Browse files

Add note on rubygems-trust to FAQs page

  • Loading branch information...
1 parent 149359c commit 49591d711010ec8b9db1bd2080dbfda134c3d7c4 @ffmike ffmike committed Feb 3, 2013
Showing with 4 additions and 0 deletions.
  1. +4 −0
@@ -52,6 +52,10 @@ you can't. You are responsible for knowing the source of the gems that you are
using. In a setting where security is critical, you should only use known-good
gems, and possibly perform your own security audit on the gem code.
+The Ruby community is discussing ways to make gem code more secure in the future,
+using some public-key infrastructure. To see the progress of this discussion, visit the
+[rubygems-trust]( organization on GitHub.
<a id="require-fail"> </a>
Why does `require 'some-gem'` fail?

0 comments on commit 49591d7

Please sign in to comment.