[INTERNAL] package.json: Add license check for dependencies

Only allow dependencies with licenses listed as Gold, Silver or Bronze at https://blueoakcouncil.org/list Generally those should not cause us any trouble. Restricting this further to specific licenses currently in use by our dependencies might cause unnecessary maintenance efforts in the future due to the great variety of licenses being used. Exceptions added for "callsite" (uses MIT) and "yesno" (uses BSD).
SAP · Dec 28, 2023 · 5a5128f · 5a5128f
1 parent 792049d
commit 5a5128f
Show file tree

Hide file tree

Showing 3 changed files with 3,024 additions and 103 deletions.
diff --git a/.licensee.json b/.licensee.json
@@ -0,0 +1,15 @@
+{
+	"licenses": {
+		"spdx": [
+			"CC-BY-3.0",
+			"CC-BY-4.0",
+			"BSD"
+		],
+		"blueOak": "bronze"
+	},
+	"packages": {
+		"callsite": "1.0.0",
+		"yesno": "0.4.0"
+	},
+	"corrections": true
+}