JavaScript Sandbox vm2: Critical Vulnerability Allows Escape

The JavaScript sandbox vm2 for Node.js was actually discontinued. Now an update closes a critical security vulnerability.

Paul Scholes makes worrying Arsenal claim and surprise prediction for Leeds clash

Paul Scholes suspects Arsenal have lost their momentum in the Premier League title race and expects the leaders to drop more points against Leeds United this weekend.
The Hacker News

Critical vm2 Node.js Flaw Allows Sandbox Escape and Arbitrary Code Execution

A critical vm2 Node.js vulnerability (CVE-2026-22709, CVSS 9.8) allows sandbox escape via Promise handler bypass.

'Good time for a reset' at Coventry

While things might be feeling nervy around Coventry City this week, their blip might have come at a perfect time, says EFL ...