go-licenses

go-licenses copied to clipboard

Switch from glog to klog

1

Please see the following explanation of the reasons for klog vs. glog: https://github.com/kubernetes/klog#why-was-klog-created

jdolitsky

Add Bazel support

4

Is there a possibility to support Bazel and not only the native Go tooling?

serafeimgr

Support for repositories that are dual-licensed

6

When i run `go-licenses csv ./...` against github.com/kubernetes/kubernetes: the csv contains: ``` github.com/heketi/heketi,https://github.com/kubernetes/kubernetes/blob/master/vendor/github.com/heketi/heketi/COPYING-GPLV2,GPL-2.0 ``` because https://github.com/heketi/heketi has multiple licenses (GPL 2.0 and Apache 2). Should the tool print both licenses?

dims

Help Wanted: `go-licenses csv ...` command returned incorrectly formed go-package licenses URLs (inaccessible URLs)

3

I've been working on a bash utility script - [`verify-licenses.sh`](https://github.com/kubernetes/kubernetes/blob/0e92873ee53c23c84b37abdc9bb1f0c9c2d70a0a/hack/verify-licenses.sh) that verifies licenses for the go-packages used by the upstream Kubernetes Project, against the [CNCF approved list of licenses](https://github.com/cncf/foundation/blob/main/allowed-third-party-license-policy.md). We...

Priyankasaggu11929

trying to run go-licences check ./vendor/...

1

[67262 library.go:181] cannot find parent package of vendored module github.com/gorilla/mux Go Version 1.18.1

4cecoder

feat!(v2): csv - validate license URL and guess more if invalid

2

Fixes #73 Assumption: the license URL we want to collect is always publically accessible If there are concerns with this assumption, we can discuss several options: * hide the feature...

Bobgy

Bring back support for non go modules projects to v1.1+

9

In v1.1, we made a breaking change of no longer supporting non go modules managed projects per discussions in https://github.com/google/go-licenses/issues/70. However, https://github.com/google/go-licenses/issues/125 seems to show that some users are still...

Bobgy

Warnings from assembly files in golang.org/x/*

8

When run on projects that refer to x/sys or x/crypto, go-licenses prints warnings like: ``` W0329 16:23:18.204626 221077 library.go:86] "[golang.org/x/sys/unix](http://golang.org/x/sys/unix)" contains non-Go code that can't be inspected for further dependencies:...

drigz

Check: return non-zero status code for unknown licenses.

1

Previously if an unknown license was detected, an error message was printed, but the command would still return 0, indicating success for many CI tools. This fixes the behavior to...

wlynch

Can not detect license of packages imported only in tests

2

`go-licenses` can not detect packages that only imported in tests. Do we have any plan to support it?

blanet