Description

Provide a clear and concise description of the issue, including what you expected to happen.

I noticed that every once in a blue moon, my tests for something that calls sign would fail with validator.isValid is not a function. After debugging, I managed to narrow it down. I'm using fast-check for tests, and their fc.object function sometimes generates objects that have keys like "__proto__", "valueOf", or "toString". Whenever an object like this is passed into sign, the validator.isValid error appears.

Reproduction

Most minimal reproduction I could create:

1. Create a new Node project, installing jsonwebtoken
2. In a file index.js, add:

const { sign } = require("jsonwebtoken");

console.log(sign({ valueOf: 0 }, "anysecret");

3. Run node index.js
4. See error

To reproduce the fast-check test that shows the different ways this error occurs:

1. Create a new Node project, installing jest, jsonwebtoken, and fast-check.
2. In a file jwt.test.js, add:

const fc = require("fast-check");
const { sign } = require("jsonwebtoken");

describe("jwt.sign", () => {
  it("should sign any object", () => {
    const prop = fc.property(
      fc.object(),
      fc.base64String({ minLength: 1 }),
      (obj, secret) => {
        const result = sign(obj, secret);
        return !!result;
      },
    );

    fc.assert(prop, { numRuns: 1000, verbose: true });
  });
});

3. Run npx jest
4. See that the test does not pass for certain values, and a TypeError: validator.isValid is not a function is thrown

Environment

Please provide the following:

• Version of this library used: ^9.0.2
• Version of the platform or framework used, if applicable: N/A
• Other relevant versions (language, server software, OS, browser): both JS and TS, on Linux, using Node
• Other modules/plugins/libraries that might be involved: fast-check