🚀🚀🚀 Malicious packages in @rubygems? Not anymore! I've built and OSS supply chain security platform for Ruby: diffend.io - it acts as a free and public proxy for RubyGems blocking any malicious gems from even being downloaded! MUCH more to come!
I'm going to write an interesting blog post about how the order of loading files in a gem can break completely unrelated code somewhere else. Will try doing that over the weekend.
With Fiber Schedulers I can totally see a Karafka use-case with virtual partitions running for heavy IO with a single thread but processing in parallel. Exciting times to be a framework creator for #Ruby :)
Interested in hanging your bundler for an infinite amount of time? Try bundling this gemfile (the gem is safe and old ;) ):
source 'rubygems.org'
gem 'staple', '0.4.5'
It will keep resolving forever... #ruby