GitHub

Low-Level OAuth 2 / OpenID Connect Client API for JavaScript Runtimes

This software provides a collection of routines that can be used to build client modules for OAuth 2.1, OAuth 2.0 with the latest Security Best Current Practices (BCP), and FAPI 2.0, as well as OpenID ...
Pocket-lint

New AirPods Pro 2 (USB-C) vs AirPods Pro 2 (lightning)

Adam has a degree in Engineering, having always been fascinated by how tech works. Tech websites have saved him hours of tearing his hair out on countless occasions, and he enjoys the opportunity to ...

5 JavaScript SEO lessons from top ecommerce sites

See how Chewy, Harrods, Under Armour, and more brands handle rendering, navigation, structured data, and scripts without ...
The Hacker News

vm2 Node.js Library Vulnerabilities Enable Sandbox Escape and Arbitrary Code Execution

CVE-2026-44009 (CVSS score: 9.8) - A vulnerability that allows sandbox escape via a null proto exception and permits an ...
GitHub

TIFF image decoder written entirely in JavaScript.

The library can currently decode greyscale and RGB images (8, 16 or 32 bits). It supports LZW compression and images with an additional alpha channel.
CSO Online

13 new critical holes in JavaScript sandbox allow execution of arbitrary code

Thirteen critical vulnerabilities have been found in the vm2 JavaScript sandbox package that could allow an attacker’s code ...

Critical vm2 sandbox bug lets attackers execute code on hosts

A critical vulnerability in the popular Node.js sandboxing library vm2 allows escaping the sandbox and executing arbitrary ...