Comment by hypfer

Comment by hypfer 2 months ago

6 replies

View on Hacker News

I think the problem isn't it being open source but it being GitHub flavored open source. If you're building a product, you probably should not be having it on GitHub with issues enabled.

There are very good reasons why the support processes of commercial entities that build products are the way they are. You do want a lot more friction and you do likely want to limit support to paying customers.

GitHub-style public issue trackers are just a bad idea overall IMO. They only work if the "public" is only "public" because everyone _in theory_ could take part. In practice however, you only want to grant such unlimited write access to vetted individuals. This happened to happen automatically previously (because getting to the point where you even know where to open a ticket _was_ part of the vetting process), but with GitHub as the default for everyone and everything, it needs to be a conscious effort.

If you think about it, it is completely insane how any random individual just has to press one button to publish whatever they want to a super prominent part of what is effectively your products/projects website. That simply shouldn't be a power random individuals have

antimemetics 2 months ago

You can restrict issue creation/comments etc to certain users if you don’t want to open it to the public. You can also use a separate repo: https://docs.github.com/en/repositories/creating-and-managin...

It’s a choice the maintainer has to make.

To me this is mostly self inflicted pain…

Reply View 2 replies
  • hypfer 2 months ago

    Yes and no.

    Sure, countermeasures exist, but the issue is that you first need to be aware of what exactly the problem is before you can take these countermeasures.

    The reality however is that people just hear "You should do GitHub" and then for some inexplicable reason slowly descend into feeling bad without any clear reason why. After all, they're following all the "best practices" laid out by people that clearly know what they're doing and surely have their best interest in mind.

    Reply View 1 reply
    • fiatpandas 2 months ago

      I think you’ve just argued that devs have a lack of knowledge and just do what other people do with very little agency of their own, despite all the controls being available to them to them to solve problems. I agree with you. Devs need to be stronger willed and have more self respect. You can’t wait for rando users to stop being a-holes.

      Reply View 0 replies
vladms 2 months ago

I can't feel that this stance will could soon evolve into "it is completely insane how any random individual ... can access the source code".

Open source was built on the spirit of openness. Rather than closing it, I think solutions should be proposed to improve it (thinking of it, it's a good place for using LLM-s - you don't need perfection for checking a bug report makes some sense and filtering people a bit).

Reply View 2 replies
  • hypfer 2 months ago

    > Slippery slope fallacy out of nowhere

    > Throw magic at the problem to further scale resources to sustain a problem instead of actually solving said problem

    I can only encourage people to counter bullshit with minimum resource investment. Full-sentence answers should be limited to those statements deserving of them.

    Reply View 0 replies
  • kelnos 2 months ago

    That's absurd. The source code being open and redistributable is the key point.

    No open source maintainer is obligated to run a public issue tracker or listen to users at all if they don't want to.

    Reply View 0 replies