Is a wasm sandbox, or the browser not a sandbox, independent of the kernel?
Has one of them ever gone more than a month without a CVE?
Has one of them ever gone more than a month without a CVE?