Angular core version 8.2.0 is a patch release following the 8.1.3 version, offering improvements and refinements to the core Angular framework. Both versions share the same core dependencies, relying on tslib versions 1.9.0 or higher, and peer dependencies of rxjs version 6.4.0 or higher, and zone.js version approximately 0.9.1. This indicates a compatibility focus and incremental updates rather than breaking changes between the versions. Angular developers upgrading from 8.1.3 can expect a smooth transition.
Key differences lie in the details: version 8.2.0 boasts a slightly smaller unpacked size of 25,575,069 bytes compared to the larger 26,397,101 bytes of version 8.1.3. There's also a minor difference in the number of files included in the package, with 8.2.0 having 620 files, and 8.1.3 containing 626. A significant difference is the release date: 8.2.0 was released on July 31, 2019, while 8.1.3 was released on July 26, 2019.
The update likely includes bug fixes, performance enhancements, and minor feature additions. Due to the nature of semantic versioning, moving from 8.1.3 to 8.2.0 indicates focused and stable improvements rather than monumental differences. Angular developers benefit from staying up-to-date to leverage the latest performance improvements and bug fixes provided in the newest patch release.
All the vulnerabilities related to the version 8.2.0 of the package
Cross site scripting in Angular
A vulnerability was found in Angular up to 11.0.4/11.1.0-next.2. It has been classified as problematic. Affected is the handling of comments. The manipulation leads to cross site scripting. It is possible to launch the attack remotely but it might require an authentication first. Upgrading to version 10.2.5, 11.0.5 or 11.1.0-next.3 is advised to to address this issue.
