InfoWorld

Will JavaScript containers overtake Linux containers?

Node.js and Deno creator Ryan Dahl believes the majority of web services might be simplified by using JavaScript containers, rather than Linux containers. Developers of the Deno JavaScript and ...
Dark Reading

Critical Open Source vm2 Sandbox Escape Bug Affects Millions

A remote code execution (RCE) vulnerability in a widely used JavaScript sandbox has earned a top rating of 10 on the CVSS vulnerability risk scale; it allows threat actors to execute a sandbox escape ...
Bleeping Computer

Critical VM2 flaw lets attackers run code outside the sandbox

Researchers are warning of a critical remote code execution flaw in 'vm2', a JavaScript sandbox library downloaded over 16 million times per month via the NPM package repository. The vm2 vulnerability ...
Bleeping Computer

New sandbox escape PoC exploit available for VM2 library, patch now

A security researcher has released, yet another sandbox escape proof of concept (PoC) exploit that makes it possible to execute unsafe code on a host running the VM2 sandbox. VM2 is a specialized ...