andreafortuna.org
Backdoor found in Ruby strong_password library | So Long, and Thanks for All the Fish
The developer Tute Costa found a backdoor in the Ruby library during regular security audits. The code was used to check the password strength of user-chosen passwords when the library was being used