New sandbox escape flaw exposes n8n instances to RCE attacks

Two vulnerabilities in the n8n workflow automation platform could allow attackers to fully compromise affected instances, access sensitive data, and execute arbitrary code on the underlying host.
CSO Online

Critical bug in popular vm2 Node.js sandboxing library puts projects at risk

Sandbox escape vulnerability in vm2, used by nearly 900 NPM packages, allows attackers to bypass security protections and ...
InfoWorld

TypeScript levels up with type stripping

Say goodbye to source maps and compilation delays. By treating types as whitespace, modern runtimes are unlocking a “no-build” TypeScript that keeps stack traces accurate and workflows clean.
Infosecurity Magazine

Critical and High Severity n8n Sandbox Flaws Allow RCE

Two critical security flaws in n8n have exposed sandboxing vulnerabilities, enabling remote code execution for attackers ...
The Indiana Lawyer

Alex Palou ordered to pay McLaren Racing $12M in breach of contract suit

Four-time IndyCar champion Alex Palou on Friday was ordered to pay McLaren Racing more than $12 million in the breach of contract suit the team filed when the Spaniard backed out of two different ...
The Hacker News

Critical vm2 Node.js Flaw Allows Sandbox Escape and Arbitrary Code Execution

A critical vm2 Node.js vulnerability (CVE-2026-22709, CVSS 9.8) allows sandbox escape via Promise handler bypass.

Alpine confirms ex-Red Bull boss Christian Horner among interested parties in buying minority stake

LONDON (AP) — The Alpine Formula 1 team confirmed Sunday that ex-Red Bull boss Christian Horner is among the interested parties in buying a minority stake in the team. “It is no secret that Otro ...

Work for 2026 season 'unprecedented' for McLaren

McLaren team principal Andrea Stella says the world champions have faced an "unprecedented" amount of work as he looks ahead to the new season.