The zero-cost fallacy: Open source software in the agentic era | Thoughtworks
Enable javascript in your browser for better experience. Need to know to enable it?<br>Go<br>here.
Search
Close
Ask Tai
The zero-cost fallacy: Open source software in the agentic era
Engineering Stack<br>Back
Engineering Stack<br>Back
Close
Open source
Generative AI
Blog
By
Chris Ford
and
Richard Gall
Published: July 09, 2026
We’re living through the friction points of an architectural shift that has been decades in the making, but has accelerated sharply under the pressure of generative AI. For years, the software engineering industry has operated on a comfortable, perhaps lazy, myth: that open source software is an infinite, self-renewing public good that costs nothing to consume and requires nothing to sustain.
Discussions at the Future of Software Engineering Retreat in Switzerland at the end of June 2026 painted a much more fractured and urgent picture. The reality we must face is stark: open source isn’t simply undergoing an evolution; it is being ground down by structural exhaustion, supply chain warfare and the industrialization of code generation.
The economics of exhaustion and the zero cost fallacy
At the heart of the current crisis is a fundamental misunderstanding of asset pricing versus human cost. There’s an elegant economic argument you hear a lot that the price of a digital asset should gravitate toward the marginal cost of its distribution — which is effectively zero. If copying a library costs nothing, the software, theoretically, should be free.
But this elegant theory hides the human labor at the heart of all this. While distribution costs nothing, maintenance is incredibly expensive. Maintainers of load-bearing open-source packages — the invisible pillars holding up modern digital banking, cloud infrastructure and enterprise platforms — are burning out and facing psychological harassment from multi billion dollar entities that consume their labor without contributing a single cent back.
We’ve collectively confused permissive licensing with a license to exploit. Since the rise of cloud, open source advocates championed MIT and Apache licenses as the ultimate victory for software adoption. However, this permissive regime became the bedrock upon which massive corporations built proprietary empires, wrapping open-source code in light orchestration and capturing economic value while returning little to the ecosystem. It’s a system of patronage for the lucky few, and a welfare state of charity for the rest. This is, of course, fundamentally unsustainable.
Twin pressures: Slop pull requests and declining trust
If the structural economics of open source were already fragile, the introduction of automated tools has turned a chronic condition acute. Maintainers are now facing an assault on two fronts.
The industrialization of slop
The barrier to entry for generating code has dropped to zero. While this empowers individuals, it also flooded repository gates with an alarming volume of low-quality, AI-generated pull requests. Maintainers who once spent their time writing code are now forced to become full-time, unpaid code reviewers, sifting through automated contributions from individuals seeking to gamify their portfolios.
This creates a vicious cycle: the psychological and even emotional burden forces maintainers to close their projects to public contributions entirely. This inadvertently cuts off the next generation of legitimate maintainers who would eventually inherit and sustain the project.
The radical shifts in the trust landscape
We can no longer trust the traditional metrics of open-source credibility. The timeline for project maturation has collapsed; libraries are skyrocketing to tens of thousands of GitHub stars within weeks, driven by viral AI-agent hype, despite having only a three-week commit history. It’s now also incredibly cheap to raise malicious PRs. Agents are finding new attack vectors every day, which makes it incredibly challenging for maintainers to do the work that underpins trust that the software is safe and secure. Taken together, we have a situation where open source’s trust model has been severely degraded.
The licensing paradox: From freedom to exploitation
The structural fragility of modern software engineering is intimately bound to the legal frameworks we designed to protect it. Our current licensing models have inadvertently created an extraction economy, forcing a critical re-evaluation of the foundational philosophies separating "permissive" open-source licenses (such as MIT and Apache) from copyleft agreements (like the GPL).
The historical consensus championed permissive licensing as the ultimate catalyst for widespread software adoption. By reducing friction and stripping away compliance barriers, licenses like MIT and Apache allowed code to propagate globally.
Yet this friction-free distribution became a double-edged sword. One participant at the retreat...