MAL-2025-46965
Malicious code in windbeam_api (RubyGems)
Details
--- _-= Per source details. Do not edit below this line.=-_
## Source: ghsa-malware (7c2e7f7d3d77a3226e97fa6216c26eda197a67f930c6d779c5ad11c5efc6a678) ## Source: ossf-package-analysis (16574989481a1a11873893acf42320ce2a4c5a6dd5886ef8d205cb7f965ca9ca) The OpenSSF Package Analysis project identified 'windbeam_api' @ 0.15.0 (rubygems) as malicious.
It is considered malicious because:
- The package executes one or more commands associated with malicious behavior.
---
Credit: [OpenSSF](https://github.com/ossf/malicious-packages) ([source](https://github.com/ossf/malicious-packages/blob/9fbb5fba02ba2f02395d3d2d43c31b2c482b7a9d/osv/malicious/rubygems/windbeam_api/MAL-2025-46965.json))
## Source: ossf-package-analysis (16574989481a1a11873893acf42320ce2a4c5a6dd5886ef8d205cb7f965ca9ca) The OpenSSF Package Analysis project identified 'windbeam_api' @ 0.15.0 (rubygems) as malicious.
It is considered malicious because:
- The package executes one or more commands associated with malicious behavior.
Are you affected?
Enter the version of the package you're using.
Affected packages
No fixed version published yet for windbeam_api (bundler). Pin to a known-safe version or switch to an alternative.