CVE-2019-18841: Prototype Pollution in chartkick

(updated )

Chartkick.js, as used in the Chartkick gem for Ruby, allows prototype pollution.

References

Code Behaviors & Features

Detect and mitigate CVE-2019-18841 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →