Web application security has many aspects. This documentation describes Angular’s built in protections against common web application vulnerabilities and attacks, such as Cross Site Scripting Attacks. It does not cover application level security, such as authentication (Who is this user?) or authorization (What can this user do?).
The Open Web Application Security Project (OWASP) has further information on the attacks and mitigations described below.
Angular is a development platform for building mobile and desktop web applications
Source: Security – ts