post (@post@humansare.social)
The Dangers Agentic Coding Tools Pose to Open Source
I wasn't exactly sure where the best place would be to share this, but I had written up a fairly lengthy post on this topic over on LinkedIn and wanted to extract it out of that silo…so here goes!
To be honest, I've hardly heard a peep about how "agentic AI vibe coding" (say that 10 times fast!) is short-circuiting the incredibly important long tail of developers engaging with open source projects.
Open source libraries & frameworks aren't there simply so you can "build something" with them (that's probably not open source 🤨). Free software is often talked about being free as in speech—libre as it's sometimes called—not free as in beer. They're not "free" for the taking. We need to get past such an extractive mindset! There are many other purposes of open source:
Being part of a global developer community which works on projects together.
Learning from each other, sharing ideas and knowledge. Collaboration.
Exploring ways to make technology beyond mere sharing of code files.
Avoiding vendor lock-in, corporate silos, unchecked capitalism, security/privacy shenanigans, and other undesirable secondary effects of widespread computer tech.
Open source, and its political subset known as the Free* Software movement (*Libre), is incredibly valuable as one of the Great Commons humanity has ever produced.
AI threatens to upend this entirely. Three immediate problems we're already having to grapple with:
GenAI is trained on billions (trillions?) of lines of code, much (all?) of it open source. That means the "value" you get out of an agentic tool producing code has been built on top of untold amounts of human labor which almost without exception never signed up for this. After all, the whole point of sharing code is that humans are freely communicating something meaningful to other humans, just like any other creative artifact.
Agentic tools can produce code which closely resembles known open source solutions, yet that code does not reference those solutions. This leaves incredible learning experiences off the table. Sometimes it's true we want to avoid unnecessary dependencies, but if your tool produces code you use which would otherwise have been something available via the open source community, you are robbing the community of being properly involved in your processes. Even if you manually copy'n'paste a solution from another project, or even StackOverflow, etc., you can (you should!) add an attribution and link your project into the broader conversation around good solutions and best practices.
Instead of up-and-coming programmers learning by contributing to open source repos or creating their own, as part of the very natural and important educational process to learn mastery of craft, vibe coders rob themselves—and the rest of the community at large!—of that capacity. Yesterday's new contributors to open source are tomorrow's vibe coders who do not contribute. Increasingly, this could mean the open source community gets grayer and starts to shrink, lacking necessary youthful vitality. The devastation this would bring to computing overall is incalculable.
We need to talk about this! Spread the word.
P.S. I ran out of room for a fourth major problem! Open source projects are themselves under attack by false PRs: bugfixes which fix non-existent bugs or don't even work at all, bad refactoring recommendations, and many other headaches. Open source maintainers already have way too much to deal with…having to fend off an onslaught of slop is horrifying. It's not a stretch to say that no open source project, properly maintained, can allow AI slop to be merged into the codebase. This should tell you a lot about the dangers of these technologies.
Show Original Post
conansysadmin (@conansysadmin@mstdn.social)
In the realm of the clouds, learn to speak the modern tongues. #FreeBSD #GoogleCloud #OpenSource https://cromwell-intl.com/open-source/google-freebsd-tls/apache-http2-php.html?s=mc
Show Original Post
penguinreviews (@penguinreviews@mstdn.social)
PCLinuxOS: Istoria, caracteristici și ediții ale unei distribuții rolling release descendente din Mandrake/Mandriva
https://penguinreviewslinux.blogspot.com/2025/08/pclinuxos-istoria-caracteristici-si.html
Show Original Post
linuxwebzine (@linuxwebzine@mstdn.ro)
PCLinuxOS: Istoria, caracteristici și ediții ale unei distribuții rolling release descendente din Mandrake/Mandriva
https://penguinreviewslinux.blogspot.com/2025/08/pclinuxos-istoria-caracteristici-si.html
Show Original Post
Linux (@Linux@mstdn.ca)
I also have another python 3 script that easily converts "pCloudPass" password manager into the more recognized Bitwarden format, which also can be widely imported elsewhere.
https://codeberg.org/Linux-Is-Best/pCloudPass-to-Bitwarden
#pCloudPass #pCloud #Password #PasswordManager #Foss #OpenSource
Show Original Post
Linux (@Linux@mstdn.ca)
1st published
A simple python 3 script that easily converts "Locker Password Manager" into the more recognized Bitwarden format, which can be widely imported elsewhere.
https://codeberg.org/Linux-Is-Best/Locker-Password-Manager-to-Bitwarden
#Locker #PasswordManager #Password #BitWarden #Foss #OpenSource #InfoSec
Show Original Post
h4ckernews (@h4ckernews@mastodon.social)
Regolith – Regex library that prevents ReDoS CVEs in TypeScript
https://github.com/JakeRoggenbuck/regolith
#HackerNews #Regolith #Regex #TypeScript #ReDoS #CVEs #OpenSource
Show Original Post
notes (@notes@hatoya.cafe)
One Open-source Project Daily
A commenting system powered by GitHub Discussions. :octocat: :speech_balloon: :gem:
https://github.com/giscus/giscus
#1ospd #opensource #blog #comments #commentswidget #giscus #github #githubdiscussions #hacktoberfest #javascript #nextjs #react #reactjs #utterances
Show Original Post
Jim8888 (@Jim8888@mastodon.social)
Just published a comprehensive guide on using the KT6368A Bluetooth 5.1 dual-mode chip with Arduino! Perfect for DIY IoT and embedded projects. Includes step-by-step wiring, AT command configuration, power management tips, and debugging advice.
🔗 Read more here: https://www.linkedin.com/pulse/connection-practical-application-arduino-kt6368a-bluetooth-tsui-mpmnc
#KT6368A #Arduino #Bluetooth #IoT #EmbeddedSystems #Engineering #OpenSource #technology
Show Original Post
AdvisoryICS (@AdvisoryICS@infosec.exchange)
ICS[AP] updated CISA ICS Advisories Master File for 8/26/25 & the following:
CISA_ICS_ADV_2025_08_26.csv
Available @ ICS[AP] GitHub: https://github.com/icsadvprj/ICS-Advisory-Project
#opensource
#vulnerabilitymanagement
#icssecurity
Show Original Post
grantpotter (@grantpotter@mastodon.social)
SoundThread is a cross-platform user interface for The Composers Desktop Project (CDP) suite of sound manipulation tools. It allows for modular style routing of various CDP processes to quickly build up complex Threads that allow for extensive sound manipulation. #opensource #audio https://github.com/j-p-higgins/SoundThread
Show Original Post
pupuweb (@pupuweb@mastodon.social)
Thinking of using Grok 2.5 for your business? Think again. Elon Musk’s “open-source” release has a major catch: a non-commercial license. This is a huge roadblock for developers. Learn why this is a letdown. https://pupuweb.com/why-elon-musks-grok-2-5-open-source-release-disappointing-businesses/ #Grok #AI #OpenSource #Tech
Show Original Post