DEV Community

Phil Nash
Phil Nash

Posted on

Time to upgrade RubyGems

Watch out Rubyists! Today a number of security vulnerabilities were disclosed in RubyGems.

To keep yourself safe from gems that could delete arbitrary files on your machine, inject unsafe escape sequences into your terminal or run arbitrary code on your machine then it's time to upgrade RubyGems everywhere.

To upgrade, run:

gem update --system
Enter fullscreen mode Exit fullscreen mode

To read more about the vulnerabilities (and for more information if you are using versions of RubyGems older than 2.7 and can't upgrade), check the announcement post.

Stay safe out there!

Top comments (1)

Collapse
 
jsrn profile image
James

Uh oh! Thanks for the heads up!