Closed leoheitmannruiz closed 1 month ago
Mainly licenses from the GPL family, but also one Net-SNMP :)
The use of deprecated SPDX license identifiers is a known issue, and largely due to legacy code. Your help in fixing those formulae would be appreciated.
How come deprecated SPDX identifiers are in use, despite this test. When is it run?
It's run for new formulae only.
I sent a PR, but it seemed like it caused the CI to be run for all 277 packages, which seems silly, so I closed it, hoping that would stop the CI.
What should I do?
What should I do?
I've left you a comment in the PR.
It would be good to ask upstream to confirm the license status first, GPL-2.0 does not naturally mean GPL-2.0-or-later.
The formula/project might be unmaintained in terms of license usage.
ideally, all the formulae should be treated individually rather than blind batch update. :)
If you look at the PR it suggests that the batch update wasn't blind at all, so I think this approach is fine.
What about the three remaining formulae?
curl -s https://spdx.org/licenses/licenses.json |
jq -r '.licenses[] | select(.isDeprecatedLicenseId == true) | .licenseId' |
while read -r license; do
grep -r "\"$license\""
done
./n/net-snmp.rb: license "Net-SNMP"
./i/iprint.rb: license "GPL-2.0"
./i/intercal.rb: license "GPL-2.0"
intercal seems GPL-2.0-or-later https://web.archive.org/web/20240716025628if_/http://www.catb.org/~esr/intercal/intercal-0.30.tar.gz
iprint will be removed in a few months anyway, so I suppose there's no need to look into it further?
In that case, all that's left is for someone to figure out what licenses Net-SNMP corresponds to :)
brew gist-logs <formula>
link ORbrew config
ANDbrew doctor
outputVerification
brew doctor
output saysYour system is ready to brew.
and am still able to reproduce my issue.brew update
and am still able to reproduce my issue.brew doctor
and that did not fix my problem.What were you trying to do (and why)?
I was trying to see if Hombrew allows deprecated SPDX identifiers.
What happened (include all command output)?
I found deprecated SPDX identifiers are used.
I also found https://github.com/Homebrew/brew/blob/master/Library/Homebrew/formula_auditor.rb#L221-L232.
It seems to check for deprecated SPDX identifiers. How come deprecated SPDX identifiers are in use, despite this test. When is it run?
Taking a look at the commit log, it seems @cho-m might be interested in this ;)
What did you expect to happen?
I expect deprecated SPDX identifiers not to be used.
Step-by-step reproduction instructions (by running
brew
commands)