logo

drewdevault.com

[mirror] blog and personal website of Drew DeVault git clone https://hacktivis.me/git/mirror/drewdevault.com.git

Spamtoberfest.gmi (5464B)


  1. As I’ve written before, the best contributors to a FOSS project are intrinsically motivated to solve problems in your software. This sort of contribution is often fixing an important problem and places a smaller burden on maintainers to spend their time working with the contributor. I’ve previously contrasted this with the “I want to help out!” contributions, where a person just has a vague desire to help out. Those contributions are, generally, less valuable and place a greater burden on the maintainer. Now, DigitalOcean has lowered the bar even further with Hacktoberfest.
  2. => https://drewdevault.com/2020/08/10/How-to-contribute-to-FOSS.html Previously: I want to contribute to your project, how do I start?
  3. Disclaimer: I am the founder of a FOSS project hosting company similar to GitHub.
  4. As I write this, a Digital Ocean-sponsored and GitHub-enabled Distributed Denial of Service (DDoS) attack is ongoing, wasting the time of thousands of free software maintainers with an onslaught of meaningless spam. Bots are spamming tens of thousands of pull requests like this:
  5. ```
  6. Subject: [PATCH] Update README.md
  7. ---
  8. README.md | 2 +-
  9. 1 file changed, 1 insertion(+), 1 deletion(-)
  10. diff --git a/README.md b/README.md
  11. index cafbfd0..327c4d4 100644
  12. --- a/README.md
  13. +++ b/README.md
  14. @@ -1,4 +1,4 @@
  15. -# Hundred Rabbits
  16. +# Hundred Rabbits #
  17. ```
  18. => https://github.com/search?q=amazing+project+is:pr&type=Issues Search "amazing project" on GitHub for more
  19. The official response from both Digital Ocean and GitHub appears to be passing the buck. Digital Ocean addresses spam in their FAQ, putting the burden of dealing with it entirely on the maintainers:
  20. > Spammy pull requests can be given a label that contains the word “invalid” or “spam” to discount them. Maintainers are faced with the majority of spam that occurs during Hacktoberfest, and we dislike spam just as much as you. If you’re a maintainer, please label any spammy pull requests submitted to the repositories you maintain as “invalid” or “spam”, and close them. Pull requests with this label won’t count toward Hacktoberfest.
  21. => https://hacktoberfest.digitalocean.com/details via the Hacktoberfest FAQ
  22. Here’s GitHub’s response:
  23. > The content and activity you are reporting appears to be related to Hacktoberfest. Please keep in mind that GitHub Staff is not enforcing Hacktoberfest rules; we will, however, enforce our own Acceptable Use Policies. According to the Hacktoberfest FAQ… [same quote as given above]
  24. => https://twitter.com/kyleknighted/status/1311685461828612097 via @kyleknighted on Twitter
  25. So, according to these two companies, whose responsibility is it to deal with the spam that they’ve created? The maintainers, of course! All for a T-Shirt.
  26. Let’s be honest. Hacktoberfest has never generated anything of value for open source. It’s a marketing stunt which sends a deluge of low-effort contributions to maintainers, leaving them to clean up the spam. I’ve never been impressed with Hacktoberfest contributions, even the ones which aren’t obviously written by a bot:
  27. ```
  28. Subject: [PATCH] Improve indentation and add some comments
  29. ---
  30. styles.css | 6 +++++-
  31. 1 file changed, 5 insertions(+), 1 deletion(-)
  32. diff --git a/styles.css b/styles.css
  33. index 928298b9f2..63e4787c44 100644
  34. --- a/styles.css
  35. +++ b/styles.css
  36. @@ -6,7 +6,7 @@
  37. width: auto;
  38. - padding: 0.5em 0.75em;
  39. + padding: 0.5em 0.75em; /*top and botton: 0.5rem , right and left: 0.75rem*/
  40. font: small Helvetica Neue, sans-serif, Droid Sans Fallback;
  41. @@ -14,7 +14,9 @@
  42. }
  43. .dfnPanel * { margin: 0; padding: 0; font: inherit; text-indent: 0; }
  44. .dfnPanel :link, .dfnPanel :visited { color: black; cursor: pointer; }
  45. +
  46. /* Delicate specificity wars to pretend isolation from pre:hover rules elsewhere... */
  47. +
  48. .dfnPanel *, pre:hover .dfnPanel * { text-decoration: none; }
  49. ```
  50. Hacktoberfest is, and has always been, about one thing: marketing for Digital Ocean.
  51. > In 2017, I asked them to stop sending people to one of my (joke) repos because we also got flooded with PRs. They answered they couldn't do anything on their end. In 2019, they sent us a ticket accusing us of enabling cheaters or something, but kindly "allowed" us to keep the repo.
  52. => https://oc.todon.fr/@val/104960502585461740 via @val@todon.fr
  53. This is what we get with corporate-sponsored “social coding”, brought to you by Digital Ocean and GitHub and McDonalds, home of the Big Mac™. When you build the Facebook of coding, you get the Facebook of coding. We don’t need to give away T-Shirts to incentivize drive-by drivel from randoms who will never get any closer to open source than a +1/-1 README.md change.
  54. What would actually benefit FOSS is to enable the strong mentorship necessary to raise a new generation of software engineers under the tutelage of maintainers who can rely on a strong support system to do their work. Programs like Google Summer of Code do this better. Programs where a marketing department spends $5,000 on T-Shirts to flood maintainers with garbage and clothe people in ads are doing the opposite: hurting open source.
  55. => https://twitter.com/shitoberfest Check out @shitoberfest on Twitter for more Hacktoberfest garbage.
  56. Update 2020-10-03: Digital Ocean has updated their rules, among other things asking maintainers to opt-in, to reduce spam.
  57. => https://hacktoberfest.digitalocean.com/hacktoberfest-update Digital Ocean: Hacktoberfest update