How dependency declaration syntax in Ruby gemspecs produces false positive vulnerability reports — and what to check before you panic. (Also check out my Ruby Gems Analyzer that covers the CVEs and Bundled/Default Gems in each Ruby version, as compiled directly from pristine installs of Ruby on clean images) If you run a Ruby application…