After 10 Years, Yelp Gave My App 4 Days
David Kopec has removed his macOS app, Restaurants, after a decade due to unexpected changes in Yelp's API licensing, which threatened access to essential data for the app's functionality.
Read original article
David Kopec has removed his macOS app, Restaurants, from sale after a decade due to changes in Yelp's API licensing. Initially developed in 2014 using the Yelp API, Restaurants served as a dedicated client for searching restaurants on Mac, integrating various macOS features and driving traffic to Yelp's website. Despite moderate success, Yelp's recent email indicated that Kopec's API usage was higher than other developers, requiring him to complete a licensing agreement within four days or risk having his API key disabled. This sudden demand for a paid license was unexpected, as Kopec had previously received permission to use the API and had not been informed of any changes to Yelp's API model.
Faced with the threat of losing access to Yelp data, Kopec decided to remove the app from the Mac App Store to prevent users from purchasing a product that would soon become non-functional. He expressed disappointment over the abrupt communication and the impact on his users, many of whom had recently purchased the app. Kopec reflected on the challenges of relying on third-party APIs, emphasizing the need for developers to ensure stable partnerships. He also noted the difficulties of maintaining a sustainable business model for apps that depend on ongoing access to external services, particularly when users expect long-term access for a one-time purchase.
Related
Leaking URLs to the Clown
The author describes leaking URLs during Mac app testing, with a unique URL receiving requests from a random "cloud" service every three hours. This raises privacy concerns and highlights potential risks for users.
Man makes money buying his own pizza on DoorDash app
A US pizza restaurant owner discovered DoorDash selling his pizzas at lower prices without permission. DoorDash conducted a trial without informing owners, sparking scrutiny over its business practices and CEO's controversial remarks.
3M iOS and macOS apps were exposed to potent supply-chain attacks
Vulnerabilities in CocoaPods server exposed 3 million apps to supply-chain attacks for a decade. Flaws allowed hackers to inject malicious code, compromising sensitive user data. Developers urged to prioritize security measures.
Hey Google, what happened to all the fun?
An Android app, "Is It Tuesday?" created in 2010, faces removal from Google Play Store due to lacking purpose under new policies. Author explores challenges for developers and values software freedom. Consideration for alternative platforms like Fdroid.
Deluge of Fake Mac App Store Reviews
A surge of fake customer reviews in the US Mac App Store targeted top paid apps priced between $1.99 and $4.99. Reviews, mostly 5 stars, featured generic text, raising suspicions. The total cost of fake reviews exceeded $1150. Apple's default review sort order potentially hides these fake reviews. Motive remains unclear, with speculation of developer involvement. Apple's lack of curation raises authenticity concerns.
- Many commenters express frustration with Yelp's handling of API access and the sudden changes in pricing, viewing it as a betrayal of long-term developers.
- Several users share personal anecdotes of similar experiences with other APIs, emphasizing the risks of relying on third-party services.
- There is a consensus that businesses should avoid depending solely on a single API or platform to mitigate risks.
- Some commenters speculate that Yelp's decision may be driven by a desire to monetize data in response to AI training demands.
- Criticism of Yelp's business practices and customer relations is prevalent, with calls for more transparency and fairness in API access.
69 commentsThe email also arrived in my spam folder, so I was lucky to even see it. Once I got back to them they did increase the cutoff by a few days but it has since been stopped.
Their new prices seemed insane to me.
"2. CHANGES Yelp reserves the right to modify the API Agreement at any time. If Yelp reasonably determines that a modification may materially and adversely impact You, Yelp will provide email notice to you using the email address you provided during registration no less than ten (10) days prior to the material adverse modification taking affect. IF YOU DO NOT WISH TO BE BOUND TO ANY NEW OR MODIFIED TERMS, YOU MUST TERMINATE THE API AGREEMENT BY CEASING USE OF THE API WITHIN TEN (10) DAYS OF RECEIPT OF SUCH NOTICE."
So, the 4-days would have violated their original notification terms of use anyway. I think they realized this after the fact of sending all of us the threatening emails and this is why they ultimately closed my API key after 10-days as described in my original post.
Anyway, just an interesting aside that the poorly written, inaccurate original email that I shared in my original post was even inaccurate to their own policies.
Real lesson here is to avoid single points of failure, regardless if it's API, people or partners. Ask yourself a question if there's a single entity that can kill your business and remove that reliance.
> Earlier this month, we sent you an email about your Yelp Fusion API usage. That email gave developers until July 23rd to contact us if they want to continue using Yelp’s data for use in their app. We realize you might need more time and are extending your free access for an additional 90 days starting today. Your access should be available now.
> We’re sorry for any inconvenience or frustration this abbreviated transition might have caused. Please respond to this email or contact us at api@yelp.com if you have any questions.
This looks like a Face/Off situation to me.
(Spoiler alert for a 1997 action movie: in Face/Off a cop surgically exchanges faces with an imprisoned villain in order to go undercover in their organization, but the villain then murders everyone who knew about the swap and steals the cop's life.)
Somebody at Yelp in 2014 knew that you had been approved to build this app. That person almost certainly no longer worked at Yelp ten years later, so the institutional knowledge of that agreement had likely been lost.
Also, I’m guessing this new API pricing policy is they way of combating data scraping to train AI.
It sounds like the monetary stakes are pretty small, but depending on the author's desire, it might be worth doing some research and potentially going to small claims court and claiming damages for those customers that requested refunds.
I too used the macos App.
Looking forward to Apple Map dumping Yelp, because that combo doesn't work for me and I do not want Yelp cluttering my Apple map.
If this move was AI driven, like with Reddit and others, I’m starting to dislike AI more and more… at least the rent seeking end of it, which seems to be slowing killing the open internet.
SaaS can provide “open core” or better yet simply sell a hosted version of their fully open source code. If the provider fails to provide, you can fall back to self hosting.
The API equivalent would be open sourcing the data. This is the OpenStreetMap model. If the API provider fails to provide, you can fallback to the underlying data.
Given how many stories of greed and throwing people under the bus for money I hear nowadays, we might already be living in a dystopia.
That was quite the assumption. They gave you access to something for free, not encouragement. I do feel bad for OP, but they weren't paying for the API, and should not have had any assumption that it would last forever because there was no contract or terms or anything. This is the risk we take by building our house on someone else's foundation.
I am particularly disappointed by the generic "Your API usage is higher than lots of other Yelp Fusion developers" statement.
My giveback service has a tiny user-base and find it hard to believe my API usage level can be higher than average.
https://try-something-new.web.app was built a couple years ago.
More than that, if you aren't paying for use of that third-party API, the people who run it will not care about you, and will think nothing of shutting you down.
I think Yelp handled this poorly, and Restaurants was probably a net positive for their business -- a positive that they were getting for near-zero cost. It's a shame that companies are so short-sighted like this.
But ultimately if you build on top of someone else's platform, with no backups and no alternatives, it's not really truly your app.
Cory Doctorow is right, if you want to disrupt, or make any improvement to an existing large platform, adversarial interoperability(that is, reverse engineering) is the only way forward and has to be explicitly legalized in cases where it's a tool for progress.
My previous statement is arrogant, as it assumes developers are entitled to take any data they want and profit from it. It also puts services in a situation where harmful crawling like what is performed by some new AI actors with no experience is an expected thing. This is of course wrong, but I want to argue that had Yelp and other actors not wanted such a future, they shouldn't have tightened free access to their proper APIs where they have the ability to set ground rules and have the ability to talk to their users.
Big companies are amazingly bad at keeping track of things internally - a promise in an e-mail is easily forgotten 10 years later. But why should the user be punished for Yelps lack of control?
> if you utilize a third-party API for the core of your app, you are at their whim.
That's the money quote, there. I avoid using third-party APIs like the plague. I have written backend aggregators and facias, to avoid having to use the API.
I Just. Will. Not. embed an opaque codeball into my app. I'm a cranky old bastard, I know, but I sleep well at night.
Then there is ongoing issues between merchants and yelp [3]
Yelp used to be a great place to find some decent place to eat in a new city. But the platform has gotten stale. Reviews are less reliable. Star rating often not useful.
[1] https://www.theguardian.com/technology/2015/mar/20/google-il...
[2] https://techcrunch.com/2015/02/06/google-takes-on-yelp-elite...
> The other thing this taught me is the danger of an up-front paid model for apps that depend on ongoing access to third-party services. If users were continually paying for the app, paying for Yelp’s APIs would not be as much of an issue. And I wouldn’t feel as guilty about the app being discontinued since if the fees were charged on a monthly basis, they would just end at the same time the app ceased to exist instead of facing an expectation upon purchase of “forever access.” On the other hand, how would you charge a monthly fee for an app that people are only willing to spend less than $5 for upfront?
There are apps that I like and would like to purchase, but paying e.g. 24 euros per year feels like too much. So I stick with the free version...
Sometimes this can be pretty difficult to even see. If you were a Mac shareware dev depending on VersionTracker and MacUpdate to drive downloads, with no actual marketing budget, you might not have noticed that you were implicitly relying on Apple not creating an App Store which would turn the entire ecosystem upside down.
This is one of the reasons that it’s so tough to make a business work at a small scale. In some ways, you have more flexibility than a big company, but the lack of capital means that certain events that a larger company would shrug off can totally upend everything you’re doing.
Well, yes. I think people figured that out more than 10 years ago
And business models can and do change
And by checking the pricing page, Yelp's commercial API is $15 per 1000 API calls per month. Which sounds ok?
Which they seemingly already have done anyway. Another unintended side-effect of the borderline illegal and generally immoral “AI” companies efforts to get as many data sets as possible.
At least where I am in Europe I find it incredibly outdated, showing restaurants that have closed a long long time ago and none of the new ones.
I have stopped calling the Yelp API for local listings and put up a notice on the site. It was fun while it lasted!
Off-topic, but kudos to OP for still engaging with the threads. This certainly wasn't a dump and run post. They've probably spent more time answering questions here than they did developing the app!
> if you utilize a third-party API for the core of your app, you are at their whim.
I think you might also want to revisit your relationship with Apple Incorporated.
The good thing: You took your lesson. Maybe this time it was sufficient to actually learn sth.
I've written thousands of tools that scrape websites and never used the apis for this reason, you can never trust the API, either because of the reliability, cost, limits imposed, etc... Nobody wants you pulling data from their site anyway, so you're back to scraping anyway, its better to start out there then to have to end up there years later for some other reason...
I think when the AI scraping funding models go away, all these APIs will magically open up again.
Yes, Yelp was a bit clumsy in handling this, but discontinuing the free API after 10 years is totally within their rights. The developer didn't even bother getting their pricing proposal, which might have been totally reasonable (or not), considering his app is paid.
Though I'm not sure how legal that would've been if done in a paid app. It feels like a serious difference between just providing a better UX for someone else's service through adversarial interoperability for free, and profiting off of it.
Good platforms get more valuable with more apps: iOS, Windows, etc
Bad platforms don't get better with more apps: reddit, netflix, twitter. So they always end up killing the API.
https://business.yelp.com/products/yelp-ads/
Same as the Reddit stunt versus the Apollo app dev, except that his app had a big enough audience you'd think they'd have figured something out.
Nope. The paid app meant money from users to the app dev instead of from advertisers to the site.
What's strange is Reddit didn't seem to do the math on how little they should have charged the app dev for API access if all they wanted was to offset revenue from that user base. Perhaps the fear was much as with TV streaming: they know advertisers want audiences willing to pay, not only the audiences seeking free.
"People still use yelp? I thought it was widely known that they suppress bad reviews for money, and suppress good reviews if you don't pay."
Yelp's path to monetization has always been kind of scummy IMO.
- IC should have recognized the site was driving traffic to Yelp and flagged to management.
- Management should have realized that some API usage is beneficial to Yelp overall, and crafted a plan around this.
Just pure insanity. If I were a VP I'd fire everyone involved for a lack of basic critical thinking skills.
Does the linkedin scraping lawsuit permit scraping yelp?
Every business will eventually turn anything that they can into a profitable feature for them.
Of course my stuff also breaks because you cant really do anything anymore without trusting anything even against better judgement.
I think we will eventually get expensive quality terms of service for those who think it might be fun if things work forever, like html documents and megalithic structures.
They miss the spirit of this blog post entirely, which is to point out the overt hostility to and powerlessness of API users. That should be concerning to anyone working on projects that use APIs, which is, um... almost everyone, these days.
/s
I mean, don't take this as me defending Yelp - they're scumbags, and deserve any hate coming their way - but I don't think that the headline is an accurate description of what happened.
After 2 seconds of idle research, I have found that it would cost less than a dollar a day.
Related
Leaking URLs to the Clown
The author describes leaking URLs during Mac app testing, with a unique URL receiving requests from a random "cloud" service every three hours. This raises privacy concerns and highlights potential risks for users.
Man makes money buying his own pizza on DoorDash app
A US pizza restaurant owner discovered DoorDash selling his pizzas at lower prices without permission. DoorDash conducted a trial without informing owners, sparking scrutiny over its business practices and CEO's controversial remarks.
3M iOS and macOS apps were exposed to potent supply-chain attacks
Vulnerabilities in CocoaPods server exposed 3 million apps to supply-chain attacks for a decade. Flaws allowed hackers to inject malicious code, compromising sensitive user data. Developers urged to prioritize security measures.
Hey Google, what happened to all the fun?
An Android app, "Is It Tuesday?" created in 2010, faces removal from Google Play Store due to lacking purpose under new policies. Author explores challenges for developers and values software freedom. Consideration for alternative platforms like Fdroid.
Deluge of Fake Mac App Store Reviews
A surge of fake customer reviews in the US Mac App Store targeted top paid apps priced between $1.99 and $4.99. Reviews, mostly 5 stars, featured generic text, raising suspicions. The total cost of fake reviews exceeded $1150. Apple's default review sort order potentially hides these fake reviews. Motive remains unclear, with speculation of developer involvement. Apple's lack of curation raises authenticity concerns.