Severity: Critical
CVSS Score: 5.6
All versions of package deepmergefn are vulnerable to Prototype Pollution via deepMerge function.