All versions of package node-oojs are vulnerable to Prototype Pollution via the setPath function.CreditsNerdJSReferenceshttps://snyk.io/vuln/SNYK-JS-NODEOOJS-598678
