Source: pudb Version: 2020.1-1 Severity: serious Tags: upstream Justification: Policy 2.3 X-Debbugs-Cc: hlieber...@debian.org
In debugging pudb recently, I found a notice in pudb/settings.py (L35-63) where the author has pointed out a section of code that was copied from pyxdg. Looking in pyxdg, the substantially same code is in xdg/BaseDirectory.py, dating back several years. I see three paths to fix this: 1, Simply declare the entire package licensed under LGPL. That requires no code changes and updates potential downstream users about a conflict. 2. Trace the lines of code to an author inside pyxdg and attempt to get them to agree to license that segment under MIT. 3. Replace the code with an equivalent clean-room implementation. Sincerely, -- Harlan Lieberman-Berg ~hlieberman
