Security News
Follow-up and Clarification on Recent Malicious Ruby Gems Campaign
A clarification on our recent research investigating 60 malicious Ruby gems.
By Sarah Gooding - Aug 22, 2025
ransack
Introduction
Ransack will help you easily add searching to your Rails application, without any additional dependencies.
There are advanced searching solutions around, like ElasticSearch or Algolia. Ransack will do the job for many Rails websites, without the need to run additional infrastructure or work in a different language. With Ransack you do it all with standard Ruby and ERB.
Ready to move beyond the basics? Use advanced features like i18n and extensive configuration options.
Ransack is supported for Rails 7.2, 7.1, 7.0, 6.1 on Ruby 3.1 and later.
Installation
To install ransack and add it to your Gemfile, run
gem 'ransack'
Bleeding edge
If you would like to use the latest updates not yet published to RubyGems, use the main branch:
gem 'ransack', :github => 'activerecord-hackery/ransack', :branch => 'main'
Documentation
There is extensive documentation on Ransack, which is a Docusaurus project and run as a GitHub Pages site.
Issues tracker
- Before filing an issue, please read the Contributing Guide.
- File an issue if a bug is caused by Ransack, is new (has not already been reported), and can be reproduced from the information you provide.
- Please consider adding a branch with a failing spec describing the problem.
- Contributions are welcome. :smiley:
- Please do not use the issue tracker for personal support requests. Stack Overflow or GitHub Discussions is a better place for that where a wider community can help you!
Contributions
To support the project:
- Consider supporting us via Open Collective
- Use Ransack in your apps, and let us know if you encounter anything that's broken or missing. A failing spec to demonstrate the issue is awesome. A pull request with passing tests is even better!
- Before filing an issue or pull request, be sure to read and follow the Contributing Guide.
- Please use Stack Overflow or GitHub Discussions for questions or discussion not directly related to bug reports, pull requests, or documentation improvements.
- Spread the word on social media if Ransack's been useful to you. The more people who are using the project, the quicker we can find and fix bugs!
Contributors
Ransack was created by Ernie Miller and is developed and maintained by:
- Ransack's logo is designed by Anıl Kılıç.
Alumni Maintainers
This project exists thanks to all the people who contribute. 
Backers
Thank you to all our backers! 🙏 [Become a backer]
Sponsors
Support this project by becoming a sponsor. Your logo will show up here with a link to your website. [Become a sponsor]
FAQs
Unknown package
We found that ransack demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 5 open source maintainers collaborating on the project.
Package last updated on 11 Aug 2024
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Related posts
Security News
ESLint Adds Support for Parallel Linting, Closing 10-Year-Old Feature Request
ESLint now supports parallel linting with a new --concurrency flag, delivering major speed gains and closing a 10-year-old feature request.
By Sarah Gooding - Aug 22, 2025
Research
/Security News
Malicious Go Module Disguised as SSH Brute Forcer Exfiltrates Credentials via Telegram
A malicious Go module posing as an SSH brute forcer exfiltrates stolen credentials to a Telegram bot controlled by a Russian-speaking threat actor.
By Kirill Boychenko - Aug 21, 2025