Github user nickwallen commented on the issue:
https://github.com/apache/metron/pull/620
If we just focus on the production dependencies, which AFAIK is all we need
to worry about, then I think the licenses are not a problem.
```
$ license-checker --production | grep licenses | sort | uniq -c | sort -n
1 ââ licenses: MIT
1 â ââ licenses: (OFL-1.1 AND MIT)
1 â ââ licenses: BSD*
1 â ââ licenses: UNLICENSED
3 â ââ licenses: Apache-2.0
13 â ââ licenses: MIT
```
The single `UNLICENSED` dependency is actually `metron-alerts` itself. Can
you correct that?
```
ââ [email protected]
â ââ licenses: UNLICENSED
â ââ private: true
â ââ licenseFile:
/Users/nallen/tmp/metron-pr620/metron-interface/metron-alerts/README.md
â ââ noticeFile:
/Users/nallen/tmp/metron-pr620/metron-interface/metron-alerts/NOTICE
```
---
If your project is set up for it, you can reply to this email and have your
reply appear on GitHub as well. If your project does not have this feature
enabled and wishes so, or if the feature is enabled but not working, please
contact infrastructure at [email protected] or file a JIRA ticket
with INFRA.
---
