The Hacker News

Critical vm2 Node.js Flaw Allows Sandbox Escape and Arbitrary Code Execution

A critical vm2 Node.js vulnerability (CVE-2026-22709, CVSS 9.8) allows sandbox escape via Promise handler bypass.
CSO Online

Critical bug in popular vm2 Node.js sandboxing library puts projects at risk

Sandbox escape vulnerability in vm2, used by nearly 900 NPM packages, allows attackers to bypass security protections and ...
WIProud

Ziebell leads UConn to 50th consecutive Big East regular-season victory, beating Xavier 97-39

Allie Ziebell had a UConn program record-tying 10 3-pointers and a career-high 34 points, and Sarah Strong had 19 of her 25 ...
WIProud

Rick Pitino honored by St. John’s for reaching 900 career wins

Celebrated at home for reaching 900 wins, Rick Pitino couldn’t help but think back about where it all began. Pitino was ...
MIT Technology Review

Rules fail at the prompt, succeed at the boundary

Put rules at the capability boundary: Use policy engines, identity systems, and tool permissions to determine what the agent ...