Angular Core version 2.1.2 is a minor update to the core framework, building upon the previous stable release, version 2.1.1. Both versions share the same fundamental architecture and dependencies, requiring rxjs version 5.0.0-beta.12 and zone.js version ^0.6.21 for optimal functionality. As declared in their metadata, they are distributed under the permissive MIT license and are part of the official Angular project, maintained by the Angular team. A key characteristic of both versions is their reliance on specific peer dependencies, highlighting the importance of using compatible versions of RxJS and Zone.js to avoid potential conflicts or unexpected behavior.
The primary difference between the two versions lies in the release date and likely includes bug fixes, performance improvements, and potentially minor feature enhancements implemented between October 20th and October 27th, 2016. Developers considering upgrading from 2.1.1 to 2.1.2 should review the official Angular changelog or release notes for Angular in order to gain detailed insights into the specific changes included in the newer version. This information will assist in evaluating the potential benefits and impact of the upgrade on their existing Angular applications. While the core functionalities remain consistent, the update aims to provide a more stable and refined experience for Angular developers. If you plan to make the upgrade, verify that your existing codebase is compatible and thoroughly test your application after updating.
All the vulnerabilities related to the version 2.1.2 of the package
Cross site scripting in Angular
A vulnerability was found in Angular up to 11.0.4/11.1.0-next.2. It has been classified as problematic. Affected is the handling of comments. The manipulation leads to cross site scripting. It is possible to launch the attack remotely but it might require an authentication first. Upgrading to version 10.2.5, 11.0.5 or 11.1.0-next.3 is advised to to address this issue.
