Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Introduce scanning for problematic licenses, patent issues, and similar, in dependencies #36

Open
SaschaSchwarze0 opened this issue Nov 22, 2021 · 0 comments
Open

Introduce scanning for problematic licenses, patent issues, and similar, in dependencies #36

SaschaSchwarze0 opened this issue Nov 22, 2021 · 0 comments
Labels
kind/cleanup Categorizes issue or PR as related to cleaning up code, process, or technical debt.
Milestone
Backlog

Comments

@SaschaSchwarze0
Copy link
Member

SaschaSchwarze0 commented Nov 22, 2021
edited
Loading

As decided in the community meeting from 2021/11/22, we want to scan for problematic dependencies. Candidate tool is go-licenses. Maybe there is also something in golangci-lint.

We should define the criteria for what is problematic and make sure we get red pull requests if those criteria are violated.

Sibling issues:
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
kind/cleanup Categorizes issue or PR as related to cleaning up code, process, or technical debt.
Projects
None yet
Milestone
Backlog
Development

No branches or pull requests
2 participants
@adambkaplan @SaschaSchwarze0