npm›node-oojs›CVE-2020-77219.8 CRITICALImproper Input ValidationThe node-oojs package is vulnerable to Prototype Pollution via the setPath function.