Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Prevent prototype pollution while parsing query strings #2494

Merged
merged 2 commits into from Jul 27, 2019

Conversation

@isiahmeadows
Copy link
Collaborator

commented Jul 27, 2019

Description

Motivation and Context

Fixes a vulnerability I discovered.

How Has This Been Tested?

Wrote a few new tests so we don't see it again.

Types of changes

  • Bug fix (non-breaking change which fixes an issue)
  • New feature (non-breaking change which adds functionality)
  • Breaking change (fix or feature that would cause existing functionality to change)
  • Documentation change

Checklist:

  • My code follows the code style of this project.
  • My change requires a change to the documentation.
  • I have updated the documentation accordingly.
  • I have read the CONTRIBUTING document.
  • I have added tests to cover my changes.
  • All new and existing tests passed.
  • I have updated docs/change-log.md

@project-bot project-bot bot added this to Needs triage in Triage/bugs Jul 27, 2019

@isiahmeadows isiahmeadows merged commit 97fa178 into MithrilJS:next Jul 27, 2019

Triage/bugs automation moved this from Needs triage to Closed Jul 27, 2019

@isiahmeadows isiahmeadows deleted the isiahmeadows:fix-querystring branch Jul 27, 2019

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
1 participant
You can’t perform that action at this time.