15 Oct '13, 1am

@hotgazpacho @avdi @alindeman I have barely seen any movement on it. @bascule's post here is promising though:

Hi there. I've talked to some people within Square and we're interested in creating a system for providing end-to-end integrity of RubyGems, as well as being able to revoke known compromised RubyGems while still surviving the compromise of system keys. While the specific design goals are up for debate, we'd probably try to do a prototype implementation of The Update Framework on top of the existing RubyGems X.509 certificate system (with perhaps a few modifications): http://www.updateframework.com/projects/project The main goals would be: - Try to leverage as much of the existing work on signed RubyGems as possible - Depend only on the Ruby standard library and try not to pull in any additional dependencies that RubyGems doesn't already depend on - Produce a system with minimum (i.e. "zero") cost and operational overhead which would still provide practical security guarant...

Full article: http://rubyforge.org/pipermail/rubygems-developers/2013-S...

Tweets

Quotes From Miley Cyrus The Movement #mtv #mileycyrus

Quotes From Miley Cyrus The Movement #mtv #mile...

budiey.com 14 Oct '13, 5pm

For the last four months, MTV has been granted unmatched access to Cyrus, who will unabashedly take viewers on her whirlwi...

Google Glasses star among building apps from Hack City SF

Google Glasses star among building apps from Ha...

greenbiz.com 11 Oct '13, 10pm

Adam Michael Daw came to HackCitySF 2013 because he likes to get his hands dirty writing code. “You get to meet other deve...