Open spencerschrock opened 2 months ago
I can work on this
@lelia are you still interested in this?
@lelia are you still interested in this?
Yeah, sorry got sidetracked with some other priorities, but I did generate a new map of updated licenses a while back. I was holding off on making a contribution so we could have a more sustainable solution going forward, but I could always split the contribution into two parts.
I was holding off on making a contribution so we could have a more sustainable solution going forward, but I could always split the contribution into two parts.
At the time, I had thought stale data was part of the cause for #4144, but that wasn't the case. So there isn't a time critical part of this
As noticed in https://github.com/ossf/scorecard/pull/3838#discussion_r1515142816 (which I'm noticing know is wrong because
Beerware
shouldn't be on out list in the sense of FSF or OSI approved), the SPDX list seems to have fallen out of date and could be refreshed. The list was added ~2 years ago (via #2442) and we're probably missing a few entries.https://github.com/ossf/scorecard/blob/0b9dfb656f1796c7c693ad74f5193657b6a81e0b/checks/raw/license.go#L399-L418