As Companies Try 'Open Source Rug Pull', Open Source Foundations Considered Helpful (redmonk.com) 20
"In the era of the open source rug pull, the role of open source foundations is more important than ever," argues the co-founder of the developer-focused industry analyst firm RedMonk:
The "rug pull" here refers to companies that have used open source as a distribution mechanism, building a community and user base, before changing the license to be restricted, rather than truly open source. "This is capitalism, yo. We've got shareholders to satisfy. It's time to relicense that software, move to a Business Source license." [...] Where open source used to be a sustainable commitment, today too often it feels like a short term tactic. Commercial open source isn't what it used to be.
Which means that open source foundations, which provide ongoing governance and intellectual property management for open source projects, are in an interesting position, in some cases becoming more adversarial than they historically have been with vendors.... [T]he Apache Software Foundation (ASF) has done a great job of fostering sustainable, commercial, open source for decades now, most notably in the data infrastructure space — think Hadoop, Spark, Kafka, Flink etc. ["[C]ommercial open source would almost certainly never have achieved critical mass and continued success without foundations in the mix," the article notes later. "The ASF was founded in 1999, and underpinned the adoption of open source middleware in the enterprise..."] One premise behind the Cloud Native Computing Foundation (CNCF) is that user organisations can within reason trust it to stand behind the projects it incubates and manages. While not an explicit commitment, adopters generally, and enterprises specifically, have seen the CNCF imprimatur as one that they can rely on. In the era of the open source rug pull this kind of promise becomes even more important....
Sid Sijbrandij, CEO of GitLab has argued that open source companies should commit to an Open Charter as a mechanism to protect users from open source rug pulls. "Open source software isn't useful if people can't rely on the project remaining open source. Adopting Open Charter offers open source users predictability amidst the growing licensing switch trend." With a CNCF project, though, the need for this kind of charter becomes less important, because the code is by design not single source, but has a diverse set of contributors. Which is to say that open source foundations can make rug pulls a lot less likely than adoption of open source technology built by a single company. Relying on benevolent dictators is generally pretty risky. And recently the benevolent dictators have seemed... less benevolent.
In conclusion, "Open Source Foundations Considered Helpful," according to the post's title. It does argue that "Any company is within its rights to relicense its software, but it can certainly be problematic from a community and project health perspective.
"Which is exactly why open source foundations are more important than ever."
Which means that open source foundations, which provide ongoing governance and intellectual property management for open source projects, are in an interesting position, in some cases becoming more adversarial than they historically have been with vendors.... [T]he Apache Software Foundation (ASF) has done a great job of fostering sustainable, commercial, open source for decades now, most notably in the data infrastructure space — think Hadoop, Spark, Kafka, Flink etc. ["[C]ommercial open source would almost certainly never have achieved critical mass and continued success without foundations in the mix," the article notes later. "The ASF was founded in 1999, and underpinned the adoption of open source middleware in the enterprise..."] One premise behind the Cloud Native Computing Foundation (CNCF) is that user organisations can within reason trust it to stand behind the projects it incubates and manages. While not an explicit commitment, adopters generally, and enterprises specifically, have seen the CNCF imprimatur as one that they can rely on. In the era of the open source rug pull this kind of promise becomes even more important....
Sid Sijbrandij, CEO of GitLab has argued that open source companies should commit to an Open Charter as a mechanism to protect users from open source rug pulls. "Open source software isn't useful if people can't rely on the project remaining open source. Adopting Open Charter offers open source users predictability amidst the growing licensing switch trend." With a CNCF project, though, the need for this kind of charter becomes less important, because the code is by design not single source, but has a diverse set of contributors. Which is to say that open source foundations can make rug pulls a lot less likely than adoption of open source technology built by a single company. Relying on benevolent dictators is generally pretty risky. And recently the benevolent dictators have seemed... less benevolent.
In conclusion, "Open Source Foundations Considered Helpful," according to the post's title. It does argue that "Any company is within its rights to relicense its software, but it can certainly be problematic from a community and project health perspective.
"Which is exactly why open source foundations are more important than ever."
Capitalism (Score:5, Insightful)
Closed source is capitalism. Open source is capitalism. Shared source is capitalism. The whole point of capitalism is you are free to produce products however you want. You can charge for code. You can charge for services. You can charge for maintenance. You don't have to charge at all. The point is that it's up to you and not someone else.
Re: Capitalism (Score:1)
Re: (Score:2)
People give away freebies all the time, it's their choice so long as no one else dictates the terms of sale or distribution.
Re: (Score:1)
Enlighten us how not charging at all is capitalism. Hmm..
The ability to manage your property however you see fit, without the interference of leftists who know of course better than you what you should do with it, does categorically include the ability to give it away from free. What is so hard to understand?
Re:Capitalism [We don't need no stinkin' ...] (Score:2)
Yeah, I'm trying to make a joke out of your FP. I think you were going for "seminal", but there is no such mod around here.
What you actually seem to be saying is that the word "capitalism" has no meaning to you. Mixed concurrence, though mostly I think it's a personal problem. Yes, the meanings of lots of words are getting getting abused for various economic or political or even authoritarian reasons, but that doesn't mean you and I have to go along. We can make good faith efforts to define our terms and st
Definitions (Score:4, Informative)
What you actually seem to be saying is that the word "capitalism" has no meaning to you. Mixed concurrence, though mostly I think it's a personal problem. Yes, the meanings of lots of words are getting getting abused for various economic or political or even authoritarian reasons, but that doesn't mean you and I have to go along.
It has a very specific meaning. It's how an economy is structured to provide goods and services as efficiently as possible. Mainly it means private ownership, market pricing mechanisms, and a government that stays out of the market as much as possible.
Capitalism itself has no precepts as to how products actually get produced. You can make jam in your home. You can make jam in a giant factory. You can sell it door to door, you can sell it online, or you can sell it in supermarkets. Your company can be a giant conglomerate or a worker-owned co-op operating out of a shed. Capitalism doesn't care. Whatever works best is the correct method.
Re: (Score:2)
The whole point of capitalism is you are free to produce products however you want.
Capitalism is about who controls the means of production. Capitalism is about investors leaching off the system.
Re: (Score:3)
That's liberalism. Capitalism is pursuit of financial profit by ownership of capital (hence the name). The two have nothing to do with each other. You can have liberal capitalist enterprises (open source businesses), illiberal capitalist enterprises
Re: Capitalism (Score:1)
Re: (Score:2)
Am I missing something? (Score:4, Insightful)
From The Summary:
Any company is within its rights to relicense its software, but it can certainly be problematic from a community and project health perspective.
Of course they are, the key being "its" software. The question is what they do when it's not "their" software. I checked out the breakdown of licenses [github.blog] on GitHub and the MIT license is the most used, by far. The MIT license does not force you to release changes you make to the software, even if you distribute the binaries. The GPL, both versions of which are way down the list, do require you to release the changes you made to the GPL software. Seems to me if you want to encourage (or even force) corporations to have to release their changes, you should have used GPL instead of MIT as a license. There have been cases where companies have been taken to court over their refusal to distribute their modified GPL source code and the companies have lost. That tells me that the courts have read the GPL license correctly. So this problem os "rug pulling" seems mostly to be "because they can". Developers should have thought about this when they released their software under more permissive licenses.
Re: (Score:2)
Yes, you are missing the issue.
They are not talking about downstream modifications not being released back to the community. They are talking about the originators choosing to stop producing a free open-source version of their software.
i.e. version 1.x was open source, free, software -but now that a market has developed the author decides to make 2.0 forward a closed source pay-to-license software.
I don't see a problem with it personally. The author has no obligation to keep producing future works for fre
Re: (Score:2)
The problem lies in that they are not re-licensing `their` code, they are relicensing code that written by others, without the permission of the original author.
The lesson to learn is I guess this (Score:2)
Isn't this what forks ... (Score:3)
... are for?
Hudson -> Jenkins
Mambo -> Joomla
Redis -> some FOSS fork that came out 2 hours after they introduced a stricter licence
Any FOSS product that has widespread use and experiences attempts to close the source again usually has a fork up and running within a few weeks and usually the community migrates just as fast.
That's my experience anyway.
Open Charter = pinky promise (Score:2)
If you want these clowns to stop doing a rugpull, then you need to convert your bare license into an enforceable contract by actually paying cash money. This problem has been known for decades now and people were content to pay nothing. This is the consequence of doing that. Don't say you weren't warned, because you were, and chose to pretend that those who said this could happen didn't know what they were talking about.
Re: (Score:2)
Thats the thing, is that for most of these open source licenses, they dont actually own an exclusive license to the code, because they never paid the contributors to the code, thus its not apparent that they can relicense someone else's code, when the project had promised that the license would be MIT or GPL, etc.
In fact a permissive (mit) license can be revoked at any time by the original author.
https://www.law.cornell.edu/wex/promissory_estoppel