Angular core version 9.1.3 represents a minor update to the core framework, succeeding version 9.1.2. Both versions share the same fundamental structure and dependencies, ensuring a consistent experience for developers already working within the Angular 9 ecosystem. They both rely on peer dependencies like RxJS (version ^6.5.3), tslib (^1.10.0), and zone.js (~0.10.3), so no changes are required for usage with other npm packages. While the core description, licensing, and repository details remain identical, a key differentiating factor lies in the release date. Version 9.1.3 was released on April 22, 2020, a week after version 9.1.2 which was released on April 15, 2020. The later release date suggests that version 9.1.3 may include bug fixes, performance improvements, or minor feature enhancements that were not present in the earlier version. The file count remains the same (682), and there is only a small difference in the unpacked size (28045291 vs. 27967899). These versions of Angular offer a strong foundation for building robust web applications, using the latest features and improvements. For developers, upgrading to 9.1.3 is recommended to benefit from the most up-to-date corrections and optimizations, ensuring a smoother development process and potentially better application performance. Checking the official Angular changelog for specifics on fixes and minor improvements between these versions is always advisable when upgrading.
All the vulnerabilities related to the version 9.1.3 of the package
Cross site scripting in Angular
A vulnerability was found in Angular up to 11.0.4/11.1.0-next.2. It has been classified as problematic. Affected is the handling of comments. The manipulation leads to cross site scripting. It is possible to launch the attack remotely but it might require an authentication first. Upgrading to version 10.2.5, 11.0.5 or 11.1.0-next.3 is advised to to address this issue.
