https://bugzilla.redhat.com/show_bug.cgi?id=2280050 --- Comment #7 from Paul Pfeister <rh-bugzilla@xxxxxxxxxxxx> --- > The license text is not present in the PyPI sdist, nor even in the upstream git repository https://github.com/erdiaker/torrequest/, but the terms of the chosen license (MIT, https://spdx.org/licenses/MIT.html) would require it to be reproduced in “all copies or substantial portions of the Software.” > > Please read https://docs.fedoraproject.org/en-US/packaging-guidelines/LicensingGuidelines/#_license_text for instructions on dealing with this situation. By far the best choice would be if you could manage to contact upstream and get them to agree to add a license file, even if they fail to produce a new release and you have to patch it in. The License text is available, but it was indicated to be MIT in the Readme. I figured then this was the best was to meet that burden according to the linked document, but I agree now that patching would probably be the more ~proper~ method, if anything. > The addition of a LICENSE file in that PR is not OK to patch in downstream as-is, however, because there is no copyright statement for the original author. Would the reliance on the author's note in the Readme that the project is covered by the MIT License be sufficient for this or would the actual full text be necessary in the upstream? ___ We ARE looking at replacing this, though, due to reasons that you also mentioned. I believe that we may put this one on hold for that reason, removing the depend from the main project where necessary. Will address that here once a decision is made. -- You are receiving this mail because: You are on the CC list for the bug. You are always notified about changes to this product and component https://bugzilla.redhat.com/show_bug.cgi?id=2280050 Report this comment as SPAM: https://bugzilla.redhat.com/enter_bug.cgi?product=Bugzilla&format=report-spam&short_desc=Report%20of%20Bug%202280050%23c7 -- _______________________________________________ package-review mailing list -- package-review@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe send an email to package-review-leave@xxxxxxxxxxxxxxxxxxxxxxx Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/package-review@xxxxxxxxxxxxxxxxxxxxxxx Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue
