This project page is for heightened scrutiny, packages that need a second pass essentially.

Software should be considered non-free until proven otherwise - the burdon of proof should be on the developers to prove their code is 100% freely distributable.

Chromium-based browsers[1]

• Chromium itself. See Talk:Chromium page for instructions on how to contribute to ongoing evaluation.
• Iridium Browser (based on the Chromium code base)
• Ungoogled-Chromium

Discourse:

• Discourse itself. The current page revision is old and the evaluation needs to take into account the JavaScript trap and LibreJS compatibility. Ssee Talk:Discourse page for instructions on how to contribute to ongoing evaluation.

Electron[1]

• The Electron web framework itself
• Atom
• Riot.im
• Visual Studio Code

Qt WebEngine[1][2]

• The Qt WebEngine library itself
• QupZilla

1. https://lists.gnu.org/archive/html/directory-discuss/2017-12/msg00008.html
2. https://lists.gnu.org/archive/html/libreplanet-discuss/2017-01/msg00001.html

Telegram (desktop client)

• Has delayed availability of source files compared to the binary release. See the numbered items below for more information.
  • Investigate if, after a binary release, the software has a license notice available somewhere and a place telling how to contact the copyright holders for the complete corresponding source.
• Free/libre software philosophy related issue: lacks federation with XMPP. See the whole parent thread of the references from the enumerated list below, and also the page on XMPP in LibrePlanet wiki.

1. https://lists.fsfe.org/mailman/private/android/2017-December/001049.html
2. https://lists.fsfe.org/mailman/private/android/2017-December/001075.html

Nonfree JS

Every JavaScript file in every software for each new version release should be evaluated with command line tool that has the same capabilities as LibreJS. Unfortunate there's no such tool yet.

youtube-dl based software

• There is a small bit of the program that appears to download trivial JS from YouTube.com. It's trivial because it does simple math calculations that ultimately result in the same or similar string. VLC doesn't use youtube-dl, is able to decode the URL, and doesn't execute the script's content directly, it instead takes only some parts of the script (using carefully delimited regular expressions) and then VLC uses its own code to operate on the extracted text. For references, see the numbered list below.
• Even if we manage to have positive review in order to keep/list it in the directory, this doesn't change the fact that the network effect of people depending on, recommending or even giving their time to YouTube will keep happening. I think bill-auger and jxself also suggested people to help with vaeringjar's (a user in #peers IRC channel) project to make a Youtube downloader that periodically checks YouTube itself and mirrors legally shareable content (with correct license metadata) from YouTube to torrents and to Internet Archive. However Internet Archive also has some software freedom issues related to their JavaScript.
• Decision to make: since youtube-dl downloads a script that ends up only doing trivial work so it can be considered free/libre still, should we list it in the directory despite knowing that it helps the network effect described in the item above? What about putting an antifeature notice?

1. http://lists.nongnu.org/archive/html/gnu-linux-libre/2017-07/msg00000.html
2. http://lists.nongnu.org/archive/html/gnu-linux-libre/2017-09/msg00003.html

Parabola blacklisted software

Blacklisted Parabola software that is approved in the Directory

• Abiword
• Abs
• Abuse
• Acpi_call
• Apache_Ant
• Ark
• Atom
• Atool
• Bbswitch
• Bfgminer
• Blackbox
• Blender
• Bogofilter
• Boinc
• Bugzilla
• Bumblebee
• Calibre
• Capi4hylafax
• Cdrtools
• Cgminer
• Clementine
• Clojure
• Clonezilla
• Closure_Compiler
• Cowsay
• Drbl
• Ecasound
• Engrampa
• Epiphany
• Gfxboot
• Gnormalize
• Grub
• Hydrogen
• Jmol
• Kopete
• Kile
• Kodi
• Konqueror
• Krusader
• Libxfce4ui
• Mapnik
• Maven
• Mc
• Mesa
• Midori
• Minitube
• Mp32ogg
• Netpbm
• Pacman
• Povray
• Psutils
• Pyrit
• Qtcreator
• Qupzilla
• Ruby
• Shntool
• Shutter
• Systemd
• Vim
• Wings3d
• Xarchiver
• Xscreensaver
• Parley
• Bladerf

Script

[See https://git.parabola.nu/blacklist.git/tree/?h=development for more scripts]

#!/bin/bash

readonly WIKI_BASE_URL=https://directory.fsf.org/wiki
readonly BLACKLIST_URL=https://git.parabola.nu/blacklist.git/plain
readonly BLACKLIST_FILE=blacklist.txt


wget $BLACKLIST_URL/$BLACKLIST_FILE
[ ! -f ./$BLACKLIST_FILE ] && echo "download failed" && exit 1


readonly PACKAGES=$(grep '^\s*[^:#]*:.*' ./$BLACKLIST_FILE                           | \
                    sed 's/^\s*\([^:#]*\):.*/\1/ ; s/^./\U&/g ; s/-./\U&/g ; s/-/_/g')

for package in $PACKAGES
do status=$(curl -s -o /dev/null -w "%{http_code}" $WIKI_BASE_URL/$package)
   if   [ "$status" == '200' ]
   then echo "$package entry exists"
   elif [ "$status" == '404' -o "$status" == '301' ]
   then echo "$package entry not found"
   else echo "$package unknown response"
   fi
done

License verification

All pages in license pages should have the correct version of the GPL. "The ones I looked at were pretty old, so I'm guessing they're mostly gplv2, but we should get it fixed." (Donald) "It's either the project which inserted the name without version, or the person who added the entry which did it that way." (Adfeno)

• License:GPL
• License:LGPL
• License:MPL