Deep-merge the values of one object structure into another
76%
Total Score
60
94
69
100
0
| Title | Versions | Severity |
|---|---|---|
AIKIDO-2026-887444 Pre-CVE Found by Aikido Intel before public disclosure or CVE publication. @75lb/deep-merge is vulnerable to Prototype Pollution in versions 1.0.0 - 1.1.3. | 1.0.0 - 1.1.3 | Medium |
CVE-2024-38986 @75lb/deep-merge is vulnerable to Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') in versions 0.0.0 - 1.1.1. | 0.0.0 - 1.1.1 | Medium |
| Dependency | Last Release | Score |
|---|---|---|
lodash Version ^4.17.21 | — | — |
typical Version ^7.1.1 | — | — |
Connect your repositories to instantly see whether vulnerable or malicious packages exist in your codebase.
Free. No credit card required.

SOC 2Compliant
ISO 27001Compliant