9.4 High
AI Score
Confidence
High
0.003 Low
EPSS
Percentile
68.8%
All versions of package @ianwalter/merge are vulnerable to Prototype Pollution via the main (merge) function. Maintainer suggests using @generates/merger instead.
security.snyk.io/vuln/SNYK-JS-IANWALTERMERGE-1311022