top | item 39115258 Maintainer of Rust crate 'dirs-sys' intentionally poisons dependents with MPL 3 points| rustman123 | 2 years ago |github.com 2 comments order hn newest rustman123|2 years ago They intentionally added a copyleft-licensed library (options-ext) written by himself to poison the supply chain via `dirs-sys`. (Commit: https://github.com/dirs-dev/dirs-sys-rs/commit/e169da7af901e...)The dependency adds nothing of value and can trivially be removed. (https://github.com/dirs-dev/dirs-sys-rs/pull/22/files)When asked about it, they claim to prefer MPL and that the current license was an accident they 'may or may not correct'.Popular dependents include - cross (https://crates.io/crates/cross) - terminfo (https://crates.io/crates/terminfo) cpburns2009|2 years ago MPL 2.0 is not a "viral" license like the GPL. It is cross compatible with both Apache 2.0 and MIT. The knee jerk reaction to drop dirs-sys-rs over a non-existent licensing issue makes no sense.
rustman123|2 years ago They intentionally added a copyleft-licensed library (options-ext) written by himself to poison the supply chain via `dirs-sys`. (Commit: https://github.com/dirs-dev/dirs-sys-rs/commit/e169da7af901e...)The dependency adds nothing of value and can trivially be removed. (https://github.com/dirs-dev/dirs-sys-rs/pull/22/files)When asked about it, they claim to prefer MPL and that the current license was an accident they 'may or may not correct'.Popular dependents include - cross (https://crates.io/crates/cross) - terminfo (https://crates.io/crates/terminfo)
cpburns2009|2 years ago MPL 2.0 is not a "viral" license like the GPL. It is cross compatible with both Apache 2.0 and MIT. The knee jerk reaction to drop dirs-sys-rs over a non-existent licensing issue makes no sense.
rustman123|2 years ago
The dependency adds nothing of value and can trivially be removed. (https://github.com/dirs-dev/dirs-sys-rs/pull/22/files)
When asked about it, they claim to prefer MPL and that the current license was an accident they 'may or may not correct'.
Popular dependents include - cross (https://crates.io/crates/cross) - terminfo (https://crates.io/crates/terminfo)
cpburns2009|2 years ago