greprules.io
Sign inSubmit rule
IndexedVerified

Ruby Security

Ruby SAST rules aggregated across verified providers.

Fetch pack

greprules pack fetch ruby-security --engine opengrep
curl https://api.greprules.io/api/packs/ruby-security.tar.gz -o ruby-security.tar.gz
Total rules
46
Downloads
0
Last updated
2026-06-05
Languages
ruby

Included rules

CVE-2024-29034: Ruby Unsanitized Content Typecve-2024-29034-ruby-unsanitized-content-typeCVE-2024-53260: Ruby Csv Formula Injectioncve-2024-53260-ruby-csv-formula-injectionCVE-2025-10858: Vulnerabilities Service Rb Cwe 000 Cve 2025 10858cve-2025-10858-vulnerabilities-service-rb-cwe-000-cve-2025-10858CVE-2025-2256: Gitlab Incomplete Scanner Groupingcve-2025-2256-gitlab-incomplete-scanner-groupingCVE-2025-59830: Ruby Unescaped Prefix Regex Strippingcve-2025-59830-ruby-unescaped-prefix-regex-strippingCVE-2025-61770: Ruby Unescaped Regex Prefix Strippingcve-2025-61770-ruby-unescaped-regex-prefix-strippingCVE-2025-61771: Ruby Unescaped Path Regex Interpolationcve-2025-61771-ruby-unescaped-path-regex-interpolationCVE-2025-61772: Unescaped Regex Path Prefixcve-2025-61772-unescaped-regex-path-prefixCVE-2025-61919: Ruby Unescaped Prefix Regex Interpolationcve-2025-61919-ruby-unescaped-prefix-regex-interpolationCVE-2025-61921: Ruby Redos Split Comma Whitespacecve-2025-61921-ruby-redos-split-comma-whitespaceCVE-2025-8014: Gitlab Missing Report Type Groupingcve-2025-8014-gitlab-missing-report-type-groupingCVE-2026-22245: Ruby Ipv4 Mapped Ipv6 Ssrf Bypasscve-2026-22245-ruby-ipv4-mapped-ipv6-ssrf-bypassCVE-2026-22860: Ruby Path Traversal Prefix Bypasscve-2026-22860-ruby-path-traversal-prefix-bypassCVE-2026-27933: Unsanitized Filename Hashcve-2026-27933-unsanitized-filename-hashCVE-2024-1451: Gitlab Inadequade Vuln Grouping Keycve-2024-1451-gitlab-inadequade-vuln-grouping-keyCVE-2024-2434: Gitlab Improper Scanner Groupingcve-2024-2434-gitlab-improper-scanner-groupingCVE-2024-35231: Unbounded User Input Times Loopcve-2024-35231-unbounded-user-input-times-loopCVE-2024-39906: Ruby Uri Open Cmd Injectioncve-2024-39906-ruby-uri-open-cmd-injectionCVE-2024-42381: Ruby Unsafe Ldd Executioncve-2024-42381-ruby-unsafe-ldd-executionCVE-2024-45409: Ruby Saml Xpath Signature Wrappingcve-2024-45409-ruby-saml-xpath-signature-wrappingCVE-2024-45594: Decidim Collaborative Texts Incorrect Permission Subjectcve-2024-45594-decidim-collaborative-texts-incorrect-permission-subjectCVE-2024-46986: Ruby Kernel Eval On Non Literalcve-2024-46986-ruby-kernel-eval-on-non-literalCVE-2024-8114: Gitlab Vulnerability Resolution Missing Report Typecve-2024-8114-gitlab-vulnerability-resolution-missing-report-typeCVE-2024-8970: Gitlab Improper Scanner Groupingcve-2024-8970-gitlab-improper-scanner-groupingCVE-2024-9693: Gitlab Vulnerability Resolution Missing Report Typecve-2024-9693-gitlab-vulnerability-resolution-missing-report-typeCVE-2025-0555: Gitlab Incomplete Vulnerability Resolution Keycve-2025-0555-gitlab-incomplete-vulnerability-resolution-keyCVE-2025-1908: Gitlab Missing Sbom Feature Flag Checkcve-2025-1908-gitlab-missing-sbom-feature-flag-checkCVE-2025-25291: Ruby Saml Rexml Xpath On Raw Document With Signed Element Idcve-2025-25291-ruby-saml-rexml-xpath-on-raw-document-with-signed-element-idCVE-2025-25292: Ruby Saml Rexml Xpath Signed Element Id Lookupcve-2025-25292-ruby-saml-rexml-xpath-signed-element-id-lookupCVE-2025-5121: Gitlab Missing Report Type Contextcve-2025-5121-gitlab-missing-report-type-contextCVE-2025-64501: Ruby Unescaped Html Attributecve-2025-64501-ruby-unescaped-html-attributeCVE-2025-6454: Overbroad Vulnerability Resolutioncve-2025-6454-overbroad-vulnerability-resolutionCVE-2025-68696: Ruby Uri Absolute Bypass Ssrfcve-2025-68696-ruby-uri-absolute-bypass-ssrfCVE-2025-7659: Improper Vulnerability Grouping By Scannercve-2025-7659-improper-vulnerability-grouping-by-scannerCVE-2026-0752: Insufficient Scanner Grouping Keycve-2026-0752-insufficient-scanner-grouping-keyCVE-2026-33174: Activestorage Unbounded Byte Ranges Doscve-2026-33174-activestorage-unbounded-byte-ranges-dosCVE-2026-34060: Ruby Gemfile Template Source Option Interpolationcve-2026-34060-ruby-gemfile-template-source-option-interpolationCVE-2026-34827: Ruby Unescaped Regex Interpolationcve-2026-34827-ruby-unescaped-regex-interpolationCVE-2026-34829: Ruby Unescaped Prefix Regex Interpolationcve-2026-34829-ruby-unescaped-prefix-regex-interpolationCVE-2026-39324: Rack Session Cookie Decoder Fallback Bypasses Encryptorscve-2026-39324-rack-session-cookie-decoder-fallback-bypasses-encryptorsCVE-2026-40069: Case Sensitive Constant Inclusion Bypasscve-2026-40069-case-sensitive-constant-inclusion-bypassCVE-2026-40869: Decidim Collaborative Texts Incorrect Authz Subjectcve-2026-40869-decidim-collaborative-texts-incorrect-authz-subjectCVE-2026-42205: Avo Incomplete Action Lookup Missing Custom Controlscve-2026-42205-avo-incomplete-action-lookup-missing-custom-controlsCVE-2026-4868: Gitlab Improper Scan Grouping By Scanner Onlycve-2026-4868-gitlab-improper-scan-grouping-by-scanner-onlyCVE-2026-5262: Gitlab Incomplete Scanner Groupingcve-2026-5262-gitlab-incomplete-scanner-groupingCVE-2026-5816: Gitlab Missing Composite Key Resolutioncve-2026-5816-gitlab-missing-composite-key-resolution