Critical sandbox escape flaw discovered in popular vm2 NodeJS library

A critical-severity vulnerability in the vm2 Node.js sandbox library, tracked as CVE-2026-22709, allows escaping the sandbox and executing arbitrary code on the underlying host system.
The Hacker News

CERT/CC Warns binary-parser Bug Allows Node.js Privilege-Level Code Execution

A flaw in the binary-parser npm package before version 2.3.0 lets attackers execute arbitrary JavaScript via unsanitized parser input.
GitHub

Modern JavaScript runtime in Python

Note: jsrun is under development. Expect breaking changes between minor versions. One of the most compelling use cases for jsrun is building safe execution environments for AI agents. When LLMs ...
IEEE

Hail Damage Investigation in Heterojunction Silicon Photovoltaic Modules: A Real-World Case Study

Abstract: Most photovoltaic (PV) modules are guaranteed for 25–30 years. However, severe climatic events, particularly hail, can lead premature damage. In this article, a residential PV system in ...
PV Tech

PV Price Watch: Prices of China’s PV wafers, cells, and modules rise in tandem, module quotes hit RMB0.70/W

The average prices of polysilicon, wafers, solar cells, and modules had risen by 38.9%, 2.2%, 0.4%, and 2.3% year-to-date. Image: PV Tech The Chinese PV industry has witnessed a wave of collective ...
IEEE

A Novel Condition Monitoring Method for Full Modes of Package Degradation in High Power Modules Based on Hysteresis Curves of Forward Voltage Drop

Abstract: Package degradation for high power insulated gate bipolar transistors (IGBTs) modules would seriously affect the operation safety of power electronic converters. Due to the variety of ...