UNPKG

textmagic-rest-client

Version:

A Textmagic REST client

github.com/textmagic/textmagic-rest-nodejs

textmagic/textmagic-rest-nodejs

19 lines (13 loc) 481 B
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
var assert = require("assert"); var _= require('lodash'); describe('Lodash prototype pollution check', function(){ describe('... ', function(){ it('_.merge({}, {"__proto__":{"oops":"It works !"}})', function(done){ var malicious_payload = '{"__proto__":{"oops":"It works !"}}'; var a = {}; _.merge({}, JSON.parse(malicious_payload)); assert.notEqual(a.oops, "It works !"); done(); }); }) });