it's not technically required that an access token is a JWT

header keys can also be symbols

and treat custom clients with missing id or password as an error, not unauthenticated client

When e.g. uploading a blob and Content-Type isn't set explicitly, it should send the request without a Content-Type and let the server figure it out, rather than setting it to application/json, which in this case is almost certainly wrong. This can cause errors in some cases, e.g. older version of PDS used to return an error from uploadBlob in such case, trying to validate the submitted blob as params.

it's technically allowed for the server to return an empty page (e.g. because it's filtering out some items at the last step) but still have more data to send

because they override the first version in YARD output otherwise

version requires the main minisky.rb, because Minisky is a class, not a module, but that requires requests.rb, and that requires everything else...

Apparently uri specifically is problematic because rubygems loads it before we get to bundler? (older version at least)

https://github.com/rubygems/rubygems/pull/7386