RubyFlow : The Ruby Community Blog

Home   Submit   Sign Up   Log In   leaders   Twitter   RSS Feed  

Afraid of the big nasty gem?

A malicious gem could do pretty much everything on the environment that runs its code, from stealing critical data to taking control over the entire operating system. It may only take minutes for the malicious software to access poorly protected files or to exploit its way up, from running as restricted user to escalating to a privileged user.
Read More


Thank you for posting a great article about Gem Security. :)xiruki - June 03, 2013 15:29
The title made me think this would be an article about active_support ;)shanna - June 04, 2013 06:03
I really hope active_support is safe ;)gravis - June 04, 2013 17:35

Post a Comment

Comment abilities for non registered users are currently deactivated, pending time to add a proper CAPTCHA to solve the escalating spam problem. Sorry!