Rfcs Alternatives

Similar projects and alternatives to rfcs

HomeBrew

1,281 39,303 10.0 Ruby rfcs VS HomeBrew

🍺 The missing package manager for macOS (or Linux)
warehouse

274 3,465 9.7 Python rfcs VS warehouse

The Python Package Index
InfluxDB

www.influxdata.com sponsored

Power Real-Time Data Analytics at Scale. Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.
rubygems

211 3,545 9.9 Ruby rfcs VS rubygems

Library packaging and distribution for Ruby.
Babel (Formerly 6to5)

58 42,901 9.7 TypeScript rfcs VS Babel (Formerly 6to5)

🐠 Babel is a compiler for writing next generation JavaScript.
npm

48 17,233 2.1 JavaScript rfcs VS npm
RubyGems

25 2,295 9.8 Ruby rfcs VS RubyGems

The Ruby community's gem hosting service.
enquirer

18 7,487 4.9 JavaScript rfcs VS enquirer

Stylish, intuitive and user-friendly prompts, for Node.js. Used by eslint, webpack, yarn, pm2, pnpm, RedwoodJS, FactorJS, salesforce, Cypress, Google Lighthouse, Generate, tencent cloudbase, lint-staged, gluegun, hygen, hardhat, AWS Amplify, GitHub Actions Toolkit, @airbnb/nimbus, and many others! Please follow Enquirer's author: https://github.com/jonschlinkert
WorkOS

workos.com sponsored

The modern identity platform for B2B SaaS. The APIs are flexible and easy-to-use, supporting authentication, user identity, and complex enterprise features like SSO and SCIM provisioning.
harden-runner

15 491 7.5 TypeScript rfcs VS harden-runner

Network egress filtering and runtime security for GitHub-hosted and self-hosted runners
sigstore-website

2 26 6.0 Vue rfcs VS sigstore-website

Codebase for sigstore.dev
package-analysis

2 706 9.3 Go rfcs VS package-analysis

Open Source Package Analysis
wg-securing-software-repos

2 77 7.1 rfcs VS wg-securing-software-repos

OpenSSF Working Group on Securing Software Repositories
discussions

1 149 10.0 rfcs VS discussions

Soliciting ideas and feedback for community driven collaborative projects that help Node. (by node-forward)
hagrid-container

1 5 4.3 Shell rfcs VS hagrid-container

Hagrid as in, "keeper of keys". Verifying OpenPGP keyserver, written in Rust. OCI image
isnan

1 0 10.0 JavaScript rfcs VS isnan

Test whether value is NaN
SaaSHub

www.saashub.com sponsored

SaaSHub - Software Alternatives and Reviews. SaaSHub helps you find the best software and product alternatives

NOTE: The number of mentions on this list indicates mentions on common posts plus user suggested alternatives. Hence, a higher number means a better rfcs alternative or higher similarity.

Suggest an alternative to rfcs

rfcs reviews and mentions

Posts with mentions or reviews of rfcs. We have used some of these posts to build our list of alternatives and similar projects. The last one was on 2022-06-13.

Ruby Shield: Shopify donates $1M to stewards of rubygems, bundler
1 project | news.ycombinator.com | 6 Jul 2022

I can give a limited answer based on my own day-to-day work. I work in Ruby Dependency Security, which is the team who are most involved in helping out with rubygems.org and RubyGems work. Our biggest effort lately has been about rolling out MFA requirements for owners of top-most-downloaded gems. What I'd like to do afterwards is focus on gem signing using sigstore, which would make it a "one click" experience for authors. We did some work on it earlier this year[0] but chose to focus on MFA as our first big push. We also aim to devote a substantial fraction of our time to chopping wood and carrying water: looking at honeybadger exception reports, etc.
In terms of the long run there's a whole bunch that can be done to continuously harden every aspect of the Ruby supply chain. One thing we've been involved in founding is the OpenSSF Securing Software Repos working group[1], which has meant that RubyGems maintainers are now talking directly with folks from PyPI, npm, Maven Central, Cargo and others. We all face shared threats (eg, dependency confusion, resurrection attacks etc), so getting together to work collectively and share ideas has been super awesome.
[0] https://github.com/rubygems/rfcs/pull/37
[1] https://github.com/ossf/wg-securing-software-repos
Making popular Ruby packages more secure
6 projects | news.ycombinator.com | 13 Jun 2022

That’s correct. If you’re a maintainer of a very popular gem, as of 15th August you’ll no longer be able to e.g. `gem push` if you haven’t enabled MFA on your RubyGems account. You will of course still be able to log in and enable it.
More details in the RFC: https://github.com/rubygems/rfcs/blob/master/text/0007-mfa-r...
NPM Vulnerability Discussion on Twitter
7 projects | news.ycombinator.com | 10 May 2022

> < 10% had useful 2FA enabled.
I expect this to change. NPM will roll out mandatory MFA for the most-downloaded packages[0] (RubyGems as well[1]). I expect this will rise to a 100% requirement at some point because Github's decision to require MFA by the end of 2023 will massively raise the waterline of folks who have the capability to MFA and experience with MFA.
[0] https://github.blog/2021-11-15-githubs-commitment-to-npm-eco...
[1] https://github.com/rubygems/rfcs/issues/35
Sigstore
5 projects | news.ycombinator.com | 3 May 2022

The RFC trying to introduce sigstore for RubyGems is an interesting look at this in practice: https://github.com/rubygems/rfcs/pull/37
RFC for Sigstore Rubygems Signing
1 project | news.ycombinator.com | 28 Jan 2022
RFC: Proposal for new signing mechanism
3 projects | /r/ruby | 28 Jan 2022
Require MFA for most-used gems [RubyGems RFC]
1 project | /r/ruby | 20 Nov 2021
A note from our sponsor - WorkOS
workos.com | 23 Apr 2024

The APIs are flexible and easy-to-use, supporting authentication, user identity, and complex enterprise features like SSO and SCIM provisioning. Learn more →

Stats

Basic rfcs repo stats

Mentions

Stars

Activity

4.6

Last Commit

5 months ago

Popular Comparisons