https://bugzilla.redhat.com/show_bug.cgi?id=1838027
--- Comment #22 from Miro HronĨok <mhron...@redhat.com> --- Yes please! The Fedora's ansible package is licensed as GPLv3+ and licensecheck suggest the same, so the correct tag is (NB the lower case "and" and the plus at the end): # The entire source code is ASL 2.0 except files under %%{python3_sitelib}/zuul/ansible which is GPLv3+ License: ASL 2.0 and GPLv3+ Adding the bundled provides makes sense for the security response team. You might get some ansible CVEs open for zuul and would need to check the impact on zuul. -- You are receiving this mail because: You are on the CC list for the bug. You are always notified about changes to this product and component _______________________________________________ package-review mailing list -- package-review@lists.fedoraproject.org To unsubscribe send an email to package-review-le...@lists.fedoraproject.org Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/package-review@lists.fedoraproject.org