We were still learning about the security issue for rubygems when yet another vulnerability was discovered: CVE-2022-29218
This time Maciel also got another excellent piece of Impact Analysis:
But big Mensfeld didn't stop there, he actually created a tool (a gem in the whole extent of the word) to help you figure out if your bundle was compromised:
Please boost this toot for visibility.
A Mastodon instance for Rubyists & friends