[$] A backdoor in a popular Ruby gem

Finding ways to put backdoors into various programming-language package
repositories (e.g. npm, PyPI, and now RubyGems) seems like it is becoming a new Olympic
sport or something. Every time you turn around, there is a
report of a new backdoor. It is now apparently Ruby's turn, with a
new report of a
remote-execution backdoor being inserted, briefly, into a popular gem that
is installed by some sites using the Ruby on
Rails web-application framework.