Tag
A single vulnerability in Chrome's V8 JIT compiler, CVE-2026-6307, allows attackers to gain arbitrary read/write primitives within the V8 sandbox and escape it to achieve remote code execution, affecting Chrome versions since 106.
This article details over 20 security vulnerabilities found by AI agents in Epsilon, a small WASM runtime written in Go, including several sandbox escapes that allow malicious modules to break out of isolation.
A discussion questioning what makes Anthropic and OpenAI's agent implementations special, suggesting they may just be basic ReAct loops with tools, and asking about the gap with local Ollama model implementations.