Contrib.social

[policy] Impact on contributed projects and its maintainers

Open on Drupal.org β†’
Created on 2 December 2024, 5 months ago

I originally started writing this this in πŸ“Œ Drupal Core strategy for 2025-2028 Active , but realized that it's probably neither about the strategy nor Drupal Core but something else. Governance? And it's more about Drupal CMS than Drupal Core but I guess really it's just about Drupal.

Apart from Drupal Core, Drupal CMS for the most part consists of (many) contrib projects. We all rely on contrib and its maintainers to provide the features we need to build our websites, but we also kind of know that the rules for contrib so far were different, more relaxed and up to the specific maintainer(s). In regards to test coverage, stability, release management, ...

With Drupal CMS, there's quite a shift. A large chunk of contrib is now suddenly part of the official Drupal product. But unlike Drupal Core, which has a team of maintainers as well as more or less active subsystem maintainers, probably the majority of contrib projects are one-person shows. While there are often contributors for specific things, it's typically one person that does the reviewing, committing and releasing. What impact will this have on governance, funding and other aspects of contrib maintenance? Will this result in different types of contrib, the official ones that are part of Drupal CMS and the others?

As someone who maintains quite a lot of contrib projects, several of which are and will be in Drupal CMS, I have some concerns and questions about how that will play out. What if the product managers of Drupal CMS want a Redirect feature that I'm not willing to maintain? What if I add a feature to Pathauto that conflicts with the strategy of Drupal CMS?

πŸ“Œ [policy] Patching dependencies Active is a good example, and I'll add a separate comment there as well. A policy is suggested that RC/stable releases must not have patches. But what if a patch doesn't get committed?

🌱 Plan
Status

Active

Component

General

Created by

πŸ‡¨πŸ‡­Switzerland berdir Switzerland

Live updates comments and jobs are added and updated live.
Sign in to follow issues

Comments & Activities

  • Issue created by @berdir
  • Comment 5 months ago β†’
    πŸ‡¬πŸ‡§United Kingdom catch

    Adding one more related issue.

  • Comment 5 months ago β†’
    πŸ‡¨πŸ‡­Switzerland saschaeggi Zurich

    What impact will this have on governance, funding and other aspects of contrib maintenance? Will this result in different types of contrib, the official ones that are part of Drupal CMS and the others?

    Thank you, berdir, for opening this issue. I share some of your concerns. I think it's an open secret that Gin, for example, has been struggling to find new project funding and has lost more funding than it has gained in recent times. It seems that part of Drupal CMS is well funded and contributed to and some companies are even investing full time positions in parts of Drupal CMS (which is great BTW!) while other parts are only worked on in spare time. So there seems to be a gap between the different parts which could create a risk.

  • Comment 5 months ago β†’
    πŸ‡¦πŸ‡ΊAustralia pameeela

    What impact will this have on governance, funding and other aspects of contrib maintenance? Will this result in different types of contrib, the official ones that are part of Drupal CMS and the others?

    The honest answer is we just don't know yet. It's a really complicated issue without an easy solution. But certainly something we have thought about and talked about, and are conscious of.

    What if the product managers of Drupal CMS want a Redirect feature that I'm not willing to maintain? What if I add a feature to Pathauto that conflicts with the strategy of Drupal CMS?

    The easy answer from me is: it's your module, you can do what you want! Of course, we hope that we can align with maintainers, and I don't expect there to be many cases where there is a direct conflict. But it might happen. Maybe I am reading into it a bit, but it feels like an unspoken part of this question is, "Will there be pressure from the Drupal CMS team to do something I'm uncomfortable with?" This isn't an official policy or anything but for my part the answer is "No". There are many ways to work around disagreements, some of which are outlined in #3488829-8: [policy] Patching dependencies β†’ . I would think existing governance on this is sufficient, unless there is a worry that efforts would be made to intervene/overrule a maintainer and commit something against their wishes?

    So I guess it's more useful to discuss what is the best way to document some answers that would relieve your concerns? I'm not really sure how we could write a policy that is generic but also useful. If you have thoughts on it, or examples of principles that would be a good starting point, I would like to hear them.

  • Comment 5 months ago β†’
    πŸ‡¦πŸ‡ΊAustralia pameeela

    I didn't mean to postpone this, sorry! Too many issues open I guess.

  • Comment 5 months ago β†’
    πŸ‡·πŸ‡ΊRussia Chi

    I like the idea of "Golden Contrib" which was proposed years ago
    https://www.drupal.org/project/drupal/issues/1255674#comment-4917546 β†’

    It's basically a curated list of Drupal modules and themes.
    For each project in this list DA must ensure that
    - It has active maintainer
    - It has a stable release compatible with the current Drupal core
    - It has proper documentation
    - It complies with the strategy of Drupal CMS

  • Comment 5 months ago β†’
    πŸ‡¬πŸ‡§United Kingdom catch

    One of the ways this is simultaneously impacting both maintainers and Drupal CMS is the large number of pre-release modules included in Drupal CMS.

    That would be completely fine during development or even rc, but now there is a hard deadline for a stable release in January which I don't believe was communicated to any of those contrib maintainers before it was announced - it certainly wasn't communicated to or discussed with core committers or the security team beforehand.

    There is clearly funding going into some parts of Drupal CMS, but one way to reduce negative impact on contrib maintainers would be to provide some funding towards tagging stable releases of versions that are included.

  • Comment 4 months ago β†’
    πŸ‡¬πŸ‡§United Kingdom catch
  • Comment 15 days ago β†’
    πŸ‡ΊπŸ‡ΈUnited States lieb

    The other side of this is for site builders. Will we get stuck on older versions of CMS because a module we're using doesn't get updated, as was frequently the case back in Drupal 5, 6, 7? I would like to see a category of contributed modules that includes some kind of guarantee that they will get updated along with Core releases and will not be abandoned. Indeed, I believe this is necessary for the long term success of Drupal-CMS.
    The implications of this is that there needs to be some sort of committee, that would define a process so that if a developer is no longer able to maintain a module, they can facilitate finding someone else who will. This along with #6 above.

  • Comment 11 days ago β†’
    πŸ‡¦πŸ‡ΊAustralia pameeela

    We already have a process for taking over modules that are no longer maintained. A "guarantee" is not really feasible, since there is nothing commercial here, we are all just volunteers or sponsored by our companies at their discretion.

    Certainly, we are vetting the modules included in Drupal CMS carefully, and it is highly unlikely that a module that is included would be totally abandoned. But if that did happen, the Drupal CMS team and the wider community would work toward a solution. I don't think this can be formalised, at least not for now.

  • Comment 11 days ago β†’
    πŸ‡ΊπŸ‡ΈUnited States dww

    Re #9: see also https://www.drupal.org/project/puwg β†’ as a formalized way to keep projects updated to the latest versions of Drupal if the maintainers are unresponsive.

  • Comment 10 days ago β†’
    πŸ‡¦πŸ‡ΊAustralia pameeela

    Thanks @dww!

contrib.social Blog FAQ Discussions
Production build 0.71.5 2024