kompetenzinventar/ki-backend
5
6
Fork 7
Code Issues Pull Requests 13 Packages Projects Releases 1 Activity

Update dependency reuse to v2 #124

Merged
Brain merged 1 commits from renovate/reuse-2.x into main 2024-09-11 13:30:28 +02:00
Conversation 0 Commits 1 Files Changed 2 +8 -145
renovate-bot commented 2024-09-11 12:37:34 +02:00
Member
Copy Link

This PR contains the following updates:

Package Type Update Change
reuse (source) dev-packages major ==0.14.0 -> ==2.1.0

Release Notes

fsfe/reuse-tool (reuse)

v2.1.0

Compare Source

After the yanked 2.0.0 release, we're excited to announce our latest major
version packed with new features and improvements! We've expanded our file type
recognition, now including Fennel, CommonJS, Qt .pro, .pri, .qrc, .qss, .ui,
Textile, Visual Studio Code workspace, Application Resource Bundle, Svelte
components, AES encrypted files, Jakarta Server Page, Clang format, Browserslist
config, Prettier config and ignored files, Flutter pubspec.lock, .metadata,
Terraform and HCL, Typst and more.

We've also added the ability to detect SPDX snippet tags in files and introduced
additional license metadata for the Python package. A new --json flag has been
added to the lint command, marking the first step towards better integration
of REUSE output with other tools.

On the changes front, we've bumped the SPDX license list to v3.21 and made
significant updates to our Sphinx documentation. Please note that Python 3.6 and
3.7 support has been dropped in this release.

We've fixed several issues including automatic generation of Sphinx
documentation via readthedocs.io and a compatibility issue where reuse could not
be installed if gettext is not installed.

This update is all about making your experience better. Enjoy adding copyright
and licensing information to your code!

Added
  • Detect SPDX snippet tags in files. (#​699)
  • More file types are recognised:
    • Fennel (.fnl) (#​638)
    • CommonJS (.cjs) (#​632)
    • Qt .pro (.pro) (#​632)
    • Qt .pri (.pri) (#​755)
    • Qt .qrc (.qrc) (#​755)
    • Qt .qss(.qss) (#​755)
    • Qt .ui (.ui) (#​755)
    • Textile (.textile) (#​712)
    • Visual Studio Code workspace (.code-workspace) (#​747)
    • Application Resource Bundle (.arb) (#​749)
    • Svelte components (.svelte)
    • AES encrypted files (.aes) (#​758)
    • Jakarte Server Page (.jsp) (#​757)
    • Clang format (.clang-format) (#​632)
    • Browserslist config (.browserslist)
    • Prettier config (.prettierrc) and ignored files (.prettierignore)
    • Flutter pubspec.lock (pubspec.lock) (#​751)
    • Flutter .metadata (.metadata) (#​751)
    • Terraform (.tf, tfvars) and HCL (.hcl). (#​756)
    • Typst (.typ)
  • Added loglevel argument to pytest and skip one test if loglevel is too high
    (#​645).
  • --add-license-concluded, --creator-person, and --creator-organization
    added to reuse spdx. (#​623)
  • Additional license metadata for the Python package has been added. The actual
    SPDX license expression remains the same:
    Apache-2.0 AND CC0-1.0 AND CC-BY-SA-4.0 AND GPL-3.0-or-later. (#​733)
  • Added --contributor option to annotate. (#​669)
  • Added --json flag to lint command (#​654).
  • reuse.ReuseInfo now has copy and union methods. (#​759)
  • reuse.ReuseInfo now stores information about the source from which the
    information was gathered. (#​654, #​787)
  • Added Ukrainian and Czech translations (#​767)
  • Added --suppress-deprecation to hide (verbose) deprecation warnings. (#​778)
Changed
  • Bumped SPDX license list to v3.20. (#​692)
  • reuse.SpdxInfo was renamed to reuse.ReuseInfo. It is now a (frozen)
    dataclass instead of a namedtuple. This is only relevant if you're using reuse
    as a library in Python. Other functions and methods were similarly renamed.
    (#​669)
  • Sphinx documentation: Switched from RTD theme to Furo. (#​673, #​716)
  • Removed dependency on setuptools' pkg_resources to determine the installed
    version of reuse. (#​724)
  • Bumped SPDX license list to v3.21. (#​763)
  • Project.reuse_info_of now returns a list of ReuseInfo objects instead of a
    single one. This is because the source information is now stored alongside the
    REUSE information. (#​787)
Deprecated
  • Pending deprecation of aggregation of file sources. Presently, when copyright
    and licensing information is defined both within e.g. the file itself and in
    the DEP5 file, then the information is merged or aggregated for the purposes
    of linting and BOM generation. In the future, this will no longer be the case
    unless explicitly defined. The exact mechanism for this is not yet concrete,
    but a PendingDeprecationWarning will be shown to the user to make them aware
    of this. (#​778)
Removed
  • Python 3.6 and 3.7 support has been dropped. (#​673, #​759)
  • Removed runtime and build time dependency on setuptools. (#​724)
Fixed
  • Fixed automatic generation of Sphinx documentation via readthedocs.io by
    adding a .readthedocs.yaml configuration file (#​648)
  • Fixed a compatibility issue where reuse could not be installed (built) if
    gettext is not installed. (#​691)
  • Translations are available in Docker images. (#​701)
  • Marked the /data directory in Docker containers as safe in Git, preventing
    errors related to linting Git repositories. (#​720)
  • Repaired error when using Galician translations. (#​719)
Security

v2.0.0

Compare Source

This version was yanked because of an unanticipated workflow that we broke. The
breaking change is the fact that an order of precedence was defined for
copyright and licensing information sources. For instance, if a file contained
the SPDX-License-Identifier tag, and if that file was also (explicitly or
implicitly) covered by DEP5, then the information from the DEP5 setting would no
longer apply to that file.

While the intention of the breaking change was sound (don't mix information
sources; define a single source of truth), there were legitimate use-cases that
were broken as a result of this.

Apologies to everyone whose CI broke. We'll get this one right before long.

v1.1.2

Compare Source

Fixed
  • Note to maintainers: It is now possible/easier to use the build module to
    build this module. Previously, there was a namespace conflict. (#​640)

v1.1.1

Compare Source

Fixed
  • Don't include documentation files (e.g. README.md) in top-level (i.e.,
    site-packages/). (#​657)
  • Include documentation directory in sdist. (#​657)

v1.1.0

Compare Source

Added
  • Added support for Python 3.11. (#​603)
  • More file types are recognised:
    • Kotlin script (.kts)
    • Android Interface Definition Language (.aidl)
    • Certificate files (.pem)
  • Added comment styles:
    • Apache Velocity Template (Extensions: .vm, .vtl) (#​554)
    • XQuery comment style (Extensions: .xq(l|m|y|uery|)) (#​610)
  • Some special endings are always stripped from copyright and licensing
    statements (#​602):
    • "> (and variations such as '>, " >, and "/>)
    • ] ::
Changed
  • Removed setup.py and replaced it with a Poetry configuration. Maintainers
    beware. (#​600)
  • Updated PyPI development status to 'production/stable' (#​381)
  • The pre-commit hook now passes lint as an overridable argument. (#​574)
  • addheader has been renamed to annotate. The functionality remains the
    same. (#​550)
  • Bumped SPDX license list to v3.19.
Deprecated
  • addheader has been deprecated. It still works, but is now undocumented.
    (#​550)
Removed
  • setup.py. (#​600)
  • Releases to PyPI are no longer GPG-signed. Support for this is not present in
    Poetry and not planned. (#​600)
  • Dependency on requests removed; using urllib.request from the standard
    library instead. (#​600)
Fixed
  • Repair tests related to CVE-2022-39253 changes in upstream Git. New versions
    of Git no longer allow git submodule add repository path where repository is
    a file. A flag was added to explicitly allow this in the test framework.
    (#​619)
  • Sanitize xargs input in scripts documentation. (#​525)
  • License identifiers in comments with symmetrical ASCII art frames are now
    properly detected (#​560)
  • Fixed an error where copyright statements contained within a multi-line
    comment style on a single line could not be parsed (#​593).
  • In PHP files, add header after <?php (#​543).

v1.0.0

Compare Source

A major release! Do not worry, no breaking changes but a development team
(@​carmenbianca, @​floriansnow, @​linozen, @​mxmehl and @​nicorikken) that is
confident enough to declare the REUSE helper tool stable, and a bunch of
long-awaited features!

Apart from smaller changes under the hood and typical maintenance tasks, the
main additions are new flags to the addheader subcommand that ease recursive
and automatic operations, the ability to ignore areas of a file that contain
strings that may falsely be detected as copyright or license statements, and the
option to merge copyright lines. The tool now also has better handling of some
edge cases with copyright and license identifiers.

We would like to thank the many contributors to this release, among them
@​ajinkyapatil8190, @​aspiers, @​ferdnyc, @​Gri-ffin, @​hexagonrecursion, @​hoijui,
@​Jakelyst, @​Liambeguin, @​rex4539, @​robinkrahl, @​rpavlik, @​siiptuo, @​thbde and
@​ventosus.

Added
  • Extend tool documentation with scripts to help
    using this tool and automating some steps that are not built into the tool
    itself. (#​500)
  • Recommendations for installation/run methods: package managers and pipx (#​457)
  • Docker images for AArch64 (#​478)
  • Added the ability to ignore parts of a file when running reuse lint. Simply
    add REUSE-IgnoreStart and REUSE-IgnoreEnd as comments and all lines
    between the two will be ignored by the next run of reuse lint. (#​463)
  • Meson subprojects are now ignored
    by default. (#​496)
  • More file types are recognised:
    • sbt build files (.sbt)
    • Vimscript files (.vim)
  • Added --skip-existing flag to addheader in order to skip files that
    already contain SPDX information. This may be useful for only adding SPDX
    information to newly created files. (#​480)
  • Added --recursive flag to addheader. (#​469)
  • Preserve shebang for more script files:
  • Ignore all SPDX files with their typical formats and extensions. (#​494)
  • Add support for merging copyright lines based on copyright statement,
    transforming multiple lines with a single year into a single line with a
    range. (#​328)
Changed
  • Use setuptools instead of the deprecated distutils which will be removed
    with Python 3.12. (#​451)
  • addheader --explicit-license renamed to --force-dot-license. (#​476)
  • Dockerfiles for reuse-tool are now in a separate subdirectory docker. (#​499)
  • Updated SPDX license list to 3.17. (#​513)
  • The copyright detection mechanism now silently accepts the following strings:
    Copyright(c) and Copyright(C). (#​440)
Deprecated
  • Deprecated --explicit-license in favour of --force-dot-license.
    --explicit-license will remain useable (although undocumented) for the
    foreseeable future. (#​476)
Removed
  • JsxCommentStyle in favor of using CCommentStyle directly (see section
    Fixed). (#​406)
Fixed
  • Better support for unary "+" operator in license identifiers. For example, if
    Apache-1.0+ appears as a declared license, it should not be identified as
    missing, bad, or unused if LICENSES/Apache-1.0.txt exists. It is, however,
    identified separately as a used license. (#​123)
  • When addheader creates a .license file, that file now has a newline at the
    end. (#​477)
  • Cleaned up internal string manipulation. (#​477)
  • JSX (.jxs and .tsx) actually uses C comment syntax as JSX blocks never
    stand at the beginning of the file where the licensing info needs to go.
    (#​406)

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

  • If you want to rebase/retry this PR, check this box

This PR has been generated by Renovate Bot.

This PR contains the following updates: | Package | Type | Update | Change | |---|---|---|---| | [reuse](https://reuse.software/) ([source](https://github.com/fsfe/reuse-tool)) | dev-packages | major | `==0.14.0` -> `==2.1.0` | --- ### Release Notes <details> <summary>fsfe/reuse-tool (reuse)</summary> ### [`v2.1.0`](https://github.com/fsfe/reuse-tool/blob/HEAD/CHANGELOG.md#210---2023-07-18) [Compare Source](https://github.com/fsfe/reuse-tool/compare/v2.0.0...v2.1.0) After the yanked 2.0.0 release, we're excited to announce our latest major version packed with new features and improvements! We've expanded our file type recognition, now including Fennel, CommonJS, Qt .pro, .pri, .qrc, .qss, .ui, Textile, Visual Studio Code workspace, Application Resource Bundle, Svelte components, AES encrypted files, Jakarta Server Page, Clang format, Browserslist config, Prettier config and ignored files, Flutter pubspec.lock, .metadata, Terraform and HCL, Typst and more. We've also added the ability to detect SPDX snippet tags in files and introduced additional license metadata for the Python package. A new `--json` flag has been added to the `lint` command, marking the first step towards better integration of REUSE output with other tools. On the changes front, we've bumped the SPDX license list to v3.21 and made significant updates to our Sphinx documentation. Please note that Python 3.6 and 3.7 support has been dropped in this release. We've fixed several issues including automatic generation of Sphinx documentation via readthedocs.io and a compatibility issue where reuse could not be installed if gettext is not installed. This update is all about making your experience better. Enjoy adding copyright and licensing information to your code! ##### Added - Detect SPDX snippet tags in files. ([#&#8203;699](https://github.com/fsfe/reuse-tool/issues/699)) - More file types are recognised: - Fennel (`.fnl`) ([#&#8203;638](https://github.com/fsfe/reuse-tool/issues/638)) - CommonJS (`.cjs`) ([#&#8203;632](https://github.com/fsfe/reuse-tool/issues/632)) - Qt .pro (`.pro`) ([#&#8203;632](https://github.com/fsfe/reuse-tool/issues/632)) - Qt .pri (`.pri`) ([#&#8203;755](https://github.com/fsfe/reuse-tool/issues/755)) - Qt .qrc (`.qrc`) ([#&#8203;755](https://github.com/fsfe/reuse-tool/issues/755)) - Qt .qss(`.qss`) ([#&#8203;755](https://github.com/fsfe/reuse-tool/issues/755)) - Qt .ui (`.ui`) ([#&#8203;755](https://github.com/fsfe/reuse-tool/issues/755)) - Textile (`.textile`) ([#&#8203;712](https://github.com/fsfe/reuse-tool/issues/712)) - Visual Studio Code workspace (`.code-workspace`) ([#&#8203;747](https://github.com/fsfe/reuse-tool/issues/747)) - Application Resource Bundle (`.arb`) ([#&#8203;749](https://github.com/fsfe/reuse-tool/issues/749)) - Svelte components (`.svelte`) - AES encrypted files (`.aes`) ([#&#8203;758](https://github.com/fsfe/reuse-tool/issues/758)) - Jakarte Server Page (`.jsp`) ([#&#8203;757](https://github.com/fsfe/reuse-tool/issues/757)) - Clang format (`.clang-format`) ([#&#8203;632](https://github.com/fsfe/reuse-tool/issues/632)) - Browserslist config (`.browserslist`) - Prettier config (`.prettierrc`) and ignored files (`.prettierignore`) - Flutter pubspec.lock (`pubspec.lock`) ([#&#8203;751](https://github.com/fsfe/reuse-tool/issues/751)) - Flutter .metadata (`.metadata`) ([#&#8203;751](https://github.com/fsfe/reuse-tool/issues/751)) - Terraform (`.tf`, `tfvars`) and HCL (`.hcl`). ([#&#8203;756](https://github.com/fsfe/reuse-tool/issues/756)) - Typst (`.typ`) - Added loglevel argument to pytest and skip one test if loglevel is too high ([#&#8203;645](https://github.com/fsfe/reuse-tool/issues/645)). - `--add-license-concluded`, `--creator-person`, and `--creator-organization` added to `reuse spdx`. ([#&#8203;623](https://github.com/fsfe/reuse-tool/issues/623)) - Additional license metadata for the Python package has been added. The actual SPDX license expression remains the same: `Apache-2.0 AND CC0-1.0 AND CC-BY-SA-4.0 AND GPL-3.0-or-later`. ([#&#8203;733](https://github.com/fsfe/reuse-tool/issues/733)) - Added `--contributor` option to `annotate`. ([#&#8203;669](https://github.com/fsfe/reuse-tool/issues/669)) - Added `--json` flag to `lint` command ([#&#8203;654](https://github.com/fsfe/reuse-tool/issues/654)). - `reuse.ReuseInfo` now has `copy` and `union` methods. ([#&#8203;759](https://github.com/fsfe/reuse-tool/issues/759)) - `reuse.ReuseInfo` now stores information about the source from which the information was gathered. ([#&#8203;654](https://github.com/fsfe/reuse-tool/issues/654), [#&#8203;787](https://github.com/fsfe/reuse-tool/issues/787)) - Added Ukrainian and Czech translations ([#&#8203;767](https://github.com/fsfe/reuse-tool/issues/767)) - Added `--suppress-deprecation` to hide (verbose) deprecation warnings. ([#&#8203;778](https://github.com/fsfe/reuse-tool/issues/778)) ##### Changed - Bumped SPDX license list to v3.20. ([#&#8203;692](https://github.com/fsfe/reuse-tool/issues/692)) - `reuse.SpdxInfo` was renamed to `reuse.ReuseInfo`. It is now a (frozen) dataclass instead of a namedtuple. This is only relevant if you're using reuse as a library in Python. Other functions and methods were similarly renamed. ([#&#8203;669](https://github.com/fsfe/reuse-tool/issues/669)) - Sphinx documentation: Switched from RTD theme to Furo. ([#&#8203;673](https://github.com/fsfe/reuse-tool/issues/673), [#&#8203;716](https://github.com/fsfe/reuse-tool/issues/716)) - Removed dependency on setuptools' `pkg_resources` to determine the installed version of reuse. ([#&#8203;724](https://github.com/fsfe/reuse-tool/issues/724)) - Bumped SPDX license list to v3.21. ([#&#8203;763](https://github.com/fsfe/reuse-tool/issues/763)) - `Project.reuse_info_of` now returns a list of `ReuseInfo` objects instead of a single one. This is because the source information is now stored alongside the REUSE information. ([#&#8203;787](https://github.com/fsfe/reuse-tool/issues/787)) ##### Deprecated - Pending deprecation of aggregation of file sources. Presently, when copyright and licensing information is defined both within e.g. the file itself and in the DEP5 file, then the information is merged or aggregated for the purposes of linting and BOM generation. In the future, this will no longer be the case unless explicitly defined. The exact mechanism for this is not yet concrete, but a `PendingDeprecationWarning` will be shown to the user to make them aware of this. ([#&#8203;778](https://github.com/fsfe/reuse-tool/issues/778)) ##### Removed - Python 3.6 and 3.7 support has been dropped. ([#&#8203;673](https://github.com/fsfe/reuse-tool/issues/673), [#&#8203;759](https://github.com/fsfe/reuse-tool/issues/759)) - Removed runtime and build time dependency on `setuptools`. ([#&#8203;724](https://github.com/fsfe/reuse-tool/issues/724)) ##### Fixed - Fixed automatic generation of Sphinx documentation via readthedocs.io by adding a `.readthedocs.yaml` configuration file ([#&#8203;648](https://github.com/fsfe/reuse-tool/issues/648)) - Fixed a compatibility issue where reuse could not be installed (built) if gettext is not installed. ([#&#8203;691](https://github.com/fsfe/reuse-tool/issues/691)) - Translations are available in Docker images. ([#&#8203;701](https://github.com/fsfe/reuse-tool/issues/701)) - Marked the `/data` directory in Docker containers as safe in Git, preventing errors related to linting Git repositories. ([#&#8203;720](https://github.com/fsfe/reuse-tool/issues/720)) - Repaired error when using Galician translations. ([#&#8203;719](https://github.com/fsfe/reuse-tool/issues/719)) ##### Security ### [`v2.0.0`](https://github.com/fsfe/reuse-tool/blob/HEAD/CHANGELOG.md#200---2023-06-21-YANKED) [Compare Source](https://github.com/fsfe/reuse-tool/compare/v1.1.2...v2.0.0) This version was yanked because of an unanticipated workflow that we broke. The breaking change is the fact that an order of precedence was defined for copyright and licensing information sources. For instance, if a file contained the `SPDX-License-Identifier` tag, and if that file was also (explicitly or implicitly) covered by DEP5, then the information from the DEP5 setting would no longer apply to that file. While the intention of the breaking change was sound (don't mix information sources; define a single source of truth), there were legitimate use-cases that were broken as a result of this. Apologies to everyone whose CI broke. We'll get this one right before long. ### [`v1.1.2`](https://github.com/fsfe/reuse-tool/blob/HEAD/CHANGELOG.md#112---2023-02-09) [Compare Source](https://github.com/fsfe/reuse-tool/compare/v1.1.1...v1.1.2) ##### Fixed - Note to maintainers: It is now possible/easier to use the `build` module to build this module. Previously, there was a namespace conflict. ([#&#8203;640](https://github.com/fsfe/reuse-tool/issues/640)) ### [`v1.1.1`](https://github.com/fsfe/reuse-tool/blob/HEAD/CHANGELOG.md#111---2023-02-05) [Compare Source](https://github.com/fsfe/reuse-tool/compare/v1.1.0...v1.1.1) ##### Fixed - Don't include documentation files (e.g. `README.md`) in top-level (i.e., `site-packages/`). ([#&#8203;657](https://github.com/fsfe/reuse-tool/issues/657)) - Include documentation directory in sdist. ([#&#8203;657](https://github.com/fsfe/reuse-tool/issues/657)) ### [`v1.1.0`](https://github.com/fsfe/reuse-tool/blob/HEAD/CHANGELOG.md#110---2022-12-01) [Compare Source](https://github.com/fsfe/reuse-tool/compare/v1.0.0...v1.1.0) ##### Added - Added support for Python 3.11. ([#&#8203;603](https://github.com/fsfe/reuse-tool/issues/603)) - More file types are recognised: - Kotlin script (`.kts`) - Android Interface Definition Language (`.aidl`) - Certificate files (`.pem`) - Added comment styles: - Apache Velocity Template (Extensions: `.vm`, `.vtl`) ([#&#8203;554](https://github.com/fsfe/reuse-tool/issues/554)) - XQuery comment style (Extensions: `.xq(l|m|y|uery|)`) ([#&#8203;610](https://github.com/fsfe/reuse-tool/issues/610)) - Some special endings are always stripped from copyright and licensing statements ([#&#8203;602](https://github.com/fsfe/reuse-tool/issues/602)): - `">` (and variations such as `'>`, `" >`, and `"/>`) - `] ::` ##### Changed - Removed `setup.py` and replaced it with a Poetry configuration. Maintainers beware. ([#&#8203;600](https://github.com/fsfe/reuse-tool/issues/600)) - Updated PyPI development status to 'production/stable' ([#&#8203;381](https://github.com/fsfe/reuse-tool/issues/381)) - The pre-commit hook now passes `lint` as an overridable argument. ([#&#8203;574](https://github.com/fsfe/reuse-tool/issues/574)) - `addheader` has been renamed to `annotate`. The functionality remains the same. ([#&#8203;550](https://github.com/fsfe/reuse-tool/issues/550)) - Bumped SPDX license list to v3.19. ##### Deprecated - `addheader` has been deprecated. It still works, but is now undocumented. ([#&#8203;550](https://github.com/fsfe/reuse-tool/issues/550)) ##### Removed - `setup.py`. ([#&#8203;600](https://github.com/fsfe/reuse-tool/issues/600)) - Releases to PyPI are no longer GPG-signed. Support for this is not present in Poetry and not planned. ([#&#8203;600](https://github.com/fsfe/reuse-tool/issues/600)) - Dependency on `requests` removed; using `urllib.request` from the standard library instead. ([#&#8203;600](https://github.com/fsfe/reuse-tool/issues/600)) ##### Fixed - Repair tests related to CVE-2022-39253 changes in upstream Git. New versions of Git no longer allow `git submodule add repository path` where repository is a file. A flag was added to explicitly allow this in the test framework. ([#&#8203;619](https://github.com/fsfe/reuse-tool/issues/619)) - Sanitize xargs input in scripts documentation. ([#&#8203;525](https://github.com/fsfe/reuse-tool/issues/525)) - License identifiers in comments with symmetrical ASCII art frames are now properly detected ([#&#8203;560](https://github.com/fsfe/reuse-tool/issues/560)) - Fixed an error where copyright statements contained within a multi-line comment style on a single line could not be parsed ([#&#8203;593](https://github.com/fsfe/reuse-tool/issues/593)). - In PHP files, add header after `<?php` ([#&#8203;543](https://github.com/fsfe/reuse-tool/issues/543)). ### [`v1.0.0`](https://github.com/fsfe/reuse-tool/blob/HEAD/CHANGELOG.md#100---2022-05-19) [Compare Source](https://github.com/fsfe/reuse-tool/compare/v0.14.0...v1.0.0) A major release! Do not worry, no breaking changes but a development team ([@&#8203;carmenbianca](https://github.com/carmenbianca), [@&#8203;floriansnow](https://github.com/floriansnow), [@&#8203;linozen](https://github.com/linozen), [@&#8203;mxmehl](https://github.com/mxmehl) and [@&#8203;nicorikken](https://github.com/nicorikken)) that is confident enough to declare the REUSE helper tool stable, and a bunch of long-awaited features! Apart from smaller changes under the hood and typical maintenance tasks, the main additions are new flags to the `addheader` subcommand that ease recursive and automatic operations, the ability to ignore areas of a file that contain strings that may falsely be detected as copyright or license statements, and the option to merge copyright lines. The tool now also has better handling of some edge cases with copyright and license identifiers. We would like to thank the many contributors to this release, among them [@&#8203;ajinkyapatil8190](https://github.com/ajinkyapatil8190), [@&#8203;aspiers](https://github.com/aspiers), [@&#8203;ferdnyc](https://github.com/ferdnyc), [@&#8203;Gri-ffin](https://github.com/Gri-ffin), [@&#8203;hexagonrecursion](https://github.com/hexagonrecursion), [@&#8203;hoijui](https://github.com/hoijui), [@&#8203;Jakelyst](https://github.com/Jakelyst), [@&#8203;Liambeguin](https://github.com/Liambeguin), [@&#8203;rex4539](https://github.com/rex4539), [@&#8203;robinkrahl](https://github.com/robinkrahl), [@&#8203;rpavlik](https://github.com/rpavlik), [@&#8203;siiptuo](https://github.com/siiptuo), [@&#8203;thbde](https://github.com/thbde) and [@&#8203;ventosus](https://github.com/ventosus). ##### Added - Extend [tool documentation](https://reuse.readthedocs.io) with scripts to help using this tool and automating some steps that are not built into the tool itself. ([#&#8203;500](https://github.com/fsfe/reuse-tool/issues/500)) - Recommendations for installation/run methods: package managers and pipx ([#&#8203;457](https://github.com/fsfe/reuse-tool/issues/457)) - Docker images for AArch64 ([#&#8203;478](https://github.com/fsfe/reuse-tool/issues/478)) - Added the ability to ignore parts of a file when running `reuse lint`. Simply add `REUSE-IgnoreStart` and `REUSE-IgnoreEnd` as comments and all lines between the two will be ignored by the next run of `reuse lint`. ([#&#8203;463](https://github.com/fsfe/reuse-tool/issues/463)) - [Meson subprojects](https://mesonbuild.com/Subprojects.html) are now ignored by default. ([#&#8203;496](https://github.com/fsfe/reuse-tool/issues/496)) - More file types are recognised: - sbt build files (`.sbt`) - Vimscript files (`.vim`) - Added `--skip-existing` flag to `addheader` in order to skip files that already contain SPDX information. This may be useful for only adding SPDX information to newly created files. ([#&#8203;480](https://github.com/fsfe/reuse-tool/issues/480)) - Added `--recursive` flag to `addheader`. ([#&#8203;469](https://github.com/fsfe/reuse-tool/issues/469)) - Preserve shebang for more script files: - V-Lang ([#&#8203;432](https://github.com/fsfe/reuse-tool/issues/432)) - Ignore all SPDX files with their typical formats and extensions. ([#&#8203;494](https://github.com/fsfe/reuse-tool/issues/494)) - Add support for merging copyright lines based on copyright statement, transforming multiple lines with a single year into a single line with a range. ([#&#8203;328](https://github.com/fsfe/reuse-tool/issues/328)) ##### Changed - Use `setuptools` instead of the deprecated `distutils` which will be removed with Python 3.12. ([#&#8203;451](https://github.com/fsfe/reuse-tool/issues/451)) - `addheader --explicit-license` renamed to `--force-dot-license`. ([#&#8203;476](https://github.com/fsfe/reuse-tool/issues/476)) - Dockerfiles for reuse-tool are now in a separate subdirectory `docker`. ([#&#8203;499](https://github.com/fsfe/reuse-tool/issues/499)) - Updated SPDX license list to 3.17. ([#&#8203;513](https://github.com/fsfe/reuse-tool/issues/513)) - The copyright detection mechanism now silently accepts the following strings: `Copyright(c)` and `Copyright(C)`. ([#&#8203;440](https://github.com/fsfe/reuse-tool/issues/440)) ##### Deprecated - Deprecated `--explicit-license` in favour of `--force-dot-license`. `--explicit-license` will remain useable (although undocumented) for the foreseeable future. ([#&#8203;476](https://github.com/fsfe/reuse-tool/issues/476)) ##### Removed - `JsxCommentStyle` in favor of using `CCommentStyle` directly (see section `Fixed`). ([#&#8203;406](https://github.com/fsfe/reuse-tool/issues/406)) ##### Fixed - Better support for unary "+" operator in license identifiers. For example, if `Apache-1.0+` appears as a declared license, it should not be identified as missing, bad, or unused if `LICENSES/Apache-1.0.txt` exists. It is, however, identified separately as a used license. ([#&#8203;123](https://github.com/fsfe/reuse-tool/issues/123)) - When `addheader` creates a `.license` file, that file now has a newline at the end. ([#&#8203;477](https://github.com/fsfe/reuse-tool/issues/477)) - Cleaned up internal string manipulation. ([#&#8203;477](https://github.com/fsfe/reuse-tool/issues/477)) - JSX (`.jxs` and `.tsx`) actually uses C comment syntax as JSX blocks never stand at the beginning of the file where the licensing info needs to go. ([#&#8203;406](https://github.com/fsfe/reuse-tool/issues/406)) </details> --- ### Configuration 📅 **Schedule**: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined). 🚦 **Automerge**: Disabled by config. Please merge this manually once you are satisfied. ♻ **Rebasing**: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 **Ignore**: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiIzNy40NDAuNyIsInVwZGF0ZWRJblZlciI6IjM3LjQ0MC43IiwidGFyZ2V0QnJhbmNoIjoibWFpbiIsImxhYmVscyI6W119-->
renovate-bot added 1 commit 2024-09-11 12:37:35 +02:00
Update dependency reuse to v2
All checks were successful
continuous-integration/drone/pr Build is passing
Details
739ce0382b
Brain merged commit 72fda5df51 into main 2024-09-11 13:30:28 +02:00
Sign in to join this conversation.
Reviewers
No reviewers
Labels
Clear labels   
bug

Something is not working

  
doing

   
duplicate

This issue or pull request already exists

  
enhancement

New feature

  
help wanted

Need some help

  
invalid

Something is wrong

  
question

More information is needed

  
ready

Bereit für Release

  
review

   
security

   
wontfix

This won't be fixed

No Label
bug
doing
duplicate
enhancement
help wanted
invalid
question
ready
review
security
wontfix
Milestone
Clear milestone
No items
No Milestone
Projects
Clear projects
No project
Assignees
Clear assignees
No Assignees
1 Participants
Notifications
Due Date
The due date is invalid or out of range. Please use the format 'yyyy-mm-dd'.

No due date set.

Dependencies

No dependencies set.

Reference: kompetenzinventar/ki-backend#124
No description provided.
Delete Branch "renovate/reuse-2.x"

Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?