SNOW-1055656: Licence vunribility scans flagging due to inclusion of filelock's "The Unlicense" license

snowflakedb / snowflake-connector-python

Snowflake Connector for Python

https://pypi.python.org/pypi/snowflake-connector-python/

Apache License 2.0

599 stars 473 forks source link

SNOW-1055656: Licence vunribility scans flagging due to inclusion of filelock's "The Unlicense" license #1880

Open jtownley opened 9 months ago

jtownley commented 9 months ago

Python version

3.11.7

Operating system and processor architecture

macOS-14.3.1-arm64-arm-64bit

Installed packages

N/A

What did you do?

Ran a scan with Synk defaults. This is flagged due to the unlicense usage by filelock. It appears that some countries do not respect this license and could make organizations using it open to legal action in some countries (I am not a laywer)

What did you expect to see?

No "High" vulnerabilities

sfc-gh-aling commented 8 months ago

thanks for bringing this to our attention, we will consult our legal team about "The Unlicense" license.