Anyone have the story behind this? Fuck Microsoft and all that, but Github has historically been pretty good when it comes to not banning people for stupid reasons. Usually, it’s a DMCA thing or a valid security threat.
Recently, there was some controversy about closed source code powering a component of the project (https://github.com/orgs/organicmaps/discussions/9837) but I didn’t keep up with that. Could this ban be related to that?
Some contributer got flagged by US sanctions based on their IP, I think
That’s weird. Russians and Americans aren’t sanctioned from working on projects together. The sanctions are mostly targeted towards industry and defense. Tucker Carlson works for Russian media and freely travels between the two countries. There has to be something more to this, like the IP came from a known state actor.
They got unbanned, but it eroded trust that it won’t happen again
Ironically the US is more likely to drop the sanctions before Germany, where Codeberg is based.
Edit: They’ve gone self hosted. That makes more sense.
Welcome to the “free world”.
Russia is free to fuck off out of Ukraine, simple as.
I’m sure there is a lot that the random developer who happened to be born in Russia can do about that.
“Bro, just overthrow your government”. ~ random redditor, probably.
conservative: says a racial slur
Online Platform: bans user
conservative: “sO mUcH fOr tHe tOlEraNt lEfT 😡”
Person: *makes an app for everyone to use*
Twitter baby: “Racial slurs! Racial slurs!”
deleted by creator
Eh, you don’t really have a point when people get banned for saying men aren’t women.
Please elaborate? What exactly do you mean?
deleted by creator
Let me give you an analogy.
I was born in the People’s Republic of China. I immigrated to the United States of America when I was not even 10. I grew up in America, I grew attached to the principles of Freedom and Democracy. I went through the proper channels and I obtained Citizenship through the proper way. I am an American.
If someone were to tell me that I’m “not American”, and that because I was “born Chinese, I must be Chinese for the rest of my life”; or, in your phrasing: “A Chinese person cannot become American” you’d be a xenophobe.
Gender is a social contruct. If a man wants to be a woman, or a woman wants to be a man, just let them. Its not denying that they have XX or XY chromosomes, that is what their biology says. But being a “Man” or “Woman” are labels society attributes to those chromosomes, just like the concept of Nationality.
TLDR: Please just let people be whoever they want to be. If you start attacking people’s identity, nobody is gonna wanna talk to you. If you want to spread transphobia, you can go to twitter. Enjoy your nazi bar.
deleted by creator
Very interesting 🤔💭
I love organic maps, sometimes I practice navigation by turning location off and using a compass with the downloaded map on my phone.
deleted by creator
What is really needed is a fediverse for git repos
First off, that’s literally what Forgejo is trying to do
Secondly, git is technically already federated.
Things are a lot better than you might think. It’s just that people naturally gravitate towards centralized services, because of the network effect.
Sounds cool, So, but I wouldn’t be able to find Codeberg Repos.?
But is there also a standard for build pipelines?
This post is stupid. The whole reason they are blocked is because Russia invaded ukraine, so the US sanctioned them, so Russian developers can’t use Github, not because “microsoft bad” (true but irrelevant in this case) but because Microsoft is legally obligated to block them.
Fuck russia. Honestly this post makes Microsoft, Github and USA look good, and Organic Maps look bad. Organic maps should ban russian developers from contributing.
Honestly after this post I will avoid Organic maps. More like genocide-complicit maps amirite.
Upvoting for the concise summary of what the article is about (thanks!); not for the opinion expressed (which appears to conflate Russian developers with the actions of the Russian government – something I find problematic at best).
Nothing personal against russian FOSS developers. They should be blocked (sanctioned) from contributing until the sanctions are stopped.
Are you aware of how much open source work comes from Russians? Russians != Russian govt.
Russian bots down voting you.
This is how sanctions work. Don’t like it? Get your government to stop invading Ukraine.
Get your government to stop invading Ukraine.
How about we get the american government to stop supplying Israel with bombs they drop on Gaza? Oh, I guess that’s too much effort.
Not a Russian bot. Down voted it because GitHub is still a poor choice to host open source on nowadays. It’s like someone saying “It’s stupid that such and such switched to renewable energy instead of fossil fuels because they believe the world is flat. The world is not flat!” It’s really missing the forest for the trees.
Proceeds to use open source tooling with numerous contributions from US-based software developers
I don’t think I want my government deciding who can contribute to my open source project.
When Trump gets into a dick measuring contest with a US ally and sanctions them, POOF foreign contributors are gone. Community management, codebase familiarity, and open PRs be damned. It’ll kill open source projects.
Fuck russia. Honestly this post makes Microsoft, Github and USA look good, and Organic Maps look bad. Organic maps should ban russian developers from contributing.
I… don’t follow. How does this make the Microsoft, Github, and USA look good? The policy here is absolutely stupid.
Me too. I presume half of the votes on this comment are upvotes because they only read the first half of it.
Can you please explain how you come to such a conclusion of your second half, OP? Like you saw, we really don’t follow.
Moving off of GitHub is still good, even if you believe their reasoning behind their reasons is incorrect.
deleted by creator
I have nothing against Russian developers. But I do think they should be completely isolated and blocked from the outside world. That’s the whole point of sanctions.
deleted by creator
no.
deleted by creator
That makes sense when it harms business being done in that country, people’s opportunity to find jobs and stuff like that.
But blocking people from working for free on open source projects where there’s nothing to be gained is harming progress, not individuals or countries. That’s not what sanctions were made for.
By your logic developers in the US shouldn’t be allowed to contribute to free software either, after all the US is committing genocides and threatening to invade other countries
If some country will sanction US that is hosting FOSS, absolutely. That’s not mutually exclusive with this.
Well, yeah. That’s literally the point of sanctions.
The point is to protect national interests, not reject free contributions from normal people for non-security critical but useful software projects which is just idiotic
The US supplied 80% of the bombs dropped on Gaza.
Do you believe US civilians should be prohibited from interacting with the rest of the world?
I mean, it’s probably in their best interest to avoid us. We are a terrible country.
As a US citizen. YES. FFS, the point of sanctions is to compel a change or deter an action. Americans might pay way more attention when the rest of the world puts us in timeout because of the terrible leadership.
Research has shown it has historically had very little to no impact on policy. What it does do is harm the lowest rungs of society.
For example a 2019 report on Trump’s Venezeuala sanctions estimate up to 40,000 people died. Mostly poor people who went without healthcare and medicine because the US froze all of the government’s funds and access to credit.
In my opinion, I’d prefer if we just bombed civilians in the countries we sanction. It’s more honest. It really is a form of low level warfare. Something akin to a medieval raiding party
It is the lowest rung that supports the russia invasion in ukraine.
Attacks against civilian targets are war crimes. When you do it through sanctions its OK.
I’m just asking that we are more honest about it. For example instead of putting sanctions on Venezuela we could have just done what Israel is doing to Gaza and gotten similar death toll.
but_what_about_.jpg
Do you believe US civilians should be prohibited from interacting with the rest of the world?
Yes…? Why haven’t other countries sanctioned the US for Gaza genocide? But that’s also not the point at hand.
How the fuck is banning people in certain countries for something they don’t have control over from contributing to small projects like this doing anything but shooting the FOSS ecosystem, which already has a severe shortage of developers, in the foot?
but_what_about_.jpg
whataboutism isn’t some magical phrase that you can utter every time someone brings up hypocrisy
if we’re going to support sanctioning civilians based on their countries breaking international law, then we should not have double standards. otherwise it’s very clear to anyone paying attention that this is a geopolitical issue and not a moral one.
and that’s what this is actually about. the US sanctions on Russia are a geopolitical tool meant to make the Russian re-subjugation of Ukraine more expensive. that’s it. US doesn’t actually care about Ukraine- neither this administration or the last.
to me, that doesn’t justify banning individuals from participating in OSS projects. anybody that wants to contribute should be able to.
why is Organic Street Maps better than the other ones, that claim to be Open Street Maps derived?
bandwidth is not disposable ya’ll.
Two reasons:
- interface rocks
- maps are downloaded for offline use
I’ve been using OsmAnd for years, and offline maps has always been one of their main things.
OsmAnd is okay, but I really like the interface of Organic Maps better.
Organic Maps is definitely easier to use, especially for new users but OsmAnd is more powerful. I have both and they’re awesome.
I wish there was some way to share the assets since they use the same base data. I use osmand because I find it better for hiking and route planning to send to my watch, but would use organic as well if I I didn’t need to keep two copies of the maps.
Yeah I know what you mean. Map downloads especially can take up a lot of space/take a lot of mobile data to download. I tried to copy them across manually once but it didn’t work.
that’s enough for me, except are the other ones not good?
downloading maps for offline – you nuts? how does anyone profit from the clicks?
They don’t - but at the same time it saves a ton of money on bandwidth
that is an extra plus feature i always wanted from a “smart” phone - offline maps. i spent money on some of those apps back when it was kicking off and a very few of them were actually helpful, like showing me actual USGS topo maps.
would not have helped me that much for survival on my Hawaiian big island fuckabout, because even the big island is not big enough to get truly lost. i tried!
eventually I went downhill on the volcano towards the ocean for a day or two until cell reception and called my girlfriend and told her I hit my head pretty hard and she should come get me.
still the maps would have been super interesting. also, Red River Gorge, and all the southwestern N. America desert.
I tried a lot of them and i like the interface of Organic the best.
Whyyy???
https://mastodon.social/@organicmaps/114155428924741370
Looks like a contributor was in a sanctioned region?
Looks like a contributor was in a sanctioned region?
Not according to that thread - it looks like they don’t yet know what caused it:
https://mastodon.social/@organicmaps/114178916120483761
No any details from GitHub yet. One contributor mentioned a temporary visit to disputed areas a long time ago — GitHub probably just flagged the account, and their bots messed up after that.
GAFAM is all one hydra.
Insane that Github blocked their entire development without discussing it with them though. Ban the contributor, not the entire open source project.
Sounds like an easy way to do unproportional damage to projects with a bit of location spoofing.
I was very surprised to learn that .NET has an entire team in North Korea
And all of them sharing a single 26k connection, too
I heard they got upgraded to DSL
sanctioned region
What’s that?
A country the USA doesn’t like
Seems so arbitrary that they just block the entire project instead of the user in the sanctioned region.
¯_(ツ)_/¯
Probably for the best, GitHub seems like a liability (to a lamen like me, anyway)
Ah, the threatened oligarchy is at it again. I’m sure its purely a coincidence and not at all a retaliation for people abandoning big tech en masse.
is forgejo the same thing as codeberg? it looks similar… just curious
Codeberg is a forgejo instance, yes
Forgejo is such a terrible name 🙄
That’s because it’s using a language you don’t speak.
I love Esperanto, so to me forgejo is very cool
Foregejo : codeberg = lemmy : blahaj.zone
Forgejo being a fork of gitea
And gitea is the fork of gogs, just to complete the family tree
I believe Forgejo lets you self host while Codeberg provides the hosting.
Let me give you a rather long explanation for fun.
CodeBerg ≈ GitHub
Now imagine if Github allowed you to self-host your own Github instance; That’s ForgeJo
CodeBerg is a Forgejo instance
Extremely based
Nice!
I actually recently set up my own Forgejo instance, and it’s remarkably similar to GitHub, to the point where they share Github’s “actions” code.
Congrats! More hosting diversity is a good thing.
Yep I got one too. Works great and self hosted. I swear its actually faster than GH is nowadays.
And I like that it doesn’t try to advertise and recommend a ton of repos to do you like GH does now.
GitHub has slowly become an advertising platform for repos more than anything. I miss what it was just a couple of years ago. It did exactly what you needed when you needed it. Now it’s just so bloated
The releases page is just as easy to find!
I love that they have scoped labels while GitHub still doesn’t
Oh…I was interested until you said actions. What a terrible system for ci.
What’s wrong w/ actions? Is there something else you prefer?
I think they’re quite powerful. There are a variety of triggers, runners are fairly easy to configure (easy to scale up), and the syntax is pretty straightforward. It seems to work pretty well.
I prefer Gitlab CICD but there are many. Actions had a lot of potential. Then Microsoft bought GitHub and just slapped the Actions label on their CI. If you pull off the mask, it is just Azure devops.
I do too. I kinda miss Jenkins but a lot of the conveniences in GitLab’s CI are really nice and it’s better for 99% of use cases.
Every other ci in existence you just write a command. Then if it doesn’t work you run the command on your machine and fix it.
Actions are “magic” which means you have to fake the ci runner with tools and reverse engineer the action to run local debugging and if it failed you might not even fully know what was running with digging into the actions source.
GitHub provides you the tools and their “easy” until they aren’t.
It’s very Microsoft though. It feels like trying to write a Windows app and trying to get your random Net environment definition to line everything up and compile in VS then hoping the same thing happens when you deploy.
You can just write bash scripts in your actions if you want them to be easily replicatable on your local machine, so you don’t really lose anything with that system.
Forgejo Actions is definitely not a turnkey idential-to-GitHub solution, but it’s quite similar and for most not-super-complicated setups it’s basically the same (for better or worse, depending on if you like GH’s Actions).
As far as I remember, everything that I need works out of the box, except for Docker. In fact, just about everything Docker is somewhat quirky in Forgejo Actions.
-
One mildly annoying quirk of Forgejo is that as of current, the token generated for each Actions run is not quite the same as GitHub’s token. For my specific use case, if you want to upload a Docker Image to the package repository, you can not use the standard auto-generated token, which GitHub does allow you to use. Forgejo instead currently requires you generate your own app token and use that instead, as the auto-generated one lacks permissions over packages. (https://codeberg.org/forgejo/forgejo/issues/3571)
-
Depending on your infrastructure, it might just be impossible to make the various Docker-related actions (such as https://code.forgejo.org/docker/build-push-action) work. As an example, my infrastructure outlined below is one such case where those actions simply do not work.
Bare Metal (Debian 12) / ├─ Rootless Podman/ ├─ Forgejo ├─ Forgejo Runner ├─ Podman-in-Podman (Inner Podman also Rootless)/ ├─ <Actions Containers Run Here> * If you use rootful Docker with Docker-in-Docker, those actions will then work as expected. It is just that attempting to make them work with Rootless Podman (at least the version that ships with Debain 12) currently seems to be impossible.- that’s really too bad, I hope that gets resolved soon
- that’s a pretty old version of podman (4.3 looks like?); also, why have nested podman? My infra is something like this:
Bare Metal ├─ Rootless Podman ├─ Forgejo ├─ Rootless Forgejo Runner (planning to run on another machine entirely) ├─ <Actions Containers Run Here>I doubt the extra level of nesting is the issue though. If your issue is networking, then maybe the version of podman is the issue, since they switched out the networking layer in 5.0. I upgraded for a related reason, though I’m still getting some odd issues (mostly w/ the DNS resolver).
I haven’t gotten to cross-compiling just yet, nor have I needed to build a docker image since my projects are very much in the testing phase. But maybe I’ll give it a shot soon, since it’s better to catch these types of issues before it becomes a bigger problem.
I agree that it is quite possibly related to the version of Podman moreso than an inherent issue. I am currently satisfied, however, and have no desire to fiddle with it any more… Or at least until Debian 13 gets released.
My use of PinP is almost entirely for cleanliness. It allows me to more easily for me to wipe clean the build environment (clear out space, troubleshooting). It also mildly improves security as the ‘untrusted’ actions containers run on a separate environment from the important Forgejo container.
The workaround I use for the premade Docker actions not functioning is to simply install Podman as one of the build steps and use that instead, lol. (Some configuration required, but that’s the gist.)
-
Why did they get removed? I feel like I’m missing a whole backstory here.
Apparently, one of the contributors did a push while visiting Cuba and since Cuba in sanctioned by US they just blocked the entire repo. Insane.
Source?
https://news.ycombinator.com/item?id=43492578
Other places mentioned ‘U.S. sanctioned region’.
Probably.
No self-respecting DEV would update README.md…
They’re a direct competitor to one of microsoft’s products, and a better one at that.
Seemingly one of the contributors has visited a disputed region and logged into GitHub from there. By law (export controls) Microsoft must not provide service to that place. So some automatism flagged the account and also the organic maps repo. So far so normal. But either Microsoft dragged it’s feet in communicating and resolving the issue or the organic maps team was not doing their part in the process. Doesn’t matter, the outcome is still worth it.
What are we, North Korea? We can’t accept information from certain countries? I can understand being wary of state-sponsored information terrorism, but “Hey, here’s a Cuban road? A good place for a guava and cheese pastry?”
Come on. This was really the trigger?
By law (export controls) Microsoft must not provide service to that place. So some automatism flagged the account and also the organic maps repo. So far so normal.
not normal at all! don’t serve the website. that is normal. but ban anyone logging in seemingly from there, on sight? that’s literally “shoot first, ask later” in tech! totally abnormal, if this is the reason
I wish, but when I am looking gor a job the employer will look at the green squares and leetcode score or something stupid like that instead of my projects or having a discussion in general.
Wrong thread?
I presume they mean the green squares on their GitHub account.
