-
Notifications
You must be signed in to change notification settings - Fork 567
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Include package licenses #229
Comments
@jeff-cook today if you use the |
The project I'm working with right now has the following types as found by syft.
There are no licenses keys in the json output file.
When a scan is run by anchore in-line scanner it finds the license for all packages except for java-archives. |
@wagoodman First of all, thanks for providing this awesome tool! |
Which catalogers now collect licenses? Just JavaScript or Java too? |
What would you like to be added:
Output to include license for each package.
Why is this needed:
Anchore inline scan includes the license for each package. Having this would allow for replacing all package info from the inline scan. Once in the output it can be used to determine if the license is allowed or not.
Additional context:
The text was updated successfully, but these errors were encountered: