How to resolve eslint "Generic Object Injection Sink" error?

You are searching for an ES lint error fix:

Here is the syntax for it

json [`${key}`]

Example:

const obj = {     eventName: 'Music event',     landingPic: 'landing.jpg',    eventPic0: 'pic0.jpg',    eventPic1: 'pic1.jpg',    eventPic2: 'pic2.jpg',    eventPic3: 'pic3.jpg',    artist: 'Elie'};// array of keys which need to  be readconst arrayOfKey = ['landingPic', 'eventPic0', 'eventPic1',  'eventPic2',  'eventPic3'];// let's read the value by a key in arrayarrayOfKey.forEach( key => {    const value = obj[`${key}`];    console.log(value);});

javascript json node.js eslint

What its trying to say is that using this notation:

You are able to modify even prototype properties of the object which is considered dangerous
By being able to modify everything, you are also able to modify the constructor (method/function) so it may be injected and then exploited.

The subject is described analytically here, providing a simple example:

https://web.archive.org/web/20150430062816/https://blog.liftsecurity.io/2015/01/15/the-dangers-of-square-bracket-notation

CodeHunter

How to resolve eslint "Generic Object Injection Sink" error?

Recent Posts

How can I color dots in a xy scatterplot according to column value?

How to update a claim in ASP.NET Identity?

What does {0} mean when initializing an object?

Accessing members of items in a JSONArray with Java

How to log SQL statements in Spring Boot?

Powershell Get-WebSite name parameter is ignored

How to detect scroll to bottom of html element

Java synchronized method

How to test controllers with CodeIgniter?

Detect Visual Composer

Matplotlib: Specify format of floats for tick labels

Rails join a list of strings with commas and "and" before the last