How’s that going in Hong Kong?

An approach I learnt from a talk posted to HN (I forget the talk, not the lesson) is to not depend on the outside project for its code, just lift that code directly in to your project, but to rely on it for the tests, requiring/importing it etc when running your own tests. That protects you from a lot of things (this kind of attack was not mentioned, afaic recall) but doesn’t allow bugs found by the other project to be missed either.

I use Sequel far more than Rails, but their relative importance is entirely different, and I suspect Ruby would be still be a minority language if Rails had not happened. Even if we take into account the numerous other contributions anyone could make, could they make up for or match Rails' impact? Doubtful. Hence, I find your claims a stretch.

If Evans were to purge the politics from contributions to the community, then he would be a fine benevolent dictator, and would manage something Matz has failed with (amongst English speaking contributors, at least). That would probably require purging some of the people (as far as possible), as happened recently. Could he do that?

Yes, Mr Throwaway, of course I do.

What would you need it for?

Of course. He actually completely rewrote the code and still merged it in, so I got what I wanted. We've all had such experiences, I'm sure, but I was making the point that different people can have different experiences - I've had straightforward chats with Evan too. I'm sure people have had super nice and welcoming experiences with DHH too.

Should we not include the negative ones for one person and the positive ones for another?