Pinned post
James Adam

Hey folks! Welcome to ruby.social! 🎉

I'm hoping this will become a good, friendly community for Ruby-folks to chat and discover new friends. But for that to happen, you need to sign up!

ruby.social -- all are welcome

0
James Adam boosted
postmodern

So what's the state of VSCode Intellisense, but for ruby gems? Can it automatically scan the RI index of all installed gems, or do projects have to generate their own API index file for VSCode?

0
James Adam boosted
alexanderadam

RT @euruko@twitter.com

We're now accepting applications for diversity/scholarship tickets! These are mostly virtual tickets but we do also have some in-person tickets available too. (1/3) 2022.euruko.org/tickets/

🐦🔗: twitter.com/euruko/status/1527

0
James Adam boosted
Bridgetown

It's only fitting that Bridgetown, which is open source, have a presence on ruby.social, which uses an open sourse platform written in Ruby (Mastodon :mastodon:). Rubies all the way down! :ruby: 😁

1+
James Adam boosted
Esparta :ruby:

We were still learning about the security issue for rubygems when yet another vulnerability was discovered: CVE-2022-29218

github.com/rubygems/rubygems.o

This time Maciel also got another excellent piece of Impact Analysis:

whitesourcesoftware.com/resour

But big Mensfeld didn't stop there, he actually created a tool (a gem in the whole extent of the word) to help you figure out if your bundle was compromised:

rubygems.org/gems/bundler-inte

Please boost this toot for visibility.

Show thread
0
James Adam boosted
jsrn

I often hear that the increased hosting costs associated with Ruby on Rails' larger than average footprint is more than offset by the increased dev productivity. It follows that Rails salaries being pretty high at the moment is offset by being able to maintain a smaller, more productive team.

Does anyone know of any case studies where someone's actually done the numbers on that?

It "feels right" to me, but I'd be interested to read other's experiences.

1
James Adam boosted
postmodern

Finally a writeup for the rubygems.org vuln, CVE-2022-29176. Such a simple mistake. I feel like the take away lessons are:

1. do not query/trust composite columns. Query individual columns.
2. do not trust arbitrary user Strings.

greg.molnar.io/blog/rubygems-c

1
James Adam boosted
Esparta :ruby:

P.S.A: Rails have released a new version fixing some issues added on the last security release.

rubyonrails.org/2022/5/9/Rails

The new stable versions have been pushed to these

- 7.0.3
- 6.1.6
- 6.0.5
- 5.2.8

These are some of the problems I note in my review:

ruby.social/@esparta/108211719

As usual, it's recommended to test thoughtfully on your staging environments before proceeding to deploy to production.

0
James Adam boosted
Bryan Ginger

In a code review i suggested extracting a well named function. They replied that it does not add any value to introduce a new function. They're right in the worst way, the computer doesn't care and they don't value the readers.

Do you have suggestions on how to respond to that?

1+
James Adam boosted
alexanderadam

RT @RubyInside@twitter.com

What Do You Think of 'Scoped Gems'? github.com/rubygems/rfcs/pull/

🐦🔗: twitter.com/RubyInside/status/

0
James Adam boosted
jsrn

How're you deploying your applications these days?

I've been chucking stuff on k8s for so long at my job I've lost touch with what everyone else is doing.

11 people · May 07, 2022, 08:06
1+
James Adam boosted
Josh Justice

How do I love Ruby? Let me Enumerable the ways.

0
James Adam

@robbyrussell I see you lurkin'

0
James Adam boosted
Passthejoe

Ruby developers on Linux, what's your preferred Ruby?

35 people · May 04, 2022, 22:40
1+
James Adam boosted
postmodern

Figured this would be a good place to soft launch this. I setup a Discord server specifically for the topic of Ruby & InfoSec. The goal of this server is to help answer questions, educate others, highlight other Ruby InfoSec projects, and counter anti-Ruby FUD with information. If you are interested in both Ruby & InfoSec, or just want to help, consider joining.
discord.gg/CcqkHnuyUK

1+
James Adam boosted
jsrn

Have you worked on anything cool lately?

I've been looking at a bunch of sites on neocities.org and it's making me want to make my own site much, much worse^H^H^H^H^Hcooler.

0
James Adam boosted
jordanbrock

Working on an idempotent db/seeds set up today for an old rails project. So much better than copying from production. Can’t believe I haven’t done it before.

1
James Adam boosted
jsrn

Is there ever a good time to define a custom `!` method on an object? Seems like setting up a footgun for people relying on the truthy/falsiness in a boolean expression.

class Thing; def !; true; end; end
my_thing = Thing.new

do_thing if my_thing# executes
do_thing if !my_thing # executes
do_thing unless my_thing # does not execute

1+
James Adam

If you're curious about what's happening elsewhere in the Fediverse, you can use either the "Explore" or "Federated" timelines:

#️⃣ - ruby.social/web/explore
🌐 - ruby.social/web/public

The "Federated" one is a bit of a firehose, you've been warned!

Show thread
0
James Adam

I regularly check our "Local" timeline to see what people on this instance are talking about:

ruby.social/web/public/local

This is a great way of finding people to follow - because you're on the same instance, chances are you have at least one shared interest :ruby:

Show thread
1
James Adam

Once again, welcome everyone who's joined this week so far, and special thanks to @halfbyte and @andy_twosticks for contributing on our Patreon (patreon.com/bePatron?u=1323763) 🎉 :ruby:

1+
Show older
Ruby.social

A Mastodon instance for Rubyists & friends

Trending now

Resources

Developers

What is Mastodon?

ruby.social

More…

v3.5.2 · Privacy policy