|
|
|
|
|
|
by marcus_holmes
2499 days ago
|
|
|
If a gem maintainer is re-using a known-compromised password they have absolutely zero right to be annoyed at the "inconvenience" of having to reset their password to something that isn't compromised. RubyGems has a responsibility to its users and community here. It (like npm) needs to take this stuff seriously. |
|
|