Marco Bresciani

2 years ago

Marco Bresciani
2 years ago

Alert for my #TKCompanionApp: a user has found an unauthorised copy on Google Play: play.google.com/store/apps/det…
That is NOT my app!! It's could be modifidd from the original in an unknown way, and surely a #FOSS #copyright #violation!
My app is _only_ available through @fdroidorg at f-droid.org/en/packages/name.b… or you can download F-Droid-signed APKs from @Codeberg (codeberg.org/marco.bresciani/T…) or the GitHub mirror: github.com/marcoXbresciani/TKC… and nowhere else.
BE CAREFUL!!

TKCompanionApp

A short and small helper for Toyota Kata practitioners

^Codeberg.org

#foss #copyright #TKCompanionApp #violation @F-Droid @Codeberg.org

in reply to Marco Bresciani

dorotaC

in reply to Marco Bresciani 2 years ago

If they had not modified it, then the GPL does not forbid publishing.

If they modified it, then GPL says the sources must be made available to the users alongside the binary.

It's not possible to tell if there's any foul play without downloading it and checking more details.

in reply to dorotaC

@dcz Sure the GPL would allow them publishing without credits and without mentioning the license? And if you say "that could have been inside the app", I tend to disagree (IANAL, though) as those facts should be clear WITHOUT having to run the software. Just look at the screenshots they post along with their listing. Or as Google asks for screenshots, I'd send the very same just made from the original app, @AAMfP

@Marco Bresciani @dorotaC

in reply to IzzyOnDroid ✅

dorotaC

in reply to IzzyOnDroid ✅ 2 years ago

@IzzyOnDroid The GPLv3 does not say anything about what is on the listing page. You need to provide copyright notices on the copy (section 4). Have you got a copy which we could analyze?

@IzzyOnDroid ✅

in reply to dorotaC

Marco Bresciani

in reply to dorotaC 2 years ago

@dcz
My app has the copyright notice in each single file, the license and it's even REUSE compliant.
The other app, I don't know. but surely I don't want to download it.
@IzzyOnDroid

@dorotaC @IzzyOnDroid ✅

in reply to Marco Bresciani

IzzyOnDroid ✅

in reply to Marco Bresciani 2 years ago

Quick check via Appbrain's interface (appbrain.com/app/name.brescian…):

* APK is smaller than yours (22 MB vs. 25 MB)
* no permissions; if that's true certainly no ads/trackers added
* list of used frameworks/libraries available so you can compare
* a look at their other apps: seems they publish a lot of other FOSS apps which are (like Mucke) either at F-Droid or in my repo

Unfortunately only a Gmail contact given. Maybe ask what they're up to and whether they'd give credits in descs?

@dcz

TKCompanionApp - Android App - Free Download

TKCompanionApp: Free Android app (1+ downloads) → A short and small helper for Toyota Kata practitioners Goal of this app is to be a practical vademecum/handbook for...

^AppBrain

@dorotaC

in reply to IzzyOnDroid ✅

Marco Bresciani

in reply to IzzyOnDroid ✅ 2 years ago

@IzzyOnDroid
I tried writing the author of that, but no results.
Why Google Play said "ads"?
Or maybe they simply copy apps, add ads, but not even check if those apps have the permissions they need...
@dcz

@dorotaC @IzzyOnDroid ✅

in reply to Marco Bresciani

IzzyOnDroid ✅

in reply to Marco Bresciani 2 years ago

@dcz from the list I got the impression they added FOSS apps which intentionally were not present at Play – just because they wanted them there. Well, we could notify the other authors with your findings and experience so they could take action if they wanted.

There are reasons why one chooses NOT to put an app into that walled garden. And I somehow doubt that support requests to the address specified their would be processed – but who knows…

@dorotaC

in reply to IzzyOnDroid ✅

Marco Bresciani

in reply to IzzyOnDroid ✅ 2 years ago

@IzzyOnDroid
I already wrote the other authors.
Let's see how it evolves: it seems the clone of mine has been removed.
@dcz

@dorotaC @IzzyOnDroid ✅

in reply to Marco Bresciani

Marco Bresciani

in reply to Marco Bresciani 2 years ago

And obviously, Google doesn't even trust me. They need proofs! 🤦🏻‍♂️🙄😠😤😡🤬
@Codeberg

Google requesting a screenshot (!) for demonstrating a copyright violation.

@Codeberg.org

in reply to Marco Bresciani

-/mondstern

in reply to Marco Bresciani 2 years ago

Avoid GPlay.

in reply to -/mondstern

IzzyOnDroid ✅

in reply to -/mondstern 2 years ago

@mondstern Please read the original post again: that's exactly what @AAMfP did. Someone else has put his app there, using THEIR name (and that alone is violating the GPL as by that they claim THEY are the authors, @dcz).

@Marco Bresciani @dorotaC @-/mondstern

in reply to IzzyOnDroid ✅

dorotaC

in reply to IzzyOnDroid ✅ 2 years ago

From github.com/marcoXbresciani/TKC…

4. Conveying Verbatim Copies.

You may convey verbatim copies of the Program's source code as you
receive it, in any medium, provided that you conspicuously and
appropriately publish on each copy an appropriate copyright notice;

- - -

The app listing is not a copy. You can write anything you want there. Plus, if they modified it, then they are the authors, too.

TKCompanionApp/COPYING at master · marcoXbresciani/TKCompanionApp

A short and small helper for Toyota Kata practitioners - If you're reading this here on GitHub, please note that main repository is now Codeberg: https://codeberg.org/marco.bresciani/TKCompanio...

^GitHub

in reply to dorotaC

IzzyOnDroid ✅

in reply to dorotaC 2 years ago

@dcz Also read section 6 (codeberg.org/marco.bresciani/T…). a+b do not apply here as it's no "physical copy", which leaves c-e as options – which all require to include a copy of the code or to tell where it is, separately from the "object code". That's at least as I would read it 🤷‍♂️ IMHO e) would apply here, which includes "provided you inform … where the object code and Corresponding Source of the work are being offered".

TKCompanionApp

A short and small helper for Toyota Kata practitioners

^Codeberg.org

@dorotaC

in reply to IzzyOnDroid ✅

dorotaC

in reply to IzzyOnDroid ✅ 2 years ago

@IzzyOnDroid That's how I read it as well. Now we only need someone to obtain the object code so that section 6 is triggered and compliance can be verified.

I'd do it but I don't have an Android device.

@IzzyOnDroid ✅

in reply to dorotaC

IzzyOnDroid ✅

in reply to dorotaC 2 years ago

@dcz And I don't have a Google account, nor any Google stuff on my devices (for years I run as Google-free as I can).

But that said, first thing I'd do is take a look at the size. Just had it recently with another app: size at Play was twice the original. Usually those plagiators add some trackers & ad modules. Also compare permissions, which give a clue on the same line (changes being made) @AAMfP

@Marco Bresciani @dorotaC

in reply to IzzyOnDroid ✅

dorotaC

in reply to IzzyOnDroid ✅ 2 years ago

@IzzyOnDroid Just to underscore it: the GPL does not forbid adding (compatibly licensed) trackers and ad modules, so this alone is no grounds to call that plagiarism.

@IzzyOnDroid ✅

⇧

Marco Bresciani 2 years ago • •

Marco Bresciani
2 years ago