On Sun Mar 3, 2024 at 17:28 +0100, Miroslav Suchý wrote: > Dne 03. 03. 24 v 7:35 Maxwell G napsal(a): > > > > Has anyone every used trivy [1] to scan for licenses? It appears more > > robust and better maintained than askalono-cli > > and can detect files with multiple licenses and licenses embedded in file > > headers. I have been running it with "trivy > > fs --scanners license --license-full ." > > > > [1] https://github.com/aquasecurity/trivy > > This is new to me.
Yeah, me too. I had not seen it anywhere before, so I figured I would ask about it. > Looks good. I will add it to > https://docs.fedoraproject.org/en-US/legal/license-audit-tools/ Cool! Feel free to tag me if you would like a review of the docs PR. > And the upstream provides rpm. Static build, but better than nothing. I or another member of the Go SIG could probably package it if there is interest. -- _______________________________________________ devel mailing list -- devel@lists.fedoraproject.org To unsubscribe send an email to devel-le...@lists.fedoraproject.org Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/devel@lists.fedoraproject.org Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue
