Gem.coop is a community-driven hosting service for Ruby gems, designed for speed and compatibility with Bundler, established by former maintainers of RubyGems.org. It aims to provide transparent, sustainable, and secure gem hosting, welcoming contributions from the Ruby community. Users can switch their Gemfile source to Gem.coop for real-time updates on all gems.

A group of maintainers removed from the RubyGems.org project has established the Gem Cooperative and launched a new gem server, gem.coop, to ensure continuity for Ruby developers. The cooperative's governance is still being developed, and the move comes amid tensions with Ruby Central, which recently took control of key Ruby repositories, prompting an open letter calling for a fork of the Rails framework due to concerns over its creator's views.

Open source security governance remains a significant challenge for organizations, as they struggle to effectively manage vulnerabilities in widely used components. The article emphasizes the importance of understanding the systemic risks associated with these components and advocates for a proactive governance approach that includes standardized dependency management, defined ownership, and continuous capability-building. Ultimately, it highlights that successful governance is an ongoing operational discipline rather than a one-off task.

Mercator is an open-source web application designed to help organizations visualize and manage their information systems in compliance with regulatory standards. It provides comprehensive features such as architecture reports, compliance monitoring, and integration options, making it an essential tool for IT governance and risk management. Supported by an active community, Mercator is recognized for its quality and scalability in mapping digital environments.