> But for how long?

the subtitle of the web era

The hippies were right

> And their entire marketing strategy is built around free hosting for public data

    1. Embrace
    2. Extend       <- you are here
    3. Extinguish

it's bonkers when people innocently trust Microsoft to do the right thing

This would make sense if it wasn't a core feature of GitHub LONG BEFORE Microsoft bought them.

Can we stop this madness already?

No, because Microsoft did already buy them?

A simple vanity domain solution, like for Go packages, seems like it could work. Just redirect the whole URL directly to the actual registry's URL.

I don't know if container signature tools support multiple registry locations though.

I like where your head is at; I found this [1] and it makes a case that an attack vector may be created.

[1] https://stackoverflow.com/a/67351972

That's different - that's about changing the _client_ configuration. I'm looking to change the server instead, so that the client can use an unambiguous reference to an image, but end up at different registries depending on the server configuration. In a perfect world, Docker Hub would let you do this to migrate community projects away, but even just being able to manually change references now to a registry-agnostic URL would be a big help.

Shouldn't be any security risk there AFAICT. Just hard to tell if it's functionally supported by typical registry clients or if there are other issues that'd appear.

> so they can afford to do this forever if they choose.

If they choose. It's in fashion right now to fire people and squeeze free tiers.

They have a pretty good track record in code hosting (15 years), why would they ruin it for containers?

> But for how long?

applies very much to Github, and for all of their services, not just containers. The elephant in the room, hardly needs to be mentioned I would think (Microsoft). We are only a few years into that regime.

You can say a lot of bad stuff about Microsoft, but they are not known for randomly and suddenly killing of their services.

Serious question, though: how many services have they offered over the years that were free to anyone?

Free to existing Windows users, perhaps, but free to the world doesn’t seem like something Microsoft was historically in a position to offer, much less later kill.

Hotmail/outlook.com and OneDrive are two services that Microsoft has been offering for decades, for free (with a storage limit, but that’s nothing weird), no Windows required.

Not sure why those didn’t occur to me, other than that I’ve never used them. Thanks.

It's not randomly and suddenly killing off services, but rather suddenly (and not randomly) changing the pricing structure when companies have been committing to the point of lock-in for years on the free tier.

The 6-8 orders of magnitude difference in storage required?

We need a culture to not use resources even if it is available and cheap. Use github like it wasn't free.

Github shutting down is not on my risk matrix. Hopefully it happens after I retire.

It's on ours where I work, which is why we use Gitea to clone the various open source projects we use to our own servers. With binary level deduplication the amount of data stored is actually incredibly small. I think the unduplicated storage is like 50GB, and the deduplicated is like 10GB?