JavaScript Sandbox vm2: Critical Vulnerability Allows Escape

The JavaScript sandbox vm2 for Node.js was actually discontinued. Now an update closes a critical security vulnerability.
The Hacker News

Critical vm2 Node.js Flaw Allows Sandbox Escape and Arbitrary Code Execution

A critical vm2 Node.js vulnerability (CVE-2026-22709, CVSS 9.8) allows sandbox escape via Promise handler bypass.

Critical sandbox escape flaw found in popular vm2 NodeJS library

A critical-severity vulnerability in the vm2 Node.js sandbox library, tracked as CVE-2026-22709, allows escaping the sandbox and executing arbitrary code on the underlying host system.
Sydney Morning Herald

Albanese’s response to Bondi shattered a central promise – and exposed familiar patterns

Anthony Albanese’s handling of the Bondi terror attack has shattered a central promise of his prime ministership: that he could be trusted to lead when it mattered ...
GitHub

pfinalclub/asyncio-http-core

AsyncIO HTTP Core is a production-grade, high-performance async HTTP client built on top of the pfinal-asyncio framework. It leverages PHP 8.1+ Fiber technology to provide true asynchronous I/O with a ...