[plist] Prototype pollution in Plist

Prototype pollution vulnerability via .parse() in Plist allows attackers to cause a Denial of Service (DoS) and may lead to remote code execution.

References

• https://nvd.nist.gov/vuln/detail/CVE-2022-22912
• https://github.com/TooTallNate/plist.js/issues/114
• https://github.com/TooTallNate/plist.js/pull/118
• https://github.com/TooTallNate/plist.js/commit/96e2303d059e6be0c9e0c4773226d14b4758de52
• https://github.com/advisories/GHSA-4cpg-3vgw-4877