zlacker

[parent] [thread] 2 comments
1. richar+(OP)[view] [source] 2025-09-23 16:52:06
I get that when drama unfolds like this there is going to be a shake out. It's always valuable, to some degree, to know what happened and why.

I just wish we could get to the part where the community can know and trust that our supply chain is safe and can be trusted.

replies(2): >>evolve+WE >>tbrown+km1
2. evolve+WE[view] [source] 2025-09-23 20:13:46
>>richar+(OP)
Part of the long term supply chain question is that you trust who’s in charge. This corporate takeover of Ruby central and now Ruby gems is deeply concerning for the state of the Ruby ecosystem.

Meanwhile the Ruby core team is in Japan, would you like them to report in for work orders to shopify too?

3. tbrown+km1[view] [source] 2025-09-24 00:53:03
>>richar+(OP)
> know and trust that our supply chain is safe and can be trusted.

I'd actually think stuff like that recent npm worm would be a bigger danger than whatever this mess is?

[go to top]