GHSA-q3fm-4wcw-g57x: vm2 setup-sandbox.js violates Defense Invariant #11 in stack-trace formatter

May 29, 2026

defaultSandboxPrepareStackTrace in lib/setup-sandbox.js (lines 605, 607) appends to a fresh sandbox-realm lines = [] via lines[lines.length] = value. This is the exact invariant-violating pattern that GHSA-9qj6-qjgg-37qq (commit ca195f0, 2026-05-01) just patched in neutralizeArraySpeciesBatch and codified as Defense Invariant #11 (“Bridge-internal containers must not invoke sandbox code”). A sandbox-installed Array.prototype[N] setter fires during the bridge’s safe-default stack-trace formatting and observes / intercepts each appended line.

References

github.com/advisories/GHSA-q3fm-4wcw-g57x
github.com/patriksimek/vm2/commit/ad31adc1fc4a2c163f2f8c11ab4af206074528fd
github.com/patriksimek/vm2/releases/tag/v3.11.4
github.com/patriksimek/vm2/security/advisories/GHSA-q3fm-4wcw-g57x

Code Behaviors & Features

Detect and mitigate GHSA-q3fm-4wcw-g57x with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →