Andrew PlotkinI guess the takeaway from the xz backdoor situation is:
If you’re an open-source project maintainer, and somebody starts getting on your case for not doing enough free work for them, you reply “big Jia Tan energy there” and then block them forever.
Mike Taylor 🦕@zarfeblong Hard cases make bad law. I'd want to be careful about adopting such a rule.
beetle_bThing is, it's a good rule to have even if there is no malicious intent.
As a volunteer maintainer, it is wise to always put your sanity and mental well being above the project. If you think you have the energy to deal with rude folks, by all means proceed, but do ensure you *can* handle them.
Personally, I've found the "returns" for dealing with them to be in the net negative. So I ignore/block them. I owe them nothing, even if they spent 10 days writing a beautiful patch.
@beetle_b @zarfeblong I don't really disagree, but ...
If I spent ten days writing a beautiful patch only to have it rejected because of the tone of my communication, I don't the lesson I learned would be "I need to improve my tone". It would be "It's a waste of time trying to contribute".
okanogen VerminEnemyFromWithin@Okanogen @beetle_b @zarfeblong That is true, but not necessarily practical. And almost no use at all if the goal was to give something back to the community, rather than to scratch my own itch.
@mike @beetle_b @zarfeblong
And yet you will assign a maintainer homework, and blame them for being lazy, stubborn, unreasonable, uncaring or a dictator if they don't jump when you say "hop!".
And yet you will assign a maintainer homework, and blame them for being lazy, stubborn, unreasonable, uncaring or a dictator if they don't jump when you say "hop!".
@Okanogen @beetle_b @zarfeblong Screw it, no, I won't. I'll just not contribute to projects owned by people other than me and my friends. It's the safe course. You've persuaded me.
@mike @beetle_b @zarfeblong
Sounds like the best course for everyone, but I doubt you will understand why.
Sounds like the best course for everyone, but I doubt you will understand why.
Passive aggressiveness isn't winning you any Brownie points.
I was tempted to as well.
@[email protected] @beetle_b @zarfeblong
Very interesting is the arguments used by the F-droid attacker are nearly verbatim what Mike has used here. "People won't want to contribute if this is how their contributions are treated." "I have a full time job", "Why aren't you respecting my work.".
Read through here:
https://www.404media.co/xz-backdoor-bullying-in-open-source-software-is-a-massive-security-vulnerability/
Very interesting is the arguments used by the F-droid attacker are nearly verbatim what Mike has used here. "People won't want to contribute if this is how their contributions are treated." "I have a full time job", "Why aren't you respecting my work.".
Read through here:
https://www.404media.co/xz-backdoor-bullying-in-open-source-software-is-a-massive-security-vulnerability/
You're cherry-picking from Mike's toots.