On April 9th Francesco Soncina –also known as phra on the HackerOne security bug bounty platform– reported a Server-side JavaScript code injection vulnerability... (more…)

Application Whitelisting Application whitelisting is an important security concept which can be found in many environments during pene... (more…)

I've been working on an alternative to the existing PromiseHook API in V8 using split JSFunctions per event type rather than the old way which routes everything through a single C++ function ev... (more…)

Bindings for the Ghostscript C API to bring Ghostscript power to the Node.JS world. (more…)

tl;dr: If you are running an application in production mode now or in the near future, use the LTS version of Node.js, otherwise the current version. To install multiple versions in parallel, use a version manager such as nvm. (more…)