Angular core version 8.1.3 represents a minor update to the Angular framework, building upon the foundation laid by version 8.1.2. Both versions share the same core dependencies, relying on tslib (version ^1.9.0) for TypeScript helper functions and requiring peer dependencies like rxjs (version ^6.4.0) for reactive programming and zone.js (version ~0.9.1) for asynchronous task management. The license remains under the permissive MIT license, ensuring broad usability. The file count and unpacked size for both versions are identical, at 626 files and around 26MB respectively, suggesting that the changes are likely focused on bug fixes, performance enhancements, or minor feature adjustments rather than structural alterations causing significant size variations.
Developers transitioning from version 8.1.2 to 8.1.3 can expect a smooth upgrade experience, given the shared dependency requirements. It is crucial, though, to review the official Angular changelog or release notes for detailed information on the specific fixes or improvements implemented, as these details are not apparent from the package metadata alone. The key difference between the two comes down to the release date: 8.1.3 was published on July 26, 2019, a little over a week later than 8.1.2 that was published on July 17, 2019. Thus, the newer version addresses problems and enhancements done in that period. Developers should always prioritize staying up-to-date to benefit from bug fixes and security patches and keep their applications running optimally.
All the vulnerabilities related to the version 8.1.3 of the package
Cross site scripting in Angular
A vulnerability was found in Angular up to 11.0.4/11.1.0-next.2. It has been classified as problematic. Affected is the handling of comments. The manipulation leads to cross site scripting. It is possible to launch the attack remotely but it might require an authentication first. Upgrading to version 10.2.5, 11.0.5 or 11.1.0-next.3 is advised to to address this issue.
