License Check
At VGV, we keep track of the rights and restrictions external dependencies might impose on Dart or Flutter projects.
The License Check functionality is powered by Very Good CLI's license checker, for a deeper understanding of some inputs refer to its documentation.
Steps
The License Check workflow consists of the following steps:
- Setup Dart
- Set SSH Key (if provided)
- Install project dependencies
- Check licenses
Inputs
working_directory
Optional The path to the root of the Dart or Flutter package.
Default "."
runs_on
Optional An optional operating system on which to run the workflow.
Default "ubuntu-latest"
dart_sdk
Optional Which Dart SDK version to use. It can be a version (e.g. 2.12.0) or a channel (e.g. stable):
Default "stable"
allowed
Optional Only allow the use of certain licenses. The expected format is a comma-separated list.
Default "MIT,BSD-3-Clause,BSD-2-Clause,Apache-2.0"
forbidden
Optional Deny the use of certain licenses. The expected format is a comma-separated list.
Default ""
The allowed and forbidden options can't be used at the same time. If you want to use forbidden set allowed to an empty string.
skip_packages
Optional Skip packages from having their licenses checked.
Default ""
dependency_type
Optional The type of dependencies to check licenses for.
Default "direct-main,transitive"
ignore_retrieval_failures
Optional Disregard licenses that failed to be retrieved.
Default false
Example Usage
name: license_check
concurrency:
group: ${{ github.workflow }}-${{ github.ref }}
cancel-in-progress: true
on:
pull_request:
paths:
- 'pubspec.yaml'
- '.github/workflows/license_check.yaml'
push:
branches:
- main
paths:
- 'pubspec.yaml'
- '.github/workflows/license_check.yaml'
jobs:
license_check:
uses: VeryGoodOpenSource/very_good_workflows/.github/workflows/license_check.yml@v1
with:
allowed: 'MIT,BSD-3-Clause,BSD-2-Clause,Apache-2.0'