SonarQube Cloud
Code Quality: Capabilities
Code Quality: Framework Support
Code Analysis: User Experience
Go to portal
Detect Prototype Pollution vulnerabilities
10
AG
Alexandre Gigleux
Posted on February 2021

"Prototype Pollution" vulnerabilities got a lot of attention in 2020. Many vulnerabilities were discovered in famous or less famous NPM packages.

"Prototype Pollution" is now the #2 most common vulnerability type found in NPM packages (18%), even though this statistic is a little bit distorted due to imprecise classifications (source: internal private studies).

We can't ignore this fact and we need to find a way to fix the problem by helping developers of libraries and applications to detect  "Prototype Pollution" vulnerabilities before they are published.

How important is this to you?
Not important
Nice-to-have
Important
Critical