JavaScript Sandbox vm2: Critical Vulnerability Allows Escape

The JavaScript sandbox vm2 for Node.js was actually discontinued. Now an update closes a critical security vulnerability.
Bleeping Computer

Ripple's recommended XRP library xrpl.js hacked to steal wallets

The recommended Ripple cryptocurrency NPM JavaScript library named "xrpl.js" was compromised to steal XRP wallet seeds and private keys and transfer them to an attacker-controlled server, allowing ...
Hosted on MSN

What really happened when Faker.js vanished overnight

Faker.js was a tool millions relied on, yet few understood the pressure placed on its creator. When the project was suddenly sabotaged and removed, it sparked outrage, confusion, and a wider debate ...