this post was submitted on 07 Dec 2023
49 points (96.2% liked)

Open Source

31253 readers
213 users here now

All about open source! Feel free to ask questions, and share news, and interesting stuff!

Useful Links

Rules

Related Communities

Community icon from opensource.org, but we are not affiliated with them.

founded 5 years ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
[–] [email protected] 3 points 11 months ago

I fundamentally distrust the language package repos with a high share of unlicensed libraries in their repositories. It's a basic legal step for protecting the software supply chain and supports the open source community.

Also, it feels like a sign of immaturity from a package repo to have many unlicensed packages since most serious maintainers see a license as an important step in declaring your software "ready" for distribution. You just can't assume a package will be maintained if the contributors aren't going to do these basic steps.

Dart's package manager actively penalises packages without a license file (at least when browsing on the website directory). Many languages, including those better at enforcing license declarations, would benefit from a similar feature.