libraries.io icon indicating copy to clipboard operation
libraries.io copied to clipboard

Published 20 hours ago verified publisher icon librariesio

wrong license detected

Open obfusk opened this issue 5 years ago • 3 comments

  • [x] Double-check that the bug is persistent,
  • [x] Double-check the bug hasn't already been reported on our issue tracker, they should be labelled bug or bugsnag.

Problem: https://libraries.io/pypi/jiten is licensed under AGPLv3+ but detected as Other. Diagnosis: Spdx.find works for GPLv3, GPLv3+, AGPLv3 but not AGPLv3+. Also: https://libraries.io/licenses/Other redirecting to https://libraries.io/licenses/GPL-3.0+ seems odd; explained by Spdx.find('other').id == "GPL-3.0+".

Problem: https://libraries.io/cargo/proudcat is licensed under GPL-3.0-or-later but detected as CNRI-Python-GPL-Compatible. Diagnosis: project.rb does a .split("or") which results in searching for GPL-3.0- (finding CNRI-Python-GPL-Compatible) and -later (not found & discarded).

obfusk avatar Jul 21 '20 22:07 obfusk

Similar problem: https://libraries.io/pypi/eudist/0.1.2 is licensed as GPLv3(+) but detected as GPLv2+

dschwoerer avatar Feb 12 '21 08:02 dschwoerer

Update:

https://libraries.io/pypi/jiten is now detected as AGPL-3.0, which is at least almost correct (since it's AGPL-3.0-or-later).

https://libraries.io/cargo/proudcat is correctly listed as GPL-3.0-or-later now :)

obfusk avatar Apr 15 '21 19:04 obfusk

Similar problem: https://libraries.io/pypi/eudist/0.1.2 is licensed as GPLv3(+) but detected as GPLv2+

I see GPL-3.0 right now, so that seems better than before.

obfusk avatar Apr 15 '21 19:04 obfusk