CVE-2026-44009 (CVSS score: 9.8) - A vulnerability that allows sandbox escape via a null proto exception and permits an ...

CISA warns that the nine-year-old Linux Copy Fail flaw is being actively exploited, allowing local attackers to gain root ...

A critical vulnerability in the popular Node.js sandboxing library vm2 allows escaping the sandbox and executing arbitrary ...

Ever wonder why packaging a Python app and its dependencies as a single executable is such a pain? Blame it on the dynamism ...

In early 2025, a class-action lawsuit against GitHub, Microsoft, and OpenAI over Copilot’s use of open-source training data ...

The Ruby vulnerability is not easy to exploit, but allows an attacker to read sensitive data, start code, and install ...

Proof-of-concept exploit code has been published for a critical remote code execution flaw in protobuf.js, a widely used JavaScript implementation of Google's Protocol Buffers. The tool is highly ...

A comprehensive open-source code library has been launched for OpenBridge. This design system is engineered to create safer and more efficient workplaces across the international fleet by ...

Rod Johnson, the creator of the Spring Framework, is back with another open source project — and this time he’s aiming to solve what he sees as the central problem of enterprise AI: Making large ...

Editor's note: New information has been added to this story. Rutherford County Library System Director Luanne James lost her job March 30 for refusing her board's directive to move over 100 children's ...

Attackers stole a long-lived npm access token belonging to the lead maintainer of axios, the most popular HTTP client library in JavaScript, and used it to publish two poisoned versions that install a ...

Three weeks ago, a man with a documented history of severe mental illness allegedly carried out a sudden, near-fatal attack inside Austin’s Central Library — a case that has raised urgent questions ...