i just want my stuff to update without me having to find out a year later its unmantained and had a fork all along.
or having to watch the repositories of stuff i use for signs it might be unmantained. i didnt know half the (popular!) stuff mentioned here was abandoned then forked.
Yeah, it would be nice if it was easier for devs to just turn over the project to an "official" fork. Unfortunately, I'm sure that would get abused by scammers taking over projects forcefully and adding in malware before anyone notices.
You're spot on with the latter, I've come across a few projects over the years where the ownership is transferred and it's then loaded up with malware or even just instantly abandoned again because the new owner just wants it on their GitHub to get a job or something.
I've come across a few projects over the years where the ownership is transferred and it's then loaded up with malware
See: The Great Suspender
The original developer sold the repo to a new, anonymous maintainer. The new maintainer abandoned the repo but continued updating the Chrome Web Store version of the addon. That version eventually got delisted by Google for including malware.