Thirteen critical vulnerabilities have been found in the vm2 JavaScript sandbox package that could allow an attacker’s code ...
A critical vulnerability in the popular Node.js sandboxing library vm2 allows escaping the sandbox and executing arbitrary ...
CVE-2026-44009 (CVSS score: 9.8) - A vulnerability that allows sandbox escape via a null proto exception and permits an ...
Malicious Lightning 2.6.2/2.6.3 released April 30 enable credential theft via hidden payload, leading to PyPI quarantine and ...
Technology that helps write computer code is not new, but advances in generative AI (GenAI) and agentic AI have catapulted ...
Over 170 TanStack, Mistral AI, OpenSearch, UiPath, and other packages were affected in a new Mini Shai-Hulud supply chain ...
TanStack had 2FA, OIDC publishing, and Sigstore provenance on every release. The Mini Shai-Hulud worm published 84 malicious ...
GitHub has introduced a significant update to its CodeQL engine, enabling developers to define custom sanitizers and ...
Adobe patches a critical PDF flaw exploited for months, allowing attackers to bypass sandbox protections and deliver malware. Users urged to update now.
Cryptopolitan on MSN
Malicious SAP npm packages target crypto wallet data
Four npm packages linked to SAP's Cloud Application Programming Model were hijacked. The hackers added code that steals ...
Checkmarx warned that a malicious version of its Jenkins AST plugin was published in a software supply chain attack.
Alabaster Dawn is a fresh top-down 2.5D action RPG from Radical Fish Games, the developers of the excellent CrossCode.
Some results have been hidden because they may be inaccessible to you
Show inaccessible results