Advisories for Npm/Php.js package

phpjs is vulnerable to Prototype Pollution via parse_str.