Hi Fabian, one commercial option for this use-case is https://github.com/fossas/meta-fossa
Étienne On Wed, May 29, 2024 at 11:06 AM Hanke Fabian (DC/PAR) via lists.yoctoproject.org <fabian.hanke=bosch....@lists.yoctoproject.org> wrote: > Hello, > we were wondering if anyone has experiences / best practices on how to > detect if packages link to a library from another GPL licensed package? We > know that there are ways to completely filter out some licenses via > INCOMPATIBLE_LICENSE. But from our (limited) legal knowledge it is okay to > include them in our image, if we fulfill all the obligations. One > obligation implies that code linked to a GPL library will need to have the > same license (derivative work). Hence we would like to avoid that packages > containing our own closed source software link by accident to a GPL based > library. Has anyone experiences / best practices on how to detect this > automatically during the bitbake build? > > Best regards, > Fabian Hanke > -------------------------------- > Bosch Rexroth AG > Registered Office: Stuttgart, Registration Court: Amtsgericht Stuttgart > HRB 23192 Executive Board: Dr. Steffen Haack (President), Roland > Bittenauer, Thomas Fechner, Holger von Hebel, Reinhard Schäfer Chairman of > the Supervisory Board: Dr. Markus Forschner > > > >
-=-=-=-=-=-=-=-=-=-=-=- Links: You receive all messages sent to this group. View/Reply Online (#63223): https://lists.yoctoproject.org/g/yocto/message/63223 Mute This Topic: https://lists.yoctoproject.org/mt/106365537/21656 Group Owner: yocto+ow...@lists.yoctoproject.org Unsubscribe: https://lists.yoctoproject.org/g/yocto/unsub [arch...@mail-archive.com] -=-=-=-=-=-=-=-=-=-=-=-
