Summary
This gives Claude the full offensive playbook for finding and exploiting prototype pollution in JavaScript applications. It covers both `__proto__` and `constructor.prototype` injection paths, quick probes for client and server contexts, and concrete black-box detection signals like polluting Express `parameterLimit` or `json spaces` settings. The gadget table walks through real RCE chains in EJS and child_process scenarios. Load this when you're merging untrusted input into objects, auditing query parsers or deep assign logic, or hunting for post-pollution sinks that turn property injection into command execution. The decision tree and tool list make it practical for both initial recon and chaining to full exploits.
Install to Claude Code
npx -y skills add yaklang/hack-skills --skill prototype-pollution --agent claude-codeInstalls into .claude/skills of the current project.
Keep your Mac awake while Claude Code and 40+ AI agents run. Sleeps when they're idle.
One time payment $9 →
Integrate web data into your AI product. One API to scrape website & brand data.
Get API Key Now →
Agent, run crypto. Access onchain data & trade routes via 1inch.
Install now →
On Capafy, your Skill runs online 24/7 as an agent product, and you get paid every time someone uses it.
Start earning →
Files
SKILL.md
Select a file.
Featured
Keep your Mac awake while Claude Code and 40+ AI agents run. Sleeps when they're idle.
One time payment $9 →Integrate web data into your AI product. One API to scrape website & brand data.
Get API Key Now →Agent, run crypto. Access onchain data & trade routes via 1inch.
Install now →On Capafy, your Skill runs online 24/7 as an agent product, and you get paid every time someone uses it.
Start earning →First SeenJun 3, 2026
