search

carlomorelli / licensescan-maven-plugin

Maven plugin for analysing the licenses in dependencies and transitive dependencies, asserting compatibility and potentially fail the build if forbidden licenses appear
MIT License
36 stars 8 forks source link

Errors With Dependencies in custom repos #16

Open ryber opened 5 years ago

ryber commented 5 years ago

When I run this on a project that uses a private repository (like local corporate Nexus or Artifactory) It gets error when attempting to resolve the dependency (even though it's even cached into the local repo).

I get errors like:

[ERROR] Failed to execute goal com.github.carlomorelli:licensescan-maven-plugin:2.1:audit (default-cli) on project my-project: Error while building project: Error resolving project artifact: Could not find artifact com.my.local.thing:pom:2.7 in central (https://repo.maven.apache.org/maven2) for project com.my.local.thing:jar:2.7 -> [Help 1]

any idea on why it wouldn't honor the repository settings in the POM? it seems to only accept maven central as a valid thing?

carlomorelli commented 5 years ago

Interesting. could you run the same with debug info (mvn ... -e )?

I remember using the plugin at work with a private repo (we used Artifactory) originally, so the error feels strange. Also in my understanding the scan of artifacts is done on the local Maven cache, after artifacts are downloaded. But I am not totally sure.

carlomorelli commented 1 year ago

I'm not able to reproduce this myself, I don't have the chance to use private artifactories. If anybody up to it I would need the output of mvn -e commands to start digging.