Samuel Giddins
Samuel Giddins
https://github.com/ruby/ruby/blob/0a630fa461a7260235842e482f682deca30172d6/ext/objspace/object_tracing.c#L445C40-L445C40 looks like it allocates a new string each time we get the allocation source file, which definitely could be an fstring (my guess is its coming from the iseq,...
I think another thing that might help would be an option to skip `retained` and only look at `allocated`, then we can skip the `__id__` call and associated hash?
@mrackwitz I believe there's a build setting you can use to ignore specific files
So is `OpenSSL::PKey::EC`
Unfortunately, this is a major blocker to being able to do any sort of public key cryptography on jruby
See also https://packaging.python.org/en/latest/guides/analyzing-pypi-package-downloads/ for how pypi handles this
https://docs.github.com/en/actions/deployment/security-hardening-your-deployments/using-openid-connect-with-reusable-workflows#how-the-token-works-with-reusable-workflows dropping this here for my future reference.
@ybiquitous there's some work we'd have to do here to support re-usable workflows outside of the calling repository. Likely this will involve an extra (optional) input field for the reusable...
was able to add the provider to https://oidc-api-token.rubygems.org/profile/oidc/providers/2 with no code changes needed
https://rubygems.org/profile/oidc/providers/2