The Hacker News

CERT/CC Warns binary-parser Bug Allows Node.js Privilege-Level Code Execution

A flaw in the binary-parser npm package before version 2.3.0 lets attackers execute arbitrary JavaScript via unsanitized parser input.
How-To Geek on MSN

Please stop over-coding your website: Use these 8 native HTML tags instead

These tags add menus, toggles, media, forms, and responsive images with minimal code.
FierceBiotech

GRI touts IPF safety edge, lung function gains amid cash crunch

Barreling toward the end of its cash runway, GRI Bio has shared phase 2a data in idiopathic pulmonary fibrosis (IPF) and made the case for further development of its potentially disease-modifying ...
Bleeping Computer

Polyfill.io JavaScript supply chain attack impacts over 100K sites

Over 100,000 sites have been impacted in a supply chain attack by the Polyfill.io service after a Chinese company acquired the domain and the script was modified to redirect users to malicious and ...
InfoQ

MySQL Introduces Javascript Support in Preview

A monthly overview of things you need to know as an architect or aspiring architect. Unlock the full InfoQ experience by logging in! Stay updated with your favorite authors and topics, engage with ...
InfoWorld

Filter JavaScript objects the easy way with Arquero

Use popular 'grammar of data' syntax to filter and subset your two-dimensional JavaScript arrays and more. Here's how to use Arquero for data wrangling in Observable JavaScript and Node.js. There are ...