850
submitted 4 months ago by 0x815@feddit.org to c/technology@lemmy.world

GitCode, a git-hosting website operated Chongqing Open-Source Co-Creation Technology Co Ltd and with technical support from CSDN and Huawei Cloud.

It is being reported that many users' repository are being cloned and re-hosted on GitCode without explicit authorization.

There is also a thread on Ycombinator (archived link)

top 50 comments
sorted by: hot top controversial new old
[-] bionicjoey@lemmy.ca 366 points 4 months ago

Solution: create a GitHub repo with Markdown articles outlining human rights abuses by the CCP and have a large number of GitHub users star and fork the repo.

[-] Colonel_Panic_@lemm.ee 167 points 4 months ago

You've heard of CamelCase and lowercase and intVariableName variable naming styles. Get ready for:

for (int Taiwan == 0; Taiwan < HongKong; Taiwan++) { int TianamenSquare == 0; ... }

[-] Tramort@programming.dev 90 points 4 months ago

That's the whole point of this: they will automatically filter that out, and this is an impotent, though well intended, gesture.

[-] Morphit@feddit.uk 75 points 4 months ago

How will they filter it out? If they just don't mirror anything with 'forbidden' terms, we can poison repos to prevent them being mirrored. If they try to tamper with the repo histories then they'll end up breaking a load of stuff that relies on consistent git hashes.

[-] jorp@lemmy.world 28 points 4 months ago

I feel like the effort to make such a repo and make it popular enough to be cloned and rehosted is a lot more effort than someone manually checking the results of an automated filter process.

The "effort economy" is hugely in favor of the mirroring side

[-] bionicjoey@lemmy.ca 25 points 4 months ago

Yeah I figured as much. It was mostly a joke. At the end of the day, if stuff is on GH, people can take it. It's barely even stealing. Unless the license disagrees of course but then you were putting a lot of trust in society by making it public in the first place.

load more comments (4 replies)
[-] Azzu@lemm.ee 24 points 4 months ago

The real solution is to include a few tiananmenSquare variables in all the repositories. Either they exclude the entire repository or just the specific file, in either case the entire project may be unusable.

load more comments (5 replies)
[-] HubertManne@moist.catsweat.com 32 points 4 months ago

everyone should have stuff in their code comments, tianamen, hong kong, taiwan, uyghurs

load more comments (1 replies)
load more comments (28 replies)
[-] raspberriesareyummy@lemmy.world 96 points 4 months ago

With the obligatory "fuck everyone who disregards open source licenses", I am still slightly amused at this raising eyebrows while nearly no one is complaining about MS using github to train their copilot LLM, which will help circumvent licenses & copyrights by the bazillion.

[-] sugar_in_your_tea@sh.itjust.works 21 points 4 months ago

I complain all the time. But that's not the subject of this post...

load more comments (1 replies)
[-] JackbyDev@programming.dev 20 points 4 months ago

while nearly no one is complaining about MS using github to train their copilot LLM,

Lots of people complained about that. I've only seen this single thread complaining about this.

load more comments (23 replies)
[-] dan@upvote.au 95 points 4 months ago* (last edited 4 months ago)

I don't understand why this is a bad thing? Open source code is designed to be shared/distributed, and an open-source license can't place any limits on who can use or share the code. Git was designed as a distributed, decentralized model partly for this reason (even though people ended up centralizing it on Github anyways)

They might end up using the code in a way that violates its license, but simply cloning it isn't a problem.

[-] BlueMagma@sh.itjust.works 35 points 4 months ago

I expect it's going likely to be used to train some Chinese AI model. The race to AGI is in progress. IMO: "ideas" (code included) should be freely usable by anyone, including the people I might disagree with. But I understand the fear it induces to think that an authoritarian government will get access to AGI before a democratic one. That said I'm not entirely convinced the US is a democratic government..

PS: I'm french, and my gov is soon to be controlled by fascist pigs if it's not already, so I'm not judging...

load more comments (5 replies)
[-] slacktoid@lemmy.ml 27 points 4 months ago

But china bad and scary.

[-] barryamelton@lemmy.ml 23 points 4 months ago

The code needs to maintain the copyrights and authors. They are "mirroring" usernames into their own domain, with mails that dont correspond to the original authors, stealing their contributions.

load more comments (2 replies)
load more comments (10 replies)
[-] csm10495@sh.itjust.works 93 points 4 months ago

It's a bit odd, but isn't it equivalent to forking and putting up a fork elsewhere?

I guess I don't see the problem.

[-] UnderpantsWeevil@lemmy.world 29 points 4 months ago

It will be funny to see folks who spent the last ten years posting "It's not stealing, it's copying" memes suddenly find religion because Evil Foreign People got involved.

load more comments (2 replies)
[-] KingThrillgore@lemmy.ml 24 points 4 months ago

It depends on the software license.

load more comments (3 replies)
load more comments (2 replies)
[-] romp_2_door@lemmy.world 76 points 4 months ago

fun to think that my shitty program is now stored in an artic vault and stored in some Chinese servers

So many bugs I never fixed and yet here we are lol

load more comments (8 replies)
[-] nutsack@lemmy.world 62 points 4 months ago* (last edited 4 months ago)

I love how every Chinese company is called "China"

[-] DoucheBagMcSwag@lemmy.dbzer0.com 56 points 4 months ago

Yeah.. That's because they are. it is required that every Chinese Company has to be owned by "tHe PeOpLe" (CCP)

load more comments (8 replies)
load more comments (1 replies)
[-] kersplomp@programming.dev 57 points 4 months ago* (last edited 4 months ago)

Some random Chinese company: does something jenky

Blogger: "The entire country of China is doing this jenky thing!"

load more comments (1 replies)
[-] Rentlar@lemmy.ca 51 points 4 months ago

Someone reupload yuzu, stat!

[-] ZILtoid1991@lemmy.world 46 points 4 months ago

Put content that is illegal in China into your code, problem solved!

load more comments (2 replies)
[-] callmepk@lemmy.world 45 points 4 months ago* (last edited 4 months ago)

I think the major issue is here is that they are “mirroring” with the same username without clear indicating they are mirrors and they are modifying all the github links in Readme to GitCode. But if you want to claim your project, they want to only comment using the issue section of a project which requires account; but then you have to have a Chinese phone number to register account, and you will automatically get a Huawei Cloud account when you registering it

Edit: also some background info about the company behind GitCode from my other comment: the company behind GitCode is funded and owned by CSDN (China Software Developer Network) and the actual infrastructure and service is provided by Huawei Cloud. On the website they have written this statement in the registration page.

CSDN is mostly a platform to share posts on software development, but it is known to have a lot of issues, including:

  1. poor content and directly copied posts from other people without consent, which to a point people is considering the site a content farm; it is even a top blocked site on Kagi;
  2. All code provided there requires “coins” to download, even they are open-sourced code; it was reported multiple people in China got scammed via CSDN;
  3. You have to login to copy code on the post, and sometimes hides half the post to require you to login to read.
load more comments (1 replies)
[-] PanArab@lemm.ee 44 points 4 months ago

It is not illegal is it?

If it is legal, then thank you China for the free backup.

[-] kuberoot@discuss.tchncs.de 44 points 4 months ago

I do believe it's illegal if they take a repository with a restrictive license (which includes any repository without a license), and then make it available on their own service. I think China just doesn't care.

[-] the_ocs@lemmy.world 25 points 4 months ago

If it's hosted in a public repo, anyone can clone it, that's very much part of most git flows.

What you can do with the software, how you can use it, that's another matter, based on the licence.

That of course assumes China will respect the copyright..

load more comments (1 replies)
load more comments (4 replies)
load more comments (1 replies)
[-] A1kmm@lemmy.amxl.com 35 points 4 months ago

GitHub are not some bastion of righteousness - they are literally owned by Microsoft. And they work hard to stop people from getting too much Open Source from them, with rate limits and the like, so essentially gate keep.

I think CSDN probably want to gatekeep their clone even harder, but in general having archives of GitHub on the Internet is a good thing.

load more comments (1 replies)
[-] ikidd@lemmy.world 31 points 4 months ago

Shame they don't have anything themselves that's worth the trouble to copy back.

load more comments (2 replies)
[-] Melvin_Ferd@lemmy.world 31 points 4 months ago* (last edited 4 months ago)

If we steal IP from China does the American government give us a business loan?

[-] Grimy@lemmy.world 27 points 4 months ago

They should definitely respect the licenses, that being said, Microsoft owns GitHub and can be a bit quick in what they ban. It also means they are beholden to US laws, which could turn anti FOSS-AI in the near future.

This is a smart move and I honestly hope more countries start doing it. It would probably lead to a better ecosystem.

load more comments (2 replies)
[-] Muffi@programming.dev 27 points 4 months ago

Great! Now I know who to contact when I accidentally delete all the plaintext API keys and passwords I had stored in a public github repo.

load more comments (2 replies)
[-] mlg@lemmy.world 25 points 4 months ago

omw to get all the homebrew stuff NIntendo got removed from github lol

[-] crazyminner@lemmy.ml 25 points 4 months ago
load more comments (1 replies)
[-] simplejack@lemmy.world 25 points 4 months ago
load more comments (5 replies)
[-] maxinstuff@lemmy.world 20 points 4 months ago

If it’s a public repo do they need permission?

Not saying this is good, but you can’t really argue that it’s not a natural consequence of open source.

[-] HKayn@dormi.zone 31 points 4 months ago

I'm noticing this misconception in a lot of places.

Just because something is on GitHub, doesn't mean it's open source.

load more comments (18 replies)
load more comments (3 replies)
[-] Agent641@lemmy.world 20 points 4 months ago
load more comments (2 replies)
load more comments
view more: next ›
this post was submitted on 26 Jun 2024
850 points (100.0% liked)

Technology

59379 readers
2292 users here now

This is a most excellent place for technology news and articles.


Our Rules


  1. Follow the lemmy.world rules.
  2. Only tech related content.
  3. Be excellent to each another!
  4. Mod approved content bots can post up to 10 articles per day.
  5. Threads asking for personal tech support may be deleted.
  6. Politics threads may be removed.
  7. No memes allowed as posts, OK to post as comments.
  8. Only approved bots from the list below, to ask if your bot can be added please contact us.
  9. Check for duplicates before posting, duplicates may be removed

Approved Bots


founded 1 year ago
MODERATORS