deep-extend is vulnerable to prototype pollution attacks (https://github.com/unclechu/node-deep-extend/issues/39). The vulnerability exists in the utility function where the prototype of Object can be overwritten to add or modify existing property on all objects.
Please update as soon as deep-extend is updated
deep-extend is vulnerable to prototype pollution attacks (https://github.com/unclechu/node-deep-extend/issues/39). The vulnerability exists in the utility function where the prototype of
Object
can be overwritten to add or modify existing property on all objects. Please update as soon as deep-extend is updated