Angular core version 5.2.11 represents a minor update to the core Angular framework, building upon the foundation laid by version 5.2.10. Both versions fundamentally offer the same "Angular - the core framework" experience and share identical dependencies on tslib (version ^1.7.1) and peer dependencies on rxjs (version ^5.5.0) and zone.js (version ^0.8.4). This indicates that the upgrade from 5.2.10 to 5.2.11 likely doesn't introduce any breaking changes related to these core dependencies, ensuring a relatively smooth transition for developers. Key functionality and API compatibility are maintained.
The observable differences reside in the release date and potentially bug fixes or very minor improvements. Version 5.2.11 was released on May 16, 2018, while version 5.2.10 was released on April 16, 2018. This one-month gap suggests that version 5.2.11 might incorporate bug fixes discovered since the 5.2.10 release, or perhaps minor performance enhancements that don't necessitate a larger version bump. Developers using Angular 5.x should consider upgrading to 5.2.11. While the unpacked size and file count within their distribution packages are the same and the description fields match, staying current often ensures access to the most stable and reliable iteration of the libraries and components. Checking the Angular changelog for the versions would shed light on all possible changes.
All the vulnerabilities related to the version 5.2.11 of the package
Cross site scripting in Angular
A vulnerability was found in Angular up to 11.0.4/11.1.0-next.2. It has been classified as problematic. Affected is the handling of comments. The manipulation leads to cross site scripting. It is possible to launch the attack remotely but it might require an authentication first. Upgrading to version 10.2.5, 11.0.5 or 11.1.0-next.3 is advised to to address this issue.
