Scan Report

Created by ORT, the OSS Review Toolkit, version cc543c9380-dirty on 2023-04-02T15:36:48.157588209Z.

Project

Scanned revision 4c7ccf911b858c3c70a041d71e0e8d63bd7fadd0 of Git repository https://github.com/eclipse-ee4j/saaj-api.git

Index

Rule Violation Summary (0 errors, 2 warnings, 7 hints to resolve)
Maven:jakarta.xml.soap:jakarta.xml.soap-api:3.0.1-SNAPSHOT
Maven:jakarta.xml.soap:soap-spec:3.0
Unmanaged::saaj-api:4c7ccf911b858c3c70a041d71e0e8d63bd7fadd0
Repository Configuration

Rule Violation Summary (0 errors, 2 warnings, 7 hints to resolve)

#	Rule	Package	License	Message
1	OSADL_PROJECT_LICENSE_COMPATIBILITY	Maven:jakarta.activation:jakarta.activation-api:2.1.0	DECLARED: BSD-3-Clause	It is unknown whether the outbound license LicenseRef-scancode-efsl-1.0 of project 'Maven:jakarta.xml.soap:jakarta.xml.soap-api:3.0.1-SNAPSHOT' is compatible with the inbound license BSD-3-Clause of its dependency 'Maven:jakarta.activation:jakarta.activation-api:2.1.0'. This combination of licenses is not covered by the compliance matrix. How to fix Get legal advice and eventually create a (global) rule violation resolution.
2	OSADL_PROJECT_LICENSE_COMPATIBILITY	Maven:jakarta.activation:jakarta.activation-api:2.1.0	DETECTED: BSD-3-Clause	It is unknown whether the outbound license LicenseRef-scancode-efsl-1.0 of project 'Maven:jakarta.xml.soap:jakarta.xml.soap-api:3.0.1-SNAPSHOT' is compatible with the inbound license BSD-3-Clause of its dependency 'Maven:jakarta.activation:jakarta.activation-api:2.1.0'. This combination of licenses is not covered by the compliance matrix. How to fix Get legal advice and eventually create a (global) rule violation resolution.
3	PROJECT_LICENSE_CHECK	Maven:jakarta.xml.soap:jakarta.xml.soap-api:3.0.1-SNAPSHOT	DETECTED: LicenseRef-scancode-efsl-1.0	License LicenseRef-scancode-efsl-1.0 of project 'Maven:jakarta.xml.soap:jakarta.xml.soap-api:3.0.1-SNAPSHOT' is unclassified. How to fix Classify LicenseRef-scancode-efsl-1.0 as either approved or restricted.
4	PROJECT_LICENSE_CHECK	Maven:jakarta.xml.soap:soap-spec:3.0	DECLARED: GPL-2.0-only WITH Classpath-exception-2.0	License GPL-2.0-only WITH Classpath-exception-2.0 of project 'Maven:jakarta.xml.soap:soap-spec:3.0' is unclassified. How to fix Classify GPL-2.0-only WITH Classpath-exception-2.0 as either approved or restricted.
5	PROJECT_LICENSE_CHECK	Maven:jakarta.xml.soap:soap-spec:3.0	DETECTED: GPL-2.0-only WITH Classpath-exception-2.0	License GPL-2.0-only WITH Classpath-exception-2.0 of project 'Maven:jakarta.xml.soap:soap-spec:3.0' is unclassified. How to fix Classify GPL-2.0-only WITH Classpath-exception-2.0 as either approved or restricted.
6	PROJECT_LICENSE_CHECK	Maven:jakarta.xml.soap:soap-spec:3.0	DETECTED: LicenseRef-scancode-efsl-1.0	License LicenseRef-scancode-efsl-1.0 of project 'Maven:jakarta.xml.soap:soap-spec:3.0' is unclassified. How to fix Classify LicenseRef-scancode-efsl-1.0 as either approved or restricted.
7	PROJECT_LICENSE_CHECK	Unmanaged::saaj-api:4c7ccf911b858c3c70a041d71e0e8d63bd7fadd0	DETECTED: GPL-2.0-only WITH Classpath-exception-2.0	License GPL-2.0-only WITH Classpath-exception-2.0 of project 'Unmanaged::saaj-api:4c7ccf911b858c3c70a041d71e0e8d63bd7fadd0' is unclassified. How to fix Classify GPL-2.0-only WITH Classpath-exception-2.0 as either approved or restricted.
8	PROJECT_LICENSE_CHECK	Unmanaged::saaj-api:4c7ccf911b858c3c70a041d71e0e8d63bd7fadd0	DETECTED: LicenseRef-scancode-efsl-1.0	License LicenseRef-scancode-efsl-1.0 of project 'Unmanaged::saaj-api:4c7ccf911b858c3c70a041d71e0e8d63bd7fadd0' is unclassified. How to fix Classify LicenseRef-scancode-efsl-1.0 as either approved or restricted.
9	PROJECT_LICENSE_CHECK	Unmanaged::saaj-api:4c7ccf911b858c3c70a041d71e0e8d63bd7fadd0	DETECTED: NOASSERTION	License NOASSERTION of project 'Unmanaged::saaj-api:4c7ccf911b858c3c70a041d71e0e8d63bd7fadd0' is unclassified. How to fix Classify NOASSERTION as either approved or restricted.

Maven:jakarta.xml.soap:jakarta.xml.soap-api:3.0.1-SNAPSHOT (api/pom.xml)

VCS Information

Type	Git
URL	https://github.com/eclipse-ee4j/saaj-api.git
Path	api
Revision	4c7ccf911b858c3c70a041d71e0e8d63bd7fadd0

Packages

#	Package	Scopes	Licenses
1	Maven:jakarta.xml.soap:jakarta.xml.soap-api:3.0.1-SNAPSHOT		Declared Licenses: BSD-3-Clause Detected Licenses (from VCS): BSD-3-Clause (exemplary link to the first of 77 locations) LicenseRef-scancode-efsl-1.0 (link to the location) Effective License: BSD-3-Clause AND LicenseRef-scancode-efsl-1.0
2	Maven:jakarta.activation:jakarta.activation-api:2.1.0	compile	Declared Licenses: BSD-3-Clause Detected Licenses (from artifact): BSD-3-Clause (exemplary link to the first of 69 locations) Effective License: BSD-3-Clause
3	Maven:junit:junit:4.13.2	test Excluded: TEST_DEPENDENCY_OF - Packages for testing only.	Concluded License: EPL-2.0 Declared Licenses: EPL-1.0 Detected Licenses (from VCS): Apache-2.0 (exemplary link to the first of 4 locations) EPL-1.0 (exemplary link to the first of 5 locations) EPL-2.0 (link to the location) NOASSERTION (link to the location) Effective License: EPL-2.0
4	Maven:org.hamcrest:hamcrest-core:1.3	test Excluded: TEST_DEPENDENCY_OF - Packages for testing only.	Concluded License: BSD-2-Clause Declared Licenses: BSD-3-Clause Effective License: BSD-2-Clause

Maven:jakarta.xml.soap:soap-spec:3.0 (spec/pom.xml)

VCS Information

Type	Git
URL	https://github.com/eclipse-ee4j/saaj-api.git
Path	spec
Revision	4c7ccf911b858c3c70a041d71e0e8d63bd7fadd0

Packages

#	Package	Scopes	Licenses	Analyzer Issues	Scanner Issues
1	Maven:jakarta.xml.soap:soap-spec:3.0		Declared Licenses: EPL-2.0 GPL-2.0-only WITH Classpath-exception-2.0 Detected Licenses (from VCS): EPL-2.0 (exemplary link to the first of 3 locations) GPL-2.0-only WITH Classpath-exception-2.0 (exemplary link to the first of 2 locations) LicenseRef-scancode-efsl-1.0 (link to the location) Effective License: EPL-2.0 AND GPL-2.0-only WITH Classpath-exception-2.0 AND LicenseRef-scancode-efsl-1.0 OR EPL-2.0 AND LicenseRef-scancode-efsl-1.0

Package

Scopes

Licenses

Analyzer Issues

Scanner Issues

Maven:jakarta.xml.soap:soap-spec:3.0

Declared Licenses:

EPL-2.0

GPL-2.0-only WITH Classpath-exception-2.0

Detected Licenses (from VCS):

EPL-2.0 (exemplary link to the first of 3 locations)

GPL-2.0-only WITH Classpath-exception-2.0 (exemplary link to the first of 2 locations)

LicenseRef-scancode-efsl-1.0 (link to the location)

Effective License:

EPL-2.0 AND GPL-2.0-only WITH Classpath-exception-2.0 AND LicenseRef-scancode-efsl-1.0 OR EPL-2.0 AND LicenseRef-scancode-efsl-1.0

Unmanaged::saaj-api:4c7ccf911b858c3c70a041d71e0e8d63bd7fadd0 ()

VCS Information

Type	Git
URL	https://github.com/eclipse-ee4j/saaj-api
Path
Revision	4c7ccf911b858c3c70a041d71e0e8d63bd7fadd0

Packages

#	Package	Scopes	Licenses	Analyzer Issues	Scanner Issues
1	Unmanaged::saaj-api:4c7ccf911b858c3c70a041d71e0e8d63bd7fadd0		Detected Licenses (from VCS): Apache-2.0 (link to the location) BSD-3-Clause (exemplary link to the first of 105 locations) EPL-1.0 (link to the location) EPL-2.0 (exemplary link to the first of 6 locations) GPL-2.0-only WITH Classpath-exception-2.0 (exemplary link to the first of 4 locations) LicenseRef-scancode-efsl-1.0 (exemplary link to the first of 2 locations) NOASSERTION (exemplary link to the first of 4 locations) Effective License: Apache-2.0 AND BSD-3-Clause AND EPL-1.0 AND EPL-2.0 AND GPL-2.0-only WITH Classpath-exception-2.0 AND LicenseRef-scancode-efsl-1.0 AND NOASSERTION

Package

Scopes

Licenses

Analyzer Issues

Scanner Issues

Unmanaged::saaj-api:4c7ccf911b858c3c70a041d71e0e8d63bd7fadd0

Detected Licenses (from VCS):

Apache-2.0 (link to the location)

BSD-3-Clause (exemplary link to the first of 105 locations)

EPL-1.0 (link to the location)

EPL-2.0 (exemplary link to the first of 6 locations)

GPL-2.0-only WITH Classpath-exception-2.0 (exemplary link to the first of 4 locations)

LicenseRef-scancode-efsl-1.0 (exemplary link to the first of 2 locations)

NOASSERTION (exemplary link to the first of 4 locations)

Effective License:

Apache-2.0 AND BSD-3-Clause AND EPL-1.0 AND EPL-2.0 AND GPL-2.0-only WITH Classpath-exception-2.0 AND LicenseRef-scancode-efsl-1.0 AND NOASSERTION

Repository Configuration


---
excludes:
  paths:
  - pattern: "**/META-INF/DEPENDENCIES"
    reason: "BUILD_TOOL_OF"
    comment: "Licenses contained in this directory reflect content analysed elsewhere."
  - pattern: "**/META-INF/NOTICE*"
    reason: "BUILD_TOOL_OF"
    comment: "Licenses contained in this directory reflect content analysed elsewhere."
  - pattern: "**/*.svg"
    reason: "BUILD_TOOL_OF"
    comment: "SVG files do not contain any license information."
  - pattern: "package-lock.json"
    reason: "BUILD_TOOL_OF"
    comment: "Does not contain any license information."
  scopes:
  - pattern: "test"
    reason: "TEST_DEPENDENCY_OF"
    comment: "Packages for testing only."