1.4.0

github-actions released this 26 May 15:31

· 324 commits to trunk since this release

Changed

Update SPDX database to version 3.17 (2022-05-08).

Fixed

Do not require accepting all licenses defined in a Maven POM. The specification says that multiple licenses are a logical OR, not a logical AND.
Licenses defined in parent poms are only used when the child contains no licenses. Previously both would be honored, but the Maven POM spec defines them as overriding.
Disable dependency verification on the Gradle configuration through which the Maven POMs are resolved.

Assets 2