JavaScript Sandbox vm2: Critical Vulnerability Allows Escape

The JavaScript sandbox vm2 for Node.js was actually discontinued. Now an update closes a critical security vulnerability.
GitHub

MessagePack for ECMA-262/JavaScript/TypeScript

This library serves as a comprehensive reference implementation of MessagePack for JavaScript with a focus on accuracy, compatibility, interoperability, and performance. Additionally, this is also a ...

NotificationX WordPress WooCommerce Plugin Vulnerabilities Impact 40k Sites

An advisory was issued for a WordPress plugin vulnerability that can enable unauthenticated attackers to inject malicious ...
The Hacker News

CERT/CC Warns binary-parser Bug Allows Node.js Privilege-Level Code Execution

A flaw in the binary-parser npm package before version 2.3.0 lets attackers execute arbitrary JavaScript via unsanitized parser input.

Hasbro taps Albuquerque for exclusive city-themed Monopoly edition

Albuquerque will be the Land of Enchantment's first city to be featured with its own city edition Monopoly board.
GitHub

Input Leap

#inputleap on LiberaChat IRC network, for support with Input Leap. #inputleap-dev on LiberaChat IRC network, for discussing development of Input Leap. Input Leap is software that mimics the ...