Open source the browser

DR Kagi already has 12 open source projects, all of them are much easier to contribute to than to a web browser, and we rarely get any contributions, if at all. We can not even get people to contribute to Orion, even when we offer to pay them to do so. I am afraid we do not just see the benefit of allocating resources this way.

Here is a more detailed proposal/FR that incorporates some elements of the discussion above:
I propose a phased approach to open-sourcing the Orion browser, balancing the benefits of transparency and community involvement with the current resource constraints of the Kagi team. This approach aims to address user concerns about privacy verification, potential security audits, and the ability for users to contribute to the project, while minimising the immediate burden on the small development team.

Phase 1: Source Code Publication

• Publish the source code of Orion as a downloadable archive (e.g., tarball) with each major release.
• Include build instructions to allow interested users to compile the browser themselves.
• Disable public contributions initially to manage workload.

Phase 2: Documentation and Transparency

• Develop and publish comprehensive documentation, including:
  • Project overview (architecture, components, design philosophy)
  • Development guide (setup, coding style)
  • Roadmap for future development

Phase 3: Limited Community Involvement

• Set up a public repository (e.g., on GitHub) with issue tracking enabled.
• Allow users to report bugs and suggest improvements through issues.
• Consider enabling pull requests for small, non-critical components or documentation.

Phase 4: Full Open-Source Transition

• To be implemented when the team reaches a sustainable size (e.g., 10 developers).
• Hire or designate an open-source community manager to act as a liaison between the community and the core development team.
• Enable full public contributions, including pull requests for all components.

Benefits:

1. Increased trust and transparency, allowing users to verify zero-telemetry claims.
2. Potential for community contributions, even if limited initially.
3. Improved bug reporting and feature requests with direct reference to source code.
4. Attraction of privacy-focused developers and potential future hires.
5. Competitive advantage against other privacy-focused browsers.

Considerations:

• Choose an appropriate license that protects Kagi's interests while allowing for transparency.
• Implement a code review process that doesn't overwhelm the current team.
• Clearly communicate the phased approach and current limitations to manage community expectations.

This phased approach allows Orion to move towards open-source status gradually, addressing user concerns while working within current resource (time, people) constraints. It provides a clear path forward that can be adjusted based on team growth and community engagement.

Anatomy5803 Orion is 3 full time people. Orion + WebKit codebase is several orders of magnitude larger than LadyBird. We have over 2000 open issues, dev team is working on those vs trying to document Orion and manage open source project. As I said before, expectation that someone will contribute is pretty low at this point. I am afraid we are just not equipped for this move at this time.

Vlad

Orion + WebKit codebase

With what I was following, I mean no disrespect to the dev team, they have done a lot and so much with so little, and I appreciate their work immensely, I sincerely mean that. With that said, if you're making a browser that uses another browser engine (WebKit, Chromium) you should not be modifying the codebase directly. You can use patches to modify them externally. You should not be having the maintain the WebKit codebase.

Related: https://orionfeedback.org/d/7335-feature-freeze/3

Vlad There are open source, fair code, & other source available licenses & restrictions that protect IP, and can be enforced in court. Respectfully, I don't see many arguments against open sourcing. Your arguments are essentially (with my counterarguments/rebuttals):

1. Claim: Limited Resources.
   • My Response: Open-sourcing doesn't necessarily require immediate active management. Starting with a read-only repository could increase transparency without significantly increasing workload.
2. Claim: Management Overhead.
   • My Response: This can be remedied by adopting a phased approached like the one discussed above. Start with publishing code, then gradually open up to contributions as resources allow. Many successful open-source projects started small.
3. Claim: Large Codebase.
   • My Response: The size of the codebase doesn't prevent open-sourcing. WebKit is already open source, so the focus would be on Orion-specific code.
4. Claim: Lack of Qualified Contributors.
   • My Response: On the contrary, open-sourcing could actually attract qualified contributors who are interested in working on a WebKit-based browser but haven't had the opportunity. Additionally PRs will be disabled for the time being, so there won't be anything to contribute in terms of code.
5. Claim: Limited Benefit.
   • My Response: I personally think the benefits outweigh the drawbacks. Benefits include increased trust from privacy-conscious users, potential for third-party security audits, and possibly attracting talent or contributions in the long run.
6. Claim: Low Expectation of Contributions.
   • My Response: Even if contributions are low, the transparency itself is valuable. Plus, you can't get contributions if you don't open up the possibility!
7. Claim: Distracted Dev Team.
   • My Response: Open-sourcing aligns with Orion's focus on privacy and could be seen as an extension of current development efforts, not a distraction from them.
8. Claim: Intellectual Property.
   • My Response: IP concerns can be mitigated through careful licensing (MPL 2, AGPL, etc).
9. Claim: Lack of Readiness.
   • My Response: Open-sourcing can be a gradual process. Starting with code publication doesn't require being fully "equipped" for managing a large open-source community immediately.
10. Claim: There's Already Privacy Verification (LittleSnitch).
    • My Response: While zero-telemetry is great, open-sourcing allows for independent verification and validation of the source code, which builds even more trust in the privacy-conscious community.

Other Ideas:

1. Open-sourcing can help build a stronger community around orion, potentially leading to more users, advocates, and eventually contributors.
2. In the privacy-focused browser market, being open-source can be a significant selling point, potentially giving Orion an edge over closed-source competitors.
3. More eyes on the code could lead to faster discovery and reporting of bugs, even if the community isn't actively contributing fixes.
4. Open-sourcing can ensure the project's longevity, as the community can potentially maintain it even if the original team can't.
5. Many of your concerns can be addressed by adopting a gradual, phased approach to open sourcing, starting with simple code publishing/publication and slowly opening up more as the project and team grow.

I'd like to gather your thoughts on open-sourcing Orion. I believe this could be a significant step forward for the project and the product as a whole. I’d like to gently ping @eirk , @gp , @laiz , @TheOtherKai . As active contributors to the project, your input would be invaluable in shaping this decision. Open-sourcing Orion would be a significant step forward for the project, and I believe your perspectives would help inform this move. Additionally, as contributors who are already engaged with the community, your insights on the potential benefits and challenges of open-sourcing would be particularly constructive. I'd also like to gently ping @dino , who appears to be the senior software engineer for Orion, to share his expertise on this matter, especially given the concerns around management and team resources that Vlad mentioned. Your collective input would help ensure that we make an informed decision about open-sourcing Orion. Open-sourcing Orion (eventually) would likely require contributions in various forms, including code and other areas such as documentation. Given your active roles within the community, I believe your opinions on this topic would be both prudent and constructive.

Hackmodford

Hate to bring this up again, but two questions:

1. How can a user verify the zero telemetry claim?
2. @Vlad is there a way to verify that the scenario laid out by @Hackmodford where in telemetry is stored locally and and only transmitted when a testing tool is not being used, without sharing source code.

EDIT: clarified my question

Hackmodford

Right. I guess I should have said how can we clarify those without sharing source code.

I should also note that I do think making the browser open source would be ideal, and I’m skeptical that zero telemetry can be verified without that. But I’m not an expert in privacy or security so I am genuinely curious if there’s a way to even do that without making the code public.

ahk Anyone can install a network proxy (Proxyman, mitmproxy and Charles are good options on macOS). With Orion, you’ll see zero unexpected requests in your network traffic log by default. It takes 5 minutes to set this up vs going through millions lines of code.

The outlined scenario is not realistic as Orion doesn't know when traffic is being monitored and doing something like this makes no sense.