Loading...

XML

Word

Printable

JSON

Type: Bug
Resolution: Fixed
Priority: Major - P3
Fix Version/s: bson-4.4.0
Affects Version/s: bson-4.2.3
Component/s: BSON
Labels:
- nice-to-have
- node-internal

Confidence Status:
None

Documentation Changes:
Not Needed

Aha! Reference:
None
Tracking Level:
None
Risk Status:
None
Exec Notes:
None
Goal Link:
None
Goal Name(s):
None

> const input = { ['__proto__']: { a: 42 } }
undefined
> output = bson.deserialize(bson.serialize(input))
{}
> Object.getPrototypeOf(output)
{ a: 42 }

The own named property __proto__ should be preserved as-is, i.e. the output object should have a property with that name just like the input object, and instead keep Object.prototype as its own prototype.

is duplicated by

NODE-3040 deserializer does not handle fields named __proto__

Closed

links to

PR: fix: correctly deserialize __proto__ properties

Assignee:: Daria Pardue
Reporter:: Anna Henningsen
Reviewers:: None
Votes:: 0 Vote for this issue
Watchers:: 2 Start watching this issue

Created:: Mar 11 2021 12:22:47 PM UTC
Updated:: Oct 29 2023 01:41:52 PM UTC
Resolved:: Apr 28 2021 07:13:55 PM UTC

Details

Description

Attachments

Issue Links

Activity

People

Dates