You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Remove inappropriate dependency license exception entries from Licensed configuration
The "Licensed" tool is used to check for incompatible licenses in the project dependencies. The tool can be configured
to ignore incompatible license types for specific dependencies. This is done by adding an entry for the dependency to
the `reviewed` entry in the "Licensed" configuration file.
Such exceptions should be added only when the project maintainer has determined the following things to be true:
* dependency license is not one of the standard compatible types (as defined by the `allowed` mapping in the config)
* dependency license is compatible with the licensing of the project (e.g., dependency uses a non-standard but
compatible license)
"Licensed" uses the licensee tool to automatically determine the license type based on metadata provided by the
dependency author. This metadata must be in a standardized format without any modifications. In cases where that wasn't
done, "Licensed" will identify the license type as "other". In this case, the project maintainer must manually determine
the license type. If the license is determined to have a standard type, then the maintainer must manually set the
correct license type in the license cache metadata for the dependency. The dependency exception system should not be
used in this case.
Exceptions were inappropriately set up for dependencies with compatible license types not automatically identifiable by
"Licensed"/"licensee". These exceptions are hereby removed from the "Licensed" configuration file and the manually
determined license types defined in the license metadata cache for the dependencies.
0 commit comments