Angular core version 7.2.10 represents a minor update over its predecessor, 7.2.9, within the Angular framework. Both versions share the same core dependencies, including tslib for TypeScript helper functions, and peer dependencies on rxjs for reactive programming and zone.js for managing asynchronous operations. Developers relying on these fundamental libraries will find a consistent experience between the two. The license remains MIT, indicating continued open-source availability. Both are maintained under the angular GitHub repository and the author is angular.
The key difference lies in the release date and unpacked size. Version 7.2.10 was released on March 20, 2019, while version 7.2.9 was released on March 12, 2019. The unpacked size of version 7.2.10 is marginally larger, suggesting bug fixes, performance improvements, or minor feature additions. The file count remains identical. Although the specific changes aren't detailed here, developers migrating from 7.2.9 to 7.2.10 can likely expect a seamless transition with potential benefits in stability and efficiency. Always refer to the official Angular changelog for comprehensive details, but the update appears to be a worthwhile incremental improvement for most Angular projects.
All the vulnerabilities related to the version 7.2.10 of the package
Cross site scripting in Angular
A vulnerability was found in Angular up to 11.0.4/11.1.0-next.2. It has been classified as problematic. Affected is the handling of comments. The manipulation leads to cross site scripting. It is possible to launch the attack remotely but it might require an authentication first. Upgrading to version 10.2.5, 11.0.5 or 11.1.0-next.3 is advised to to address this issue.
