VDB
KO

MAL-2025-46965

Malicious code in windbeam_api (RubyGems)

Details

--- _-= Per source details. Do not edit below this line.=-_

## Source: ghsa-malware (7c2e7f7d3d77a3226e97fa6216c26eda197a67f930c6d779c5ad11c5efc6a678) ## Source: ossf-package-analysis (16574989481a1a11873893acf42320ce2a4c5a6dd5886ef8d205cb7f965ca9ca) The OpenSSF Package Analysis project identified 'windbeam_api' @ 0.15.0 (rubygems) as malicious.

It is considered malicious because:

- The package executes one or more commands associated with malicious behavior.

---

Credit: [OpenSSF](https://github.com/ossf/malicious-packages) ([source](https://github.com/ossf/malicious-packages/blob/9fbb5fba02ba2f02395d3d2d43c31b2c482b7a9d/osv/malicious/rubygems/windbeam_api/MAL-2025-46965.json))

## Source: ossf-package-analysis (16574989481a1a11873893acf42320ce2a4c5a6dd5886ef8d205cb7f965ca9ca) The OpenSSF Package Analysis project identified 'windbeam_api' @ 0.15.0 (rubygems) as malicious.

It is considered malicious because:

- The package executes one or more commands associated with malicious behavior.

Are you affected?

Enter the version of the package you're using.

Affected packages

RubyGems / windbeam_api

No fixed version published yet for windbeam_api (bundler). Pin to a known-safe version or switch to an alternative.

References