Open RamyaPayyavula opened 3 years ago
Thank you for your submission, we really appreciate it. Like many open source projects, we ask that you sign our Contributor License Agreement before we can accept your contribution.
Hi @RamyaPayyavula!
See #240 😃
older versions of lodash has vulnerabilities. lodash is vulnerable to injection vulnerability. An attacker can inject malicious code via
sourceURL
since it is not sanitized for the user-provided code that leads to theeval()
function.