Staff Software Engineer

Residency Update

Welcome to my update as Ruby Central’s security engineer in residence, sponsored by AWS.

My goal is to write a short update every week, chronicling what I’ve been working on, and reminding myself that I was, in fact, productive.

This week I focused on implementing SCT verification in Sigstore, and made some improvements to the Protobug gem (which is now released!).


switched to plain-ruby protos

contributed testing improvements to the nascent TUF conformance test suite

automated updating the vendored trust root

big one: sct verification


set up automated releases

added support for running on truffleruby and jruby

enabled yjit for

improved average latency by 20%

updated to ruby 3.3.1 to keep up with the latest security patches

landed storing api key scopes in array column