Hosted on MSN

RubyGems maintainer quits after Ruby Central takes control of project

A decade-long RubyGems maintainer, Ellen Dash (also known as duckinator), has resigned from Ruby Central following what she described as a "hostile takeover" of the open source project.… RubyGems is ...
Hosted on MSN

Open source to closed doors: RubyGems control fight erupts

Ruby Central is said to have quietly snatched control of several flagship Ruby open source projects from their long-time maintainers without their consent, following pressure from Shopify, one of its ...
GIGAZINE

Investigation reveals Shopify manipulated Ruby Central to force takeover of Bundler and RubyGems

Ruby Central, a non-profit organization that manages a package management system for Ruby, has expelled the maintainer of a related system called RubyGems, sparking controversy over a 'takeover.' A ...
Yahoo Finance

JFrog Goes Wild and Introduces Artifactory Support for Rubygems

SAN FRANCISCO, CA--(Marketwired - Aug 21, 2013) - JFrog, the company that's revolutionizing the way software is built and distributed, announced today Artifactory, its binary repository management ...
Bleeping Computer

Malicious RubyGems packages used in cryptocurrency supply chain attack

New malicious RubyGems packages have been discovered that are being used in a supply chain attack to steal cryptocurrency from unsuspecting users. RubyGems is a package manager for the Ruby ...
Bleeping Computer

Check your gems: RubyGems fixes unauthorized package takeover bug

The RubyGems package repository has fixed a critical vulnerability that would allow anyone to unpublish ("yank") certain Ruby packages from the repository and republish their tainted or malicious ...
heise online

Who owns an open source project? – RubyGems threatens to split

Ruby Central, a non-profit organisation of the Ruby community, seized control of the GitHub repositories and some important gems of the RubyGems and Bundler package ecosystems without warning in ...