Other people can delete your forks on #GitHub (including all changes you made!). STOP USING GITHUB NOW! Friends don’t let friends use GitHub! https://docs.github.com/en/github/building-a-strong-community/blocking-a-user-from-your-personal-account
@js What the fuck
@js luckily there should be still your local repo if this happens to you
@jr All your bugs and wiki will be gone.
@js but why should some1 block u without any reason?
@rbn93 Because they want to delete your fork? E.g. you forked because you disagreed with a decision and now they just delete your fork.
@js What the fuck?!If a repository is public,why do they delete forks if the original author can't stand me?!It's my repository then and they shouldn't care at all.Github is such a piece of shit,seriously.I'm glad I stopped using it a long time ago.
@js Fuck GitHub, use GitLab (but not gitlab.com, PLEASE) instead.
@resynth1943 Or Fossil :)
@js Honestly, what GitLab needs is some sort of federation system, so it can grow like GitHub, without centralising everything.
@js Centralisation is inherently harmful to technology, so let's fight against it.
To start off, I propose adding ActivityPub support to GitLab, and shutting down the main instance.
Furthermore, I hope matrix.org shuts down in the end, too.
@js I still have a Github account, but it's only because of pure laziness on my part. To migrate off of Github would require not merely moving the repositories elsewhere, but also updating a whole bunch of links to my blog articles and so forth.
I tried self-hosting a Fossil repository, and within 3 weeks, the server was compromised and became a member of some botnet. So, I gave up on that idea; I just don't have the chops for maintaining a secure box anymore.
@vertigo What did you do they compromised it?
@js I don't understand the question?
This was a fresh VM install of Ubuntu 19.10 at Rackspace, with Fossil installed as a CGI handler, per their instructions on their wiki.
Beyond that, I don't know how it was compromised; only that it was attempting to dictionary-attack other servers on the hosting provider (which is how I found out about it; hosting provider complained) and mine bitcoin.
All of my passwords are 16 characters long minimum and picked randomly; weak passwords weren't an issue.
@vertigo that’s concerning :/. Hope it was not a bug in Fossil. Though I already did find a security bug in there.
@js I also managed to completely break chiselapp.com's Fossil by (accidentally!) importing a commit that included npm's package repository. It refuses to accept anything I push to it, and it gets my IP address wrong now. So, there's that too.
Note to everyone: make sure you don't commit a change that happens to include the node_modules subdirectory. You'll probably break your Fossil.
I'm saddened b/c I **really** like and want to use Fossil.
@vertigo Can you repro that? That would be interesting
@js I have not tried to repro out of fear that I'd ruin chiselapp.com somehow. (Chiselapp frequently is in a state of disrepair.)
@vertigo I mean if it’s Fossil you should be able to repro locally and use fossil ui?
@js I don't know how chiselapp is implemented on the backend. I haven't tried to repro locally.
@js dam, that's ridiculous. i usually create new repos for forks and leave a link in readme, but i did not expect that not doing so would let people censor and delete the work i've done that i might not have stored elsewhere
what's worse, it might not even be the repo author but anyone who gets access to their account
@email@example.com What a troll move would it be to block everyone on a huge repo and remove the block... results: no one is blocked an all fork repos are deleted.... everyone will use the original one from that point (and maybe it can make this nonsense more visible to the media)
@js are you fucking KIDDING me
@compufox I wish…
@js Wait what?
@reto Might even violate German and Swiss "authorship rights", depending on how they do it.
@reto You do. They are rights that you have and cannot even give up.
So, if I want to be attributed for it, GitHub can't decide to remove attribution.
@reto Plain explanation: https://en.wikipedia.org/wiki/Moral_rights#In_Europe
@reto Except - GPLv3 requires attribution. And even documenting changes.
@reto Ugh, this is a bad medium for this
Unmodified distr: Need to keep all copyright notices (would be violated by removing attribution)
Modified distr: "a) The work must carry prominent notices stating that you modified it, and giving a relevant date." (GitHub would make you violate that)
Many consider the git history to be documenting changes with prominent notice + date.
So, it depends on how GitHub removes attribution.
@reto Signed-Off-By has a different reason. Many projects use a VCS to document changes as required by the GPL.
all your fork are belong to us
chaos.social – a Fediverse instance for & by the Chaos community