name: License Scan on: # enable running the workflow manually workflow_dispatch: jobs: license-scan: runs-on: ubuntu-latest steps: - uses: actions/checkout@v4 - name: Set up JDK & Maven Central credentials uses: actions/setup-java@v4 with: distribution: 'temurin' java-version: 21 cache: 'maven' - name: Cache local Maven repository uses: actions/cache@v4 with: path: ~/.m2/repository key: ${{ runner.os }}-maven-${{ hashFiles('**/pom.xml') }} restore-keys: | ${{ runner.os }}-maven- - name: Check file license headers run: mvn license:check -Plicense --batch-mode - name: Check dependency licenses with dash tool run: | mvn clean install -DskipTests -DskipJavadoc --batch-mode mvn license-tool:license-check -DexcludeGroupIds=org.eclipse.hawkbit -Plicense -Ddash.iplab.token=${GITLAB_API_TOKEN} --projects '!org.eclipse.hawkbit:hawkbit-repository-test,!org.eclipse.hawkbit:hawkbit-dmf-rabbitmq-test' env: GITLAB_API_TOKEN: ${{ secrets.GITLAB_API_TOKEN }}