cyclonedx.model.license
License related things
Attributes
Deprecated - Alias for |
|
TypeAlias for a union of supported license models. |
Classes
This is our internal representation of the type_licenseAcknowledgementEnumerationType ENUM type |
|
This is our internal representation of licenseType complex type that can be used in multiple places within |
|
This is our internal representation of licenseType's expression type that can be used in multiple places within |
|
Collection of |
Module Contents
- class cyclonedx.model.license.LicenseAcknowledgement
Bases:
str,enum.EnumThis is our internal representation of the type_licenseAcknowledgementEnumerationType ENUM type within the CycloneDX standard.
Note
Introduced in CycloneDX v1.6
Note
See the CycloneDX Schema for hashType: https://cyclonedx.org/docs/1.7/xml/#type_licenseAcknowledgementEnumerationType
- CONCLUDED = 'concluded'
- DECLARED = 'declared'
- cyclonedx.model.license.LicenseExpressionAcknowledgement
Deprecated - Alias for
LicenseAcknowledgementDeprecated since version next: Import LicenseAcknowledgement instead. The exported original symbol itself is NOT deprecated - only this import path.
- class cyclonedx.model.license.DisjunctiveLicense(*, bom_ref: str | cyclonedx.model.bom_ref.BomRef | None = None, id: str | None = None, name: str | None = None, text: cyclonedx.model.AttachedText | None = None, url: cyclonedx.model.XsUri | None = None, acknowledgement: LicenseAcknowledgement | None = None)
This is our internal representation of licenseType complex type that can be used in multiple places within a CycloneDX BOM document.
Note
See the CycloneDX Schema definition: https://cyclonedx.org/docs/1.7/xml/#type_licenseType
- property bom_ref: cyclonedx.model.bom_ref.BomRef
An optional identifier which can be used to reference the component elsewhere in the BOM. Every bom-ref MUST be unique within the BOM.
- Returns:
BomRef
- property id: str | None
A SPDX license ID.
Note
See the list of expected values: https://cyclonedx.org/docs/1.7/json/#components_items_licenses_items_license_id
- Returns:
str or None
- property name: str | None
If SPDX does not define the license used, this field may be used to provide the license name.
- Returns:
str or None
- property text: cyclonedx.model.AttachedText | None
Specifies the optional full text of the attachment
- Returns:
AttachedText else None
- property url: cyclonedx.model.XsUri | None
The URL to the attachment file. If the attachment is a license or BOM, an externalReference should also be specified for completeness.
- Returns:
XsUri or None
- property acknowledgement: LicenseAcknowledgement | None
Declared licenses and concluded licenses represent two different stages in the licensing process within software development.
Declared licenses refer to the initial intention of the software authors regarding the licensing terms under which their code is released. On the other hand, concluded licenses are the result of a comprehensive analysis of the project’s codebase to identify and confirm the actual licenses of the components used, which may differ from the initially declared licenses. While declared licenses provide an upfront indication of the licensing intentions, concluded licenses offer a more thorough understanding of the actual licensing within a project, facilitating proper compliance and risk management. Observed licenses are defined in evidence.licenses. Observed licenses form the evidence necessary to substantiate a concluded license.
- Returns:
LicenseAcknowledgement or None
- class cyclonedx.model.license.LicenseExpression(value: str, *, bom_ref: str | cyclonedx.model.bom_ref.BomRef | None = None, acknowledgement: LicenseAcknowledgement | None = None)
This is our internal representation of licenseType’s expression type that can be used in multiple places within a CycloneDX BOM document.
Note
See the CycloneDX Schema definition: https://cyclonedx.org/docs/1.7/json/#components_items_licenses_items_expression
- property bom_ref: cyclonedx.model.bom_ref.BomRef
An optional identifier which can be used to reference the component elsewhere in the BOM. Every bom-ref MUST be unique within the BOM.
- Returns:
BomRef
- property value: str
Value of this LicenseExpression.
- Returns:
str
- property acknowledgement: LicenseAcknowledgement | None
Declared licenses and concluded licenses represent two different stages in the licensing process within software development.
Declared licenses refer to the initial intention of the software authors regarding the licensing terms under which their code is released. On the other hand, concluded licenses are the result of a comprehensive analysis of the project’s codebase to identify and confirm the actual licenses of the components used, which may differ from the initially declared licenses. While declared licenses provide an upfront indication of the licensing intentions, concluded licenses offer a more thorough understanding of the actual licensing within a project, facilitating proper compliance and risk management. Observed licenses are defined in evidence.licenses. Observed licenses form the evidence necessary to substantiate a concluded license.
- Returns:
LicenseAcknowledgement or None
- cyclonedx.model.license.License
TypeAlias for a union of supported license models.
- class cyclonedx.model.license.LicenseRepository
Bases:
sortedcontainers.SortedSet[License]Collection of
License.This is a set, not a list. Order MUST NOT matter here. If you wanted a certain order, then you should also express whether the items are concat by AND or OR. If you wanted to do so, you should use
LicenseExpression.As a model, this MUST accept multiple
LicenseExpressionalong with multipleDisjunctiveLicense, as this was an accepted in CycloneDX JSON before v1.5. So for modeling purposes, this is supported. Denormalizers/deserializers will be thankful. The normalization/serialization process SHOULD take care of these facts and do what is needed.