July 2022 Monthly Update

Hello! Welcome to the monthly update. During July, our work was supported by Shopify, Zendesk and many others.

ruby together news

In July, Ruby Together was supported by 32 different companies, including Ruby member Zendesk and Ruby Shield sponsor Shopify. 2 companies joined as new members.

On top of those companies, 2 new developers signed up as members. In total, we were supported by 126 developer members. Thanks to all of our members for making everything that we do possible. <3

RubyGems News

This month in RubyGems, we released new versions of RubyGems 3.3.18, 3.3.19 and Bundler 2.3.18, 2.3.19.

The following is a non-exhaustive list of other improvements included in the above releases (see the changelog for further information):

• updated the CLI to display MFA warnings on gem signin, to support work done on the RubyGems.org side - #5590.
• added the long-requested feature of allowing to gem install from specific groups only - #5579.
• extended the gem DSL with a force_ruby_platform option - #4049.
• fixed an issue with Bundler on Windows that allows the new x64-mingw-ucrt, the default on Ruby 3.1, to work seamlessly with the existing platforms DSL - #5655.
• improved performance of  bundler/setup - #5546, #5695.
• fixed several TruffleRuby issues - #5711, #5694, #5746.
• fixed a confusing permission error when copying compact index cache  - #5709.
• fixed an issue with Bundler printing the bug report template so that it gives a better error rather than suggesting a bug - #5726.
• improved gem not found error messages to include the expected source - #5729.
• merged a PR to fix gem update --system errors in some edge cases - #5728, #5737.

In July, RubyGems gained 150 new commits, contributed by 15 authors. There were 8,654 additions and 7,904 deletions across 410 files.

RubyGems.org News

Our big news this month is our plan to enforce multi-factor authentication for gems with more than 180 million downloads. We’ll continue to monitor as enforcement is rolled out, and make adjustments as needed.

In July, RubyGems.org saw several bug fixes and updates, some of which include the following:

• added an mfa_required function to check when a user needs to enable MFA due to one of the packages they own passing the MFA-required downloads threshold - #3135.
• merged a PR to reorganize locales by running bill/fill-locales - #3134.
• updated the TargetRubyVersion for Rubocop - #3139.
• added an update to skip sending email when a user has no email address present - #3150.
• fixed webhooks for users with multiple API keys - #3151.

This month, RubyGems.org gained 74 new commits, contributed by 13 authors. There were 1,015 additions and 263 deletions across 63 files.

As always, we continue to fix bugs, review and merge PRs and reply to support tickets.

total spent

In June we completed 39 hours of development work @$150/hour, and spent $5,860.50.

Until next time,
Irene, André, and the Ruby Together team

August 18, 2022