Angular core version 11.0.0 represents a significant update from the prior stable version 10.2.5, showcasing key changes and improvements that impact developers. While both versions share fundamental characteristics such as using the same peer dependencies of RxJS and Zone.js offering similar license (MIT) and basic dependencies like Typescript Lib (tslib), the release dates, the packed size and the number of files present differs.
Version 11.0.0, released in November 2020, is noticeably older than version 10.2.5, which was released in April 2021. This difference in release date implies that version 11.0.0 contains features and fixes developed up to that point and it lacks the features and fixes from the version 10.2.5.
Furthermore, the dist object reveals interesting details about the package's structure and size. Version 11.0.0 has a fileCount of 466 and an unpackedSize of 18306596, while version 10.2.5 has a fileCount of 419 and an unpackedSize of 17767956. This indicates that version 11.0.0 contains more files and a larger unpacked size compared to its predecessor, potentially due to added features, modules, or more verbose debugging information. Developers might experience slight increased bundle sizes using Angular 11.0.0 compared to 10.2.5 based on these dist differences. Choosing the right version often depends on the specific project requirements, compatibility with other libraries, and the need for the latest bug fixes and performance improvements.
All the vulnerabilities related to the version 11.0.0 of the package
Cross site scripting in Angular
A vulnerability was found in Angular up to 11.0.4/11.1.0-next.2. It has been classified as problematic. Affected is the handling of comments. The manipulation leads to cross site scripting. It is possible to launch the attack remotely but it might require an authentication first. Upgrading to version 10.2.5, 11.0.5 or 11.1.0-next.3 is advised to to address this issue.
