JavaScript Sandbox vm2: Critical Vulnerability Allows Escape

The JavaScript sandbox vm2 for Node.js was actually discontinued. Now an update closes a critical security vulnerability.
The Hacker News

Critical vm2 Node.js Flaw Allows Sandbox Escape and Arbitrary Code Execution

A critical vm2 Node.js vulnerability (CVE-2026-22709, CVSS 9.8) allows sandbox escape via Promise handler bypass.

Rockwell Automation's software tapped for new EV plant in Saudi Arabia

Rockwell Automation is deepening its collaboration with an electric vehicle firm as it expands into Saudi Arabia, where ...

Analyst proposes two ideas for unplugging Harley-Davidson from LiveWire

An analyst has outlined two specific strategies for how Harley-Davidson could exit its stake in LiveWire Group.
The Hacker News

Critical Grist-Core Vulnerability Allows RCE Attacks via Spreadsheet Formulas

A critical Grist-Core flaw (CVE-2026-24002, CVSS 9.1) allows remote code execution through malicious formulas when Pyodide ...
GitHub

kubetail-org/fancy-ansi

Failure to parse some of our users' ANSI markup Use of hard-coded styles that made customization more difficult Lack of support for CSS variables To solve these problems and make something that ...

I used one simple script to remove AI from popular browsers (including Chrome and Firefox)

Chrome, Edge, and Firefox are full of bloatware, with AI among the features most of us don't want. This free tool is your ticket back to the good old days.