Angular core version 10.0.2 represents a minor update to the foundational framework for building web applications. Released shortly after version 10.0.1, this patch likely addresses bug fixes and refinements aimed at improving stability and performance. Developers leveraging Angular will find that migrating from 10.0.1 to 10.0.2 should be a straightforward process, since no breaking API changes are expected in patch releases.
Both versions share identical dependency requirements, relying on "tslib" version 2.0.0 or higher and peer dependencies of "rxjs" version 6.5.3 or higher and "zone.js" around version 0.10.3. This consistency ensures compatibility with existing Angular projects. While "fileCount" remains the same at 415, the unpacked size is slightly smaller in version 10.0.2, suggesting potential optimizations in code size or asset management.
Given the nature of a 'patch' release, 10.0.2 aims to offer a more polished experience than the previous release. As such, it is recommended developers upgrade to capture possible improvements. To benefit from the latest advancements, consult Angular's official changelog and update guides to understand all the changes and ensure a smooth transition. With Angular's commitment to continuous progress, maintaining an up-to-date version helps to take advantage of a stable, performant, and secure framework.
All the vulnerabilities related to the version 10.0.2 of the package
Cross site scripting in Angular
A vulnerability was found in Angular up to 11.0.4/11.1.0-next.2. It has been classified as problematic. Affected is the handling of comments. The manipulation leads to cross site scripting. It is possible to launch the attack remotely but it might require an authentication first. Upgrading to version 10.2.5, 11.0.5 or 11.1.0-next.3 is advised to to address this issue.
