Last year, npm was compromised, and everybody had their own "easy", "obvious" solution.
Looks like RubyGems was just compromised in a similar way.
Back in Jan I wrote an 8,000 word postmortem on why none of the easy obvious solutions work:
Conversation
Replying to
Regarding the stuff about Realms in Javascript, I wonder if there is actually a usable implementation of them yet. I think it's stuck in some kind of standards limbo Maybe knows more?
2
Definitely look at ponylang.io and monte-language.org for languages that have full implementation of the idea though, if you haven't

