Page MenuHomeSolus

Strict license validation of all incoming packages
Migrated to GithubPublic


I want full verification of all incoming packages that they're suitable for inclusion now:

  • All license fields MUST be SPDX compliant records
  • All licenses in the package must be accounted for
  • Missing/incorrect license will NOT be permitted - this must be corrected before package.yml goes in the repos

ARs for Ikey:

  • Create simplistic license validation tool to scan the tarballs and document all license fields.
  • Perform repository-wide validation
  • Create new Conformance tag

Event Timeline

ikey claimed this task.Aug 19 2017, 1:45 PM
ikey added a subscriber: ikey.
Herald removed ikey as the assignee of this task. · View Herald TranscriptAug 19 2017, 1:45 PM
ikey updated the task description. (Show Details)Aug 19 2017, 1:48 PM
ikey edited projects, added Platform Integration; removed Lacks Project.
ikey updated the task description. (Show Details)
ikey added a project: Conformance.
ikey triaged this task as High priority.Aug 19 2017, 1:54 PM
ikey claimed this task.Aug 19 2017, 2:01 PM
ikey raised the priority of this task from High to Unbreak Now!.

Still you'll need to handle some exceptions for things like the nvidia proprietary drivers.

@kyrios123 yeah. Perhaps a static set like EULA-NVIDIA

As4fN1v removed a subscriber: As4fN1v.

@ikey I found a weird case with expect

Here is the full content of the license file:

Written by: Don Libes, libes at, NIST
Design and implementation of this program was paid for by U.S. tax
dollars. Therefore it is public domain. However, the author and NIST
would appreciate credit if this program or parts of it are used.

That is super cranky.

ikey lowered the priority of this task from Unbreak Now! to High.Sep 11 2017, 2:36 PM

OK I'm downing this to high for now because $ongoingShit

kyrios123 added a comment.EditedJan 12 2018, 12:33 PM

Do we have to use the updated SPDX licenses or can we keep on using the ones that have been deprecated since version 3.0 ?

JoshStrobl reassigned this task from ikey to DataDrake.Feb 9 2019, 8:21 PM
DataDrake closed this task as Migrated.Feb 21 2022, 3:33 PM

I'm going to close this since it is on my TODO list for ypkg3