[Snyk] Security upgrade @angular/platform-server from 14.3.0 to 19.2.22

[patzeltj]

Snyk has created this PR to fix 1 vulnerabilities in the npm dependencies of this project.

Snyk changed the following file(s):

• package.json

⚠️ Warning

Failed to update the package-lock.json, please update manually before merging.

Vulnerabilities that will be fixed with an upgrade:

	Issue	Score
	Server-side Request Forgery (SSRF) SNYK-JS-ANGULARPLATFORMSERVER-16770437	726

Breaking Change Risk

Notice: This assessment is enhanced by AI.

---

Important

• Check the changes in this PR to ensure they won't cause issues with your project.
• Max score is 1000. Note that the real score may have changed since the PR was raised.
• This PR was automatically created by Snyk using the credentials of a real user.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report
📜 Customise PR templates
🛠 Adjust project settings
📚 Read about Snyk's upgrade logic

---

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Server-side Request Forgery (SSRF)

[patzeltj]

Upgrading from Angular 14.3.0 to 19.2.22 is a major undertaking that spans five major versions. This is a high-risk migration due to numerous and significant breaking changes in the framework's architecture, tooling, and APIs. Developers should expect to perform significant refactoring and follow the official Angular Update Guide closely.

Key Breaking Changes & Architectural Shifts:

• Standalone Components are the New Default (v17+): Angular has moved away from NgModules. Starting in v17, components, directives, and pipes are standalone by default. This is a fundamental shift in application architecture. The ng update command will assist, but manual adjustments will be required.

• New Build System and SSR (v17+): The build system has been replaced. Webpack has been superseded by Vite and esbuild, which is the default in v17+. For Server-Side Rendering, the @angular/platform-server and universal approach has been revamped into the @angular/ssr package, with a unified application builder introduced in v19.

• New Control Flow Syntax (v17+): The structural directives *ngIf, *ngFor, and *ngSwitch are replaced by a new, built-in block syntax (@if, @for, @switch). The CLI includes migrations for this change.

• Node.js and TypeScript Requirements: Each major version raises the minimum required versions of Node.js and TypeScript. For example, v17 requires at least Node.js 18.13.0 and TypeScript 5.2.

• Removal of View Engine Support (v16): The Angular Compatibility Compiler (ngcc) was removed in v16. Any third-party libraries that have not been updated from the legacy View Engine to the Ivy format will no longer work.

• Reactivity and Zoneless (v16+): Angular introduced Signals as a new reactivity primitive in v16, and v18 includes experimental support for a "zoneless" application architecture, reducing the reliance on zone.js.

Recommendation:
This is not a simple version bump. It is a multi-stage migration. Use the official ng update @angular/cli @angular/core command incrementally or in steps as recommended by the Angular Update Guide. Allocate significant time for code ref

Notice 🤖: This content was augmented using artificial intelligence. AI-generated content may contain errors and should be reviewed for accuracy before use.