zlacker

[return to "Shopify, pulling strings at Ruby Central, forces Bundler and RubyGems takeover"]
1. 827a+zA[view] [source] 2025-09-23 18:03:26
>>bradge+(OP)
> To strengthen supply chain security, we are taking important steps to ensure that administrative access to the RubyGems.org, RubyGems, and Bundler is securely managed.

Ridiculously bold to say when what happened here was literally a malicious supply chain attack.

◧◩
2. jonny_+WD[view] [source] 2025-09-23 18:21:32
>>827a+zA
Malicious how? Was malicious code inserted? Serious question.
◧◩◪
3. 827a+eF[view] [source] 2025-09-23 18:27:20
>>jonny_+WD
Status quo administrators had their access revoked without their consent and without cause. That's malice.
◧◩◪◨
4. rurban+6Y[view] [source] 2025-09-23 20:07:40
>>827a+eF
It's more like a hostile takeover
[go to top]