When does Ruby reach end-of-life?

The latest supported Ruby release is 4.0.5. After end-of-life a release no longer receives security patches.

Ruby ↗

Ruby · Web / Runtime

100/100 Healthy

Summary iPlain-English security verdict for Ruby, generated from its current health score, actively-exploited vulnerabilities, and latest supported version.

Ruby currently scores 100/100 — healthy. No tracked vulnerabilities are currently known to be exploited in the wild. The latest supported release is 4.0.5. It's on the latest patch with no significant known issues — keep it current.

Disclosure trend iNew CVEs published for Ruby each year (NVD). A higher bar means more disclosures that year — more scrutiny, not necessarily less safe.

'19

'20

'21

'22

'23

'24

'25

'26

Patch priority — what to act on iThe issues to fix first — actively exploited (CISA KEV) first, then by exploitation probability (EPSS), then severity. Each row's "→ fixed in" is the earliest version that patches it; "see advisory" means no fixed version is published.

Most urgent first — actively exploited, then likeliest to be exploited.

Versions & lifecycle iWhen each release line stops receiving security patches (end-of-life). After EOL there are no more fixes — plan upgrades before these dates.

How long each Ruby release line is supported — and when it sunsets.

4.0 latest 4.0.5 Supported until 2029-03-31

3.4 latest 3.4.9 Supported until 2028-03-31

3.3 latest 3.3.11 Supported until 2027-03-31

3.2 latest 3.2.11 End of life ended 2026-03-31

3.1 latest 3.1.7 End of life ended 2025-03-31

3.0 latest 3.0.7 End of life ended 2024-04-23

2.7 latest 2.7.8 End of life ended 2023-03-31

2.6 latest 2.6.10 End of life ended 2022-03-31

2.5 latest 2.5.9 End of life ended 2021-03-31

2.4 latest 2.4.10 End of life ended 2020-03-31

See all upcoming end-of-life dates →