solve the problem of maintaining gems by hand. Increased usage made it difficult for volunteers to keep up with the growing number of Bundler & RubyGems.org users 5 — State of the RubyGems 2023 @ RubyConf
→ the SRE team, configuring and operating Fastly, AWS, Kubernetes, Postgres, OpenSearch, Redis, and more → the RubyGems.org team, maintaining the Rails application → the RubyGems team, maintaining the gem command → the Bundler team, maintaining the bundle command → the Ruby Toolbox team → the RubyAPI team → the Gemstash team 12 — State of the RubyGems 2023 @ RubyConf
a 25x increase in traffic, from ~10k rps to ~225k rps → Migrating from unicorn to puma (and renaming the k8s deployment) lost our horizontal pod autoscaler rule, causing the single pod to get overwhelmed → Early May pager storm 20 — State of the RubyGems 2023 @ RubyConf
→ Abandoned (sometimes empty) projects → Limited supply of names for gems → Higher security means more customer service →Requiring MFA means many more manual MFA resets by staff → Ownership disputes →Multiple people claim ownership →Companies claim trademark or IP 24 — State of the RubyGems 2023 @ RubyConf
versions of Bundler & RubyGems → Significant performance improvements for large application bundles → ruby(file: ".ruby-version") support for Gemfiles to re-use version files → fully allowlist-based safe loading for Marshal files, completely removing a repeated source of security issues 31 — State of the RubyGems 2023 @ RubyConf
migration to infrastructure as code → Multiple environments for testing changes → Web-based admin tools to reduce SSH & console access → Backend support for gem contents and OIDC auth → User-facing features based on these improvements coming soon 32 — State of the RubyGems 2023 @ RubyConf
verification → Full passkey support → TUF (the update framework) → SLSA-compliant builders → Sigstore support 54 — State of the RubyGems 2023 @ RubyConf
Browsable gem contents → Downloads over time → Hosted & searchable documentation → In-browser gem playgrounds 55 — State of the RubyGems 2023 @ RubyConf