This is amazing:
https://www.bleepingcomputer.com/news/security/dev-corrupts-npm-libs-colors-and-faker-breaking-thousands-of-apps/
tl;dr:
1. a developer of a bunch of popular #npm packages publishes new, intentionally broken versions of them as he doesn't want to support for-profit companies with his free work;
2. NPM *reverts* the packages to older versions against developer's wishes;
3. GitHub *blocks* the developer for acting "irresponsibly".
That story again: developer blocked by #Microsoft #GitHub for making changes to his own code.
This is why #AGPL and @forgefriends are so important!
@gargron @rysiek If you don't want to support BigTech, then don't use "permissive" licenses. Use AGPL. The problem is: Most people don't understand Copyright and licences. So they find their way to choosealicense.com which is curated by Microsoft Github. It prominently advertises the MIT licence with "I want it simple and permissive". This phrase sounds fair and good to most people. But permissive actually means "I permit BigTech to run their profit-driven thing with my code".
@t0k @ffeth @Gargron that's all correct. In practice, though, Big Tech will do anything they can to keep away from AGPL'ed code, as exemplified by Google's internal policies banning their employess and contractors from even having AGPL'ed code on their work laptops:
https://opensource.google/docs/using/agpl-policy/
> Do not install AGPL-licensed programs on your workstation, Google-issued laptop, or Google-issued phone without explicit authorization from the Open Source Programs Office.
@ffeth @gargron @rysiek Also the #AGPL does allow to make profit. And that's fine. But it requires to play a fair game. That's what the BigTech companies fundamentally don't like. Because many fundamentally can't play such a fair game.