The Hacker News

Critical vm2 Node.js Flaw Allows Sandbox Escape and Arbitrary Code Execution

A critical vm2 Node.js vulnerability (CVE-2026-22709, CVSS 9.8) allows sandbox escape via Promise handler bypass.
SiliconANGLE

Together AI acquires CodeSandbox, adds code interpreter to its AI development platform

Together Computer Inc., which does business as Together AI, today said that it has acquired CodeSandbox B.V, a startup that builds isolated cloud-based code execution environments known as devboxes.
Redmond Magazine

Microsoft Pulls Plug on SharePoint Online Managed Code Sandbox

Microsoft announced last Friday that it is pulling support for a capability that lets organizations use a server-based sandbox to run managed code for SharePoint Online sites. The announcement ...