https://github.com/kddeisz/gemfilelint is a utility that you can run against your Gemfile that will check all of your listed sources against known trusted sources and all of your listed gems against the most commonly downloaded gems according to rubygems. This can give you some peace of mind that if you make a spelling mistake you won’t accidentally open yourself up to RCE without knowing it.