Critical flaw in Protobuf library enables JavaScript code execution

Proof-of-concept exploit code has been published for a critical remote code execution flaw in protobuf.js, a widely used ...
IEEE

SecBench.js: An Executable Security Benchmark Suite for Server-Side JavaScript

Abstract: NPM is the largest software ecosystem in the world, offering millions of free, reusable packages. In recent years, various security threats to packages published on npm have been reported, ...
GitHub

The agent engineering platform.

LangChain is a framework for building LLM-powered applications. It helps you chain together interoperable components and third-party integrations to simplify AI application development — all while ...
IEEE

Debun: Detecting Bundled JavaScript Libraries on Web using Property-Order Graphs

Abstract: Detecting front-end JavaScript libraries in web applications is essential for website profiling, vulnerability detection, and dependency management. However, bundlers like Webpack transpile ...