[FFmpeg-devel] [RFC] Experiment: enable github pull requests
Tobias Rapp
t.rapp at noa-archive.com
Thu Feb 13 13:04:51 EET 2025
On 13/02/2025 01:24, Romain Beauxis wrote:
> Le mer. 12 févr. 2025 à 18:17, Soft Works
> <softworkz-at-hotmail.com at ffmpeg.org> a écrit :
>> Hm, please help me understand what kind of spam we're talking about here. I can't imagine somebody would take the effort for selling some pills to ffmpeg developers. When it's about advertising anything, that's not the kind of reach those people are typically looking for.
>>
>> Or is it about misusing repos for storage of illegal content? The largest file currently is just 953kB, so we could enforce a limit small enough to make it unattractive for this purpose (unlike GitHub with 100MB per file).
>>
>> We could also disallow repos with custom content (i.e. only forks of ffmpeg are allowed as repo content).
>>
>> Then I wonder, where would be the harm? Some thousand unused forks of ffmpeg shouldn't be a problem - but maybe I'm overseeing something?
> There are all sorts of copyrightable material that can be embedded
> into a git repo.
>
> Also payloads for malicious software.
>
> etc.
>
> Given that this all amounts to manpower from the operator, it's
> totally understandable that they would like to be conservative about
> opening it up.
I'd like to add that with CI enabled there is the possibility that users
of the platform abuse it to get some processing resources for free
(crypto mining). From what I remember this was an issue for the GitLab
instance at FreeDesktop.org.
Regards, Tobias
More information about the ffmpeg-devel
mailing list