Skip to content

chore: Add explicit rules to oss scanner#5274

Merged
shiroyasha merged 2 commits into
mainfrom
osv-scanner
Jun 10, 2026
Merged

chore: Add explicit rules to oss scanner#5274
shiroyasha merged 2 commits into
mainfrom
osv-scanner

Conversation

@shiroyasha

@shiroyasha shiroyasha commented Jun 10, 2026

Copy link
Copy Markdown
Collaborator

No description provided.

@shiroyasha
chore: Add explicit rules to oss scanner
a68e12f 
Signed-off-by: Igor Šarčević <igor@operately.com>
@superplanehq-integration

superplanehq-integration Bot commented Jun 10, 2026

Copy link
Copy Markdown

👋 Commands for maintainers:

  • /sp start - Start an ephemeral machine (takes ~30s)
  • /sp stop - Stop a running machine (auto-executed on pr close)

@superplane-gh-integration-9000

superplane-gh-integration-9000 Bot commented Jun 10, 2026

Copy link
Copy Markdown

OSS Guard found dependency licenses that are not permitted for this project.

Project license (from repository): Apache-2.0

Permitted dependency licenses: MIT,Apache-2.0,BSD-2-Clause,BSD-3-Clause,ISC,0BSD,Unlicense,CC0-1.0,CC-BY-4.0,Zlib,MPL-2.0,OpenSSL,BlueOak-1.0.0

Reason: One or more dependencies use licenses that are not compatible with the project license.

osv-scanner report:

@csstools/color-helpers 5.1.0 (npm) - MIT-0
argparse 2.0.1 (npm) - Python-2.0
csv 3.3.5 (RubyGems) - Unknown
elkjs 0.10.0 (npm) - EPL-2.0
khroma 2.1.0 (npm) - UNKNOWN
posthog-js 1.368.2 (npm) - non-standard

Add approved exceptions in your repository's osv-scanner.toml.

@shiroyasha
chore: Remove deprecated workflows
4934c29 
Signed-off-by: Igor Šarčević <igor@operately.com>
@superplane-gh-integration-9000

superplane-gh-integration-9000 Bot commented Jun 10, 2026

Copy link
Copy Markdown

OSS Guard found dependency licenses that are not permitted for this project.

Project license (from repository): Apache-2.0

Permitted dependency licenses: MIT,Apache-2.0,BSD-2-Clause,BSD-3-Clause,ISC,0BSD,Unlicense,CC0-1.0,CC-BY-4.0,Zlib,MPL-2.0,OpenSSL,BlueOak-1.0.0

Reason: One or more dependencies use licenses that are not compatible with the project license.

osv-scanner report:

argparse 2.0.1 (npm) - Unknown
csv 3.3.5 (RubyGems) - Unknown
elkjs 0.10.0 (npm) - Unknown
posthog-js 1.368.2 (npm) - Unknown

Add approved exceptions in your repository's osv-scanner.toml.

@shiroyasha shiroyasha closed this Jun 10, 2026
@shiroyasha shiroyasha reopened this Jun 10, 2026
@shiroyasha shiroyasha merged commit ebe371a into main Jun 10, 2026
6 checks passed
@shiroyasha shiroyasha deleted the osv-scanner branch June 10, 2026 12:28
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@shiroyasha