Thomas Steenbergen

@porsche-rishisaxena Can you update this issue to make clear whether BlackDuck means Protex or Hub?

Clarified in [ORT developer meeting](https://github.com/oss-review-toolkit/ort/wiki/Developer-Meeting) of July 7th, 2022 - it's Black Duck Hub not the legacy Black Duck Protex IP

If we provide a parameter to reduce the maximum depth of analysis this would change one of the core assumptions of ORT that everything is analyzed (but not necessary scanned)....

@dgutson I understand your use case, you want to make sure we can support it without breaking existing functionality. For me the simplest was to implement this would be to...

@fviernau I would word the above slightly differently 2. Maven: For a repository containing multiple Maven packages, the directory with the same name as the package containing pom.xml is often...

@nicorikken Bit of background on this feature - for compliance purposes we always wanted to be able to check project's Git history and source code for internal (product) code names...

@sschuberth it would not be an advisor but more a new scanner plus new evaluator helper functions as non-inclusive language or "compliance string" checks are commonly only done on the...

Being able to curate copyright holders would be really useful but are you thinking of implementing it in curations.yml or package configurations? I asking as I have the following case,...

Copy-paste from [July 14th, 2022 ORT developer meeting minutes](https://github.com/oss-review-toolkit/ort/wiki/Developer-Meeting#2022-07-14) in which we had a discussion on how to implement curating declared copyrights **A. Use curations to fix-up curate copyrights** The...

@fviernau and myself had some private discussions a few weeks ago on adding a file hash cache to enable delta scanning once scan-by-repository has been merged. Looking at ways to...