New sandbox escape flaw exposes n8n instances to RCE attacks

Two vulnerabilities in the n8n workflow automation platform could allow attackers to fully compromise affected instances, access sensitive data, and execute arbitrary code on the underlying host.
MIT Technology Review

Rules fail at the prompt, succeed at the boundary

Put rules at the capability boundary: Use policy engines, identity systems, and tool permissions to determine what the agent ...
SecurityWeek

‘PackageGate’ Flaws Open JavaScript Ecosystem to Supply Chain Attacks

Vulnerabilities in the NPM, PNPM, VLT, and Bun package managers could lead to protection bypasses and arbitrary code ...

Where AI browsers fall short

Unlike regular search engines, AI browsers suffer from algorithmic inconsistency due to their black-box nature — and even ...
BioSpace

Enable Injections Announces $30 Million Investment from Sanofi to Accelerate Manufacturing Capabilities

CINCINNATI, Jan. 06, 2026 (GLOBE NEWSWIRE) -- Enable Injections, Inc. (“Enable”) a healthcare innovation company developing and manufacturing the enFuse ® On-Body Delivery System (OBDS), announced ...
IEEE

Study of JavaScript Static Analysis Tools for Vulnerability Detection in Node.js Packages

Abstract: With the emergence of the Node.js ecosystem, JavaScript has become a widely used programming language for implementing server-side web applications. In this article, we present the first ...