Y
Hacker News
new
|
ask
|
show
|
jobs
by
revorad
3731 days ago
Thanks for this. So I ran this and found a bunch of unsafe gems. Do I report them to each gem author or to RubyGems security?
2 comments
dcu
3731 days ago
I think we should ask the gem owner to verify that everything is ok unless there's a new version. I updated the script to report if there is a new safe version available.
link
davidradcliffe
3731 days ago
In this context "unsafe" only means not 100% verified.
link