The Hacker News

Six Proto6 Vulnerabilities in protobuf.js Expose Node.js Apps to RCE and DoS

Six Proto6 flaws in protobuf.js enable RCE and DoS attacks; patched in versions 7.5.6 and 8.0.2 to protect Node.js services.
unite

Cloudflare Acquires VoidZero, Bringing the Team Behind Vite Into Its Developer Platform Ambitions

Founded by Evan You, VoidZero was created with the goal of building a unified, high-performance JavaScript toolchain. Rather than focusing on a single framework, the ...
InfoQ

Ky 2.0 Fetch API Wrapper with Revamped Hooks, Smarter Timeouts, and Built-In Schema Validation

Ky 2.0 is an open-source JavaScript HTTP client built on the Fetch API, featuring significant updates such as consolidated ...
Microsoft

From package to postinstall payload: Inside the Mastra npm supply chain compromise

A poisoned npm package infected 140+ projects with a hidden payload. This report highlights how to detect, hunt, and defend ...
InfoWorld

Protocol Buffers schemas expose remote code execution risk

Researchers at Cyera found six vulnerabilities in prtobuf.js, including a flaw that can turn attacker-controlled schema data ...
InfoQ

NodeJS Proposes Built-In Virtual File System, Sparking Debate over AI-Generated Contributions

Matteo Collina has proposed a Virtual File System (VFS) for Node.js core through the node:vfs module. The proposal includes about 19,000 lines of code and addresses common workflow challenges. While ...
Tech Times

npm v12 Security Overhaul Blocks Install Scripts by Default: July Deadline for CI Migration

July 2026, blocking install scripts, Git dependencies, and remote URL sources by default. Every team running npm install in ...
Indiatimes

DailyObjects' NODE is a modular wireless charger that doubles as a grab-and-go power bank

DailyObjects has launched NODE, and the most interesting thing about it isn't that it's modular. It's that the phone stand sitting on your desk is secretly a 7,800 mAh power bank. Pull it off the dock ...
moneycontrol.com

DailyObjects launches NODE modular wireless charging ecosystem with 3-in-1 charging solution at Rs 10,000

DailyObjects’ NODE modular wireless charging ecosystem will be available starting May 27, with prices starting at Rs 10,000 depending on the selected configuration. DailyObjects has launched NODE, a ...
Hosted on MSN

DailyObjects NODE wants to end your desk cable mess

Most charging setups go from clean to chaotic real quick. A phone cable here, earbuds there, and the smartwatch puck doing its own side quest. DailyObject's new modular charging system wants to fix ...