Anthropic bakes memory fixes into Bun 1.1.13 as developers complain of leaks

But perhaps most important is the attention to memory issues in this release. Bun inventor Jared Sumner claims that the ...

Wetherholt homers twice, Brito error lets Cardinals rally for 6-5, 10-inning win over Guardians

Cardinals rookie JJ Wetherholt homered twice, second baseman Juan Brito allowed Masyn Winn’s potential game-ending grounder ...

Adobe rolls out emergency fix for Acrobat, Reader zero-day flaw

Adobe has released an emergency security update for Acrobat Reader to fix a vulnerability, tracked as CVE-2026-34621, that ...
GitHub

AST-CLI-JAVASCRIPT-WRAPPER-RUNTIME-CLI

The Javascript-Wrapper is part of the AST-CLI project that provides a shared infrastructure across the AST projects. It contains technology neutral repository interfaces as well as a metadata model ...

Anthropic’s biggest AI leak yet: How Claude Code spill exposed secrets and sparked chaos

Anthropic accidentally leaked the full source code of Claude code, its flagship AI coding agent on March 31. The code was ...
HHS

Backdooring of JavaScript Library Axios Tied to North Korea

A supply-chain attack affecting Axios, the popular JavaScript library, traced back to DPRK threat activity. (Image: Shutterstock) A supply-chain attack that compromised versions of Axios to distribute ...
Security Boulevard

Fuzzing to Zero-Day: Pwning V8CTF With TurboFan Type Confusion, CVE-2025-2135

The bug was assigned CVE-2025-2135, and we successfully used it to pwn Google’s V8CTF as a zero-day. The root cause lies in TurboFan’s InferMapsUnsafe() function, which fails to handle aliasing when ...
GitHub

JavaScript Sandboxing Research

This is an AI-generated research report. All text and code in this report was created by an LLM (Large Language Model). For more information on how these reports are created, see the main research ...