RubyGems Suspends New Signups After Major Malicious Attack

RubyGems, the standard package manager for the Ruby programming language, has temporarily suspended new account signups following a major malicious attack. The incident involved hundreds of malicious packages being uploaded to the platform. Maciej Mensfeld, senior product manager for software supply chain security at Mend.io, confirmed the attack and the temporary pause on signups in a post on X. The attack represents a significant supply chain security incident targeting the Ruby ecosystem.