title: strong_password Ruby gem malicious version causing Remote Code Execution vulnerability
The `strong_password` gem on RubyGems.org was hijacked by a malicious actor. The
malicious actor published v0.0.7 containing malicious code that enables an attacker
to execute remote code in production.
Upgrade `strong_password` to v0.0.8 to ensure no malicious code execution is possible.
- "!= 0.0.7"
- ">= 0.0.8"