New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Handle Copycats (License fraud) #539
Comments
Thats embarasing. How come they even stay on playstore. https://support.google.com/googleplay/android-developer/contact/takedown |
I've tried that, but google does not seem to respond? Maybe I'm doing something wrong here. Howerver, I know that it works sice there was already a fork that got kicket out. |
don't worry, you don't need to to do anything. it is impossible(99.99%) a single app stays alive until 500 downloads. Play store takes care of it extremely very well as YT is his own too. they can earn 1-2$ but loose 25$ (account registration fee). So, it is not worth that much effort to do something. they punish themselves. A few examples can be found but they won't live longer and the ads will be eventually ceased. |
Sure? audiorocket sem tho have more than 400k downloads. |
Unfortunately while copycats will always be there (I have some on my hands too) it's just easier for you to send a take-down notice to Google and let them deal with it. That being said, Google hates your app so they might just not be taking it down in spite. Who cares, the average 99% of people in the world likes it anyway ;) |
This list has been mined out of 600 MiB of parsed email data. If you can spot some of them, please get in touch with us. Edit: These are package names I parsed from the ones in the field that was added a few weeks after the introduction of the bug reporting. For this and other reasons, this list is not complete, there might be more.
|
I've created a small script to check if they are on google play: https://gist.github.com/coffeemakr/8862e7903c4bea21b99c6a457268af71 The following packages are on google play:
A copyright violation can be submitted with this form: |
This comment was marked as outdated.
This comment was marked as outdated.
Beware that this is not even the whole list, only the ones we captured on a side-channel. But yes, it's quite an amount. Time to take half a day and send some DMCA takedown notices, @theScrabi. |
How about adding some code that checks the display/package name of NewPipe and if it has been changed, let the user know (and possibly refuse to work)? |
Then you'd also notify the copycat and tell them "oh, I need to remove that piece of code". They're not that stupid, because they must obviously know how how to develop for Android to create realistic apps. This measure is rather pointless IMO. |
The only thing we could do is making it harder for copycats to change the email address where the but reports are send to. |
@theScrabi Did you feel the DCMA takedown notice, out of curiosity? It only takes a few minuts and Google reacts in a few days (I already tried with an other app) I can see that the apps haven't all been taken down. I would like to add |
This comment was marked as resolved.
This comment was marked as resolved.
This comment was marked as resolved.
This comment was marked as resolved.
This comment was marked as resolved.
This comment was marked as resolved.
This comment was marked as resolved.
This comment was marked as resolved.
This comment was marked as resolved.
This comment was marked as resolved.
This comment was marked as resolved.
This comment was marked as resolved.
This comment was marked as off-topic.
This comment was marked as off-topic.
Does play store will really help you in this war? |
Well I wouldn't raise, there attention to much. |
This comment was marked as resolved.
This comment was marked as resolved.
Report them. Thats the most we can do. |
I just reported all of the Play Store listings above except for I created this python script that you can use to obtain a description and download screenshots to submit to the form.import sys
import os
import requests
from bs4 import BeautifulSoup
print(open("desc.md").read().replace("com.newpipe.protube", sys.argv[1]))
print("\nhttps://play.google.com/store/apps/details?id=" + sys.argv[1])
html = requests.get("https://play.google.com/store/apps/details?id=" + sys.argv[1] + "&hl=en").text
soup = BeautifulSoup(html, features="lxml")
for png in os.listdir("."):
if png.endswith("png"):
os.remove(png)
alreadyFoundUrls = set()
for img in soup.findAll("img"):
if 'alt' not in img.attrs or 'src' not in img.attrs:
continue
alt, src = img.attrs['alt'], img.attrs['src']
if alt in ["Icon image", "Screenshot image"] and not src.endswith("=s20") and src not in alreadyFoundUrls:
alreadyFoundUrls.add(src)
filename = "icon.png" if alt == "Icon image" else f"screenshot{len(alreadyFoundUrls)-1}.png"
open(filename, "wb").write(requests.get(src).content) Assumes that the "desc.md" file contains the following content: The OFFICIAL NewPipe app is a free and open source application licensed under the GPLv3 license, whose source code is available on GitHub at https://github.com/TeamNewPipe/NewPipe . The app on Play Store, com.newpipe.protube, is an UNAUTHORIZED COPY of the official NewPipe app. That's because the GPLv3 license requires source code to be available to users who download the binaries/APKs (see lines 34 to 38 of the license, available here: https://github.com/TeamNewPipe/NewPipe/blob/dev/LICENSE#L34-L38 ), but the source code of the app I am flagging is not available anywhere. Moreover, GPLv3 requires that changes to the original source code are documented (see lines 210 to 215 of the license), but their source code changes are not published.
The features provided by the app I am flagging also violate the Google Terms of Service for publishing on Play Store, since it allows watching YouTube videos, also in background, without using the official YouTube APIs. |
I found three unreported apps here on the Google Play Store:
|
More apps:
|
This developer also have the two apps below that are Newpipe clones. The second one is opening an ad really aggressively just after the install:
He also uploaded copycats of LibreTube, they are reported here. |
This comment was marked as duplicate.
This comment was marked as duplicate.
What is going on with https://youdown.net/ https://hosted.weblate.org/projects/youdown/#information says "proprietary", which isn't compatible with the license. |
Doesn't matter unless there's a copyright or license violation.
Probably mislabeled on weblate, it appears to be open source. |
https://play.google.com/store/apps/details?id=com.tubepipe.newpipe Similar logo and screenshots appear to be AI-generated |
This comment was marked as resolved.
This comment was marked as resolved.
This comment was marked as duplicate.
This comment was marked as duplicate.
I notified google. |
Should the project README have a clear warning toward the top about NewPipe not being on Google Play? The existing text warns bad actors: I looked up NewPipe on Google Play Store this afternoon and found the following:
All of which are using some variant of the NewPipe logo.
(I wrote out the full/unformatted issue link in the form, ignore the GitHub-specific issue linking). Thanks to the devs and community for being vigilant. I didn't know this was a problem until today |
Unfortunately, they are completely separate audiences. Potential users who manage to reach our ReadMe won't download clones. And users who download clones from the Play Store won't know to come to this repo. |
Another copycat found called playtuber |
https://m.onestore.co.kr/mobilepoc/apps/appsDetail.omp?prodId=0000727868&scYn=Y |
This app may not be using NewPipe code directly, but they are using NewPipe name and logo |
I found this one as well today and even contacted Apple support about it, but there is only so much a user can do. They asked me if I'm the developer so I suppose it would carry more weight if someone "official" from the NewPipe team would file a copyright infringement claim. |
Follow these instructions if you want to report an app on the Google Play Store!
Hey guys, I happen to notice some new copycats which seemingly violate our License.
Once again, it's OK to copy NewPipe as long as you do not violate our GPLv3 License. Please inform yourself about GPLv3 before forking!!!
I already mailed some of the copy kiddies, but they seem to not react on it (like always), so my question is how should we handle these copycats in the future?
List of known and active copies/forks
In the Google Play Store
In the Huawei AppGallery
In the Samsung Galaxy Store
Other copies/forks
The text was updated successfully, but these errors were encountered: