Reputation: 5148
Prevent gem pushes to RubyGems
NPM has the ability to prevent a gem from being published. Is there a way to do the same thing and prevent a gem from being accidentally published to rubygems?
Upvotes: 18
Views: 3302
Answers (1)
Reputation: 3379
RubyGems 2.2.0 was only recently released, which adds support for this. You need to set allowed_push_host to your own gem server. The documentation describes it thus:
If you want to control who can install a gem, or directly track the activity surrounding a gem, then you’ll want to set up a private gem server. You can set up your own gem server or use a commercial service such as Gemfury.
RubyGems 2.2.0 and newer support the
allowed_push_hostmetadata value to restrict gem pushes to a single host. If you are publishing private gems you should set this value to prevent accidental pushes to rubygems.org:
Gem::Specification.new 'my_gem', '1.0' do |s|
# ...
s.metadata['allowed_push_host'] = 'https://gems.my-company.example'
end
To upgrade RubyGems, just run the following command:
gem update --system
Upvotes: 13
Related Questions
- Exclude certain gems from rubygems "gem update" command
- How to push a gem without auth?
- Override gem behaviour
- Rubygems: You do not have permission to push to this gem
- when i try to push a gem to rubygems i get a message saying it's not allowed in gemspec when it is
- Can I publish a gem to RubyGems but temporarily keep it "private"?
- Prevent application from creating a gemset
- How to tell RubyGems to look elsewhere?
- I don't want "rake install" to publish to Rubygems
- How do I disable use of a particular gem in a two gems, one library situation?