On November 5, 2021 (a Friday of course), we've deployed innocent-looking gem updates. Minor versions of Ruby on Rails, Ruby Sentry client, Ruby Slack client, http libraries, Puma, Devise, OmniAuth Ruby client, Mongoid, and a few test gems. However, something went very wrong. We saw odd Stripe errors on Airbrake. Then, on our Stripe account, we saw this: In less than 1h, we've created 474 new subs
![How a routine gem update ended up creating $73k worth of subscriptions](https://cdn-ak-scissors.b.st-hatena.com/image/square/03a8a8bfee178535314d2ad50960ff4e96668feb/height=288;version=1;width=512/https%3A%2F%2Fserpapi.com%2Fblog%2Fcontent%2Fimages%2Fsize%2Fw1200%2F2022%2F01%2Fimage-5.png)