ts-deepmerge before 2.0.2 vulnerable to Prototype Pollution
The package ts-deepmerge before 2.0.2 is vulnerable to Prototype Pollution due to missing sanitization of the merge function.
Advisories for Npm/Ts-Deepmerge package
2022
The package ts-deepmerge before 2.0.2 is vulnerable to Prototype Pollution due to missing sanitization of the merge function.