New issue

Have a question about this project? # for a free GitHub account to open an issue and contact its maintainers and the community.

#

By clicking “#”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? # to your account

Jump to bottom

rfc6902 prototype pollution #84

Closed

sruthy-s-rft opened this issue Aug 6, 2021 · 2 comments

sruthy-s-rft commented Aug 6, 2021

As per veracode scans, this library is subject to prototype pollution.
https://sca.analysiscenter.veracode.com/vulnerability-database/security/sca/vulnerability/sid-28898/summary

Is there a plan to fix this in the upcoming release.

aleung commented Oct 25, 2021 •

edited

Loading

There is PR #76 but not being merged after months.

Owner

chbrown commented Dec 16, 2021

Uggh okay fine, fixed in v5.0.0 just now.

chbrown closed this as completed

# for free to join this conversation on GitHub. Already have an account? # to comment