High Severity: Prototype Pollution in vulnerable module shvl@2.0.1
andrew-itscript opened this issue · 0 comments
andrew-itscript commented
vuex-persistedstateversion: 3.1.0 , 4.0.0-beta.2nodeversion: 12.6.1npm(oryarn) version: 6.13.4
Problem description:
Snyk reported recently about High Severity: Prototype Pollution in vulnerable module shvl@2.0.1 . The vuex-persistedstate project depends on shvl and therefore became listed as vulnerable primary dependency in our production project. Please check links below:
- https://snyk.io/test/npm/vuex-persistedstate/3.1.0
- https://snyk.io/test/npm/vuex-persistedstate/4.0.0-beta.2
Could you have a look and provide fix please?