Angular core version 8.2.2 represents a minor update to the widely used Angular framework, building upon the foundation laid by version 8.2.1. Both versions share the same core dependencies, relying on tslib for TypeScript helper functions and listing rxjs and zone.js as peer dependencies, indicating compatibility requirements for reactive programming and asynchronous task management respectively. The licensing remains MIT, assuring developers of freedom in utilizing the library across diverse projects. Source code is version controlled with Git.
The key difference lies in the increment from 8.2.1 to 8.2.2, suggesting bug fixes, minor feature additions, or performance improvements. The dist section reveals that version 8.2.2 has a slightly larger unpacked size (25963455 bytes) compared to 8.2.1 (25586265 bytes), implying potential code additions or modifications. Both versions consist of 620 files. Furthermore, version 8.2.2 was released on August 12, 2019, a few days after version 8.2.1 (August 8, 2019). For Angular developers, this means upgrading to 8.2.2 likely offers a more refined and potentially more stable experience. While the core API remains consistent, developers should consult the official Angular changelog for a detailed breakdown of specific changes, bug fixes, and any new features introduced in 8.2.2 to fully leverage its benefits.
All the vulnerabilities related to the version 8.2.2 of the package
Cross site scripting in Angular
A vulnerability was found in Angular up to 11.0.4/11.1.0-next.2. It has been classified as problematic. Affected is the handling of comments. The manipulation leads to cross site scripting. It is possible to launch the attack remotely but it might require an authentication first. Upgrading to version 10.2.5, 11.0.5 or 11.1.0-next.3 is advised to to address this issue.
