| Age | Commit message (Collapse) | Author |
|---|
|
docs: update CHANGELOG and version
feat: scan packages in parallel
fix: prevent infinite recursion
|
|
* chore: fix bin scripts
|
|
|
|
* Update CHANGELOG
* Add default retry for all jobs
* Ensure all deb packages are built
|
|
* Use same composer.json and composer.lock file from issue
* Check if vendor path exists before specifying env vars
* Install php from deb package
|
|
In some cases the '$HOME' environment
variable is overwritten in the runtime
environment. This occurred when running
this image in a OpenShift environment.
|
|
|
|
* Install custom ca certificate in location where nuget can recognize it
* Add subject alternative name to the generate x509 cert
* Do not cache packages and https requests
* Detect vbproj, fsproj, csproj, and sln files
* Improve nuget package detection
* Parse SPDX license expression from nuspec files
* Update version and update CHANGELOG
|
|
* Target ruby version 2.7.1
* Add spec to fetch gems from a custom source
* Add proxy to rubygems.org config
* Specify default env vars to support offline environment
* Cleanup custom certificates after spec
* Inline docker-test script
* Do not install license_finder with each installed ruby
* Increase gem log verbosity and include backtrace
* Extract test fixtures for the different ruby scenarios
* Find *.gemspec files in gems dir
* Use RUBYLIB to hijack src path
* Run scan from project path dir
|
|
* Bump version and add CHANGELOG entry
* Configure Bundler logging
* Include install_path of gem
* Use gem summary and full_gem_path
* Specify a vendor path to install dependencies to prevent leakage between tests and take advantage of build job cache
|
|
|
|
|
|
* Use haproxy to proxy to package registry
* Install haproxy in setup script
* Add markers for collapsible sections
* Move ignored groups setup to prepare_project
|
|
|
|
|
|
|
|
|
|
|
|
* Add tests for js projects with npm-lock.json file
* Add specs for project that does not have a package-lock.json
* Fix typo in loading fixture file content not path
* Remove dev dependencies for expected js test reports
* Add spec for using different engine
* Add latest nodejs LTS
* Cleanup files after install and disable NPM update checks
* Install a .curlrc to remove progress meter
* Export LOG_LEVEL=debug in dev mode
* Update fixture files
* Update to latest patch level of nodejs, php, python, ruby
* Add CHANGELOG entry
* Move prepare_javascript from bash to ruby
|
|
* Add CHANGELOG entry
|
|
|
|
|
|
|
|
|
|
|
|
|
|
* Extract gradle_command method
* Bump version and update CHANGELOG
* Remove prepare_java step from run.sh
|
|
* Install sudo for existing configurations
* Detect dependencies in a gomodules project
* Add CHANGELOG entry and bump version
* Symlink to $GOPATH for non go modules projects
* Remove problematic go get setup
|
|
* Exclude dependencies in "develop" group"
* Install pipenv by default
* Use .venv to match the default location as pipenv
* Use pip-licenses to detect licenses in Pipfile project
* Add variation of the MIT License
* Redirect asdf install stdout to /dev/null
* Add CHANGELOG entry and bump version
|
|
|
|
* Add PIL License to list of normalized licenses
* Update Python 3 v2.0 report fixture
* Add CHANGELOG entry
* Define local variables in bash functions
* Ensure `SETUP_CMD` continues to work for python projects
* build virtualenv app-data cache
* Fallback to legacy scanner when SETUP_CMD is used
* Extract Shell class to be able to pass custom env
|
|
* Install packages when multiple maven modules are detected
* Add CHANGELOG entry
* Install gem silently
* Add package manager to test description
* Sort paths
|
|
|
|
LicenseFinder uses the [mvn license-maven-plugin:download-licenses](https://github.com/pivotal/LicenseFinder/blob/57914395fba6c8ceb741b1dc7ca2ef4efe91f6c9/lib/license_finder/package_managers/maven.rb#L16)
plugin to fetch licenses. There is no need for the extra `mvn install` step.
We just need to make sure that the `MAVEN_CLI_OPTS` are forwarded to
`mvn` properly.
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
BUNDLE_PATH is hard coded [here](https://github.com/pivotal/LicenseFinder/blob/e91798fd82c127f3d9e7d844600886853a41b6c3/lib/license_finder/package_managers/bundler.rb#L42)
|
|
|
|
|
|
|
|
|
|
|
|
|
