CVE-2026-44009 (CVSS score: 9.8) - A vulnerability that allows sandbox escape via a null proto exception and permits an ...

A critical vulnerability in the popular Node.js sandboxing library vm2 allows escaping the sandbox and executing arbitrary ...

Thirteen critical vulnerabilities have been found in the vm2 JavaScript sandbox package that could allow an attacker’s code ...

「Node.js」の開発チームは5月5日、「Node.js 26」をリリースした。2025年10月リリースの「Node.js 25」に続くメジャーリリースで、現在、公式サイト「nodejs.org」から無償でダウンロード可能。

Node.jsは5月7日（現地時間）、「Node.js 26.1.0」をリリースした。今回のリリースには、JavaScriptから動的ライブラリのロードやネイティブシンボルの呼び出しを可能にする、実験的なモジュールなどが含まれる。

Malicious code inserted into four SAP-related npm packages exposed developer workstations and automated build systems to credential theft, marking a sharp escalation in attacks against open-source ...

Weekly cybersecurity recap covering zero-days, malware, phishing, supply chain attacks, cloud threats, AI security risks, and ...

OpenClaw is being touted as the “operating system for personal AI.” It’s being supported by a wide array of companies, ...

Hermes Agent’s latest release shows how AI agents are evolving from assistants into self-improving tools that learn, build, ...

Developers and students are increasingly turning to Docker containers and virtual machines to create consistent, reproducible, and isolated coding environments. These setups eliminate dependency ...

Dive into The Register's online archive of incisive tech news reporting, features, and analysis dating back to 1998 ...