RubyGems Navigation menu

Blog

2024

RubyGems.org Completes First Security Audit With Trail of Bits October 2024 RubyGems Updates Maintainer Role 3.5.23 Released September 2024 RubyGems Updates 3.5.22 Released New Design for RubyGems.org 3.5.21 Released August 2024 RubyGems Updates 3.5.20 Released 3.5.19 Released 3.5.18 Released July 2024 RubyGems Updates 3.5.17 Released June 2024 RubyGems Updates 3.5.16 Released 3.5.15 Released 3.5.14 Released May 2024 RubyGems Updates 3.5.13 Released 3.5.12 Released Bundler Auto-Install Just Got A Whole Lot Better 3.5.11 Released April 2024 RubyGems Updates 3.5.10 Released The Implications of Crypto Rewards on RubyGems.org March 2024 RubyGems Updates 3.5.9 Released 3.5.8 Released RubyGems is not vulnerable to the xz/liblzma backdoor 3.5.7 Released February 2024 RubyGems Updates Password Reset Vulnerabilities, Hacker One and Humility January 2024 RubyGems Updates 3.5.6 Released 3.5.5 Released December 2023 RubyGems Updates 3.5.4 Released

2023

3.5.3 Released 3.5.2 Released November 2023 RubyGems Updates 3.5.1 Released 3.5.0 Released Announcing Trusted Publishing on RubyGems.org October 2023 RubyGems Updates 3.3.27 Released 3.4.22 Released September 2023 RubyGems Updates 3.4.21 Released 3.4.20 Released August 2023 RubyGems Updates 3.4.19 Released July 2023 RubyGems Updates Level up your RubyGems Account Security with Security Devices 3.4.18 Released June 2023 RubyGems Updates 3.4.17 Released 3.4.16 Released 3.4.15 Released May 2023 RubyGems Updates 3.4.14 Released April 2023 RubyGems Updates 3.4.13 Released March 2023 RubyGems Updates Introducing Security Device support on RubyGems’ CLI 3.4.12 Released 3.4.11 Released Dependency API Deprecation Delayed 3.4.10 Released 3.4.9 Released February 2023 RubyGems Updates 3.4.8 Released RubyGems.org Dependency API Deprecation January 2023 RubyGems Updates 3.4.7 Released 3.2.34 Released 3.4.6 Released 3.4.5 Released December 2022 RubyGems Updates 3.4.4 Released 3.4.3 Released 3.4.2 Released

2022

3.4.1 Released 3.4.0 Released Introducing Hardware Security Token & Passkey support November 2022 RubyGems Updates 3.3.26 Released October 2022 RubyGems Updates 3.3.25 Released Septemeber 2022 RubyGems Updates 3.3.24 Released 3.3.23 Released August 2022 RubyGems Updates 3.3.22 Released 3.3.21 Released An Update to RubyGems MFA Levels Requiring MFA on popular gem maintainers 3.3.20 Released July 2022 RubyGems Updates 3.3.19 Released 3.3.18 Released June 2022 RubyGems Updates 3.3.17 Released 3.3.16 Released May 2022 RubyGems Updates Making popular Ruby packages more secure 3.3.15 Released 3.3.14 Released April 2022 RubyGems Updates 3.3.13 Released 3.3.12 Released 3.3.11 Released March 2022 RubyGems Updates 3.3.10 Released 3.3.9 Released February 2022 RubyGems Updates 3.3.8 Released 3.3.7 Released January 2022 RubyGems Updates 3.3.6 Released Rubygems Adoptions December 2021 RubyGems Updates 3.3.5 Released

2021

3.3.4 Released 3.3.3 Released 3.3.2 Released 3.3.1 Released 3.3.0 Released November 2021 RubyGems Updates 3.2.33 Released 3.2.32 Released October 2021 RubyGems Updates 3.2.31 Released 3.2.30 Released September 2021 RubyGems Updates 3.2.29 Released 3.2.28 Released August 2021 RubyGems Updates 3.2.27 Released 3.2.26 Released July 2021 RubyGems Updates 3.2.25 Released 3.2.24 Released June 2021 RubyGems Updates 3.2.23 Released 3.2.22 Released 3.2.21 Released 3.2.20 Released May 2021 RubyGems Updates 3.2.19 Released 3.2.18 Released April 2021 RubyGems Updates 3.2.17 Released 3.2.16 Released March 2021 RubyGems Updates 3.2.15 Released February 2021 RubyGems Updates 3.2.14 Released 3.2.13 Released 3.2.12 Released 3.2.11 Released 3.2.10 Released January 2021 RubyGems Updates 3.2.9 Released 3.2.8 Released 3.2.7 Released 3.1.6 Released 3.2.6 Released December 2020 RubyGems Updates 3.2.5 Released

2020

3.2.4 Released 3.2.3 Released 3.2.2 Released 3.2.1 Released 3.2.0 Released November 2020 RubyGems Updates 3.1.5 Released 3.0.9 Released 2.7.11 Released October 2020 RubyGems Updates September 2020 RubyGems Updates 3.2.0.rc.2 Released August 2020 RubyGems Updates July 2020 RubyGems Updates API key logging leak Removing SHA1 passwords from RubyGems.org June 2020 RubyGems Updates May 2020 RubyGems Updates 3.1.4 Released April 2020 RubyGems Updates 3.1.3 Released March 2020 RubyGems Updates Announcing RubyGems.org Stats 3.0.8 Released 3.0.7 Released

2019

3.1.2 Released 3.1.1 Released 3.1.0 Released RubyGems.org and Chef Gem Ownership 3.0.6 Released 3.0.5 Released 3.0.4 Released 2.7.10 Released January and February 2019 RubyGems Updates Removing the edit linkset form March 2019 Security Advisories 3.0.3 Released 2.7.9 Released December 2018 RubyGems Updates 3.0.2 Released

2018

3.0.1 Released 3.0.0 Released November 2018 RubyGems Updates October 2018 RubyGems Updates 2.7.8 Released September 2018 RubyGems Updates August 2018 RubyGems Updates July 2018 RubyGems Updates June 2018 RubyGems Updates May 2018 RubyGems Updates 2.7.7 Released March 2018 RubyGems Updates February 2018 RubyGems Updates TLS 1.0 and 1.1 Deprecation Notice 2.7.6 Released 2.7.5 Released

2017

2.7.4 Released 2.7.3 Released 2.7.2 Released 2.7.1 Released 2.7.0 Released Unsafe Object Deserialization Vulnerability in RubyGems 2.6.14 Released 2.6.13 Released 2.6.12 Released 2.6.11 Released Funding Rubygems.org 2.6.10 Released 2.6.9 Released

2016

2.6.8 Released 2.6.7 Released 2.6.6 Released 2.6.5 Released RubyGems.org 2016 Push Simplifying our stack 2.6.4 Released RubyGems.org gem replacement vulnerability and mitigation 2.6.3 Released 2.6.2 Released 2.6.1 Released 2.6.0 Released 2.5.2 Released

2015

2.5.1 Released 2.5.0 Released Post-Mortem of Connectivity Issues on August 10th 2.4.8 Released 2.2.5 Released CVE-2015-3900 Request hijacking vulnerability in RubyGems 2.4.6 and earlier 2.4.7 Released 2.2.4 Released Policy change about gem yank 2.4.6 Released Writing history, actually re-writing it.

2014

2.4.4 Released 2.4.3 Released 2.4.2 Released Post-Mortem of Today's Connectivity Issues 2.4.1 Released 2.4.0 Released Maintenance window on July 14th 2.3.0 Released RubyGems.org's response to CVE-2014-0160 (heartbleed) 2.2.2 Released 2.2.1 Released

2013

2.2.0 Released 2.2.0.rc.1 Released 1.8.29 Released 2.1.11 Released 2.0.14 Released 2.1.10 Released 2.0.13 Released RubyGems.org now supports Gittip 2.1.9 Released 2.0.12 Released 2.1.8 Released 2.1.7 Released 2.1.6 Released 2.0.11 Released 1.8.28 Released CVE-2013-4363 Algorithmic complexity vulnerability in RubyGems 2.1.4 and older 2.1.5 Released 2.0.10 Released 1.8.27 Released 1.8.23.2 Released Branch Maintenance Policies 2.1.4 Released 2.0.9 Released 2.1.3 Released 2.1.2 Released 2.1.1 Released CVE-2013-4287 Algorithmic complexity vulnerability in RubyGems 2.0.7 and older 2.1.0 Released 2.0.8 Released 1.8.26 Released 1.8.23.1 Released 2.1.0 Release Candidate 2 2.0.7 Released 2.1.0 Release Candidate 1 2.0.6 Released 2.0.5 Released 2.0.4 Released Post-Mortem of Today's Partial Outage New blog design 2.0.3 Released 2.0.2 Released 2.0.1 Released 2.0.0 Released 2.0.0.rc.2 Released Data Verification

2012

Rubygems 2.0.0.preview2 Rubyconf / Rubygems Hackfest 1.8.19 Released 1.8.16 Released

2011

Shaving a YAML Yak 1.8.10 Released 1.8.9 Released 1.8.8 Released 1.8.7 Released 1.8.6 Released 1.8.5 Released 1.8.4 Released 1.8.3 Released 1.8.2 Released 1.8.1 Released 1.8.0 Released 1.7.1 Released 1.7.0 Released 1.6.2 Released 1.6.1 Released 1.6.0 Released 1.5.3 Released 1.5.2 Released 1.5.1 Released 1.5.0 Released 1.4.2 Released

2010

1.4.1 Released 1.4.0 Released 1.3.7 Released 1.3.6 Released

2009

1.3.5 Released 1.3.3 Released 1.3.4 Released 1.3.2 Released

2008

1.3.1 Released 1.3.0 Released 1.2.0 Released 1.1.1 Released 1.1.0 Released

2007

1.0.1 Released 1.0.0 Released 0.9.5 Released 0.9.4 Released 0.9.3 Released 0.9.2 Released 0.9.1 Released

2006

0.9.0 Released

2005

0.8.11 Released 0.8.10 Released 0.8.8 Released 0.8.7 Released 0.8.6 Released 0.8.5 Released 0.8.4 Released

2004

0.8.3 Released 0.8.1 Released 0.8.0 Released 0.7.0 Released 0.6.1 Released 0.6.0 Released 0.5.0 Released 0.4.0 Released 0.3.0 Released 0.2.0 Released