Skip to content
New issue

Have a question about this project? # for a free GitHub account to open an issue and contact its maintainers and the community.

#

By clicking “#”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? # to your account

Jump to bottom

Enable CI failing when scanning a codebase where the top level license does not match #1582

Open
pombredanne opened this issue Feb 12, 2025 · 3 comments
Open

Enable CI failing when scanning a codebase where the top level license does not match #1582

pombredanne opened this issue Feb 12, 2025 · 3 comments

Comments

@pombredanne
Copy link
Member

From a user:

I’m not aware of any tool that would check
all source files in the code base and fail the build if licensing
information doesn’t comply with the requirements and isn’t aligned
with the LICENSE.txt file in the root of the repository."

It would a nice thing to allow more complex policies that can handle these cases. The devils is in the details of course, as the core code should be under the same license as root, top level license, but at the same time, it may be commonly OK to have secondary licenses diverges for non core code, like build scripts or test files.
@yegor256
Copy link

yegor256 commented Feb 18, 2025
edited
Loading

@pombredanne it would be great to have a plugin for GitHub Actions that would do this, similar to what copyrights-action is doing (in a very primitive way)

@tdruez
Copy link
Contributor

tdruez commented Feb 18, 2025

@yegor256 you can look into https://github.com/aboutcode-org/scancode-action to integrate ScanCode.io in your GitHub workflows.

@yegor256
Copy link

@tdruez thanks! btw: aboutcode-org/scancode-action#9

# for free to join this conversation on GitHub. Already have an account? # to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
3 participants
@tdruez @yegor256 @pombredanne