Critical sandbox escape flaw discovered in popular vm2 NodeJS library

A critical-severity vulnerability in the vm2 Node.js sandbox library, tracked as CVE-2026-22709, allows escaping the sandbox and executing arbitrary code on the underlying host system.
InfoWorld

Unplugged holes in the npm and yarn package managers could let attackers bypass defenses against Shai-Hulud

A researcher at Koi Security says the two key platforms have not plugged the vulnerabilities enabling the worm attacks, and ...
GitHub

Modern JavaScript runtime in Python

Note: jsrun is under development. Expect breaking changes between minor versions. One of the most compelling use cases for jsrun is building safe execution environments for AI agents. When LLMs ...
GIGAZINE

'MicroQuickJS' that can compile and run JavaScript programs for embedded systems running on just 10KB of RAM

MicroQuickJS can be built and executed with 10KB of RAM and about 100KB of ROM as a C library. Other requirements include that it only supports a subset of JavaScript ...
GitHub

Practice coding algorithms 100% offline with AI: generate problems, get hints, discuss solutions, and run code in JavaScript, TypeScript, or Python — no internet or setup ...

The desktop application provides the best experience with zero environment setup required. Simply download and run.
Runner's World

This is the average time that it takes to run 1km – how does your running pace compare?

Success in running is relative – and that’s the beauty of it. The time that it takes one runner to complete a 5K easy run can be another runner’s 5K PB, while someone’s first-ever parkrun can be as ...