The changing economics of open source – MIT Technology Review

Online systems like SourceForge and later GitHub made it easier to share and collaborate on smaller open-source components. Subsequently, the early and explosive growth of open-source software tested some of those original ideas to the breaking point.

In contrast to the focus on creating alternatives to large software packages in the past, today theres a proliferation of open-source software. On one side, we have internet giants churning out all manners of tools, frameworks, and platforms. On the other side, teams using OneDev, an open-source software development platform, have created small but critical parts that support a huge number of businesses.

The diversity of projects today has challenged many of the initial principles of open source. Hence, in many instances, the codebases for open-source packages are simply too large to allow meaningful inspection. Other packages are distributed by internet titans that dont expect anyone else to contribute to them. Yet, other releases are distinct, targeted releases that may only do one relatively minor task, but do it so well that theyve spread across the internet. However, rather than an active community of maintainers, theyre often just one or two committed developers working on a passion project. One can appreciate the challenges this might create by looking at some recent examples of open sources changing economics.

For instance, ElasticSearch changed its licensing terms in 2021, to include requiring cloud service providers who profit off its work to pay it forward by releasing the code for any management tools they build. Those changes caused an outcry in the open-source community. They prompted Amazon Web Services, which had been offering a managed service based on ElasticSearch until the change, to fork the codebase and create a new distribution for its OpenSearch product.

At the other end of the scale, a security snafu in Log4J created whats been dubbed the biggest bug on the internet after a vulnerability was disclosed in December 2021. Log4J is an open-source logging tool widely used across a multitude of systems today. But, its popularity didnt mean it was backed by a stellar maintenance teaminstead, it was maintained by hobbyists. Here, throwing money at the problem is hardly a solution. We know of many open-source enthusiasts who maintain their software personally while leading busy professional livesthe last thing they want is the responsibility of a service-level agreement because someone paid them for their creation.

So, is this the end of the road for the open-source dream? Certainly, many of the open-source naysayers will view the recent upheavals as proof of a failed approach. They couldnt be more wrong.

What were seeing today is a direct result of the success of open-source software. That success means there isnt a one-size-fits-all description to define open-source software, nor one economic model for how it can succeed.

For internet giants like Facebook or Netflix, the popularity, or otherwise, of their respective JavaScript library and software toolReact and Chaos Monkeyis beside the point. For such companies, open-source releases are almost a matter of employer brandinga way to show off their engineering chops to potential employees. The likelihood of them altering licensing models to create new revenue streams is small enough that most enterprises need not lose sleep over it. Nonetheless, if these open-source tools form a critical part of your software stack or development process, you might want some form of contingency planyoure likely to have very little sway over future developments, so understanding your risks helps.

That advice holds true for those pieces of open-source software maintained by commercial entities. In most cases, such companies will want to keep customers happy, but theyre also under pressure to deliver returns, so changes in licensing terms cannot be ruled out. Again, to reduce the risk of disruption, you should understand the extent to which youre reliant on that software, and whether alternatives are available.

For companies that have built platforms containing open-source software, the risks are more uncertain. This is in line with Thoughtworks view that all businesses can benefit from a greater awareness of what software is running in their various systems. In such cases, we advise companies to consider the extent to which theyre reliant on that piece of software: are there viable alternatives? In extreme circumstances, could you fork the code and maintain it internally?

Once you start looking at crucial parts of your software stack where youre reliant on hobbyists, your choices begin to dwindle. But if Log4Js case has taught us anything, its this: auditing what goes into the software that runs your business puts you in a better place than being completely caught by surprise.

This content was produced by Thoughtworks. It was not written by MIT Technology Reviews editorial staff.

Visit link:
The changing economics of open source - MIT Technology Review

Related Posts
This entry was posted in $1$s. Bookmark the permalink.