Vulnerability in massCode Project

### Describe the bug

While working on massCode project, I identified a critical vulnerability in the elysia package [(CVE-2025-66456)](https://vulert.com/vuln-db/CVE-2025-66456). The issue is caused by prototype pollution through the mergeDeep function when multiple standalone schema validations are used, which can lead to remote code execution (RCE).

[CVE Link](https://vulert.com/vuln-db/CVE-2025-66456)
[CVE Report](https://vulert.com/vuln-scan/list/405d4706-5954-4b0c-b5b5-48bb2bcdfbe4)

### To reproduce

Uploaded the dependency file to Vulert
After uploading, [Vulert](https://vulert.com) automatically scanned the entire dependency tree, including transitive dependencies.

### App Version and Architecture

1.4.17

### System info

```shell
OS: Windows 10
```

### Validations

- [x] Follow our [Code of Conduct](https://github.com/massCodeIO/massCode/blob/master/CODE_OF_CONDUCT.md)
- [x] Check that there isn't [already an issue](https://github.com/massCodeIO/massCode/issues) that reports the same bug to avoid creating a duplicate.
- [x] Check that this is a concrete bug. For Q&A open a [GitHub Discussion](https://github.com/massCodeIO/massCode/discussions).

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Uh oh!

Vulnerability in massCode Project #649

Describe the bug

To reproduce

App Version and Architecture

System info

Validations

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Uh oh!

Vulnerability in massCode Project #649

Description

Describe the bug

To reproduce

App Version and Architecture

System info

Validations

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions