Vulnerability	Vulnerable Version
M Prototype Pollution jsii is a technology that enables the AWS Cloud Development Kit to deliver polyglot libraries from a single codebase! Affected versions of this package are vulnerable to Prototype Pollution through the `configureCategories` function. An attacker can manipulate object properties and potentially alter program behavior by injecting malicious input into the configuration settings. Note: According to the reporter, this will not affect `jsii` itself, but it might affect the application you have loaded `jsii` into. How to fix Prototype Pollution? Upgrade `jsii` to version 5.4.46, 5.5.15, 5.6.4, 5.7.3 or higher.	>=5.4.0 <5.4.46>=5.5.0 <5.5.15>=5.6.0 <5.6.4>=5.7.0 <5.7.3

Prototype Pollution

jsii is a technology that enables the AWS Cloud Development Kit to deliver polyglot libraries from a single codebase!

Affected versions of this package are vulnerable to Prototype Pollution through the configureCategories function. An attacker can manipulate object properties and potentially alter program behavior by injecting malicious input into the configuration settings.

Note: According to the reporter, this will not affect jsii itself, but it might affect the application you have loaded jsii into.

How to fix Prototype Pollution?

Upgrade jsii to version 5.4.46, 5.5.15, 5.6.4, 5.7.3 or higher.

>=5.4.0 <5.4.46>=5.5.0 <5.5.15>=5.6.0 <5.6.4>=5.7.0 <5.7.3

Go back to all versions of this package