TPM is a dedicated chip or firmware enabling hardware-level security, housing encryption keys, certificates, passwords, and sensitive data, “and shielding them from unauthorized access,” Microsoft senior product manager Steven Hosking wrote last month, declaring TPM 2.0 to be “a non-negotiable standard for the future of Windows.”
I agree. People need to stop using GitHub already. Btw, Forgejo will be getting federation with ActivityPub.
I’m so excited for ForgeFed
You can also follow them on Mastodon https://floss.social/@forgefed
TPM is nice and all, but Micro$ encrypts your data without consent or a password. Which is insane.
My backup windows install literall bitlock-ed itself
It is never done without a password.
You are spreading false information. Stop.
I didnt log in with a microsoft account. I only gave my user password for my account.
You’re wrong, it’s true. installs of Windows 11 automatically have software bitlocker when installed on compatible storage devices. If you don’t sync with a Microsoft account, you are required to manually export the recovery key or risk getting locked out of the system. And you are not told that you need to do so.
I’m so tired of projects being like “We’re open-source” and then they’re hosted on GitHub, using Discord and whatever fucking other awful tooling they can get their hands on. Thanks guys. I’ll definitely check out your project, yes.
how does that make the project any less open-source?
what’s next, shaming project owners for living in a house that they pay for with a corporate job?
we get it, you hate capitalism, but that doesn’t mean other people want to go live in the woods too… gotta be realistic :)
They are still technically open-source. I’m not saying that they’re not. But they’re actively alienating users who want to use open-source, because those users cannot get support, report bugs or contribute to the project without using proprietary software.
What? I use Firefox and git to bworse, commend and post issues on open source tools hosted on github.
Just tell me you dislike github (understandable) but not that “those hosted on github” are not open source tools… That depends on the license they are following, not the tools they are using.
And by the way git is open source as well as the browser you need to access github.
I think you are getting way too far.
Said so, I host all my open source code on my private instance of forgejo, which is way more open source than github, but I don’t allow registration (its my private instance, after all) so where do you put me at?
Just to remember that even the GPL v3 doesn’t say you must provide support or a ticketing system.
they’re actively alienating users who want to use open-source, because those users cannot get support, report bugs or contribute to the project without using proprietary software
You can still use their source and software though.
Surely, they have their reasons for choosing GitHub over other alternatives.
I know I do, when I choose GitHub over others. (I’m not choosing Discord though.)
What’s a good alternative (assuming this is one of the few things I don’t want to self-host)?
I self-host Gogs for my internal projects, but my public stuff is on Github. The only “fancy” GH feature I use is the actions since it will do ARM builds which I can’t do locally.
https://codeberg.org/ is a nice alternative.
They do provide access to a runner for actions, but you need to request access to it.
The use of a private repo is limited due to the scope of what Codeberg’s open source mission is, which is not the same as Github/Gitlab for-profit entities. The details on both branches (public repo FOSS licenses and private repo use) are in the FAQ: https://docs.codeberg.org/getting-started/faq/#before-i-start-using-codeberg…
Myself, I moved my projects to self-hosted gogs (maybe forgejo soon) but kept placeholders with a README.md and link on github so people can still find them.
I self-host Gogs for my internal projects, but my public stuff is on Github.
If you were willing to make a fundamental change, one possible outcome: migrate your internal from Gogs to Forgejo and use Codeberg for your public FOSS as it runs on (a slightly patched) Forgejo. The gain is working with the same tooling on both sides and possibly gaining a runner (Action) locally if you spend the time to learn and set it up on your internal instance. Bonus idea: you could even make your public Codeberg FOSS repo a push-mirror from your internal server and let the Forgejos keep things in sync between the two.
- https://code.onedev.io/ - built upon Java, feature-rich but suffers from HTTPS-only clones (yep, the main instance can’t use SSH)
- radicle - federated sourceforge. Doesn’t have a CI but they are actively working on it, but your repo is replicated across multiple instances, “pull requests” (they call them patches - example) can be done across instances, and the devs dog-food it (one of their repositories), and it also works on TOR
I’d love to support gitlab, but they refuse to invest in federation and there have been rumors about inter to be bought by Google, which will definitely kill any federation suggestions.
OneDev does support to clone via SSH if self hosted. Only that SSH access to code.onedev.io is turned off.
You can self host Forgejo (a Gitea fork) which is powering codeberg.org
It will be getting federation support someday with the ForgeFed ActivityPub extension, so you pretty much can stay connected with others’ repos while owning your data.
I self-host Gogs, currently, but I am looking at Forgejo after several recommendations. Not sure how useful AP integration will be at first, but it’d be a “nice to have” once it’s there for sure.
The reason I’m looking at a hosted one rather than on-prem is the hosted one is basically my “hot” backup.
I’m okay to get downvoted.
But unless the solution provides a easy way to create issues and MRs, has high upstream and I can read the code in a browser, then I’m sticking with GitHub.
I say this as a person who contributes to open source and I absolutely know that if I hate something, I should fix it. But I’m dumb as rocks and I just want to contribute, and GitHub hasn’t Enshittified itself to a point that stops me from doing that. Yes, it’s under Microsoft.
I’ve tried a few others, and I keep going back to GitHub because it has the least barriers of entry. I can contribute, I can get feedback, and I can move on.
There are a few quite good alternatives, like codeberg.org and gitlab. But, im not really disagreeing. Perhaps out of familiarity, GitHub UI/Features is still my favorite.
