1475
The IRS Tax Filing Software TurboTax Is Trying to Kill Just Got Open Sourced (www.404media.co)
submitted 2 months ago by DesertDwellingWeirdo@lemmy.world to c/technology@lemmy.world
117 comments fedilink hide all child comments
top 50 comments
sorted by: hot top controversial new old
[-] bitofarambler@crazypeople.online 456 points 2 months ago* (last edited 2 months ago)

really good article with a couple surprises in there.

"some people speculated that, because of the political pressure against it, its release must have been an act of resistance by someone within the IRS. But the open sourcing of the program was always part of the plan, and was required by a law called the SHARE IT Act. It happened “fully above board, which is honestly more of a feat!,” Given told 404 Media. “This has been in the works since last year.”

Vinton told 404 Media in a phone call that the open sourcing of Direct File “is just good government.”

“All code paid for by taxpayer dollars should be open source, available for comment, for feedback, for people to build on and for people in other agencies to replicate. It saves everyone money and it is our [taxpayers’] IP,” she said. “This is just good government and should absolutely be the standard that government technologists are held to.”"

[-] officermike@lemmy.world 20 points 2 months ago

“All code paid for by taxpayer dollars should be open source, available for comment, for feedback, for people to build on and for people in other agencies to replicate. It saves everyone money and it is our [taxpayers’] IP,” she said. “This is just good government and should absolutely be the standard that government technologists are held to.”"

Nice sentiment, but bad take. Open-sourcing the software that runs our military equipment would be a fantastic gift to the bad actors of the world.

[-] hildegarde 171 points 2 months ago

security through obscurity is not security

[-] bitwyze@lemmy.world 41 points 2 months ago

Security can mean security against hackers, but it can also mean security against revealing classified information. Classified information about weapons systems (e.g. performance characteristics) is inherently embedded into the code running on those systems, and therefore shouldn't be open sourced.

Source: used to write classified code

[-] Pika@sh.itjust.works 43 points 2 months ago

then the code maintainers are doing it wrong.

Any information that shouldn't be public knowledge such as specs, account credentials, access tokens etc should be in a configurable/dynamic format such as an ENV variable or a config file, that way confidential info isn't part of the working tree.

This should not be an issue in a properly maintained codebase.

[-] BassTurd@lemmy.world 20 points 2 months ago

I think when it comes to the code that controls the navigation, control, detonation, etc, or our munitions, that perhaps that should not be publicly reviewable. Not because of hacking concerns, but it does give info to a potential enemy that could render them less effective.

[-] ricecake@sh.itjust.works 17 points 2 months ago

Eh, there's an intrinsic amount of information about the system that can't be moved into a configuration file, if the platform even supports them.

If your code is tuned to make movement calculations with a deadline of less than 50 microseconds and you have code systems for managing magnetic thrust vectoring and the timing of a rotating detonation engine, you don't need to see the specific technical details to work out ballpark speed and movement characteristics.
Code is often intrinsically illustrative of the hardware it interacts with.

Sometimes the fact that you're doing something is enough information for someone to act on.

It's why artefacts produced from classified processes are assumed to be classified until they can be cleared and declassified.
You can move the overt details into a config and redact the parts of the code that use that secret information, but that still reveals that there is secret code because the other parts of the system need to interact with it, or it's just obvious by omission.
If payload control is considered open, 9/10 missiles have open guidance control, and then one has something blacked out and no references to a guidance system, you can fairly easily deduce that that missile has a guidance system that's interesting with capabilities likely greater that what you know about.

Eschewing security through obscurity means you shouldn't rely on your enemies ignorance, and you should work under the assumption of hostile knowledge. It doesn't mean you need to seek to eliminate obscurity altogether.

load more comments (9 replies)
load more comments (1 replies)
[-] CosmicTurtle0@lemmy.dbzer0.com 74 points 2 months ago

Our entire Internet, the backbone of all encryption, all runs on open source software.

It is more secure because people can see and audit the code.

Let me flip what you wrote:

Our military equipment already is vulnerable. We just don't know how badly because it's not open source.

Prove it's secure by releasing the code.

[-] OsrsNeedsF2P@lemmy.ml 15 points 2 months ago

Our military equipment already is vulnerable. We just don't know how badly because it's not open source.

I'm gonna be honest, I'm sure China has many copies of the source code already

[-] TimLovesTech@badatbeing.social 31 points 2 months ago

The GitHub page has a section for this:

Exempted Code

Not all source code, documentation and metadata used in the development of Direct File is included in this repository. Specifically, any code or data that is considered Personally Identifiable Information (PII), Federal Tax Information (FTI), Sensitive But Unclassified (SBU), or source code developed for National Security Systems (NSS), as defined in 40 U.S.C. § 11103, is exempt. Due to these restrictions, certain pieces of functionality have been removed or rewritten.

load more comments (1 replies)
[-] OsrsNeedsF2P@lemmy.ml 14 points 2 months ago

Maybe it's the military that's incompatible with our values, not open source

load more comments (17 replies)
load more comments (1 replies)
[-] eager_eagle@lemmy.world 144 points 2 months ago

Repo: https://github.com/IRS-Public/direct-file

[-] dhork@lemmy.world 70 points 2 months ago* (last edited 2 months ago)

Hurry up and clone that ASAP, this is gonna get taken down once DOGE realizes what it is

[-] ricecake@sh.itjust.works 49 points 2 months ago

More likely they'll just turn off or unpublish the API that it depends on.

[-] catloaf@lemm.ee 10 points 2 months ago

Is that even available right now? Usually for this type of thing you need API keys, which are not included, nor available at all.

load more comments (3 replies)
load more comments (4 replies)
load more comments (1 replies)
load more comments (5 replies)
[-] UltraMagnus0001@lemmy.world 113 points 2 months ago

TurboTax owned buy intuit, part of H&R block who has partnered with credit karma. Everything is a monopoly now

[-] smashing3606@feddit.online 38 points 2 months ago

I'm pretty sure intuit and h&r block are competitors, not the same compamy.

[-] CluckN@lemmy.world 13 points 2 months ago

Yeah I saw Monopoly Fortnite I wonder what is next?

load more comments (1 replies)
[-] bdonvr@thelemmy.club 55 points 2 months ago

Unless it's maintained it won't be of much use. It needs to be kept up to date with tax laws, and it relies entirely on the IRS accepting the generated returns. It seems it may function for now, though.

Direct File interprets the United States' Internal Revenue Code (26 USC) as plain language questions, the answers to which should be known to taxpayers without need of external instructions or publications. Taxpayers' answers are then translated into standard tax forms and transmitted to the IRS's Modernized e-File (MeF) API, which is available for authorized public use

[-] surewhynotlem@lemmy.world 44 points 2 months ago

Linux geeks, assemble!

load more comments (1 replies)
load more comments (4 replies)
[-] Olgratin_Magmatoe@startrek.website 54 points 2 months ago

It's already got 4 PRs

lol

[-] jayandp@sh.itjust.works 11 points 2 months ago

7 open now, 2 closed

XD

load more comments (3 replies)
[-] Smoogs@lemmy.world 44 points 2 months ago

What happened to the title of this?? Jeez

[-] OccasionallyFeralya@lemmy.ml 48 points 2 months ago

“The IRS Tax Filing Software that TurboTax Is Trying to Kill Just Got Open Sourced” might be more clear but headlines try to cut those sorts of words out, unfortunately at the cost of readability sometimes.

[-] jsomae@lemmy.ml 14 points 2 months ago

They accidentally included 8 verbs. (tax, filing, is, trying, kill, got, open, sourced)

load more comments (2 replies)
[-] fluxion@lemmy.world 36 points 2 months ago

Suck a bag of dicks, TurboTax

[-] HawlSera@lemm.ee 34 points 2 months ago

I got told I couldn't get a tax return because they flagged me for potential fraud, so I have to go to ID.me to verify.. but then my account got banned while trying to verify my information.

Fml

load more comments (2 replies)
[-] demizerone@lemmy.world 24 points 2 months ago

The more money you pay someone to find the loop holes in the tax code the less likely you are to support out government and its war machine.

[-] eugenevdebs@lemmy.dbzer0.com 20 points 2 months ago

Oh that's awesome. I hope it can still be accepted by the IRS for the future (if we still have one in ~3 years) but it would be neat to just be able to have an open standard for online filing.

load more comments (1 replies)
[-] fiddledeedee@sopuli.xyz 20 points 2 months ago

HA get fucked turbotax

[-] LorIps@lemmy.world 18 points 2 months ago

It's licensed under CC0 to anyone wondering. BSD 0-Clause would probably be better but still fantastic.

load more comments (7 replies)
[-] Vinstaal0@feddit.nl 15 points 2 months ago

Was the US so behind that they didn't have a way to file taxes online for free?

load more comments (3 replies)
[-] SabinStargem@lemmy.today 12 points 2 months ago

THIS is the way.

[-] JackbyDev@programming.dev 11 points 2 months ago

https://github.com/IRS-Public/direct-file

[-] smikwily@sh.itjust.works 10 points 2 months ago

Archive of the full article: https://archive.ph/6qJ6v

load more comments
view more: next ›
this post was submitted on 04 Jun 2025
1475 points (100.0% liked)

Technology

74519 readers
4343 users here now

This is a most excellent place for technology news and articles.

Our Rules

  1. Follow the lemmy.world rules.
  2. Only tech related news or articles.
  3. Be excellent to each other!
  4. Mod approved content bots can post up to 10 articles per day.
  5. Threads asking for personal tech support may be deleted.
  6. Politics threads may be removed.
  7. No memes allowed as posts, OK to post as comments.
  8. Only approved bots from the list below, this includes using AI responses and summaries. To ask if your bot can be added please contact a mod.
  9. Check for duplicates before posting, duplicates may be removed
  10. Accounts 7 days and younger will have their posts automatically removed.

Approved Bots

founded 2 years ago
MODERATORS
L3s@lemmy.world
enu@lemmy.world
technopagan@lemmy.world
L4s@lemmy.world
L3s@hackingne.ws
L4s@hackingne.ws