> it is not okay to consider that this labor fell from the sky and is a gift, and that the people/person behind are just doing it for their own enjoyments.
I am. I enjoy making things, and it's even better when others enjoy them. Just because you have expectations that you should be compensated for everything line of code you write; doesn't make it ubiquitous, nor should your expectations be considered the default.
I'd argue If you're creating and releasing open source with the expectations of compensation, you're doing it wrong. Equally, if you expect someone creating open source owes you anything, you're also part of the problem, (and part of why people feel they deserve compensation for something that used to be considered a gift).
All that said, you should take care of your people, if you can help others; especially when you depend on them. I think you should try. Or rather, I hope you would.
My apologies - you’re correct. I didn’t mean that as “you should never expect anyone to have contributed code for free/the pleasure/for the puzzle solving aspect”. I do it all of the time.
I meant - it’s unfair to consider that because this labor “fell from the sky”, you should just accept it - and as others have said, in the case of projects that become popular, that the burden should just automatically fall on the shoulders of someone who happened to share code “for free”.
If/when someone ends up becoming responsible for work they hadn’t necessarily signed up for (who signs up for burnout?) - it’s ok/necessary/mandatory to see how everyone (and or Nvidia/Google/OpenAI etc) can, like, help.
Consider how the xz malware situation happened [0]. Or the header & question 8 from the FAQ for PocketBase [1].
I think this is the piece so many that are stuck in the hustle culture mindset miss, and why they are so quick to dismiss anything like UBI or a strong social safety net that might “reduce people’s motivation”. There are many many creative, caring people that are motivated to create things or care for each other for the sake of it, not for some financial reward. Imagine the incredible programs, websites, games, crafts, artworks, animations, performances, literature, journalism, hobby clubs, support groups, community organizations that would spring into existence if we all just had more bandwidth for them while having our baseline needs met.
Would it be chaotic? Sure, in the same way that open source or any other form of self-organization is. But boy it sounds a whole lot better than our current model of slavery-with-extra-steps…
I agree with you, but I do think we have a bit of a problem in which an open source creator makes something and then suddenly finds themselves accidentally having created a load-bearing component that is not only used by a lot of people and companies, but where people are demanding that bugs be fixed, etc., and we lack great models for helping transition it from "I do this for fun, might fix the bug if I ever feel like it" to " I respect that this has become a critical dependency and we will find a way to make it someone's job to make it more like a product".
I gather that the open source maintainers who have found themselves in this situation sometimes get very unhappy about it, and I can see why -- it's not like they woke up one day and suddenly had a critical component on their hands, it kind of evolved over time and after a while they're like "uhoh, I don't think this is what I signed up for"
>it is not okay to consider that this labor fell from the sky and is a gift, and that the people/person behind are just doing it for their own enjoyments
Yes it absolutely is. That is the exact social contract people 100% willingly enter by releasing something as Free and Open Source. They do give it as a gift, in exchange for maybe the tiny bit of niche recognition that comes with it, and often times out of simple generosity. Is that really so incredible?
Help normalize saying no? As an OSS maintainer, the sense of entitlement many have is quite frustrating. After years in OSS, I have built up a thick skin and am fine saying no, but many aren't.
Agreed. Supporting open source maintainers is a great idea in general, but shaming people for using something according to the exact license terms it was released with is getting old.
If this actually happens, get ready for an avalanche of AI-generated garbage code that exists for the sole purpose of boosting a scammer's metrics, so they can maximize their slice of the pie with the minimum amount of effort. Spotify is dealing with this same issue around AI-generated music [1].
The first order effect of this would be great, but the following onslaught of schlinkert spam would be devastating- its bad enough now with people making garbage dependencies and sneaking them in everywhere just for clout
Sadly I think this is true. There is already a problem with people making useless dependencies and pushing them into projects with PRs to increase their download numbers.
Showing high download numbers on your resume is more valuable than anything a fund like this could provide. There will always be a company who views high NPM download numbers as a signal of top 1% talent, even if it has become a game in itself.
> Those funds would then be distributed by usage - every mention in a package.json or requirements.txt gets you a piece of the pie.
Usage is not a good proxy for value or ongoing effort. I have a npm package with tens of millions of weekly downloads. It's only a few lines long and it's basically done - no maintenance required.
I'm skeptical that there exists an algorithmic way to distribute funds that's both efficient and resistant to gaming.
I paid 1 buck for WhatsApp back in the day. Better business model than what meta did with it. But we're moving closer and closer to 8 companies controlling the world. Both WhatsApp and github are owned by them.
> we're moving closer and closer to 8 companies controlling the world.
Which 8? In the control the world domain I see Meta, Google, Amazon, Apple, Microsoft. In terms of Market Cap you would add Tesla, Nvidia and TSMC, but these three aren't any where close to "controlling" the world category.
I would put Disney in there. I picked 8 arbitrarily but those companies have substantial pull in governmental regulations and the state of the web. Probably missing some Chinese companies.
imo corporations have more pull on governments than governments have on businesses at this point as far as long term culture goes.
$1 USD is ~90 Indian Rupees, 1450 Argentinian Peso or over 1 million Iranian Rial [1]. In some places, $1 USD could be a week's work. On the collection side, you could be seriously over-charging people. On the distribution side, you could be seriously overpaying people for their work - and encourage scams, etc.
> GitHub should charge every org $1 more per user per month and direct it into an Open Source fund, held in escrow.
Sure. It'll be some charity, then somebody gets paid $200k+ per year to distribute what remains after they've taken the majority, all whilst avoiding most taxes. To receive the money the person has to ID themselves, financial background checks need to be done, a minimum amount needs to be reached before a payment is made, and then after passing through multiple wanting hands, they end up with a fraction.
> Those funds would then be distributed by usage - every mention in a package.json or requirements.txt gets you a piece of the pie.
What even is "usage"? How many times it appears in a number of repos? How many users there are of the project? Is the usefulness and value of a project limited to the number of people that directly use it?
> Or don’t! Let’s not do anything! People’s code and efforts - fueling incredibly critical bits of infrastructure all around the world - should just be up for grabs. Haha! Suckers!
> Anyway, you all smarter than me people can figure it out. I just cannot accept that what we have is “GOOD”. xx
It's entirely possible you can make things worse by avoiding doing nothing. Sometimes in life you have to pick the lesser of evils.
OSS works partially because a lot of stuff is free as in beer. I rely on probably many thousands of OSS projects directly or indirectly on a daily basis. So does everyone else.
The problem for some people is that they want to get paid for their work and just aren't; or not enough. I won't judge that. Writing software is hard work. Whether you donate your time and how much of your time is a personal choice to make. But of course a lot of OSS gets paid for indirectly via companies paying people to work on them (most long lived projects have paid contributors like that) or in a few cases because the companies behind these projects have some business model that actually works. Some people donate money to things they like. And some projects are parked under foundations that accept donations. That's all fine. But there are also an enormous amount of projects out there and most of them will never receive a dollar for any of it. OSS wouldn't work without this long tail of unpaid contributors.
I have a few OSS projects of my own. I don't accept donations for them. I don't get paid for them. I have my own reasons for creating these projects; but money isn't one of those. And people are welcome to use them. That's why these projects are open source.
MS and Github make loads of money. There's a reason they give the freemium version away for free: it funnels enough people into the non free version that it is worth it to them. Charging money to everyone might actually break that for them. I happily use their freemium stuff. I did pay for it a long time ago when private projects weren't part of the freemium layer. Anyway their reasons/motivations are theirs. I'm sure it all makes sense for them and their share holders.
If people feel guilty about not donating to each of the thousands of projects they rely on (or any, because why cherry pick?), you can pay back in a different way and try to contribute once in a while. Just pay it forward. Yes you somebody put a lot of work in the stuff that you use. And you put some work in stuff that others get to use. If enough people keep on doing that (and the success of OSS hints that they do), OSS will be here to stay.
Instead of a dollar from github users, I think it should just be a hefty tax on big tech companies that have valuations of over a billion. The nature of software and tech means that there are massive monopolies where winner takes all. We should just accept that and leverage it.
One thing I thought that got me interested about Brave was this part of their business modell. It had the potential to support this type of economy almost without any attrition. It was not that different from flattr, with the difference that people would be able to contribute just by accepting the notification ads and passing along their earnings.
Unfortunately, the crypto angle made sure that mostly degens and speculators got into it. Perhaps if stabletokens were more established by the time they started, it would be easier to market it.
(I am not going to get into yet-another discussion about Brave as a company. I will flag any attempt at derailing the conversation.)
>It is crazy, absolutely crazy to depend on open source to be free (as beer).
Why? It's not crazy at all. It's the status quo with no sign of things changing. It is both possible right now and likely continue. Its not crazy.
If it's not worth maintaining people will stop. If people need it they will develop it. The current incentive structure has produced lots of open source code that is being maintained.
>It is not okay - it is not okay to consider that this labor fell from the sky and is a gift, and that the people/person behind are just doing it for their own enjoyments.
It is if there is no cost. You can always charge for it. But you can't make it free then pretend its not.
> Those funds would then be distributed by usage - every mention in a package.json or requirements.txt gets you a piece of the pie.
Could have worked before LLMs.
Also, funding by popularity would mean alternatives would have a harder time to emerge and get the funding they need to compete against the established popular projects.
Being an Open Source project doesn't mean that it provides the best solution to the problem it's supposed to solve.
Diversity is important.
Many open source projects are created by engineers being paid to solve a problem their employer has, and they just happen to release it freely.
I don't think Google needs a dollar every time I write a script in golang or run a container in kubernetes, and I would put a lot less trust in Envoy if I thought Lyft was building it profit and not because they needed to.
I do like this idea, as it seems easy to implement. Github can just increase its prices by $1/month/orguser and that fund could end up with like, i think, 6 million per month. Thats a sizeable amount of money and could help in making open source more sustainable & attractive.
>it is not okay to consider that this labor fell from the sky and is a gift, and that the people/person behind are just doing it for their own enjoyments
This is a terrible idea in my opinion and it's been tried/is being tried by services like thanks.dev. Yes, we need something here but this is not it. The reality is more complex.
It doesn't work well in practice. Because then people like https://github.com/sindresorhus?tab=repositories&type=source would get a shit ton of money because of the pure number of dependencies. And yes our stack also contains his code somewhere in a debug UI but our main product is entirely written in a different programming language with way fewer dependencies but if one of them goes away we'd be in trouble. In other words: Dependency count is not a good metric for this.
My "idea":
Lots of companies will have to create SBOMs anyway. Take all of those but also scan your machines and take all the open source software running on there (your package.lock does not contain VLC etc.) and throw it in a big company wide BOM, then somehow prioritise those using algorithms, data and just manual voting and then upload that to some distributor who then distributes this to all the relevant organisations and people and then (crucially) sends me (as a company) an invoice.
We've tried doing the right thing but sponsoring is hard - it works differently for every project/foundation and the administrative overhead is huge.
The reality is that "we" as an open-source community suck at taking money and I believe this is partially on us.
should be the transitive dependencies, not just top-level (so the lock file or equiv) or you just reward the "barely wrap it and give it a new name" js crowd even more.
In principle it sounds like a grand idea, although there are a bunch of corner cases like how it works cross country borders, and de-anonymising maintainers.
If it was opt in for opensource projects, and there are strong guards against people forking/hard takover-ing then yes, it seems like a good idea in principle.
I will leave the AI enthusiasts to chime in about the future, and how we don't need OS anymore.
Yes I read it, but still, charging me $1 so M/S can spy on what I do and make money off of it by selling my work to large corporations is wrong.
But if they really wanted to do what the article says, create a project and people can donate what the want. For example, if M/S sends me $5 per month, I can redirect it to various open source projects instead.
When I was on GH, I did donate a little per month to 2 projects, it was a nice way to do that. But I moved off because I do not want to give M/S more personal information (like my Cell #), so I send a few $ to them using other means.
the payment isn't the problem so much as the payment processing. They wouldn't support crypto, even if they did, getting crypto without KYC hassle is a PITA, not worth it for paying one company $1. Not associating your real identity with a github repo is very important to most github users.
Payment could solve lots of problems, but there is no real and meaningful cash-equivalent payment system or method. This isn't a tech problem either, governments allow cash payments, but if it is digital, they won't allow any means that preserves privacy. Money laundering is their concern. You can't solve this without laws changing. Even if I don't mind buying crypto with a credit card, I still have to go through proving my identity with my id card, as if my credit-card company didn't do that already.
payment is a huge barrier to commerce these days, people think LLMs will change the world, but payment tech/laws will have a bigger effect in my opinion.
Let's say HN mods go a little crazy one day and want to let us tip each other for good posts and comments, imagine if all they had to do is add an html tag in the right place and that's it. All we had to do is click a button and it just works, and there is no exposure of private information by any involved party, and you could fund that payment by buying something (a card?) at a convenience store in person, just as easily as you could with a crypto payment, moneygram or wire transfer.
I __want__ to pay so many news sites, blogs,etc... I don't mind tipping a few bucks to some guy who wrote a good blog, or who put together a decent project on github that saved me lots of time and work.
It isn't merely the change in economics or people getting a buck here and there, but the explosion in economic activity you have to look at. The generation of wealth, not the mere zero-sum transferring of currency. This is the type of stuff that changes society drastically, like freeways being invented, women being able to ride bicycles, airplanes allowing fast transport, telegrams allowing instant messaging,etc..
Everyone being able to easily pay anyone at all, including funding private as well as commercial projects would be more disruptive than democracy itself, if I could dare make that claim. There is freedom of movement, there is freedom of communication and last there is freedom of trade. these are the ultimate barriers to human progress. Imagine if everyone from texas to beijing could fund research and projects, trade stocks in companies (all companies in the world). You won't need governments to fund climate change work, I think eventually taxation itself will have to suffer, because people would be able to direct exactly where their funds went. Not just what department in the government gets a budget, but exactly what projects they spend it on. being able to not just talk or meet each other instantly (and even those have a long way to go) but to also collectively or as individuals found each other, governments and companies, that'd be the biggest thing that could happen this century.
This could be done, but again, we don't need better tech as much as we need a change in attitude. For people to actually believe this would result in a better world for them.
> it is not okay to consider that this labor fell from the sky and is a gift, and that the people/person behind are just doing it for their own enjoyments.
I am. I enjoy making things, and it's even better when others enjoy them. Just because you have expectations that you should be compensated for everything line of code you write; doesn't make it ubiquitous, nor should your expectations be considered the default.
I'd argue If you're creating and releasing open source with the expectations of compensation, you're doing it wrong. Equally, if you expect someone creating open source owes you anything, you're also part of the problem, (and part of why people feel they deserve compensation for something that used to be considered a gift).
All that said, you should take care of your people, if you can help others; especially when you depend on them. I think you should try. Or rather, I hope you would.
My apologies - you’re correct. I didn’t mean that as “you should never expect anyone to have contributed code for free/the pleasure/for the puzzle solving aspect”. I do it all of the time.
I meant - it’s unfair to consider that because this labor “fell from the sky”, you should just accept it - and as others have said, in the case of projects that become popular, that the burden should just automatically fall on the shoulders of someone who happened to share code “for free”.
If/when someone ends up becoming responsible for work they hadn’t necessarily signed up for (who signs up for burnout?) - it’s ok/necessary/mandatory to see how everyone (and or Nvidia/Google/OpenAI etc) can, like, help.
Consider how the xz malware situation happened [0]. Or the header & question 8 from the FAQ for PocketBase [1].
[0] https://x.com/FFmpeg/status/1775178803129602500
[1] https://pocketbase.io/faq/
I think this is the piece so many that are stuck in the hustle culture mindset miss, and why they are so quick to dismiss anything like UBI or a strong social safety net that might “reduce people’s motivation”. There are many many creative, caring people that are motivated to create things or care for each other for the sake of it, not for some financial reward. Imagine the incredible programs, websites, games, crafts, artworks, animations, performances, literature, journalism, hobby clubs, support groups, community organizations that would spring into existence if we all just had more bandwidth for them while having our baseline needs met.
Would it be chaotic? Sure, in the same way that open source or any other form of self-organization is. But boy it sounds a whole lot better than our current model of slavery-with-extra-steps…
The hikikomori[1] or NEETs ought to be a hotbed of creative works if your hypothesis is true. And they aren't, plain and simple.
There is effectively zero evidence suggesting a population on UBI will result in some sort of outpouring of creativity.
[1] https://en.wikipedia.org/wiki/Hikikomori and it's not a phenomenon limited to Japan.
I agree with you, but I do think we have a bit of a problem in which an open source creator makes something and then suddenly finds themselves accidentally having created a load-bearing component that is not only used by a lot of people and companies, but where people are demanding that bugs be fixed, etc., and we lack great models for helping transition it from "I do this for fun, might fix the bug if I ever feel like it" to " I respect that this has become a critical dependency and we will find a way to make it someone's job to make it more like a product".
I gather that the open source maintainers who have found themselves in this situation sometimes get very unhappy about it, and I can see why -- it's not like they woke up one day and suddenly had a critical component on their hands, it kind of evolved over time and after a while they're like "uhoh, I don't think this is what I signed up for"
Redistributing unwanted funds would be a good chore to have to do!
>it is not okay to consider that this labor fell from the sky and is a gift, and that the people/person behind are just doing it for their own enjoyments
Yes it absolutely is. That is the exact social contract people 100% willingly enter by releasing something as Free and Open Source. They do give it as a gift, in exchange for maybe the tiny bit of niche recognition that comes with it, and often times out of simple generosity. Is that really so incredible?
The problem is more so maintenance.
The expectation of FOSS is that the users and maintainer work together to resolve bug fixes/features/security issues.
However many companies will dump these issues to the maintainer and take it for granted when they are resolved.
It's not a sustainable model, and will lead to burnout/unmaintained libraries.
If the companies don't have the engineering resources/specialization to complete bug fixes/features, they should sponsor the maintainers.
It’s OK to say “No” or “Pay me and I’ll do it right now” to companies doing this.
I 100% agree with this. It also is 100% OK to fork aggressively and patch yourself.
Correct, maintainers can say that and get shamed.
And it leads to unmaintained libraries, since companies don't want to pay.
At some point, is open sourcing your work a liability?
Help normalize saying no? As an OSS maintainer, the sense of entitlement many have is quite frustrating. After years in OSS, I have built up a thick skin and am fine saying no, but many aren't.
(And on the flipside, nothing is owed for a bugfix the maintainer made out of their own free will. Again, a gift.)
The problem is lots of open source is unmaintained/insecure, and there aren't any security engineers on those open source libraries.
For the library to be secure, there needs to be funding, not by magic and expecting maintainers will do stuff on there free will.
Agreed. Supporting open source maintainers is a great idea in general, but shaming people for using something according to the exact license terms it was released with is getting old.
It's crazy to expect someone to pay for something that you're giving them for free.
Correct, but if there's a bug/enhancement/support they want, it's perfectly reasonable to ask for compensation for it.
If this actually happens, get ready for an avalanche of AI-generated garbage code that exists for the sole purpose of boosting a scammer's metrics, so they can maximize their slice of the pie with the minimum amount of effort. Spotify is dealing with this same issue around AI-generated music [1].
1. https://www.forbes.com/sites/lesliekatz/2024/09/08/man-charg...
The first order effect of this would be great, but the following onslaught of schlinkert spam would be devastating- its bad enough now with people making garbage dependencies and sneaking them in everywhere just for clout
Sadly I think this is true. There is already a problem with people making useless dependencies and pushing them into projects with PRs to increase their download numbers.
Showing high download numbers on your resume is more valuable than anything a fund like this could provide. There will always be a company who views high NPM download numbers as a signal of top 1% talent, even if it has become a game in itself.
It might make the maintainers of if the rest of the pie vigilant for dependency spam that would cut into their end.
If you make every single person go through Github's miserable auth process just to do git pull, they are going to leave
> Those funds would then be distributed by usage - every mention in a package.json or requirements.txt gets you a piece of the pie.
Usage is not a good proxy for value or ongoing effort. I have a npm package with tens of millions of weekly downloads. It's only a few lines long and it's basically done - no maintenance required.
I'm skeptical that there exists an algorithmic way to distribute funds that's both efficient and resistant to gaming.
I paid 1 buck for WhatsApp back in the day. Better business model than what meta did with it. But we're moving closer and closer to 8 companies controlling the world. Both WhatsApp and github are owned by them.
> we're moving closer and closer to 8 companies controlling the world.
Which 8? In the control the world domain I see Meta, Google, Amazon, Apple, Microsoft. In terms of Market Cap you would add Tesla, Nvidia and TSMC, but these three aren't any where close to "controlling" the world category.
I would put Disney in there. I picked 8 arbitrarily but those companies have substantial pull in governmental regulations and the state of the web. Probably missing some Chinese companies.
imo corporations have more pull on governments than governments have on businesses at this point as far as long term culture goes.
Had you said these 8 companies controlling the world 5 to 6 years ago I would have partly agreed.
But right now I see so many cracks in their game I am optimistic they wont control world and there will be new competition to challenge them.
Tax large companies properly then you don't have to tax the public for things like this.
npm funds is that to a certain extent -> https://docs.npmjs.com/cli/v11/commands/npm-fund
$1 USD is ~90 Indian Rupees, 1450 Argentinian Peso or over 1 million Iranian Rial [1]. In some places, $1 USD could be a week's work. On the collection side, you could be seriously over-charging people. On the distribution side, you could be seriously overpaying people for their work - and encourage scams, etc.
> GitHub should charge every org $1 more per user per month and direct it into an Open Source fund, held in escrow.
Sure. It'll be some charity, then somebody gets paid $200k+ per year to distribute what remains after they've taken the majority, all whilst avoiding most taxes. To receive the money the person has to ID themselves, financial background checks need to be done, a minimum amount needs to be reached before a payment is made, and then after passing through multiple wanting hands, they end up with a fraction.
> Those funds would then be distributed by usage - every mention in a package.json or requirements.txt gets you a piece of the pie.
What even is "usage"? How many times it appears in a number of repos? How many users there are of the project? Is the usefulness and value of a project limited to the number of people that directly use it?
> Or don’t! Let’s not do anything! People’s code and efforts - fueling incredibly critical bits of infrastructure all around the world - should just be up for grabs. Haha! Suckers!
> Anyway, you all smarter than me people can figure it out. I just cannot accept that what we have is “GOOD”. xx
It's entirely possible you can make things worse by avoiding doing nothing. Sometimes in life you have to pick the lesser of evils.
[1] https://www.x-rates.com/table/?from=USD&amount=1
OSS works partially because a lot of stuff is free as in beer. I rely on probably many thousands of OSS projects directly or indirectly on a daily basis. So does everyone else.
The problem for some people is that they want to get paid for their work and just aren't; or not enough. I won't judge that. Writing software is hard work. Whether you donate your time and how much of your time is a personal choice to make. But of course a lot of OSS gets paid for indirectly via companies paying people to work on them (most long lived projects have paid contributors like that) or in a few cases because the companies behind these projects have some business model that actually works. Some people donate money to things they like. And some projects are parked under foundations that accept donations. That's all fine. But there are also an enormous amount of projects out there and most of them will never receive a dollar for any of it. OSS wouldn't work without this long tail of unpaid contributors.
I have a few OSS projects of my own. I don't accept donations for them. I don't get paid for them. I have my own reasons for creating these projects; but money isn't one of those. And people are welcome to use them. That's why these projects are open source.
MS and Github make loads of money. There's a reason they give the freemium version away for free: it funnels enough people into the non free version that it is worth it to them. Charging money to everyone might actually break that for them. I happily use their freemium stuff. I did pay for it a long time ago when private projects weren't part of the freemium layer. Anyway their reasons/motivations are theirs. I'm sure it all makes sense for them and their share holders.
If people feel guilty about not donating to each of the thousands of projects they rely on (or any, because why cherry pick?), you can pay back in a different way and try to contribute once in a while. Just pay it forward. Yes you somebody put a lot of work in the stuff that you use. And you put some work in stuff that others get to use. If enough people keep on doing that (and the success of OSS hints that they do), OSS will be here to stay.
Instead of a dollar from github users, I think it should just be a hefty tax on big tech companies that have valuations of over a billion. The nature of software and tech means that there are massive monopolies where winner takes all. We should just accept that and leverage it.
One thing I thought that got me interested about Brave was this part of their business modell. It had the potential to support this type of economy almost without any attrition. It was not that different from flattr, with the difference that people would be able to contribute just by accepting the notification ads and passing along their earnings.
Unfortunately, the crypto angle made sure that mostly degens and speculators got into it. Perhaps if stabletokens were more established by the time they started, it would be easier to market it.
(I am not going to get into yet-another discussion about Brave as a company. I will flag any attempt at derailing the conversation.)
>It is crazy, absolutely crazy to depend on open source to be free (as beer).
Why? It's not crazy at all. It's the status quo with no sign of things changing. It is both possible right now and likely continue. Its not crazy.
If it's not worth maintaining people will stop. If people need it they will develop it. The current incentive structure has produced lots of open source code that is being maintained.
>It is not okay - it is not okay to consider that this labor fell from the sky and is a gift, and that the people/person behind are just doing it for their own enjoyments.
It is if there is no cost. You can always charge for it. But you can't make it free then pretend its not.
Static rules will be gamed.
It's easy to predict what sort of incentives this would produce, and how bad they would be. Fewer users and way more spammy projects to say the least.
GH could easily end up having to spend more than it collected in fighting abuse.
> Those funds would then be distributed by usage - every mention in a package.json or requirements.txt gets you a piece of the pie.
Could have worked before LLMs.
Also, funding by popularity would mean alternatives would have a harder time to emerge and get the funding they need to compete against the established popular projects.
Being an Open Source project doesn't mean that it provides the best solution to the problem it's supposed to solve. Diversity is important.
Many open source projects are created by engineers being paid to solve a problem their employer has, and they just happen to release it freely.
I don't think Google needs a dollar every time I write a script in golang or run a container in kubernetes, and I would put a lot less trust in Envoy if I thought Lyft was building it profit and not because they needed to.
I do like this idea, as it seems easy to implement. Github can just increase its prices by $1/month/orguser and that fund could end up with like, i think, 6 million per month. Thats a sizeable amount of money and could help in making open source more sustainable & attractive.
>it is not okay to consider that this labor fell from the sky and is a gift, and that the people/person behind are just doing it for their own enjoyments
Goodbye 90% of open source software I guess then
Great. That would mean that 98% of the github users would leave it.
He said only for org users. Orgs are already paying github, 4-20$ per month per user.
The post is about users who have paid plans
This is a terrible idea in my opinion and it's been tried/is being tried by services like thanks.dev. Yes, we need something here but this is not it. The reality is more complex.
It doesn't work well in practice. Because then people like https://github.com/sindresorhus?tab=repositories&type=source would get a shit ton of money because of the pure number of dependencies. And yes our stack also contains his code somewhere in a debug UI but our main product is entirely written in a different programming language with way fewer dependencies but if one of them goes away we'd be in trouble. In other words: Dependency count is not a good metric for this.
GitHub actually offers something in that direction: https://github.com/sponsors/explore
My "idea": Lots of companies will have to create SBOMs anyway. Take all of those but also scan your machines and take all the open source software running on there (your package.lock does not contain VLC etc.) and throw it in a big company wide BOM, then somehow prioritise those using algorithms, data and just manual voting and then upload that to some distributor who then distributes this to all the relevant organisations and people and then (crucially) sends me (as a company) an invoice.
We've tried doing the right thing but sponsoring is hard - it works differently for every project/foundation and the administrative overhead is huge.
The reality is that "we" as an open-source community suck at taking money and I believe this is partially on us.
I'd support this if only to end the nightmare that is the JS ecosystem
should be the transitive dependencies, not just top-level (so the lock file or equiv) or you just reward the "barely wrap it and give it a new name" js crowd even more.
Schemes like this have a way of getting captured.
the problem with any approach like this based on usage metrics is that it will be abused to death
<humour> sounds like socialism amirite?</humour>
In principle it sounds like a grand idea, although there are a bunch of corner cases like how it works cross country borders, and de-anonymising maintainers.
If it was opt in for opensource projects, and there are strong guards against people forking/hard takover-ing then yes, it seems like a good idea in principle.
I will leave the AI enthusiasts to chime in about the future, and how we don't need OS anymore.
I disagree, due to github copilot and other AI crap Microsoft is adding to GitHub, they should pay us 5 USD per month.
Did you read the article? Though I can agree the title is bait.
Yes I read it, but still, charging me $1 so M/S can spy on what I do and make money off of it by selling my work to large corporations is wrong.
But if they really wanted to do what the article says, create a project and people can donate what the want. For example, if M/S sends me $5 per month, I can redirect it to various open source projects instead.
When I was on GH, I did donate a little per month to 2 projects, it was a nice way to do that. But I moved off because I do not want to give M/S more personal information (like my Cell #), so I send a few $ to them using other means.
the payment isn't the problem so much as the payment processing. They wouldn't support crypto, even if they did, getting crypto without KYC hassle is a PITA, not worth it for paying one company $1. Not associating your real identity with a github repo is very important to most github users.
Payment could solve lots of problems, but there is no real and meaningful cash-equivalent payment system or method. This isn't a tech problem either, governments allow cash payments, but if it is digital, they won't allow any means that preserves privacy. Money laundering is their concern. You can't solve this without laws changing. Even if I don't mind buying crypto with a credit card, I still have to go through proving my identity with my id card, as if my credit-card company didn't do that already.
payment is a huge barrier to commerce these days, people think LLMs will change the world, but payment tech/laws will have a bigger effect in my opinion.
Let's say HN mods go a little crazy one day and want to let us tip each other for good posts and comments, imagine if all they had to do is add an html tag in the right place and that's it. All we had to do is click a button and it just works, and there is no exposure of private information by any involved party, and you could fund that payment by buying something (a card?) at a convenience store in person, just as easily as you could with a crypto payment, moneygram or wire transfer.
I __want__ to pay so many news sites, blogs,etc... I don't mind tipping a few bucks to some guy who wrote a good blog, or who put together a decent project on github that saved me lots of time and work.
It isn't merely the change in economics or people getting a buck here and there, but the explosion in economic activity you have to look at. The generation of wealth, not the mere zero-sum transferring of currency. This is the type of stuff that changes society drastically, like freeways being invented, women being able to ride bicycles, airplanes allowing fast transport, telegrams allowing instant messaging,etc..
Everyone being able to easily pay anyone at all, including funding private as well as commercial projects would be more disruptive than democracy itself, if I could dare make that claim. There is freedom of movement, there is freedom of communication and last there is freedom of trade. these are the ultimate barriers to human progress. Imagine if everyone from texas to beijing could fund research and projects, trade stocks in companies (all companies in the world). You won't need governments to fund climate change work, I think eventually taxation itself will have to suffer, because people would be able to direct exactly where their funds went. Not just what department in the government gets a budget, but exactly what projects they spend it on. being able to not just talk or meet each other instantly (and even those have a long way to go) but to also collectively or as individuals found each other, governments and companies, that'd be the biggest thing that could happen this century.
This could be done, but again, we don't need better tech as much as we need a change in attitude. For people to actually believe this would result in a better world for them.
You do not want to add profit incentives like this to FOSS.
Profit incentives like the one suggested is what brought us enshitification.
And the code is a free gift, unless the licence says otherwise. What's wrong with letting developers choose what to bill for?