Contributor License Agreement

Last updated

A Contributor License Agreement (CLA) defines the terms under which intellectual property has been contributed to a company/project, typically software under an open source license.

Contents

Rationale

CLAs can be used to enable vendors to easily pursue legal resolution in the case of copyright disputes, [1] or to relicense products to which contributions have been received from third parties. [2] CLAs are important especially for corporate open source projects under a copyleft license, since without a CLA the contribution would restrict the guardian as well.

The purpose of a CLA is to ensure that the guardian of a project's outputs has the necessary ownership or grants of rights over all contributions to allow them to distribute under the chosen license, often by granting an irrevocable license to allow the project maintainer to use the contribution; if copyright is actually transferred, the agreement is more normally known as a Copyright Transfer Agreement. CLAs also have roles in raising awareness of IPR issues within a project. [3]

Relicensing controversy

When a CLA requires a contributor to assign unrestricted republishing rights to the project, contributed code can be relicensed at the discretion of the project, even when the CLA does not assign copyright to the project. Prominent open source advocates regard CLAs as dangerous to open source rights. [4]

Examples

In 2019 MongoDB used these rights granted by its CLA to achieve a move to a non-open-source license. [5]

In January 2021, the Elasticsearch project used such rights to move the project to a non-open-source license. Drew DeVault, a lead developer with a number of open source projects such as sway, regards this move as a loophole. Both these projects were licensed under a copyleft license, which uses copyright to protect contributions, yet the CLA negates the usefulness of copyright in achieving this protection:

Elasticsearch belongs to its 1,573 contributors, who retain their copyright, and granted Elastic a license to distribute their work without restriction. This is the loophole which Elastic exploited when they decided that Elasticsearch would no longer be open source [...] [6]

CLAs which restrict relicensing

Project Harmony

Project Harmony was established by Canonical in 2010 to optionally avoid the problems discussed above. It provides a CLA template-builder. Based on choices made, the CLA will allow the contributor to keep copyright and assign rights to the project (as above) but with various restrictions on relicensing: using the template requires choosing one of the mutually-exclusive options, which range in restrictiveness. [7] A real-world example is the Ubuntu project. The CLA leaves copyright with the contributor and allows the project to relicense the code but with a restriction based on the license the contribution was made under:

2.3 Outbound License Based on the grant of rights in Sections 2.1 and 2.2, if We include Your Contribution in a Material, We may license the Contribution under any license, including copyleft, permissive, commercial, or proprietary licenses. As a condition on the exercise of this right, We agree to also license the Contribution under the terms of the license or licenses which We are using for the Material on the Submission Date. [8]

Fedora

The Fedora Project formerly required contributors to sign a CLA, either as an organization or as an individual. [9] However, this was retired in 2011 [10] and instead contributors must agree to the Fedora Project Contributor Agreement, which is not a license agreement and does not include assignment of copyright.

Users

Companies and projects that use CLAs include:

KDE

KDE uses Free Software Foundation Europe's Fiduciary Licence Agreement [45] of which (FLA-1.2) states in section 3.3:

FSFE shall only exercise the granted rights and licences in accordance with the principles of Free Software as defined by the Free Software Foundations. FSFE guarantees to use the rights and licences transferred in strict accordance with the regulations imposed by Free Software licences, including, but not limited to, the GNU General Public Licence (GPL) or the GNU Lesser General Public Licence (LGPL) respectively. In the event FSFE violates the principles of Free Software, all granted rights and licences shall automatically return to the Beneficiary and the licences granted hereunder shall be terminated and expire. [46]

However, it is optional and every contributor is allowed not to assign their copyright to KDE e.V.

See also

Related Research Articles

The MIT License is a permissive free software license originating at the Massachusetts Institute of Technology (MIT) in the late 1980s. As a permissive license, it puts only very limited restriction on reuse and has, therefore, high license compatibility.

<span class="mw-page-title-main">Open-source license</span> Software license allowing source code to be used, modified, and shared

Open-source licenses facilitate free and open-source software (FOSS) development. Intellectual property (IP) laws restrict the modification and sharing of creative works. Free and open-source software licenses use these existing legal structures for the inverse purpose of granting freedoms that promote sharing and collaboration. They grant the recipient the rights to use the software, examine the source code, modify it, and distribute the modifications. These licenses target computer software where source code can be necessary to create modifications. They also cover situations where there is no difference between the source code and the executable program distributed to end users. Open-source licenses can cover hardware, infrastructure, drinks, books, and music.

<span class="mw-page-title-main">Apache License</span> Free software license developed by the ASF

The Apache License is a permissive free software license written by the Apache Software Foundation (ASF). It allows users to use the software for any purpose, to distribute it, to modify it, and to distribute modified versions of the software under the terms of the license, without concern for royalties. The ASF and its projects release their software products under the Apache License. The license is also used by many non-ASF projects.

The Netscape Public License (NPL) is a free software license, the license under which Netscape Communications Corporation originally released Mozilla.

<span class="mw-page-title-main">Free Software Foundation Europe</span> Foundation promoting Free Software movement

The Free Software Foundation Europe (FSFE) is an eingetragener Verein incorporated under German law. It was founded in 2001 to support all aspects of the free software movement in Europe, with registered chapters in several European countries. It is the European sister organization of the US‑based Free Software Foundation (FSF), although each foundation exists as a separate organization. Following the return of Richard Stallman to the FSF in 2021, the FSFE declared themselves "unable to collaborate" with the FSF.

Beerware is a tongue-in-cheek term for software released under a very relaxed license. It provides the end user with the right to use a particular program.

Multi-licensing is the practice of distributing software under two or more different sets of terms and conditions. This may mean multiple different software licenses or sets of licenses. Prefixes may be used to indicate the number of licenses used, e.g. dual-licensed for software licensed under two different licenses.

<span class="mw-page-title-main">Eclipse Public License</span> Free software license similar to the Common Public License

The Eclipse Public License (EPL) is a free and open source software license most notably used for the Eclipse IDE and other projects by the Eclipse Foundation. It replaces the Common Public License (CPL) and removes certain terms relating to litigations related to patents.

This comparison only covers software licenses which have a linked Wikipedia article for details and which are approved by at least one of the following expert groups: the Free Software Foundation, the Open Source Initiative, the Debian Project and the Fedora Project. For a list of licenses not specifically intended for software, see List of free-content licences.

<span class="mw-page-title-main">GNU Affero General Public License</span> Free software license based on the AGPLv1 and GPLv3

The GNU Affero General Public License is a free, copyleft license published by the Free Software Foundation in November 2007, and based on the GNU GPL version 3 and the Affero General Public License.

<span class="mw-page-title-main">Free-software license</span> License allowing software modification and redistribution

A free-software license is a notice that grants the recipient of a piece of software extensive rights to modify and redistribute that software. These actions are usually prohibited by copyright law, but the rights-holder of a piece of software can remove these restrictions by accompanying the software with a software license which grants the recipient these rights. Software using such a license is free software as conferred by the copyright holder. Free-software licenses are applied to software in source code and also binary object-code form, as the copyright law recognizes both forms.

BSD licenses are a family of permissive free software licenses, imposing minimal restrictions on the use and distribution of covered software. This is in contrast to copyleft licenses, which have share-alike requirements. The original BSD license was used for its namesake, the Berkeley Software Distribution (BSD), a Unix-like operating system. The original version has since been revised, and its descendants are referred to as modified BSD licenses.

<span class="mw-page-title-main">GNU General Public License</span> Series of free software licenses

The GNU General Public License is a series of widely used free software licenses that guarantee end users the four freedoms to run, study, share, and modify the software. The license was the first copyleft for general use and was originally written by the founder of the Free Software Foundation (FSF), Richard Stallman, for the GNU Project. The license grants the recipients of a computer program the rights of the Free Software Definition. These GPL series are all copyleft licenses, which means that any derivative work must be distributed under the same or equivalent license terms. It is more restrictive than the Lesser General Public License and even further distinct from the more widely used permissive software licenses BSD, MIT, and Apache.

<span class="mw-page-title-main">Open-core model</span> Business model monetizing commercial open-source software

The open-core model is a business model for the monetization of commercially produced open-source software. Coined by Andrew Lampitt in 2008, the open-core model primarily involves offering a "core" or feature-limited version of a software product as free and open-source software, while offering "commercial" versions or add-ons as proprietary software.

Project Harmony is an initiative by Canonical Ltd. about contributor agreements for Open Source software. The aim of the Harmony project is to develop templates of Contributor License Agreements for use by Free and open source software (FOSS) projects.

Software relicensing is applied in open-source software development when software licenses of software modules are incompatible and are required to be compatible for a greater combined work. Licenses applied to software as copyrightable works, in source code as binary form, can contain contradictory clauses. These requirements can make it impossible to combine source code or content of several software works to create a new combined one.

<span class="mw-page-title-main">Unlicense</span> Public domain-like license with a focus on an anti-copyright message

The Unlicense is a public domain equivalent license for software which provides a public domain waiver with a fall-back public-domain-like license, similar to the CC Zero for cultural works. It includes language used in earlier software projects and has a focus on an anti-copyright message.

<span class="mw-page-title-main">Grafana</span> Platform for data analytics and monitoring

Grafana is a multi-platform open source analytics and interactive visualization web application. It provides charts, graphs, and alerts for the web when connected to supported data sources. There is also a licensed Grafana Enterprise version with additional capabilities available as a self-hosted installation or an account on the Grafana Labs cloud service. It is expandable through a plug-in system. End users can create complex monitoring dashboards using interactive query builders. Grafana is divided into a front end and back end, written in TypeScript and Go, respectively.

The Server Side Public License (SSPL) is a source-available software license introduced by MongoDB Inc. in 2018. It includes most of the text and provisions of the GNU Affero General Public License version 3, and primarily replaces section 13 "Remote Network Interaction; Use with the GNU General Public License." with a new section that requires that anyone who offers the functionality of SSPL-licensed software to third-parties as a service must release the entirety of their source code, including all software, APIs, and other software that would be required for a user to run an instance of the service themselves, under the SSPL. In contrast, the AGPL v3's section 13 covers only the program itself.

References

  1. "Licenses". www.apache.org.
  2. "Contributing FAQ". mysql.com. Archived from the original on 2007-12-09. Retrieved 2007-12-22.
  3. "Contributor Licence Agreements". Oss-watch.ac.uk. Retrieved 2014-01-24.
  4. comments, 28 Feb 2019 Richard FontanaFeed 291up 2. "Why CLAs aren't good for open source". Opensource.com. Retrieved 2021-01-26.
  5. "Making the GPL more scary [LWN.net]". lwn.net. Retrieved 2021-01-24.
  6. "Elasticsearch does not belong to Elastic". drewdevault.com. Retrieved 2021-01-24.
  7. "Guide to the CAs | Harmony Agreements". harmonyagreements.org. Retrieved 2021-01-26.
  8. "Contributor agreement form | Contributors". Ubuntu. Retrieved 2021-01-26.
  9. "Legal:Licenses/CLA - Fedora Project Wiki". fedoraproject.org. Retrieved 2023-01-29.
  10. "Meeting:Board meeting 2011-04-05 - Fedora Project Wiki". fedoraproject.org. Retrieved 2023-01-29.
  11. "Contribution License Agreement". .NET Foundation.org. Retrieved 2015-01-11.
  12. "Licenses". Apache.org. Retrieved 2014-01-24.
  13. "Canonical Contributor license agreement". Canonical.com. Retrieved 2014-01-24.
  14. "Clojure - Contributor Agreement".
  15. "CNCF Linux Foundation ID CLA signing FAQ" . Retrieved 2020-10-19.
  16. "Individual Contributor License Grant". CyanogenMod. Archived from the original on 2016-03-08.
  17. "diaspora/diaspora · GitHub". Github.com. Retrieved 2014-01-24.
  18. "Legal Aspects". Qt Project. Retrieved 2014-01-24.
  19. http://www.discourse.org/cla
  20. "Contributor License Agreements | Django". Djangoproject.com. Retrieved 2014-01-24.
  21. "CLA". The Dojo Foundation. Retrieved 2014-01-24.
  22. "SeLion : Individual Contributor License Agreement (CLA)" . Retrieved 2015-02-23.
  23. "LIST OF SUBSIDIARIES AS OF DECEMBER 31, 2014" . Retrieved 2015-02-23.
  24. "Eclipse Foundation Contributor License Agreement". Eclipse.org. 2013-06-17. Retrieved 2014-01-24.
  25. "Contributor Agreement Elastic". elastic.co.
  26. "Contributing to Facebook Projects". facebook.com. Retrieved 2015-07-08.
  27. "CONTRIBUTORS - The Go Programming Language". Golang.org. Retrieved 2014-01-24.
  28. "Google Individual Contributor License Agreement, v1.1". Google Inc. Retrieved 2014-06-09.
  29. Hashicorp. ""Contributor License Agreement"". Hashicorp: Infrastructure Enables Innovation. Retrieved 2021-08-09.
  30. "InfluxDB Contributor License Agreement" . Retrieved 25 August 2014.
  31. "Contribute". Developer.joomla.org. Retrieved 2014-01-24.
  32. jQuery Foundation - jquery.org. "jQuery Foundation Contributor License Agreement | Contribute to jQuery". Contribute.jquery.org. Retrieved 2014-01-24.
  33. Cloud Native Computing Foundation. "Kubernetes CLA". CNCF. Retrieved 2019-02-19.
  34. GitHub - openbmc/docs, openbmc, 2019-02-20, retrieved 2019-02-21
  35. "Contributing to the PSF". Python Software Foundation.
  36. "Contributing to Meteor". Contribute.meteor.com. Retrieved 2014-01-24.
  37. "Contributing to Microsoft Visual Studio Code". Microsoft. Retrieved 2016-04-22.
  38. "Contributor License Agreement | MuseScore". musescore.org. Retrieved 2019-08-30.
  39. "Contributor Agreement". OpenMediaVault. Retrieved 2014-01-24.
  40. "OpenStack Contributors License Agreement". OpenStack. Retrieved 2014-01-24.
  41. "Puppet Contributor License Agreement" . Retrieved 2016-02-01.
  42. "Salesforce Contributor License Agreement". Archived from the original on 2020-07-28. Retrieved 2020-05-21.
  43. "License". TiddlyWiki . 19 December 2022.
  44. "TLDR-pages/TLDR". GitHub . 26 February 2022.
  45. "FSFE welcomes KDE's adoption of the Fiduciary Licence Agreement (FLA)". 2008-08-22.
  46. "Fiduciary Licence Agreement (Version 1.2)" (PDF). Retrieved 2010-12-31.
This page is based on this Wikipedia article
Text is available under the CC BY-SA 4.0 license; additional terms may apply.
Images, videos and audio are available under their respective licenses.