Angular core version 10.2.0 represents a minor update from the previous stable version 10.1.6, offering developers incremental improvements and refinements to the foundational framework. While both versions share the same core dependencies, including tslib (version ^2.0.0), rxjs (peer dependency, ^6.5.3), and zone.js (peer dependency, ~0.10.3), the key difference lies in the internal changes and optimizations implemented in 10.2.0.
Developers will likely find that version 10.2.0 provides bug fixes, performance enhancements and potentially new minor features, all aimed at improving the overall developer experience and application performance. A notable difference is the slightly increased unpacked size of 10.2.0 (17734225 bytes) compared to 10.1.6 (17730902 bytes), suggesting code additions or modifications. Examining the detailed changelog on the Angular GitHub repository is critical for understanding the specific changes that developers should be aware of when upgrading. The update from 10.1.6 to 10.2.0 provides an upgrade path to a more polished, performant, and stable Angular environment, while maintaining the same core dependencies.
All the vulnerabilities related to the version 10.2.0 of the package
Cross site scripting in Angular
A vulnerability was found in Angular up to 11.0.4/11.1.0-next.2. It has been classified as problematic. Affected is the handling of comments. The manipulation leads to cross site scripting. It is possible to launch the attack remotely but it might require an authentication first. Upgrading to version 10.2.5, 11.0.5 or 11.1.0-next.3 is advised to to address this issue.
