go-license-detector
go-license-detector copied to clipboard
go-enry
Reliable project licenses detector.
https://github.com/go-enry/go-license-detector/issues/28
go-license-detector's own license is a slight modification of the Apache-2.0 document. GitHub cannot correctly detect the license and instead says "View license" instead of `Apache-2.0 license` within the first page-view...
Hey there, I noticed that you still have the FAILURES document and found out that "Modernizr" now has a proper LICENSE document following a recognisable template from GitHub. Link to...
Hello, I've been experimenting with the v4.3.0 release to scan files in my C++ repository for licenses. I've found many in the readme or license files, but sometimes there are...
The version of `go-git` that you are on is vulnerable to [CVE-2023-1732](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1732) and has since been [patched](https://github.com/go-git/go-git/releases/tag/v5.7.0)
The library is building a regex [here](https://github.com/go-enry/go-license-detector/blob/master/licensedb/internal/db.go#L174-L215) of the normalized first lines of license files. It then later splits files using the regex [here](https://github.com/go-enry/go-license-detector/blob/18a439e5437cd46905b074ac24c27cbb6cac4347/licensedb/internal/db.go#L279). The problem here is that the...
`package.json`, `Cargo.toml`, `pyproject.toml` and more support declaring license by SPDX expression, so a LICENSE file is optional with those. These values could be taken into consideration with high confidence. Also...
On Arch Linux (current rolling version), i'm seeing `license-detector` try to call `get_robust_list` which is apparently not implemented: ```c arch_prctl(ARCH_SET_FS, 0x6bbc7919d740) = 0 set_tid_address(0x6bbc7919da10) = 2689494 set_robust_list(0x6bbc7919da20, 24) = 0...
