[Snyk] Upgrade @angular/compiler from 14.2.5 to 19.2.6

[nerdy-tech-com-gitub]

Snyk has created this PR to upgrade @angular/compiler from 14.2.5 to 19.2.6.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

---

⚠️ Warning: This PR contains major version upgrade(s), and may be a breaking change.

• The recommended version is 268 versions ahead of your current version.

• The recommended version was released 21 days ago.

Issues fixed by the recommended upgrade:

	Issue	Score	Exploit Maturity
	Denial of Service (DoS) SNYK-JS-WS-7266574	169	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-SEMVER-3247795	169	Proof of Concept
	Uncaught Exception SNYK-JS-SOCKETIO-7278048	169	No Known Exploit
	Sandbox Bypass SNYK-JS-WEBPACK-3358798	169	Proof of Concept
	Denial of Service (DoS) SNYK-JS-WS-7266574	169	Proof of Concept
	Asymmetric Resource Consumption (Amplification) SNYK-JS-BODYPARSER-7926860	169	No Known Exploit
	Excessive Platform Resource Consumption within a Loop SNYK-JS-BRACES-6838727	169	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-CROSSSPAWN-8303230	169	Proof of Concept
	Uncaught Exception SNYK-JS-ENGINEIO-5496331	169	No Known Exploit
	Regular Expression Denial of Service (ReDoS) SNYK-JS-ADOBECSSTOOLS-6096077	169	No Known Exploit
	Regular Expression Denial of Service (ReDoS) SNYK-JS-ES5EXT-6095076	169	Proof of Concept
	Improper Handling of Extra Parameters SNYK-JS-FOLLOWREDIRECTS-6141137	169	Proof of Concept
	Denial of Service (DoS) SNYK-JS-HTTPPROXYMIDDLEWARE-8229906	169	Proof of Concept
	Server-side Request Forgery (SSRF) SNYK-JS-IP-6240864	169	Proof of Concept
	Inefficient Regular Expression Complexity SNYK-JS-MICROMATCH-6838728	169	No Known Exploit
	Regular Expression Denial of Service (ReDoS) SNYK-JS-SEMVER-3247795	169	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-SEMVER-3247795	169	Proof of Concept
	Cross-site Scripting (XSS) SNYK-JS-SERIALIZEJAVASCRIPT-6147607	169	Proof of Concept
	Uncontrolled Resource Consumption ('Resource Exhaustion') SNYK-JS-TAR-6476909	169	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-BABELHELPERS-9397697	169	Proof of Concept
	Cross-site Scripting (XSS) SNYK-JS-COOKIE-8163060	169	No Known Exploit
	Cross-site Scripting (XSS) SNYK-JS-COOKIE-8163060	169	No Known Exploit
	Regular Expression Denial of Service (ReDoS) SNYK-JS-ADOBECSSTOOLS-5871286	169	No Known Exploit
	Open Redirect SNYK-JS-EXPRESS-6474509	169	No Known Exploit
	Cross-site Scripting SNYK-JS-EXPRESS-7926867	169	No Known Exploit
	Information Exposure SNYK-JS-FOLLOWREDIRECTS-6444610	169	Proof of Concept
	Always-Incorrect Control Flow Implementation SNYK-JS-HTTPPROXYMIDDLEWARE-9691387	169	No Known Exploit
	Improper Check for Unusual or Exceptional Conditions SNYK-JS-HTTPPROXYMIDDLEWARE-9691389	169	No Known Exploit
	Server-Side Request Forgery (SSRF) SNYK-JS-IP-7148531	169	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-LOADERUTILS-3042992	169	No Known Exploit
	Regular Expression Denial of Service (ReDoS) SNYK-JS-LOADERUTILS-3105943	169	No Known Exploit
	Improper Input Validation SNYK-JS-NANOID-8492085	169	No Known Exploit
	Regular Expression Denial of Service (ReDoS) SNYK-JS-PATHTOREGEXP-7925106	169	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-PATHTOREGEXP-8482416	169	Proof of Concept
	Improper Input Validation SNYK-JS-POSTCSS-5926692	169	No Known Exploit
	Cross-site Scripting SNYK-JS-SEND-7926862	169	No Known Exploit
	Cross-site Scripting SNYK-JS-SERVESTATIC-7926865	169	No Known Exploit
	Incomplete List of Disallowed Inputs SNYK-JS-BABELTRAVERSE-5962462	169	Proof of Concept

Release notes

Package name: @angular/compiler

• 19.2.6 - 2025-04-09
  

  compiler

  Commit	Description
  	error if rawText isn't estimated correctly (#60529) (#60753)

  compiler-cli

  Commit	Description
  	ensure HMR works with different output module type (#60797)

  core

  Commit	Description
  	fix docs for output migration (#60764)
  	fix ng generate @ angular/core:output-migration. Fixes #58650 (#60763)
  	reduce total memory usage of various migration schematics (#60776)

  language-service

  Commit	Description
  	Do not provide element completions in end tag (#60616)
  	Ensure dollar signs are escaped in completions (#60597)

• 19.2.5 - 2025-04-02
  

  Commit	Description
  	step 6 tutorial docs (#60630)

  animations

  Commit	Description
  	add missing peer dependency on @ angular/common (#60660)

  compiler

  Commit	Description
  	throw for invalid "as" expression in if block (#60580)

  compiler-cli

  Commit	Description
  	Produce fatal diagnostic on duplicate decorated properties (#60376)
  	support relative imports to symbols outside rootDir (#60555)

  core

  Commit	Description
  	check ngDevMode for undefined (#60565)
  	fix ng generate @ angular/core:output-migration (#60626)
  	fix regexp for event types (#60592)
  	fixes #592882 ng generate @ angular/core:signal-queries-migration (#60688)
  	preserve comments in internal inject migration (#60588)
  	prevent omission of deferred pipes in full compilation (#60571)

  language-service

  Commit	Description
  	Update adapter to log instead of throw errors (#60651)

  migrations

  Commit	Description
  	handle shorthand assignments in super call (#60602)
  	inject migration not handling super parameter referenced via this (#60602)

  router

  Commit	Description
  	Add missing types to transition (#60307)

  service-worker

  Commit	Description
  	assign initializing client's app version, when a request is for worker script (#58131)

• 19.2.4 - 2025-03-27
• 19.2.3 - 2025-03-19
• 19.2.2 - 2025-03-12
• 19.2.1 - 2025-03-05
• 19.2.0 - 2025-02-26
• 19.2.0-rc.0 - 2025-02-19
• 19.2.0-next.3 - 2025-02-13
• 19.2.0-next.2 - 2025-02-06
• 19.2.0-next.1 - 2025-01-29
• 19.2.0-next.0 - 2025-01-22
• 19.1.8 - 2025-02-26
• 19.1.7 - 2025-02-19
• 19.1.6 - 2025-02-12
• 19.1.5 - 2025-02-06
• 19.1.4 - 2025-01-29
• 19.1.3 - 2025-01-22
• 19.1.2 - 2025-01-20
• 19.1.1 - 2025-01-16
• 19.1.0 - 2025-01-15
• 19.1.0-rc.0 - 2025-01-08
• 19.1.0-next.4 - 2024-12-18
• 19.1.0-next.3 - 2024-12-12
• 19.1.0-next.2 - 2024-12-04
• 19.1.0-next.1 - 2024-12-04
• 19.1.0-next.0 - 2024-11-26
• 19.0.7 - 2025-01-15
• 19.0.6 - 2025-01-08
• 19.0.5 - 2024-12-18
• 19.0.4 - 2024-12-12
• 19.0.3 - 2024-12-04
• 19.0.2 - 2024-12-04
• 19.0.1 - 2024-11-26
• 19.0.0 - 2024-11-19
• 19.0.0-rc.3 - 2024-11-15
• 19.0.0-rc.2 - 2024-11-14
• 19.0.0-rc.1 - 2024-11-06
• 19.0.0-rc.0 - 2024-10-30
• 19.0.0-next.11 - 2024-10-23
• 19.0.0-next.10 - 2024-10-16
• 19.0.0-next.9 - 2024-10-10
• 19.0.0-next.8 - 2024-10-02
• 19.0.0-next.7 - 2024-09-25
• 19.0.0-next.6 - 2024-09-18
• 19.0.0-next.5 - 2024-09-11
• 19.0.0-next.4 - 2024-09-09
• 19.0.0-next.3 - 2024-09-04
• 19.0.0-next.2 - 2024-08-28
• 19.0.0-next.1 - 2024-08-22
• 19.0.0-next.0 - 2024-08-14
• 18.2.13 - 2024-11-26
• 18.2.12 - 2024-11-14
• 18.2.11 - 2024-11-06
• 18.2.10 - 2024-10-30
• 18.2.9 - 2024-10-23
• 18.2.8 - 2024-10-10
• 18.2.7 - 2024-10-02
• 18.2.6 - 2024-09-25
• 18.2.5 - 2024-09-18
• 18.2.4 - 2024-09-11
• 18.2.3 - 2024-09-04
• 18.2.2 - 2024-08-28
• 18.2.1 - 2024-08-22
• 18.2.0 - 2024-08-14
• 18.2.0-rc.0 - 2024-08-07
• 18.2.0-next.4 - 2024-08-05
• 18.2.0-next.3 - 2024-07-31
• 18.2.0-next.2 - 2024-07-24
• 18.2.0-next.1 - 2024-07-17
• 18.2.0-next.0 - 2024-07-10
• 18.1.5 - 2024-08-14
• 18.1.4 - 2024-08-07
• 18.1.3 - 2024-07-31
• 18.1.2 - 2024-07-24
• 18.1.1 - 2024-07-17
• 18.1.0 - 2024-07-10
• 18.1.0-rc.0 - 2024-07-01
• 18.1.0-next.4 - 2024-06-27
• 18.1.0-next.3 - 2024-06-20
• 18.1.0-next.2 - 2024-06-12
• 18.1.0-next.1 - 2024-06-05
• 18.1.0-next.0 - 2024-05-29
• 18.0.7 - 2024-07-10
• 18.0.6 - 2024-07-03
• 18.0.5 - 2024-06-27
• 18.0.4 - 2024-06-20
• 18.0.3 - 2024-06-12
• 18.0.2 - 2024-06-05
• 18.0.1 - 2024-05-29
• 18.0.0 - 2024-05-22
• 18.0.0-rc.3 - 2024-05-21
• 18.0.0-rc.2 - 2024-05-15
• 18.0.0-rc.1 - 2024-05-08
• 18.0.0-rc.0 - 2024-05-01
• 18.0.0-next.6 - 2024-04-25
• 18.0.0-next.5 - 2024-04-17
• 18.0.0-next.4 - 2024-04-10
• 18.0.0-next.3 - 2024-04-03
• 18.0.0-next.2 - 2024-03-28
• 18.0.0-next.1 - 2024-03-20
• 18.0.0-next.0 - 2024-03-14
• 17.3.12 - 2024-07-17
• 17.3.11 - 2024-06-05
• 17.3.10 - 2024-05-22
• 17.3.9 - 2024-05-15
• 17.3.8 - 2024-05-08
• 17.3.7 - 2024-05-01
• 17.3.6 - 2024-04-25
• 17.3.5 - 2024-04-17
• 17.3.4 - 2024-04-10
• 17.3.3 - 2024-04-03
• 17.3.2 - 2024-03-28
• 17.3.1 - 2024-03-20
• 17.3.0 - 2024-03-13
• 17.3.0-rc.0 - 2024-03-06
• 17.3.0-next.1 - 2024-02-28
• 17.3.0-next.0 - 2024-02-22
• 17.2.4 - 2024-03-06
• 17.2.3 - 2024-02-28
• 17.2.2 - 2024-02-22
• 17.2.1 - 2024-02-14
• 17.2.0 - 2024-02-14
• 17.2.0-rc.1 - 2024-02-09
• 17.2.0-rc.0 - 2024-02-08
• 17.2.0-next.1 - 2024-01-31
• 17.2.0-next.0 - 2024-01-24
• 17.1.3 - 2024-02-08
• 17.1.2 - 2024-01-31
• 17.1.1 - 2024-01-24
• 17.1.0 - 2024-01-17
• 17.1.0-rc.0 - 2024-01-10
• 17.1.0-next.5 - 2023-12-21
• 17.1.0-next.4 - 2023-12-14
• 17.1.0-next.3 - 2023-12-06
• 17.1.0-next.2 - 2023-11-29
• 17.1.0-next.1 - 2023-11-20
• 17.1.0-next.0 - 2023-11-15
• 17.0.9 - 2024-01-10
• 17.0.8 - 2023-12-21
• 17.0.7 - 2023-12-14
• 17.0.6 - 2023-12-06
• 17.0.5 - 2023-11-29
• 17.0.4 - 2023-11-20
• 17.0.3 - 2023-11-15
• 17.0.2 - 2023-11-09
• 17.0.1 - 2023-11-08
• 17.0.0 - 2023-11-08
• 17.0.0-rc.3 - 2023-11-07
• 17.0.0-rc.2 - 2023-11-02
• 17.0.0-rc.1 - 2023-10-25
• 17.0.0-rc.0 - 2023-10-18
• 17.0.0-next.8 - 2023-10-11
• 17.0.0-next.7 - 2023-10-04
• 17.0.0-next.6 - 2023-09-27
• 17.0.0-next.5 - 2023-09-20
• 17.0.0-next.4 - 2023-09-13
• 17.0.0-next.3 - 2023-09-06
• 17.0.0-next.2 - 2023-08-30
• 17.0.0-next.1 - 2023-08-23
• 17.0.0-next.0 - 2023-08-16
• 16.2.12 - 2023-11-02
• 16.2.11 - 2023-10-25
• 16.2.10 - 2023-10-18
• 16.2.9 - 2023-10-11
• 16.2.8 - 2023-10-04
• 16.2.7 - 2023-09-27
• 16.2.6 - 2023-09-20
• 16.2.5 - 2023-09-13
• 16.2.4 - 2023-09-06
• 16.2.3 - 2023-08-30
• 16.2.2 - 2023-08-23
• 16.2.1 - 2023-08-16
• 16.2.0 - 2023-08-09
• 16.2.0-rc.0 - 2023-08-02
• 16.2.0-next.4 - 2023-07-26
• 16.2.0-next.3 - 2023-07-19
• 16.2.0-next.2 - 2023-07-13
• 16.2.0-next.1 - 2023-06-28
• 16.2.0-next.0 - 2023-06-21
• 16.1.9 - 2023-08-09
• 16.1.8 - 2023-08-02
• 16.1.7 - 2023-07-26
• 16.1.6 - 2023-07-19
• 16.1.5 - 2023-07-13
• 16.1.4 - 2023-07-06
• 16.1.3 - 2023-06-28
• 16.1.2 - 2023-06-21
• 16.1.1 - 2023-06-14
• 16.1.0 - 2023-06-13
• 16.1.0-rc.0 - 2023-06-08
• 16.1.0-next.3 - 2023-06-01
• 16.1.0-next.2 - 2023-05-24
• 16.1.0-next.1 - 2023-05-17
• 16.1.0-next.0 - 2023-05-10
• 16.0.6 - 2023-06-13
• 16.0.5 - 2023-06-08
• 16.0.4 - 2023-06-01
• 16.0.3 - 2023-05-24
• 16.0.2 - 2023-05-17
• 16.0.1 - 2023-05-10
• 16.0.0 - 2023-05-03
• 16.0.0-rc.4 - 2023-05-01
• 16.0.0-rc.3 - 2023-04-27
• 16.0.0-rc.2 - 2023-04-19
• 16.0.0-rc.1 - 2023-04-14
• 16.0.0-rc.0 - 2023-04-12
• 16.0.0-next.7 - 2023-04-06
• 16.0.0-next.6 - 2023-04-03
• 16.0.0-next.5 - 2023-03-29
• 16.0.0-next.4 - 2023-03-22
• 16.0.0-next.3 - 2023-03-16
• 16.0.0-next.2 - 2023-03-08
• 16.0.0-next.1 - 2023-03-01
• 16.0.0-next.0 - 2023-02-22
• 15.2.10 - 2023-10-04
• 15.2.9 - 2023-05-03
• 15.2.8 - 2023-04-19
• 15.2.7 - 2023-04-12
• 15.2.6 - 2023-04-06
• 15.2.5 - 2023-03-29
• 15.2.4 - 2023-03-22
• 15.2.3 - 2023-03-16
• 15.2.2 - 2023-03-08
• 15.2.1 - 2023-03-01
• 15.2.0 - 2023-02-22
• 15.2.0-rc.0 - 2023-02-15
• 15.2.0-next.4 - 2023-02-08
• 15.2.0-next.3 - 2023-02-02
• 15.2.0-next.2 - 2023-01-25
• 15.2.0-next.1 - 2023-01-18
• 15.2.0-next.0 - 2023-01-11
• 15.1.5 - 2023-02-15
• 15.1.4 - 2023-02-08
• 15.1.3 - 2023-02-02
• 15.1.2 - 2023-01-25
• 15.1.1 - 2023-01-18
• 15.1.0 - 2023-01-10
• 15.1.0-rc.0 - 2023-01-05
• 15.1.0-next.3 - 2022-12-14
• 15.1.0-next.2 - 2022-12-07
• 15.1.0-next.1 - 2022-11-30
• 15.1.0-next.0 - 2022-11-23
• 15.0.4 - 2022-12-14
• 15.0.3 - 2022-12-07
• 15.0.2 - 2022-11-30
• 15.0.1 - 2022-11-23
• 15.0.0 - 2022-11-16
• 15.0.0-rc.4 - 2022-11-14
• 15.0.0-rc.3 - 2022-11-09
• 15.0.0-rc.2 - 2022-11-04
• 15.0.0-rc.1 - 2022-10-26
• 15.0.0-rc.0 - 2022-10-19
• 15.0.0-next.6 - 2022-10-12
• 15.0.0-next.5 - 2022-10-05
• 15.0.0-next.4 - 2022-09-28
• 15.0.0-next.3 - 2022-09-21
• 15.0.0-next.2 - 2022-09-15
• 15.0.0-next.1 - 2022-09-07
• 15.0.0-next.0 - 2022-08-26
• 14.3.0 - 2023-03-13
• 14.2.12 - 2022-11-21
• 14.2.11 - 2022-11-16
• 14.2.10 - 2022-11-09
• 14.2.9 - 2022-11-03
• 14.2.8 - 2022-10-26
• 14.2.7 - 2022-10-19
• 14.2.6 - 2022-10-12
• 14.2.5 - 2022-10-05

from @angular/compiler GitHub release notes

---

Important

• Warning: This PR contains a major version upgrade, and may be a breaking change.
• Check the changes in this PR to ensure they won't cause issues with your project.
• This PR was automatically created by Snyk using the credentials of a real user.
• Max score is 1000. Note that the real score may have changed since the PR was raised.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

• 🧐 View latest project report
• 📜 Customise PR templates
• 🛠 Adjust upgrade PR settings
• 🔕 Ignore this dependency or unsubscribe from future upgrade PRs

Summary by Sourcery

Upgrade @angular/compiler from version 14.2.0 to 19.2.6 to address multiple security vulnerabilities

New Features:

• Major version upgrade of Angular compiler

Bug Fixes:

• Resolves multiple high and medium severity security vulnerabilities

[sourcery-ai]

Reviewer's Guide

This pull request upgrades the @angular/compiler dependency from version 14.2.5 to 19.2.6 to address security vulnerabilities identified by Snyk.

File-Level Changes

Change	Details	Files
Upgraded @angular/compiler dependency version.	Updated the version from 14.2.5 to 19.2.6 in dependencies. This is a major version upgrade and may contain breaking changes. The upgrade addresses multiple security vulnerabilities listed in the PR description. Removed version 14.2.0 (implicitly, by replacing the line).	examples/user-management/angular-user-management/package.json

---

Tips and commands

Interacting with Sourcery

• Trigger a new review: Comment @sourcery-ai review on the pull request.
• Continue discussions: Reply directly to Sourcery's review comments.
• Generate a GitHub issue from a review comment: Ask Sourcery to create an
  issue from a review comment by replying to it. You can also reply to a
  review comment with @sourcery-ai issue to create an issue from it.
• Generate a pull request title: Write @sourcery-ai anywhere in the pull
  request title to generate a title at any time. You can also comment
  @sourcery-ai title on the pull request to (re-)generate the title at any time.
• Generate a pull request summary: Write @sourcery-ai summary anywhere in
  the pull request body to generate a PR summary at any time exactly where you
  want it. You can also comment @sourcery-ai summary on the pull request to
  (re-)generate the summary at any time.
• Generate reviewer's guide: Comment @sourcery-ai guide on the pull
  request to (re-)generate the reviewer's guide at any time.
• Resolve all Sourcery comments: Comment @sourcery-ai resolve on the
  pull request to resolve all Sourcery comments. Useful if you've already
  addressed all the comments and don't want to see them anymore.
• Dismiss all Sourcery reviews: Comment @sourcery-ai dismiss on the pull
  request to dismiss all existing Sourcery reviews. Especially useful if you
  want to start fresh with a new review - don't forget to comment
  @sourcery-ai review to trigger a new review!

Customizing Your Experience

Access your dashboard to:

• Enable or disable review features such as the Sourcery-generated pull request
  summary, the reviewer's guide, and others.
• Change the review language.
• Add, remove or edit custom review instructions.
• Adjust other review settings.

Getting Help

• Contact our support team for questions or feedback.
• Visit our documentation for detailed guides and information.
• Keep in touch with the Sourcery team by following us on X/Twitter, LinkedIn or GitHub.