Sign up to save your podcasts
Or
Share Governance, Security Flaws, and AI Tools
Share to email
Share to Facebook
Share to X
Share to email
Share to Facebook
Share to X
Or
Governance, Security Flaws, and AI Tools
This episode of Remote Ruby opens with stories of exhaustion from a sleepless week. Then, Chris, Andrew, and David spend most of the episode unpacking two big themes: trust and governance in open source, and the growing mess of software security and AI-assisted development. They dig into the new Ruby Central write-up on the RubyGems/Bundler fracture and question whether it actually clarifies the path forward, then pivot into the Axios npm compromise, supply-chain risk, and how fragile modern package ecosystems can feel. Then, they go into a wide-ranging discussion on AI coding, bloated production apps, image-performance headaches, CSS/rendering quirks, and why teams may need to rethink APIs, CLIs, MCPs, and markdown-first docs as agent traffic keeps growing. Hit download now to hear more!
Links
- Judoscale- Remote Ruby listener gift
- RubyGems Fracture Incident Report
- Bundler has moved to the RubyGems organization (GitHub)
- Mitigating the Axios npm supply chain compromise (Microsoft Security blog)
- Garry Tan X
- The Missing GitHub Status Page
Honeybadger is an application health monitoring tool built by developers for developers.
Judoscale
Make your deployments bulletproof with autoscaling that just works.
Disclaimer: This post contains affiliate links. If you make a purchase, I may receive a commission at no extra cost to you.
- Chris Oliver X/Twitter
- Andrew Mason X/Twitter
- Jason Charnes X/Twitter
View all episodes
By Chris Oliver, Andrew Mason, David Hill
4.8
3434 ratings
This episode of Remote Ruby opens with stories of exhaustion from a sleepless week. Then, Chris, Andrew, and David spend most of the episode unpacking two big themes: trust and governance in open source, and the growing mess of software security and AI-assisted development. They dig into the new Ruby Central write-up on the RubyGems/Bundler fracture and question whether it actually clarifies the path forward, then pivot into the Axios npm compromise, supply-chain risk, and how fragile modern package ecosystems can feel. Then, they go into a wide-ranging discussion on AI coding, bloated production apps, image-performance headaches, CSS/rendering quirks, and why teams may need to rethink APIs, CLIs, MCPs, and markdown-first docs as agent traffic keeps growing. Hit download now to hear more!
Links
- Judoscale- Remote Ruby listener gift
- RubyGems Fracture Incident Report
- Bundler has moved to the RubyGems organization (GitHub)
- Mitigating the Axios npm supply chain compromise (Microsoft Security blog)
- Garry Tan X
- The Missing GitHub Status Page
Honeybadger is an application health monitoring tool built by developers for developers.
Judoscale
Make your deployments bulletproof with autoscaling that just works.
Disclaimer: This post contains affiliate links. If you make a purchase, I may receive a commission at no extra cost to you.
- Chris Oliver X/Twitter
- Andrew Mason X/Twitter
- Jason Charnes X/Twitter
More shows like Remote Ruby
View all
Planet Money
30,609 Listeners
The Bike Shed
121 Listeners
The Infinite Monkey Cage
1,952 Listeners
Pivot
9,724 Listeners
Software Engineering Daily
626 Listeners
Syntax - Tasty Web Development Treats
985 Listeners
REWORK
212 Listeners
Practical AI
212 Listeners
Maintainable
32 Listeners
The Prof G Pod with Scott Galloway
5,610 Listeners
All-In with Chamath, Jason, Sacks & Friedberg
10,254 Listeners
Breaking Change
12 Listeners
Prof G Markets
1,480 Listeners
IndieRails
6 Listeners
On Rails
9 Listeners