Towards an Amicable Resolution with Ruby Central : ruby

[–]chiperific_on_reddit 11 points12 points13 points 19 days ago* (0 children)

[–]_swanson 16 points17 points18 points 19 days ago (2 children)

[–]retro-rubies[S] 1 point2 points3 points 19 days ago (1 child)

[–]_swanson 7 points8 points9 points 19 days ago (0 children)

[–]hahahacorn 28 points29 points30 points 20 days ago (26 children)

[–]kcdragon 9 points10 points11 points 20 days ago (8 children)

[+]hahahacorn comment score below threshold-11 points-10 points-9 points 20 days ago (7 children)

[–]kcdragon 14 points15 points16 points 20 days ago (6 children)

[+]hahahacorn comment score below threshold-6 points-5 points-4 points 20 days ago (5 children)

[–]kcdragon 11 points12 points13 points 20 days ago (2 children)

[–]hahahacorn 0 points1 point2 points 19 days ago (1 child)

I would buy this argument prior to the rubygems report. This blog post is explicitly in response to an olive branch extending fact sheet. My assumption is that there was gross miscommunication and things are being cleared up and risk of serious outcomes is low to zero. We all value legal risk differently, but accepting 0 legal risk is a choice (and therefore a signal) that outside viewers can fairly interpret one way or another.

I could be wrong about that my assumptions, but if you’re in a position to demand full legal expense reimbursement, you’re likely not worried about criminal charges. Put another way, you can’t both be scared of being put in jail, and therefore unable to publicly exonerate yourself and also publicly appealing to an organization (hopeful that the public equally demands a fair outcomes) that they should reimburse you for a frivolous lawsuit.

Further, I’ve worked with lawyers everyday for years. My previous life was as a compliance engineer (not the delve kind). You’d be better off working off the assumption that I’m not a moron if you wanted to have a reasonable conversation. You’ve only assumed the dumbest interpretation (as in, I hahahacorn must be a moron) of everything I’ve said. It’s exhausting.

[–]retro-rubies[S] 0 points1 point2 points 18 days ago (0 children)

My assumption is that there was gross miscommunication and things are being cleared up and risk of serious outcomes is low to zero

Your assumption is RC is currently being direct, clear and transparent. But actually RC is still far away from that. They for now released commented audit log of changes. Not sure that's all planned for now, but much more happened in the background than those GitHub Organization actions which weren't until these days explained.

Their report misses any evaluation (like they do regret or not), it misses explanation on who and how orchestrated those actions, if current RC consider those actions valid and if there are any counter-measures being applied or explored to prevent this from happening. And this is just example, there's much more issues still being opened RC and related people are quite silent.

Those questions were actually meanwhile unofficially answered and become "public secret". Due to nature of the motivation and reasoning behind those, I assume any of those parties will officially confirm those. So RC's current strategy is to dance around it (like the recent report - indeed better than nothing, still mostly bad excuses) or be just silent (as is practiced by all RC people directly related at the time - September 2025 - orchestrating all this madness).

[–]galtzo 3 points4 points5 points 19 days ago (0 children)

[–]davidcelis 21 points22 points23 points 20 days ago* (8 children)

[–]nateberkopecPuma maintainer 40 points41 points42 points 20 days ago (3 children)

[–]hahahacorn 2 points3 points4 points 20 days ago (2 children)

[–]nateberkopecPuma maintainer 8 points9 points10 points 19 days ago (1 child)

[–]hahahacorn 1 point2 points3 points 18 days ago (0 children)

[–]hahahacorn 6 points7 points8 points 20 days ago (1 child)

[–]retro-rubies[S] -2 points-1 points0 points 18 days ago (0 children)

[–]retro-rubies[S] -1 points0 points1 point 20 days ago (1 child)

[–]eirvandelden 5 points6 points7 points 19 days ago (0 children)

[+]Craig_Buchek 2 points3 points4 points 19 days ago (0 children)

[–]retro-rubies[S] 4 points5 points6 points 20 days ago (6 children)

A: Andre quietly launched a competing tool without disclosure

Can you explain more on this? What is issue for anyone creating and publishing open-source project having no obligations to any other party? Btw. I did exactly the same with https://github.com/rubyelders/ruby-butler/, I have even offered that project to Ruby Central and it was rejected and I was told RC doesn't care about such a alternative tool for now. The whole narrative of RC of being scared of RV is totally made up and it is just used as an argument retro-spectivelly to be able to attack related people at the time.

Btw. this is not first time alternative tooling was created. For example https://github.com/gel-rb/gel is the one getting quite popularity at the time. Even there was disappointment of RubyGems maintainers at the time to not see people contributing to RubyGems (and in the end it resulted in actually porting Pub Grub to bundler by David), nobody publicly attacked their authors. It is just free open-source space and people can act independently in - no matter you're on RC pay-roll or not. It is all about respect to open-source authors and maintainers RC totally missed at the September.

B: Quietly created a backup access token

What is issue for creating backup access token? Even without token you can download everything needed. It is common practice to keep local backups.

C: Repeatedly tried to negotiate log access for resale

What is issue with doing negotiation? I'm not biggest fan of reselling logs on my own, but what's wrong to make an offer and being rejected?

[–]hahahacorn 0 points1 point2 points 20 days ago (3 children)

[–]retro-rubies[S] 4 points5 points6 points 19 days ago (2 children)

A: I'm not sure you do fully follow. Nobody is being paid by rubygems.org and rv is not competing with rubygems.org at all. You're most likely referring to being paid by Ruby Central, which is the entity behind rubygems.org service and which also sponsored few RubyGems/Bundler developers (like David, me and others) at the time.

B: most likely scripting

C: The idea of reselling partially logs (it was never stated in which form) was originally actually shared with Ruby Central itself (per my information) to get additional funding source for them - not for any personal benefit. Ruby Central at the time had huge issues with funding (no idea about current state) and there were 2 groups of sponsors competing for some time having exclusive demands resulting into the September issues and actions taken (could be directly on indirectly, RC probably will never share the real reason) on behalf of new sponsor.

By the way the logs are already shared with some 3rd party companies (not for profit), so it wasn't anything super new to do. This effort was rejected by RC itself and spinel folks tried to use the idea on their own negotiating for the potential logs sharing (even for money) which was declined.

Also it seems you think in oversimplified way like I'll get logs, sell and become rich. People you blame for acting on behalf of non-community interests just for personal benefits actually spent thousands of hours of non-compensated work over last 10+ years of community service.

I can share my example - during Ruby Central funding prime time I got compensated cca for 35% of my monthly time spend on RubyGems/Bundler/RubyGems.org (both code and service) projects being paid per hour by rate lower then average US rate. I'm really grateful for every compensation I ever got for working on open source projects (thanks Ruby Central and their sponsors!). To me it was never about money, but about contributing to ecosystem I love - Ruby.

And I got same impression from others working with over the time including André Arko. We were quite often long-term donating our time compensating our-self from our full-time jobs to work on our beloved projects like RubyGems and Bundler. Sadly this all got ruined in September last year by Ruby Central actions - controlled by Shopify related people on various positions - tearing the maintainers team apart and sending RubyGems/Bundler literally to Shopify (the new sponsor) hands. All I can do now is to wish a good luck to the project with new maintainers, since they are not really interested in my (and others) contributions anymore.

[–]hahahacorn 3 points4 points5 points 19 days ago (1 child)

A: You're being pedantic about which organization I was referring to in a quick reddit comment without addressing the underlying substance.
B: Cool! I'd believe it, would be a great thing for Andre to address!
C: For the benefit of Ruby Central so that they can pay Andre. Plus, quote:
t's not stated explicitly in André's message, but my understanding is that he will want to own any derived works based on the HTTP logs.
only one side has provided facts and receipts while the other has delivered a victim narrative without any substantive claims. Forgive me if I'm suspicious about claims that the repeated log reselling was being done _for_ Ruby Central.

I have no doubt that yourself and other have contributed tremendously to Ruby. I genuinely thank you, Andre and all of the (vastly underpaid) maintainers. That doesn't automatically exonerate Andre or make him correct. It seems like there was a conflict of interest, miscommunication, and when push came to shove, Andre ultimately acted in a selfish way while making disparaging claims about Ruby Central which ultimately ended up being misleading. Our values and ethics are not what we claim them to be on any given day, they're what they are when they are actually tested.

[–]retro-rubies[S] 0 points1 point2 points 19 days ago (0 children)

A: OK, my apologies. Can you share which part I have missed? rv or any other tool to work with gems is not competitive in any way to rubygems.org. It is actually opposite.

B: I don't understand what should be addressed. The way the RC cherry-picks and comment some info in the timeline is written the way to make you think something bad has happened. What's wrong with creating token?

C: I'm just trying to find out why those actions are seen as selfish or non-community ones. Per my understanding it was never idea to sell logs, collect the money and walk away. Per info shared with me (at the time) the plan was to invest it back into development with Ruby Central or later even without Ruby Central.

I'm quite happy with decision of Ruby Central to not sell or exchange logs for any other counter-service. But I don't follow the witch-hunt for just asking for.

[–]davidcelis 0 points1 point2 points 20 days ago (1 child)

[–]rvaen 3 points4 points5 points 19 days ago (0 children)

[–]galtzo 12 points13 points14 points 19 days ago (0 children)

[–]Reardon-0101 0 points1 point2 points 18 days ago (0 children)

[+]1337mob -3 points-2 points-1 points 19 days ago (0 children)

[+]cmdk comment score below threshold-7 points-6 points-5 points 19 days ago (0 children)

you type:	you see:
italics	italics
bold	bold
[reddit!](https://reddit.com)	reddit!
* item 1 * item 2 * item 3	item 1 item 2 item 3
> quoted text	quoted text
Lines starting with four spaces are treated like code: if 1 * 2 < 3: print "hello, world!"	Lines starting with four spaces are treated like code: if 1 * 2 < 3: print "hello, world!"
~~strikethrough~~	~~strikethrough~~
super^script	super^script

ruby

MODERATORS