CVE-2021-23397: @ianwalter/merge Prototype Pollution via `merge` function

Severity: Critical

CVSS Score: 5.6

All versions of package @ianwalter/merge are vulnerable to Prototype Pollution via the main (merge) function. Maintainer suggests using @generates/merger instead.