Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Introduce scanning for problematic licenses, patent issues, and similar, in dependencies #949

Open
SaschaSchwarze0 opened this issue Nov 22, 2021 · 0 comments
Labels
kind/cleanup Categorizes issue or PR as related to cleaning up code, process, or technical debt.

Comments

@SaschaSchwarze0
Copy link
Member

SaschaSchwarze0 commented Nov 22, 2021

As decided in the community meeting from 2021/11/22, we want to scan for problematic dependencies. Candidate tool is go-licenses. Maybe there is also something in golangci-lint.

We should define the criteria for what is problematic and make sure we get red pull requests if those criteria are violated.

Sibling issues:

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
kind/cleanup Categorizes issue or PR as related to cleaning up code, process, or technical debt.
Projects
None yet
Development

No branches or pull requests

1 participant