npm›worksmith›CVE-2020-77259.8 CRITICALImproper Input ValidationThe worksmith package is vulnerable to Prototype Pollution via the setValue function.