Control: tags -1 + confirmed On Sat, 2020-03-21 at 09:29 +0100, Xavier Guimard wrote: > node-dot ≤ 1.1.2 is vulnerable to code execution after prototype > pollution. I imported upstream fix and wrote a basic test to verify > that CVE is really fixed. > Please go ahead. Regards, Adam