Skip to main content
Version: 6.1.0

Compliance

The Compliance group is for special criteria which have elevated legal and/or security implications.

Compliance Severity

Any Compliance failure should be considered to have an elevated criticality, regardless of the severity level.

A module with CRITICAL compliance severity should never be used.

Compliance Score: license

The license score is intended to indicate that a given module has a license which is permissible for use, allows redistribution & modification, and does not require source disclosure. The list of currently acceptable licenses:

MIT ISC Apache-1.0 Apache-1.1 Apache-2.0 BSD-1-Clause BSD-2-Clause BSD-3-Clause BSD-4-Clause

Severity output:

  • HIGH if no license.
  • HIGH if license is invalid.
  • MEDIUM if license is unacceptable as per the list above.
  • NONE otherwise.