org.javadelight: delight-nashorn-sandbox is vulnerable to Sandbox Bypass. The vulnerability exists due to improper validation in allowExitFunctions
which allows an attacker to bypass sandbox protection and terminate the running process, possibly leading to Denial Of Service (DoS).
github.com/advisories/GHSA-wfwf-xhx7-3whj
github.com/javadelight/delight-nashorn-sandbox/commit/074378b4ca8aefa3ee70a18ef824455cb0a1f78d
github.com/javadelight/delight-nashorn-sandbox/issues/134
github.com/javadelight/delight-nashorn-sandbox/issues/135
github.com/javadelight/delight-nashorn-sandbox/pull/136