Cal.com
Cal.com is a scheduling and booking platform — for years the leading open-source alternative to Calendly — that on April 15, 2026 announced it is closing its core codebase. The production app now lives in a private repo; the previously-public AGPL repo has been rebranded Cal.diy, relicensed MIT, and slimmed to a community edition.
The term is emerging this week as a news event, not a new product: Cal.com is the first well-known AGPL-era SaaS to pull its codebase in 2026, and it cited AI-driven vulnerability discovery — not cloud-vendor parasitism — as the rationale. The announcement immediately became a referendum on whether open source is still viable for commercial SaaS in the era of automated LLM code-auditing.
HashiCorp's BSL move, but the scapegoat is Claude Mythos instead of AWS.
Search Interest
-
Nascent ← now0–7 days
-
Emergent8–30 days
-
Validating31–90 days
-
Rising91–180 days
-
Established180 days +
Why is it emerging now?
On Apr 15, 2026, Cal.com relicensed its public repo as [Cal.diy](https://cal.com/blog/cal-diy-open-source-to-closed-source) (MIT, stripped of 13 feature categories) and anchored the move to Claude Mythos's one-shot discovery of a 27-year-old OpenBSD bug eight days earlier. The Hacker News thread (382 pts, 315+ comments) is dominated by skepticism — Simon Willison asked CEO Bailey Pumfleet if the message is 'we're not confident in our own ability to secure your data.'
Outlook
6-month signal projection and commercial timeline.
Cal.com is a developer-SaaS darling making the first AGPL-era closure of 2026; the 'AI security forced it' framing keeps it in circulation either as new category or as PR case study.
Risk · Absorbed into broader 'post-OSS SaaS' narrative within 4-6 weeks if no second company follows suit.
Analogs · HashiCorp BSL · Elastic license change · Redis license change · MongoDB SSPL
-
nowSelf-hosters migrate off
Enterprise features exclusive to cal.com SaaS; displaced self-hosters drive demand for Easy!Appointments, Rallly.
-
3-6moFollow-on license changes
Expect other AGPL/SSPL SaaS to cite AI-security rationale; post-mortem content and migration consultancies.
-
6-12moCategory name or isolation
Either the pattern solidifies with tracker sites, or Cal.com's move is hindsight-isolated.
Competition & Opportunity for term “Cal.com”
Three heuristic signals derived from the tracked queries, the term's monetization cards, and its cluster neighbors. Directional, not audited.
Ideas for term “Cal.com”
Buildable pitches — turn this term into an article, site, product, post, newsletter, video, or course. Steal any card and run with it.
Clean breakdown of the 13 feature categories that left the public repo, what Cal.diy still includes, what self-hosted users need to do. SERP dominated by opinion pieces.
Comparison content for forced reevaluation. Covers feature parity, licensing, self-host complexity, total cost. High commercial intent, near-zero competition.
Analytical explainer separating the technical claim (LLM auditing speed) from business reality (AGPL margins under commoditization). HN thread is the bibliography.
Evergreen reference connecting Cal.com to the 2018-2024 wave (Redis, Elastic, MongoDB, HashiCorp, Sentry) and tracking follow-ons. Accumulates backlinks.
Tracks which SaaS products remain meaningfully open-source, filters by category, records license changes with rationales. First-mover on 'open source alternative to X' queries.
Displaced self-hosters need somewhere to go. One-click managed host with Calendly-grade polish, a Cal.com migration importer, and SSO.
Reads a Cal.com deployment, flags dependencies on removed features, outputs a plan: upgrade SaaS, patch Cal.diy, or switch alternative.
Monitoring tool watching LICENSE files, governance docs, blog RSS of OSS SaaS repos; alerts on license changes or public-to-private moves.
For twenty years, open source's defense was 'many eyes make bugs shallow.' Cal.com argues the eyes are now LLMs, they belong to the attacker, and they read faster than any maintainer patches.
382 points, 315 comments, a co-founder defending the move in replies. Top takes are not what you'd expect from HN toward a former darling.
Cal.com removed 13 feature categories from the public repo overnight. If you ran self-hosted Cal.com last week, here are three alternatives and the one that wins on reliability.
What People Search
Long-tail queries from Google Suggest + Trends. Volume and competition are heuristics — directional, not audited. Content Type comes from query shape.
SERP of term “Cal.com”
What searchers see today — organic results on top, paid ads if anyone's bidding. Ad density is a real-time commercial signal.
Related Terms
Other terms in the same space — aliases, subtypes, competitors, and neighbors to explore next.
- Part of source-available·commercial open source
- Includes Cal.diy
- Competitor Calendly·Easy!Appointments
- Related HashiCorp BSL·Elastic license change·Redis license change·MongoDB SSPL·AGPL-3.0·security through obscurity
Sources
Primary URLs this report cites — open any to verify the claim yourself.
- 01 Cal.com — Why we went closed source (announcement) cal.com ↗
- 02 Cal.com — Cal.diy: the technical transition cal.com ↗
- 03 Cal.com — Open source is collapsing under AI-powered threats (PRNewswire) prnewswire.com ↗
- 04 The New Stack — Cal.com goes private: a security reckoning for open source thenewstack.io ↗
- 05 byteiota — Cal.com Goes Closed Source: AI Security or Business Move? byteiota.com ↗
- 06 implicator.ai — Cal.com Goes Private: Best Open Source Alternatives implicator.ai ↗
- 07 BetaNews — Cal.com drops its open source model over AI threat concerns betanews.com ↗
- 08 Hacker News discussion (382 points) news.ycombinator.com ↗