Scan Report

Created by ORT, the OSS Review Toolkit, version cc543c9380-dirty on 2023-04-27T08:05:13.492536690Z.

Project

Scanned revision 0827a473cf1bc8a4bfb1eb16a71fe99cce40dee5 of Git repository https://github.com/eclipse-cognicrypt/CogniCrypt.git

Index

Rule Violation Summary (406 errors, 253 warnings, 90 hints to resolve)
Issue Summary (14 errors, 0 warnings, 0 hints to resolve)
Maven:de.cognicrypt:de.cognicrypt.codegenerator:1.0.0-SNAPSHOT
Maven:de.cognicrypt:de.cognicrypt.codegenerator.feature:1.0.0-SNAPSHOT
Maven:de.cognicrypt:de.cognicrypt.codegenerator.tests:1.0.0-SNAPSHOT
Maven:de.cognicrypt:de.cognicrypt.core:1.0.0-SNAPSHOT
Maven:de.cognicrypt:de.cognicrypt.core.feature:1.0.0-SNAPSHOT
Maven:de.cognicrypt:de.cognicrypt.crysl.handler:1.0.0-SNAPSHOT
Maven:de.cognicrypt:de.cognicrypt.cryslhandler.feature:1.0.0-SNAPSHOT
Maven:de.cognicrypt:de.cognicrypt.integrator.primitive:1.0.0-SNAPSHOT
Maven:de.cognicrypt:de.cognicrypt.integrator.task:1.0.0-SNAPSHOT
Maven:de.cognicrypt:de.cognicrypt.parent:1.0.0-SNAPSHOT
Maven:de.cognicrypt:de.cognicrypt.repository:1.0.0-SNAPSHOT
Maven:de.cognicrypt:de.cognicrypt.staticanalyzer:1.0.0-SNAPSHOT
Maven:de.cognicrypt:de.cognicrypt.staticanalyzer.feature:1.0.0-SNAPSHOT
Repository Configuration

Rule Violation Summary (406 errors, 253 warnings, 90 hints to resolve)

Issue Summary (14 errors, 0 warnings, 0 hints to resolve)

Issues from excluded components are not shown in this summary.

Packages

#	Package	Scanner Issues
1	Maven:com.google.code.findbugs:jsr305:1.3.9	Maven:de.cognicrypt:de.cognicrypt.core:1.0.0-SNAPSHOT 2023-04-27T07:46:43.466238475Z [ERROR]: scanner - Could not resolve nested provenance for package 'Maven:com.google.code.findbugs:jsr305:1.3.9': DownloadException: Unable to initialize a Subversion working tree in '/tmp/ort-DefaultWorkingTreeCache12162661921663460749' from http://findbugs.googlecode.com/svn. Caused by: SVNException: svn: E160013: '/svn' path not found: 404 Not Found (http://findbugs.googlecode.com)
2	Maven:com.google.inject:guice:3.0	Maven:de.cognicrypt:de.cognicrypt.core:1.0.0-SNAPSHOT 2023-04-27T08:02:10.121713059Z [ERROR]: Downloader - Could not create file archive for 'Maven:com.google.inject:guice:3.0': DownloadException: Unable to initialize a Subversion working tree in '/tmp/ort-DefaultWorkingTreeCache6493220600090135536' from http://google-guice.googlecode.com/svn. Caused by: SVNException: svn: E160013: '/svn' path not found: 404 Not Found (http://google-guice.googlecode.com)
3	Maven:com.google.j2objc:j2objc-annotations:1.1	Maven:de.cognicrypt:de.cognicrypt.core:1.0.0-SNAPSHOT 2023-04-27T08:04:21.404495957Z [ERROR]: Downloader - Could not create file archive for 'Maven:com.google.j2objc:j2objc-annotations:1.1': DownloadException: Unable to initialize a Subversion working tree in '/tmp/ort-DefaultWorkingTreeCache16753416248515263515' from http://svn.sonatype.org/spice. Caused by: SVNException: svn: E175002: timed out waiting for server svn: E175002: OPTIONS request failed on '/spice' Caused by: SocketTimeoutException: Connect timed out
4	Maven:com.googlecode.json-simple:json-simple:1.1.1	Maven:de.cognicrypt:de.cognicrypt.core:1.0.0-SNAPSHOT 2023-04-27T08:03:07.327481823Z [ERROR]: Downloader - Could not create file archive for 'Maven:com.googlecode.json-simple:json-simple:1.1.1': DownloadException: Unable to initialize a Subversion working tree in '/tmp/ort-DefaultWorkingTreeCache11779762135182798940' from http://json-simple.googlecode.com/svn. Caused by: SVNException: svn: E160013: '/svn' path not found: 404 Not Found (http://json-simple.googlecode.com)
5	Maven:de.darmstadt.tu.crossing.CrySL:de.darmstadt.tu.crossing.CrySL:2.0.1	Maven:de.cognicrypt:de.cognicrypt.core:1.0.0-SNAPSHOT 2023-04-27T07:46:43.237436937Z [ERROR]: scanner - Could not resolve provenance for package 'Maven:de.darmstadt.tu.crossing.CrySL:de.darmstadt.tu.crossing.CrySL:2.0.1': IOException: Could not resolve provenance for 'Maven:de.darmstadt.tu.crossing.CrySL:de.darmstadt.tu.crossing.CrySL:2.0.1' for source code origins [VCS, ARTIFACT]. Maven:de.cognicrypt:de.cognicrypt.crysl.handler:1.0.0-SNAPSHOT 2023-04-27T07:46:43.237436937Z [ERROR]: scanner - Could not resolve provenance for package 'Maven:de.darmstadt.tu.crossing.CrySL:de.darmstadt.tu.crossing.CrySL:2.0.1': IOException: Could not resolve provenance for 'Maven:de.darmstadt.tu.crossing.CrySL:de.darmstadt.tu.crossing.CrySL:2.0.1' for source code origins [VCS, ARTIFACT].
6	Maven:de.darmstadt.tu.crossing.CrySL:de.darmstadt.tu.crossing.CrySL.ide:2.0.1	Maven:de.cognicrypt:de.cognicrypt.crysl.handler:1.0.0-SNAPSHOT 2023-04-27T07:46:43.237594037Z [ERROR]: scanner - Could not resolve provenance for package 'Maven:de.darmstadt.tu.crossing.CrySL:de.darmstadt.tu.crossing.CrySL.ide:2.0.1': IOException: Could not resolve provenance for 'Maven:de.darmstadt.tu.crossing.CrySL:de.darmstadt.tu.crossing.CrySL.ide:2.0.1' for source code origins [VCS, ARTIFACT].
7	Maven:de.darmstadt.tu.crossing.CrySL:de.darmstadt.tu.crossing.CrySL.ui:2.0.1	Maven:de.cognicrypt:de.cognicrypt.crysl.handler:1.0.0-SNAPSHOT 2023-04-27T07:46:43.237554737Z [ERROR]: scanner - Could not resolve provenance for package 'Maven:de.darmstadt.tu.crossing.CrySL:de.darmstadt.tu.crossing.CrySL.ui:2.0.1': IOException: Could not resolve provenance for 'Maven:de.darmstadt.tu.crossing.CrySL:de.darmstadt.tu.crossing.CrySL.ui:2.0.1' for source code origins [VCS, ARTIFACT].
8	Maven:de.fraunhofer.iem:CryptoAnalysis:2.7.2	Maven:de.cognicrypt:de.cognicrypt.core:1.0.0-SNAPSHOT 2023-04-27T07:46:43.237351536Z [ERROR]: scanner - Could not resolve provenance for package 'Maven:de.fraunhofer.iem:CryptoAnalysis:2.7.2': IOException: Could not resolve provenance for 'Maven:de.fraunhofer.iem:CryptoAnalysis:2.7.2' for source code origins [VCS, ARTIFACT].
9	Maven:de.fraunhofer.iem:PathExpression:1.0.0	Maven:de.cognicrypt:de.cognicrypt.core:1.0.0-SNAPSHOT 2023-04-27T07:46:43.237489037Z [ERROR]: scanner - Could not resolve provenance for package 'Maven:de.fraunhofer.iem:PathExpression:1.0.0': IOException: Could not resolve provenance for 'Maven:de.fraunhofer.iem:PathExpression:1.0.0' for source code origins [VCS, ARTIFACT].
10	Maven:org.codehaus.mojo:animal-sniffer-annotations:1.14	Maven:de.cognicrypt:de.cognicrypt.core:1.0.0-SNAPSHOT 2023-04-27T07:46:43.466025974Z [ERROR]: scanner - Could not resolve nested provenance for package 'Maven:org.codehaus.mojo:animal-sniffer-annotations:1.14': DownloadException: Unable to initialize a Subversion working tree in '/tmp/ort-DefaultWorkingTreeCache10586751226986397108' from https://svn.codehaus.org/mojo. Caused by: SVNException: svn: E175002: unknown host svn: E175002: OPTIONS request failed on '/mojo' Caused by: UnknownHostException: svn.codehaus.org: Name or service not known
11	Maven:org.codehaus.plexus:plexus-component-annotations:1.5.5	Maven:de.cognicrypt:de.cognicrypt.core:1.0.0-SNAPSHOT 2023-04-27T08:02:31.382548901Z [ERROR]: Downloader - Could not create file archive for 'Maven:org.codehaus.plexus:plexus-component-annotations:1.5.5': DownloadException: Unable to initialize a Subversion working tree in '/tmp/ort-DefaultWorkingTreeCache1361261372703668439' from https://svn.codehaus.org/plexus/plexus-containers. Caused by: SVNException: svn: E175002: unknown host svn: E175002: OPTIONS request failed on '/plexus/plexus-containers' Caused by: UnknownHostException: svn.codehaus.org: Name or service not known
12	Maven:org.slf4j:jcl-over-slf4j:1.6.2	Maven:de.cognicrypt:de.cognicrypt.core:1.0.0-SNAPSHOT 2023-04-27T08:04:21.987117064Z [ERROR]: Downloader - Could not create file archive for 'Maven:org.slf4j:jcl-over-slf4j:1.6.2': DownloadException: Unable to initialize a Subversion working tree in '/tmp/ort-DefaultWorkingTreeCache3862225161255150600' from http://svn.slf4j.org/repos/slf4j. Caused by: SVNException: svn: E175002: unknown host svn: E175002: OPTIONS request failed on '/repos/slf4j' Caused by: UnknownHostException: svn.slf4j.org: Name or service not known
13	Maven:xmlpull:xmlpull:1.1.3.4d_b4_min	Maven:de.cognicrypt:de.cognicrypt.core:1.0.0-SNAPSHOT 2023-04-27T07:46:43.237618838Z [ERROR]: scanner - Could not resolve provenance for package 'Maven:xmlpull:xmlpull:1.1.3.4d_b4_min': IOException: Could not resolve provenance for 'Maven:xmlpull:xmlpull:1.1.3.4d_b4_min' for source code origins [VCS, ARTIFACT].

Maven:de.cognicrypt:de.cognicrypt.codegenerator:1.0.0-SNAPSHOT (plugins/de.cognicrypt.codegenerator/pom.xml)

VCS Information

Type	Git
URL	https://github.com/eclipse-cognicrypt/CogniCrypt.git
Path	plugins/de.cognicrypt.codegenerator
Revision	0827a473cf1bc8a4bfb1eb16a71fe99cce40dee5

Packages

#	Package	Scopes	Licenses	Analyzer Issues	Scanner Issues
1	Maven:de.cognicrypt:de.cognicrypt.codegenerator:1.0.0-SNAPSHOT		Detected Licenses (from VCS): EPL-2.0 (exemplary link to the first of 149 locations) Effective License: EPL-2.0

Package

Scopes

Licenses

Analyzer Issues

Scanner Issues

Maven:de.cognicrypt:de.cognicrypt.codegenerator:1.0.0-SNAPSHOT

Detected Licenses (from VCS):

EPL-2.0 (exemplary link to the first of 149 locations)

Effective License:

EPL-2.0

Maven:de.cognicrypt:de.cognicrypt.codegenerator.feature:1.0.0-SNAPSHOT (features/de.cognicrypt.codegenerator.feature/pom.xml)

VCS Information

Type	Git
URL	https://github.com/eclipse-cognicrypt/CogniCrypt.git
Path	features/de.cognicrypt.codegenerator.feature
Revision	0827a473cf1bc8a4bfb1eb16a71fe99cce40dee5

Packages

#	Package	Scopes	Licenses	Analyzer Issues	Scanner Issues
1	Maven:de.cognicrypt:de.cognicrypt.codegenerator.feature:1.0.0-SNAPSHOT		Detected Licenses (from VCS): EPL-2.0 (exemplary link to the first of 2 locations) Effective License: EPL-2.0

Package

Scopes

Licenses

Analyzer Issues

Scanner Issues

Maven:de.cognicrypt:de.cognicrypt.codegenerator.feature:1.0.0-SNAPSHOT

Detected Licenses (from VCS):

EPL-2.0 (exemplary link to the first of 2 locations)

Effective License:

EPL-2.0

Maven:de.cognicrypt:de.cognicrypt.codegenerator.tests:1.0.0-SNAPSHOT (plugins/de.cognicrypt.codegenerator.tests/pom.xml)

VCS Information

Type	Git
URL	https://github.com/eclipse-cognicrypt/CogniCrypt.git
Path	plugins/de.cognicrypt.codegenerator.tests
Revision	0827a473cf1bc8a4bfb1eb16a71fe99cce40dee5

Packages

#	Package	Scopes	Licenses	Analyzer Issues	Scanner Issues
1	Maven:de.cognicrypt:de.cognicrypt.codegenerator.tests:1.0.0-SNAPSHOT		Detected Licenses (from VCS): EPL-2.0 (exemplary link to the first of 7 locations) GPL-2.0-only WITH Classpath-exception-2.0 (exemplary link to the first of 2 locations) Effective License: EPL-2.0 OR EPL-2.0 AND GPL-2.0-only WITH Classpath-exception-2.0
2	Maven:org.slf4j:slf4j-api:1.7.30	compile	Declared Licenses: MIT Detected Licenses (from artifact): MIT (exemplary link to the first of 27 locations) Effective License: MIT

Package

Scopes

Licenses

Analyzer Issues

Scanner Issues

Maven:de.cognicrypt:de.cognicrypt.codegenerator.tests:1.0.0-SNAPSHOT

Detected Licenses (from VCS):

EPL-2.0 (exemplary link to the first of 7 locations)

GPL-2.0-only WITH Classpath-exception-2.0 (exemplary link to the first of 2 locations)

Effective License:

EPL-2.0 OR EPL-2.0 AND GPL-2.0-only WITH Classpath-exception-2.0

Maven:org.slf4j:slf4j-api:1.7.30

compile

Declared Licenses:

MIT

Detected Licenses (from artifact):

MIT (exemplary link to the first of 27 locations)

Effective License:

MIT

Maven:de.cognicrypt:de.cognicrypt.core:1.0.0-SNAPSHOT (plugins/de.cognicrypt.core/pom.xml)

VCS Information

Type	Git
URL	https://github.com/eclipse-cognicrypt/CogniCrypt.git
Path	plugins/de.cognicrypt.core
Revision	0827a473cf1bc8a4bfb1eb16a71fe99cce40dee5

Packages

#	Package	Scopes	Licenses	Scanner Issues
1	Maven:de.cognicrypt:de.cognicrypt.core:1.0.0-SNAPSHOT		Detected Licenses (from VCS): Apache-2.0 (exemplary link to the first of 4 locations) EPL-2.0 (exemplary link to the first of 13 locations) GPL-2.0-only WITH Classpath-exception-2.0 (exemplary link to the first of 4 locations) GPL-2.0-only WITH LicenseRef-scancode-openjdk-exception (exemplary link to the first of 4 locations) Effective License: Apache-2.0 AND EPL-2.0 AND GPL-2.0-only WITH Classpath-exception-2.0 OR EPL-2.0 AND GPL-2.0-only WITH LicenseRef-scancode-openjdk-exception
2	Maven:aopalliance:aopalliance:1.0	compile	Concluded License: LicenseRef-Public-Domain Declared Licenses: LicenseRef-scancode-public-domain-disclaimer Effective License: LicenseRef-Public-Domain
3	Maven:ca.mcgill.sable:jasmin:3.0.2	compile	Detected Licenses (from artifact): GPL-2.0-only (link to the location) LGPL-2.0-or-later (link to the location) LGPL-2.1-or-later (link to the location) Effective License: GPL-2.0-only AND LGPL-2.0-or-later AND LGPL-2.1-or-later
4	Maven:ca.mcgill.sable:java_cup:0.9.2	compile
5	Maven:ca.mcgill.sable:polyglot:2006	compile
6	Maven:com.google.code.findbugs:jsr305:1.3.9	compile	Declared Licenses: Apache-2.0 Effective License: Apache-2.0	2023-04-27T07:46:43.466238475Z [ERROR]: scanner - Could not resolve nested provenance for package 'Maven:com.google.code.findbugs:jsr305:1.3.9': DownloadException: Unable to initialize a Subversion working tree in '/tmp/ort-DefaultWorkingTreeCache12162661921663460749' from http://findbugs.googlecode.com/svn. Caused by: SVNException: svn: E160013: '/svn' path not found: 404 Not Found (http://findbugs.googlecode.com)
7	Maven:com.google.code.gson:gson:1.4	compile	Declared Licenses: Apache-2.0 Detected Licenses (from artifact): Apache-2.0 (exemplary link to the first of 80 locations) Effective License: Apache-2.0
8	Maven:com.google.errorprone:error_prone_annotations:2.1.3	compile	Concluded License: Apache-2.0 Declared Licenses: Apache-2.0 Detected Licenses (from VCS): Apache-2.0 (exemplary link to the first of 1598 locations) EPL-1.0 (exemplary link to the first of 3 locations) GPL-2.0-only WITH Classpath-exception-2.0 (exemplary link to the first of 7 locations) ICU (link to the location) LGPL-2.0-or-later (link to the location) NOASSERTION (exemplary link to the first of 2 locations) Effective License: Apache-2.0
9	Maven:com.google.guava:guava:25.0-jre	compile	Declared Licenses: Apache-2.0 Detected Licenses (from artifact): Apache-2.0 (exemplary link to the first of 564 locations) CC-PDDC (link to the location) CC0-1.0 (exemplary link to the first of 7 locations) LicenseRef-scancode-public-domain (exemplary link to the first of 4 locations) Effective License: Apache-2.0 AND CC-PDDC AND CC0-1.0 AND LicenseRef-scancode-public-domain
10	Maven:com.google.inject:guice:3.0	compile	Concluded License: Apache-2.0 Declared Licenses: Apache-2.0 Detected Licenses (from VCS): Apache-1.1 Apache-2.0 CDDL-1.0 CDDL-1.1 GPL-2.0-only WITH Classpath-exception-2.0 LicenseRef-scancode-proprietary-license MIT NOASSERTION W3C W3C-19980720 Effective License: Apache-2.0	2023-04-27T08:02:10.121713059Z [ERROR]: Downloader - Could not create file archive for 'Maven:com.google.inject:guice:3.0': DownloadException: Unable to initialize a Subversion working tree in '/tmp/ort-DefaultWorkingTreeCache6493220600090135536' from http://google-guice.googlecode.com/svn. Caused by: SVNException: svn: E160013: '/svn' path not found: 404 Not Found (http://google-guice.googlecode.com)
11	Maven:com.google.j2objc:j2objc-annotations:1.1	compile	Concluded License: Apache-2.0 Declared Licenses: Apache-2.0 Detected Licenses (from VCS): ANTLR-PD Apache-2.0 LicenseRef-scancode-ietf LicenseRef-scancode-indiana-extreme LicenseRef-scancode-public-domain LicenseRef-scancode-w3c-docs-19990405 MIT NOASSERTION OLDAP-2.8 Plexus SAX-PD W3C-19980720 Effective License: Apache-2.0	2023-04-27T08:04:21.404495957Z [ERROR]: Downloader - Could not create file archive for 'Maven:com.google.j2objc:j2objc-annotations:1.1': DownloadException: Unable to initialize a Subversion working tree in '/tmp/ort-DefaultWorkingTreeCache16753416248515263515' from http://svn.sonatype.org/spice. Caused by: SVNException: svn: E175002: timed out waiting for server svn: E175002: OPTIONS request failed on '/spice' Caused by: SocketTimeoutException: Connect timed out
12	Maven:com.googlecode.json-simple:json-simple:1.1.1	compile	Concluded License: Apache-2.0 Declared Licenses: Apache-2.0 Effective License: Apache-2.0	2023-04-27T08:03:07.327481823Z [ERROR]: Downloader - Could not create file archive for 'Maven:com.googlecode.json-simple:json-simple:1.1.1': DownloadException: Unable to initialize a Subversion working tree in '/tmp/ort-DefaultWorkingTreeCache11779762135182798940' from http://json-simple.googlecode.com/svn. Caused by: SVNException: svn: E160013: '/svn' path not found: 404 Not Found (http://json-simple.googlecode.com)
13	Maven:com.sun.istack:istack-commons-runtime:3.0.7	compile	Declared Licenses: CDDL-1.1 GPL-2.0-only WITH Classpath-exception-2.0 Detected Licenses (from artifact): CDDL-1.1 GPL-2.0-only WITH Classpath-exception-2.0 Effective License: CDDL-1.1 OR GPL-2.0-only WITH Classpath-exception-2.0
14	Maven:com.sun.xml.fastinfoset:FastInfoset:1.2.15	compile	Declared Licenses: Apache-2.0 Detected Licenses (from artifact): Apache-1.1 Apache-2.0 CDDL-1.1 GPL-2.0-only WITH Classpath-exception-2.0 LicenseRef-scancode-proprietary-license Effective License: Apache-1.1 AND Apache-2.0 AND CDDL-1.1 AND LicenseRef-scancode-proprietary-license OR Apache-1.1 AND Apache-2.0 AND GPL-2.0-only WITH Classpath-exception-2.0 AND LicenseRef-scancode-proprietary-license
15	Maven:commons-cli:commons-cli:1.4	compile	Concluded License: Apache-2.0 Declared Licenses: Apache-2.0 Detected Licenses (from VCS): Apache-2.0 NOASSERTION Effective License: Apache-2.0
16	Maven:commons-codec:commons-codec:1.11	compile	Declared Licenses: Apache-2.0 Detected Licenses (from VCS): Apache-2.0 BSD-3-Clause NOASSERTION Effective License: Apache-2.0 AND BSD-3-Clause AND NOASSERTION
17	Maven:commons-io:commons-io:2.6	compile	Concluded License: Apache-2.0 Declared Licenses: Apache-2.0 Detected Licenses (from VCS): Apache-2.0 NOASSERTION Effective License: Apache-2.0
18	Maven:commons-logging:commons-logging:1.1.1	compile	Concluded License: Apache-2.0 Declared Licenses: Apache-2.0 Detected Licenses (from VCS): Apache-1.1 Apache-2.0 LGPL-2.1-only Effective License: Apache-2.0
19	Maven:de.darmstadt.tu.crossing.CrySL:de.darmstadt.tu.crossing.CrySL:2.0.1	compile		2023-04-27T07:46:43.237436937Z [ERROR]: scanner - Could not resolve provenance for package 'Maven:de.darmstadt.tu.crossing.CrySL:de.darmstadt.tu.crossing.CrySL:2.0.1': IOException: Could not resolve provenance for 'Maven:de.darmstadt.tu.crossing.CrySL:de.darmstadt.tu.crossing.CrySL:2.0.1' for source code origins [VCS, ARTIFACT].
20	Maven:de.fraunhofer.iem:CryptoAnalysis:2.7.2	compile		2023-04-27T07:46:43.237351536Z [ERROR]: scanner - Could not resolve provenance for package 'Maven:de.fraunhofer.iem:CryptoAnalysis:2.7.2': IOException: Could not resolve provenance for 'Maven:de.fraunhofer.iem:CryptoAnalysis:2.7.2' for source code origins [VCS, ARTIFACT].
21	Maven:de.fraunhofer.iem:PathExpression:1.0.0	compile		2023-04-27T07:46:43.237489037Z [ERROR]: scanner - Could not resolve provenance for package 'Maven:de.fraunhofer.iem:PathExpression:1.0.0': IOException: Could not resolve provenance for 'Maven:de.fraunhofer.iem:PathExpression:1.0.0' for source code origins [VCS, ARTIFACT].
22	Maven:de.fraunhofer.iem:WPDS:2.5.1	compile	Detected Licenses (from artifact): EPL-2.0 Effective License: EPL-2.0
23	Maven:de.fraunhofer.iem:boomerangPDS:2.5.1	compile	Detected Licenses (from artifact): EPL-2.0 Effective License: EPL-2.0
24	Maven:de.fraunhofer.iem:idealPDS:2.5.1	compile	Detected Licenses (from artifact): EPL-2.0 Effective License: EPL-2.0
25	Maven:de.fraunhofer.iem:synchronizedPDS:2.5.1	compile	Detected Licenses (from artifact): EPL-2.0 Effective License: EPL-2.0
26	Maven:de.fraunhofer.iem:testCore:2.5.1	compile	Detected Licenses (from artifact): EPL-2.0 Effective License: EPL-2.0
27	Maven:de.upb.cs.swt:axml:2.0.0	compile	Declared Licenses: Apache-2.0 Detected Licenses (from artifact): Apache-2.0 (exemplary link to the first of 22 locations) Effective License: Apache-2.0
28	Maven:de.upb.cs.swt:heros:1.2.2	compile	Declared Licenses: LGPL-2.1-only Detected Licenses (from artifact): GPL-2.0-only (exemplary link to the first of 78 locations) GPL-3.0-only (link to the location) LGPL-2.1-only (exemplary link to the first of 79 locations) Effective License: GPL-2.0-only AND GPL-3.0-only AND LGPL-2.1-only OR GPL-2.0-only AND LGPL-2.1-only
29	Maven:io.github.classgraph:classgraph:4.8.35	compile	Declared Licenses: MIT Detected Licenses (from artifact): MIT (exemplary link to the first of 242 locations) Effective License: MIT
30	Maven:javax.activation:javax.activation-api:1.2.0	compile	Declared Licenses: CDDL-1.0 GPL-2.0-only WITH Classpath-exception-2.0 Effective License: CDDL-1.0 OR GPL-2.0-only WITH Classpath-exception-2.0
31	Maven:javax.annotation:javax.annotation-api:1.3.2	compile	Declared Licenses: CDDL-1.0 GPL-2.0-only WITH Classpath-exception-2.0 Detected Licenses (from VCS): Apache-2.0 (link to the location) CDDL-1.0 (link to the location) CDDL-1.1 (exemplary link to the first of 18 locations) GPL-2.0-only WITH Classpath-exception-2.0 (exemplary link to the first of 19 locations) LGPL-3.0-only (link to the location) LicenseRef-scancode-sun-jsr-spec-04-2006 (link to the location) NOASSERTION (link to the location) Effective License: Apache-2.0 AND CDDL-1.0 AND CDDL-1.1 AND GPL-2.0-only WITH Classpath-exception-2.0 AND LGPL-3.0-only AND LicenseRef-scancode-sun-jsr-spec-04-2006 AND NOASSERTION OR Apache-2.0 AND CDDL-1.1 AND GPL-2.0-only WITH Classpath-exception-2.0 AND LGPL-3.0-only AND LicenseRef-scancode-sun-jsr-spec-04-2006 AND NOASSERTION
32	Maven:javax.inject:javax.inject:1	compile	Concluded License: Apache-2.0 Declared Licenses: Apache-2.0 Detected Licenses (from artifact): Apache-2.0 (exemplary link to the first of 7 locations) Effective License: Apache-2.0
33	Maven:javax.xml.bind:jaxb-api:2.4.0-b180725.0427	compile	Concluded License: CDDL-1.1 OR GPL-2.0-only WITH Classpath-exception-2.0 Declared Licenses: CDDL-1.1 GPL-2.0-only WITH Classpath-exception-2.0 Detected Licenses (from VCS): CDDL-1.0 (exemplary link to the first of 2 locations) CDDL-1.1 (exemplary link to the first of 128 locations) GPL-2.0-only WITH Classpath-exception-2.0 (exemplary link to the first of 128 locations) LGPL-2.1-or-later (link to the location) LicenseRef-scancode-proprietary-license (link to the location) LicenseRef-scancode-sun-sdk-spec-1.1 (link to the location) NOASSERTION (exemplary link to the first of 4 locations) Effective License: CDDL-1.1 OR GPL-2.0-only WITH Classpath-exception-2.0
34	Maven:junit:junit:4.13	compile	Declared Licenses: EPL-1.0 Detected Licenses (from VCS): Apache-2.0 (exemplary link to the first of 4 locations) EPL-1.0 (exemplary link to the first of 5 locations) EPL-2.0 (link to the location) NOASSERTION (link to the location) Effective License: Apache-2.0 AND EPL-1.0 AND EPL-2.0 AND NOASSERTION
35	Maven:log4j:log4j:1.2.17	compile	Concluded License: Apache-2.0 Declared Licenses: Apache-2.0 Detected Licenses (from VCS): Apache-1.1 Apache-2.0 LicenseRef-scancode-public-domain NOASSERTION Effective License: Apache-2.0
36	Maven:net.lingala.zip4j:zip4j:2.1.1	compile	Declared Licenses: Apache-2.0 Detected Licenses (from artifact): Apache-2.0 (exemplary link to the first of 41 locations) Effective License: Apache-2.0
37	Maven:org.antlr:antlr-runtime:3.2	compile	Concluded License: BSD-3-Clause Detected Licenses (from artifact): BSD-3-Clause (exemplary link to the first of 158 locations) Effective License: BSD-3-Clause
38	Maven:org.apache.commons:commons-lang3:3.11	compile	Concluded License: Apache-2.0 Declared Licenses: Apache-2.0 Detected Licenses (from VCS): Apache-1.1 Apache-2.0 NOASSERTION Effective License: Apache-2.0
39	Maven:org.apache.httpcomponents:httpclient:4.5.9	compile	Declared Licenses: Apache-2.0 Detected Licenses (from artifact): Apache-2.0 (exemplary link to the first of 430 locations) Effective License: Apache-2.0
40	Maven:org.apache.httpcomponents:httpcore:4.4.11	compile	Declared Licenses: Apache-2.0 Detected Licenses (from artifact): Apache-2.0 (exemplary link to the first of 260 locations) Effective License: Apache-2.0
41	Maven:org.apache.logging.log4j:log4j-api:2.11.0	compile	Declared Licenses: Apache-2.0 Detected Licenses (from VCS): Apache-2.0 BSD-3-Clause CC0-1.0 GPL-1.0-or-later GPL-2.0-only LGPL-2.0-or-later MIT MPL-2.0 NOASSERTION Effective License: Apache-2.0 AND BSD-3-Clause AND CC0-1.0 AND GPL-1.0-or-later AND GPL-2.0-only AND LGPL-2.0-or-later AND MIT AND MPL-2.0 AND NOASSERTION OR Apache-2.0 AND BSD-3-Clause AND CC0-1.0 AND GPL-2.0-only AND LGPL-2.0-or-later AND MIT AND MPL-2.0 AND NOASSERTION
42	Maven:org.apache.logging.log4j:log4j-core:2.11.0	compile	Declared Licenses: Apache-2.0 Detected Licenses (from VCS): Apache-2.0 BSD-3-Clause CC0-1.0 GPL-1.0-or-later GPL-2.0-only LGPL-2.0-or-later MIT MPL-2.0 NOASSERTION Effective License: Apache-2.0 AND BSD-3-Clause AND CC0-1.0 AND GPL-1.0-or-later AND GPL-2.0-only AND LGPL-2.0-or-later AND MIT AND MPL-2.0 AND NOASSERTION OR Apache-2.0 AND BSD-3-Clause AND CC0-1.0 AND GPL-2.0-only AND LGPL-2.0-or-later AND MIT AND MPL-2.0 AND NOASSERTION
43	Maven:org.apache.maven:maven-aether-provider:3.3.3	compile	Declared Licenses: Apache-2.0 Detected Licenses (from VCS): Apache-2.0 CDDL-1.0 CPL-1.0 LicenseRef-scancode-jsr-107-jcache-spec-2013 NOASSERTION Effective License: Apache-2.0 AND CDDL-1.0 AND CPL-1.0 AND LicenseRef-scancode-jsr-107-jcache-spec-2013 AND NOASSERTION
44	Maven:org.apache.maven:maven-builder-support:3.3.3	compile	Declared Licenses: Apache-2.0 Detected Licenses (from VCS): Apache-2.0 CDDL-1.0 CPL-1.0 LicenseRef-scancode-jsr-107-jcache-spec-2013 NOASSERTION Effective License: Apache-2.0 AND CDDL-1.0 AND CPL-1.0 AND LicenseRef-scancode-jsr-107-jcache-spec-2013 AND NOASSERTION
45	Maven:org.apache.maven:maven-model:3.3.3	compile	Declared Licenses: Apache-2.0 Detected Licenses (from VCS): Apache-2.0 CDDL-1.0 CPL-1.0 LicenseRef-scancode-jsr-107-jcache-spec-2013 NOASSERTION Effective License: Apache-2.0 AND CDDL-1.0 AND CPL-1.0 AND LicenseRef-scancode-jsr-107-jcache-spec-2013 AND NOASSERTION
46	Maven:org.apache.maven:maven-model-builder:3.3.3	compile	Declared Licenses: Apache-2.0 Detected Licenses (from VCS): Apache-2.0 CDDL-1.0 CPL-1.0 LicenseRef-scancode-jsr-107-jcache-spec-2013 NOASSERTION Effective License: Apache-2.0 AND CDDL-1.0 AND CPL-1.0 AND LicenseRef-scancode-jsr-107-jcache-spec-2013 AND NOASSERTION
47	Maven:org.apache.maven:maven-repository-metadata:3.3.3	compile	Declared Licenses: Apache-2.0 Detected Licenses (from VCS): Apache-2.0 CDDL-1.0 CPL-1.0 LicenseRef-scancode-jsr-107-jcache-spec-2013 NOASSERTION Effective License: Apache-2.0 AND CDDL-1.0 AND CPL-1.0 AND LicenseRef-scancode-jsr-107-jcache-spec-2013 AND NOASSERTION
48	Maven:org.bouncycastle:bcprov-jdk15on:1.62	compile	Declared Licenses: MIT Effective License: MIT
49	Maven:org.bouncycastle:bctls-jdk15on:1.62	compile	Declared Licenses: MIT Effective License: MIT
50	Maven:org.checkerframework:checker-compat-qual:2.0.0	compile	Concluded License: CC-BY-2.5 Declared Licenses: GPL-2.0-only WITH Classpath-exception-2.0 MIT Detected Licenses (from VCS): Apache-2.0 (exemplary link to the first of 180 locations) BSD-3-Clause (link to the location) CC-BY-2.5 (link to the location) CC-PDDC (exemplary link to the first of 2 locations) CC0-1.0 (exemplary link to the first of 6 locations) CPL-1.0 (link to the location) EPL-1.0 (link to the location) GPL-1.0-or-later (exemplary link to the first of 5 locations) GPL-2.0-only (exemplary link to the first of 9 locations) GPL-2.0-only WITH Classpath-exception-2.0 (exemplary link to the first of 119 locations) GPL-2.0-or-later (link to the location) GPL-3.0-only (link to the location) LGPL-2.0-or-later (link to the location) LGPL-3.0-only (exemplary link to the first of 7 locations) LGPL-3.0-or-later (exemplary link to the first of 109 locations) LPPL-1.3c (exemplary link to the first of 3 locations) LicenseRef-scancode-proprietary-license (exemplary link to the first of 8 locations) LicenseRef-scancode-public-domain (link to the location) LicenseRef-scancode-public-domain-disclaimer (link to the location) LicenseRef-scancode-taligent-jdk (exemplary link to the first of 3 locations) MIT (exemplary link to the first of 15 locations) NOASSERTION (exemplary link to the first of 3 locations) OpenSSL (exemplary link to the first of 3 locations) SAX-PD (exemplary link to the first of 5 locations) W3C (exemplary link to the first of 7 locations) Effective License: CC-BY-2.5
51	Maven:org.codehaus.mojo:animal-sniffer-annotations:1.14	compile	Declared Licenses: MIT Effective License: MIT	2023-04-27T07:46:43.466025974Z [ERROR]: scanner - Could not resolve nested provenance for package 'Maven:org.codehaus.mojo:animal-sniffer-annotations:1.14': DownloadException: Unable to initialize a Subversion working tree in '/tmp/ort-DefaultWorkingTreeCache10586751226986397108' from https://svn.codehaus.org/mojo. Caused by: SVNException: svn: E175002: unknown host svn: E175002: OPTIONS request failed on '/mojo' Caused by: UnknownHostException: svn.codehaus.org: Name or service not known
52	Maven:org.codehaus.plexus:plexus-component-annotations:1.5.5	compile	Concluded License: Apache-2.0 Declared Licenses: Apache-2.0 Detected Licenses (from VCS): Apache-2.0 CC-BY-2.5 CC-BY-SA-3.0 LicenseRef-scancode-proprietary-license NOASSERTION Effective License: Apache-2.0	2023-04-27T08:02:31.382548901Z [ERROR]: Downloader - Could not create file archive for 'Maven:org.codehaus.plexus:plexus-component-annotations:1.5.5': DownloadException: Unable to initialize a Subversion working tree in '/tmp/ort-DefaultWorkingTreeCache1361261372703668439' from https://svn.codehaus.org/plexus/plexus-containers. Caused by: SVNException: svn: E175002: unknown host svn: E175002: OPTIONS request failed on '/plexus/plexus-containers' Caused by: UnknownHostException: svn.codehaus.org: Name or service not known
53	Maven:org.codehaus.plexus:plexus-interpolation:1.21	compile	Declared Licenses: Apache-2.0 Detected Licenses (from artifact): Apache-1.1 (exemplary link to the first of 4 locations) Apache-2.0 (exemplary link to the first of 32 locations) MIT (exemplary link to the first of 2 locations) Effective License: Apache-1.1 AND Apache-2.0 AND MIT
54	Maven:org.codehaus.plexus:plexus-utils:3.0.20	compile	Declared Licenses: Apache-2.0 Detected Licenses (from artifact): Apache-1.1 (exemplary link to the first of 10 locations) Apache-2.0 (exemplary link to the first of 68 locations) BSD-2-Clause (link to the location) BSD-3-Clause (exemplary link to the first of 4 locations) LicenseRef-scancode-indiana-extreme (link to the location) LicenseRef-scancode-public-domain (exemplary link to the first of 6 locations) NOASSERTION (link to the location) SAX-PD (exemplary link to the first of 4 locations) xpp (link to the location) Effective License: Apache-1.1 AND Apache-2.0 AND BSD-2-Clause AND BSD-3-Clause AND LicenseRef-scancode-indiana-extreme AND LicenseRef-scancode-public-domain AND NOASSERTION AND SAX-PD AND xpp
55	Maven:org.eclipse.aether:aether-api:1.1.0	compile	Declared Licenses: EPL-1.0 Effective License: EPL-1.0
56	Maven:org.eclipse.aether:aether-connector-basic:1.1.0	compile	Declared Licenses: EPL-1.0 Effective License: EPL-1.0
57	Maven:org.eclipse.aether:aether-impl:1.1.0	compile	Declared Licenses: EPL-1.0 Effective License: EPL-1.0
58	Maven:org.eclipse.aether:aether-spi:1.1.0	compile	Declared Licenses: EPL-1.0 Effective License: EPL-1.0
59	Maven:org.eclipse.aether:aether-transport-file:1.1.0	compile	Declared Licenses: EPL-1.0 Effective License: EPL-1.0
60	Maven:org.eclipse.aether:aether-transport-http:1.1.0	compile	Declared Licenses: EPL-1.0 Effective License: EPL-1.0
61	Maven:org.eclipse.aether:aether-util:1.1.0	compile	Declared Licenses: EPL-1.0 Effective License: EPL-1.0
62	Maven:org.eclipse.emf:org.eclipse.emf.common:2.15.0	compile	Declared Licenses: EPL-1.0 Detected Licenses (from artifact): EPL-1.0 (link to the location) EPL-2.0 (exemplary link to the first of 68 locations) Effective License: EPL-1.0 AND EPL-2.0
63	Maven:org.eclipse.emf:org.eclipse.emf.ecore:2.15.0	compile	Declared Licenses: EPL-1.0 Detected Licenses (from artifact): Apache-1.1 (exemplary link to the first of 4 locations) Apache-2.0 (exemplary link to the first of 9 locations) CPL-1.0 (link to the location) EPL-1.0 (link to the location) EPL-2.0 (exemplary link to the first of 175 locations) NOASSERTION (exemplary link to the first of 4 locations) SHL-0.51 (link to the location) Effective License: Apache-1.1 AND Apache-2.0 AND CPL-1.0 AND EPL-1.0 AND EPL-2.0 AND NOASSERTION AND SHL-0.51
64	Maven:org.eclipse.emf:org.eclipse.emf.ecore.xmi:2.12.0	compile	Declared Licenses: EPL-1.0 Detected Licenses (from artifact): CPL-1.0 (link to the location) EPL-1.0 (exemplary link to the first of 63 locations) NOASSERTION (link to the location) Effective License: CPL-1.0 AND EPL-1.0 AND NOASSERTION
65	Maven:org.eclipse.mylyn.github:org.eclipse.egit.github.core:2.1.5	compile	Declared Licenses: EPL-1.0 Detected Licenses (from artifact): EPL-1.0 (exemplary link to the first of 112 locations) LicenseRef-scancode-public-domain (link to the location) LicenseRef-scancode-public-domain-disclaimer (link to the location) Effective License: EPL-1.0 AND LicenseRef-scancode-public-domain AND LicenseRef-scancode-public-domain-disclaimer
66	Maven:org.eclipse.platform:org.eclipse.equinox.common:3.10.200	compile	Declared Licenses: EPL-2.0 Detected Licenses (from artifact): Apache-2.0 (exemplary link to the first of 57 locations) EPL-1.0 (link to the location) EPL-2.0 (exemplary link to the first of 115 locations) Effective License: Apache-2.0 AND EPL-1.0 AND EPL-2.0 OR EPL-1.0 AND EPL-2.0
67	Maven:org.eclipse.platform:org.eclipse.osgi:3.13.200	compile	Declared Licenses: EPL-2.0 Detected Licenses (from artifact): Apache-1.1 (link to the location) Apache-2.0 (exemplary link to the first of 465 locations) EPL-1.0 (link to the location) EPL-2.0 (exemplary link to the first of 577 locations) GPL-2.0-only WITH Classpath-exception-2.0 (exemplary link to the first of 8 locations) GPL-2.0-only WITH LicenseRef-scancode-openjdk-exception (exemplary link to the first of 8 locations) NOASSERTION (exemplary link to the first of 6 locations) Effective License: Apache-1.1 AND Apache-2.0 AND EPL-1.0 AND EPL-2.0 AND GPL-2.0-only WITH Classpath-exception-2.0 AND GPL-2.0-only WITH LicenseRef-scancode-openjdk-exception AND NOASSERTION
68	Maven:org.eclipse.xtend:org.eclipse.xtend.lib:2.18.0	compile	Declared Licenses: EPL-1.0 Effective License: EPL-1.0
69	Maven:org.eclipse.xtend:org.eclipse.xtend.lib.macro:2.18.0	compile	Declared Licenses: EPL-1.0 Effective License: EPL-1.0
70	Maven:org.eclipse.xtext:org.eclipse.xtext:2.18.0	compile	Declared Licenses: EPL-1.0 Detected Licenses (from artifact): CPL-1.0 (link to the location) EPL-1.0 (exemplary link to the first of 958 locations) NOASSERTION (link to the location) Effective License: CPL-1.0 AND EPL-1.0 AND NOASSERTION
71	Maven:org.eclipse.xtext:org.eclipse.xtext.common.types:2.18.0	compile	Declared Licenses: EPL-1.0 Detected Licenses (from artifact): CPL-1.0 (link to the location) EPL-1.0 (exemplary link to the first of 253 locations) NOASSERTION (link to the location) Effective License: CPL-1.0 AND EPL-1.0 AND NOASSERTION
72	Maven:org.eclipse.xtext:org.eclipse.xtext.util:2.18.0	compile	Declared Licenses: EPL-1.0 Detected Licenses (from artifact): CPL-1.0 (link to the location) EPL-1.0 (exemplary link to the first of 102 locations) NOASSERTION (link to the location) Effective License: CPL-1.0 AND EPL-1.0 AND NOASSERTION
73	Maven:org.eclipse.xtext:org.eclipse.xtext.xbase:2.18.0	compile	Declared Licenses: EPL-1.0 Detected Licenses (from artifact): CPL-1.0 (link to the location) EPL-1.0 (exemplary link to the first of 719 locations) NOASSERTION (link to the location) Effective License: CPL-1.0 AND EPL-1.0 AND NOASSERTION
74	Maven:org.eclipse.xtext:org.eclipse.xtext.xbase.lib:2.18.0	compile	Declared Licenses: EPL-1.0 Effective License: EPL-1.0
75	Maven:org.functionaljava:functionaljava:4.2	compile	Concluded License: BSD-3-Clause Detected Licenses (from VCS): BSD-3-Clause (exemplary link to the first of 3 locations) GPL-2.0-only WITH LicenseRef-scancode-mysql-linking-exception-2018 (link to the location) Effective License: BSD-3-Clause
76	Maven:org.glassfish.jaxb:jaxb-runtime:2.4.0-b180830.0438	compile	Declared Licenses: CDDL-1.0 GPL-2.0-or-later Effective License: CDDL-1.0 OR GPL-2.0-or-later
77	Maven:org.glassfish.jaxb:txw2:2.4.0-b180830.0438	compile	Declared Licenses: CDDL-1.0 GPL-2.0-or-later Detected Licenses (from artifact): CDDL-1.1 GPL-2.0-only WITH Classpath-exception-2.0 LicenseRef-scancode-public-domain LicenseRef-scancode-public-domain-disclaimer SAX-PD Effective License: CDDL-1.0 AND CDDL-1.1 AND GPL-2.0-only WITH Classpath-exception-2.0 AND LicenseRef-scancode-public-domain AND LicenseRef-scancode-public-domain-disclaimer AND SAX-PD OR CDDL-1.1 AND GPL-2.0-only WITH Classpath-exception-2.0 AND GPL-2.0-or-later AND LicenseRef-scancode-public-domain AND LicenseRef-scancode-public-domain-disclaimer AND SAX-PD
78	Maven:org.hamcrest:hamcrest-core:1.3	compile	Concluded License: BSD-2-Clause Declared Licenses: BSD-3-Clause Effective License: BSD-2-Clause
79	Maven:org.ini4j:ini4j:0.5.1	compile	Declared Licenses: Apache-2.0 Detected Licenses (from artifact): Apache-2.0 (exemplary link to the first of 48 locations) Effective License: Apache-2.0
80	Maven:org.jvnet.staxex:stax-ex:1.8	compile	Declared Licenses: CDDL-1.1 GPL-2.0-only Detected Licenses (from artifact): CDDL-1.1 GPL-2.0-only WITH Classpath-exception-2.0 Effective License: CDDL-1.1 OR CDDL-1.1 AND GPL-2.0-only OR CDDL-1.1 AND GPL-2.0-only WITH Classpath-exception-2.0 OR GPL-2.0-only AND GPL-2.0-only WITH Classpath-exception-2.0
81	Maven:org.ow2.asm:asm:8.0.1	compile	Declared Licenses: BSD-3-Clause Detected Licenses (from VCS): BSD-3-Clause NOASSERTION Effective License: BSD-3-Clause AND NOASSERTION
82	Maven:org.ow2.asm:asm-analysis:8.0.1	compile	Declared Licenses: BSD-3-Clause Detected Licenses (from VCS): BSD-3-Clause NOASSERTION Effective License: BSD-3-Clause AND NOASSERTION
83	Maven:org.ow2.asm:asm-commons:8.0.1	compile	Declared Licenses: BSD-3-Clause Detected Licenses (from VCS): BSD-3-Clause NOASSERTION Effective License: BSD-3-Clause AND NOASSERTION
84	Maven:org.ow2.asm:asm-tree:8.0.1	compile	Declared Licenses: BSD-3-Clause Detected Licenses (from VCS): BSD-3-Clause NOASSERTION Effective License: BSD-3-Clause AND NOASSERTION
85	Maven:org.ow2.asm:asm-util:8.0.1	compile	Declared Licenses: BSD-3-Clause Detected Licenses (from VCS): BSD-3-Clause NOASSERTION Effective License: BSD-3-Clause AND NOASSERTION
86	Maven:org.slf4j:jcl-over-slf4j:1.6.2	compile	Declared Licenses: MIT Detected Licenses (from VCS): Apache-1.1 Apache-2.0 Artistic-1.0 BSD-3-Clause CDDL-1.0 GPL-2.0-only WITH Classpath-exception-2.0 MIT NOASSERTION Effective License: Apache-1.1 AND Apache-2.0 AND Artistic-1.0 AND BSD-3-Clause AND CDDL-1.0 AND MIT AND NOASSERTION OR Apache-1.1 AND Apache-2.0 AND Artistic-1.0 AND BSD-3-Clause AND GPL-2.0-only WITH Classpath-exception-2.0 AND MIT AND NOASSERTION	2023-04-27T08:04:21.987117064Z [ERROR]: Downloader - Could not create file archive for 'Maven:org.slf4j:jcl-over-slf4j:1.6.2': DownloadException: Unable to initialize a Subversion working tree in '/tmp/ort-DefaultWorkingTreeCache3862225161255150600' from http://svn.slf4j.org/repos/slf4j. Caused by: SVNException: svn: E175002: unknown host svn: E175002: OPTIONS request failed on '/repos/slf4j' Caused by: UnknownHostException: svn.slf4j.org: Name or service not known
87	Maven:org.slf4j:slf4j-api:1.7.30	compile	Declared Licenses: MIT Detected Licenses (from artifact): MIT (exemplary link to the first of 27 locations) Effective License: MIT
88	Maven:org.slf4j:slf4j-simple:1.7.21	compile	Declared Licenses: MIT Detected Licenses (from artifact): MIT (exemplary link to the first of 5 locations) Effective License: MIT
89	Maven:org.smali:dexlib2:2.4.0	compile	Declared Licenses: BSD-3-Clause Detected Licenses (from VCS): Apache-2.0 (exemplary link to the first of 4 locations) BSD-3-Clause (exemplary link to the first of 606 locations) Effective License: Apache-2.0 AND BSD-3-Clause
90	Maven:org.soot-oss:soot:4.2.1	compile	Declared Licenses: LGPL-2.1-only Detected Licenses (from artifact): AGPL-3.0-or-later (exemplary link to the first of 19 locations) BSD-3-Clause (exemplary link to the first of 2 locations) GPL-1.0-or-later (exemplary link to the first of 2 locations) LGPL-2.0-or-later (exemplary link to the first of 2 locations) LGPL-2.1-only (exemplary link to the first of 2231 locations) LGPL-2.1-or-later (exemplary link to the first of 2229 locations) LicenseRef-scancode-commercial-license (exemplary link to the first of 4 locations) LicenseRef-scancode-llgpl (link to the location) LicenseRef-scancode-philippe-de-muyter (exemplary link to the first of 2 locations) LicenseRef-scancode-things-i-made-public-license (exemplary link to the first of 2 locations) NOASSERTION (exemplary link to the first of 38 locations) Effective License: AGPL-3.0-or-later AND BSD-3-Clause AND GPL-1.0-or-later AND LGPL-2.0-or-later AND LGPL-2.1-only AND LGPL-2.1-or-later AND LicenseRef-scancode-commercial-license AND LicenseRef-scancode-llgpl AND LicenseRef-scancode-philippe-de-muyter AND LicenseRef-scancode-things-i-made-public-license AND NOASSERTION OR AGPL-3.0-or-later AND BSD-3-Clause AND GPL-1.0-or-later AND LGPL-2.0-or-later AND LGPL-2.1-only AND LGPL-2.1-or-later AND LicenseRef-scancode-llgpl AND LicenseRef-scancode-philippe-de-muyter AND LicenseRef-scancode-things-i-made-public-license AND NOASSERTION
91	Maven:xmlpull:xmlpull:1.1.3.4d_b4_min	compile	Concluded License: LicenseRef-Public-Domain Declared Licenses: LicenseRef-scancode-public-domain-disclaimer Effective License: LicenseRef-Public-Domain	2023-04-27T07:46:43.237618838Z [ERROR]: scanner - Could not resolve provenance for package 'Maven:xmlpull:xmlpull:1.1.3.4d_b4_min': IOException: Could not resolve provenance for 'Maven:xmlpull:xmlpull:1.1.3.4d_b4_min' for source code origins [VCS, ARTIFACT].

Maven:de.cognicrypt:de.cognicrypt.core.feature:1.0.0-SNAPSHOT (features/de.cognicrypt.core.feature/pom.xml)

VCS Information

Type	Git
URL	https://github.com/eclipse-cognicrypt/CogniCrypt.git
Path	features/de.cognicrypt.core.feature
Revision	0827a473cf1bc8a4bfb1eb16a71fe99cce40dee5

Packages

#	Package	Scopes	Licenses	Analyzer Issues	Scanner Issues
1	Maven:de.cognicrypt:de.cognicrypt.core.feature:1.0.0-SNAPSHOT		Detected Licenses (from VCS): EPL-2.0 (exemplary link to the first of 2 locations) Effective License: EPL-2.0

Package

Scopes

Licenses

Analyzer Issues

Scanner Issues

Maven:de.cognicrypt:de.cognicrypt.core.feature:1.0.0-SNAPSHOT

Detected Licenses (from VCS):

EPL-2.0 (exemplary link to the first of 2 locations)

Effective License:

EPL-2.0

Maven:de.cognicrypt:de.cognicrypt.crysl.handler:1.0.0-SNAPSHOT (plugins/de.cognicrypt.crysl.handler/pom.xml)

VCS Information

Type	Git
URL	https://github.com/eclipse-cognicrypt/CogniCrypt.git
Path	plugins/de.cognicrypt.crysl.handler
Revision	0827a473cf1bc8a4bfb1eb16a71fe99cce40dee5

Packages

#	Package	Scopes	Licenses	Scanner Issues
1	Maven:de.cognicrypt:de.cognicrypt.crysl.handler:1.0.0-SNAPSHOT		Detected Licenses (from VCS): Apache-2.0 (exemplary link to the first of 6 locations) EPL-2.0 (exemplary link to the first of 27 locations) GPL-2.0-only WITH Classpath-exception-2.0 (exemplary link to the first of 6 locations) GPL-2.0-only WITH LicenseRef-scancode-openjdk-exception (exemplary link to the first of 6 locations) Effective License: Apache-2.0 AND EPL-2.0 AND GPL-2.0-only WITH Classpath-exception-2.0 OR EPL-2.0 AND GPL-2.0-only WITH LicenseRef-scancode-openjdk-exception
2	Maven:de.darmstadt.tu.crossing.CrySL:de.darmstadt.tu.crossing.CrySL:2.0.1	compile		2023-04-27T07:46:43.237436937Z [ERROR]: scanner - Could not resolve provenance for package 'Maven:de.darmstadt.tu.crossing.CrySL:de.darmstadt.tu.crossing.CrySL:2.0.1': IOException: Could not resolve provenance for 'Maven:de.darmstadt.tu.crossing.CrySL:de.darmstadt.tu.crossing.CrySL:2.0.1' for source code origins [VCS, ARTIFACT].
3	Maven:de.darmstadt.tu.crossing.CrySL:de.darmstadt.tu.crossing.CrySL.ide:2.0.1	compile		2023-04-27T07:46:43.237594037Z [ERROR]: scanner - Could not resolve provenance for package 'Maven:de.darmstadt.tu.crossing.CrySL:de.darmstadt.tu.crossing.CrySL.ide:2.0.1': IOException: Could not resolve provenance for 'Maven:de.darmstadt.tu.crossing.CrySL:de.darmstadt.tu.crossing.CrySL.ide:2.0.1' for source code origins [VCS, ARTIFACT].
4	Maven:de.darmstadt.tu.crossing.CrySL:de.darmstadt.tu.crossing.CrySL.ui:2.0.1	compile		2023-04-27T07:46:43.237554737Z [ERROR]: scanner - Could not resolve provenance for package 'Maven:de.darmstadt.tu.crossing.CrySL:de.darmstadt.tu.crossing.CrySL.ui:2.0.1': IOException: Could not resolve provenance for 'Maven:de.darmstadt.tu.crossing.CrySL:de.darmstadt.tu.crossing.CrySL.ui:2.0.1' for source code origins [VCS, ARTIFACT].

Maven:de.cognicrypt:de.cognicrypt.cryslhandler.feature:1.0.0-SNAPSHOT (features/de.cognicrypt.cryslhandler.feature/pom.xml)

VCS Information

Type	Git
URL	https://github.com/eclipse-cognicrypt/CogniCrypt.git
Path	features/de.cognicrypt.cryslhandler.feature
Revision	0827a473cf1bc8a4bfb1eb16a71fe99cce40dee5

Packages

#	Package	Scopes	Licenses	Analyzer Issues	Scanner Issues
1	Maven:de.cognicrypt:de.cognicrypt.cryslhandler.feature:1.0.0-SNAPSHOT		Detected Licenses (from VCS): EPL-2.0 (exemplary link to the first of 2 locations) Effective License: EPL-2.0

Package

Scopes

Licenses

Analyzer Issues

Scanner Issues

Maven:de.cognicrypt:de.cognicrypt.cryslhandler.feature:1.0.0-SNAPSHOT

Detected Licenses (from VCS):

EPL-2.0 (exemplary link to the first of 2 locations)

Effective License:

EPL-2.0

Maven:de.cognicrypt:de.cognicrypt.integrator.primitive:1.0.0-SNAPSHOT (plugins/de.cognicrypt.integrator.primitive/pom.xml)

VCS Information

Type	Git
URL	https://github.com/eclipse-cognicrypt/CogniCrypt.git
Path	plugins/de.cognicrypt.integrator.primitive
Revision	0827a473cf1bc8a4bfb1eb16a71fe99cce40dee5

Packages

#	Package	Scopes	Licenses	Analyzer Issues	Scanner Issues
1	Maven:de.cognicrypt:de.cognicrypt.integrator.primitive:1.0.0-SNAPSHOT		Detected Licenses (from VCS): Apache-2.0 (exemplary link to the first of 22 locations) EPL-2.0 (exemplary link to the first of 28 locations) GPL-2.0-only WITH Classpath-exception-2.0 (exemplary link to the first of 22 locations) GPL-2.0-only WITH LicenseRef-scancode-openjdk-exception (exemplary link to the first of 22 locations) Effective License: Apache-2.0 AND EPL-2.0 AND GPL-2.0-only WITH Classpath-exception-2.0 OR EPL-2.0 AND GPL-2.0-only WITH LicenseRef-scancode-openjdk-exception

Package

Scopes

Licenses

Analyzer Issues

Scanner Issues

Maven:de.cognicrypt:de.cognicrypt.integrator.primitive:1.0.0-SNAPSHOT

Detected Licenses (from VCS):

Apache-2.0 (exemplary link to the first of 22 locations)

EPL-2.0 (exemplary link to the first of 28 locations)

GPL-2.0-only WITH Classpath-exception-2.0 (exemplary link to the first of 22 locations)

GPL-2.0-only WITH LicenseRef-scancode-openjdk-exception (exemplary link to the first of 22 locations)

Effective License:

Apache-2.0 AND EPL-2.0 AND GPL-2.0-only WITH Classpath-exception-2.0 OR EPL-2.0 AND GPL-2.0-only WITH LicenseRef-scancode-openjdk-exception

Maven:de.cognicrypt:de.cognicrypt.integrator.task:1.0.0-SNAPSHOT (plugins/de.cognicrypt.integrator.task/pom.xml)

VCS Information

Type	Git
URL	https://github.com/eclipse-cognicrypt/CogniCrypt.git
Path	plugins/de.cognicrypt.integrator.task
Revision	0827a473cf1bc8a4bfb1eb16a71fe99cce40dee5

Packages

#	Package	Scopes	Licenses	Analyzer Issues	Scanner Issues
1	Maven:de.cognicrypt:de.cognicrypt.integrator.task:1.0.0-SNAPSHOT		Detected Licenses (from VCS): Apache-2.0 (exemplary link to the first of 29 locations) BSD-3-Clause (exemplary link to the first of 2 locations) EPL-2.0 (exemplary link to the first of 39 locations) GPL-2.0-only WITH Classpath-exception-2.0 (exemplary link to the first of 29 locations) GPL-2.0-only WITH LicenseRef-scancode-openjdk-exception (exemplary link to the first of 29 locations) Effective License: Apache-2.0 AND BSD-3-Clause AND EPL-2.0 AND GPL-2.0-only WITH Classpath-exception-2.0 OR BSD-3-Clause AND EPL-2.0 AND GPL-2.0-only WITH LicenseRef-scancode-openjdk-exception

Package

Scopes

Licenses

Analyzer Issues

Scanner Issues

Maven:de.cognicrypt:de.cognicrypt.integrator.task:1.0.0-SNAPSHOT

Detected Licenses (from VCS):

Apache-2.0 (exemplary link to the first of 29 locations)

BSD-3-Clause (exemplary link to the first of 2 locations)

EPL-2.0 (exemplary link to the first of 39 locations)

GPL-2.0-only WITH Classpath-exception-2.0 (exemplary link to the first of 29 locations)

GPL-2.0-only WITH LicenseRef-scancode-openjdk-exception (exemplary link to the first of 29 locations)

Effective License:

Apache-2.0 AND BSD-3-Clause AND EPL-2.0 AND GPL-2.0-only WITH Classpath-exception-2.0 OR BSD-3-Clause AND EPL-2.0 AND GPL-2.0-only WITH LicenseRef-scancode-openjdk-exception

Maven:de.cognicrypt:de.cognicrypt.parent:1.0.0-SNAPSHOT (pom.xml)

VCS Information

Type	Git
URL	https://github.com/eclipse-cognicrypt/CogniCrypt.git
Path
Revision	0827a473cf1bc8a4bfb1eb16a71fe99cce40dee5

Packages

#	Package	Scopes	Licenses	Analyzer Issues	Scanner Issues
1	Maven:de.cognicrypt:de.cognicrypt.parent:1.0.0-SNAPSHOT		Detected Licenses (from VCS): Apache-1.1 (link to the location) Apache-2.0 (exemplary link to the first of 71 locations) BSD-3-Clause (exemplary link to the first of 5 locations) CC-BY-SA-3.0 (link to the location) CPL-1.0 (link to the location) EPL-1.0 (link to the location) EPL-2.0 (exemplary link to the first of 308 locations) GPL-2.0-only WITH Classpath-exception-2.0 (exemplary link to the first of 76 locations) GPL-2.0-only WITH LicenseRef-scancode-openjdk-exception (exemplary link to the first of 68 locations) HPND (link to the location) LGPL-2.1-or-later (link to the location) MIT (link to the location) MPL-2.0 (link to the location) MPL-2.0-no-copyleft-exception (link to the location) NOASSERTION (link to the location) Unicode-TOU (link to the location) Effective License: Apache-1.1 AND Apache-2.0 AND BSD-3-Clause AND CC-BY-SA-3.0 AND CPL-1.0 AND EPL-1.0 AND EPL-2.0 AND GPL-2.0-only WITH Classpath-exception-2.0 AND GPL-2.0-only WITH LicenseRef-scancode-openjdk-exception AND HPND AND LGPL-2.1-or-later AND MIT AND MPL-2.0 AND MPL-2.0-no-copyleft-exception AND NOASSERTION AND Unicode-TOU

Package

Scopes

Licenses

Analyzer Issues

Scanner Issues

Maven:de.cognicrypt:de.cognicrypt.parent:1.0.0-SNAPSHOT

Detected Licenses (from VCS):

Apache-1.1 (link to the location)

Apache-2.0 (exemplary link to the first of 71 locations)

BSD-3-Clause (exemplary link to the first of 5 locations)

CC-BY-SA-3.0 (link to the location)

CPL-1.0 (link to the location)

EPL-1.0 (link to the location)

EPL-2.0 (exemplary link to the first of 308 locations)

GPL-2.0-only WITH Classpath-exception-2.0 (exemplary link to the first of 76 locations)

GPL-2.0-only WITH LicenseRef-scancode-openjdk-exception (exemplary link to the first of 68 locations)

HPND (link to the location)

LGPL-2.1-or-later (link to the location)

MIT (link to the location)

MPL-2.0 (link to the location)

MPL-2.0-no-copyleft-exception (link to the location)

NOASSERTION (link to the location)

Unicode-TOU (link to the location)

Effective License:

Apache-1.1 AND Apache-2.0 AND BSD-3-Clause AND CC-BY-SA-3.0 AND CPL-1.0 AND EPL-1.0 AND EPL-2.0 AND GPL-2.0-only WITH Classpath-exception-2.0 AND GPL-2.0-only WITH LicenseRef-scancode-openjdk-exception AND HPND AND LGPL-2.1-or-later AND MIT AND MPL-2.0 AND MPL-2.0-no-copyleft-exception AND NOASSERTION AND Unicode-TOU

Maven:de.cognicrypt:de.cognicrypt.repository:1.0.0-SNAPSHOT (repository/pom.xml)

VCS Information

Type	Git
URL	https://github.com/eclipse-cognicrypt/CogniCrypt.git
Path	repository
Revision	0827a473cf1bc8a4bfb1eb16a71fe99cce40dee5

Packages

#	Package	Scopes	Licenses	Analyzer Issues	Scanner Issues
1	Maven:de.cognicrypt:de.cognicrypt.repository:1.0.0-SNAPSHOT		Detected Licenses (from VCS): EPL-2.0 (link to the location) Effective License: EPL-2.0

Package

Scopes

Licenses

Analyzer Issues

Scanner Issues

Maven:de.cognicrypt:de.cognicrypt.repository:1.0.0-SNAPSHOT

Detected Licenses (from VCS):

EPL-2.0 (link to the location)

Effective License:

EPL-2.0

Maven:de.cognicrypt:de.cognicrypt.staticanalyzer:1.0.0-SNAPSHOT (plugins/de.cognicrypt.staticanalyzer/pom.xml)

VCS Information

Type	Git
URL	https://github.com/eclipse-cognicrypt/CogniCrypt.git
Path	plugins/de.cognicrypt.staticanalyzer
Revision	0827a473cf1bc8a4bfb1eb16a71fe99cce40dee5

Packages

#	Package	Scopes	Licenses	Analyzer Issues	Scanner Issues
1	Maven:de.cognicrypt:de.cognicrypt.staticanalyzer:1.0.0-SNAPSHOT		Detected Licenses (from VCS): Apache-2.0 (exemplary link to the first of 8 locations) BSD-3-Clause (link to the location) EPL-1.0 (link to the location) EPL-2.0 (exemplary link to the first of 42 locations) GPL-2.0-only WITH Classpath-exception-2.0 (exemplary link to the first of 13 locations) GPL-2.0-only WITH LicenseRef-scancode-openjdk-exception (exemplary link to the first of 7 locations) Effective License: Apache-2.0 AND BSD-3-Clause AND EPL-1.0 AND EPL-2.0 AND GPL-2.0-only WITH Classpath-exception-2.0 AND GPL-2.0-only WITH LicenseRef-scancode-openjdk-exception

Package

Scopes

Licenses

Analyzer Issues

Scanner Issues

Maven:de.cognicrypt:de.cognicrypt.staticanalyzer:1.0.0-SNAPSHOT

Detected Licenses (from VCS):

Apache-2.0 (exemplary link to the first of 8 locations)

BSD-3-Clause (link to the location)

EPL-1.0 (link to the location)

EPL-2.0 (exemplary link to the first of 42 locations)

GPL-2.0-only WITH Classpath-exception-2.0 (exemplary link to the first of 13 locations)

GPL-2.0-only WITH LicenseRef-scancode-openjdk-exception (exemplary link to the first of 7 locations)

Effective License:

Apache-2.0 AND BSD-3-Clause AND EPL-1.0 AND EPL-2.0 AND GPL-2.0-only WITH Classpath-exception-2.0 AND GPL-2.0-only WITH LicenseRef-scancode-openjdk-exception

Maven:de.cognicrypt:de.cognicrypt.staticanalyzer.feature:1.0.0-SNAPSHOT (features/de.cognicrypt.staticanalyzer.feature/pom.xml)

VCS Information

Type	Git
URL	https://github.com/eclipse-cognicrypt/CogniCrypt.git
Path	features/de.cognicrypt.staticanalyzer.feature
Revision	0827a473cf1bc8a4bfb1eb16a71fe99cce40dee5

Packages

#	Package	Scopes	Licenses	Analyzer Issues	Scanner Issues
1	Maven:de.cognicrypt:de.cognicrypt.staticanalyzer.feature:1.0.0-SNAPSHOT		Detected Licenses (from VCS): EPL-2.0 (exemplary link to the first of 2 locations) Effective License: EPL-2.0

Package

Scopes

Licenses

Analyzer Issues

Scanner Issues

Maven:de.cognicrypt:de.cognicrypt.staticanalyzer.feature:1.0.0-SNAPSHOT

Detected Licenses (from VCS):

EPL-2.0 (exemplary link to the first of 2 locations)

Effective License:

EPL-2.0

Repository Configuration


---
excludes:
  paths:
  - pattern: "**/META-INF/DEPENDENCIES"
    reason: "BUILD_TOOL_OF"
    comment: "Licenses contained in this directory reflect content analysed elsewhere."
  - pattern: "**/META-INF/NOTICE*"
    reason: "BUILD_TOOL_OF"
    comment: "Licenses contained in this directory reflect content analysed elsewhere."
  - pattern: "**/*.svg"
    reason: "BUILD_TOOL_OF"
    comment: "SVG files do not contain any license information."
  - pattern: "package-lock.json"
    reason: "BUILD_TOOL_OF"
    comment: "Does not contain any license information."

#	Rule	Package	License	Message
1	DEPENDENCY_LICENSE_CHECK	Maven:org.soot-oss:soot:4.2.1	DETECTED: AGPL-3.0-or-later	License AGPL-3.0-or-later of dependency 'Maven:org.soot-oss:soot:4.2.1' is classified as restricted. How to fix Remove dependency 'Maven:org.soot-oss:soot:4.2.1' from project 'Maven:de.cognicrypt:de.cognicrypt.core:1.0.0-SNAPSHOT'.
2	OSADL_PROJECT_LICENSE_COMPATIBILITY	Maven:ca.mcgill.sable:jasmin:3.0.2	DETECTED: GPL-2.0-only	The outbound license Apache-2.0 of project 'Maven:de.cognicrypt:de.cognicrypt.core:1.0.0-SNAPSHOT' is incompatible with the inbound license GPL-2.0-only of its dependency 'Maven:ca.mcgill.sable:jasmin:3.0.2'. Software under a copyleft license such as the GPL-2.0-only license normally cannot be redistributed under a non-copyleft license such as the Apache-2.0 license, except if it were explicitly permitted in the licenses. How to fix Remove the dependency on 'Maven:ca.mcgill.sable:jasmin:3.0.2' or put 'Maven:de.cognicrypt:de.cognicrypt.core:1.0.0-SNAPSHOT' under a different license.
3	OSADL_PROJECT_LICENSE_COMPATIBILITY	Maven:ca.mcgill.sable:jasmin:3.0.2	DETECTED: GPL-2.0-only	The outbound license EPL-2.0 of project 'Maven:de.cognicrypt:de.cognicrypt.core:1.0.0-SNAPSHOT' is incompatible with the inbound license GPL-2.0-only of its dependency 'Maven:ca.mcgill.sable:jasmin:3.0.2'. Software under a copyleft license such as the GPL-2.0-only license normally cannot be redistributed under another copyleft license such as the EPL-2.0 license, except if it were explicitly permitted in the licenses. How to fix Remove the dependency on 'Maven:ca.mcgill.sable:jasmin:3.0.2' or put 'Maven:de.cognicrypt:de.cognicrypt.core:1.0.0-SNAPSHOT' under a different license.
4	OSADL_PROJECT_LICENSE_COMPATIBILITY	Maven:ca.mcgill.sable:jasmin:3.0.2	DETECTED: LGPL-2.1-or-later	The outbound license Apache-2.0 of project 'Maven:de.cognicrypt:de.cognicrypt.core:1.0.0-SNAPSHOT' is incompatible with the inbound license LGPL-2.1-or-later of its dependency 'Maven:ca.mcgill.sable:jasmin:3.0.2'. Software under a copyleft license such as the LGPL-2.1-or-later license normally cannot be redistributed under a non-copyleft license such as the Apache-2.0 license, except if it were explicitly permitted in the licenses. How to fix Remove the dependency on 'Maven:ca.mcgill.sable:jasmin:3.0.2' or put 'Maven:de.cognicrypt:de.cognicrypt.core:1.0.0-SNAPSHOT' under a different license.
5	OSADL_PROJECT_LICENSE_COMPATIBILITY	Maven:ca.mcgill.sable:jasmin:3.0.2	DETECTED: LGPL-2.1-or-later	The outbound license EPL-2.0 of project 'Maven:de.cognicrypt:de.cognicrypt.core:1.0.0-SNAPSHOT' is incompatible with the inbound license LGPL-2.1-or-later of its dependency 'Maven:ca.mcgill.sable:jasmin:3.0.2'. Software under a copyleft license such as the LGPL-2.1-or-later license normally cannot be redistributed under another copyleft license such as the EPL-2.0 license, except if it were explicitly permitted in the licenses. How to fix Remove the dependency on 'Maven:ca.mcgill.sable:jasmin:3.0.2' or put 'Maven:de.cognicrypt:de.cognicrypt.core:1.0.0-SNAPSHOT' under a different license.
6	OSADL_PROJECT_LICENSE_COMPATIBILITY	Maven:com.google.code.findbugs:jsr305:1.3.9	DECLARED: Apache-2.0	The outbound license GPL-2.0-only (simplified from 'GPL-2.0-only WITH Classpath-exception-2.0') of project 'Maven:de.cognicrypt:de.cognicrypt.core:1.0.0-SNAPSHOT' is incompatible with the inbound license Apache-2.0 of its dependency 'Maven:com.google.code.findbugs:jsr305:1.3.9'. Incompatibility of the Apache-2.0 license with the GPL-2.0-only license is explicitly stated in the GPL-2.0-only license checklist. How to fix Remove the dependency on 'Maven:com.google.code.findbugs:jsr305:1.3.9' or put 'Maven:de.cognicrypt:de.cognicrypt.core:1.0.0-SNAPSHOT' under a different license.
7	OSADL_PROJECT_LICENSE_COMPATIBILITY	Maven:com.google.code.findbugs:jsr305:1.3.9	DECLARED: Apache-2.0	The outbound license GPL-2.0-only (simplified from 'GPL-2.0-only WITH LicenseRef-scancode-openjdk-exception') of project 'Maven:de.cognicrypt:de.cognicrypt.core:1.0.0-SNAPSHOT' is incompatible with the inbound license Apache-2.0 of its dependency 'Maven:com.google.code.findbugs:jsr305:1.3.9'. Incompatibility of the Apache-2.0 license with the GPL-2.0-only license is explicitly stated in the GPL-2.0-only license checklist. How to fix Remove the dependency on 'Maven:com.google.code.findbugs:jsr305:1.3.9' or put 'Maven:de.cognicrypt:de.cognicrypt.core:1.0.0-SNAPSHOT' under a different license.
8	OSADL_PROJECT_LICENSE_COMPATIBILITY	Maven:com.google.code.gson:gson:1.4	DECLARED: Apache-2.0	The outbound license GPL-2.0-only (simplified from 'GPL-2.0-only WITH Classpath-exception-2.0') of project 'Maven:de.cognicrypt:de.cognicrypt.core:1.0.0-SNAPSHOT' is incompatible with the inbound license Apache-2.0 of its dependency 'Maven:com.google.code.gson:gson:1.4'. Incompatibility of the Apache-2.0 license with the GPL-2.0-only license is explicitly stated in the GPL-2.0-only license checklist. How to fix Remove the dependency on 'Maven:com.google.code.gson:gson:1.4' or put 'Maven:de.cognicrypt:de.cognicrypt.core:1.0.0-SNAPSHOT' under a different license.
9	OSADL_PROJECT_LICENSE_COMPATIBILITY	Maven:com.google.code.gson:gson:1.4	DETECTED: Apache-2.0	The outbound license GPL-2.0-only (simplified from 'GPL-2.0-only WITH Classpath-exception-2.0') of project 'Maven:de.cognicrypt:de.cognicrypt.core:1.0.0-SNAPSHOT' is incompatible with the inbound license Apache-2.0 of its dependency 'Maven:com.google.code.gson:gson:1.4'. Incompatibility of the Apache-2.0 license with the GPL-2.0-only license is explicitly stated in the GPL-2.0-only license checklist. How to fix Remove the dependency on 'Maven:com.google.code.gson:gson:1.4' or put 'Maven:de.cognicrypt:de.cognicrypt.core:1.0.0-SNAPSHOT' under a different license.
10	OSADL_PROJECT_LICENSE_COMPATIBILITY	Maven:com.google.code.gson:gson:1.4	DECLARED: Apache-2.0	The outbound license GPL-2.0-only (simplified from 'GPL-2.0-only WITH LicenseRef-scancode-openjdk-exception') of project 'Maven:de.cognicrypt:de.cognicrypt.core:1.0.0-SNAPSHOT' is incompatible with the inbound license Apache-2.0 of its dependency 'Maven:com.google.code.gson:gson:1.4'. Incompatibility of the Apache-2.0 license with the GPL-2.0-only license is explicitly stated in the GPL-2.0-only license checklist. How to fix Remove the dependency on 'Maven:com.google.code.gson:gson:1.4' or put 'Maven:de.cognicrypt:de.cognicrypt.core:1.0.0-SNAPSHOT' under a different license.
11	OSADL_PROJECT_LICENSE_COMPATIBILITY	Maven:com.google.code.gson:gson:1.4	DETECTED: Apache-2.0	The outbound license GPL-2.0-only (simplified from 'GPL-2.0-only WITH LicenseRef-scancode-openjdk-exception') of project 'Maven:de.cognicrypt:de.cognicrypt.core:1.0.0-SNAPSHOT' is incompatible with the inbound license Apache-2.0 of its dependency 'Maven:com.google.code.gson:gson:1.4'. Incompatibility of the Apache-2.0 license with the GPL-2.0-only license is explicitly stated in the GPL-2.0-only license checklist. How to fix Remove the dependency on 'Maven:com.google.code.gson:gson:1.4' or put 'Maven:de.cognicrypt:de.cognicrypt.core:1.0.0-SNAPSHOT' under a different license.
12	OSADL_PROJECT_LICENSE_COMPATIBILITY	Maven:com.google.errorprone:error_prone_annotations:2.1.3	CONCLUDED: Apache-2.0	The outbound license GPL-2.0-only (simplified from 'GPL-2.0-only WITH Classpath-exception-2.0') of project 'Maven:de.cognicrypt:de.cognicrypt.core:1.0.0-SNAPSHOT' is incompatible with the inbound license Apache-2.0 of its dependency 'Maven:com.google.errorprone:error_prone_annotations:2.1.3'. Incompatibility of the Apache-2.0 license with the GPL-2.0-only license is explicitly stated in the GPL-2.0-only license checklist. How to fix Remove the dependency on 'Maven:com.google.errorprone:error_prone_annotations:2.1.3' or put 'Maven:de.cognicrypt:de.cognicrypt.core:1.0.0-SNAPSHOT' under a different license.
13	OSADL_PROJECT_LICENSE_COMPATIBILITY	Maven:com.google.errorprone:error_prone_annotations:2.1.3	CONCLUDED: Apache-2.0	The outbound license GPL-2.0-only (simplified from 'GPL-2.0-only WITH LicenseRef-scancode-openjdk-exception') of project 'Maven:de.cognicrypt:de.cognicrypt.core:1.0.0-SNAPSHOT' is incompatible with the inbound license Apache-2.0 of its dependency 'Maven:com.google.errorprone:error_prone_annotations:2.1.3'. Incompatibility of the Apache-2.0 license with the GPL-2.0-only license is explicitly stated in the GPL-2.0-only license checklist. How to fix Remove the dependency on 'Maven:com.google.errorprone:error_prone_annotations:2.1.3' or put 'Maven:de.cognicrypt:de.cognicrypt.core:1.0.0-SNAPSHOT' under a different license.
14	OSADL_PROJECT_LICENSE_COMPATIBILITY	Maven:com.google.guava:guava:25.0-jre	DECLARED: Apache-2.0	The outbound license GPL-2.0-only (simplified from 'GPL-2.0-only WITH Classpath-exception-2.0') of project 'Maven:de.cognicrypt:de.cognicrypt.core:1.0.0-SNAPSHOT' is incompatible with the inbound license Apache-2.0 of its dependency 'Maven:com.google.guava:guava:25.0-jre'. Incompatibility of the Apache-2.0 license with the GPL-2.0-only license is explicitly stated in the GPL-2.0-only license checklist. How to fix Remove the dependency on 'Maven:com.google.guava:guava:25.0-jre' or put 'Maven:de.cognicrypt:de.cognicrypt.core:1.0.0-SNAPSHOT' under a different license.
15	OSADL_PROJECT_LICENSE_COMPATIBILITY	Maven:com.google.guava:guava:25.0-jre	DETECTED: Apache-2.0	The outbound license GPL-2.0-only (simplified from 'GPL-2.0-only WITH Classpath-exception-2.0') of project 'Maven:de.cognicrypt:de.cognicrypt.core:1.0.0-SNAPSHOT' is incompatible with the inbound license Apache-2.0 of its dependency 'Maven:com.google.guava:guava:25.0-jre'. Incompatibility of the Apache-2.0 license with the GPL-2.0-only license is explicitly stated in the GPL-2.0-only license checklist. How to fix Remove the dependency on 'Maven:com.google.guava:guava:25.0-jre' or put 'Maven:de.cognicrypt:de.cognicrypt.core:1.0.0-SNAPSHOT' under a different license.
16	OSADL_PROJECT_LICENSE_COMPATIBILITY	Maven:com.google.guava:guava:25.0-jre	DECLARED: Apache-2.0	The outbound license GPL-2.0-only (simplified from 'GPL-2.0-only WITH LicenseRef-scancode-openjdk-exception') of project 'Maven:de.cognicrypt:de.cognicrypt.core:1.0.0-SNAPSHOT' is incompatible with the inbound license Apache-2.0 of its dependency 'Maven:com.google.guava:guava:25.0-jre'. Incompatibility of the Apache-2.0 license with the GPL-2.0-only license is explicitly stated in the GPL-2.0-only license checklist. How to fix Remove the dependency on 'Maven:com.google.guava:guava:25.0-jre' or put 'Maven:de.cognicrypt:de.cognicrypt.core:1.0.0-SNAPSHOT' under a different license.
17	OSADL_PROJECT_LICENSE_COMPATIBILITY	Maven:com.google.guava:guava:25.0-jre	DETECTED: Apache-2.0	The outbound license GPL-2.0-only (simplified from 'GPL-2.0-only WITH LicenseRef-scancode-openjdk-exception') of project 'Maven:de.cognicrypt:de.cognicrypt.core:1.0.0-SNAPSHOT' is incompatible with the inbound license Apache-2.0 of its dependency 'Maven:com.google.guava:guava:25.0-jre'. Incompatibility of the Apache-2.0 license with the GPL-2.0-only license is explicitly stated in the GPL-2.0-only license checklist. How to fix Remove the dependency on 'Maven:com.google.guava:guava:25.0-jre' or put 'Maven:de.cognicrypt:de.cognicrypt.core:1.0.0-SNAPSHOT' under a different license.
18	OSADL_PROJECT_LICENSE_COMPATIBILITY	Maven:com.google.inject:guice:3.0	CONCLUDED: Apache-2.0	The outbound license GPL-2.0-only (simplified from 'GPL-2.0-only WITH Classpath-exception-2.0') of project 'Maven:de.cognicrypt:de.cognicrypt.core:1.0.0-SNAPSHOT' is incompatible with the inbound license Apache-2.0 of its dependency 'Maven:com.google.inject:guice:3.0'. Incompatibility of the Apache-2.0 license with the GPL-2.0-only license is explicitly stated in the GPL-2.0-only license checklist. How to fix Remove the dependency on 'Maven:com.google.inject:guice:3.0' or put 'Maven:de.cognicrypt:de.cognicrypt.core:1.0.0-SNAPSHOT' under a different license.
19	OSADL_PROJECT_LICENSE_COMPATIBILITY	Maven:com.google.inject:guice:3.0	CONCLUDED: Apache-2.0	The outbound license GPL-2.0-only (simplified from 'GPL-2.0-only WITH LicenseRef-scancode-openjdk-exception') of project 'Maven:de.cognicrypt:de.cognicrypt.core:1.0.0-SNAPSHOT' is incompatible with the inbound license Apache-2.0 of its dependency 'Maven:com.google.inject:guice:3.0'. Incompatibility of the Apache-2.0 license with the GPL-2.0-only license is explicitly stated in the GPL-2.0-only license checklist. How to fix Remove the dependency on 'Maven:com.google.inject:guice:3.0' or put 'Maven:de.cognicrypt:de.cognicrypt.core:1.0.0-SNAPSHOT' under a different license.
20	OSADL_PROJECT_LICENSE_COMPATIBILITY	Maven:com.google.j2objc:j2objc-annotations:1.1	CONCLUDED: Apache-2.0	The outbound license GPL-2.0-only (simplified from 'GPL-2.0-only WITH Classpath-exception-2.0') of project 'Maven:de.cognicrypt:de.cognicrypt.core:1.0.0-SNAPSHOT' is incompatible with the inbound license Apache-2.0 of its dependency 'Maven:com.google.j2objc:j2objc-annotations:1.1'. Incompatibility of the Apache-2.0 license with the GPL-2.0-only license is explicitly stated in the GPL-2.0-only license checklist. How to fix Remove the dependency on 'Maven:com.google.j2objc:j2objc-annotations:1.1' or put 'Maven:de.cognicrypt:de.cognicrypt.core:1.0.0-SNAPSHOT' under a different license.
21	OSADL_PROJECT_LICENSE_COMPATIBILITY	Maven:com.google.j2objc:j2objc-annotations:1.1	CONCLUDED: Apache-2.0	The outbound license GPL-2.0-only (simplified from 'GPL-2.0-only WITH LicenseRef-scancode-openjdk-exception') of project 'Maven:de.cognicrypt:de.cognicrypt.core:1.0.0-SNAPSHOT' is incompatible with the inbound license Apache-2.0 of its dependency 'Maven:com.google.j2objc:j2objc-annotations:1.1'. Incompatibility of the Apache-2.0 license with the GPL-2.0-only license is explicitly stated in the GPL-2.0-only license checklist. How to fix Remove the dependency on 'Maven:com.google.j2objc:j2objc-annotations:1.1' or put 'Maven:de.cognicrypt:de.cognicrypt.core:1.0.0-SNAPSHOT' under a different license.
22	OSADL_PROJECT_LICENSE_COMPATIBILITY	Maven:com.googlecode.json-simple:json-simple:1.1.1	CONCLUDED: Apache-2.0	The outbound license GPL-2.0-only (simplified from 'GPL-2.0-only WITH Classpath-exception-2.0') of project 'Maven:de.cognicrypt:de.cognicrypt.core:1.0.0-SNAPSHOT' is incompatible with the inbound license Apache-2.0 of its dependency 'Maven:com.googlecode.json-simple:json-simple:1.1.1'. Incompatibility of the Apache-2.0 license with the GPL-2.0-only license is explicitly stated in the GPL-2.0-only license checklist. How to fix Remove the dependency on 'Maven:com.googlecode.json-simple:json-simple:1.1.1' or put 'Maven:de.cognicrypt:de.cognicrypt.core:1.0.0-SNAPSHOT' under a different license.
23	OSADL_PROJECT_LICENSE_COMPATIBILITY	Maven:com.googlecode.json-simple:json-simple:1.1.1	CONCLUDED: Apache-2.0	The outbound license GPL-2.0-only (simplified from 'GPL-2.0-only WITH LicenseRef-scancode-openjdk-exception') of project 'Maven:de.cognicrypt:de.cognicrypt.core:1.0.0-SNAPSHOT' is incompatible with the inbound license Apache-2.0 of its dependency 'Maven:com.googlecode.json-simple:json-simple:1.1.1'. Incompatibility of the Apache-2.0 license with the GPL-2.0-only license is explicitly stated in the GPL-2.0-only license checklist. How to fix Remove the dependency on 'Maven:com.googlecode.json-simple:json-simple:1.1.1' or put 'Maven:de.cognicrypt:de.cognicrypt.core:1.0.0-SNAPSHOT' under a different license.
24	OSADL_PROJECT_LICENSE_COMPATIBILITY	Maven:com.sun.istack:istack-commons-runtime:3.0.7	DECLARED: CDDL-1.1	The outbound license Apache-2.0 of project 'Maven:de.cognicrypt:de.cognicrypt.core:1.0.0-SNAPSHOT' is incompatible with the inbound license CDDL-1.1 of its dependency 'Maven:com.sun.istack:istack-commons-runtime:3.0.7'. Software under a copyleft license such as the CDDL-1.1 license normally cannot be redistributed under a non-copyleft license such as the Apache-2.0 license, except if it were explicitly permitted in the licenses. How to fix Remove the dependency on 'Maven:com.sun.istack:istack-commons-runtime:3.0.7' or put 'Maven:de.cognicrypt:de.cognicrypt.core:1.0.0-SNAPSHOT' under a different license.
25	OSADL_PROJECT_LICENSE_COMPATIBILITY	Maven:com.sun.istack:istack-commons-runtime:3.0.7	DETECTED: CDDL-1.1	The outbound license Apache-2.0 of project 'Maven:de.cognicrypt:de.cognicrypt.core:1.0.0-SNAPSHOT' is incompatible with the inbound license CDDL-1.1 of its dependency 'Maven:com.sun.istack:istack-commons-runtime:3.0.7'. Software under a copyleft license such as the CDDL-1.1 license normally cannot be redistributed under a non-copyleft license such as the Apache-2.0 license, except if it were explicitly permitted in the licenses. How to fix Remove the dependency on 'Maven:com.sun.istack:istack-commons-runtime:3.0.7' or put 'Maven:de.cognicrypt:de.cognicrypt.core:1.0.0-SNAPSHOT' under a different license.
26	OSADL_PROJECT_LICENSE_COMPATIBILITY	Maven:com.sun.istack:istack-commons-runtime:3.0.7	DECLARED: CDDL-1.1	The outbound license EPL-2.0 of project 'Maven:de.cognicrypt:de.cognicrypt.core:1.0.0-SNAPSHOT' is incompatible with the inbound license CDDL-1.1 of its dependency 'Maven:com.sun.istack:istack-commons-runtime:3.0.7'. Software under a copyleft license such as the CDDL-1.1 license normally cannot be redistributed under another copyleft license such as the EPL-2.0 license, except if it were explicitly permitted in the licenses. How to fix Remove the dependency on 'Maven:com.sun.istack:istack-commons-runtime:3.0.7' or put 'Maven:de.cognicrypt:de.cognicrypt.core:1.0.0-SNAPSHOT' under a different license.
27	OSADL_PROJECT_LICENSE_COMPATIBILITY	Maven:com.sun.istack:istack-commons-runtime:3.0.7	DETECTED: CDDL-1.1	The outbound license EPL-2.0 of project 'Maven:de.cognicrypt:de.cognicrypt.core:1.0.0-SNAPSHOT' is incompatible with the inbound license CDDL-1.1 of its dependency 'Maven:com.sun.istack:istack-commons-runtime:3.0.7'. Software under a copyleft license such as the CDDL-1.1 license normally cannot be redistributed under another copyleft license such as the EPL-2.0 license, except if it were explicitly permitted in the licenses. How to fix Remove the dependency on 'Maven:com.sun.istack:istack-commons-runtime:3.0.7' or put 'Maven:de.cognicrypt:de.cognicrypt.core:1.0.0-SNAPSHOT' under a different license.
28	OSADL_PROJECT_LICENSE_COMPATIBILITY	Maven:com.sun.istack:istack-commons-runtime:3.0.7	DECLARED: CDDL-1.1	The outbound license GPL-2.0-only (simplified from 'GPL-2.0-only WITH Classpath-exception-2.0') of project 'Maven:de.cognicrypt:de.cognicrypt.core:1.0.0-SNAPSHOT' is incompatible with the inbound license CDDL-1.1 of its dependency 'Maven:com.sun.istack:istack-commons-runtime:3.0.7'. Software under a copyleft license such as the CDDL-1.1 license normally cannot be redistributed under another copyleft license such as the GPL-2.0-only license, except if it were explicitly permitted in the licenses. How to fix Remove the dependency on 'Maven:com.sun.istack:istack-commons-runtime:3.0.7' or put 'Maven:de.cognicrypt:de.cognicrypt.core:1.0.0-SNAPSHOT' under a different license.
29	OSADL_PROJECT_LICENSE_COMPATIBILITY	Maven:com.sun.istack:istack-commons-runtime:3.0.7	DETECTED: CDDL-1.1	The outbound license GPL-2.0-only (simplified from 'GPL-2.0-only WITH Classpath-exception-2.0') of project 'Maven:de.cognicrypt:de.cognicrypt.core:1.0.0-SNAPSHOT' is incompatible with the inbound license CDDL-1.1 of its dependency 'Maven:com.sun.istack:istack-commons-runtime:3.0.7'. Software under a copyleft license such as the CDDL-1.1 license normally cannot be redistributed under another copyleft license such as the GPL-2.0-only license, except if it were explicitly permitted in the licenses. How to fix Remove the dependency on 'Maven:com.sun.istack:istack-commons-runtime:3.0.7' or put 'Maven:de.cognicrypt:de.cognicrypt.core:1.0.0-SNAPSHOT' under a different license.
30	OSADL_PROJECT_LICENSE_COMPATIBILITY	Maven:com.sun.istack:istack-commons-runtime:3.0.7	DECLARED: CDDL-1.1	The outbound license GPL-2.0-only (simplified from 'GPL-2.0-only WITH LicenseRef-scancode-openjdk-exception') of project 'Maven:de.cognicrypt:de.cognicrypt.core:1.0.0-SNAPSHOT' is incompatible with the inbound license CDDL-1.1 of its dependency 'Maven:com.sun.istack:istack-commons-runtime:3.0.7'. Software under a copyleft license such as the CDDL-1.1 license normally cannot be redistributed under another copyleft license such as the GPL-2.0-only license, except if it were explicitly permitted in the licenses. How to fix Remove the dependency on 'Maven:com.sun.istack:istack-commons-runtime:3.0.7' or put 'Maven:de.cognicrypt:de.cognicrypt.core:1.0.0-SNAPSHOT' under a different license.
31	OSADL_PROJECT_LICENSE_COMPATIBILITY	Maven:com.sun.istack:istack-commons-runtime:3.0.7	DETECTED: CDDL-1.1	The outbound license GPL-2.0-only (simplified from 'GPL-2.0-only WITH LicenseRef-scancode-openjdk-exception') of project 'Maven:de.cognicrypt:de.cognicrypt.core:1.0.0-SNAPSHOT' is incompatible with the inbound license CDDL-1.1 of its dependency 'Maven:com.sun.istack:istack-commons-runtime:3.0.7'. Software under a copyleft license such as the CDDL-1.1 license normally cannot be redistributed under another copyleft license such as the GPL-2.0-only license, except if it were explicitly permitted in the licenses. How to fix Remove the dependency on 'Maven:com.sun.istack:istack-commons-runtime:3.0.7' or put 'Maven:de.cognicrypt:de.cognicrypt.core:1.0.0-SNAPSHOT' under a different license.
32	OSADL_PROJECT_LICENSE_COMPATIBILITY	Maven:com.sun.istack:istack-commons-runtime:3.0.7	DECLARED: GPL-2.0-only WITH Classpath-exception-2.0	The outbound license Apache-2.0 of project 'Maven:de.cognicrypt:de.cognicrypt.core:1.0.0-SNAPSHOT' is incompatible with the inbound license GPL-2.0-only (simplified from 'GPL-2.0-only WITH Classpath-exception-2.0') of its dependency 'Maven:com.sun.istack:istack-commons-runtime:3.0.7'. Software under a copyleft license such as the GPL-2.0-only license normally cannot be redistributed under a non-copyleft license such as the Apache-2.0 license, except if it were explicitly permitted in the licenses. How to fix Remove the dependency on 'Maven:com.sun.istack:istack-commons-runtime:3.0.7' or put 'Maven:de.cognicrypt:de.cognicrypt.core:1.0.0-SNAPSHOT' under a different license.
33	OSADL_PROJECT_LICENSE_COMPATIBILITY	Maven:com.sun.istack:istack-commons-runtime:3.0.7	DETECTED: GPL-2.0-only WITH Classpath-exception-2.0	The outbound license Apache-2.0 of project 'Maven:de.cognicrypt:de.cognicrypt.core:1.0.0-SNAPSHOT' is incompatible with the inbound license GPL-2.0-only (simplified from 'GPL-2.0-only WITH Classpath-exception-2.0') of its dependency 'Maven:com.sun.istack:istack-commons-runtime:3.0.7'. Software under a copyleft license such as the GPL-2.0-only license normally cannot be redistributed under a non-copyleft license such as the Apache-2.0 license, except if it were explicitly permitted in the licenses. How to fix Remove the dependency on 'Maven:com.sun.istack:istack-commons-runtime:3.0.7' or put 'Maven:de.cognicrypt:de.cognicrypt.core:1.0.0-SNAPSHOT' under a different license.
34	OSADL_PROJECT_LICENSE_COMPATIBILITY	Maven:com.sun.istack:istack-commons-runtime:3.0.7	DECLARED: GPL-2.0-only WITH Classpath-exception-2.0	The outbound license EPL-2.0 of project 'Maven:de.cognicrypt:de.cognicrypt.core:1.0.0-SNAPSHOT' is incompatible with the inbound license GPL-2.0-only (simplified from 'GPL-2.0-only WITH Classpath-exception-2.0') of its dependency 'Maven:com.sun.istack:istack-commons-runtime:3.0.7'. Software under a copyleft license such as the GPL-2.0-only license normally cannot be redistributed under another copyleft license such as the EPL-2.0 license, except if it were explicitly permitted in the licenses. How to fix Remove the dependency on 'Maven:com.sun.istack:istack-commons-runtime:3.0.7' or put 'Maven:de.cognicrypt:de.cognicrypt.core:1.0.0-SNAPSHOT' under a different license.
35	OSADL_PROJECT_LICENSE_COMPATIBILITY	Maven:com.sun.istack:istack-commons-runtime:3.0.7	DETECTED: GPL-2.0-only WITH Classpath-exception-2.0	The outbound license EPL-2.0 of project 'Maven:de.cognicrypt:de.cognicrypt.core:1.0.0-SNAPSHOT' is incompatible with the inbound license GPL-2.0-only (simplified from 'GPL-2.0-only WITH Classpath-exception-2.0') of its dependency 'Maven:com.sun.istack:istack-commons-runtime:3.0.7'. Software under a copyleft license such as the GPL-2.0-only license normally cannot be redistributed under another copyleft license such as the EPL-2.0 license, except if it were explicitly permitted in the licenses. How to fix Remove the dependency on 'Maven:com.sun.istack:istack-commons-runtime:3.0.7' or put 'Maven:de.cognicrypt:de.cognicrypt.core:1.0.0-SNAPSHOT' under a different license.
36	OSADL_PROJECT_LICENSE_COMPATIBILITY	Maven:com.sun.xml.fastinfoset:FastInfoset:1.2.15	DETECTED: Apache-1.1	The outbound license GPL-2.0-only (simplified from 'GPL-2.0-only WITH Classpath-exception-2.0') of project 'Maven:de.cognicrypt:de.cognicrypt.core:1.0.0-SNAPSHOT' is incompatible with the inbound license Apache-1.1 of its dependency 'Maven:com.sun.xml.fastinfoset:FastInfoset:1.2.15'. Incompatibility of the Apache-1.1 license with the GPL-2.0-only license is explicitly stated in the GPL-2.0-only license checklist. How to fix Remove the dependency on 'Maven:com.sun.xml.fastinfoset:FastInfoset:1.2.15' or put 'Maven:de.cognicrypt:de.cognicrypt.core:1.0.0-SNAPSHOT' under a different license.
37	OSADL_PROJECT_LICENSE_COMPATIBILITY	Maven:com.sun.xml.fastinfoset:FastInfoset:1.2.15	DETECTED: Apache-1.1	The outbound license GPL-2.0-only (simplified from 'GPL-2.0-only WITH LicenseRef-scancode-openjdk-exception') of project 'Maven:de.cognicrypt:de.cognicrypt.core:1.0.0-SNAPSHOT' is incompatible with the inbound license Apache-1.1 of its dependency 'Maven:com.sun.xml.fastinfoset:FastInfoset:1.2.15'. Incompatibility of the Apache-1.1 license with the GPL-2.0-only license is explicitly stated in the GPL-2.0-only license checklist. How to fix Remove the dependency on 'Maven:com.sun.xml.fastinfoset:FastInfoset:1.2.15' or put 'Maven:de.cognicrypt:de.cognicrypt.core:1.0.0-SNAPSHOT' under a different license.
38	OSADL_PROJECT_LICENSE_COMPATIBILITY	Maven:com.sun.xml.fastinfoset:FastInfoset:1.2.15	DECLARED: Apache-2.0	The outbound license GPL-2.0-only (simplified from 'GPL-2.0-only WITH Classpath-exception-2.0') of project 'Maven:de.cognicrypt:de.cognicrypt.core:1.0.0-SNAPSHOT' is incompatible with the inbound license Apache-2.0 of its dependency 'Maven:com.sun.xml.fastinfoset:FastInfoset:1.2.15'. Incompatibility of the Apache-2.0 license with the GPL-2.0-only license is explicitly stated in the GPL-2.0-only license checklist. How to fix Remove the dependency on 'Maven:com.sun.xml.fastinfoset:FastInfoset:1.2.15' or put 'Maven:de.cognicrypt:de.cognicrypt.core:1.0.0-SNAPSHOT' under a different license.
39	OSADL_PROJECT_LICENSE_COMPATIBILITY	Maven:com.sun.xml.fastinfoset:FastInfoset:1.2.15	DETECTED: Apache-2.0	The outbound license GPL-2.0-only (simplified from 'GPL-2.0-only WITH Classpath-exception-2.0') of project 'Maven:de.cognicrypt:de.cognicrypt.core:1.0.0-SNAPSHOT' is incompatible with the inbound license Apache-2.0 of its dependency 'Maven:com.sun.xml.fastinfoset:FastInfoset:1.2.15'. Incompatibility of the Apache-2.0 license with the GPL-2.0-only license is explicitly stated in the GPL-2.0-only license checklist. How to fix Remove the dependency on 'Maven:com.sun.xml.fastinfoset:FastInfoset:1.2.15' or put 'Maven:de.cognicrypt:de.cognicrypt.core:1.0.0-SNAPSHOT' under a different license.
40	OSADL_PROJECT_LICENSE_COMPATIBILITY	Maven:com.sun.xml.fastinfoset:FastInfoset:1.2.15	DECLARED: Apache-2.0	The outbound license GPL-2.0-only (simplified from 'GPL-2.0-only WITH LicenseRef-scancode-openjdk-exception') of project 'Maven:de.cognicrypt:de.cognicrypt.core:1.0.0-SNAPSHOT' is incompatible with the inbound license Apache-2.0 of its dependency 'Maven:com.sun.xml.fastinfoset:FastInfoset:1.2.15'. Incompatibility of the Apache-2.0 license with the GPL-2.0-only license is explicitly stated in the GPL-2.0-only license checklist. How to fix Remove the dependency on 'Maven:com.sun.xml.fastinfoset:FastInfoset:1.2.15' or put 'Maven:de.cognicrypt:de.cognicrypt.core:1.0.0-SNAPSHOT' under a different license.