The Hacker News

Critical vm2 Node.js Flaw Allows Sandbox Escape and Arbitrary Code Execution

A critical sandbox escape vulnerability has been disclosed in the popular vm2 Node.js library that, if successfully exploited, could allow attackers to run arbitrary code on the underlying operating ...
officechai.com

Era Of Humans Writing Code Is Over: Node.js Creator Ryan Dahl

Serious computer scientists are increasingly believing that humans will no longer be required to write any code. The latest voice to join this chorus is Ryan Dahl, the creator of Node.js, one of the ...
heise online

Node.js: Updated versions patch high-risk security vulnerabilities

Several security vulnerabilities, some classified as high-risk, have been discovered in the popular JavaScript runtime environment Node.js. Updated versions, announced in mid-December, have now been ...
IEEE

Study of JavaScript Static Analysis Tools for Vulnerability Detection in Node.js Packages

Abstract: With the emergence of the Node.js ecosystem, JavaScript has become a widely used programming language for implementing server-side web applications. In this article, we present the first ...
Developer Tech

Node.js 24: A faster, sleeker JavaScript experience

Node.js 24 has officially arrived, and it’s bringing a rather tasty selection of improvements to the table. If you’re a developer knee-deep in web apps or wrestling with asynchronous code, this ...
Microsoft

Threat actors misuse Node.js to deliver malware and other malicious payloads

Since October 2024, Microsoft Defender Experts (DEX) has observed and helped multiple customers address campaigns leveraging Node.js to deliver malware and other payloads that ultimately lead to ...
Milwaukee Journal Sentinel

Lunar eclipse is next week. Will you be able to see it in Wisconsin?

Next week, a blood moon will rise in the night sky when a total lunar eclipse becomes visible across the U.S., including in Wisconsin. A lunar eclipse occurs when the moon passes into Earth's shadow ...
Hacker

Node.js now supports TypeScript, 2024's JavaScript Rising Stars, and NEW tools - This Week in JS

We are a weekly podcast and newsletter made to deliver quick and relevant JavaScript updates in just under 4 minutes. We are a weekly podcast and newsletter made to deliver quick and relevant ...
Forbes

15 Reasons To Choose Node.js For Product Development In 2025

Staying ahead of the curve is no longer a choice. It has become a necessity. As of November 2024, Node.js powers 3.9% of websites globally, according to Web Technology Surveys. That includes giants ...
Hacker

JavaScript JS0/JSSugar Proposals, Node.js 23, Next.js 15 RC2 and More - This Week in JS

We are a weekly podcast and newsletter made to deliver... Google’s proposal aims to split JavaScript into two parts: JS0, the core language that engines implement, and JSSugar, extra features that ...
www.cs.cmu.edu

NodeMedic-FINE: Automatic Detection and Exploit Synthesis for Node.js Vulnerabilities

As it has become more popular, the Node.js ecosystem has turned into an attractive target for attackers and prior work has shown that many packages in the Node.js ...