gitlab/license-finder.git - License detection tool

Age	Commit message (Collapse)	Author
2020-10-04	Add Ruby version 2.7.2 to Docker image	mo khan

2020-10-02	Merge branch 'bash-tidy' into 'master'	Can Eldem
	Remove unused bash functions See merge request gitlab-org/security-products/license-management!224
2020-10-02	Remove unused bash functions	mo khan

2020-10-01	Remove unused config files and jobs	mo khan

2020-09-13	fix: remove problematic packages	mo khan
	* chore: remove intermediate containers * fix: Update rack to 2.2.3 * fix: import nodejs keyring after plugin update * fix: install dev packages for C based tools * fix: remove unnecessary packages and cleanup
2020-09-10	fix: do not compresss llvm-7	mo khan

2020-09-10	Use golang_version as install dir	Jaime Martinez

2020-09-09	fix: do not compress /usr/share	mo khan
	* do not allow license_scanning job to fail * update script to download .deb files ensure apt db is valid * Update CHANGELOG and bump version
2020-09-09	Change references to Go to version 1.15.1	Evan Read

2020-09-07	chore: Add checksum for golan 1.15.1	mo khan

2020-09-07	Require Go 1.15.1 for project	Evan Read

2020-08-21	Install tools from .deb package	mo khan

2020-08-18	Update license_finder to 6.8.1	mo khan
	* Update CHANGELOG * Add default retry for all jobs * Ensure all deb packages are built
2020-08-16	Update to php 7.4.8	mo khan

2020-08-13	Ensure drupal pkgs are detected correctly	mo khan
	* Use same composer.json and composer.lock file from issue * Check if vendor path exists before specifying env vars * Install php from deb package
2020-08-07	Add limited network support for Cargo projects	mo khan
	* Add test to scan cargo project with packages from a private registry * Synchronize mono cert store * Wipe nuget package cache before specs * Compress /usr/local/share * Exclude development dependencies * Add CHANGELOG entry
2020-08-06	Package license management deb from deb job	mo khan

2020-08-04	Build debian packages for tools	mo khan

2020-07-30	Set .tool-versions to latest Go	Evan Read

2020-07-16	Install mono/nuget at build time	mo khan
	* Install ca-certificates-mono * Download *.deb files to /opt/toolcache/mono
2020-07-16	Install dotnet SDK	mo khan
	* Include the latest dotnet SDK in the /opt/asdf/installs directory. * Update CHANGELOG and bump version * Compress large directories
2020-07-10	Isolate license_management ruby from project	mo khan
	* Target ruby version 2.7.1 * Add spec to fetch gems from a custom source * Add proxy to rubygems.org config * Specify default env vars to support offline environment * Cleanup custom certificates after spec * Inline docker-test script * Do not install license_finder with each installed ruby * Increase gem log verbosity and include backtrace * Extract test fixtures for the different ruby scenarios * Find .gemspec files in gems dir Use RUBYLIB to hijack src path * Run scan from project path dir
2020-07-09	Do not inflate/deflate mono/dotnet	mo khan

2020-07-09	Remove GUI packages, install dotnet at scan time	mo khan

2020-07-07	Add collapsible sections to get timing info for each section	mo khan

2020-07-02	Update version, CHANGELOG and README	mo khan
	* Install license_finder ~> 6.6 into default gems
2020-06-26	Update Java to match new naming convention	mo khan

2020-06-18	Detect variations of the Eclipse Public License	can eldem

2020-06-16	Pin the older images to the old report name	mo khan

2020-06-05	Extract function to switch to exact tool and version	mo khan

2020-05-26	Scan Conan projects	mo khan
	* Scan the conan examples project * Split licenses by comma * Add integration test job for c projects * Add package_manager, version and path to v2.1 report * Detect collisions between names from different package managers * Add CHANGELOG entry * Update README to indicate Conan support * Print timestamps in install script
2020-05-22	Add functional tests to the pipeline	mo khan
	* Move jobs to gitlab-ci.yml files that match the stage they belong to. * Move linter job to build stage * Add functional test jobs * Reduce max size to 2 GB * Pass the current pipeline image to the downstream jobs * Replace `edge` tag with `latest` * Use $CI_DEFAULT_BRANCH instead of master * Move `.env` files to config dir and update RELEASE instructions Combine `tag` and `release` stages into `deploy` stage as recommended in GitLab docs * Make the `build-docker-image` job interruptible * Fix issues found in code quality report
2020-05-20	Compress using multiple threads	mo khan

2020-05-19	Run install steps in parallel where possible	mo khan

2020-05-19	Revert to compression level 19	mo khan

2020-05-19	Reduce compression factor to fit build under 60 minutes	mo khan

2020-05-19	Fetch bower dependencies from custom repo with custom cert chain	mo khan

2020-05-19	Pass -19 to tar compress program	mo khan

2020-05-19	Compress /opt/asdf using level 19 in zstandard	mo khan

2020-05-14	Update go list command to be compatible with 1.14	mo khan
	* Add missing packages to report fixtures
2020-05-13	Remove devDependencies from yarn scans	mo khan
	* Inline creation of PipPackage in legacy scan results * Add CHANGELOG entry
2020-05-04	Add tests for js npm projects	mo khan
	* Add tests for js projects with npm-lock.json file * Add specs for project that does not have a package-lock.json * Fix typo in loading fixture file content not path * Remove dev dependencies for expected js test reports * Add spec for using different engine * Add latest nodejs LTS * Cleanup files after install and disable NPM update checks * Install a .curlrc to remove progress meter * Export LOG_LEVEL=debug in dev mode * Update fixture files * Update to latest patch level of nodejs, php, python, ruby * Add CHANGELOG entry * Move prepare_javascript from bash to ruby
2020-04-29	Allow gradle to fetch from TLS endpoint with custom cert	mo khan
	* Add CHANGELOG entry * Avoid shell expansion errors * Add gradle-license-plugin to local gradle cache * Download gradle plugin dependencies and use backwards compatible syntax in init.gradle * Use latest gradle v2
2020-04-16	Update JAVA_HOME	mo khan

2020-04-16	Update to latest Java 11	mo khan

2020-04-02	Reproduce failure with go modules scanning	mo khan
	* Install sudo for existing configurations * Detect dependencies in a gomodules project * Add CHANGELOG entry and bump version * Symlink to $GOPATH for non go modules projects * Remove problematic go get setup
2020-04-01	Pull package info from sources in Pipfile.lock	mo khan
	* Exclude dependencies in "develop" group" * Install pipenv by default * Use .venv to match the default location as pipenv * Use pip-licenses to detect licenses in Pipfile project * Add variation of the MIT License * Redirect asdf install stdout to /dev/null * Add CHANGELOG entry and bump version
2020-03-30	Use virtualenv, pip-licenses to scan projects	mo khan
	* Add PIL License to list of normalized licenses * Update Python 3 v2.0 report fixture * Add CHANGELOG entry * Define local variables in bash functions * Ensure `SETUP_CMD` continues to work for python projects * build virtualenv app-data cache * Fallback to legacy scanner when SETUP_CMD is used * Extract Shell class to be able to pass custom env
2020-03-26	Install pip packages from a custom index	mo khan
	* Read PIP_INDEX_URL to identify where to download packages from
2020-03-20	Install maven packages for multi-module setup	mo khan
	* Install packages when multiple maven modules are detected * Add CHANGELOG entry * Install gem silently * Add package manager to test description * Sort paths