The Hacker News

CERT/CC Warns binary-parser Bug Allows Node.js Privilege-Level Code Execution

A flaw in the binary-parser npm package before version 2.3.0 lets attackers execute arbitrary JavaScript via unsanitized parser input.
GitHub

rav2040/json-stringify-lite

These functions prioritize performance at the expense of certain features. The serialized JSON output of these functions is identical to that of JSON.stringify() with the following exceptions: ...
heraldsun.com.au

String of Melbourne night-life venues enter administration owing $4m

A string of celeb-favourite venues dotted on and around Chapel St’s iconic party strip has plunged into administration, leaving unsecured creditors owed more than $4m. Among the casualties are ...