CSO Online

Critical bug in popular vm2 Node.js sandboxing library puts projects at risk

Sandbox escape vulnerability in vm2, used by nearly 900 NPM packages, allows attackers to bypass security protections and ...
The Hacker News

Critical vm2 Node.js Flaw Allows Sandbox Escape and Arbitrary Code Execution

A critical vm2 Node.js vulnerability (CVE-2026-22709, CVSS 9.8) allows sandbox escape via Promise handler bypass.

Critical sandbox escape flaw found in popular vm2 NodeJS library

A critical-severity vulnerability in the vm2 Node.js sandbox library, tracked as CVE-2026-22709, allows escaping the sandbox and executing arbitrary code on the underlying host system.
GitHub

kubetail-org/fancy-ansi

Failure to parse some of our users' ANSI markup Use of hard-coded styles that made customization more difficult Lack of support for CSS variables To solve these problems and make something that ...

Dave Franco and O’Shea Jackson Jr. lead road movie gone wrong, bringing comedy to Sundance

The Sundance Film Festival is showcasing more comedies this year, including Macon Blair's new film. The movie stars Dave ...
InfoWorld

Rust 1.93 updates bundled musl library to boost networking

New Rust release brings major improvements to musl’s DNS resolver and tweaks the standard library to aid global allocators.

Chesterfield library branch to get $10M rebuild featuring coffee shop

A $1 million donation from a local family will help fund a $10 million library project in Chesterfield that will include the first coffee shop in the St. Louis County Library system.