On Wed, Jan 05, 2022 at 03:10:47AM +0100, Miroslav Suchý wrote:
Dne 04. 01. 22 v 21:33 David Cantrell napsal(a):
I feel like I'm missing something, but rpminspect has been doing what
license-validate does for years now. It's ready for SPDX expressions.
Results show up for Fedora builds in Zuul. Or you can run it
locally.
Here is my motivation:
We are automating packing - hundred thousands libraries to be
automatically packaged. But some of them have restrictive license. For
that we need **simple** tool.
rpminspect is big beast for that. I learned that I can run
rpminspect-fedora-Fjson-Tlicense foo.src.rpm
But I need something which can evaluate just the string.
That's fair. I've tried to make rpminspect as simple as possible. It is just
a CLI tool you install and run. What you're trying to do is not out of scope
of rpminspect. I could add another CLI tool called licenseck that just checks
the License tags in a given spec file.
My main concern here is you have introduced another License tag parser that
produces different results and uses a different set of source data than other
tools. There is an ongoing project to both normalize and centralize the
License tag data. This is to replace the wiki as the source.
--
David Cantrell <dcantr...@redhat.com>
Red Hat, Inc. | Boston, MA | EST5EDT
_______________________________________________
devel mailing list -- devel@lists.fedoraproject.org
To unsubscribe send an email to devel-le...@lists.fedoraproject.org
Fedora Code of Conduct:
https://docs.fedoraproject.org/en-US/project/code-of-conduct/
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives:
https://lists.fedoraproject.org/archives/list/devel@lists.fedoraproject.org
Do not reply to spam on the list, report it:
https://pagure.io/fedora-infrastructure
