Skip to content

1.5.3
Compare
Choose a tag to compare
@hansl hansl released this 20 Nov 20:19
· 14031 commits to main since this release
v1.5.3
5e4b14d

Notes

This release contains a single fix to a security vulnerability that was reported for Handlebars. Handlebars was not used during the build process and did not affect any of our users, but the vulnerability was still reported by Github who only check version numbers.

Since the faulty version of Handlebars might still be part of your package-lock.json (or yarn.lock) files, you might need to update those files before the alert disappears. You can do so by running npm update @angular/[email protected].

The package that the CLI depended on (postcss-url) has since removed their usage of Handlebars entirely.

Cheers,

  • The CLI team

Bug fixes

  • @angular/cli: update postcss loader and URL versions. (6831492)
Assets 2
Loading