Bleeping Computer

Critical sandbox escape flaw found in popular vm2 NodeJS library

A critical-severity vulnerability in the vm2 Node.js sandbox library, tracked as CVE-2026-22709, allows escaping the sandbox and executing arbitrary code on the underlying host system. The open-source ...
USA Today

A man went missing in a Washington national park on July 31. He was just found alive.

A trail crew found a missing hiker in the North Cascades National Park in Washington a month after his disappearance, officials said Thursday, and the man's rescuers say he may not have had another ...
The New York Times

Ex-Uvalde Officer Found Not Guilty of Endangering Children in Mass Shooting

Adrian Gonzales had faced 29 charges for his actions in the 2022 shooting, in which 19 children were killed by a gunman at Robb Elementary School in Texas. By Edgar Sandoval Reporting from Corpus ...
InfoWorld

Beyond NPM: What you need to know about JSR

Here's how the JavaScript Registry evolves makes building, sharing, and using JavaScript packages simpler and more secure ...
Milwaukee Journal Sentinel

Milwaukee man convicted in $1.1 million scheme to 'boost' tax returns for clients

A Milwaukee tax preparer is facing up to three years in prison after admitting to federal investigators he helped pad hundreds of tax returns for clients that cost the Internal Revenue Service more ...
Milwaukee Journal Sentinel

York County pretzel outlet out of compliance in state health inspection

The state Department of Agriculture conducts annual inspections of food-serving businesses to ensure public safety and safe food-handling practices. Schools are inspected twice per year, according to ...
Hosted on MSN

Rihanna's Reaction the Moment A$AP Rocky Was Found Not Guilty

It's been a wild few years for A$AP Rocky — court dates, legal battles, and the looming threat of 24 years behind bars. But on Tuesday, February 18, the 36-year-old ...
GitHub

ES Module Lexer (Rust)

⚠️ Work In Progress - This project is under active development. Do not use in production environments. 🦀 A Rust implementation of es-module-lexer with Node.js bindings via napi-rs. Fast JavaScript ES ...
The Hacker News

Critical vm2 Node.js Flaw Allows Sandbox Escape and Arbitrary Code Execution

A critical sandbox escape vulnerability has been disclosed in the popular vm2 Node.js library that, if successfully exploited, could allow attackers to run arbitrary code on the underlying operating ...
The Hacker News

Malicious VS Code AI Extensions with 1.5 Million Installs Steal Developer Source Code

Cybersecurity researchers have discovered two malicious Microsoft Visual Studio Code (VS Code) extensions that are advertised as artificial intelligence (AI)-powered coding assistants, but also harbor ...
GitHub

Node.js module to fix mojibake when converting Latin-1 encoded text to UTF-8

When converting Latin-1 (or Windows-1252) encoded text to UTF-8, some characters may be incorrectly converted (mojibake). This module fixes those errors. Please refer to the JSDoc comments in the ...