Angular core version 6.1.3 is a minor update, released on August 15, 2018, following closely on the heels of version 6.1.2, which came out on August 8, 2018. Both versions share the same core framework description, dependencies (tslib "^1.9.0"), and peer dependencies (rxjs "^6.0.0" and zone.js "~0.8.26"), indicating a high degree of compatibility and stability. The licensing remains under the permissive MIT license.
A notable difference, though, is the slightly smaller unpacked size of version 6.1.3 (15461725 bytes) compared to 6.1.2 (15462683 bytes), despite both containing an identical 527 files. This small reduction in size likely reflects minor code optimizations or bug fixes, potentially improving runtime performance or reducing the overall bundle size of Angular applications. For developers, this improvement—while seemingly small represents continued efforts to optimize the framework.
When upgrading from Angular 6.1.2, developers should conduct tests to ensure code compatibility but it's unlikely that there would be errors due to the small version change, if there are no custom configurations. Generally, staying current with the latest version is a good practice for optimal performance and getting access to latest bug fixes and potential improvements.
All the vulnerabilities related to the version 6.1.3 of the package
Cross site scripting in Angular
A vulnerability was found in Angular up to 11.0.4/11.1.0-next.2. It has been classified as problematic. Affected is the handling of comments. The manipulation leads to cross site scripting. It is possible to launch the attack remotely but it might require an authentication first. Upgrading to version 10.2.5, 11.0.5 or 11.1.0-next.3 is advised to to address this issue.
