Check Ruby projects for dependencies with known security problems
Lucas Dohmen, Willem van Kerkhof
Apache-2.0