The government has not been paying software engineer salaries in any sense. This is in regards to profit calculation where business typically pays taxes on profits, so a zero profit company whose largest expense is developers gets a "fuck you, go out of business now" tax bill.
The people who accept pull requests and run the infrastructure of the Linux kernel aren't based on China, else I'd reject it as well.
> A few months ago there was a comment on HN by some American whose company was rewriting their frontend when they learned that antd (a React component toolkit) was developed by a Chinese company.
This is a good move. We're removing Lenovo laptops from our infrastructure here.
When we are talking about something that can be set up to silently grab code, suddenly delete your projects, if you wait until there is foul play you're waiting too long. It's like waiting for evidence of a gunshot wound.
If you have evidence of foul play it's already far far too late to do anything.
With authoritarian nations and their ability to control and steal your projects, you assume guilty until proven innocent. You should require there be a real audit before you trust gitea.
With a large project unless a large auditor goes into your code and reads it with a fine comb it's not a good idea to have blind trust in it.
And Chinese author does mean CCP, assuming they live in China they are almost certainly able to be compromised and it is a bad decision to trust them with something as valuable as your whole code base.
Unfortunately it takes a lot, and I mean a lot, to overcome network effects when something like Twitter is involved. The only way it goes under is if they are losing revenue and they actually go bankrupt at some point.
Elon has already been muzzled quite a bit and I haven't seen much out of him recently, so I imagine as long as that keeps being the case going forward we're going to see Twitter do just fine.