Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Missing MIT License Notice in Major Releases – Legal Notice to Maintainers #3430

Open
7 of 10 tasks
Marak opened this issue Mar 2, 2025 · 0 comments
Open
7 of 10 tasks

Missing MIT License Notice in Major Releases – Legal Notice to Maintainers #3430

Marak opened this issue Mar 2, 2025 · 0 comments
Labels
c: bug Something isn't working s: pending triage Pending Triage

Comments

@Marak
Copy link

Marak commented Mar 2, 2025

Pre-Checks

Describe the bug

To: @pkuczynski @ST-DDT @Shinigami92 @damienwebdev @xDivisionByZerox @ejcheng @MilosPaunovic

I’m Marak Squires, the original creator of faker.js, released under the MIT License in 2011 with my copyright notice (“Copyright (c) 2011 Marak Squires”). Your team released a major version without this notice, accumulating millions of npm downloads over months—each one violating the MIT License’s mandatory attribution clause. You’ve since corrected it, but past distributions remain unaddressed.

This isn’t trivial. Under US law (17 U.S.C. § 106), each download without my notice is copyright infringement—potentially millions of instances, with statutory damages of $750 to $30,000 per work, or $150,000 if willful. For maintainers in Germany, this also risks breaching § 97 UrhG, with damages and legal fees (§ 97a UrhG). That’s lawsuits, six-figure exposure, personal liability. I’ve not pursued legal action yet—I want your response first.

This is a public notice:

  • How do you explain omitting my notice for millions of downloads?
  • What’s your official plan to address this period—financially or otherwise?
  • How will you ensure this never happens again?

Respond here by March 10, 2025. Your replies—or silence—will guide my next steps, legal or otherwise. This is my work, my rights; dismissal only escalates matters.

Marak Squires
Original faker.js Author

Minimal reproduction code

No response

Additional Context

No response

Environment Info

Github / NPM

Which module system do you use?

  • CJS
  • ESM

Used Package Manager

npm
@Marak Marak added c: bug Something isn't working s: pending triage Pending Triage labels Mar 2, 2025
@faker-js faker-js locked and limited conversation to collaborators Mar 2, 2025
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Assignees
No one assigned
Labels
c: bug Something isn't working s: pending triage Pending Triage
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@Marak