actions/dependency-review-action
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
8a1ad91c0aadf9606187a4e935a48dd52e93196a
dependency-review-action/dist
History
Kevin Dangoor 6e9307a3d4 Discard allow list entries that are not SPDX IDs 
The allow-licenses list is expected (and documented) to be a list of
SPDX license IDs (LicenseRefs are also valid). If someone puts an
expression in the list (e.g. "GPL-3.0-only OR MIT"), it should be
discarded so that the whole list does not become invalid.

Fixes #907
2025-05-12 18:58:58 -04:00
..
index.js
Discard allow list entries that are not SPDX IDs
2025-05-12 18:58:58 -04:00
index.js.map
Discard allow list entries that are not SPDX IDs
2025-05-12 18:58:58 -04:00
licenses.txt
Handle complex licenses (e.g. X AND Y)
2025-05-05 19:06:50 -04:00
sourcemap-register.js
updating generated code
2024-11-20 21:42:05 +00:00