Angular core version 6.1.10 is a patch release that refines version 6.1.9, primarily focusing on bug fixes and minor enhancements rather than introducing groundbreaking new features. Both versions share a common foundation, built on the same dependencies like tslib (version ^1.9.0) and peer dependencies rxjs (version ^6.0.0) and zone.js (version ~0.8.26), ensuring compatibility within the broader Angular ecosystem. Developers relying on these dependencies can expect consistent behaviour across both versions.
Key differences lie in the incremental improvements implemented in 6.1.10. While the file count remains consistent at 527, there is a slight increase in the unpacked size from 15491918 to 15491940, suggesting minor code modifications or additions. The release date difference shows that version 6.1.10 came out roughly two weeks after 6.1.9. For most developers who want stability, it is generally advisable to upgrade to the latest patch version to benefit from these fixes, particularly if encountering issues addressed in the newer release. Check the Angular changelog for a detailed list of resolved issues!
All the vulnerabilities related to the version 6.1.10 of the package
Cross site scripting in Angular
A vulnerability was found in Angular up to 11.0.4/11.1.0-next.2. It has been classified as problematic. Affected is the handling of comments. The manipulation leads to cross site scripting. It is possible to launch the attack remotely but it might require an authentication first. Upgrading to version 10.2.5, 11.0.5 or 11.1.0-next.3 is advised to to address this issue.
