From 03aee62666184b1e2a9e76d1f5bb0e2248c5433d Mon Sep 17 00:00:00 2001 From: Jeffrey Paul Date: Thu, 5 Feb 2026 16:26:06 -0600 Subject: [PATCH 1/2] Add new licenses to dependency review config Adds `BlueOak-1.0.0`, `BSD`, `BSD-3-Clause-W3C`, `MIT/X11`, `ODC-By-1.0`, `W3C-20150513`, and `WTFPL` to be current with updated licenses from Gutenberg last updated in WordPress/gutenberg@f58d958#diff-9f449756c2a6bc09b38edf1c3355523a0fb226ab2a2e7d1800a3a52cb34b35f8. --- .github/dependency-review-config.yml | 7 +++++++ 1 file changed, 7 insertions(+) diff --git a/.github/dependency-review-config.yml b/.github/dependency-review-config.yml index d2da16dd..0f570aa4 100644 --- a/.github/dependency-review-config.yml +++ b/.github/dependency-review-config.yml @@ -16,8 +16,11 @@ allow-licenses: - Apache-2.0 AND Apache-2.0 WITH LLVM-exception - Apache-2.0 WITH LLVM-exception - Artistic-2.0 +- BlueOak-1.0.0 +- BSD - BSD-2-Clause - BSD-3-Clause +- BSD-3-Clause-W3C - BSL-1.0 - CC0-1.0 - CC-BY-4.0 @@ -38,13 +41,17 @@ allow-licenses: - LGPL-2.1 - LGPL-2.1-only - MIT +- MIT/X11 - MIT-0 - MPL-2.0 - NCSA +- ODC-By-1.0 - Sleepycat - Unlicense - UPL-1.0 +- WTFPL - W3C +- W3C-20150513 - Zlib - ZPL-2.0 # The following licenses fit the above criteria except they are not marked as FSF Free/Libre on the SPDX License List (https://spdx.org/licenses/): Unicode-DFS-2016 From 3af60f69f29f44a1ece1ac0e71cc9c51a4082b1c Mon Sep 17 00:00:00 2001 From: Jeffrey Paul Date: Thu, 5 Feb 2026 17:25:15 -0600 Subject: [PATCH 2/2] Update dependency review config to remove licenses Removed `BSD`, `BSD-3-Clause-W3C`, `MIT/X11` licenses from the configuration as they're not valid SPDX license identifiers per https://spdx.org/licenses/. --- .github/dependency-review-config.yml | 3 --- 1 file changed, 3 deletions(-) diff --git a/.github/dependency-review-config.yml b/.github/dependency-review-config.yml index 0f570aa4..abd60088 100644 --- a/.github/dependency-review-config.yml +++ b/.github/dependency-review-config.yml @@ -17,10 +17,8 @@ allow-licenses: - Apache-2.0 WITH LLVM-exception - Artistic-2.0 - BlueOak-1.0.0 -- BSD - BSD-2-Clause - BSD-3-Clause -- BSD-3-Clause-W3C - BSL-1.0 - CC0-1.0 - CC-BY-4.0 @@ -41,7 +39,6 @@ allow-licenses: - LGPL-2.1 - LGPL-2.1-only - MIT -- MIT/X11 - MIT-0 - MPL-2.0 - NCSA