—
MAL-2026-9091
Malicious code in v4zzgbqvirfx (RubyGems)
Details
--- _-= Per source details. Do not edit below this line.=-_
## Source: ghsa-malware (3a6f6ae4319fc9aad791894748877f95d3a64c2082627fe41994e9b3b96e4d4b) ---
Credit: [OpenSSF](https://github.com/ossf/malicious-packages) ([source](https://github.com/ossf/malicious-packages/blob/9fbb5fba02ba2f02395d3d2d43c31b2c482b7a9d/osv/malicious/rubygems/v4zzgbqvirfx/MAL-2026-9091.json))
Are you affected?
Enter the version of the package you're using.
Affected packages
RubyGems / v4zzgbqvirfx
No fixed version published yet for v4zzgbqvirfx (bundler). Pin to a known-safe version or switch to an alternative.