Skip to content
Permalink

Comparing changes

This is a direct comparison between two commits made in this repository or its related repositories. View the default comparison for this range or learn more about diff comparisons.

Open a pull request

Create a new pull request by comparing changes across two branches. If you need to, you can also . Learn more about diff comparisons here.
base repository: teutonet/teutonet-helm-charts
Failed to load repositories. Confirm that selected base ref is valid, then try again.
Loading
base: ab0ff11aaae5accfc9464d1bb03a02b80f718ae5
Choose a base ref
..
head repository: teutonet/teutonet-helm-charts
Failed to load repositories. Confirm that selected head ref is valid, then try again.
Loading
compare: 6cfab9b85e4d93ecd9853321dabc53ccd62e619a
Choose a head ref
Showing with 2 additions and 0 deletions.
  1. +2 −0 .github/scripts/scan-for-licenses.sh
2 changes: 2 additions & 0 deletions .github/scripts/scan-for-licenses.sh
Original file line number Diff line number Diff line change
@@ -16,6 +16,7 @@ WHITELIST=(
"EPL-1.0"
"EPL-2.0"
"CPL-1.0"
"GPLv2"
"GPL-1.0"
"GPL-1.0-only"
"GPL-1.0-or-later"
@@ -64,6 +65,7 @@ function scanLicenses() {
local unacceptedLicenses=()
local unacceptedLicense
licenseMap="$(yq -r '.annotations["artifacthub.io/images"]' "$chart/Chart.yaml" | yq -r '.[] | .image' |
sed -e '/aquasecurity\/trivy-operator/d' -e '/teuto-portal-k8s-worker/d' |
parallel -k trivy image {} --severity HIGH,CRITICAL,MEDIUM -f json --scanners license --license-full --quiet |
jq -s -r "$licenseConversionJq")"
mapfile -t unacceptedLicenses < <(jq <<<"$licenseMap" -r --argjson acceptedLicenses "[\"$(echo -n "${WHITELIST[@]}" | tr " " \\n |