Taxonomy of ~20 distinct failure modes that kill open source projects, from ghost maintainers and benevolent zombies to registry orphans and API rug-pulls.
Key Takeaways
The most common failure is silent maintainer departure: no archive flag, no formal handoff, indistinguishable from a long holiday until issues pile up.
“Benevolent zombie” projects score green on all recency metrics while being fully bot-driven (Dependabot, auto-merge, scheduled agents) with no human reading anything.
Succession deadlock is structurally intractable: PEP 541 and npm dispute policy both routinely take longer than forking and renaming, yet the original account holds publish rights.
About 1.7% of npm and 4% of Packagist packages point at a 404 source repo, yet many are still being actively installed.
Transitive death is the recursive case: every failure mode on the list is also a mechanism for silently killing downstream dependents.
Hacker News Comment Review
Commenters pushed back on the framing that open source motivation has degraded; the more defensible claim is that publishing friction dropped, so more brand-driven projects are visible, not that problem-solving projects disappeared.
A recurring practical gap: the article recommends handing projects over before you lose interest, but commenters noted there is no clear pool of qualified maintainers to hand anything to, making the advice hollow.
Scope creep driven by vocal users was flagged as an underrated kill vector: maintainers merge tangential PRs to seem responsive, the codebase bloats, contributor onboarding collapses, and the original use case gets buried. Abandoned feature PRs then generate bug reports the maintainer never wanted to own.
Notable Comments
@Onplana: Describes a current wave of drive-by security-scanner PRs planting badge links in READMEs, formatted as fake audit reports with fabricated severity findings.
@killerstorm: Notes that “needs weekly maintenance” is a modern artifact; 1993 Common Lisp code loads fine in latest SBCL, pointing to ecosystem-level dependency churn as the real driver.
