Angular core version 10.1.3 represents a minor update to the core framework, building upon the foundation laid by version 10.1.2. Both versions share the same fundamental dependencies, relying on tslib for TypeScript helper functions and requiring peer dependencies of rxjs and zone.js for reactive programming and asynchronous task management, respectively. This ensures backward compatibility in terms of core dependencies for developers already using Angular 10.
The notable difference lies in the increased unpacked size of version 10.1.3, which is slightly larger than 10.1.2. This suggests that the newer release likely incorporates bug fixes, performance improvements, or potentially new features. While the API surface might remain largely the same, developers can expect a more refined and stable experience with the 10.1.3 release. This update is beneficial for those seeking stability and performance enhancements without introducing major breaking changes.
For developers, upgrading from 10.1.2 to 10.1.3 should be a straightforward process. The shared dependencies mean that existing projects will likely not require modifications in their dependency configurations. The release date of 2020-09-23 indicates that it's a mature and well-tested update, making it a safe choice for both new and existing Angular 10 projects. Always review release notes and any associated change logs on gitHub as well to check for added features, bug fixes or breaking changes.
All the vulnerabilities related to the version 10.1.3 of the package
Cross site scripting in Angular
A vulnerability was found in Angular up to 11.0.4/11.1.0-next.2. It has been classified as problematic. Affected is the handling of comments. The manipulation leads to cross site scripting. It is possible to launch the attack remotely but it might require an authentication first. Upgrading to version 10.2.5, 11.0.5 or 11.1.0-next.3 is advised to to address this issue.
