/usr/ is in ruby-rack-protection 1.5.2-1.
This file is owned by root:root, with mode 0o755.
..
/usr/share/
/usr/share/doc/
/usr/share/doc/ruby-rack-protection/
/usr/share/doc/ruby-rack-protection/README.md
/usr/share/doc/ruby-rack-protection/changelog.Debian.gz
/usr/share/doc/ruby-rack-protection/copyright
/usr/share/rubygems-integration/
/usr/share/rubygems-integration/all/
/usr/share/rubygems-integration/all/specifications/
/usr/share/rubygems-integration/all/specifications/rack-protection-1.5.2.gemspec
/usr/lib/
/usr/lib/ruby/
/usr/lib/ruby/vendor_ruby/
/usr/lib/ruby/vendor_ruby/rack/
/usr/lib/ruby/vendor_ruby/rack/protection.rb
/usr/lib/ruby/vendor_ruby/rack/protection/
/usr/lib/ruby/vendor_ruby/rack/protection/ip_spoofing.rb
/usr/lib/ruby/vendor_ruby/rack/protection/form_token.rb
/usr/lib/ruby/vendor_ruby/rack/protection/version.rb
/usr/lib/ruby/vendor_ruby/rack/protection/base.rb
/usr/lib/ruby/vendor_ruby/rack/protection/session_hijacking.rb
/usr/lib/ruby/vendor_ruby/rack/protection/json_csrf.rb
/usr/lib/ruby/vendor_ruby/rack/protection/xss_header.rb
/usr/lib/ruby/vendor_ruby/rack/protection/authenticity_token.rb
/usr/lib/ruby/vendor_ruby/rack/protection/escaped_params.rb
/usr/lib/ruby/vendor_ruby/rack/protection/path_traversal.rb
/usr/lib/ruby/vendor_ruby/rack/protection/http_origin.rb
/usr/lib/ruby/vendor_ruby/rack/protection/remote_token.rb
/usr/lib/ruby/vendor_ruby/rack/protection/remote_referrer.rb
/usr/lib/ruby/vendor_ruby/rack/protection/frame_options.rb
/usr/lib/ruby/vendor_ruby/rack-protection.rb