You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Prototype pollution isn't really an attack vector when it's in your test framework - anyone who has the authority to write tests already can do far more dangerous things.
We are seeing vulnerability in jest-enzyme version 7.1.2 which is using [email protected]
The fix for this is to upgrade unset-value to 2.0.1
https://security.snyk.io/vuln/SNYK-JS-UNSETVALUE-2400660
here's the dependency tree:
└─┬ [email protected] └─┬ [email protected] └─┬ [email protected] └─┬ @jest/[email protected] └─┬ @jest/[email protected] └─┬ [email protected] └─┬ [email protected] └─┬ [email protected] └─┬ [email protected] └── [email protected]
Can you help with this please?
The text was updated successfully, but these errors were encountered: