Skip to content

DEV Community

Phil Nash

Posted on Mar 5, 2019

Time to upgrade RubyGems

#ruby #security

Watch out Rubyists! Today a number of security vulnerabilities were disclosed in RubyGems.

To keep yourself safe from gems that could delete arbitrary files on your machine, inject unsafe escape sequences into your terminal or run arbitrary code on your machine then it's time to upgrade RubyGems everywhere.

To upgrade, run:

gem update --system

To read more about the vulnerabilities (and for more information if you are using versions of RubyGems older than 2.7 and can't upgrade), check the announcement post.

Stay safe out there!

Top comments (1)

Subscribe

James • Mar 5 '19

Uh oh! Thanks for the heads up!

Read next

Configuring IRB autocomplete

Josh Smith - Feb 20

Linux Special Permissions: A Comprehensive Guide with Examples

Murad Bayoun - Feb 9

Enum validation in Ruby on Rails 7.1

JT Dev - Feb 19

Shielding Your Data: Safeguarding AWS S3 via VPC Endpoints.

Kunal Shah - Feb 19

🥑 Developer relations engineer at DataStax | 🎤 speaker | 📝 writer | 🌭 sausage dog owner | he/him

Location

Melbourne, Australia
Pronouns

he/him
Work

Developer relations engineer at DataStax
Joined

Jan 4, 2017

Better two factor authentication experiences with WebOTP

#javascript #web #security #ux

Alias your Mastodon username to your own domain with Jekyll

#ruby #jekyll #mastodon

How to use the Bitly API in Ruby

#ruby #bitly #api