A very interesting writeup on a recent vulnerability found in the lodash JS library.