Skip to content

fix(joint-core): backport prototype-pollution guards + widen computeNodeBoundingRect [dev]#3370

Merged
kumilingus merged 1 commit into
clientIO:devfrom
kumilingus:backport/proto-pollution-guards-and-computeNodeBoundingRect
Jun 15, 2026
Merged

fix(joint-core): backport prototype-pollution guards + widen computeNodeBoundingRect [dev]#3370
kumilingus merged 1 commit into
clientIO:devfrom
kumilingus:backport/proto-pollution-guards-and-computeNodeBoundingRect

Conversation

@kumilingus

Copy link
Copy Markdown
Contributor

Summary

Backport from master to bring dev in sync on two items:

  • utilHelpers.mjs — prototype-pollution guards on set, unset, assign, baseMerge, baseAssignValue, and safeGet. Blocks __proto__, constructor, and prototype as traversal/assignment keys.
  • dia.d.ts — widen computeNodeBoundingRect parameter from SVGElement to SVGElement | HTMLElement.

master's utilHelpers.mjs was checked: dev had no unique commits touching the file, so taking master's version wholesale is safe.

Notes

  • test/jointjs/utilHelpers.js exists on master but was removed on dev. Not restored here — flag if it should be.
  • dia.d.ts originX / originY fitToContent types unique to dev preserved.

Test plan

  • yarn test-server (joint-core)
  • yarn test-ts
  • Confirm pollution attempts via set(obj, '__proto__.polluted', true) no-op

🤖 Generated with Claude Code

…odeBoundingRect

Backport from master:

- `utilHelpers.mjs` — prototype-pollution guards on `set`, `unset`, `assign`,
  `baseMerge`, `baseAssignValue`, and `safeGet`. Blocks `__proto__`,
  `constructor`, and `prototype` as traversal/assignment keys.
- `dia.d.ts` — widen `computeNodeBoundingRect` parameter from `SVGElement` to
  `SVGElement | HTMLElement`.

Note: `test/jointjs/utilHelpers.js` exists on master but was removed on dev;
not restored here.
@kumilingus kumilingus merged commit 37e9e99 into clientIO:dev Jun 15, 2026
@kumilingus kumilingus deleted the backport/proto-pollution-guards-and-computeNodeBoundingRect branch June 15, 2026 14:58
@zbynekstara zbynekstara changed the title fix(joint-core): backport prototype-pollution guards + widen computeNodeBoundingRect fix(joint-core): backport prototype-pollution guards + widen computeNodeBoundingRect [dev] Jun 15, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

1 participant