💾 Archived View for gemini.bortzmeyer.org › fosdem › event-11564.gmi captured on 2023-03-21 at 01:00:45. Gemini links have been rewritten to link to archived content
⬅️ Previous capture (2021-12-17)
-=-=-=-=-=-=-
Thomas Steenbergen
Type devroom
Starts on day 2 (2021-02-07) at 17:30 (Brussels time, UTC+1) in room Composition (duration 00:15)
Matrix room #composition:fosdem.org
In this session we will demonstrate how to write a license policy in OSS Review Toolkit to automatically check the licenses found in a project and its dependencies.
One of the reasons OSS Review Toolkit was started by its creators was a need to go beyond the usual allow/deny license policy in most SCA tools. For instance we wanted to be able to write checks with multiple levels of compliance depending on what was being reviewed or based on package meta data. In this session we will demonstrate how one can write license policy with checks/rules that take into account package metadata date or the code, license and product context.