• Anamana@feddit.de
    link
    fedilink
    arrow-up
    42
    arrow-down
    10
    ·
    10 months ago

    So you never downloaded a program on GitHub?

    No one everever said you need to compromise its focus on developers. There is no compromise to be made. It’s just a stupid button. Stop arguing lol.

    • drathvedro@lemm.ee
      link
      fedilink
      arrow-up
      8
      arrow-down
      2
      ·
      edit-2
      10 months ago

      No, you shouldn’t really be downloading exe’s from github. It is widely being used to spread malware and to pretend that the software is open source when it is not. At least look for a link to the store page(including microsoft store), a distro-specific package or build instructions. Those usually have an AV scan or at least harder to fake.

      • Sir_Fridge@lemmy.world
        link
        fedilink
        arrow-up
        2
        ·
        10 months ago

        Yeah a dude I know got hacked by downloading some random github program, the hacker even started taunting him via discord lol.

        But I downloaded plenty of shit from github, like prusaslicer, my 3d printer’s firmware and plugins for octoprint. Always stuff that is verified via another page though. Almost never stuff that comes up during a random search, and if I do, I look it up first to see if it’s safe.

    • suy@programming.dev
      link
      fedilink
      arrow-up
      11
      arrow-down
      5
      ·
      10 months ago

      The github project page is for developers, and Github already gives you tons of ways to make a user website. Don’t ask your users to visit github.com/group/project, make them visit group.github.io/project, like any sane person.

      Same with Gitlab, BTW.

      And if you don’t like the full static site, use the wiki, or guide your users in the first paragraphs of the README so they find the user information if they must.

    • corsicanguppy@lemmy.ca
      link
      fedilink
      arrow-up
      8
      arrow-down
      8
      ·
      edit-2
      10 months ago

      you never downloaded a program on GitHub

      Precompiled binaries?!? Not even once. It’s a security risk akin to picking up gum on the sidewalk for a fun tasty treat.

      • lunarul@lemmy.world
        link
        fedilink
        arrow-up
        20
        arrow-down
        4
        ·
        edit-2
        10 months ago

        So when you just needed software to run on your machinr, you built it yourself. But first read every single line of code to ensure that it’s safe. Did I get that right?

        Because if you don’t trust the developer to provide safe binaries then you wouldn’t trust the same developer to provide safe code either.

    • originalfrozenbanana@lemm.ee
      link
      fedilink
      arrow-up
      5
      arrow-down
      6
      ·
      10 months ago

      We’re talking about how to design one of the biggest platforms on the internet. Of course there is a compromise. No one is advocating for removing the button, but arguing that the UI is somehow deficient for people wanting to download binaries is really missing the purpose of GitHub.

      • Anamana@feddit.de
        link
        fedilink
        arrow-up
        11
        arrow-down
        4
        ·
        edit-2
        10 months ago

        It’s an additional feature of GitHub that literally everyone uses. Therefore it has purpose. I think it’s ridiculous to argue against it.

        Explain to me how developers or the UI would suffer from easier access to releases?

        • originalfrozenbanana@lemm.ee
          link
          fedilink
          arrow-up
          4
          arrow-down
          6
          ·
          edit-2
          10 months ago

          Literally everyone? I’ve been a software engineer for ten years. My company doesn’t use it, and no company I’ve worked for has. I guess they are not part of “literally everyone?”

          Explain to me how GitHub working on one product feature (releases) has no impact on how much they can work on others. Apparently in your rich enterprise software career you’ve found that resources and time are limitless? Or maybe you think it’s trivial for a platform like GitHub to change their UI.

          This smacks of lots junior software engineers I’ve worked with who think problems are simple and solutions are easy because they’ve never actually DONE anything. I get that you’re very convinced that this is easy and cost less but it’s pretty clear to me you have no idea what you’re talking about.

          • Anamana@feddit.de
            link
            fedilink
            arrow-up
            8
            arrow-down
            1
            ·
            10 months ago

            Again. I’ve said before that release downloads are an additional feature. But it’s a feature most people use. Neither did I say it was easy, nor it was cheap. Just that it makes sense and that it doesn’t take anything away from the professionals regarding UI quality or focus.

            • originalfrozenbanana@lemm.ee
              link
              fedilink
              arrow-up
              7
              ·
              10 months ago

              No, what you mean is YOU use it and you’re assuming most people use GitHub the way you do. GitHub is first and foremost a platform for GIT. Git has nothing to do with releases or file downloads per se. Time spent improving the releases UI is time not spent doing other UI improvements. If you need more proof that it’s not worth it to spend time on the release UI, just take note of the fact that GitHub is not spending time on the release UI. If everyone was using it and it was deficient, do you really think that would be the case?

            • rambaroo@lemmy.world
              link
              fedilink
              arrow-up
              2
              ·
              10 months ago

              It makes sense from a pure UX perspective. But of course the real goal of GitHub is to make money, and their paying customers are mostly corporate entities using it for enterprise development. Unless those companies decide that a download button/better release feature is desirable, it’s not likely to happen.

              Most corporations tie GitHub into their own build system so such a feature isn’t likely to be considered useful. They pay for GitHub to reduce development costs, which is why GitHub spends so much effort on analytics and the dev experience instead of open source/public users.

              • Anamana@feddit.de
                link
                fedilink
                arrow-up
                2
                ·
                10 months ago

                Thanks for understanding what I was getting at and your well written ‘realistic’ addition to it. There’s not much I can add besides saying you’re absolutely right.

          • lunarul@lemmy.world
            link
            fedilink
            arrow-up
            2
            ·
            10 months ago

            Why would your company use that? Did they use github for public applications targeted to non-techincal users? Because that’s what that page is for and what a huge chunk of Github users do.

              • lunarul@lemmy.world
                link
                fedilink
                arrow-up
                3
                ·
                10 months ago

                I use it both ways. As a software engineer I use it for various packages, which don’t even need a releases page. But also as an end-user of open source software, I use it to download pre-built binaries of said software. Idk if you know, but there’s a lot of open-source software out there. And github is the most popular platform for hosting it. And when I say software, I mean the kind where you don’t expect your users to know how to build it from code themselves.

          • bermuda@beehaw.org
            link
            fedilink
            English
            arrow-up
            1
            ·
            10 months ago

            If somebody doesn’t have an idea of what they’re talking about (allegedly) then it would be far more productive to explain it than to keep arguing about it without actually solving anything.