-
### Expected Behavior
I can do `./gradlew build --scan --yes-i-accept-the-gradle-enterprise-licenses` or `./gradlew --scan --accepted-terms="https://gradle.com/terms-of-service"`
### Current Behavio…
-
Hello all,
I'm with [FOSSA](https://fossa.io). Our service scans popular open source projects for license violations to keep them and their users (esp. from larger companies) clean. Currently, the…
-
In a recent scan of the Package available at https://github.com/facebook/sapling/archive/refs/tags/0.2.20240718-145624+f4e9df48.tar.gz multiple detections of gpl-1.0-plus were reported with insuffici…
-
See https://lfscanning.org/reports/lfenergy/arras-energy-2023-12-23-232d370e-b6d7-43f1-b8d8-9eafcbeeacca.html
-
**What steps did you take and what happened:**
it is require to add support for license scanning via trivy.
- extend trivy scan job
- collect license scanning results
- produce a new crd with lice…
-
**Describe the improvement**
Hello Cohere team,
Currently, there is a lack of license information in the package metadata available on pypi. This can induce problems with multiple compliance too…
-
### Describe the bug
When reporting license violations, severity is not reported, both in the PR scan as well as Repo scan. Xray on-demand scans do include severity information for licenses. Also, a …
-
**Is your feature request related to a problem? Please describe.**
I want to run X-Ray scans without depending on either Artifactory or GitHub Actions.
**Describe the solution you'd like to see**
P…
-
Using the scancode results analyzer https://github.com/nexB/scancode-results-analyzer/ I would like to enhance a scan done in scancode.io with extra data.
For that we would need to:
- install it u…
-
The changes in https://github.com/dotnet/sdk/pull/43011 should be reverted after 9.0 GAs. That will then fallback to the pattern we use for all servicing versions where we only run these pipelines for…