Compliance
The Compliance group is for special criteria which have elevated legal and/or security implications.
Compliance Severity
Any Compliance failure should be considered to have an elevated criticality, regardless of the severity level.
A module with CRITICAL compliance severity should never be used.
Compliance Score: license
The license score is intended to indicate that a given module has a license which is permissible for use, allows redistribution & modification, and does not require source disclosure. The list of currently acceptable licenses:
MIT ISC Apache-1.0 Apache-1.1 Apache-2.0 BSD-1-Clause BSD-2-Clause BSD-3-Clause BSD-4-Clause
Severity output:
- HIGH if no license.
- HIGH if license is invalid.
- MEDIUM if license is unacceptable as per the list above.
- NONE otherwise.