On Fri, Jun 30, 2023 at 11:22 AM Vít Ondruch <vondruch@xxxxxxxxxx> wrote: > (snip) > > I vaguely remember, that the Rust packaging automation was approved > based on the condition, that there are SPDX licenses listed in metadata. > I don't think and Cargo licensing guidelines were evaluated along the > way. But if the was different standard for Cargo licenses in metadata, > then in Fedora, Rust packaging automation should be disabled, because we > cannot trust the license information. I don't know what you're talking about here, but this might predate my time at the Rust SIG (or you do indeed vaguely mis-remember). ;) The creation of spec files for Rust crates is automated to varying degrees with rust2rpm, and the tool pre-fills the License tag with metadata from the upstream project, just like it prefills Name, Summary, and %description. But that does not absolve the packager from checking that this information is actually correct. If this were not the case, this thread would not exist. Fabio _______________________________________________ legal mailing list -- legal@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe send an email to legal-leave@xxxxxxxxxxxxxxxxxxxxxxx Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/legal@xxxxxxxxxxxxxxxxxxxxxxx Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue
