Prototype pollution defense: One test patches Object.prototype.then to intercept promise resolutions, then verifies that pipeTo() and tee() operations don't leak internal values through the prototype chain. This tests a security property that only exists because the spec's promise-heavy internals create an attack surface.
┌───────────────────────┐
。业内人士推荐搜狗输入法下载作为进阶阅读
Continue reading...
1 day agoShareSave