Uploaded image for project: 'Beam'
  1. Beam
  2. BEAM-12316

LGPL in bundled dependencies

    XMLWordPrintableJSON

Details

    • Bug
    • Status: Resolved
    • P1
    • Resolution: Fixed
    • 2.30.0
    • 2.31.0
    • build-system
    • None

    Description

      Some of our dependencies are apparently leaking LGPL license into Beam. It is true at least for beam-vendor-grpc (META-INF/maven/org.jboss.modules/jboss-modules/pom.xml), but we should probably create a check for this license in all modules.

      Attachments

        Issue Links

          is fixed by

          Bug - A problem which impairs or prevents the functions of the product. BEAM-11227 Upgrade beam-vendor-grpc-1_26_0-0.3 to fix CVE-2020-27216

          • P1 - Critical bug: data loss, total loss of function, or loss of testing signal due to test failures or flakiness
          • Triage Needed

          Activity

            People

              suztomo Tomo Suzuki
              janl Jan Lukavský
              Votes:
              0 Vote for this issue
              Watchers:
              5 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved:

                Slack

                  Issue deployment