linuxmemes

20880 readers

7 users here now

I use Arch btw

Sister communities:

LemmyMemes: Memes
LemmyShitpost: Anything and everything goes.
RISA: Star Trek memes and shitposts

Community rules

Follow the site-wide rules and code of conduct
Be civil
Post Linux-related content
No recent reposts

Please report posts and comments that break these rules!

founded 1 year ago

MODERATORS

[email protected]

805

Seeing big companies take advantage of BSD or MIT licensed projects without sharing their contributions will always pain me. (lemmy.world)

submitted 2 months ago* (last edited 2 months ago) by [email protected] to c/[email protected]

80 comments fedilink hide all child comments

you are viewing a single comment's thread
view the rest of the comments

[–] [email protected] 7 points 2 months ago* (last edited 2 months ago)

We have a scanner that does that on every build.

It blocks builds for dependencies with

licenses not acceptable to Legal
serious or critical vulnerabilities.
political messages, even if you agree with them
we may also add a criteria to block non-release dependencies.

As a developer, you’re free to use anything that works

I have yet to figure out how my company views contributing back to open source. I don’t know of anyone actively doing that, but it turns out we host a few originals of open source. I’ve been trying to improve development processes, get tools and dependencies up to date ….. but then I ran into things where it’s a bigger change because of the downstream opensource dependencies and because it’s not really owned by the company