without detailing the user-visible behavior change.
4.0.3
4/9/2021Release 4.0.3 is described as a dependency enforcement change, specifically “enforce newer version of picomatch with bugfixes.” The provided code diff, however, shows mostly repository and documentation/tooling changes, with no clearly visible public runtime API changes in the excerpted diffs.