drbrain changed the topic of #rubygems to: RubyGems 2.1.8: http://bit.ly/rubygems-2-1-8 CVE-2013-4363: http://bit.ly/CVE-2013-4363 - Latest status: http://twitter.com/rubygems_status and http://status.rubygems.org
huoxito has quit [Ping timeout: 256 seconds]
antichatter has quit [Quit: Colloquy for iPhone - http://colloquy.mobi]
huoxito has joined #rubygems
wizonesolutions has quit [Ping timeout: 265 seconds]
wizonesolutions has joined #rubygems
ereslibre has joined #rubygems
tjbiddle has joined #rubygems
ereslibre has quit [Ping timeout: 245 seconds]
TheComrade has joined #rubygems
ereslibre has joined #rubygems
ereslibre has quit [Changing host]
ereslibre has joined #rubygems
ereslibre has quit [Ping timeout: 245 seconds]
huoxito has quit [Remote host closed the connection]
stevenharman has quit [Quit: Leaving...]
huoxito has joined #rubygems
tjbiddle has quit [Quit: tjbiddle]
kseifried has quit [Quit: Leaving]
arthurnn has joined #rubygems
DanKnox_away is now known as DanKnox
ereslibre has joined #rubygems
<shaiguitar> qrush: ping, have a question about rubygem's VersionHistory records, thinking you may be able to help me out
indirect- has quit [Quit: Oh, bother.]
<shaiguitar> qrush: essentially related to https://gist.github.com/shaiguitar/d2af997b7f58e24fd305
<shaiguitar> I think some VersionHistory records wern't passed along (or bad date, or something?) when there was a redis-sql migration
huoxito has quit [Remote host closed the connection]
<shaiguitar> https://github.com/rubygems/rubygems.org/blob/master/app/models/download.rb#L88-L89 checks redis, and then VersionHistory if redis doesn't exist
huoxito has joined #rubygems
huoxito has quit [Read error: Connection reset by peer]
huoxito has joined #rubygems
<shaiguitar> the data we're getting back from rubygems.org's api is incorrect though, I think related to VersionHistory? that's my only guess at this point. Unfortunately it relies on production data, so I was wondering if I could have a dump of the database maybe if you don't have time to look at it?
ereslibre has quit [Ping timeout: 245 seconds]
<shaiguitar> evan: as well ^ in case you are around?
indirect_ has joined #rubygems
graphex_ has joined #rubygems
graphex has quit [Read error: Connection reset by peer]
DanKnox is now known as DanKnox_away
arthurnn has quit [Remote host closed the connection]
arthurnn has joined #rubygems
arthurnn_ has joined #rubygems
arthurnn has quit [Read error: Connection reset by peer]
huoxito has quit [Remote host closed the connection]
huoxito has joined #rubygems
stepheneb has joined #rubygems
huoxito has quit [Ping timeout: 272 seconds]
antichatter has joined #rubygems
stepheneb has quit [Ping timeout: 240 seconds]
antichatter has quit [Client Quit]
ereslibre has joined #rubygems
ereslibre has joined #rubygems
ereslibre has quit [Changing host]
DanKnox_away is now known as DanKnox
DanKnox is now known as DanKnox_away
ereslibre has quit [Ping timeout: 245 seconds]
zachrab has quit [Remote host closed the connection]
zachrab has joined #rubygems
zachrab has quit [Ping timeout: 272 seconds]
TheComrade has quit [Quit: TheComrade]
arthurnn_ has quit [Remote host closed the connection]
arthurnn has joined #rubygems
Elhu has joined #rubygems
arthurnn has quit [Ping timeout: 272 seconds]
havenwood has quit [Remote host closed the connection]
Elhu has quit [Quit: Computer has gone to sleep.]
ereslibre has joined #rubygems
ereslibre has quit [Changing host]
ereslibre has joined #rubygems
ereslibre has quit [Ping timeout: 264 seconds]
hakunin_ has quit [Remote host closed the connection]
hakunin has joined #rubygems
workmad3 has joined #rubygems
arthurnn has joined #rubygems
arthurnn has quit [Ping timeout: 265 seconds]
Elhu has joined #rubygems
workmad3 has quit [Read error: Operation timed out]
workmad3 has joined #rubygems
ereslibre has joined #rubygems
ereslibre has quit [Changing host]
ereslibre has joined #rubygems
stepheneb has joined #rubygems
mattwynne has joined #rubygems
ereslibre has quit [Ping timeout: 264 seconds]
mattwynne has quit [Read error: Connection reset by peer]
mattwynne has joined #rubygems
mattwynne has quit [Read error: Connection reset by peer]
mattwynn_ has joined #rubygems
mattwynn_ has quit [Read error: Connection reset by peer]
mattwynne has joined #rubygems
mattwynne has quit [Read error: Connection reset by peer]
mattwynne has joined #rubygems
mattwynne has quit [Read error: Connection reset by peer]
mattwynne has joined #rubygems
ereslibre has joined #rubygems
mattwynne has quit [Remote host closed the connection]
ereslibre has quit [Remote host closed the connection]
tcopeland has quit [Quit: Leaving.]
khaase has joined #rubygems
Elhu has quit [Quit: Computer has gone to sleep.]
huoxito has joined #rubygems
workmad3 has quit [Ping timeout: 260 seconds]
ereslibre has joined #rubygems
ereslibre has quit [Changing host]
ereslibre has joined #rubygems
Elhu has joined #rubygems
huoxito has quit [Ping timeout: 245 seconds]
poisonarms has quit [Ping timeout: 265 seconds]
dvu has quit [Ping timeout: 264 seconds]
huoxito has joined #rubygems
jcaudle has joined #rubygems
karlfreeman has quit [Ping timeout: 246 seconds]
yeban has quit [Ping timeout: 246 seconds]
adambeynon has joined #rubygems
almostwhitehat has joined #rubygems
stepheneb has quit [Quit: stepheneb]
marpaia has joined #rubygems
ZachBeta has joined #rubygems
ZachBeta has quit [Client Quit]
ZachBeta has joined #rubygems
karlfreeman has joined #rubygems
Kennsen has joined #rubygems
ZachBeta has quit [Quit: Computer has gone to sleep.]
DanKnox_away is now known as DanKnox
ZachBeta has joined #rubygems
stepheneb has joined #rubygems
zachrab has joined #rubygems
workmad3 has joined #rubygems
cowboyd has joined #rubygems
priyam__ has joined #rubygems
DanKnox is now known as DanKnox_away
huoxito has quit [Remote host closed the connection]
huoxito has joined #rubygems
mando has joined #rubygems
huoxito has quit [Ping timeout: 268 seconds]
DanKnox_away is now known as DanKnox
havenwood has joined #rubygems
arthurnn has joined #rubygems
Kennsen has quit [Remote host closed the connection]
huoxito has joined #rubygems
stepheneb has quit [Quit: stepheneb]
huoxito has quit [Remote host closed the connection]
huoxito has joined #rubygems
huoxito has quit [Ping timeout: 264 seconds]
TheComrade has joined #rubygems
arthurnn has quit [Remote host closed the connection]
arthurnn has joined #rubygems
huoxito has joined #rubygems
arthurnn has quit [Ping timeout: 240 seconds]
Elhu has quit [Quit: Computer has gone to sleep.]
arthurnn has joined #rubygems
marpaia1 has joined #rubygems
marpaia has quit [Quit: WeeChat 0.4.1]
marpaia1 has quit [Client Quit]
marpaia has joined #rubygems
<shaiguitar> qrush: just pinged you on twitter. lemme know if you have a few moments to chat
<shaiguitar> basically what I posted above ^
<qrush> hi
<qrush> sorry, didn't see this before.
<qrush> i am actually not sure if dumping the DB has changed lately
<qrush> we have provided it before and i'd be more than willing to do it again
<shaiguitar> oh hey
<shaiguitar> yea, that'd be super helpful
<qrush> i've wanted for a while to provide public DB dumps sans-user table for analysis, etc
<qrush> per month, week, etc
<shaiguitar> qrush: basically, https://gist.github.com/shaiguitar/d2af997b7f58e24fd305 is the root prob lem
<shaiguitar> sec brb
<qrush> but...time, life, energy :)
<qrush> so looks like the API isnt using what the views ar
<qrush> *are
ZachBeta has quit [Quit: Computer has gone to sleep.]
<shaiguitar> sorry phone, one sec
<qrush> lunch
huoxito has quit [Remote host closed the connection]
huoxito has joined #rubygems
huoxito has quit [Read error: Connection reset by peer]
huoxito_ has joined #rubygems
<shaiguitar> sorry back now
<shaiguitar> qrush: k, ping when back. but yea, if you can provide a dump I can dig in. I'm pretty sure it's related to VerionsHistory records not being migrated properly from somewhere around sept 2012
<shaiguitar> but having the db will confirm
<shaiguitar> more info outlined in https://github.com/rubygems/rubygems.org/pull/606
<shaiguitar> (that method is the one that's "lying")
jonahR has joined #rubygems
jonahR has left #rubygems [#rubygems]
arthurnn has quit [Remote host closed the connection]
arthurnn has joined #rubygems
workmad3 has quit [Ping timeout: 240 seconds]
arthurnn has quit [Ping timeout: 272 seconds]
priyam__ is now known as priyam_
<qrush> ok cool. evan or samkottler can we do a quick dump of rubygems/versions/downloads/version_history?
tbuehlmann has joined #rubygems
adambeynon has quit [Quit: ["Textual IRC Client: www.textualapp.com"]]
ZachBeta has joined #rubygems
zachrab has quit [Remote host closed the connection]
zachrab has joined #rubygems
<shaiguitar> qrush: yea cool thx. just want to confirm, if it's a problem wth the migration in the past and it's a non issue going forward (and then, see if it's possible to re-import that data, or forget about it
<qrush> might be, not sure
<shaiguitar> or if it's a bug on my side (though I'm fairly sure it's not...)
<shaiguitar> qrush: basically https://github.com/rubygems/rubygems.org/blob/master/app/models/download.rb#L79 uses redis and fallbacks on database
<shaiguitar> the test method is testing redis
<shaiguitar> so I think the fallback is incorrect. just need the db prod data to confirm, and see if we can fix it somehow. if not, no worries, I'll just move on.
mando has quit [Remote host closed the connection]
mando has joined #rubygems
zachrab has quit [Ping timeout: 240 seconds]
<qrush> i actually dont have console/ssh access at all right now
<qrush> because my other keys died
<qrush> so i need that fixed too :)
mando has quit [Ping timeout: 265 seconds]
<shaiguitar> qrush: ok, can you let me know on twitter? you can DM me, same username. I have you followed.
<shaiguitar> I can look back here, but it'd be easier, don't check IRC all day for the most part, twitter is push :\
<qrush> i'll try. i dont check here frequently either
<shaiguitar> sweet. qrush twitter.com/shaiguitar
martinisoft has joined #rubygems
mando has joined #rubygems
marpaia has quit [Quit: WeeChat 0.4.1]
tbuehlmann has quit [Remote host closed the connection]
marpaia has joined #rubygems
Kennsen has joined #rubygems
marpaia has quit [Quit: WeeChat 0.4.1]
marpaia has joined #rubygems
indirect_ has quit [Quit: Oh, bother.]
jcaudle has quit [Quit: jcaudle]
indirect_ has joined #rubygems
DanKnox is now known as DanKnox_away
dvu has joined #rubygems
arthurnn has joined #rubygems
Kennsen has quit [Remote host closed the connection]
Kennsen has joined #rubygems
Kennsen has quit [Ping timeout: 240 seconds]
arthurnn has quit [Remote host closed the connection]
arthurnn has joined #rubygems
TheComrade has quit [Quit: TheComrade]
martinisoft has quit [Read error: Connection reset by peer]
havenwood has quit [Remote host closed the connection]
arthurnn has quit [Ping timeout: 272 seconds]
DanKnox_away is now known as DanKnox
martinisoft has joined #rubygems
<shaiguitar> qrush: I guess also, is it possible to have the redis dump as well? (rdb file?)
<qrush> i'm +1
<qrush> i just can't get in at all :)
<shaiguitar> just in case I find there are lacking VersionHistory records that I could potentially re-create from the redis data maybe?
<shaiguitar> yup, just figured I'd put in the request while I'm at it. ;)
<shaiguitar> tia!
<shaiguitar> qrush: basically want to get the data displayed on https://github.com/shaiguitar/gem_velocities work correctly
<shaiguitar> then add a service for folks to use, embeddable links or whatever. but now it's kinda pointless since the numbers are all wrong
<shaiguitar> (don't match totals).
tcopeland has joined #rubygems
zachrab_ has joined #rubygems
workmad3 has joined #rubygems
tcopeland has quit [Quit: Leaving.]
almostwhitehat has quit [Ping timeout: 272 seconds]
zachrab_ has quit [Read error: Connection reset by peer]
zachrab has joined #rubygems
<drbrain> qrush: ↑ any comments?
Elhu has joined #rubygems
almostwhitehat has joined #rubygems
<workmad3> aww, I was hoping for some examples of objectionable names
<mpapis> workmad3, rvm :D
* workmad3 averts his eyes
<workmad3> some warning before you swear, maybe? :P
Elhu has quit [Quit: Computer has gone to sleep.]
<mpapis> ah a new function for rvm => report a bug any time user swears at rvm ;)
<workmad3> heh that would be pretty awesome
<workmad3> 'they just swore... dump current program state and email it off'
<mpapis> maybe in 2.7
ZachBeta has quit [Ping timeout: 246 seconds]
<mpapis> now fighting with early stages of 2.0 => https://github.com/rvm/rvm2-shell
<workmad3> mpapis: 2.8 can then introduce the auto-severity based off degree of cursing involved :)
<mpapis> :D
cowboyd has quit [Remote host closed the connection]
ZachBeta has joined #rubygems
<drbrain> gem plugin idea: use metadata to store bug report locations, allow instant bug filing
<mpapis> not that bad!
<mpapis> assuming rvm2 is all gems this functionality could be extracted, just to need to connect to voice recognition ;)
huoxito_ has quit [Remote host closed the connection]
huoxito has joined #rubygems
<workmad3> drbrain: one of the few things I like about maven is that you can add metadata about what type of bug tracking is in use, and where, for the project (along with CI server, etc) and that can be pulled out into an autogenerated site :)
<drbrain> workmad3: you can do that with rubygems 2.0+‼
<workmad3> what? the autogenned site? or the bug tracking metadata?
<drbrain> the bug tracking metadata
<drbrain> writing the thing that produces the auto generated site can be an exercise left to the reader
<workmad3> :)
<workmad3> how about CI server and SCM info?
<drbrain> whatever you like
<workmad3> ah :)
<drbrain> hrm, that's wrong
huoxito has quit [Ping timeout: 245 seconds]
<drbrain> I'll need to fix the documentation
<drbrain> http://rubygems.rubyforge.org/rubygems-update/Gem/Specification.html has the correct restrictions on metadata
<mpapis> drbrain, any chance to get array/hash support for values? especially needed if I want to put there list of system dependencies, 1024B String will not be enough
<drbrain> mpapis: there's #requirements
<mpapis> ah true I see it now
<mpapis> I will be touching those as soon I get some working code for rvm2, need to write integration plugin to install those requirements
<drbrain> mpapis: some gems use "requirements" for other things, so you might want to add something to metadata to tag the gem
<workmad3> hmm... did anything ever come of the rubygems-trust fork?
<mpapis> drbrain, as soon I will get something working I will get back to you to discuss it further, we should not waste any more time ;)
<drbrain> workmad3: Tony Arcieri was going to work on it for Square Hack Week, I guess in November
<workmad3> cool
<workmad3> any idea what sort of approach?
<drbrain> let me link you to the email…
<drbrain> http://www.updateframework.com/projects/project is what he was going to use
<drbrain> which, in my uninformed opinion, seems like the best way to go
<workmad3> heh :) my opinion isn't exactly informed either
<drbrain> they've got a nice paper, and people who have informed opinions wrote/like it
<workmad3> nice to know that an approach is being worked on though
* workmad3 bookmarks TUF for later reading
jonahR has joined #rubygems
martinisoft has quit [Quit: martinisoft]
workmad3 has quit [Ping timeout: 272 seconds]
almostwhitehat has quit []
dvu has quit [Remote host closed the connection]
tcopeland has joined #rubygems
tjbiddle has joined #rubygems
drbrain changed the topic of #rubygems to: RubyGems 2.1.9: http://bit.ly/rubygems-2-1-9 CVE-2013-4363: http://bit.ly/CVE-2013-4363 - Latest status: http://twitter.com/rubygems_status and http://status.rubygems.org
mando has quit [Remote host closed the connection]
mando has joined #rubygems
mando has quit [Ping timeout: 245 seconds]
mando has joined #rubygems
mando has quit [Remote host closed the connection]
<qrush> drbrain: if we publish that...there's a lot of gem names to work through
ZachBeta has quit [Quit: Computer has gone to sleep.]
<qrush> the "dicks" gem for one ಠ_ಠ
<drbrain> qrush: yes
<drbrain> I published it already, but AFAIK nobody has ever reported a gem name as inoffensive
<drbrain> oops offensive
<drbrain> I suspect it will happen some day, though, so I'd like us to show some policy somewhere
<drbrain> in related news, the "bitch" gem was renamed to "kvetch" due to my not-so-veiled threat: https://github.com/JacksonGariety/kvetch/issues/1#issuecomment-26248303
<qrush> 1.
<qrush> a person who complains a great deal.
<qrush> -_-
<drbrain> yeah
<qrush> this is going down a dark hole
<drbrain> it's not much better
jonahR has left #rubygems [#rubygems]
<drbrain> woo! 17 lines of dots for rubygems tests (1360 tests)
<imperator> i just checked cpan to see if i could find anything objectionable right off - i couldn't
TheComrade has joined #rubygems
<drbrain> I know people have complained before about gem names, but never to the point of asking us to remove something
<drbrain> … except for intellectual property reasons
<qrush> we should have some way of publicly reporting them
<qrush> "report abuse" etc
<qrush> and potentially a way to "lock" a name down
<qrush> so someone doesn't push another "dicks"
<drbrain> yeah
<drbrain> http://twitter.com/eLobatoss/status/389695771877965824 offered to write such a pull request
<drbrain> I suggested, if possible, it get plumbed into help.rubygems.org since we already have eyeballs looking there
<imperator> nothing there about offensive module names, though
<imperator> just looking around to see what the perl ecosystem has done
<drbrain> imperator: I mentioned the contents mostly due to intellectual property
<qrush> my time is swiftly approaching zero given my wife is due 11/8
<qrush> so i happily +1 any efforts :)
<drbrain> qrush: congrats! I'll miss you at RubyConf (assuming you're not attending)
<qrush> http://rubygems.org/gems/rape-me this needs to go down, *now*
<drbrain> now we can't spend more time planning for things we don't have time to do :/
<qrush> i dont have shell access, can someone meg script permadelete this?
<drbrain> I don't know how to permadelete things, and I have The Fear™ of a hands-off walkthrough
<imperator> only thing i could find that caused controversy (recently anyway) was a module called Time::Cubic
<drbrain> imperator: LOL
<imperator> because it was apparently littered with hate speech within the module
<qrush> drbrain: do you have console access?
<drbrain> I'm unsure
<qrush> er, ssh into the cluster?
<qrush> samkottler: evan ping
<imperator> seems like the perl community has been pretty good at self-policing as far as module names go
<qrush> lower amounts of new modules a day probably means it's easier to watch ;)
<imperator> ;)
<samkottler> hi
<imperator> well, they started in 95 or so i think
<qrush> samkottler: hey
<samkottler> what's up?
<qrush> i need some shell access to teh cluster please
<drbrain> qrush: trying it out
<drbrain> imperator: I imagine the hate speech was copied straight from the website
<samkottler> qrush: send me your pubkey
<imperator> attaching your name to an offensive module/gem is -usually- enough to deter people
<imperator> drbrain, website?
<samkottler> qrush: rolling it out now
<qrush> ty
<drbrain> imperator: http://www.timecube.com
<samkottler> qrush: should I remove your old key?
<qrush> samkottler: sure
<qrush> I don't have it :)
<drbrain> qrush: samkottler: I can't get meg to work properly: .meg/bin/meg: line 13: cd: /Users/drbrain/.meg/bin
<drbrain> O_O
<imperator> drbrain, oh, lol, never heard of it before
<qrush> drbrain: https://github.com/rubygems/meg#installation didn't work?
<drbrain> hrm, I guess "exec bash" didn't do what it should have
<drbrain> a new shell works
<qrush> you do need to add it to your profile or zshenv.
<qrush> sweet.
<drbrain> I have no permission: Permission denied (publickey).
<qrush> we never got a security page up. samkottler do you have time to work on that tonight?
<qrush> and let's get drbrain's ssh keys in there too
<imperator> holy shit that dude spoke at MIT even
<samkottler> qrush: I have the flu or something like that so not tonight, but tomorrow probably I can
<qrush> oof! Ok.
<qrush> Thanks for helping.
<samkottler> qrush: np!
<qrush> holy poop 57% (17146/29567), 252.09 MiB
<samkottler> qrush: try ssh qrush@rubygems.org
<qrush> Permission denied (publickey).
<qrush> er, ssh qrush@rubygems.org worked
<qrush> meg console does not L:)
<samkottler> qrush: do you have your sudo password still or does that need to get reset?
<qrush> Yep, that needs to be reset as well
<samkottler> qrush: can you send me the output of running your password through `openssl passwd -1`
<drbrain> samkottler: https://github.com/rubygems/rubygems-aws/pull/133 (hope I did it right)
<qrush> the badge link is still broke too :(