|
|
This page lists the most common errors in ORT violations, and hints about how to fix them.
|
|
|
|
|
|
## Unhandled license
|
|
|
## Classic workflow
|
|
|
|
|
|
When a violation is found, like `NPM::argparse:1.0.10`, then one needs to assess the package and add a new entry in the IPZilla knowledge base. It will be soon exported as a curation file and re-integrated in the following scans, removing the violation.
|
|
|
|
|
|
## Miscellaneous
|
|
|
|
|
|
### Unhandled license
|
|
|
|
|
|
If the license is properly recognised and is not listed, it should be added into one of the license categorisation files, located in `conf/`:
|
|
|
* `eclipse_licenses_approved.json` for officially approved licenses (i.e. listed on the official list of approved licenses at https://www.eclipse.org/legal/licenses.json),
|
|
|
* `eclipse_licenses_approved_priv.json` for privately approved licenses (i.e. not listed on the official list of approved licenses),
|
|
|
* `eclipse_licenses_ignored.json` for licenses that should not be considered as licenses (especially from the `LicenseRef-scancode-*` namespace).
|
|
|
|
|
|
Note that `eclipse_licenses_approved.json` is directly downloaded from the Eclipse website.
|
|
|
Note that `eclipse_licenses_approved.json` is directly downloaded from the Eclipse website and should **not** be modified in the `conf` directory.
|
|
|
|
|
|
### Special ScanCode licenses
|
|
|
#### Special ScanCode licenses
|
|
|
|
|
|
* `LicenseRef-scancode-unknown-license-reference` is often a misunderstanding and needs fixing through curations or garbage text.
|
|
|
|
|
|
## Copyleft in source
|
|
|
### Copyleft in source
|
|
|
|
|
|
## Copyleft in dependencies
|
|
|
### Copyleft in dependencies
|
|
|
|