this post was submitted on 28 Feb 2026
124 points (98.4% liked)

Technology

82069 readers
2992 users here now

This is a most excellent place for technology news and articles.

Our Rules

  1. Follow the lemmy.world rules.
  2. Only tech related news or articles.
  3. Be excellent to each other!
  4. Mod approved content bots can post up to 10 articles per day.
  5. Threads asking for personal tech support may be deleted.
  6. Politics threads may be removed.
  7. No memes allowed as posts, OK to post as comments.
  8. Only approved bots from the list below, this includes using AI responses and summaries. To ask if your bot can be added please contact a mod.
  9. Check for duplicates before posting, duplicates may be removed
  10. Accounts 7 days and younger will have their posts automatically removed.

Approved Bots

founded 2 years ago
MODERATORS
L3s@lemmy.world
enu@lemmy.world
technopagan@lemmy.world
L4s@lemmy.world
L3s@hackingne.ws
124
Open source devs consider making hogs pay for every Git pull (www.theregister.com)
submitted 1 day ago by floofloof@lemmy.ca to c/technology@lemmy.world
11 comments fedilink hide all child comments
 

cross-posted from: https://lemmy.zip/post/59925975

Opinion: Careless big-time users are treating FOSS repos like content delivery networks

top 11 comments
sorted by: hot top controversial new old
[–] otter@lemmy.ca 75 points 1 day ago

Fox, who also oversees Apache Maven, a popular Java build tool, explained that its repository site is at risk of being overwhelmed by constant Git pulls. The team has dug into this and found that 82 percent of the demand comes from less than 1 percent of IPs. Digging deeper, they discovered that many companies are using open source repositories as if they were content delivery networks (CDNs). So, for example, a single company might download the same code hundreds of thousands of times in a day, and the next day, and the next. This is unsustainable.

GitHub added rate limits for unauthenticated users last year

https://github.blog/changelog/2025-05-08-updated-rate-limits-for-unauthenticated-requests/

[–] lambalicious@lemmy.sdf.org 50 points 1 day ago

Making big companies pony up is always good.

[–] SnoringEarthworm@sh.itjust.works 23 points 1 day ago (5 children)

a single company might download the same code hundreds of thousands of times in a day, and the next day, and the next

Why would anyone ever need to do this?

[–] Maestro@fedia.io 20 points 1 day ago

They don't design a system that does so intentionally. It's equal parts ignorance, automation and cluelessness

[–] deltaspawn0040@lemmy.zip 12 points 1 day ago* (last edited 1 day ago)

Laziness? Why designate storage for a downloaded repository when you can just use the blazing fast company network to make someone else's storage your storage? Systemically it's fucked up, but individually it kinda makes sense.

[–] lepinkainen@lemmy.world 11 points 1 day ago

Shitty CI system

[–] echodot@feddit.uk 2 points 21 hours ago

The explanation is earlier in the quote you just copied. They're using it as a CDN

[–] poke@sh.itjust.works 5 points 1 day ago

Maybe they're building containers every day? Idk. Can't think of how that'd blow up into thousands without some sort of VM or containerization dependency.

[–] texture@lemmy.world 2 points 21 hours ago

ohhhh i misinterpreted the title as meaning hogs like right wing cranks. LOL

[–] Tywele@piefed.social 8 points 1 day ago (1 children)

Why does this article repeat itself? It reads super weird.

[–] RIotingPacifist@lemmy.world 9 points 1 day ago* (last edited 1 day ago)

It's the register they've been writing slop articles (sometimes with interesting news in the middle), since before AI was called ML.