Timothee Desurmont comments

Repositories
Issues
Comments

Results 4 comments of


                                            Timothee Desurmont

Who to contact for security issues

Hi Jamie, Just to make sure: we are discussing about the fix bounty here and not the vulnerability finding. Both of these versions where not out when I wrote the...

Trying to get in touch regarding a security issue

Hey, I tried to contact the developers two years back to report a **prototype pollution vulnerability** in your **mockjs npm package** but never got any feed back. here is: [the...

add a denylist of dengerous attributes in lodash.set/index.js

report sent to snyk as instructed in your SECURITY.md file

Found a possible security concern

Hey there, I tried to get in touch with the developers of the npm package node-object-mapper to report a **prototype pollution vulnerability** but never got any feedback. The latest version...