CVE-2023-26106

All versions of the package dot-lens are vulnerable to Prototype Pollution via the set() function in index.js file.