Skip to content

Improve LICENSE and NOTICE checks for binary packages #877

New issue
New issue
Open
Open
Improve LICENSE and NOTICE checks for binary packages#877
Assignees
sbp
Labels
bugSomething isn't workingchecksThis is issue is related to checkscomposeCompose phasepriorityNot critical, but should be addressed soon
@sbp

Description

@sbp
sbp
opened on Mar 13, 2026

Our release policy says:

For source packages, LICENSE and NOTICE MUST be located at the root of the distribution. For additional packages, they MUST be located in the distribution format's customary location for licensing materials, such as the META-INF directory of Java "jar" files.

But currently we are checking for LICENSE and NOTICE files in binaries in the root. This was a problem during an Apache Maven Daemon release, and prevented them from using ATR because this is a blocking check. We can gradually add package format specific license and notice file path checks, but for now we should remove this check as it is unreliable, does not confirm to policy, and prevents releases.

Metadata

Metadata

Assignees

Labels

bugSomething isn't workingchecksThis is issue is related to checkscomposeCompose phasepriorityNot critical, but should be addressed soon

Type

No type

Projects

ATR Development Board

Status

Ready

Milestone

No milestone

Relationships

None yet

Development

No branches or pull requests

Issue actions