Projects

Open source projects I've created or maintain.

  • ultimate-awesome

    Every awesome list on every topic, including awesome lists of awesome lists, updated daily.

    132 stars

  • git-pkgs

    A git subcommand for analyzing package/dependency usage in git repositories over time

    Ruby · 34 stars

  • gitballs

    Storing multiple tarballs in git to save space

    Ruby · 21 stars

  • nesbitt.io

    Personal blog built with Jekyll and hosted on GitHub Pages. I write about package management, software supply chain security, and open source infrastructure.

    HTML · 14 stars

  • vers

    A Ruby gem for parsing, comparing and sorting versions according to the VERS spec.

    Ruby · 11 stars

  • swhid

    Generate and parse SoftWare Hash IDentifiers (SWHIDs)

    Ruby · 11 stars

  • purl

    A Ruby library for parsing, validating, and generating Package URLs (PURLs) as defined by the PURL specification

    Ruby · 10 stars

  • state-of-oss-funding

    The State of OSS Funding data: Insights from ecosyste.ms - talk at CHAOSScon North America 2025

    HTML · 10 stars

  • go-bundler

    Go-style imports for Ruby

    Ruby · 10 stars

  • hanami-sprockets

    An alternative to hanami-assets that doesn't rely on npm

    Ruby · 9 stars

  • sidekiq-mcp

    A Sidekiq plugin that provides an MCP (Model Context Protocol) server for LLMs to interact with Sidekiq queues, stats, and failed jobs

    Ruby · 9 stars

  • json-schema-diff

    Semantic diff for JSON files using JSON Schema metadata

    Ruby · 9 stars

  • ruby-upgrade-action

    GitHub action to upgrade version of Ruby in various places to the latest

    9 stars

  • PBOM

    Paper Bill of Materials (PBOM) - Generate a paper bill of materials from the software of a paper

    Ruby · 8 stars

  • zizmor-research

    zizmor analysis of 31,916 github actions using alpha of ecosyste.ms platform

    6 stars

  • changelog-parser

    Parse changelog files into structured data

    Ruby · 6 stars

  • typosquatting

    Detect potential typosquatting packages across package ecosystems

    Ruby · 4 stars

  • brew-vulns

    A Homebrew subcommand that checks installed packages for vulnerabilities

    Ruby · 3 stars

  • diffoscope

    Ruby bindings for diffoscope - Compare packages, tarballs, files, URLs, or package URLs

    Ruby · 2 stars

  • oss-community-benchmarks

    A benchmark framework where maintainers define what good AI-generated code looks like for their ecosystem.

    2 stars

  • dirhash

    Generate Go module zip digests compatible with sum.golang.org

    Ruby · 1 star

  • grass-ruby

    A fast Sass compiler for Ruby, powered by grass (Rust)

    Ruby · 1 star

  • semgrep-codeql

    Converted security rules fromcodeql to semgrep format.

    1 star

  • jekyll-stats

    Jekyll plugin that generates site statistics

    Ruby · 1 star

  • sarif

    A Ruby SDK for SARIF (Static Analysis Results Interchange Format) 2.1.0.

    Ruby · 1 star

  • sbom

    Parse, generate, and validate Software Bill of Materials (SBOM)

    Ruby · 1 star

  • gitlab-faraday

    Ruby wrapper for the GitLab REST API, a fork of github.com/NARKOZ/gitlab updated to use Faraday

    Ruby · 1 star