Document how to ignore certain dependencies #110
Comments
|
There is. But it's not documented. I'll fix that. You can exclude specific groups, artifacts, scopes, classifiers, etc. e.g., It uses built-in Maven features, so I've only just started tinkering with a solution for this myself. Getting the documentation updated will be a good start. There's related discussion on #13. |
waynebeaton
changed the title
|
I don't know if filter should be done at maven layer (I mean filtering artifacts) or at dash-licenses layer (I mean filtering by content ID) or both. I asked this because if one day we use Dash Licenses Maven Plugin not only for maven dependencies (see #111) we could rather want to filter at ContentID level. 🤔 |
|
Reading #13 (comment), I understand the benefits to filter by artifacts too. So maybe we need both. (Uups I should maybe add this kind of comment at #13 instead of here) |
If you're using the CLI, you can filter out content before delivering it to the tool. |
|
Thx for the tips. 🙏 (Just in case of possible misunderstanding , the issue is relative to the maven plugin) |
I imagine a use case where you are using
license-tool-pluginand want your project failed if dependencies are not checked.Now imagine that you add a new dependency which is not trusted, you need to create a CQ (or take any action like this).
But waiting it is approved, I understand that the project are allowed to use the component anyway (as soon as it does not release it, so just for development phase)
So we need parameter to skip
waiting for approvaldependencies.(Maybe pretty much same feature than how to handle
work-with: #13)There is maybe a difference because
work-withshould always skip the dependency checkbut
waiting for approvalshould failed on release.The text was updated successfully, but these errors were encountered: