[Rubygems-developers] Fwd: Weird gem problem, might be pretty dangerous

Jim Weirich jim at weirichhouse.org
Tue Feb 21 15:26:34 EST 2006


Gregory Brown wrote:
> Hey guys,
> 
> I had a strange problem on RubyForge and have forwarded it to you on
> Tom Copeland's request to see if you could shed some light on what
> went wrong.
> 
> Many thanks.  Greg
> 
> ---------- Forwarded message ----------
> From: Gregory Brown <gregory.t.brown at gmail.com>
> Date: Feb 21, 2006 1:42 PM
> Subject: Weird gem problem, might be pretty dangerous
> To: Tom Copeland <tom at infoether.com>
> 
> 
> i originally released two gems, ruport and ruport-lean
> 
> On windows and debian, when I type gem install ruport
> it grabs ruport-lean instead!
> 
> I deleted ruport-lean and renamed it to lean-ruport to avoid the ambiguity.
> ruport-lean has not been taken out of rotation yet though, and it has
> been overnight
> 
> But this leads me to think this might be really dangerous.
> 
> What would happen if I made a gem called rails-is-totally-awesome.
> 
> Would that break gem install rails   ??

Yep, and Eric Hodel did just that a while ago (released a gem named 
rails-analysis or something like that).  A fix has been applied to the 
CVS repository, so the next version of gems will guard against that.

-- 
-- Jim Weirich       jweirich at one.net      http://onestepback.org
-----------------------------------------------------------------
"Beware of bugs in the above code; I have only proved it correct,
not tried it." -- Donald Knuth (in a memo to Peter van Emde Boas)


More information about the Rubygems-developers mailing list