As a long time user of Moq, I’m horrified by this. I think the author has now reverted this but I’ll be moving away from this library anyway.<p>I’ll also be reevaluating all my Nuget dependencies and their potential security risks (so indirectly, one good thing I guess).<p>Reading all the comments on GitHub though, I’ve got to feel for the dev a bit - he has half the .NET community all piling on after years of his hard work likely being under appreciated (as is often the case with OSS developers).<p>He’s made a big misstep with this, and broken a lot of trust, but it genuinely doesn’t look like malice - rather just (really) terrible judgement.<p>Not excusing his mistake, but wow, I wouldn’t want to be on the receiving end of all that anger.<p>Personally I feel there is a limit to how angry I’m entitled to be after years of benefitting from this guys work without paying him a penny.<p>It’s really just a sad situation all round.<p>Edit: more info on the dev’s reasoning behind this change in his original blog post from January:<p><a href="https://www.cazzulino.com/sponsorlink.html" rel="nofollow noreferrer">https://www.cazzulino.com/sponsorlink.html</a>