Play AppSec WarGames
Want to skill-up in secure coding and AppSec? Try SecDim Wargames to learn how to find, hack and fix security vulnerabilities inspired by real-world incidents.
Coming Soon: Write up on vm2 and JS Sandboxing
The maintainers of vm2 have been honest about its limitations.
They have been explicit that new sandbox bypasses are likely to occur and that vm2 should not be relied on as a sole security control.
It is a welcome trend to see maintainers openly discuss the limitations and security assumptions of their projects.
Later this month, we’ll be publishing a write-up on vm2 and the security implications of JavaScript sandboxes. Stay tuned.
