Critical sandbox escape flaw discovered in popular vm2 NodeJS library

A critical-severity vulnerability in the vm2 Node.js sandbox library, tracked as CVE-2026-22709, allows escaping the sandbox and executing arbitrary code on the underlying host system.

OpenAI releases Prism, a Claude Code-like app for scientific research

OpenAI is releasing a new app called Prism today, and it hopes it does for science what coding agents like Claude Code did ...