Bring back support for non go modules projects to v1.1+ #128
Comments
Bobgy
changed the title
|
JFYI, you can keep using go-licenses v1.0.0 before any further actions are taken. |
|
@Bobgy this is impacting our GH actions using the following config: jobs:
golicense-pr-scan:
runs-on: ubuntu-latest
steps:
- name: install-git
run: sudo apt-get install -y git
- name: install-golicenses
run: GOBIN=/usr/local/bin go install github.com/google/go-licenses@latest
- name: checkout
uses: actions/checkout@v3
- name: Configure git for private modules
env:
TOKEN: ${{ secrets.TOKEN }}
USER: ${{ secrets.USER }}
run: git config --global url."https://${USER}:${TOKEN}@github.com".insteadOf "https://github.com"
- name: Set up Go
uses: actions/setup-go@v3
with:
go-version: 1.21
- name: golicense-scan
run: |
go-licenses check ./... --ignore github.com/myorgWe can't downgrade to v1.0.0 as we require |
TylerGillson
added a commit
to validator-labs/validator-plugin-aws
that referenced
this issue
Nov 8, 2023
Signed-off-by: Tyler Gillson <[email protected]>
TylerGillson
added a commit
to validator-labs/validator-plugin-aws
that referenced
this issue
Nov 9, 2023
* test: add security checks Signed-off-by: Tyler Gillson <[email protected]> * fix: downgrade golicenses per google/go-licenses#128 Signed-off-by: Tyler Gillson <[email protected]> * fix: debug bulwark Signed-off-by: Tyler Gillson <[email protected]> * fix: add org flag for bulwark Signed-off-by: Tyler Gillson <[email protected]> * fix: use dev image for gitleaks Signed-off-by: Tyler Gillson <[email protected]> * fix: apply all gosec rules Signed-off-by: Tyler Gillson <[email protected]> * chore: switch back to public bulwark images Signed-off-by: Tyler Gillson <[email protected]> --------- Signed-off-by: Tyler Gillson <[email protected]>
robbkidd
added a commit
to honeycombio/refinery
that referenced
this issue
Feb 1, 2024
v1.1.0 dropped support for packages that aren't Go modules. That or any later version run against our current repo state will error with: > Package <package> does not have module info. Non go modules projects > are no longer supported. For feedback, refer to > google/go-licenses#128. Pinning our install to v1.0.0 seems to produce the LICENSES output consistent with what the project has been tracking so far.
robbkidd
added a commit
to honeycombio/refinery
that referenced
this issue
Feb 2, 2024
## Which problem is this PR solving? [go-licenses v1.1.0 dropped support for packages that aren't Go modules](https://github.com/google/go-licenses/releases/tag/v1.1.0). That or any later version run against our current repo state will result in many dozens of this error: > Package •thingie• does not have module info. Non go modules projects are no longer supported. For feedback, refer to google/go-licenses#128. ## Short description of the changes Pinning our install to v1.0.0 seems to produce the LICENSES output consistent with what the project has been tracking so far.
|
Simply changing |
mmontes11
added a commit
to mariadb-operator/mariadb-operator
that referenced
this issue
Mar 18, 2024
mmontes11
added a commit
to mariadb-operator/mariadb-operator
that referenced
this issue
Mar 18, 2024
mmontes11
added a commit
to mariadb-operator/mariadb-operator
that referenced
this issue
Mar 18, 2024
vdemeester
added a commit
to vdemeester/tektoncd-plumbing
that referenced
this issue
Jun 18, 2024
This should fixes issues we are getting with `go.mod` files containing the `toolchain` directive. See google/go-licenses#128. Signed-off-by: Vincent Demeester <[email protected]>
2 tasks
vdemeester
added a commit
to vdemeester/tektoncd-plumbing
that referenced
this issue
Jun 18, 2024
This should fixes issues we are getting with `go.mod` files containing the `toolchain` directive. See google/go-licenses#128. Signed-off-by: Vincent Demeester <[email protected]>
tekton-robot
pushed a commit
to tektoncd/plumbing
that referenced
this issue
Jun 19, 2024
This should fixes issues we are getting with `go.mod` files containing the `toolchain` directive. See google/go-licenses#128. Signed-off-by: Vincent Demeester <[email protected]>
matzew
added a commit
to matzew/knative-hack
that referenced
this issue
Sep 3, 2024
This should fixes issues we are getting with `go.mod` files containing the `toolchain` directive. See google/go-licenses#128. Signed-off-by: Matthias Wessendorf <[email protected]>
|
I ran into this today when trying to do a license scan of the https://github.com/crossplane/crossplane project. That shows many error messages like the following in the output: Looks like it's mostly the standard library. I was able to get some license scan output after running |
Legend, that same fix worked for me too EDIT: Sorry, the opposite is true for me lol (I had ./... last, now I have it first)- I am at least unblocked now though. |
|
I have the same issue as reported by @jbw976 above. I have a go.mod-backed proprietary project, and running go-licenses on it spits out a bunch of errors for the stdlib imports. |
manics
added a commit
to regro-cf-autotick-bot/gitea-feedstock
that referenced
this issue
Jan 15, 2025
For unknown reasons we've started hitting google/go-licenses#128 with built-in modules ``` E0110 15:59:45.623242 9885 library.go:122] Failed to find license for github.com/xi2/xz: cannot find a known open source license for "/home/conda/go/pkg/mod/github.com/xi2/[email protected]" whose name matches regexp ^(?i)((UN)?LICEN(S|C)E|COPYING|README|NOTICE).*$ and locates up until "/home/conda/go/pkg/mod/github.com/xi2/[email protected]" W0110 15:59:46.124890 9885 library.go:101] "github.com/pierrec/lz4/v4/internal/lz4block" contains non-Go code that can't be inspected for further dependencies: /home/conda/go/pkg/mod/github.com/pierrec/lz4/[email protected]/internal/lz4block/decode_amd64.s E0110 15:59:46.390593 9885 library.go:117] Package expvar does not have module info. Non go modules projects are no longer supported. For feedback, refer to google/go-licenses#128. E0110 15:59:47.087824 9885 library.go:117] Package hash/adler32 does not have module info. Non go modules projects are no longer supported. For feedback, refer to google/go-licenses#128. E0110 15:59:47.876362 9885 library.go:117] Package regexp/syntax does not have module info. Non go modules projects are no longer supported. For feedback, refer to google/go-licenses#128. E0110 15:59:49.467307 9885 library.go:117] Package encoding/csv does not have module info. Non go modules projects are no longer supported. For feedback, refer to google/go-licenses#128. E0110 15:59:49.487966 9885 library.go:117] Package text/template/parse does not have module info. Non go modules projects are no longer supported. For feedback, refer to google/go-licenses#128. E0110 15:59:51.242656 9885 library.go:117] Package log/slog does not have module info. Non go modules projects are no longer supported. For feedback, refer to google/go-licenses#128. E0110 15:59:51.263895 9885 library.go:117] Package mime/quotedprintable does not have module info. Non go modules projects are no longer supported. For feedback, refer to google/go-licenses#128. E0110 15:59:51.528884 9885 library.go:122] Failed to find license for github.com/mrjones/oauth: cannot find a known open source license for "/home/conda/go/pkg/mod/github.com/mrjones/[email protected]" whose name matches regexp ^(?i)((UN)?LICEN(S|C)E|COPYING|README|NOTICE).*$ and locates up until "/home/conda/go/pkg/mod/github.com/mrjones/[email protected]" E0110 15:59:51.548523 9885 library.go:117] Package net/smtp does not have module info. Non go modules projects are no longer supported. For feedback, refer to google/go-licenses#128. E0110 15:59:54.230792 9885 library.go:117] Package net/http/pprof does not have module info. Non go modules projects are no longer supported. For feedback, refer to google/go-licenses#128. E0110 15:59:54.415404 9885 library.go:117] Package runtime/metrics does not have module info. Non go modules projects are no longer supported. For feedback, refer to google/go-licenses#128. E0110 15:59:54.674009 9885 library.go:117] Package math/rand/v2 does not have module info. Non go modules projects are no longer supported. For feedback, refer to google/go-licenses#128. W0110 15:59:55.322346 9885 library.go:101] "github.com/zeebo/blake3/internal/alg/compress/compress_sse41" contains non-Go code that can't be inspected for further dependencies: /home/conda/go/pkg/mod/github.com/zeebo/[email protected]/internal/alg/compress/compress_sse41/impl_amd64.s W0110 15:59:55.372348 9885 library.go:101] "github.com/zeebo/blake3/internal/alg/hash/hash_avx2" contains non-Go code that can't be inspected for further dependencies: /home/conda/go/pkg/mod/github.com/zeebo/[email protected]/internal/alg/hash/hash_avx2/impl_amd64.s E0110 15:59:55.474610 9885 library.go:117] Package text/tabwriter does not have module info. Non go modules projects are no longer supported. For feedback, refer to google/go-licenses#128. E0110 15:59:55.474710 9885 library.go:117] Package net/http/fcgi does not have module info. Non go modules projects are no longer supported. For feedback, refer to google/go-licenses#128. F0110 15:59:55.504602 9885 main.go:77] some errors occurred when loading direct and transitive dependency packages ```
techknowlogick
pushed a commit
to conda-forge/gitea-feedstock
that referenced
this issue
Jan 16, 2025
For unknown reasons we've started hitting google/go-licenses#128 with built-in modules ``` E0110 15:59:45.623242 9885 library.go:122] Failed to find license for github.com/xi2/xz: cannot find a known open source license for "/home/conda/go/pkg/mod/github.com/xi2/[email protected]" whose name matches regexp ^(?i)((UN)?LICEN(S|C)E|COPYING|README|NOTICE).*$ and locates up until "/home/conda/go/pkg/mod/github.com/xi2/[email protected]" W0110 15:59:46.124890 9885 library.go:101] "github.com/pierrec/lz4/v4/internal/lz4block" contains non-Go code that can't be inspected for further dependencies: /home/conda/go/pkg/mod/github.com/pierrec/lz4/[email protected]/internal/lz4block/decode_amd64.s E0110 15:59:46.390593 9885 library.go:117] Package expvar does not have module info. Non go modules projects are no longer supported. For feedback, refer to google/go-licenses#128. E0110 15:59:47.087824 9885 library.go:117] Package hash/adler32 does not have module info. Non go modules projects are no longer supported. For feedback, refer to google/go-licenses#128. E0110 15:59:47.876362 9885 library.go:117] Package regexp/syntax does not have module info. Non go modules projects are no longer supported. For feedback, refer to google/go-licenses#128. E0110 15:59:49.467307 9885 library.go:117] Package encoding/csv does not have module info. Non go modules projects are no longer supported. For feedback, refer to google/go-licenses#128. E0110 15:59:49.487966 9885 library.go:117] Package text/template/parse does not have module info. Non go modules projects are no longer supported. For feedback, refer to google/go-licenses#128. E0110 15:59:51.242656 9885 library.go:117] Package log/slog does not have module info. Non go modules projects are no longer supported. For feedback, refer to google/go-licenses#128. E0110 15:59:51.263895 9885 library.go:117] Package mime/quotedprintable does not have module info. Non go modules projects are no longer supported. For feedback, refer to google/go-licenses#128. E0110 15:59:51.528884 9885 library.go:122] Failed to find license for github.com/mrjones/oauth: cannot find a known open source license for "/home/conda/go/pkg/mod/github.com/mrjones/[email protected]" whose name matches regexp ^(?i)((UN)?LICEN(S|C)E|COPYING|README|NOTICE).*$ and locates up until "/home/conda/go/pkg/mod/github.com/mrjones/[email protected]" E0110 15:59:51.548523 9885 library.go:117] Package net/smtp does not have module info. Non go modules projects are no longer supported. For feedback, refer to google/go-licenses#128. E0110 15:59:54.230792 9885 library.go:117] Package net/http/pprof does not have module info. Non go modules projects are no longer supported. For feedback, refer to google/go-licenses#128. E0110 15:59:54.415404 9885 library.go:117] Package runtime/metrics does not have module info. Non go modules projects are no longer supported. For feedback, refer to google/go-licenses#128. E0110 15:59:54.674009 9885 library.go:117] Package math/rand/v2 does not have module info. Non go modules projects are no longer supported. For feedback, refer to google/go-licenses#128. W0110 15:59:55.322346 9885 library.go:101] "github.com/zeebo/blake3/internal/alg/compress/compress_sse41" contains non-Go code that can't be inspected for further dependencies: /home/conda/go/pkg/mod/github.com/zeebo/[email protected]/internal/alg/compress/compress_sse41/impl_amd64.s W0110 15:59:55.372348 9885 library.go:101] "github.com/zeebo/blake3/internal/alg/hash/hash_avx2" contains non-Go code that can't be inspected for further dependencies: /home/conda/go/pkg/mod/github.com/zeebo/[email protected]/internal/alg/hash/hash_avx2/impl_amd64.s E0110 15:59:55.474610 9885 library.go:117] Package text/tabwriter does not have module info. Non go modules projects are no longer supported. For feedback, refer to google/go-licenses#128. E0110 15:59:55.474710 9885 library.go:117] Package net/http/fcgi does not have module info. Non go modules projects are no longer supported. For feedback, refer to google/go-licenses#128. F0110 15:59:55.504602 9885 main.go:77] some errors occurred when loading direct and transitive dependency packages ```
3 tasks
|
Is it completely broken? I cannot get save command from @latest to run at all against anything that uses golang stdlibrary; meaning one cannot use this for any golang project at all. |
|
As of now, this is broken for us, too. I'm now trying to pin the version instead of latest. |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
In v1.1, we made a breaking change of no longer supporting non go modules managed projects per discussions in #70. However, #125 seems to show that some users are still using GOPATH.
Creating this issue to track users who are still using GOPATH mode.
Please thumbs up if this affected you or comment about your scenario.
The text was updated successfully, but these errors were encountered: