开发者如果不够谨慎,便会通过依赖存在已知漏洞的代码,很容易将漏洞引入它们的代码库中。这就是为什么在安装第三方依赖关系之前需要对它们进行扫描,并在它们可用时应用安全补丁是很重要的。.../animations": "^8.0.0", "@angular/common": "^8.0.0", "@angular/compiler": "^8.0.0", "@angular.../core": "^8.0.0", "@angular/forms": "^8.0.0", "@angular/platform-browser": "^8.0.0", "@angular...": "~3.0.0", "karma-chrome-launcher": "~2.2.0", "karma-coverage-istanbul-reporter": "~2.0.1",..."karma-jasmine": "~1.1.2", "karma-jasmine-html-reporter": "^0.2.2", "lint-staged": "8.1.0",