#NotOnGitHub: Tell us about your favourite #OpenSource / #FreeSoftware projects that are not available on mainstream platforms, whether on a self-hosted cgit or available as an archive download only.
I can’t get over how cool it is to view my posts from any server. I’m definitely going to use activitypub for my social media I’m planning on making. I was going to use @Discourse , but considering it’s like #GitLab where you are only able to self host and each instance of discourse can’t interconnect makes me kinda sad. But activitypub seems like the only way I feel happy in both ways.
Someone messaged me about GitLab, claiming they had storage limits. I don't know if that is true or not, but I am pretty sure I am nowhere near it if they do.
I don't even use 1 MB. My development is smaller than JPEGs you view when browsing the internet.
Furthermore, I'd sooner pay GitLab than ever use GitHub. -- Seriously.
GitHub kept losing my code or reverting my changes. GitLab works just fine and all the issues I had with GitHub, I don't have with GitLab.
I'd love to integrate my linter #Regal in GitLab CI pipelines, and it would be sweet if the output could actually annotate the #Rego source code at the location of a violation.
Looking at the GitLab docs I'm thinking "no", but I'd love to be wrong about that!
I convinced my boss to set up @forgejo and evaluate it. We are very unhappy with #GitLab and the current path we see. I already use forgejo for my private git. But a company has other needs, e.g. the actions and PRs.
I'm looking forward to see the outcome and hopefully switch to something better.
@Framasoft "Your account [Framagit] has been deactivated" "Les comptes sont désactivés après un an sans activité" C'est du grand n'importe quoi, j'utilise régulièrement #Framagit.
#mastodon#fediverse implementation question: would it be possible to use the protocol for carrying issue tracking & discussion, e.g. to make #distributed version of #github or #gitlab issue trackers?
I thought that technically these aren't that different from the usual discussion threads here, except maybe for some governance steps like deciding if the issue is closed etc... Perhaps someone already investigated?
A few weeks ago I asked about Fediverse apps that are as unlike as Mastodon as possible. People pointed me to some quite interesting ones, like playing chess over ActivityPub or public transport delay announcements https://social.coop/@J12t/110843539252937792
It seems to be the case that I can't log into GitLab.com any more using my native #GitLab account without activating some third party domain(s) for active JavaScript content. 😔
IMHO, basic functionality should work on any website without third party access. More and more web pages are violating that rule. 😢
So, how is #ActivityPub implementation in #GitLab going? Steadily, if a bit slowly!
In the last four months, we've been working on implementing the first ActivityPub actor, the one allowing to subscribe to projects releases. The ActivityPub part is already written, but there will still be a couple month before it's fully merged. Turns out that the most time consuming part is code review : there is no dedicated team to this (but there is a dedicated developer assisting me, thanks Patrick!), so people reviewing code discover ActivityPub at the time they have to review it (and, by the way, it's incredible how they get out of their way to help a contributor on such a complex subject, they rock). For that reason, we have to make smaller than usual merge requests, splitting the feature as much as possible, and then some again, to make it as easy to understand as possible. And even then it usually takes about a month to get one chunk merged. (more in thread)
That probably don’t make sense to a lot of people, and I need to think about it more
But here’s the basics of it
The CVE data is so comically bad, nobody actually doing #vulnerability work can use it. The ID is all we use. We have to look in other databases and collect or own facts
Automated tools rely on sources like #GitHub, #GitLab, and #OSV. Other than the ID, CVE doesn’t really matter anymore