bundler-audit 0.9.1 was released which fixes a regression in the Bundler::Audit::Task rake task, which was introduced in 0.9.0. The regression caused the rake task to not exit with an error if bundler-audit detected vulnerabilities. If you use the rake task as part of your CI process, upgrading to 0.9.1 is highly recommended. See the ChangeLog for more details about this release.