-
Notifications
You must be signed in to change notification settings - Fork 0
license requirements
You will learn when a feed can be redistributed, how to handle attribution, and how license policy works for source feeds and merges.
Use the terms of the URL the catalog actually downloads from. Look for:
- an explicit license statement
- terms of use on the download page
- restrictions on copying or redistributing the data
- attribution requirements
Terms from an upstream-of-upstream are useful context, but they do not change the catalog fields unless they apply to the direct download source.
By default, feeds are redistributable. You only need to set redistributable: false when the direct upstream terms explicitly forbid redistribution.
The following do not make a feed non-redistributable by themselves:
- attribution requirements
- non-commercial use restrictions
- warranty disclaimers
- no explicit license statement and no explicit anti-redistribution language
Set redistributable: false when the direct upstream terms say:
- redistribution is prohibited
- republication requires a separate agreement
- use is personal-only
- copying the data into a public mirror is not allowed
When the upstream requires attribution, include it in attribution:
attribution: |
Data provided by Example Corp under CC-BY-4.0.
Source: https://example.com/feed
License: https://example.com/termsThe attribution text is carried with public metadata and feed pages.
Use standard SPDX identifiers when the upstream license is recognized:
MITCC-BY-4.0CC-BY-SA-4.0Apache-2.0BSD-3-Clause
For non-standard terms, use a short descriptive string:
license: "Custom - free for non-commercial use with attribution"Merges inherit redistribution constraints from all transitive parents, including subtractive parents. If any parent is non-redistributable, the merge is also non-redistributable.
This is conservative by design. Subtractive parents influence the derived output because they remove ranges from it.
Critical-infrastructure reference feeds follow the same direct-upstream rule as any other feed. The critical_infrastructure use role does not make a feed non-redistributable by itself.
For operator-maintained static reference data, set redistributable from your own publication policy. Use false when the raw reference body should remain private even though metadata and overlap results are public.
| Situation | Action |
|---|---|
| Direct upstream says "public domain" | redistributable: true |
| Direct upstream says "CC-BY" with attribution |
redistributable: true, include attribution
|
| Direct upstream says "free for any use" | redistributable: true |
| Direct upstream says "no redistribution" | redistributable: false |
| Direct upstream says "personal use only" | redistributable: false |
| No license mentioned, no restrictions | redistributable: true |
- Daemon Command Reference
- Environment Variables
- Configuration Reload
- Listener Topologies
- Admin Authentication
- Feed Families
- Source Feeds
- Processor Reference
- Static Feeds
- Merge Feeds
- Artifact Parents
- History Derivatives
- Provider Databases
- Use Roles
- Critical Infrastructure Reference Feeds
- Legal Fields
- Feed Visibility & Lifecycle
- YAML Field Reference
- Pipeline Overview
- Download Lifecycle
- Processing Lifecycle
- Feed Status Reference
- Health Classes
- What Triggers Reprocessing
- Accessing the Admin
- Runtime Status
- Feed Inventory
- Artifact Inventory
- Live Queues
- Background Work
- Schedule State
- Operator Actions
- Enable & Disable