jarradseers/config-handler

Releases1

Frequency

Last Release about 9 years ago

Stars1

Load configuration, deep merging package, global, environment

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2021-23448 ↗	Oct 11, 2021Monday, 11 October 2021, 21:15	6.5 MEDIUM	7.5 HIGH
All versions of package config-handler are vulnerable to Prototype Pollution when loading config files.