JavaScript Sandbox vm2: Critical Vulnerability Allows Escape

The JavaScript sandbox vm2 for Node.js was actually discontinued. Now an update closes a critical security vulnerability.
The Hacker News

Critical vm2 Node.js Flaw Allows Sandbox Escape and Arbitrary Code Execution

A critical vm2 Node.js vulnerability (CVE-2026-22709, CVSS 9.8) allows sandbox escape via Promise handler bypass.

Critical sandbox escape flaw found in popular vm2 NodeJS library

A critical-severity vulnerability in the vm2 Node.js sandbox library, tracked as CVE-2026-22709, allows escaping the sandbox and executing arbitrary code on the underlying host system.
Coingape

NOWPayments Review 2026 : Features, Fees & Is It Worth It?

NOWPayments review 2026 covering fees, supported cryptocurrencies, integrations, custody options, and pros & cons to help businesses decide if it’s worth using.

jQuery 4.0 Released: Less Legacy, More Modern Web Standards

With jQuery 4, a new major version is released for the first time in years. Less legacy, modern browsers, more security – ...