top | item 5176454 Ruby 1.9.3-p385 is released 53 points| cbetta | 13 years ago |ruby-lang.org | reply 7 comments order hn newest [+] [-] aaronblohowiak|13 years ago|reply echo "--no-ri --no-rdoc" >> ~/.gemrc install every gem much faster, avoid rdoc vulnerabilities. Since gem installation can run arbitrary code, I am suspicious of rdoc xss vulnerabilities being a cause for concern (if you are not running a publicly-accessible gem documentation site...) [+] [-] why-el|13 years ago|reply This will run these options for every gem command though. Better restrict it to install and update. load replies (2) [+] [-] lobster_johnson|13 years ago|reply The .gemrc file is YAML [1], does that even work without "gem:" in front? Mine looks like this: gem: --no-rdoc --no-ri --both verbose: true update_sources: true sources: - http://rubygems.org/ backtrace: false bulk_threshold: 1000 benchmark: false [1] http://docs.rubygems.org/read/chapter/11
[+] [-] aaronblohowiak|13 years ago|reply echo "--no-ri --no-rdoc" >> ~/.gemrc install every gem much faster, avoid rdoc vulnerabilities. Since gem installation can run arbitrary code, I am suspicious of rdoc xss vulnerabilities being a cause for concern (if you are not running a publicly-accessible gem documentation site...) [+] [-] why-el|13 years ago|reply This will run these options for every gem command though. Better restrict it to install and update. load replies (2) [+] [-] lobster_johnson|13 years ago|reply The .gemrc file is YAML [1], does that even work without "gem:" in front? Mine looks like this: gem: --no-rdoc --no-ri --both verbose: true update_sources: true sources: - http://rubygems.org/ backtrace: false bulk_threshold: 1000 benchmark: false [1] http://docs.rubygems.org/read/chapter/11
[+] [-] why-el|13 years ago|reply This will run these options for every gem command though. Better restrict it to install and update. load replies (2)
[+] [-] lobster_johnson|13 years ago|reply The .gemrc file is YAML [1], does that even work without "gem:" in front? Mine looks like this: gem: --no-rdoc --no-ri --both verbose: true update_sources: true sources: - http://rubygems.org/ backtrace: false bulk_threshold: 1000 benchmark: false [1] http://docs.rubygems.org/read/chapter/11
[+] [-] aaronblohowiak|13 years ago|reply
[+] [-] why-el|13 years ago|reply
[+] [-] lobster_johnson|13 years ago|reply