Juan Carlos Valerio

icon indicating a website link https://www.linkedin.com/in/jcvalerio/ icon indicating an email [email protected]

icon company Carbon6 icon location San Jose, Costa Rica icon location 🇨🇷 | 🧑‍💻 senior engineer | blockchain | Ethereum | smart contract dev | web3 | researcher | swimmer 🏖️🏊 | He/his

Results 1 issues of Juan Carlos Valerio

Prototype Pollution by semantic-release-cli > travis-ci > lodash dependency

Versions of lodash before 4.17.12 are vulnerable to Prototype Pollution. The function defaultsDeep allows a malicious user to modify the prototype of Object via {constructor: {prototype: {...}}} causing the addition...