Page
https://insights.linuxfoundation.org/project/grafana/security?auth=success&timeRange=past365days&start=2025-05-12&end=2026-05-12
Project
Grafana
Issue Area
Security & Best practices
Describe the issue
Requirement ID OSPS-LE-02.01 requires the license to be OSI and FSF approved, and grafana/grafana is licensed under AGPL-3.0, which is correctly identified, but claims it is not OSI or FSF approved.
Steps to reproduce
Expand the legal heading and check Requirement ID OSPS-LE-02.01
Expected vs. actual behavior
AGPL-3.0 is both OSI and FSF approved:
Jira Issue: DE-950
Page
https://insights.linuxfoundation.org/project/grafana/security?auth=success&timeRange=past365days&start=2025-05-12&end=2026-05-12
Project
Grafana
Issue Area
Security & Best practices
Describe the issue
Requirement ID OSPS-LE-02.01 requires the license to be OSI and FSF approved, and grafana/grafana is licensed under AGPL-3.0, which is correctly identified, but claims it is not OSI or FSF approved.
Steps to reproduce
Expand the legal heading and check Requirement ID OSPS-LE-02.01
Expected vs. actual behavior
AGPL-3.0 is both OSI and FSF approved:
Jira Issue: DE-950