Angular core version 10.1.1 represents a minor patch release over the preceding stable version 10.1.0. Both versions share the core Angular framework description and maintain dependencies on tslib version ^2.0.0. They also have identical peer dependencies, requiring rxjs version ^6.5.3 and zone.js version ~0.10.3, ensuring compatibility with existing ecosystems utilizing these libraries. The licensing remains consistent under the MIT license, and both versions are sourced from the same Angular repository on GitHub.
Key differences lie primarily in the dist section and release timing. Version 10.1.1, released on September 9, 2020, has a slightly smaller unpacked size of 17,687,367 bytes compared to version 10.1.0's 17,688,585 bytes, even though both distributions contain 419 files. This suggests minor optimizations or bug fixes within the codebase that reduced the overall footprint. Developers should consider upgrading to 10.1.1 to benefit from these potential performance improvements and bug resolutions, ensuring a smoother development experience and potentially enhanced application performance. While the difference may seem small, addressing these small improvements leads to a more robust and efficient Angular application. Always investigate changelogs for fine-grained details on the improvements offered in minor releases.
All the vulnerabilities related to the version 10.1.1 of the package
Cross site scripting in Angular
A vulnerability was found in Angular up to 11.0.4/11.1.0-next.2. It has been classified as problematic. Affected is the handling of comments. The manipulation leads to cross site scripting. It is possible to launch the attack remotely but it might require an authentication first. Upgrading to version 10.2.5, 11.0.5 or 11.1.0-next.3 is advised to to address this issue.
