Awesome Ruby Newsletter

Issue 113 - Postmortem for malicious node.js package publication -- can rubygems take note to try to avoid?