Introduce scanning for problematic licenses, patent issues, and similar, in dependencies

As decided in the community meeting from [2021/11/22](https://github.com/shipwright-io/community/issues/42#issuecomment-975581815), we want to scan for problematic dependencies. Candidate tool is [go-licenses](https://github.com/google/go-licenses). Maybe there is also something in golangci-lint.

We should define the criteria for what is problematic and make sure we get red pull requests if those criteria are violated.

Sibling issues:

* https://github.com/shipwright-io/build/issues/949
* https://github.com/shipwright-io/cli/issues/78

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Uh oh!

Introduce scanning for problematic licenses, patent issues, and similar, in dependencies #36

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Uh oh!

Introduce scanning for problematic licenses, patent issues, and similar, in dependencies #36

Description

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions