'source Available' Is Not Open Source, and That's Okay
Key topics
The debate around "source available" versus "open source" has sparked a lively discussion, with some arguing that licenses prohibiting SaaS competitors shouldn't be considered "open source." While some commenters, like lmm, worry that muddling the definition of open source could be a "big mistake," others, like ModernMech, suggest that a project's intent to foster a genuinely open community is key to determining its openness. The conversation reveals a spectrum of perspectives, from those who believe that ease of contribution is crucial (cortesoft) to those who argue that only redistribution and forking rights truly matter (nevon). As the open-source landscape continues to evolve, this discussion highlights the complexities and nuances of defining what it means to be "open source."
Snapshot generated from the HN discussion
Discussion Activity
Very active discussionFirst comment
1h
Peak period
109
0-6h
Avg / period
17.8
Based on 160 loaded comments
Key moments
- 01Story posted
Dec 9, 2025 at 10:33 PM EST
24 days ago
Step 01 - 02First comment
Dec 9, 2025 at 11:41 PM EST
1h after posting
Step 02 - 03Peak activity
109 comments in 0-6h
Hottest window of the conversation
Step 03 - 04Latest activity
Dec 12, 2025 at 7:57 AM EST
22 days ago
Step 04
Generating AI Summary...
Analyzing up to 500 comments to identify key contributors and discussion patterns
Want the full context?
Jump to the original sources
Read the primary article or dive into the live Hacker News thread when you're ready.
There is another, I think different, form of "source available" that I've seen a bit lately, similarly from corporate/commercial sponsors: the source code is released under an OSI approved license (e.g. BSD, GPL licence) and the owner maintains and develops the code in an ongoing fashion, but there is no way to easily interface with the developers, contribute changes back to the project, nor is there any public facing bug tracker or developer/user community. To me this is just as much "not open source" as a specific no-compete with the primary project sponsor.
No, that's very much open source - in fact, it was the way most big name open source projects were developed back in the early days. See the famous "the cathedral and the bazaar" essay. Public bug trackers and widely soliciting contributions to mainline are relatively new phenomena, but you always had the right to fork and maintain and share your own fork, and that's the part that's essential.
- Are there contributor guidelines?
- Do contributors have to sign a waiver before they can contribute any code?
- Is there a RFC process?
- Does the project actually respond meaningfully to that feedback, or does it simply get filed in the special complaints folder for corporate.
- Does the project encourage outside contributions in more than a cursory way?
- Does the CLA grant the company unilateral relicensing rights?
- Are governance documents public?
- Can the community vote on decisions?
- Does the community have a say in how it's moderated?
- Are community members invited to actually join the organization?
- Are architectural decisions made in open meetings?
- Is there a public ROADMAP and is the community invited to contribute to it or influence it?
- Can others build competing distributions without fear of retaliation?
- Can the project be forked if there is community disagreement about direction?
Those are just some signals off the top of my head. There's no bright line; the presence or absence of a few won't say anything one way or another. But if many of the answers to those questions are leaning toward the negative, then I don't think it can be open source.
I'm not sure if there is a term for what you are describing. Perhaps "community driven project".
RMS just wanted to be able to fix his printer driver.
I feel like this is a completely different conversation, but this is just as much a misunderstanding of what open source is as DHH's.
As long as the code is under BSD or GPL, you are free to take it as-is and do what you want with it. You could run your commercial service using it. You can certainly write patches and apply them to your own servers. You could even email the maintainers with them -- worst case is that they will ignore the emails!
Open Source does not guarantee that your contributions will be accepted or merged back to the project -- indeed, if you think about it, that would be absurd. I might want some random thing in the Linux kernel, but the maintainers will always have the final word on whether they want my patches or not.
The O'SaaSy license says that (essentially) 37Signals will sue you if you try to host this on your own servers, and try to sell it as a service. That's totally different, and a legal rather than a technical hurdle.
I used to think the pedantry was foolish, but I've grown to understand the distinction. It's one thing to criticize the OSI's claim to the term, and I do think they could do a better job at getting out ahead of new licenses and whatnot, but even if you ignore OSI entirely then the distinction is of substantial value.
I do think we need more Source Available licenses in the world. Certainly I would greatly appreciate being able to browse the source of the many proprietary software systems I've administered over the years.
At the same time it is not worth it if the spirit of Open Source is watered down.
Yeah. Releasing a project under a source-available proprietary license and calling it Open Source, or doing a rugpull and changing an established Open Source license to a source-available proprietary license, is the kind of thing that causes the most grief. If you release something under a source-available proprietary license and make no pretenses about it being something else, and the alternative was not releasing it at all, it's a (slight) improvement.
I think we need more differentiation and different terms. Because O'Sassy / FSL / whatever that just forbids other companies from selling the same software as a Service is quite different than just the source being available with no rights at all, or with restrictions on who can use it and when (size of company, for profit or not, production, etc).
To an outsider it looks like counterproductive bickering between people on the same team.
The part where the license says "Don't run this on your server and charge people money for it, or we will sue you"?
I know that everyone thinks of Big Tech absorbing your project into their SaaS when they do this, but there are other ways (say AGPL) to combat that. OSaaSy seems to me to be essentially a "give us your code for free, and you can self host it, but don't dare to charge $$ for it or else!" license.
Now you're bringing lawyers into the picture for anyone who's hosting your software on their servers. It's very reasonable for a SaaS company that wants to defend its moat, but it's not Open Source.
I kind of thought that it was more about stuff like sharing and personal development and edification and the ability to see inside and understand things. But let's get really divisive over the money stuff.
In the case of the janky new 37signals license: what exactly counts as "... where the primary value of the service is the functionality of the Software itself"?
Who gets to define the "primary value" of the thing I built?
> I will infer that "anybody can do whatever they want with this code, OR ELSE YOU'RE NOT WORTHY" is the principle you are referring to.
I feel like there's cynicism in your phrasing, but a perhaps more neutral phrasing would be "Don't pick and choose what specific circumstances your users can use this for".
Why is it important to give "everything" to the users? They have the source code. Why is it so important that they can use it for whatever they want?
This can also be true, say, of a dump of leaked Windows source code. Would you say that that's Open Source? What about if Fizzy's license tomorrow said "you can use this for free, but only if you aren't opening any of the files using Vim or Emacs." Is that Open Source?
> Why is it so important that they can use it for whatever they want?
It's important only in terms of the ethics of calling yourself open. The OSI (and many other commenters here, and me) are saying that open source should be defined by lack of restrictions on the usage; DHH etc. are saying that it should be defined by lack of restrictions on the access.
The reasons why I think usage-based definition rather than access-based definitions are more reasonable are:
- Providing access to code is relatively cheap/easy today. This wasn't always true in the past.
- Usage has a lot more variables than access. If you start putting restrictions on it, anyone using it has to stop and think about their usage to ensure it's not falling afoul of the restrictions. For example, if I put Fizzy on my server and provide free access to it, does that qualify as "directly compet[ing] with the original Licensor by offering it to third parties as a hosted Cloud Service"? I would hope not, but if I want to make sure I have to pay a lawyer hundreds of dollars.
> If you start putting restrictions on it, anyone using it has to stop and think about their usage to ensure it's not falling afoul of the restrictions.
Is this really that ornery? In practice, with a license like this, are people doing benign things hunted down and hassled? The whole "I can do whatever I want and never get sued" angle kinda seems a little selfish or at least not super good-samaritan? Can't we find a good-faith agreement between interests?
> Ultimately yeah we're at the whim of the company, but that's the status quo, this still seems like a step in the right direction to be encouraged and fostered and not shit on. I just don't think the hardline strategy is really winning hearts and minds to the cause.
This is not the status quo in open source. Open source is the status quo of much software. Open source software has won many hearts and minds. I am skeptical many companies would make the source available of their proprietary programs if and only if they could call it open source.
> In practice, with a license like this, are people doing benign things hunted down and hassled?
Selling software as a service is benign in open source. And do you understand the question of if the license is good or acceptable and if the license should be called open source are different?
> I recall the brouhaha over the "don't do evil" license.
Your point was what?
> Can't we find a good-faith agreement between interests?
Open source and source available are established terms. What interest is not served by calling source available source available? . [1] https://news.ycombinator.com/newsguidelines.html
By status quo I meant the closed source / proprietary world, which also supports a lot of open source projects with contributions and funding. Source available would seem, to me, to be creating an avenue to move closed things in a more open direction, and bring more people "into the fold", per sé.
> And do you understand the question of if the license is good or acceptable and if the license should be called open source are different?
That question was motivated by the fears of getting sued expressed in several comments. I'm curious if there is a pattern of behavior among source available projects driving that, or if it's more just in principle. It was somewhat orthogonal to the question of calling it open source.
> Your point was what?
Fair, but, my point was that, there are people that are trying to do good things for humanity (not talking about DHH here), and open source is trying to do good things for humanity, and I don't know it just sucks to see them at odds and divided. But I do understand better the functional definition of open source and the zeroth freedom, even if it still feels a bit dogmatic to me. Or maybe just a clash between libertarian and liberal ideals.
This was a good step. But you will not admit calling it was loaded to call people who prefer legal clarity ornery?
> That question was motivated by the several comments expressing fears of being sued. I'm curious if there is a pattern of behavior among source available projects driving that, or if it's more just in principle.
A license is a legal document. Its purpose is to communicate when and to fear being sued or not. Source available, closed source, or open source are the same in this context. Have software copyright owners sued license violators? Yes. Treating legal documents seriously is not just principle.
> Fair—but, my point was that, there are people that are trying to do good things for humanity (not talking about DHH here), and open source is trying to do good things for humanity, and I don't know it just sucks to see them at odds and divided. But I do understand better the functional definition of open source and the zeroth freedom, even if it still feels a bit dogmatic to me. Or maybe just a clash between libertarian and liberal ideals.
This was not a conflict between open source and source available. It was a conflict between open source and someone who knew better who used the term misleadingly for promotion.
Dogma to you is learning from history to others.
Libertarian and liberal may be the right words or not. But the impression the different groups have different ideals is correct.
Every major voice that I've seen comment on this thus far seems to acknowledge the value and the rationale behind the license, they're just saying you can't call it open source.
Would you say that the "free software" and "open source" movements are largely synonymous? I guess I thought free software was a more strict subset that has the "all or nothing" philosophy centered around truly "free" software. Which is honorable and commendable. But is there really no room for stuff that's a little more gray area? I get the rug pull, I get that it's not truly owned by the community, but it still seems like a useful ally and a step in the right direction from fully closed source. With support there could be norms and culture developed to safeguard from bad behavior.
The context of what the software does should also be taken into account. The best arguments I've seen in this thread revolve around the idea that you can trust that you can pull an "open source" library into your project without hesitation. That is a beautiful "free as in libre" building blocks vision. But the software in question here is a completed end-user product. It's not ever intended to be used in another project. But they want to make some kind of good-faith effort to share and be more "open" than normal proprietary SaaS. Instead of this being a good thing it's a huge drama because it's not enough. At least that's my read.
Would you say Canadians and Americans are largely synonymous? They have many shared interests. There are many dual citizens. The differences are subtle often.
> The best arguments I've seen in this thread revolve around the idea that you can trust that you can pull an "open source" library into your project without hesitation. That is a beautiful "free as in libre" building blocks vision.
Several people highlighted a key idea of open source and free software is you can run an open source program without hesitation. This was not beautiful? These arguments were inferior?
> But the software in question here is a completed end-user product. It's not ever intended to be used in another project.
Libraries used parts of programs. Programs became libraries. Programs evolved into different programs.
> But they want to make some kind of good-faith effort to share and be more "open" than normal proprietary SaaS. Instead of this being a good thing it's a huge drama because it's not enough. At least that's my read.
I don't know how the submitted article could have contradicted this more clearly.
What would source available be in this analogy?
> Several people highlighted a key idea of open source and free software is you can run an open source program without hesitation. This was not beautiful? These arguments were inferior?
I think we're saying the same thing. Those are the arguments I was referring to.
> Libraries used parts of programs. Programs became libraries. Programs evolved into different programs.
I don't know what this means.
> I don't know how the submitted article could have contradicted this more clearly.
Which part?
Did we say the same thing? You suggested a library and a completed end-user product should be considered differently I thought. I suggested they should be considered similarly.
The title of the submitted article said it was okay source available is not open source. It said DHH's choice of license reacts to a real pressure in open source. It said source available was defensible and generous.
> The freedom to run the program as you wish, for any purpose (freedom 0).
https://www.gnu.org/philosophy/free-sw.en.html#four-freedoms
A bit offtopic but could re-generation of the project with LLM (with for example prompt "rewrite the <repo> changing every line of code") help protecting from being sued? If yes, then the OS licensing is doomed to fail.
some people do. Most people (person on the street) take the words "open source" at face value and dispense with the whole idea when faced with a needless ideological argument. This specific process of thought is casually observed in most entry compsci highschool/college classrooms. The whole point of open source was to achieve a goal, which has ironically been subject to feature creep.
The moment you change a single line of that license I now have to pay extremely close attention to those details again.
This isn't a naive idealism thing - there are very solid, boring, selfish reasons for caring about this.
I feel like it's participating in the spirit of open source and should be welcomed, if someone wants to make their code available but just wants to try and restrict anything-goes usage. But I can see the purity argument.
What matters is clarity. If code is licensed under a known open source license businesses know exactly what they can do with that code. Other users of the code also know that it supports the core criteria outlined in https://opensource.org/osd
As user as well. Difference between I can use this for free and I have to pay to use this. Even if I can see parts inside is significant.
It might not be real principle, but at least it is real difference.
Ironically I think the analogy explains why many people find "source available" to align with their moral compass more than "open source" necessarily does.
It’s an improvement.
"Source available" want the benefits of being associated with that egalitarian philosophy because it's popular amongst technologists, who are their customers. But they don't want to actually practice the philosophy because their core interest is protecting their IP to turn a profit, not open collaboration and development.
It's the same problem with the idea of OpenAI as a nonprofit. It's fine that they are for profit, and they definitely aren't making a profit, but we can't pretend their mission is the same a non profit.
I guess I would have thought of source available as existing under the open source umbrella. I get that there is an important distinction but from an adoption and evangelism standpoint it seems like an unnecessary crusade to push them away.
They can, if the original license is permissive, or if there was a CLA. They can't for significant contributions under a copyleft license that was not done under a CLA. Something to consider when contributing to a project that uses a CLA or a permissive license.
> I get that there is an important distinction but from an adoption and evangelism standpoint it seems like an unnecessary crusade to push them away.
Depends on your goals. If source available misses the point anyway, adoption doesn't help, the message risks being blurred, and therefore you should push back.
Not really. A project under an open source license which doesn't accept contributions is still open source.
It is totally about the license and the source code availability.
There are interesting things to say about the various development models, and those common in the open source world, but the open source aspect and the development model aspect should not be mixed.
I know you are stating this, but I don't agree.
The diverse and vibrant community that has formed around open source over the past 40 years is key, I just think that we should cleanly separate the concepts.
A piece of software is open source if and only if it's released under an open source license. It's necessary and sufficient. Also "source available" is necessary but not sufficient.
Then we can and should talk about the social aspects around open source and free software and how they are crucial. I'm not stating that the whole thing is not important, it's just that keeping the concepts separate and clean helps communicating clearly.
My stance is already mostly not technical actually. I would push for free software and the human rights it embodies way more than open source despite open source and free software concerning mostly the same actual software. The tools (licenses) are mostly the same, but the intent and the approach can be very different.
"Source available" doesn't in any way mean "you can sue anyone that uses your code for any reason...". The irony of highlighting the trickery of these terms then you yourself perpetuating wrong definitions is... amusing.
"Source available" is by definition ill-defined, in the sense that "open source" is defined. There is no trademark, stewarding body, or legal entity behind "Source available". It only exists in relation to OSI defined "open source".
Which is to say, it is defined as code that does not fit the "Open Source Definition (OSD)" yet its source code is viewable. Maybe its modifiable, maybe its free to use, but maybe its neither. Thats all anyone can factually attribute to the definition of "Source available". Nothing about "suing ... for any reason".
Again, hoping you were making your comment in good fun, otherwise it doesn't look too good for you.
The entire point of copyright is a legal mechanism to sue people. "Source-available" at a minimum is someone sharing their code under their own copyright and terms of use.
Yes the term is designed to trick outsiders. Most people don't even know that code is copyrighted by default even though it is posted publicly and freely on the internet without a © symbol.
I'll reiterate, "source available" can only be defined as not OSD code that is viewable. Everything else is entirely open to implementation and interpretation.
This is the largest problem with the term. This is in stark contract to examples like "Fair Source" which has a legal definition like the OSD, and a entity behind it stewarding that definition [0], while being a subset of Source Available. All fair source is source available, not all source available is fair source.
Yet, fair source doesn't fall into your definition of source available.
[0] - https://fair.io/
This highlights my knee-jerk reaction to your initial post. My original definition I provided for Source Available was "[viewable but not OSD]". This is overly restrictive since can be both, but to assign any meaning at all Source Available it needs to be defined in relation to "Open Source", otherwise its meaningless.
I agree, it really isn't complicated :).
Its literally against the first of the four essential freedoms of Free and Open Source Software
> The freedom to run the program as you wish, for any purpose (freedom 0).
It's often what it devolves into. There's merit in it at it's core, but passionate people with philosophical differences taking differences of perspectives on the matter at hand as personal attacks tends to devolve such discussions into performative zealotry.
I've found it's most useful as a tool to farm engagement, much in the same vein as "if you want to know the right answer to a question, confidently post the wrong one on the internet". For example, Just call it open source on platform of choice, mute notifications for the thread/post in question while you let the zealots do their pedantic semantic gymnastics as they all inadvertently put their thumbs on the algorithmic scale in the process, check back the following day/week, and if they can manage to come to a consensus on whatever they disagree about, great! Thanks for sorting that out. And if not, great! Thanks for the free advertising.
And it's not that I don't care, I do, or at least I did. But I've been around long enough to see the definition of "open source" change more than once, and I've stopped trying to keep up. The older I get, the lower down the list of "shit I have time to fret over" it goes, so I'll let the diaspora of the time sort it out, get back to me with the appropriate label, and use that going forward until a disagreement pops up again. Rinse and Repeat.
Uh.. are they?
I'm somewhat sympathetic to licenses that will be open source in X years, but the open source ethos is that, with proper attribution, we can do whatever with the code, the only restriction being that for some projects a derivative work needs to also be open source (while others don't care even about that)
If we were to welcome non-open source projects into a larger community, we should probably begin with licenses that forbid the usage of the software in military and things like that. Which fails to be open source for the same reason: it puts limits in how you can use the code
If you don't want start a business and make real money from your software then denying that to others is antithetical to the concept of open source and free software.
That being said; I have no issue with a developer choosing any license they want -- it's their software and therefore it's their right. But calling it "open source" when it specifically forbids certain use-cases is just wrong. DHH wants his cake (pretend it's real OSS) and eat it too (deny usages).
What if you do and have done so, yet you're competing with e.g. AWS, GCP, Azure, who can do it for cheaper than you due to scale, and also have a much easier time to sell an extra line item to their existing customers vs you having to go through commercial negotiations and purchase agreements? Cf. Elastic, Redis, etc.
And if you don't make it open source, don't call it open source.
My own personal position is that my commercial software is commercial and my open source software is free for everyone to use for any purpose including making money that I will never see. If I cared, I wouldn't make that software open source.
Open source, is, essentially software that I expect to be able to use commercially and tweak if required - but I'm own my own, and I pay for support.
Source available means I can basically help debug issues I have...but I expect that a paid licence is required and will have a selection of limitations (number of nodes, etc).
Maybe, but I think that "source available" isn't detailed enough and can mean many many different things.
> Source available means I can basically help debug issues I have...but I expect that a paid licence is required and will have a selection of limitations (number of nodes, etc).
Point in case. For me there is one group, under something like BSL or FSL or SSPL which mostly restricts you from competing with the project's creators (e.g. making your own SaaS out of it), but everything else is fair use, you can use it in prod to make money at any size, etc. And a separate, more restrictive one, which has size, or production restrictions (you can't run the software if you're a commercial entity).
Source available sounds like a good description for the second one, because it's just available, little more. But for the first one where you can do whatever you want with one single exception that doesn't impact 99.9999% of potential users, it's not a good and clear enough description.
I think that *one blunder?) is that OSI cant really consider SSPL or similar open source because it restricts access to one party so it breaches an freedom 0 or some freedom of open source which is fair but at the same time literally only impacting people competing against (in my opinion the funding of the project and its growth itself) if someone like amazon had created a redis service competing against redis itself lets say
I think its all kinda nuanced and we kinda need more discussion with source available.
See the "Our Machinery" fiasco.
Yes, Open Source isn't a complete defense against this (especially when there are copyright assignments). However, it sure makes it both a lot harder to pull off and a lot less useful to even try.
In neither case does the change apply retroactively. It only applies to new contributions after the license change.
Terraform was forked to create opentofu if I remember correctly
I think the most recent example is kind of minio for this type of thing no?
Also I am interested what are some open source projects which became closed source since it seems that you haven't named any and I am curious how they can do that. There must be some legal laws protecting it.
So no, I don't have any specific examples of that happening.
In the case of both Redis and Terraform, the forks were announced after the license change, not before. Indeed, the forks were motivated by the license change. The community didn't get a warning "hey, we're about to change the license, fork it while you still can!". It just changed.
That's what I mean when I say the license change does not apply retroactively. The commit of Terraform that existed before the license change is still open-source. I could create a fork branching off that commit today if I wanted to.
The most prominent one is Solaris. It was open one day, and closed the next. Memo didn't say we're close-sourcing it, but moving to a cathedral (final release as open source only) model, but they never released the sources ever after.
Oracle lost all of the core developers over it.
This where Illumos took over.
> There must be some legal laws protecting it.
For permissively licensed code? Nope. Nothing. Even if you don't transfer the copyright, nothing stops someone from forking it and building on it closed source. That someone would be the company opening it or someone else.
In the olden days, when the internet was not that capable to allow collaborative software development, losing developers was a real threat. Now it's not. Developers are dime a dozen. You can close the source, hire some people and continue working on it.
However, this is Open Source model working as intended. Freedom to the developers! If a developer wants to work on a closed source fork, it's completely permitted, baked into the system.
This is why GPL (esp. v3), while viral, is superior. You can't change the license if there's a copyright holder other than you. You can't just fork and close the source. It's limiting to keep the freedom. A working (and arguably necessary) compromise.
For instance, the source code to Epic's Unreal Engine[1] is hosted in a private GitHub repo, accessible by anyone who agrees to a clickthrough license, and free for personal, educational, and commercial use up to $1 million gross revenue, at which point royalty payments are required.
[1] https://www.unrealengine.com/
"open source" can have restrictions too. GPL is highly restrictive because it requires any code linked with the GPL code to be GPL too.
AND it also means with copyleft-licenses that you are required to make the source code for those tweaks public too.
There are really two dynamics at play, one is that there are people who want to give a gift to the world and promote a culture of sharing, in fact they want to REQUIRE you to pay it forward if you use their stuff. That's the ethos behind GPL and AGPL. It has proven to be way more effective than the bean counters expected!
The other dynamic is the more conventional profit making and taking which has perceived a loophole and used it to make some extra bucks on the backs of the nice sharing guys.
I don't have anything against profits, I like money and I own a business where we choose to keep some code totally closed source because money. But you can't deny that this division exists. And I think this dynamic is what most of the dilemmas in the OSS world really arise from, there is a strain of altruism since the early days of the movement which has been betrayed, for many it feels awful if you've released GPL'ed code and then watched Big Tech promptly pile a bunch of proprietary code on top of it and use the resulting machine to strangle the freedoms of the human race over the Internet. You don't automatically get to squeeze profits from a thing just because it's out there and it's shiny and nice. That may not be why the author built it. It may be a betrayal of their intent if you do.
Personally I get worried that even AGPL might not be enough for me if I create a service which faces the public because if it gets large enough then companies technically can still call dibs on me and use their infrastructure to compete against me and I could do nothing...
It was an interesting thought experiment and made me blur the lines between (Fully open source good, source available bad) to well... it depends. And I think everyone should have such nuance since I don't think we live in a world of black and white but its interesting to hear everyone's opinion on it as this topic gets raised every once in a while.
The SSPL isn't the best designed license, but it is "more AGPL than AGPL"
Of course, the license is kind of irrelevant to that situation, Amazon will just reimplement your stuff from scratch if it is popular enough.
Sounds like you want "monopoly as a license" :)
Big companies will rather ignore your project than use an AGPL licensed product. For them it's just not worth the hassle.
Maybe 1 out a 1 billion software is so revolutionary that licenses be damned. But maybe we should temper our expectations a bit around the software we build!
As an example immich is an AGPL based software which has its own instance and then https://pixelunion.eu (I think gives more free stuff like 16 gig instance etc) and then competes with immich itself
They can do this because they release any changes they make or they don't change it that much .
> Sounds like you want "monopoly as a license" :)
What I want is if someone uses my open source product and then uses it to create an competing product, I am under no obligation to release it under a foss and much rather then release it under an source available license
You cannot meaningfully consent to running software on your devices, or running your life on software, when that software's source is unavailable.
"open source" where crucial parts of making a system work, or where the project scoops up eager contributors and them schisms the community once it's finished using their work, tends to have a negative effect.
If those projects were more explicitly either "closed source"/"source accessible" etc, then the open source community could focus their efforts on projects that actually embraced genuine openness and hackability.
Of course - I'd rather there was more actual open source. But what I really want is for "open source" to be some marker saying "this is a project that's open and built by/for the community".
I couldn't escape the waste until I was willing to give up the idea of myself as experienced, as an expert. Until I accepted that time served taught me lessons, but didn't bestow authority. Most people coming into this are new. They relearn what's useful, and leave the rest behind. That's part of adaptation. I try to see their point of view.
If you ask a newer coder what "open source" means, they might say "like MIT?" or even just "like GitHub?" If you look "open" up in a good thesaurus, "available" is there. The Initiative---really, whoever's on the board now or later---will never own or effectively police the term "open source", much less "open source AI". And nobody claiming "open source" for good or ill will ever summon on themself the kind of attention or cachet that marketing badge once commanded, no matter what their license says.
As for fellow oldheads, there's no resolving contradictions between ways we learned to frame these issues, decades ago. Can changes to a license be a solution to the funding problem? Can using freedom terms to buttress a business be truly open? That bizarre conflict of ontologies won't decide where programming goes in the future, if it ever did. I doubt it will even be won or lost. It will just fade away, like the circumstances that started it.
DHH can kick the anthill. The activists can raise their old hue and cry. It's purely elective, demoded dramatics. The real problems of software politics today aren't expressible in either schema. They can even seem tautologically unsolvable. Meanwhile, we've got new aspirational generalities that don't translate into those terms. "Sustainability", because many doing good aren't doing so well. "Decentralization", because we're all sharecropping on some platform now.
Sometimes I think the best I can do for the younger generations facing today is just to never impose petty human trivia about "the movement" ever again. Never deign imply I know what they should consider important. If "free" and "open" meant something to me, let their inheritors tell me what they mean now, in practice. Tell me about the world they built and left for them.
Maybe I don't have to choose. After all, who reads blogs?
I used to read yours, anyway!
If the literal lawyer who specializes in licenses doesn't have a clear point of view on this, what hope do the rest of us have?
If you're looking for a seer with a salvation plan---as technology, legal innovation, organizational form---I don't have hope to offer you. Look at the figureheads of free and open, the "philosophers". The ones we remember succeeded, but not on the terms of the lofty gospels they preached. Very few practical systems are "free". Most competitive software is closed, and sharing code across orgs still sucks much of the time. Linus succeeded, but Linus just wanted to code, get respect, and make good money. Glad he did.
Thinking we'd seen the end of software history got us here. Now I see more willingness to try new things again. They mostly wither or fail, but so did most early attempts at "free". Mutation, selection, adaptation.
MongoDB invested sufficient resources in drafting an update to the AGPL. That license is called the Server Side Public License. Controversy ensued.
Now technically maybe it could meet the OSD if it required a royalty for hosting the software as a SaaS product, instead of banning that - since it allows "free redistribution", and passes on the same right to anyone receiving it (it is defined in terms of prohibitions on what the licence can restrict, and there is no restriction on charging a set amount for use unless that requires executing a separate licence agreement).
Now arguably this is a deficiency in the OSD. But I imagine if you tried to exploit that, they might just update the definition and/or decline to list your licence.
A major concern with the license is about modified code.
If someone builds a cloud service from your project without any code change, and that service happens to be more competitive than the one you provided, there's not much you can do about it with AGPL.
At least that's my understanding. They closed source completely, but a source-available license wouldn't have run into this issue.
There's little to no benefit to outside users. Any work they do on the code is effectively free work they do for you that entitles them to nothing. Including free usage and distribution of the work they did. It's not likely to be helpful.
My attitude to source available products is the same as to proprietary products. I tend to limit my dependency on those. Companies have short life spans. Many OSS projects I use have a history of surviving the implosion of companies that once actively contributed to them. Developer communities are much more resilient than companies. Source unavailable effectively becomes source unavailable when companies fail. Especially VC funded companies are kind of engineered (by VCs) to fail fast. So, it's just not a great basis for making a long term commitment.
If something like Bun (recently acquired by anthropic) becomes orphaned, we'd still have the git source code and a permissive license. Somebody could take over the project or fork it or even create a new company around it. Some of the original developers would probably show up. A project like that is resilient against that. And projects like that have active contributors outside of the corporate context that provide lots of contributions. Because of the license. You don't get that without a good OSS license. I judge software projects by the quality of their development communities. It needs to have diversity, a good mix of people that know what they are doing, and a broad enough user community that the project is likely to be supported in perpetuity.
Shared source provides only the illusion of that. Depending on them is risky. And that risk is rarely offset by quality. Of course people use proprietary software for some things. And that's fine. I'm no different. But most of the stuff I care about is OSS.
I tend walk away from anything with a shared source license. I don't invest my time in it. I don't finish reading the README. It's an instant red flag.
https://mariadb.com/bsl11/
"Effective on the Change Date, or the fourth anniversary of the first publicly available distribution of a specific version of the Licensed Work under this License, whichever comes first, the Licensor hereby grants you rights under the terms of the Change License" ... "To specify as the Change License the GPL Version 2.0 or any later version, or a license that is compatible with GPL Version 2.0 or a later version, where “compatible” means that software provided under the Change License can be included in a program with software provided under GPL Version 2.0 or a later version"
And if they don't, 4 years isn't that long to wait for something that nobody wanted to buy in a fire sale anyway. Especially if you're free to use it the entire time, just not resell it.
DHH is on a mission to show that you can write great software with way less bullshit than is in vogue.
This code base is sparkling in its design. No build frontend, server side rendered templates, minimal js used primarily to drive interactivity, extremely simple models, jobs, and controllers.
It has < 3000 lines of js with incredibly rich interaction design, when was the last time you saw that?
Damn weirdos. Next you're going to tell me that you can deploy it without k8s or even a container?! /s
[0] https://github.com/basecamp/fizzy?tab=License-1-ov-file#read...
I treat it as "business plus", not "FOSS minus". And of course, some source-available licenses convert to FOSS over time.
> Any work they do on the code is effectively free work they do for you that entitles them to nothing.
Funny, that's the same complaint FOSS companies have about AWS free-riding off their hard work and then competing. They switch to source-available licenses because a FOSS license allows flush FAANGs to exploit them.
And then they die because they cut themselves off from the OSS community.
Most shared source companies don't actually fare that well. There's a history of these companies spawning new OSS competitors based on forks. Or just not gaining any traction at all.
The "boohoo amazon killed my business" thing isn't as widely spread as you think. They only offer a few hundred services. Several of those are based on open source things. If I were an investor, I'd be reluctant to invest in shared source companies. Unlikely to have long term stamina, extremely likely to be outpaced by some OSS thingy, likely to see users jump ship as soon as they can. I think a few investors probably learned that lesson the hard way.
Shared source from day 1 just means you probably end up running a niche business and are by definition not very investable. Usually these things if they get funded at all are doomed for some acquihire scenario where they end up in the hands of professional revenue milkers like IBM or Oracle. Nothing good happens to users of those projects when that happens. Developers leave in disgust and start new projects. It becomes abandon-ware.
A second argument here is that if Amazon thinks you are worth hosting in managed form, that means they see a multi billion $ market. This doesn't happen until after you are successful typically. And there are plenty of people who don't use Amazon who might still like to use the same stuff. It's a great validation that you have a valuable project and that there is a huge market for it. You just don't get to be the monopolist in that market.
There are millions of open source projects out there that are just fine. Most of those don't require VC funding, or IPOs, or other cash grab mechanisms to sustain themselves for a long time. Most of the really successful projects actually see active contributions from those FAANGs as well. E.g. MS is one of the most active contributors to the Linux kernel. Google as well. OSS actively used by FAANGs represents the most solid open source code out there. Guaranteed to be well supported for ages. Loads of active contributors; many of them paid for by those companies.
The idea of doing free work for a company does feel weird. But when some bug is really getting on my nerves, being able to fix it and not have to deal with it anymore is a huge benefit!
These are distributed as enterprise binaries. It's common to face _at least_ one or two weird errors in production. Then you have to raise a ticket to support.
Would you like to know how it is discussing a binary-obfuscated error with Customer support? And then after few weeks being assigned to a newly joined fresher? And so on and on, where every person or layer every week says "you're doing it wrong" and you have to restart your proofing and explanation process from scratch?
Hint: After few weeks/months of this (or after 4 times of restarting your proofing process), you start questioning your sanity and life choices.
In those days, all I wished for is just "source-available", so that I can just debug myself what is going on and provide a concise bug report, instead of talking to support.
The weird part is, I'm pretty sure, on the other side, Oracle/IBM also LOST money in that same process. They had to hire an army of people. It was lose-lose on both sides.
Source-available means customers of that software can perform debugging themselves and file pretty good support tickets.
If you are an enterprise today, you would absolutely consider make it source-available to save on your own costs.
I guess source available is better than source unavailable + hand wavy support from a company that's out to milk you for revenue for as long as they can get away with it.
But it's a weak substitute for proper open source that you can just fork and fix if you need to without having to beg some indifferent company to pretty please fix their legacy shit and offering to do free work for them. If it's open source, chances are that there are still some others around also using the same software and sharing your pain that can support you or benefit from your fixes.
I don't see the value of most shared source projects. Usually there are very decent OSS alternatives. And the lack of those usually just means one will pop up shortly and displace whatever it is you are using. Any benefit to these projects tends to be short lived. OSS developers like to copy what is good and add it to their own projects.
E.g. most nosql databases ended up having postgresql absorb whatever it was that made these things interesting. Several shared source things (mongodb) are at this point looking a bit dated and backwards. That's also exactly what happened to MS SQL, Oracle, DB2, and all those other long forgotten databases that people used to use last century. There's very little technical reason to use any of those at this point.
Many source-available licenses explicitly allow this, as long as you don't try to sell your fix commercially to others. You can certainly share it with others, it just has to be free of charge.
I personally choose Free Software first and Open Source Software second. However, if I have to choose between two proprietary options, I'd choose the source available one. I might not be able to patch/touch it, but at least I can see and verify.
Given that functionally these terms are pretty much equivalent, how do you decide which project is Free Software and which is Open Source? By how it calls itself?
Don't need to make PRs to benefit from the source being available. Running software whose source code has been under public eyeballs, and that I have compiled myself (or that a trusted third-party has compiled) is far more secure than running a binary blob that may or may not do what the developer's marketing page promises.
> If something like Bun (recently acquired by anthropic) becomes orphaned, we'd still have the git source code and a permissive license.
Closed-source apps have had source-code escrow clauses for a long time, exactly to avoid that problem. "If my company shuts down, you get all the source code and can do whatever you want with it."
Such clauses can, and should, be brought over to source-available licenses, where they would also be trivial since you don't even need a physical escrow.
As a sysadmin I have sometimes wished I had source available for certain things as it would help in debugging what is going on with a certain error/behaviour. strings(1) only gets you so far.
People seem to complain that they are burnt out by open source quite often so not sure that there are that many contributions apart from a couple projects.
It may also protect a project against business vultures. If you are trying to monetize your project but someone richer than you forks it and offer it for free, what can you do?
Yet, by being source available, the code is still auditable. It is easier for people to understand how the software works. And nowadays you can fine tune an LLM over it I guess...
Seems that is might also be a valid perspective? You can probably have a kind of bus clause so that source code does not become abandoned?
It does however make it unlikely for me to pick and use the project in the first place.
And definitely not a fan of living through the "era" of open source term washing, post truth, tech influencers and their echo chambers.
DHH says Y, now dozens of impressionable Xs will start parroting the same thing.
The point of sharing the code is to benefit the user. Or to benefit yourself because of the marketing that comes from users wanting this. Not to get free labour.
To me source available is: we are open source but if you are an cloud provider with billions of dollars, ask us for a license/fund us.
Technically linux gets funded enough and rightfully so but I remember how netbsd's fundings were so meagre and low which really saddened me.
To be honest, I thought about it and lets assume Linux uses a busl like license which open sources after 4 years
Most likely what would've happened is that someone will take that 4 year old code and then fork it to create the linux we all kinda love.
But overall I think linux is the bedrock of any vps/cloud provider which can be small enough too to be unable to buy their source available license so its kind of an mixed bag I guess and for linux, not worth it because it already gets a lot of funding.
It would be interesting if the same funding that linux kernel gets was shared at a similar level to the distros because I saw cachyos and talked to its creator on discord and I am not kidding but the fundings are very small for a project so big.
Also I think most people use source available license to make money or funding, basically the question which I want to ask you is: how to make enough money in open source?
These fights stem from usage of a proprietary definition of Open Source (the OSI's). Obviously the definition doesn't resonate with DHH, and he uses the words 'open' and 'source' colloquially. Open, as in a book or a window, source, as in the thing that gets compiled into bits and bobs that run on computers. You wouldn't jump on someone's "open letter" to city hall because of a lack of freedom to fork it.
This could stop if people capitalized their reference to Open Source, which is standard English treatment of proper nouns. Unlikely to happen though, because insisting that "my definitions are your definitions" seems to be a primal tribal instinct for humans.
In my view, "open source" but doesn't give you permission to host a commercial service that directly competes with it, is still a degree of open source, and reasonable.
> David Heinemeier Hansson (also known as DHH) released a new kanban tool, Fizzy, this week and called it open source.
From the linked article by DHH:
> That means it's not technically Open Source™
DHH and Open Source
https://ma.tt/2025/12/dhh-open-source/
(https://news.ycombinator.com/item?id=46207459)
2 more comments available on Hacker News