Most active commenters
  • jacquesm(5)
  • tough(5)
  • gtirloni(4)
  • hamandcheese(3)
  • arp242(3)

←back to thread

Gitlab has introduced a five-user limit for free groups

(docs.gitlab.com)
160 points MattIPv4 | 53 comments | 20 Jun 23 17:14 UTC | HN request time: 2.473s | source | bottom
1. mirzap ◴[20 Jun 23 17:38 UTC] No.36407575[source]
I'm incredibly pleased about Microsoft's acquisition of Github, as I notice visible improvements every passing month. Considering Gitlab's pricing, I wonder why anyone would abandon GitHub Team or Enterprise plan in favor of Gitlab. Gitlab's costs are exorbitant, and they resemble Atlassian products, with an overwhelming number of features that are rarely used, cluttering the interface and diminishing the overall user experience.
replies(9): >>36407665 #>>36407684 #>>36407774 #>>36407852 #>>36408104 #>>36408109 #>>36408163 #>>36408243 #>>36408338 #
2. hamandcheese ◴[20 Jun 23 17:44 UTC] No.36407665[source]
I am not pleased with Microsoft. Yes, there have been some improvements. But GitHub Actions is very half baked, yet the bean counters at my company are asking "why do we pay for buildkite?". It feels like they are using the same playbook as MS Teams.
replies(4): >>36407825 #>>36407891 #>>36416837 #>>36436419 #
3. jacquesm ◴[20 Jun 23 17:46 UTC] No.36407684[source]
I'm not. The biggest enemy of Linux/FOSS should never have been in charge of the biggest repository of open source software.
replies(3): >>36407736 #>>36407846 #>>36407868 #
4. gtirloni ◴[20 Jun 23 17:48 UTC] No.36407736[source]
> The biggest enemy of Linux/FOSS

Have they outdone Oracle? Impressive! :)

On a serious note, is your comment based on historical or recent events?

replies(3): >>36407796 #>>36407814 #>>36409467 #
5. bombela ◴[20 Jun 23 17:49 UTC] No.36407774[source]
The UI keeps bloating, lagging more and more. It can now take few seconds to load a few thousand line file for display.

Ctrl-f search doesn't work anymore because it lazy loads the file as you scroll, with a very noticable lag at that.

Some repos are inexplicably limited to 50KiB/s.

And yes I have a powerful computer, very good Internet connection with low latency to GitHub.

6. tough ◴[20 Jun 23 17:50 UTC] No.36407796{3}[source]
For the historical you have all the EEE tactics https://en.wikipedia.org/wiki/Embrace,_extend,_and_extinguis...

For recent events, you could look at stuff how VSCode is supposedly Open Source and yet fully ridded with spyware and also propietary plugins...

On github, having MS at the realm has certainly affected too how DMCA's and such are deal with vs the old Github.

replies(1): >>36407842 #
7. dingnuts ◴[20 Jun 23 17:51 UTC] No.36407814{3}[source]
It doesn't matter, the only difference between Nadella era and Ballmer or Gates era is marketing. It's the same Microsoft that it's always been.
8. simooooo ◴[20 Jun 23 17:52 UTC] No.36407825[source]
What’s half baked about it?
replies(2): >>36408027 #>>36408124 #
9. gtirloni ◴[20 Jun 23 17:53 UTC] No.36407842{4}[source]
The VSCode situation could be improved but isn't there VSCodium to remediate that?

As for DMCA, I think you have to talk to the government officials about how badly it works.

Are there any other recent events that I'm forgetting that make MSFT the biggest enemy of FOSS?

replies(4): >>36408066 #>>36408516 #>>36408518 #>>36409391 #
10. EduardoBautista ◴[20 Jun 23 17:53 UTC] No.36407846[source]
Microsoft earns a significant amount of money from hosting Linux servers and even makes contributions to the kernel.

How are they an enemy?

replies(1): >>36407893 #
11. nhumrich ◴[20 Jun 23 17:53 UTC] No.36407852[source]
I still use gitlab primarily because of the CI system. Still haven't found any competitors that are as easy to use and integrated as gitlab CI. Github actions are still lagging far behind.
replies(1): >>36407907 #
12. hoherd ◴[20 Jun 23 17:54 UTC] No.36407868[source]
FYI they also acquired NPM. https://itsfoss.com/microsoft-npm-acquisition
13. umvi ◴[20 Jun 23 17:56 UTC] No.36407891[source]
GitHub Actions seems turing complete to me (meaning, I can do anything I can dream up)
replies(2): >>36407933 #>>36408398 #
14. orangepurple ◴[20 Jun 23 17:56 UTC] No.36407893{3}[source]
https://web.archive.org/web/20050922005808/http://news.zdnet...

https://web.archive.org/web/20180523190053/https://www.econo...

replies(1): >>36411029 #
15. Scotrix ◴[20 Jun 23 17:57 UTC] No.36407907[source]
same here, package/docker registry + ci/cd are just simple and easy to use, all the other features I really don’t care about…
16. dijit ◴[20 Jun 23 17:59 UTC] No.36407933{3}[source]
To be trite; Jenkins is then equivalent?

CSS can famously be made turing complete.

https://notlaura.com/is-css-turing-complete/

17. hamandcheese ◴[20 Jun 23 18:05 UTC] No.36408027{3}[source]
forgive me if my information is outdated, but:

- You can't retry a failed action, be it manually in the UI or automatically under certain conditions.

- workflows have a pretty low limit for number of jobs - 250 or so. We already split our rspec tests across 300 parallel jobs.

- the UX is full of jank. If I click into an in-progress jobs I often can't see prior logs for the in-progress step until the step completes.

There are also some annoyances that aren't really half-baked, but annoying for Monorepos:

- workflows have to be defined under the .github folder. This means workflows can't be collocated with the code they relate to.

- workflows can't be generated dynamically. At best, you can dynamically trigger predefined workflows, but I don't think they get associated with the PR that triggered them. This makes patterns like dynamically dispatching workflows based on, say, a bazel query for affected rdeps more challenging, if not entirely infeasible.

replies(1): >>36409048 #
18. deciplex ◴[20 Jun 23 18:07 UTC] No.36408066{5}[source]
He gave you a recent event and you conceded the point then suggested he use something else.

And, DMCA is bad law but many companies make it worse in their overzealousness to "comply" with it.

replies(2): >>36408158 #>>36408943 #
19. yuumei ◴[20 Jun 23 18:10 UTC] No.36408104[source]
I guess you are on Windows then. After Microsoft there are more and more UI bugs creeping in to Firefox
20. bipson ◴[20 Jun 23 18:10 UTC] No.36408109[source]
To be fair, this has changed considerably over the last 10 years.

GitLab was drastically cheaper, offering free private repos, and interesting features ahead of GitHub (although IMO always slightly less "sexy" than GitHub, using Ruby on Rails, etc.).

But at the time they gathered (1) serious funding money and (2) influx from MS-asylants their priorities started to change. But they were still the cheaper option for quite some time IIRC. The pandemic and the associated gold-rush/growth in IT pushed the dynamics over the edge I think.

Now their position is not really that different from GitHub's, and I think it is kind of a preference thing.

I can do with both, but I kind of still like the appeal and UX in GitHub. GitLab will always be in my heart, just like ever "Underdog" (even if that was a long time ago).

I could further see myself immediately falling for a third alternative, if it was sexy/unique enough with drastically better UX, and I think that is not even too far fetched.

But there is the thing, GitHub is a platform, not (just) a tool. GitLab still managed to take ground - kudos! That would be the hard part.

21. jshier ◴[20 Jun 23 18:11 UTC] No.36408124{3}[source]
One area is its reusability story. Last I looked you couldn't create reusable actions in the same repo you want to call them from, they have to be in an external repo. For quite a while, private reusable actions were an Enterprise-only feature, but that may have been lifted now. The ability to reuse particular jobs is also missing, and communication among jobs is limited to variables after the fact. You can only use success or failure states to trigger other jobs, you can't pass values.
replies(1): >>36409137 #
22. tough ◴[20 Jun 23 18:13 UTC] No.36408158{6}[source]
I also couldn't find sources to care to respond to him but I remember about some little terminal app which FOSS code was basically stolen by MS from the indie dev and then he was gaslighted about it. I can't find the source in reddit thanks to the going dark thing now lmao. Can't find it now, so maybe I hallucinated it better than some fine LLM's

If anyone else remembers this incident and can link to a source that'd be great for my sanity.

Maybe similar to this: https://news.ycombinator.com/item?id=17214257

I do have a love-hate relationship with MS, but I don't love the fact that they own 80% of my stack (Yes, I know, my choice) between TypeScript, VSCode, NPM, Github, etc..

Also on VSCodium, it only fixes the telemetry bullshit, the custom LSP Plugins that microsoft keeps for themselves or whatever are not available there. so If you want to use for example copilot or other -microsoft official- plugins you can't do so on VSCodium

Also let's add the whole Github Copilot WhiteWashing non-FOSS proprietary code into anyone to steal. Basically breaking the current status quo in favour of the megacorps that can steal it all and respect no licenses

replies(3): >>36408788 #>>36408843 #>>36408991 #
23. dangerboysteve ◴[20 Jun 23 18:13 UTC] No.36408163[source]
We're in the process of switching from Atlassian to GitHub.
24. Hamuko ◴[20 Jun 23 18:18 UTC] No.36408243[source]
It's actually fucking crazy how expensive GitLab is in comparison to GitHub.

Let's say we have 40 employees who code and 30 employees who create tickets, and we want to get all of the security scanning features that the platform has to offer.

For GitLab, we need the $99/user/month plan because the security features are only available in that subscription. Guest users are completely free, but they're extremely gimped when it comes to issues, so most likely you'll have to have most if not all of your non-coding employees at the $99/user/month tier. Final price is $6930/month (or $3960/month if you can really handle the gimped guests).

For GitHub, you need to pay $19.25/user/month plan for every user and $49/month for every person that commits code for the security features. So that's $1347.50/month for user accounts and $1960 for security features for a total of $3307.50/month.

GitHub is not even half what GitLab wants. It's even less than the gimped guest user experience that you can subject yourself to with GitLab.

25. brightball ◴[20 Jun 23 18:24 UTC] No.36408338[source]
IMO Gitlab's offering is far more comprehensive and can't really be an apples to apples comparison.

Plus, I greatly appreciate the transparency of many of the features that Gitlab sells around security outlining exactly which open source tools they use so that you can just go do it yourself on the CI pipeline. The real value for the premium security tier is when you have a team coordinating multiple projects.

I've seen Github try to upsell to enterprise with features that I can just install in a few minutes using the tools that Gitlab tells me about.

replies(1): >>36408472 #
26. duped ◴[20 Jun 23 18:29 UTC] No.36408398{3}[source]
It invokes arbitrary shell scripts, so who cares?
27. yjftsjthsd-h ◴[20 Jun 23 18:33 UTC] No.36408472[source]
I dunno, gitlab looks more comprehensive if you just look at a checklist "do they have feature X, Y, Z?" but if you look at depth and quality of implementation a lot of their features fall apart. Even issues, which seem like one of the top 4 things they do (git, MRs, CI, issues) are fine for simple stuff but fall apart after that (Have you ever wanted to search for an issue based on something mentioned in a comment on it? Good luck!).

They're also buggy, and in my experience I keep hitting bugs that are long-tail and therefore never prioritized to actually fix.

replies(2): >>36408909 #>>36413344 #
28. yjftsjthsd-h ◴[20 Jun 23 18:36 UTC] No.36408516{5}[source]
> The VSCode situation could be improved but isn't there VSCodium to remediate that?

That's a great example, actually, because they'd like you to think that VSCode is open source... but then if you actually use that you can't access a rather lot of the most useful extensions, which is a completely artificial limitation that appears to be there only to prevent people from actually using any fork.

29. nyanpasu64 ◴[20 Jun 23 18:36 UTC] No.36408518{5}[source]
VSCodium is specifically incompatible with Microsoft's proprietary extensions like SSH development, and now the official VS Code Python extension has now switched to a proprietary Pylance language server.
30. ayewo ◴[20 Jun 23 18:55 UTC] No.36408788{7}[source]
You might have been thinking of AppGet which got killed by Microsoft's WinGet https://news.ycombinator.com/item?id=23331287
replies(1): >>36409827 #
31. pentium166 ◴[20 Jun 23 18:59 UTC] No.36408843{7}[source]
> If anyone else remembers this incident and can link to a source that'd be great for my sanity.

This incident was Casey Muratori raising an issue about Windows Terminal performance:

https://github.com/microsoft/terminal/issues/10362

https://twitter.com/cmuratori/status/1522471966929653761

https://hn.algolia.com/?dateEnd=1687287343&dateRange=custom&...

replies(1): >>36409820 #
32. lazypenguin ◴[20 Jun 23 19:03 UTC] No.36408909{3}[source]
Well said and matches my experience as well. A breadth of features but once you start actively using them in depth you find that the experience is not as polished.
33. gtirloni ◴[20 Jun 23 19:06 UTC] No.36408943{6}[source]
> He gave you a recent event and you conceded the point then suggested he use something else.

Not really. It was a good point but it wasn't clearcut.

Of course I don't think the VScode situation is great but it's far from being "the biggest enemy of FOSS".

That's why I was wondering if there were any other recent events. I've not been keeping track, truly.

replies(1): >>36409856 #
34. 6c696e7578 ◴[20 Jun 23 19:10 UTC] No.36408991{7}[source]
Couldn't find what you were looking for, but did find this one:

  https://www.itprotoday.com/windows-78/inside-story-how-microsofts-open-source-code-theft-was-discovered
35. cpuguy83 ◴[20 Jun 23 19:15 UTC] No.36409048{4}[source]
You can retry failed jobs these days (for awhile now, at least a year? I can't remember).

Workflows can also be (sort of, depending on what you mean?) dynamically generated by using tojson and fromjson to feed the output of one job into a matrix.

Full disclosure, I work at Microsoft but nothing to do with GitHub.

36. RussianCow ◴[20 Jun 23 19:21 UTC] No.36409137{4}[source]
> Last I looked you couldn't create reusable actions in the same repo you want to call them from, they have to be in an external repo.

I'm not sure if/when this changed, but you can definitely do this now.

> You can only use success or failure states to trigger other jobs, you can't pass values.

This is also not true: you can pipe environment variables to $GITHUB_OUTPUT which can be referenced by future jobs.

If anything, the main issue with GitHub Actions is that it's confusing, and the docs don't make it easy to understand how to do things at a high level.

37. teddyh ◴[20 Jun 23 19:39 UTC] No.36409391{5}[source]
https://news.ycombinator.com/item?id=29579994
replies(1): >>36494867 #
38. jacquesm ◴[20 Jun 23 19:45 UTC] No.36409467{3}[source]
> is your comment based on historical or recent events?

Why would I need to choose between those two? How about 'both'?

39. tough ◴[20 Jun 23 20:12 UTC] No.36409820{8}[source]
Yes thank you this is what I meant, I also actually remembered about AppGet pointed by a sibling comment.

I wouldn't trust MS with my business as an indie dev, that's all

And I wouldn't trust their -true- intentions on FOSS beyond how their incentives align currently with the space

40. tough ◴[20 Jun 23 20:13 UTC] No.36409827{8}[source]
Yes thank you also had seen this one but didn't remember the specifics, there's so many cases it's wild.
41. tough ◴[20 Jun 23 20:15 UTC] No.36409856{7}[source]
I think there's enough recent events pointed by other commenters to at least be able to say with certain grade of truth to it that Microsoft isn't the biggest friend of FOSS as much as they pretend to be with stuff like WSL or whatever
replies(1): >>36412022 #
42. arp242 ◴[20 Jun 23 21:37 UTC] No.36411029{4}[source]
This is more than 20 years old...
replies(1): >>36411537 #
43. jacquesm ◴[20 Jun 23 22:23 UTC] No.36411537{5}[source]
So is Microsoft. And everybody that is currently controlling the company was there when this happened.
replies(1): >>36411575 #
44. arp242 ◴[20 Jun 23 22:27 UTC] No.36411575{6}[source]
And? Are they still doing this kind of stuff or not? If they are, then it would be easy to come up with more recent examples.
replies(1): >>36415385 #
45. gtirloni ◴[20 Jun 23 23:08 UTC] No.36412022{8}[source]
The discussion is around MSFT being the biggest enemy though.
46. jamesfinlayson ◴[21 Jun 23 01:44 UTC] No.36413344{3}[source]
Agreed - I'm working at a place that's switching from GitHub to GitLab because it's cheaper (or was when the project was started; maybe still is because GitLab can replace a couple of other tools as well). The checklist looks impressive but I find myself thinking "GitHub does this better" a lot of the time.
47. jacquesm ◴[21 Jun 23 07:14 UTC] No.36415385{7}[source]
Yes, they are still doing this kind of stuff.

https://en.wikipedia.org/wiki/Criticism_of_Microsoft

What surprises me is that the tech crowd is so ready to bend over for one of the worst companies on the planet in the software domain. These are the very same people that abused the legal system in every way that they could in order to slow down the adoption rate of open source. They are still doing this today but quietly, for instance by incentivizing municipalities and other government layers to use their software (for free if necessary) just to stop adoption of equivalent open source solutions.

replies(1): >>36415601 #
48. arp242 ◴[21 Jun 23 07:42 UTC] No.36415601{8}[source]
> Yes, they are still doing this kind of stuff.

What specifically?

I'm not trying to be difficult, but linking to a lengthy Wikipedia page is not an argument. From a quick glance a number are old, and a number are just non-issues (e.g. "Mono patent concerns", which was just some baseless FUD mentioned by Stallman once almost 15 years ago), but I didn't read the entire page. "Incentivizing municipalities and other government layers to use their software" could just be normal business practice (or something shady – much depends on the details).

replies(1): >>36418126 #
49. re-thc ◴[21 Jun 23 10:43 UTC] No.36416837[source]
I would still ask why would you pay for Buildkite.

Github Actions might not be the best but so is Buildkite. It's not exactly strictly better in every way.

Having used all 3 mentioned, it'd be Gitlab > Github > Buildkite for CI/CD for me.

Github wins at least by the sheer community support. Every vendor has an action.

50. jacquesm ◴[21 Jun 23 13:23 UTC] No.36418126{9}[source]
One recent example would be to trample all over the rights of the open source contributors to github hosted repositories by using their code to incorporate it into Copilot, irrespective of the licensing details. I'm sure that counts for nothing in your book but for me taking open source and using it without attribution shows that MS hasn't changed one bit, they simply see FOSS as another resource to be monetized.

As far as incentivizing municipalities is concerned, they are currently in the docket for anti-trust violations just like they were in the past. Historically MS would swoop in on any governmental org in Europe that would successfully implement FOSS solutions instead of MS based stuff. Not to make money, but just to maintain dominance, another anti-trust play. And they never stopped doing that.

51. jrochkind1 ◴[22 Jun 23 18:15 UTC] No.36436419[source]
Interesting, I'm _extremely_ happy with Github Actions. But I have pretty basic needs, admittedly.

You mention buildkite as something you think is a lot better than GH Actions. I'm curious if you've also used the Gitlab equivalent and can compare (I haven't, really).

replies(1): >>36441188 #
52. hamandcheese ◴[23 Jun 23 00:33 UTC] No.36441188{3}[source]
I would not not say buildkite is better, per se. I'd say it's more mature and much more flexible. Buildkite is easily "programmable" in a way that GHA is not. That flexibility is important for advanced/large scale use cases.

I've not tried Gitlab.

53. teddyh ◴[27 Jun 23 16:13 UTC] No.36494867{6}[source]
Also: <https://news.ycombinator.com/item?id=36492329>