Homepage

kind-of@6.0.1 vulnerabilities

Get the native type of a value.

  • latest version

    6.0.3

  • latest non vulnerable version

    6.0.3

  • first published

    11 years ago

  • latest version published

    6 years ago

  • licenses detected

  • View kind-of package health on Snyk Advisor  (opens in a new tab)
    • Go back to all versions of this package
    Report a new vulnerability Found a mistake?

    Direct Vulnerabilities

    Known vulnerabilities in the kind-of package. This does not include vulnerabilities belonging to this package’s dependencies.

    Fix vulnerabilities automatically

    Snyk's AI Trust Platform automatically finds the best upgrade path and integrates with your development workflows. Secure your code at zero cost.

    Fix for free
    VulnerabilityVulnerable Version
    • L
    Validation Bypass

    kind-of is a package that gets the native type of a value.

    Affected versions of this package are vulnerable to Validation Bypass. It leverages the built-in constructor of unsafe user-input to detect type information. However, a crafted payload can overwrite this built in attribute to manipulate the type detection result.

    How to fix Validation Bypass?

    Upgrade kind-of to version 6.0.3 or higher.

    >=6.0.0 <6.0.3
    Go back to all versions of this package