Screeps: How a game about programming exposed thousands of players to remote code execution
Summary
The article investigates a remote code execution vulnerability in Screeps caused by unsafe console logging and HTML injection, examines the developers' response and open-source alternatives, and discusses implications for security in programmable automation platforms.