Source: cpl-plugin-sinfo Severity: serious Hi. cpl-plugin-sinfo is using some numerical routines from numerical recipes. These are NOT free software and may not be used in a free software project.
For Debian, you can elide these sources. It would also be great if you talked to upstream so that they stop violating copyrights also. Look at sinfo_svd_compare() in sinfoni/sinfo_svd.c A later version of the book chapter this function came from lives here: http://numerical.recipes/webnotes/nr3web2.pdf You can see many similarities. If you look at the older version of the book, you will see 100% similarities. The copyright statement is here: http://numerical.recipes/public-domain.html I haven't done a thorough search, and it's possible SVD implementation isn't the only violation here. It would be great if you looked more thoroughly. Thanks