(cordova-eslint) 01/01: ci: add release audit workflow

Sun, 24 Mar 2024 23:04:45 -0700 

This is an automated email from the ASF dual-hosted git repository.

erisu pushed a commit to branch ci/release-audit-workflow
in repository https://gitbox.apache.org/repos/asf/cordova-eslint.git

commit a353b7f03c5263db55ba599e91e35d5881e841de
Author: Erisu <er...@apache.org>
AuthorDate: Mon Mar 25 15:04:19 2024 +0900

    ci: add release audit workflow
---
 .github/workflows/release-audit.yml | 45 ++++++++++++++++++++++++++
 .ratignore                          |  2 ++
 NOTICE                              |  9 ++++++
 licence_checker.yml                 | 64 +++++++++++++++++++++++++++++++++++++
 4 files changed, 120 insertions(+)

diff --git a/.github/workflows/release-audit.yml 
b/.github/workflows/release-audit.yml
new file mode 100644
index 0000000..dcdfb99
--- /dev/null
+++ b/.github/workflows/release-audit.yml
@@ -0,0 +1,45 @@
+# Licensed to the Apache Software Foundation (ASF) under one
+# or more contributor license agreements.  See the NOTICE file
+# distributed with this work for additional information
+# regarding copyright ownership.  The ASF licenses this file
+# to you under the Apache License, Version 2.0 (the
+# "License"); you may not use this file except in compliance
+# with the License.  You may obtain a copy of the License at
+#
+# http://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing,
+# software distributed under the License is distributed on an
+# "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
+#  KIND, either express or implied.  See the License for the
+# specific language governing permissions and limitations
+# under the License.
+
+name: Release Auditing
+
+on: [push, pull_request]
+
+jobs:
+  test:
+    name: Audit Licenses
+    runs-on: ubuntu-latest
+    steps:
+      # Checkout project
+      - uses: actions/checkout@v4
+
+      # Check license headers
+      - uses: erisu/apache-rat-action@2840c4d69521d23ab0cfd346e14406d884c656da
+
+      # Setup environment with node
+      - uses: actions/setup-node@v4
+        with:
+          node-version: 18
+
+      # Install node packages
+      - name: npm install packages
+        run: npm i
+
+      # Check node package licenses
+      - uses: 
erisu/license-checker-action@e929758f9416f30234ac454fc9054ca4b803871d
+        with:
+          license-config: 'licence_checker.yml'
diff --git a/.ratignore b/.ratignore
new file mode 100644
index 0000000..9d9d296
--- /dev/null
+++ b/.ratignore
@@ -0,0 +1,2 @@
+\.(.*)
+node_modules
diff --git a/NOTICE b/NOTICE
index dba79a5..fe5aa97 100644
--- a/NOTICE
+++ b/NOTICE
@@ -3,3 +3,12 @@ Copyright 2012-2023 The Apache Software Foundation
 
 This product includes software developed at
 The Apache Software Foundation (http://www.apache.org/).
+
+-----
+
+- caniuse-lite
+
+  https://github.com/browserslist/caniuse-lite (caniuse.com)
+
+  Licensed under the Creative Commons Attribution 4.0 International (CC-BY-4.0)
+  https://creativecommons.org/licenses/by/4.0/
diff --git a/licence_checker.yml b/licence_checker.yml
new file mode 100644
index 0000000..8661ec4
--- /dev/null
+++ b/licence_checker.yml
@@ -0,0 +1,64 @@
+# Licensed to the Apache Software Foundation (ASF) under one
+# or more contributor license agreements.  See the NOTICE file
+# distributed with this work for additional information
+# regarding copyright ownership.  The ASF licenses this file
+# to you under the Apache License, Version 2.0 (the
+# "License"); you may not use this file except in compliance
+# with the License.  You may obtain a copy of the License at
+#
+# http://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing,
+# software distributed under the License is distributed on an
+# "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
+#  KIND, either express or implied.  See the License for the
+# specific language governing permissions and limitations
+# under the License.
+
+# Compiled list of allowed 3RD PARTY LICENSES from:
+#
+# ASF CATEGORY A: WHAT CAN WE INCLUDE IN AN ASF PROJECT
+# https://www.apache.org/legal/resolved.html#category-a
+#
+# Licenses converted into the SPDX standardized short identifier format.
+# https://spdx.org/licenses/
+allowed-licenses:
+  - 0BSD
+  - AFL-3.0
+  - Apache-1.1
+  - Apache-2.0
+  - APAFML
+  - BlueOak-1.0.0
+  - BSD-2-Clause
+  - BSD-3-Clause
+  - BSD-3-Clause-LBNL
+  - BSL-1.0
+  - CC-PDDC
+  - CC0-1.0
+  - EPICS
+  - HPND
+  - ICU
+  - ISC
+  - MIT
+  - MIT-0
+  - MS-PL
+  - MulanPSL-2.0
+  - NCSA
+  - OGL-UK-3.0
+  - PHP-3.01
+  - PostgreSQL
+  - PSF-2.0
+  - Python-2.0
+  - SMLNJ
+  - Unicode-DFS-2016
+  - Unlicense
+  - UPL-1.0
+  - W3C
+  - WTFPL
+  - X11
+  - Xnet
+  - Zlib
+  - ZPL-2.0
+
+ignored-packages:
+  - caniuse-lite@1.0.30001600


---------------------------------------------------------------------
To unsubscribe, e-mail: commits-unsubscr...@cordova.apache.org
For additional commands, e-mail: commits-h...@cordova.apache.org

Reply via email to