The Manifest

The Manifest

manifest.fm
A podcast all about package management
10: Licensing with Kate Stewart
Aug 28 • 56 min
Wherein we discuss open source licensing and how that relates to software packaging with Kate Stewart, of Linux Foundation and SPDX.Special Guest: Kate Stewart.Links:Board support packageLTIBSoftware Package Data Exchange (SPDX)DEP5FreshmeatFOSSologyBlack…
9: Typosquatting with Adam Baldwin
Dec 11, 2017 • 50 min
Wherein we discuss typosquatting and other security matters with Adam Baldwin, of Lift security and the Node Security Platform. We cover what kind of exploits people are trying, speculate about how blockchains may well be the answer, and unsuccessfully…
8: Cargo and Crates.io with Carol (Nichols || Goulding)
Nov 27, 2017 • 58 min
Wherein we discuss Cargo (the Rust package manager) and Crates.io (the Rust package registry) with Carol (Nichols || Goulding). We talk about the Rust language, the history of the project, the features that make Cargo the envy of all the other package…
7: The Update Framework with Trishank Karthik Kuppusamy
Nov 13, 2017 • 57 min
Wherein we chat with Trishank Karthik Kuppusamy about The Update Framework, a security layer that lets package managers assure the veracity and integrity of their packages. We talk about how it grew out of the TOR Project, how it works, how Uptane is used…
6: Maven with Brian Fox
Oct 30, 2017 • 68 min
Wherein we chat with Brian Fox about all things Maven. We hear the history of Maven Central, war stories, how Minecraft DDoSed the service, and discuss planning for the future of Maven and Java 9.Special Guest: Brian Fox.Links:MavenMaven Central…
5: Pub with Natalie Weizenbaum
Oct 15, 2017 • 48 min
Wherein we discuss Dart and Pub with Natalie Weizenbaum. We discuss how Dart and Pub are being used and developed within Google and a potential new algorithm for more user friendly dependency resolution error messages.Special Guest: Natalie…
4: Go dep with Sam Boyer
Oct 1, 2017 • 53 min
Wherein we discuss Go and Dep with Sam Boyer. We discuss how he led the improvements to package management for the Go ecosystem and went deep on satisfiability and how it relates to dependency resolution.Special Guest: Sam Boyer.Links:dep on GitHubThe Go…
3: Rubygems with André Arko
Sep 17, 2017 • 54 min
Wherein we discuss Rubygems and Bundler with André Arko. We discuss how he became the lead maintainer of Rubygems and Bundler, and what lead him to set up Ruby Together.Special Guest: André Arko.Links:RubyGemsBundlerRubyGems on GitHubBundler on…
2: CocoaPods with Orta Therox
Sep 3, 2017 • 53 min
Wherein we discuss CocoaPods, a package manager for macOS/iOS development, with lead maintainer Orta Therox. We discuss how he got started contributing to Cocoapods, the arrival of Swift Package Manager and Orta's latest project, Danger.Special Guest:…
1: Homebrew with Mike McQuaid
Aug 16, 2017 • 54 min
Wherein we chat with Mike McQuaid, the lead maintainer of Homebrew. We discuss how he got started contributing to Homebrew, its differences from Macports, using GitHub as a database, patching upstream, and more.Special Guest: Mike McQuaid.Links:Homebrew…