Hi Pacho On 2014-09-02 17:15, Pacho Ramos <pacho gentoo org> wrote:
After some talk in: https://bugzilla.gnome.org/show_bug.cgi?id=735882 We agree that would be really useful to standardize a place where downstreams can check for the LICENSES of files shipped in tarball to prevent confusions and to ensure all downstreams have proper licensing information.
I think it is a good idea, and especially important for modules which have content with multiple licenses. This is rather common, with most applications having code licensed under the GPL or LGPL, but most user help shipped with those applications being licensed under CC-BY-SA or the GFDL.
DOAP files might work well, as all active GNOME modules have an associated .doap, but we would need some canonical license tags, possibly those from the SPDX list:
http://spdx.org/licenses/ Debian has a standardised format for "copyright" files: http://dep.debian.net/deps/dep5/The DEP5 syntax has the benefit that it is possible to list licenses for different files with globs.
It would be good if some of the process could be (even partially) automated, possibly using something like licensecheck:
http://manpages.ubuntu.com/manpages/trusty/man1/licensecheck.1.html -- http://amigadave.com/
Attachment:
signature.asc
Description: Digital signature