The Hacker News

Critical vm2 Node.js Flaw Allows Sandbox Escape and Arbitrary Code Execution

A critical vm2 Node.js vulnerability (CVE-2026-22709, CVSS 9.8) allows sandbox escape via Promise handler bypass.
InfoWorld

jQuery 4.0.0 JavaScript library features trusted types

The first major update in nearly 10 years, jQuery 4.0.0 follows a long development cycle and several pre-releases.
CSO Online

Critical bug in popular vm2 Node.js sandboxing library puts projects at risk

Sandbox escape vulnerability in vm2, used by nearly 900 NPM packages, allows attackers to bypass security protections and ...

Critical sandbox escape flaw found in popular vm2 NodeJS library

A critical-severity vulnerability in the vm2 Node.js sandbox library, tracked as CVE-2026-22709, allows escaping the sandbox and executing arbitrary code on the underlying host system.
腾讯网

轻量 JavaScript 框架 jQuery 推出 4.0 正式版

IT之家 1 月 19 日消息,JQuery 是一款受到广泛赞誉的轻量 JavaScript 框架,目前官方推出了 JQuery 4.0 正式版本,号称是近 10 年来的首个重大版本更新,小伙伴可以点此访问项目地址。在兼容性方面,jQuery 4.0 ...

jQuery 4.0 Released: Less Legacy, More Modern Web Standards

With jQuery 4, a new major version is released for the first time in years. Less legacy, modern browsers, more security – ...
Queerty

Paul Rudd reveals his “huge” package made him “very self-conscious” as a teen

The 56-year-old has been making the rounds to promote his new action-adventure comedy Anaconda — hold the jokes, please — and ...

轻量 JavaScript 框架 jQuery 推出 4.0 正式版,放弃支持微软 IE 10 浏览器

IT之家 1 月 19 日消息,JQuery 是一款受到广泛赞誉的轻量 JavaScript 框架,目前官方推出了 JQuery 4.0 正式版本,号称是近 10 年来的首个重大版本更新,小伙伴可以 点此访问 项目地址。
The Root on MSN

Why Everyone is Losing It Over Naomi Osaka’s Australian Open Outfit

Naomi Osaka is making a bold fashion statement at the 2026 Australian Open and you've got to see how she slayed!

Film about Palestinian girl's desperate plea was a 'way to not feel helpless', says director

Kaouther Ben Hani's Oscar hopeful, The Voice of Hind Rajab, tells the tale of a girl killed in Gaza.