Skip to content

DEV Community

Phil Nash

Posted on Mar 5, 2019

Time to upgrade RubyGems

#ruby #security

Watch out Rubyists! Today a number of security vulnerabilities were disclosed in RubyGems.

To keep yourself safe from gems that could delete arbitrary files on your machine, inject unsafe escape sequences into your terminal or run arbitrary code on your machine then it's time to upgrade RubyGems everywhere.

To upgrade, run:

gem update --system

To read more about the vulnerabilities (and for more information if you are using versions of RubyGems older than 2.7 and can't upgrade), check the announcement post.

Stay safe out there!

Top comments (1)

Subscribe

James • Mar 5 '19

Uh oh! Thanks for the heads up!

Read next

Rails and Ruby Deprecation Warnings: Why You Should Care and How to Fix Them

Michiharu Ono - Dec 2 '24

Understanding SSL/TLS: The Role of Encryption and Security Protocols in Internet Communication

AryaGG - Nov 12 '24

Why Disconnect in Stimulus Controller

Rails Designer - Dec 2 '24

Amazon GuardDuty Extended Threat Detection

Matt Lewis - Dec 2 '24

🥑 Developer relations engineer at DataStax | 🎤 speaker | 📝 writer | 🌭 sausage dog owner | he/him

Location

Melbourne, Australia
Education

Oxford University
Pronouns

he/him
Work

Developer relations engineer at DataStax
Joined

Jan 4, 2017

Better two factor authentication experiences with WebOTP

#javascript #web #security #ux

Alias your Mastodon username to your own domain with Jekyll

#ruby #jekyll #mastodon

How to use the Bitly API in Ruby

#ruby #bitly #api