Google Releases Fresh Code, Tells the Community 'Don't Copy This Code'
'Jarlsberg' has more holes than the cheese it's named after.
Google's Open Source Blog announced new freely available source code for Jarlsberg, a feature-rich microblogging Web app and then asked the community not to download it. What gives?
Jarlsberg is designed to show a developer what do by showing a developer what not to do. The Web app is built from the ground up be vulnerable, showcasing every known security exploit facing a Web app.
The software component of the "Web Application Exploits and Defenses" codelab, was released today and can be downloaded here. Just don't copy it.
You can see the source but it's not open sourceThe Jarlsberg code is licensed under CC-BY-ND, which is not an OSI-recognized open source license and allows no derivative works. So when they say "don't use our code", they don't just mean be careful because it's bad code, they mean you're not legally allowed to use it. The source is available but it's not "open source".