Closed gcharest closed 7 months ago
wmoussa-gc
commented
3 years ago Thanks Guillaume for your feedback and suggestion. I think that make sense. I was expecting such nuances to be raised. I'm just not sure yet if we should just clarify the skill description or add some extra notes in a reference section. What do you think?
gcharest
commented
3 years ago Probably at least a few notes with regards to compliance: in a Dev team, it does mean being able to know all your dependencies. If you choose a licence, it must abide by the choices you took in terms of development.
Heather Meeker's examples are usually a good way to visualize what we should be thinking of when putting software out there (whether it's OSS or not):
Great work on the playbook! I just wanted to point out that this should be the default when possible.
Depending on the tech stack and architecture choices, you may be required to choose a less permissive licence for compliance purposes.
Which also goes into the automated testing: dependencies licence compliance can be highly automated so that should most likely be part of your project setup.
Thanks! :+1: