-
-
Notifications
You must be signed in to change notification settings - Fork 96
Vulnerability patch
Details outlined here: #85. TLDR: The prototype of the returned diff object could be polluted but not globally on all objects.
Fix: #87
Thanks @Retr02332 for highlighting the issue and validating the fix.
This vulnerability was introduced in https://github.com/mattphillips/deep-object-diff/releases/tag/v1.1.6