A new service called Malus.sh promises to free companies from the shackles of open-source licenses. Upload your software dependencies. Pay a fee. Get back code that does the same job, but under a corporate-friendly terms—no attribution required, no copyleft enforced. And it’s all legal, or so it claims. Pronounced ‘malice,’ the name hints at the disruption. But here’s the twist. Malus works. It’s satire wrapped around a functional product run by a real LLC with paying customers.
Mike Nolan, cofounder and a researcher on open-source political economy at the United Nations, told 404 Media: “It works.” He pushed for real payments via Stripe. Why? Pure satire gets dismissed, he said. Open-source workers often see themselves as immune to economic pressures—like layoffs. Malus forces the conversation.
Clean-room design isn’t new. Back in 1982, IBM sued competitors cloning its BIOS. Columbia Data Products fought back with a novel approach. One team dissected the original, wrote specs. A separate ‘clean’ team built from those specs alone—never touching IBM code. Courts upheld it. Functionality isn’t copyrightable; expression is. Malus’s blog recounts how Phoenix Technologies cloned IBM’s BIOS this way, kickstarting PC compatibility.
AI changes everything. No need for human teams. Malus deploys AI agents. First set analyzes public docs—READMEs, APIs, no source code. They produce specs. A firewall blocks direct contact. Second set builds the clone. Result: fresh code, MalusCorp-0 license. Zero obligations. “Finally, liberation from open source license obligations,” the site declares.
Take chardet, a Python library for character encoding detection. Dan Blanchard rewrote it ground-up with Anthropic’s Claude. Original: LGPL, copyleft. New version: zero-clause BSD, no strings. “A rewrite that would’ve taken a team of people months or years can be done in days with AI,” Blanchard said in the Futurism piece. He added, “I don’t think there’s any putting the genie back in the bottle at this point.”
Debate rages. Mike McQuaid of Homebrew told 404 Media the legal theory—AI as clean-room reimplementer—stems from how OpenAI and Anthropic train on internet data, then claim outputs are new. Blanchard admits Claude saw the original chardet in training, but insists his spec-to-code process keeps it non-derivative. Courts haven’t ruled on AI clean rooms. Yet.
Open-source fragility exposed. Copyleft licenses like GPL demand derivatives stay open. But if AI rebuilds from specs? Licenses evaporate. Corporations salivate. Acquisitions stall on AGPL dependencies; Malus ‘liberates’ them. FOSDEM 2026 saw Dylan Ayrey of Truffle Security and Nolan demo the process in a talk titled “Let’s end open source together with this one simple trick.” Their presentation cloned libraries in minutes.
Critics cry foul. Even if non-infringing, AI outputs may lack copyright protection under U.S. law—no human authorship. Heather Meeker, open-source lawyer, called Malus claims overblown in her blog: no real firm would tout ‘legally distinct’ so boldly. Cory Doctorow on Medium warned of ‘automatic conversion’ eroding the commons.
Slashdot users debated fiercely. Some saw malware risks in rewritten packages. Others noted copyleft’s decline—few big projects use it now. Forums like Hacker News split: satire today, reality tomorrow. Linus Tech Tips pondered if licensing dies.
Broader fallout. SaaS firms tremble. AI clones undercut pricey services. Oracle’s Larry Ellison downplayed ‘software apocalypse’ fears, per Futurism. But stocks dipped on AI rewrite threats. Patents? Maybe stronger than copyright for algorithms, as Marks & Clerk suggests.
Malus satirizes a truth. AI shrinks barriers to reimplementation. What took months now takes hours. Open-source thrived on goodwill, reciprocity. Generosity’s quiet obsolescence, as Malus’s blog puts it. Developers pour labor into public goods. Corporations harvest, unencumbered.
Nolan again: tech workers dismiss threats, feeling ‘too special.’ But economics bite. Layoffs hit. AI accelerates. Clean rooms scale infinitely.
No genie goes back. Open-source adapts or fractures. Licenses evolve. Communities tighten specs, docs—to thwart clones? Or embrace proprietary forks? Malus forces the choice.
And the Stripe charges keep coming.
WebProNews is an iEntry Publication