1. a developer of a bunch of popular #npm packages publishes new, intentionally broken versions of them as he doesn't want to support for-profit companies with his free work;
2. NPM *reverts* the packages to older versions against developer's wishes;
3. GitHub *blocks* the developer for acting "irresponsibly".
Just to be absolutely clear, as @Gargron noted in a separate thread, this is absolutely shitty of the developer to pull the rug from under everyone (including plenty of FLOSS projects, I'm sure) using his npm packages. A breach of trust indeed.
But for me it is also worth noting GitHub blocking a developer for changes made by him to his own projects.
@rysiek While GH obviously has the right to continue publishing an older version of the software, I wonder whether they retain the right to publish it *under the developer’s username*? That seems like something that should be covered by their TOS but perhaps they missed it?
@rysiek if a developer is pushing changes or code clearly meant only to break things reverting and blocking are absolutely the right thing to do
This feels like the freezepeach argument, context matters
@wim_v12e, it’s apparently impossible to do so: https://blog.npmjs.org/post/141905368000/changes-to-npms-unpublish-policy
This Mastodon instance is for people interested in technology. Discussions aren't limited to technology, because tech folks shouldn't be limited to technology either!