# Legal Report Package: gleam Checkout: 8400b2469fb71ad2c07917b45589ab475f20c00167efccd0399b06acafcd228f Unpacked: 237003 files (470MiB) ## System Notice Diff to closest match 397788: Found new unresolved matches in gleam-1.17.0/licences/MPL-2.0.txt and 20 other files Found new license AFL-3.0 (risk 3) not present in old report Found new license AGPL-3.0+ (risk 5) not present in old report Found new license APSL-1.1 (risk 5) not present in old report Found new license APSL-2.0 (risk 5) not present in old report Found new license Any CLA (risk 5) not present in old report Found new license Any Copyleft (risk 3) not present in old report Found new license Any GPL permissive addon (risk 2) not present in old report Found new license Any Proprietary (risk 7) not present in old report Found new license Any all rights reserved (risk 2) not present in old report Found new license Any no commercial (risk 7) not present in old report Found new license Any no nuclear (risk 7) not present in old report Found new license Any no warranty (risk 3) not present in old report Found new license Any perm mark changes (risk 2) not present in old report Found new license Any permissive adv (risk 5) not present in old report Found new license Any permissive doc nomod (risk 2) not present in old report Found new license Any permissive keep free (risk 2) not present in old report Found new license Any permissive nomod (risk 5) not present in old report Found new license Any permissive src (risk 2) not present in old report Found new license Any reciprocal clause (risk 3) not present in old report Found new license Any unresolvable:patent (risk 6) not present in old report Found new license Apache-1.1 (risk 3) not present in old report Found new license Apache-2.0 WITH GPL-Compliance (risk 2) not present in old report Found new license Apache-2.0 With Custom-Trademark-Clause (risk 5) not present in old report Found new license Apache-2.0:patent (risk 2) not present in old report Found new license Artistic-1.0 (risk 2) not present in old report Found new license Artistic-1.0-Perl OR GPL-1.0+ (risk 2) not present in old report Found new license Artistic-2.0 (risk 2) not present in old report Found new license BSD protection license (risk 5) not present in old report Found new license BSD-1-Clause (risk 2) not present in old report Found new license BSD-2-Clause-Patent:patent (risk 2) not present in old report Found new license BSD-3-Clause OR GPL-2.0+ (risk 2) not present in old report Found new license BSD-3-Clause-No-Nuclear-License (risk 7) not present in old report Found new license BSD-4-Clause-UC (risk 3) not present in old report Found new license BSD-4-Clause-without-reproducing-clause (risk 3) not present in old report Found new license BUSL-1.1 (risk 6) not present in old report Found new license BlueOak-1.0.0 (risk 2) not present in old report Found new license CC-BY-4.0 (risk 3) not present in old report Found new license CC-BY-NC-SA-3.0 (risk 6) not present in old report Found new license CC-BY-ND-1.0 (risk 5) not present in old report Found new license CC-BY-ND-4.0 (risk 5) not present in old report Found new license CC-BY-SA-3.0 (risk 3) not present in old report Found new license CDDL-1.0 (risk 3) not present in old report Found new license CDDL-1.1 (risk 3) not present in old report Found new license CECILL-1.0 (risk 2) not present in old report Found new license CECILL-2.1 (risk 2) not present in old report Found new license CECILL-C (risk 3) not present in old report Found new license CPL-1.0 (risk 5) not present in old report Found new license ClArtistic (risk 2) not present in old report Found new license Copyleft-Next-0.3.0 (risk 2) not present in old report Found new license Creative-Commons-Unspecified (risk 3) not present in old report Found new license EPL-1.0 (risk 3) not present in old report Found new license EPL-2.0 (risk 3) not present in old report Found new license ErlPL-1.1 (risk 3) not present in old report Found new license FTL (risk 2) not present in old report Found new license GCC-exception-3.1 (risk 2) not present in old report Found new license GFDL-1.1 (risk 2) not present in old report Found new license GFDL-1.3 (risk 2) not present in old report Found new license GL2PS (risk 2) not present in old report Found new license GPL-1.0+ (risk 4) not present in old report Found new license GPL-2.0 WITH Font-exception-2.0 (risk 3) not present in old report Found new license GPL-2.0 WITH Linking-exception (risk 3) not present in old report Found new license GPL-2.0 WITH OpenSSL-exception (risk 2) not present in old report Found new license GPL-2.0+ WITH Linking-exception (risk 3) not present in old report Found new license GPL-2.0+ WITH OpenSSL-exception (risk 2) not present in old report Found new license GPL-3.0 WITH Autoconf-exception-3.0 (risk 4) not present in old report Found new license GPL-3.0+ (risk 4) not present in old report Found new license GPL-3.0+ WITH Bison-Exception-2.2 (risk 4) not present in old report Found new license GPL-Unspecified WITH Linking-exception (risk 4) not present in old report Found new license ISC OR Apache-2.0 (risk 2) not present in old report Found new license Intel ACPICA (risk 2) not present in old report Found new license Intel X11 (risk 2) not present in old report Found new license JSON (risk 7) not present in old report Found new license JasPer-2.0 (risk 2) not present in old report Found new license LGPL Unspecified (risk 3) not present in old report Found new license LGPL-2.0+ (risk 3) not present in old report Found new license LGPL-3.0+ (risk 3) not present in old report Found new license LGPL-Unspecified (risk 3) not present in old report Found new license LPPL-1.0 (risk 5) not present in old report Found new license LPPL-1.1 (risk 5) not present in old report Found new license LPPL-1.2 (risk 5) not present in old report Found new license Libpng (risk 2) not present in old report Found new license MIT Kerberos (risk 2) not present in old report Found new license MIT-advertising (risk 3) not present in old report Found new license MPL-1.0 (risk 5) not present in old report Found new license MPL-1.1 (risk 3) not present in old report Found new license MPL-Unspecified (risk 3) not present in old report Found new license MS-RL (risk 3) not present in old report Found new license Microsoft Public License (risk 5) not present in old report Found new license NPL-1.0 (risk 5) not present in old report Found new license NPL-1.1 (risk 5) not present in old report Found new license NVidia Free (risk 2) not present in old report Found new license ODbL-1.0 (risk 5) not present in old report Found new license OFL-1.0 (risk 3) not present in old report Found new license OFL-1.1 (risk 3) not present in old report Found new license OLDAP-2.0.1 (risk 2) not present in old report Found new license OSL-1.1 (risk 5) not present in old report Found new license OSL-2.1 (risk 3) not present in old report Found new license OpenPBS (risk 3) not present in old report Found new license PHP-3.0 (risk 3) not present in old report Found new license PHP-3.01 (risk 3) not present in old report Found new license PSF-2.0 (risk 3) not present in old report Found new license Python-2.0 (risk 2) not present in old report Found new license QPL-1.0 (risk 3) not present in old report Found new license QT LGPL 2.1 WITH Exceptions OR Commercial (risk 2) not present in old report Found new license RSA-MD (risk 3) not present in old report Found new license SCEA (risk 5) not present in old report Found new license SISSL License 1.1 (risk 3) not present in old report Found new license SPL-1.0 (risk 3) not present in old report Found new license SUSE-Arphic (risk 2) not present in old report Found new license SUSE-BSD-4-clause-with-redistribution-clause (risk 5) not present in old report Found new license SUSE-FLTK (risk 2) not present in old report Found new license Sendmail (risk 2) not present in old report Found new license UBDL (risk 5) not present in old report Found new license UPL-1.0 (risk 2) not present in old report Found new license Ubuntu Font License 1.0 (risk 3) not present in old report Found new license Unicode (risk 2) not present in old report Found new license Vim (risk 2) not present in old report Found new license W3C (risk 2) not present in old report Found new license X11 Apple:trademark (risk 3) not present in old report Found new license X11:trademark (risk 2) not present in old report Found new license XDebug (risk 5) not present in old report Found new license XFree86 (risk 2) not present in old report Found new license ZPL-2.0 (risk 2) not present in old report Found new license ZPL-2.1 (risk 2) not present in old report Found new license Zend-2.0 (risk 3) not present in old report Found new license bitstream vera font (risk 3) not present in old report Found new license bzip2-1.0.6 (risk 2) not present in old report Found new license eGenix (risk 2) not present in old report Found new license gnuplot (risk 3) not present in old report Found new license regex (risk 2) not present in old report Found new license texinfo doc (risk 3) not present in old report ## Licenses **Warning** Elevated risk, package might contain incompatible licenses: GPL-2.0-only, Apache-2.0 Note: Report is incomplete, reviewers need to create new license patterns for unmatched keywords or ignore false positive matches. Estimated risks for each file are based on the highest risk snippet. The lower its similarity to existing license patterns, the higher the risk will climb above the predicted license. ### Risk 9 (Unknown) * `gleam-1.17.0/licences/MPL-2.0.txt`: 25% similarity to "Keyword", estimated risk 9 * `vendor/vendor/rtoolbox-0.0.2/Cargo.toml.processed.orig`: 26% similarity to "Keyword", estimated risk 9 * `vendor/vendor/rtoolbox-0.0.2/README.md`: 32.8% similarity to "Keyword", estimated risk 9 * `vendor/vendor/spdx-0.10.8/src/text/licenses/Aladdin.processed`: 23.6% similarity to "Any Proprietary", estimated risk 9 * `vendor/vendor/spdx-0.10.8/src/text/licenses/BitTorrent-1.processed.0`: 19.7% similarity to "Keyword", estimated risk 9 * `vendor/vendor/spdx-0.10.8/src/text/licenses/BitTorrent-1.processed.1`: 19.7% similarity to "Keyword", estimated risk 9 * `vendor/vendor/spdx-0.10.8/src/text/licenses/CAL-1.0`: 24.5% similarity to "Keyword", estimated risk 9 * `vendor/vendor/spdx-0.10.8/src/text/licenses/CAL-1.0-Combined-Work-Exception`: 21.7% similarity to "Keyword", estimated risk 9 * `vendor/vendor/spdx-0.10.8/src/text/licenses/CC-BY-3.processed.0-IGO`: 29.5% similarity to "Keyword", estimated risk 9 * `vendor/vendor/spdx-0.10.8/src/text/licenses/CC-BY-NC-SA-2.processed.0-UK`: 29.6% similarity to "Keyword", estimated risk 9 * `vendor/vendor/spdx-0.10.8/src/text/licenses/CC-BY-NC-SA-3.processed.0-IGO`: 29.4% similarity to "Keyword", estimated risk 9 * `vendor/vendor/spdx-0.10.8/src/text/licenses/CC-BY-SA-2.processed.0-UK`: 16.6% similarity to "Keyword", estimated risk 9 * `vendor/vendor/spdx-0.10.8/src/text/licenses/CDLA-Permissive-1.processed.0`: 26.4% similarity to "Keyword", estimated risk 9 * `vendor/vendor/spdx-0.10.8/src/text/licenses/CDLA-Sharing-1.processed.0`: 26.4% similarity to "Keyword", estimated risk 9 * `vendor/vendor/spdx-0.10.8/src/text/licenses/Community-Spec-1.0`: 27.2% similarity to "Keyword", estimated risk 9 * `vendor/vendor/spdx-0.10.8/src/text/licenses/EUPL-1.processed.0`: 23.2% similarity to "Keyword", estimated risk 9 * `vendor/vendor/spdx-0.10.8/src/text/licenses/EUPL-1.processed.1`: 23.2% similarity to "Keyword", estimated risk 9 * `vendor/vendor/spdx-0.10.8/src/text/licenses/EUPL-1.processed.2`: 34.2% similarity to "Keyword", estimated risk 9 * `vendor/vendor/spdx-0.10.8/src/text/licenses/Elastic-2.0`: 25.1% similarity to "Keyword", estimated risk 9 * `vendor/vendor/spdx-0.10.8/src/text/licenses/Frameworx-1.processed.0`: 16.2% similarity to "Keyword", estimated risk 9 * `vendor/vendor/spdx-0.10.8/src/text/licenses/FreeImage.processed`: 37.1% similarity to "Keyword", estimated risk 9 * `vendor/vendor/spdx-0.10.8/src/text/licenses/NCGL-UK-2.processed.0`: 19.4% similarity to "Keyword", estimated risk 9 * `vendor/vendor/spdx-0.10.8/src/text/licenses/NLOD-1.processed.0`: 22.3% similarity to "Keyword", estimated risk 9 * `vendor/vendor/spdx-0.10.8/src/text/licenses/NPL-1.processed.0`: 36.6% similarity to "Keyword", estimated risk 9 * `vendor/vendor/spdx-0.10.8/src/text/licenses/OCCT-PL.processed`: 25.3% similarity to "Keyword", estimated risk 9 * `vendor/vendor/spdx-0.10.8/src/text/licenses/ODC-By-1.processed.0`: 31.5% similarity to "Keyword", estimated risk 9 * `vendor/vendor/spdx-0.10.8/src/text/licenses/OGDL-Taiwan-1.processed.0`: 15.8% similarity to "Keyword", estimated risk 9 * `vendor/vendor/spdx-0.10.8/src/text/licenses/OGL-Canada-2.processed.0`: 24.7% similarity to "Keyword", estimated risk 9 * `vendor/vendor/spdx-0.10.8/src/text/licenses/OGL-UK-1.processed.0`: 20.5% similarity to "Keyword", estimated risk 9 * `vendor/vendor/spdx-0.10.8/src/text/licenses/OGL-UK-2.processed.0`: 19.4% similarity to "Keyword", estimated risk 9 * `vendor/vendor/spdx-0.10.8/src/text/licenses/OGL-UK-3.processed.0`: 20.1% similarity to "Keyword", estimated risk 9 * `vendor/vendor/spdx-0.10.8/src/text/licenses/OPL-1.processed.0`: 41.6% similarity to "Keyword", estimated risk 9 * `vendor/vendor/spdx-0.10.8/src/text/licenses/OPL-UK-3.0`: 38.9% similarity to "Keyword", estimated risk 9 * `vendor/vendor/spdx-0.10.8/src/text/licenses/OSET-PL-2.processed.1`: 31.4% similarity to "Keyword", estimated risk 9 * `vendor/vendor/spdx-0.10.8/src/text/licenses/PDDL-1.processed.0`: 25% similarity to "Keyword", estimated risk 9 * `vendor/vendor/spdx-0.10.8/src/text/licenses/PPL.processed`: 35.8% similarity to "Keyword", estimated risk 9 * `vendor/vendor/spdx-0.10.8/src/text/licenses/Parity-7.0.processed.0`: 26.2% similarity to "Keyword", estimated risk 9 * `vendor/vendor/spdx-0.10.8/src/text/licenses/RHeCos-1.processed.1`: 41.6% similarity to "Keyword", estimated risk 9 * `vendor/vendor/spdx-0.10.8/src/text/licenses/RPL-1.processed.5`: 25% similarity to "Keyword", estimated risk 9 * `vendor/vendor/spdx-0.10.8/src/text/licenses/RPSL-1.processed.0`: 26.2% similarity to "Keyword", estimated risk 9 * `vendor/vendor/spdx-0.10.8/src/text/licenses/RSCPL.processed`: 41.6% similarity to "Keyword", estimated risk 9 * `vendor/vendor/spdx-0.10.8/src/text/licenses/SSPL-1.0`: 35.5% similarity to "Keyword", estimated risk 9 * `vendor/vendor/spdx-0.10.8/src/text/licenses/SimPL-2.processed.0`: 29.4% similarity to "Keyword", estimated risk 9 * `vendor/vendor/spdx-0.10.8/src/text/licenses/TAPR-OHL-1.0`: 19.2% similarity to "Keyword", estimated risk 9 * `vendor/vendor/spdx-0.10.8/src/text/licenses/YPL-1.processed.1`: 22.5% similarity to "Keyword", estimated risk 9 * `vendor/vendor/spdx-0.10.8/src/text/licenses/lsof`: 77.3% similarity to "Keyword", estimated risk 9 * `vendor/vendor/spdx-0.10.8/src/text/exceptions/Asterisk-linking-protocols-exception`: 16% similarity to "Artistic-2.0", estimated risk 8 * `vendor/vendor/spdx-0.10.8/src/text/exceptions/Universal-FOSS-exception-1.processed.0`: 20.9% similarity to "GPL-2.0-with-mysql-floss-exception", estimated risk 8 * `vendor/vendor/spdx-0.10.8/src/text/licenses/3D-Slicer-1.0`: 23% similarity to "Microsoft Reciprocal License", estimated risk 8 * `vendor/vendor/spdx-0.10.8/src/text/licenses/APL-1.processed.0`: 32.5% similarity to "CPL-1.0", estimated risk 8 * `vendor/vendor/spdx-0.10.8/src/text/licenses/APSL-1.processed.0`: 34.9% similarity to "APSL-1.1", estimated risk 8 * `vendor/vendor/spdx-0.10.8/src/text/licenses/APSL-1.processed.1`: 28.3% similarity to "APSL-1.1", estimated risk 8 * `vendor/vendor/spdx-0.10.8/src/text/licenses/APSL-1.processed.2`: 32.2% similarity to "APSL-2.0", estimated risk 8 * `vendor/vendor/spdx-0.10.8/src/text/licenses/C-UDA-1.processed.0`: 22% similarity to "LPPL-1.2", estimated risk 8 * `vendor/vendor/spdx-0.10.8/src/text/licenses/CATOSL-1.processed.1`: 33.9% similarity to "Any Firmware", estimated risk 8 * `vendor/vendor/spdx-0.10.8/src/text/licenses/CC-BY-3.processed.0-AT`: 24.6% similarity to "SLED/SLES EULA", estimated risk 8 * `vendor/vendor/spdx-0.10.8/src/text/licenses/CC-BY-3.processed.0-AU`: 21.5% similarity to "LGPL-2.1-or-later", estimated risk 8 * `vendor/vendor/spdx-0.10.8/src/text/licenses/CC-BY-3.processed.0-DE`: 23.7% similarity to "SLED/SLES EULA", estimated risk 8 * `vendor/vendor/spdx-0.10.8/src/text/licenses/CC-BY-3.processed.0-NL`: 21.2% similarity to "Novell SLA", estimated risk 8 * `vendor/vendor/spdx-0.10.8/src/text/licenses/CC-BY-NC-3.0`: 29.1% similarity to "CC-Sampling-Plus-1.0", estimated risk 8 * `vendor/vendor/spdx-0.10.8/src/text/licenses/CC-BY-NC-3.processed.0-DE`: 22.6% similarity to "SLED/SLES EULA", estimated risk 8 * `vendor/vendor/spdx-0.10.8/src/text/licenses/CC-BY-NC-ND-3.0`: 37.3% similarity to "CC-Sampling-Plus-1.0", estimated risk 8 * `vendor/vendor/spdx-0.10.8/src/text/licenses/CC-BY-NC-ND-3.processed.0-DE`: 22.6% similarity to "SLED/SLES EULA", estimated risk 8 * `vendor/vendor/spdx-0.10.8/src/text/licenses/CC-BY-NC-ND-3.processed.0-IGO`: 34.7% similarity to "CC-Sampling-Plus-1.0", estimated risk 8 * `vendor/vendor/spdx-0.10.8/src/text/licenses/CC-BY-NC-SA-2.processed.0-DE`: 25.4% similarity to "GPL-3.0-or-later", estimated risk 8 * `vendor/vendor/spdx-0.10.8/src/text/licenses/CC-BY-NC-SA-2.processed.0-FR`: 16.6% similarity to "GPL-Unspecified", estimated risk 8 * `vendor/vendor/spdx-0.10.8/src/text/licenses/CC-BY-NC-SA-3.0`: 35.9% similarity to "CC-Sampling-Plus-1.0", estimated risk 8 * `vendor/vendor/spdx-0.10.8/src/text/licenses/CC-BY-NC-SA-4.processed.0`: 36% similarity to "CC-BY-NC-SA-3.0", estimated risk 8 * `vendor/vendor/spdx-0.10.8/src/text/licenses/CC-BY-ND-3.processed.0-DE`: 22.5% similarity to "SLED/SLES EULA", estimated risk 8 * `vendor/vendor/spdx-0.10.8/src/text/licenses/CC-BY-SA-3.processed.0-AT`: 24.9% similarity to "CC-BY-SA-3.0", estimated risk 8 * `vendor/vendor/spdx-0.10.8/src/text/licenses/CC-BY-SA-3.processed.0-DE`: 24.9% similarity to "CC-BY-SA-3.0", estimated risk 8 * `vendor/vendor/spdx-0.10.8/src/text/licenses/CDL-1.processed.0`: 30.8% similarity to "CPL-1.0", estimated risk 8 * `vendor/vendor/spdx-0.10.8/src/text/licenses/CECILL-1.processed.0`: 27.1% similarity to "GPL-2.0-or-later", estimated risk 8 * `vendor/vendor/spdx-0.10.8/src/text/licenses/CECILL-1.processed.1`: 21.6% similarity to "GPL-2.0-only", estimated risk 8 * `vendor/vendor/spdx-0.10.8/src/text/licenses/CERN-OHL-1.processed.1`: 24.4% similarity to "CDDL-1.0", estimated risk 8 * `vendor/vendor/spdx-0.10.8/src/text/licenses/CERN-OHL-S-2.0`: 20.5% similarity to "GPL-Unspecified", estimated risk 8 * `vendor/vendor/spdx-0.10.8/src/text/licenses/CERN-OHL-W-2.0`: 19.3% similarity to "GPL-Unspecified", estimated risk 8 * `vendor/vendor/spdx-0.10.8/src/text/licenses/DL-DE-BY-2.processed.0`: 40.8% similarity to "Any perm noncommercial", estimated risk 8 * `vendor/vendor/spdx-0.10.8/src/text/licenses/Giftware.processed`: 22.2% similarity to "GPL-2.0-only", estimated risk 8 * `vendor/vendor/spdx-0.10.8/src/text/licenses/Glide.processed`: 27.9% similarity to "GPL-2.0-or-later", estimated risk 8 * `vendor/vendor/spdx-0.10.8/src/text/licenses/IPL-1.0`: 28.7% similarity to "IPL-1.0", estimated risk 8 * `vendor/vendor/spdx-0.10.8/src/text/licenses/JPL-image.processed`: 33.4% similarity to "Any perm req", estimated risk 8 * `vendor/vendor/spdx-0.10.8/src/text/licenses/LPL-1.processed.0`: 33.6% similarity to "CPL-1.0", estimated risk 8 * `vendor/vendor/spdx-0.10.8/src/text/licenses/Motosoto.processed`: 44.5% similarity to "Bea License", estimated risk 8 * `vendor/vendor/spdx-0.10.8/src/text/licenses/MulanPSL-2.processed.0`: 29% similarity to "GPL-2.0-only", estimated risk 8 * `vendor/vendor/spdx-0.10.8/src/text/licenses/NASA-1.processed.3`: 23.9% similarity to "CDDL-1.0", estimated risk 8 * `vendor/vendor/spdx-0.10.8/src/text/licenses/NLOD-2.processed.0`: 19.9% similarity to "Any reference local", estimated risk 8 * `vendor/vendor/spdx-0.10.8/src/text/licenses/NPOSL-3.processed.0`: 18.5% similarity to "Public-Domain", estimated risk 8 * `vendor/vendor/spdx-0.10.8/src/text/licenses/O-UDA-1.processed.0`: 22% similarity to "LPPL-1.2", estimated risk 8 * `vendor/vendor/spdx-0.10.8/src/text/licenses/OCLC-2.processed.0`: 25.1% similarity to "GPL-2.0-only", estimated risk 8 * `vendor/vendor/spdx-0.10.8/src/text/licenses/OPUBL-1.processed.0`: 33.9% similarity to "Any no warranty", estimated risk 8 * `vendor/vendor/spdx-0.10.8/src/text/licenses/RPL-1.processed.1`: 45.8% similarity to "Bea License", estimated risk 8 * `vendor/vendor/spdx-0.10.8/src/text/licenses/SCEA.processed`: 23.1% similarity to "GPL-Unspecified", estimated risk 8 * `vendor/vendor/spdx-0.10.8/src/text/licenses/SISSL-1.processed.2`: 22.8% similarity to "SISSL License 1.1", estimated risk 8 * `vendor/vendor/spdx-0.10.8/src/text/licenses/SNIA.processed`: 27% similarity to "SNIA", estimated risk 8 * `vendor/vendor/spdx-0.10.8/src/text/licenses/SugarCRM-1.1.processed.3`: 32.3% similarity to "CPAL-1.0 OR Projity-EULA", estimated risk 8 * `vendor/vendor/spdx-0.10.8/src/text/licenses/TGPPL-1.0`: 31.2% similarity to "SOM", estimated risk 8 * `vendor/vendor/spdx-0.10.8/src/text/licenses/UCL-1.processed.0`: 22.7% similarity to "AFL-3.0", estimated risk 8 * `vendor/vendor/spdx-0.10.8/src/text/licenses/Unicode-TOU.processed`: 30.3% similarity to "Any no warranty", estimated risk 8 * `vendor/vendor/spdx-0.10.8/src/text/licenses/VOSTROM.processed`: 27.8% similarity to "GPL-Unspecified", estimated risk 8 * `vendor/vendor/spdx-0.10.8/src/text/licenses/Watcom-1.processed.0`: 23.4% similarity to "GPL-2.0-only", estimated risk 8 * `vendor/vendor/spdx-0.10.8/src/text/licenses/Zimbra-1.processed.3`: 28.3% similarity to "VMWare Confidential", estimated risk 8 * `vendor/vendor/spdx-0.10.8/src/text/licenses/Zimbra-1.processed.4`: 24.6% similarity to "CDDL-1.0", estimated risk 8 * `gleam-1.17.0/licences/CDLA-Permissive-2.0.txt`: 26.3% similarity to "Any floating warranty", estimated risk 7 * `vendor/vendor/aws-lc-rs-1.17.0/src/unstable/signature.rs`: 29.1% similarity to "Apache-2.0", estimated risk 7 * `vendor/vendor/aws-lc-sys-0.41.0/aws-lc/LICENSE.processed`: 41.6% similarity to "OpenSSL", estimated risk 7 * `vendor/vendor/insta-1.47.2/src/content/yaml/vendored/mod.rs`: 34.6% similarity to "Apache-2.0", estimated risk 7 * `vendor/vendor/quinn-0.11.9/README.processed.md`: 29.6% similarity to "MIT OR Apache-2.0", estimated risk 7 * `vendor/vendor/spdx-0.10.8/src/text/exceptions/DigiRule-FOSS-exception.processed`: 35.9% similarity to "GPL-3.0 WITH Floss-exception", estimated risk 7 * `vendor/vendor/spdx-0.10.8/src/text/exceptions/KiCad-libraries-exception.processed`: 59% similarity to "CC-BY-SA-4.0 WITH Material-Exception", estimated risk 7 * `vendor/vendor/spdx-0.10.8/src/text/exceptions/OCCT-exception-1.processed.0`: 30.7% similarity to "LGPL-2.1-only WITH OCCT-exception-1.0", estimated risk 7 * `vendor/vendor/spdx-0.10.8/src/text/exceptions/QPL-1.0-INRIA-2004-exception`: 32.9% similarity to "QPL-1.0", estimated risk 7 * `vendor/vendor/spdx-0.10.8/src/text/exceptions/SHL-2.processed.0`: 23.3% similarity to "Unicode", estimated risk 7 * `vendor/vendor/spdx-0.10.8/src/text/exceptions/SHL-2.processed.1`: 27.4% similarity to "MIT OR Apache-2.0", estimated risk 7 * `vendor/vendor/spdx-0.10.8/src/text/licenses/AFL-1.processed.1`: 41.1% similarity to "AFL-2.1", estimated risk 7 * `vendor/vendor/spdx-0.10.8/src/text/licenses/AFL-2.processed.0`: 35.1% similarity to "OSL-2.1", estimated risk 7 * `vendor/vendor/spdx-0.10.8/src/text/licenses/AFL-3.processed.0`: 34.9% similarity to "AFL-3.0", estimated risk 7 * `vendor/vendor/spdx-0.10.8/src/text/licenses/AMD-newlib`: 30.1% similarity to "ISC", estimated risk 7 * `vendor/vendor/spdx-0.10.8/src/text/licenses/AMDPLPA.processed`: 76.2% similarity to "Any unresolved", estimated risk 7 * `vendor/vendor/spdx-0.10.8/src/text/licenses/CC-BY-2.processed.5-AU`: 39.9% similarity to "CC-BY-SA-2.5", estimated risk 7 * `vendor/vendor/spdx-0.10.8/src/text/licenses/CC-BY-NC-1.processed.0`: 43.7% similarity to "CC-Sampling-Plus-1.0", estimated risk 7 * `vendor/vendor/spdx-0.10.8/src/text/licenses/CC-BY-NC-2.processed.5`: 42.6% similarity to "CC-Sampling-Plus-1.0", estimated risk 7 * `vendor/vendor/spdx-0.10.8/src/text/licenses/CC-BY-NC-ND-1.processed.0`: 46.9% similarity to "CC-Sampling-Plus-1.0", estimated risk 7 * `vendor/vendor/spdx-0.10.8/src/text/licenses/CC-BY-NC-ND-2.processed.0`: 59.2% similarity to "CC-Sampling-Plus-1.0", estimated risk 7 * `vendor/vendor/spdx-0.10.8/src/text/licenses/CC-BY-NC-SA-1.processed.0`: 44% similarity to "CC-Sampling-Plus-1.0", estimated risk 7 * `vendor/vendor/spdx-0.10.8/src/text/licenses/CC-BY-NC-SA-2.processed.0`: 42.3% similarity to "CC-Sampling-Plus-1.0", estimated risk 7 * `vendor/vendor/spdx-0.10.8/src/text/licenses/CC-BY-NC-SA-2.processed.5`: 41.6% similarity to "CC-BY-SA-2.5", estimated risk 7 * `vendor/vendor/spdx-0.10.8/src/text/licenses/CC-BY-NC-SA-3.processed.0-DE`: 27.4% similarity to "CC-BY-SA-3.0", estimated risk 7 * `vendor/vendor/spdx-0.10.8/src/text/licenses/CC-BY-SA-2.processed.0`: 39.9% similarity to "CC-BY-SA-2.5", estimated risk 7 * `vendor/vendor/spdx-0.10.8/src/text/licenses/CC-BY-SA-3.processed.0-IGO`: 42.5% similarity to "CC-BY-ND-1.0", estimated risk 7 * `vendor/vendor/spdx-0.10.8/src/text/licenses/CC-PDM-1.0`: 26.2% similarity to "Public-Domain", estimated risk 7 * `vendor/vendor/spdx-0.10.8/src/text/licenses/CC-SA-1.0`: 30.6% similarity to "CC-BY-SA-3.0", estimated risk 7 * `vendor/vendor/spdx-0.10.8/src/text/licenses/CECILL-2.0`: 39.2% similarity to "CECILL-C", estimated risk 7 * `vendor/vendor/spdx-0.10.8/src/text/licenses/CERN-OHL-1.processed.2`: 34.8% similarity to "Any reference local", estimated risk 7 * `vendor/vendor/spdx-0.10.8/src/text/licenses/CERN-OHL-P-2.0`: 28.7% similarity to "CDDL-1.0", estimated risk 7 * `vendor/vendor/spdx-0.10.8/src/text/licenses/COIL-1.0`: 34.4% similarity to "MIT", estimated risk 7 * `vendor/vendor/spdx-0.10.8/src/text/licenses/CPAL-1.processed.0`: 35.7% similarity to "MPL-1.1", estimated risk 7 * `vendor/vendor/spdx-0.10.8/src/text/licenses/CPOL-1.processed.02`: 34.5% similarity to "CC-BY-4.0", estimated risk 7 * `vendor/vendor/spdx-0.10.8/src/text/licenses/CUA-OPL-1.processed.0`: 41.2% similarity to "MPL-1.1", estimated risk 7 * `vendor/vendor/spdx-0.10.8/src/text/licenses/ECL-2.processed.0`: 34.8% similarity to "Apache-2.0", estimated risk 7 * `vendor/vendor/spdx-0.10.8/src/text/licenses/EPICS.processed`: 28.8% similarity to "Any reference local", estimated risk 7 * `vendor/vendor/spdx-0.10.8/src/text/licenses/Hippocratic-2.processed.1`: 60.8% similarity to "Hippocratic-2.1", estimated risk 7 * `vendor/vendor/spdx-0.10.8/src/text/licenses/IEC-Code-Components-EULA`: 31.1% similarity to "BSD-3-Clause", estimated risk 7 * `vendor/vendor/spdx-0.10.8/src/text/licenses/IJG-short`: 48.6% similarity to "Any permissive adv", estimated risk 7 * `vendor/vendor/spdx-0.10.8/src/text/licenses/IPA.processed`: 59.3% similarity to "IPA", estimated risk 7 * `vendor/vendor/spdx-0.10.8/src/text/licenses/Interbase-1.processed.0`: 27.2% similarity to "Interbase-1.0", estimated risk 7 * `vendor/vendor/spdx-0.10.8/src/text/licenses/LGPLLR.processed`: 48.7% similarity to "GPL-2.0-or-later", estimated risk 7 * `vendor/vendor/spdx-0.10.8/src/text/licenses/LPL-1.processed.02`: 46.1% similarity to "IPL-1.0", estimated risk 7 * `vendor/vendor/spdx-0.10.8/src/text/licenses/Lucida-Bitmap-Fonts`: 83.4% similarity to "Any Proprietary", estimated risk 7 * `vendor/vendor/spdx-0.10.8/src/text/licenses/MulanPSL-1.processed.0`: 23.8% similarity to "Any reference local", estimated risk 7 * `vendor/vendor/spdx-0.10.8/src/text/licenses/NICTA-1.0`: 34.7% similarity to "Any Permissive", estimated risk 7 * `vendor/vendor/spdx-0.10.8/src/text/licenses/NIST-Software`: 26.7% similarity to "X11", estimated risk 7 * `vendor/vendor/spdx-0.10.8/src/text/licenses/NOSL.processed`: 47% similarity to "Any non-modification", estimated risk 7 * `vendor/vendor/spdx-0.10.8/src/text/licenses/Nokia.processed`: 38.5% similarity to "MPL-1.0", estimated risk 7 * `vendor/vendor/spdx-0.10.8/src/text/licenses/Noweb.processed`: 23.6% similarity to "Ruby AND Public-Domain", estimated risk 7 * `vendor/vendor/spdx-0.10.8/src/text/licenses/OGTSL.processed`: 27.6% similarity to "Artistic-1.0", estimated risk 7 * `vendor/vendor/spdx-0.10.8/src/text/licenses/OLFL-1.3`: 31.1% similarity to "FTL", estimated risk 7 * `vendor/vendor/spdx-0.10.8/src/text/licenses/OSL-1.processed.0`: 35.1% similarity to "OSL-2.1", estimated risk 7 * `vendor/vendor/spdx-0.10.8/src/text/licenses/OSL-1.processed.1`: 26.8% similarity to "Public-Domain", estimated risk 7 * `vendor/vendor/spdx-0.10.8/src/text/licenses/OSL-2.processed.0`: 28.7% similarity to "OSL-2.1", estimated risk 7 * `vendor/vendor/spdx-0.10.8/src/text/licenses/OSL-2.processed.1`: 29.1% similarity to "OSL-2.1", estimated risk 7 * `vendor/vendor/spdx-0.10.8/src/text/licenses/OSL-3.processed.0`: 31.4% similarity to "AFL-3.0", estimated risk 7 * `vendor/vendor/spdx-0.10.8/src/text/licenses/Parity-6.0.0`: 25.6% similarity to "Any Permissive", estimated risk 7 * `vendor/vendor/spdx-0.10.8/src/text/licenses/PolyForm-Small-Business-1.0.0`: 24.1% similarity to "Any reference local", estimated risk 7 * `vendor/vendor/spdx-0.10.8/src/text/licenses/QPL-1.processed.0`: 40.3% similarity to "QPL-1.0", estimated risk 7 * `vendor/vendor/spdx-0.10.8/src/text/licenses/SGI-B-1.processed.1`: 54.5% similarity to "SGI-B-1.1", estimated risk 7 * `vendor/vendor/spdx-0.10.8/src/text/licenses/SHL-0.processed.5`: 21.8% similarity to "Unicode", estimated risk 7 * `vendor/vendor/spdx-0.10.8/src/text/licenses/SHL-0.processed.51`: 33.6% similarity to "Apache-2.0", estimated risk 7 * `vendor/vendor/spdx-0.10.8/src/text/licenses/SMPPL.processed`: 28.6% similarity to "Any Permissive", estimated risk 7 * `vendor/vendor/spdx-0.10.8/src/text/licenses/SPL-1.processed.0`: 47.1% similarity to "Any non-modification", estimated risk 7 * `vendor/vendor/spdx-0.10.8/src/text/licenses/TPL-1.0`: 51.5% similarity to "Any non-modification", estimated risk 7 * `vendor/vendor/spdx-0.10.8/src/text/licenses/YPL-1.processed.0`: 32.4% similarity to "Any reference local", estimated risk 7 * `vendor/vendor/spdx-0.10.8/src/text/licenses/copyleft-next-0.3.1`: 33% similarity to "Apache-2.0", estimated risk 7 * `vendor/vendor/spdx-0.10.8/src/text/licenses/gSOAP-1.processed.3b`: 35.5% similarity to "CDDL-1.0", estimated risk 7 * `vendor/vendor/spdx-0.10.8/src/text/licenses/iMatix.processed`: 22.6% similarity to "Artistic-1.0-Perl OR GPL-1.0-or-later", estimated risk 7 * `vendor/vendor/tracing-subscriber-0.3.23/src/fmt/time/datetime.rs`: 34.4% similarity to "BSD-2-Clause", estimated risk 7 * `vendor/vendor/webpki-root-certs-1.0.7/LICENSE`: 31% similarity to "Any reference local", estimated risk 7 * `vendor/vendor/priority-queue-2.3.1/README.processed.md`: 52% similarity to "MPL-2.0", estimated risk 6 * `vendor/vendor/spdx-0.10.8/src/text/exceptions/CGAL-linking-exception`: 51.8% similarity to "QPL-1.0", estimated risk 6 * `vendor/vendor/spdx-0.10.8/src/text/exceptions/GCC-exception-3.processed.1`: 38.2% similarity to "GCC-exception-3.1", estimated risk 6 * `vendor/vendor/spdx-0.10.8/src/text/exceptions/RRDtool-FLOSS-exception-2.0`: 32.4% similarity to "GPL-2.0 WITH FLOSS-exception", estimated risk 6 * `vendor/vendor/spdx-0.10.8/src/text/exceptions/erlang-otp-linking-exception`: 51.2% similarity to "ErlPL-1.1", estimated risk 6 * `vendor/vendor/spdx-0.10.8/src/text/exceptions/fmt-exception`: 48.4% similarity to "MIT", estimated risk 6 * `vendor/vendor/spdx-0.10.8/src/text/licenses/AAL.processed`: 37.7% similarity to "BSD-3-Clause", estimated risk 6 * `vendor/vendor/spdx-0.10.8/src/text/licenses/AFL-1.processed.2`: 48.1% similarity to "AFL-2.1", estimated risk 6 * `vendor/vendor/spdx-0.10.8/src/text/licenses/AGPL-1.processed.0`: 55.3% similarity to "GPL-2.0-or-later", estimated risk 6 * `vendor/vendor/spdx-0.10.8/src/text/licenses/AGPL-1.processed.0-or-later`: 62.6% similarity to "GPL-2.0-only", estimated risk 6 * `vendor/vendor/spdx-0.10.8/src/text/licenses/ASWF-Digital-Assets-1.processed.0`: 44.6% similarity to "BSD-3-Clause", estimated risk 6 * `vendor/vendor/spdx-0.10.8/src/text/licenses/ASWF-Digital-Assets-1.processed.1`: 42.8% similarity to "BSD-3-Clause", estimated risk 6 * `vendor/vendor/spdx-0.10.8/src/text/licenses/BSD-Systemics-W3Works`: 42.2% similarity to "BSD-3-Clause", estimated risk 6 * `vendor/vendor/spdx-0.10.8/src/text/licenses/Bahyph.processed`: 37.7% similarity to "Any Permissive", estimated risk 6 * `vendor/vendor/spdx-0.10.8/src/text/licenses/Borceux.processed`: 33.2% similarity to "Any Permissive", estimated risk 6 * `vendor/vendor/spdx-0.10.8/src/text/licenses/CC-BY-1.processed.0`: 45.1% similarity to "CC-BY-1.0", estimated risk 6 * `vendor/vendor/spdx-0.10.8/src/text/licenses/CC-BY-2.processed.5`: 47.2% similarity to "CC-BY-2.5", estimated risk 6 * `vendor/vendor/spdx-0.10.8/src/text/licenses/CC-BY-3.processed.0-US`: 48.8% similarity to "CC-BY-3.0", estimated risk 6 * `vendor/vendor/spdx-0.10.8/src/text/licenses/CC-BY-4.processed.0`: 56.2% similarity to "CC-BY-4.0", estimated risk 6 * `vendor/vendor/spdx-0.10.8/src/text/licenses/CC-BY-NC-2.processed.0`: 47.2% similarity to "CC-BY-2.5", estimated risk 6 * `vendor/vendor/spdx-0.10.8/src/text/licenses/CC-BY-ND-1.processed.0`: 45.7% similarity to "CC-BY-1.0", estimated risk 6 * `vendor/vendor/spdx-0.10.8/src/text/licenses/CC-BY-ND-2.processed.0`: 51.8% similarity to "CC-BY-SA-3.0", estimated risk 6 * `vendor/vendor/spdx-0.10.8/src/text/licenses/CC-BY-ND-2.processed.5`: 47% similarity to "CC-BY-2.5", estimated risk 6 * `vendor/vendor/spdx-0.10.8/src/text/licenses/CC-BY-SA-1.processed.0`: 41.5% similarity to "CC-BY-1.0", estimated risk 6 * `vendor/vendor/spdx-0.10.8/src/text/licenses/CC-BY-SA-2.processed.5`: 50% similarity to "CC-BY-SA-2.5", estimated risk 6 * `vendor/vendor/spdx-0.10.8/src/text/licenses/Caldera.processed`: 87.3% similarity to "BSD-4-Clause", estimated risk 6 * `vendor/vendor/spdx-0.10.8/src/text/licenses/Condor-1.processed.1`: 38% similarity to "VP8", estimated risk 6 * `vendor/vendor/spdx-0.10.8/src/text/licenses/DSDP.processed`: 32.1% similarity to "Any Permissive", estimated risk 6 * `vendor/vendor/spdx-0.10.8/src/text/licenses/GLWTPL`: 34% similarity to "Any floating warranty", estimated risk 6 * `vendor/vendor/spdx-0.10.8/src/text/licenses/Info-ZIP.processed`: 45.5% similarity to "infozip", estimated risk 6 * `vendor/vendor/spdx-0.10.8/src/text/licenses/InnoSetup`: 43% similarity to "regex", estimated risk 6 * `vendor/vendor/spdx-0.10.8/src/text/licenses/LPPL-1.processed.0`: 82.5% similarity to "Any permissive nomod", estimated risk 6 * `vendor/vendor/spdx-0.10.8/src/text/licenses/NGPL.processed`: 49.5% similarity to "LGPL-2.1-or-later", estimated risk 6 * `vendor/vendor/spdx-0.10.8/src/text/licenses/NIST-PD`: 37.1% similarity to "Public-Domain", estimated risk 6 * `vendor/vendor/spdx-0.10.8/src/text/licenses/NLPL`: 43% similarity to "Any reference local", estimated risk 6 * `vendor/vendor/spdx-0.10.8/src/text/licenses/NRL.processed`: 74.6% similarity to "BSD-4-Clause", estimated risk 6 * `vendor/vendor/spdx-0.10.8/src/text/licenses/Net-SNMP.processed`: 48.6% similarity to "BSD-3-Clause OR LGPL-2.1-or-later", estimated risk 6 * `vendor/vendor/spdx-0.10.8/src/text/licenses/OLDAP-1.processed.4`: 46.5% similarity to "Artistic-2.0", estimated risk 6 * `vendor/vendor/spdx-0.10.8/src/text/licenses/OML.processed`: 73.1% similarity to "Any permissive odd", estimated risk 6 * `vendor/vendor/spdx-0.10.8/src/text/licenses/SGI-B-1.processed.0`: 79.2% similarity to "SGI-B-1.0", estimated risk 6 * `vendor/vendor/spdx-0.10.8/src/text/licenses/SMAIL-GPL`: 53.9% similarity to "GPL-2.0+", estimated risk 6 * `vendor/vendor/spdx-0.10.8/src/text/licenses/TORQUE-1.processed.1`: 95.8% similarity to "Any unresolvable", estimated risk 6 * `vendor/vendor/spdx-0.10.8/src/text/licenses/TrustedQSL`: 35.7% similarity to "BSD-3-Clause", estimated risk 6 * `vendor/vendor/spdx-0.10.8/src/text/licenses/ZPL-1.processed.1`: 42.3% similarity to "BSD-3-Clause", estimated risk 6 * `vendor/vendor/spdx-0.10.8/src/text/licenses/diffmark`: 39.4% similarity to "Any floating warranty", estimated risk 6 * `vendor/vendor/spdx-0.10.8/src/text/licenses/libselinux-1.0`: 35.9% similarity to "Any floating warranty", estimated risk 6 * `vendor/vendor/spdx-0.10.8/src/text/licenses/psutils.processed`: 71.9% similarity to "Any permissive nomod", estimated risk 6 * `vendor/vendor/untrusted-0.9.0/src/lib.rs`: 50% similarity to "ISC", estimated risk 6 * `vendor/vendor/age-0.11.3/README.processed.md`: 69.7% similarity to "Apache-2.0 OR MIT", estimated risk 5 * `vendor/vendor/arc-swap-1.7.1/README.md`: 74.8% similarity to "Apache-2.0 OR MIT", estimated risk 5 * `vendor/vendor/normpath-1.2.0/README.md`: 54.8% similarity to "Apache-2.0 OR MIT", estimated risk 5 * `vendor/vendor/objc2-encode-4.1.0/Cargo.toml.orig`: 47.1% similarity to "MIT OR Apache-2.0", estimated risk 5 * `vendor/vendor/proc-macro-error2-2.0.1/README.processed.md`: 67.6% similarity to "MIT OR Apache-2.0", estimated risk 5 * `vendor/vendor/ring-0.17.13/README.md`: 73.1% similarity to "Any floating warranty", estimated risk 5 * `vendor/vendor/ring-0.17.13/crypto/fipsmodule/sha/asm/sha512-x86_64.pl`: 75.6% similarity to "Apache-2.0", estimated risk 5 * `vendor/vendor/secrecy-0.10.3/README.processed.md`: 65.8% similarity to "Apache-2.0 OR MIT", estimated risk 5 * `vendor/vendor/spdx-0.10.8/src/text/exceptions/Autoconf-exception-3.processed.0`: 58.1% similarity to "GCC-exception-3.1", estimated risk 5 * `vendor/vendor/spdx-0.10.8/src/text/exceptions/Bison-exception-1.24`: 70.5% similarity to "GPL-2.0+ WITH Bison-Exception-1.24", estimated risk 5 * `vendor/vendor/spdx-0.10.8/src/text/exceptions/Bootloader-exception`: 67.3% similarity to "GPL-2.0-or-later WITH Bootloader-exception", estimated risk 5 * `vendor/vendor/spdx-0.10.8/src/text/exceptions/GCC-exception-2.0-note`: 84.3% similarity to "LGPL-2.1 WITH Linking-exception", estimated risk 5 * `vendor/vendor/spdx-0.10.8/src/text/exceptions/GPL-3.processed.0-interface-exception`: 70.7% similarity to "GPL-2.0 WITH OpenSSL-exception", estimated risk 5 * `vendor/vendor/spdx-0.10.8/src/text/exceptions/GPL-3.processed.0-linking-exception`: 73.6% similarity to "GPL-3.0+ WITH OpenSSL-exception", estimated risk 5 * `vendor/vendor/spdx-0.10.8/src/text/exceptions/GPL-3.processed.0-linking-source-exception`: 80.4% similarity to "GPL-2.0+ WITH OpenSSL-exception", estimated risk 5 * `vendor/vendor/spdx-0.10.8/src/text/exceptions/GStreamer-exception-2008.processed`: 73.2% similarity to "GPL-2.0+ WITH Linking-exception", estimated risk 5 * `vendor/vendor/spdx-0.10.8/src/text/exceptions/LGPL-3.0-linking-exception`: 87.8% similarity to "LGPL-3.0 WITH Exceptions", estimated risk 5 * `vendor/vendor/spdx-0.10.8/src/text/exceptions/Libtool-exception.processed`: 81.4% similarity to "LGPL-2.1 WITH Linking-exception", estimated risk 5 * `vendor/vendor/spdx-0.10.8/src/text/exceptions/SANE-exception`: 88.5% similarity to "GPL-2.0+ WITH Linking-exception", estimated risk 5 * `vendor/vendor/spdx-0.10.8/src/text/exceptions/Texinfo-exception`: 74.5% similarity to "GPL-3.0+ WITH Tex-exception", estimated risk 5 * `vendor/vendor/spdx-0.10.8/src/text/exceptions/freertos-exception-2.processed.0`: 64.6% similarity to "GPL-2.0+ OR Commercial", estimated risk 5 * `vendor/vendor/spdx-0.10.8/src/text/exceptions/harbour-exception`: 76.2% similarity to "GPL-2.0 WITH GUILE-exception", estimated risk 5 * `vendor/vendor/spdx-0.10.8/src/text/exceptions/i2p-gpl-java-exception.processed`: 63.3% similarity to "GPL-2.0 WITH OpenSSL-exception", estimated risk 5 * `vendor/vendor/spdx-0.10.8/src/text/exceptions/openvpn-openssl-exception.processed`: 79% similarity to "GPL-2.0 WITH OpenSSL-exception", estimated risk 5 * `vendor/vendor/spdx-0.10.8/src/text/exceptions/vsftpd-openssl-exception`: 76.6% similarity to "GPL-2.0 WITH OpenSSL-exception", estimated risk 5 * `vendor/vendor/spdx-0.10.8/src/text/exceptions/x11vnc-openssl-exception`: 81.1% similarity to "GPL-2.0+ WITH OpenSSL-exception", estimated risk 5 * `vendor/vendor/spdx-0.10.8/src/text/licenses/AGPL-1.processed.0-only`: 79.7% similarity to "LGPL-2.1-or-later", estimated risk 5 * `vendor/vendor/spdx-0.10.8/src/text/licenses/AMPAS.processed`: 58.8% similarity to "BSD-3-Clause", estimated risk 5 * `vendor/vendor/spdx-0.10.8/src/text/licenses/Adobe-2006.processed`: 44.3% similarity to "Be sample", estimated risk 5 * `vendor/vendor/spdx-0.10.8/src/text/licenses/Artistic-1.processed.0-cl8`: 70.7% similarity to "Artistic-1.0", estimated risk 5 * `vendor/vendor/spdx-0.10.8/src/text/licenses/BSD-3-Clause-Attribution.processed`: 79.2% similarity to "BSD-3-Clause", estimated risk 5 * `vendor/vendor/spdx-0.10.8/src/text/licenses/BSD-3-Clause-No-Military-License.processed`: 78.7% similarity to "BSD-3-Clause", estimated risk 5 * `vendor/vendor/spdx-0.10.8/src/text/licenses/BSD-Advertising-Acknowledgement`: 87.7% similarity to "BSD-4-Clause", estimated risk 5 * `vendor/vendor/spdx-0.10.8/src/text/licenses/BSD-Source-Code.processed`: 85.6% similarity to "Any Permissive", estimated risk 5 * `vendor/vendor/spdx-0.10.8/src/text/licenses/BSD-Systemics`: 79.3% similarity to "DES Young adv", estimated risk 5 * `vendor/vendor/spdx-0.10.8/src/text/licenses/Barr.processed`: 80.3% similarity to "LPPL-1.3", estimated risk 5 * `vendor/vendor/spdx-0.10.8/src/text/licenses/CC-BY-2.processed.0`: 59.4% similarity to "CC-BY-2.0", estimated risk 5 * `vendor/vendor/spdx-0.10.8/src/text/licenses/CC-BY-NC-4.processed.0`: 69.3% similarity to "CC-BY-SA-4.0", estimated risk 5 * `vendor/vendor/spdx-0.10.8/src/text/licenses/CC-BY-NC-ND-2.processed.5`: 86.2% similarity to "CC-BY-SA-3.0", estimated risk 5 * `vendor/vendor/spdx-0.10.8/src/text/licenses/CC-BY-NC-ND-4.processed.0`: 69.8% similarity to "CC-BY-4.0", estimated risk 5 * `vendor/vendor/spdx-0.10.8/src/text/licenses/CC-BY-ND-3.0`: 97.4% similarity to "CC-BY-ND-1.0", estimated risk 5 * `vendor/vendor/spdx-0.10.8/src/text/licenses/CDLA-Permissive-2.processed.0`: 50.4% similarity to "Any floating warranty", estimated risk 5 * `vendor/vendor/spdx-0.10.8/src/text/licenses/Catharon`: 57.5% similarity to "catharon", estimated risk 5 * `vendor/vendor/spdx-0.10.8/src/text/licenses/Cronyx`: 75.9% similarity to "Any Permissive", estimated risk 5 * `vendor/vendor/spdx-0.10.8/src/text/licenses/DOC.processed`: 82.7% similarity to "Any Permissive", estimated risk 5 * `vendor/vendor/spdx-0.10.8/src/text/licenses/DRL-1.processed.0`: 60.4% similarity to "MIT", estimated risk 5 * `vendor/vendor/spdx-0.10.8/src/text/licenses/DRL-1.processed.1`: 56.5% similarity to "MIT", estimated risk 5 * `vendor/vendor/spdx-0.10.8/src/text/licenses/ECL-1.processed.0`: 67.5% similarity to "XMLDB API License", estimated risk 5 * `vendor/vendor/spdx-0.10.8/src/text/licenses/EFL-1.processed.0`: 64.5% similarity to "Any Permissive", estimated risk 5 * `vendor/vendor/spdx-0.10.8/src/text/licenses/EFL-2.processed.0`: 55.7% similarity to "Any floating warranty", estimated risk 5 * `vendor/vendor/spdx-0.10.8/src/text/licenses/EUDatagrid.processed`: 68% similarity to "Geant-4.0", estimated risk 5 * `vendor/vendor/spdx-0.10.8/src/text/licenses/Entessa.processed`: 89.9% similarity to "Apache-1.1", estimated risk 5 * `vendor/vendor/spdx-0.10.8/src/text/licenses/Ferguson-Twofish`: 88.7% similarity to "GPL-Unspecified", estimated risk 5 * `vendor/vendor/spdx-0.10.8/src/text/licenses/FreeBSD-DOC.processed`: 67.8% similarity to "BSD-2-Clause", estimated risk 5 * `vendor/vendor/spdx-0.10.8/src/text/licenses/GPL-3.processed.0-with-autoconf-exception`: 58.1% similarity to "GCC-exception-3.1", estimated risk 5 * `vendor/vendor/spdx-0.10.8/src/text/licenses/HPND-INRIA-IMAG`: 85.9% similarity to "Any Permissive", estimated risk 5 * `vendor/vendor/spdx-0.10.8/src/text/licenses/HPND.processed`: 88.7% similarity to "X11", estimated risk 5 * `vendor/vendor/spdx-0.10.8/src/text/licenses/ImageMagick.processed`: 86.8% similarity to "Apache-2.0", estimated risk 5 * `vendor/vendor/spdx-0.10.8/src/text/licenses/Inner-Net-2.0`: 86.1% similarity to "BSD-3-Clause", estimated risk 5 * `vendor/vendor/spdx-0.10.8/src/text/licenses/Knuth-CTAN`: 74.8% similarity to "Any perm rename", estimated risk 5 * `vendor/vendor/spdx-0.10.8/src/text/licenses/LOOP`: 68.9% similarity to "XFree86", estimated risk 5 * `vendor/vendor/spdx-0.10.8/src/text/licenses/MIT-Click`: 68.5% similarity to "MIT", estimated risk 5 * `vendor/vendor/spdx-0.10.8/src/text/licenses/MS-LPL.processed`: 91.1% similarity to "Microsoft Public License", estimated risk 5 * `vendor/vendor/spdx-0.10.8/src/text/licenses/Multics.processed`: 50.3% similarity to "HPND", estimated risk 5 * `vendor/vendor/spdx-0.10.8/src/text/licenses/NBPL-1.processed.0`: 56.5% similarity to "Artistic-1.0", estimated risk 5 * `vendor/vendor/spdx-0.10.8/src/text/licenses/NCBI-PD`: 78.5% similarity to "Public-Domain", estimated risk 5 * `vendor/vendor/spdx-0.10.8/src/text/licenses/NCL`: 83.8% similarity to "BSD-3-Clause", estimated risk 5 * `vendor/vendor/spdx-0.10.8/src/text/licenses/NIST-PD-fallback.processed`: 50.1% similarity to "X11", estimated risk 5 * `vendor/vendor/spdx-0.10.8/src/text/licenses/Naumen.processed`: 79.7% similarity to "ZPL-2.0", estimated risk 5 * `vendor/vendor/spdx-0.10.8/src/text/licenses/Newsletr.processed`: 66% similarity to "PCRE", estimated risk 5 * `vendor/vendor/spdx-0.10.8/src/text/licenses/OGC-1.processed.0`: 74.4% similarity to "W3C", estimated risk 5 * `vendor/vendor/spdx-0.10.8/src/text/licenses/OLDAP-1.processed.3`: 52.6% similarity to "Artistic-2.0", estimated risk 5 * `vendor/vendor/spdx-0.10.8/src/text/licenses/OLDAP-2.2.processed.1`: 74.8% similarity to "OLDAP-2.0.1", estimated risk 5 * `vendor/vendor/spdx-0.10.8/src/text/licenses/OLDAP-2.processed.1`: 82.3% similarity to "OLDAP-2.0.1", estimated risk 5 * `vendor/vendor/spdx-0.10.8/src/text/licenses/OLDAP-2.processed.2`: 74.8% similarity to "OLDAP-2.0.1", estimated risk 5 * `vendor/vendor/spdx-0.10.8/src/text/licenses/OLDAP-2.processed.3`: 75% similarity to "OLDAP-2.7", estimated risk 5 * `vendor/vendor/spdx-0.10.8/src/text/licenses/OLDAP-2.processed.4`: 81.6% similarity to "OLDAP-2.7", estimated risk 5 * `vendor/vendor/spdx-0.10.8/src/text/licenses/OLDAP-2.processed.5`: 82.9% similarity to "OLDAP-2.7", estimated risk 5 * `vendor/vendor/spdx-0.10.8/src/text/licenses/OLDAP-2.processed.6`: 85.3% similarity to "OLDAP-2.7", estimated risk 5 * `vendor/vendor/spdx-0.10.8/src/text/licenses/Python-2.processed.0`: 88.1% similarity to "Python 1.6b2 - 2.1", estimated risk 5 * `vendor/vendor/spdx-0.10.8/src/text/licenses/Qhull.processed`: 81.3% similarity to "Qhull", estimated risk 5 * `vendor/vendor/spdx-0.10.8/src/text/licenses/Rdisc.processed`: 88.2% similarity to "Any Permissive", estimated risk 5 * `vendor/vendor/spdx-0.10.8/src/text/licenses/SSH-OpenSSH`: 63.8% similarity to "Any floating warranty", estimated risk 5 * `vendor/vendor/spdx-0.10.8/src/text/licenses/Saxpath.processed`: 81.2% similarity to "Saxpath", estimated risk 5 * `vendor/vendor/spdx-0.10.8/src/text/licenses/Sendmail-8.processed.23`: 82.4% similarity to "Sendmail", estimated risk 5 * `vendor/vendor/spdx-0.10.8/src/text/licenses/Sendmail-Open-Source-1.1`: 86% similarity to "Sendmail", estimated risk 5 * `vendor/vendor/spdx-0.10.8/src/text/licenses/Sendmail.processed`: 88.7% similarity to "Sendmail", estimated risk 5 * `vendor/vendor/spdx-0.10.8/src/text/licenses/Sleepycat.processed`: 86.1% similarity to "BSD-3-Clause", estimated risk 5 * `vendor/vendor/spdx-0.10.8/src/text/licenses/TMate.processed`: 87.1% similarity to "Any Copyleft", estimated risk 5 * `vendor/vendor/spdx-0.10.8/src/text/licenses/TOSL.processed`: 86.3% similarity to "Any Copyleft", estimated risk 5 * `vendor/vendor/spdx-0.10.8/src/text/licenses/TPDL.processed`: 47.6% similarity to "TTWL", estimated risk 5 * `vendor/vendor/spdx-0.10.8/src/text/licenses/TTYP0`: 88% similarity to "MIT", estimated risk 5 * `vendor/vendor/spdx-0.10.8/src/text/licenses/UCAR`: 54.9% similarity to "BSD-3-Clause", estimated risk 5 * `vendor/vendor/spdx-0.10.8/src/text/licenses/W3C-19980720.processed`: 83.4% similarity to "W3C", estimated risk 5 * `vendor/vendor/spdx-0.10.8/src/text/licenses/XSkat.processed`: 55.4% similarity to "Any no warranty", estimated risk 5 * `vendor/vendor/spdx-0.10.8/src/text/licenses/Zed`: 78.7% similarity to "Any perm rename", estimated risk 5 * `vendor/vendor/spdx-0.10.8/src/text/licenses/any-OSI-perl-modules`: 70% similarity to "BSD-Unspecified", estimated risk 5 * `vendor/vendor/spdx-0.10.8/src/text/licenses/check-cvs`: 72% similarity to "Any Permissive", estimated risk 5 * `vendor/vendor/spdx-0.10.8/src/text/licenses/hdparm`: 57% similarity to "Any Permissive", estimated risk 5 * `vendor/vendor/spdx-0.10.8/src/text/licenses/libpng-2.0`: 68% similarity to "regex", estimated risk 5 * `vendor/vendor/spdx-0.10.8/src/text/licenses/libutil-David-Nugent.processed`: 50.6% similarity to "BSD-2-Clause", estimated risk 5 * `vendor/vendor/spdx-0.10.8/src/text/licenses/ulem`: 70.8% similarity to "BSD-3-Clause", estimated risk 5 * `vendor/vendor/spdx-0.10.8/src/text/licenses/w3m`: 88.4% similarity to "ISC", estimated risk 5 * `vendor/vendor/spdx-0.10.8/src/text/licenses/xinetd.processed`: 53.5% similarity to "xinetd", estimated risk 5 * `vendor/vendor/spdx-0.10.8/src/text/licenses/zlib-acknowledgement.processed`: 88.1% similarity to "regex", estimated risk 5 * `vendor/vendor/zeroize_derive-1.4.2/README.md`: 68.7% similarity to "Apache-2.0 OR MIT", estimated risk 5 * `vendor/vendor/spdx-0.10.8/src/text/licenses/GPL-1.processed.0+`: 98% similarity to "GPL-1.0-or-later", estimated risk 4 * `vendor/vendor/spdx-0.10.8/src/text/licenses/GPL-1.processed.0-or-later`: 98% similarity to "GPL-1.0-or-later", estimated risk 4 * `vendor/vendor/spdx-0.10.8/src/text/licenses/XFree86-1.processed.1`: 91.2% similarity to "XFree86-1.1", estimated risk 4 * `vendor/vendor/priority-queue-2.3.1/src/priority_queue/iterators.rs`: 90.2% similarity to "MPL-2.0 OR GPL-3.0-or-later", estimated risk 3 * `vendor/vendor/spdx-0.10.8/src/text/exceptions/Gmsh-exception`: 96.8% similarity to "GPL-2.0+ WITH Exception", estimated risk 3 * `vendor/vendor/spdx-0.10.8/src/text/licenses/Apache-1.processed.0`: 92.3% similarity to "Apache-1.1", estimated risk 3 * `vendor/vendor/spdx-0.10.8/src/text/licenses/BSD-3-Clause-Clear.processed`: 92.6% similarity to "BSD-3-Clause-Clear", estimated risk 3 * `vendor/vendor/spdx-0.10.8/src/text/licenses/CNRI-Jython.processed`: 99% similarity to "CNRI scgi", estimated risk 3 * `vendor/vendor/spdx-0.10.8/src/text/licenses/CNRI-Python-GPL-Compatible.processed`: 90.9% similarity to "Python >= 2.0.1", estimated risk 3 * `vendor/vendor/spdx-0.10.8/src/text/licenses/CNRI-Python.processed`: 96.5% similarity to "Python 1.6b2 - 2.1", estimated risk 3 * `vendor/vendor/spdx-0.10.8/src/text/licenses/Clips`: 91.9% similarity to "X11", estimated risk 3 * `vendor/vendor/spdx-0.10.8/src/text/licenses/LGPL-2.processed.0+`: 98.9% similarity to "LGPL-2.0-or-later", estimated risk 3 * `vendor/vendor/spdx-0.10.8/src/text/licenses/LGPL-2.processed.0-or-later`: 98.9% similarity to "LGPL-2.0-or-later", estimated risk 3 * `vendor/vendor/spdx-0.10.8/src/text/licenses/LGPL-2.processed.1+`: 99.6% similarity to "LGPL-2.1-or-later", estimated risk 3 * `vendor/vendor/spdx-0.10.8/src/text/licenses/LGPL-2.processed.1-or-later`: 99.6% similarity to "LGPL-2.1-or-later", estimated risk 3 * `vendor/vendor/spdx-0.10.8/src/text/licenses/Libpng.processed`: 92.6% similarity to "Libpng", estimated risk 3 * `vendor/vendor/spdx-0.10.8/src/text/licenses/MTLL.processed`: 92.5% similarity to "Apache-1.1 like", estimated risk 3 * `vendor/vendor/spdx-0.10.8/src/text/licenses/Mackerras-3-Clause-acknowledgment`: 92.2% similarity to "BSD-3-Clause", estimated risk 3 * `vendor/vendor/spdx-0.10.8/src/text/licenses/Nunit.processed`: 90.2% similarity to "regex", estimated risk 3 * `vendor/vendor/spdx-0.10.8/src/text/licenses/OLDAP-2.processed.0`: 92.7% similarity to "OLDAP-2.0.1", estimated risk 3 * `vendor/vendor/spdx-0.10.8/src/text/licenses/QPL-1.0-INRIA-2004`: 99.9% similarity to "QPL-1.0", estimated risk 3 * `vendor/vendor/spdx-0.10.8/src/text/licenses/Ruby.processed`: 91.1% similarity to "Ruby", estimated risk 3 * `vendor/vendor/spdx-0.10.8/src/text/licenses/SISSL.processed`: 100% similarity to "SISSL License 1.1", estimated risk 3 * `vendor/vendor/spdx-0.10.8/src/text/licenses/VSL-1.processed.0`: 92.4% similarity to "BSD-3-Clause", estimated risk 3 * `vendor/vendor/spdx-0.10.8/src/text/licenses/Wsuipa.processed`: 92% similarity to "Any perm rename", estimated risk 3 * `vendor/vendor/spdx-0.10.8/src/text/licenses/Xerox.processed`: 92.1% similarity to "ISC", estimated risk 3 * `vendor/vendor/aws-lc-sys-0.41.0/aws-lc/third_party/jitterentropy/jitterentropy-library/arch/jitterentropy-base-windows.h`: 99.1% similarity to "BSD-3-Clause OR GPL-2.0+", estimated risk 2 * `vendor/vendor/debug-ignore-1.0.5/README.tpl`: 91.8% similarity to "MIT OR Apache-2.0", estimated risk 2 * `vendor/vendor/spdx-0.10.8/src/text/exceptions/Independent-modules-exception`: 93.1% similarity to "LGPL-2.1 WITH Linking-exception", estimated risk 2 * `vendor/vendor/spdx-0.10.8/src/text/exceptions/stunnel-exception.processed`: 96% similarity to "GPL-2.0 WITH OpenSSL-exception", estimated risk 2 * `vendor/vendor/spdx-0.10.8/src/text/licenses/BSD-1-Clause.processed`: 97.4% similarity to "BSD-2-Clause", estimated risk 2 * `vendor/vendor/spdx-0.10.8/src/text/licenses/BSD-3-Clause-HP`: 99.2% similarity to "BSD-3-Clause", estimated risk 2 * `vendor/vendor/spdx-0.10.8/src/text/licenses/BSD-3-Clause-Modification`: 94.4% similarity to "Repoze Public License", estimated risk 2 * `vendor/vendor/spdx-0.10.8/src/text/licenses/BSD-3-Clause-acpica`: 93.3% similarity to "BSD-3-Clause", estimated risk 2 * `vendor/vendor/spdx-0.10.8/src/text/licenses/CFITSIO.processed`: 95.2% similarity to "X11", estimated risk 2 * `vendor/vendor/spdx-0.10.8/src/text/licenses/GFDL-1.processed.1-or-later`: 99.9% similarity to "GFDL-1.1-only", estimated risk 2 * `vendor/vendor/spdx-0.10.8/src/text/licenses/HPND-MIT-disclaimer`: 97.4% similarity to "MIT", estimated risk 2 * `vendor/vendor/spdx-0.10.8/src/text/licenses/Intel-ACPI.processed`: 95.6% similarity to "Intel ACPICA", estimated risk 2 * `vendor/vendor/spdx-0.10.8/src/text/licenses/Intel.processed`: 93.6% similarity to "BSD-3-Clause", estimated risk 2 * `vendor/vendor/spdx-0.10.8/src/text/licenses/MIT-open-group`: 100% similarity to "X11", estimated risk 2 * `vendor/vendor/spdx-0.10.8/src/text/licenses/MakeIndex.processed`: 98.7% similarity to "Any GPL permissive addon", estimated risk 2 * `vendor/vendor/spdx-0.10.8/src/text/licenses/MirOS.processed`: 97.6% similarity to "ISC", estimated risk 2 * `vendor/vendor/spdx-0.10.8/src/text/licenses/OLDAP-2.processed.7`: 90.1% similarity to "OLDAP-2.7", estimated risk 2 * `vendor/vendor/spdx-0.10.8/src/text/licenses/SMLNJ.processed`: 93.7% similarity to "HPND", estimated risk 2 * `vendor/vendor/spdx-0.10.8/src/text/licenses/StandardML-NJ.processed`: 93.7% similarity to "HPND", estimated risk 2 * `vendor/vendor/spdx-0.10.8/src/text/licenses/Unicode-DFS-2015.processed`: 93.6% similarity to "Unicode-TOU", estimated risk 2 * `vendor/vendor/spdx-0.10.8/src/text/licenses/W3C-20150513.processed`: 99.6% similarity to "W3C", estimated risk 2 * `vendor/vendor/spdx-0.10.8/src/text/licenses/pnmstitch`: 96.4% similarity to "Any permissive keep free", estimated risk 2 * `vendor/vendor/aws-lc-sys-0.41.0/aws-lc/third_party/jitterentropy/jitterentropy-library/src/jitterentropy-base.h`: 99.1% similarity to "Any floating warranty", estimated risk 1 * `vendor/vendor/http-auth-basic-0.3.3/README.processed.md`: 99.8% similarity to "MIT + Apache-2.0", estimated risk 1 * `vendor/vendor/spdx-0.10.8/src/text/exceptions/Autoconf-exception-macro`: 100% similarity to "GPL-2.0 OR ANY", estimated risk 1 * `vendor/vendor/spdx-0.10.8/src/text/exceptions/OCaml-LGPL-linking-exception.processed`: 97.6% similarity to "LGPL-2.1 WITH Linking-Exception", estimated risk 1 * `vendor/vendor/spdx-0.10.8/src/text/exceptions/SWI-exception`: 98% similarity to "LGPL-2.1 WITH Linking-exception", estimated risk 1 * `vendor/vendor/spdx-0.10.8/src/text/licenses/HP-1989`: 97.6% similarity to "HPND", estimated risk 1 * `vendor/vendor/spdx-0.10.8/src/text/licenses/HPND-sell-variant-MIT-disclaimer-rev`: 100% similarity to "Any Permissive", estimated risk 1 * `vendor/vendor/spdx-0.10.8/src/text/licenses/ISC-Veillard`: 94.4% similarity to "Any Permissive", estimated risk 1 * `vendor/vendor/spdx-0.10.8/src/text/licenses/MIT-CMU.processed`: 99.4% similarity to "HPND", estimated risk 1 * `vendor/vendor/spdx-0.10.8/src/text/licenses/MIT-Festival`: 99.7% similarity to "Festival", estimated risk 1 * `vendor/vendor/spdx-0.10.8/src/text/licenses/MIT-enna.processed`: 97.6% similarity to "Any floating warranty", estimated risk 1 * `vendor/vendor/spdx-0.10.8/src/text/licenses/NTP.processed`: 94.1% similarity to "HPND", estimated risk 1 * `vendor/vendor/spdx-0.10.8/src/text/licenses/SWL.processed`: 95.6% similarity to "TCL", estimated risk 1 * `vendor/vendor/spdx-0.10.8/src/text/licenses/TCP-wrappers.processed`: 96.8% similarity to "Any Permissive", estimated risk 1 * `vendor/vendor/spdx-0.10.8/src/text/licenses/gtkbook`: 95.1% similarity to "Any Permissive", estimated risk 1 * `vendor/vendor/untrusted-0.9.0/README.md`: 94.5% similarity to "Any floating warranty", estimated risk 1 ### Risk 7 (High) * Any Proprietary: 1 file * Any no commercial: 1 file * Any no nuclear: 2 files * BSD-3-Clause-No-Nuclear-License: 1 file * JSON: 1 file ### Risk 6 (High) * Any unresolvable: 2 files * BUSL-1.1: 1 file * CC-BY-NC-SA-3.0: 2 files * SSPL-1.0: 2 files ### Risk 5 (Medium) * AGPL-3.0-or-later: 3 files * APSL-1.1: 1 file * APSL-2.0: 2 files * Any CLA: 2 files * Any permissive adv: 1 file * Any permissive nomod: 1 file * Apache-2.0 With Custom-Trademark-Clause: 1 file * BSD protection license: 1 file * BSD-4-Clause: 6 files * CC-BY-ND-1.0: 1 file * CC-BY-ND-4.0: 1 file * CPL-1.0: 3 files * LPPL-1.0: 1 file * LPPL-1.1: 1 file * LPPL-1.2: 1 file * MPL-1.0: 1 file * Microsoft Public License: 1 file * NPL-1.0: 1 file * NPL-1.1: 1 file * ODbL-1.0: 1 file * OSL-1.1: 1 file * SCEA: 1 file * SUSE-BSD-4-clause-with-redistribution-clause: 1 file * UBDL: 1 file * XDebug: 1 file ### Risk 4 (Low) * GPL-1.0-or-later: 4 files * GPL-2.0-only: 2 files * GPL-2.0-or-later: 5 files * GPL-3.0-only WITH Autoconf-exception-3.0: 1 file * GPL-3.0-or-later: 9 files * GPL-3.0+ WITH Bison-Exception-2.2: 2 files * GPL-Unspecified: 53 files * GPL-Unspecified WITH Linking-exception: 1 file ### Risk 3 (Low) * AFL-2.1: 1 file * AFL-3.0: 1 file * Any Copyleft: 1 file * Any no warranty: 15 files * Any reciprocal clause: 2 files * Any reference local: 13 files * Apache-1.1: 7 files * BSD-4-Clause-UC: 4 files * BSD-4-Clause-without-reproducing-clause: 1 file * CC-BY-3.0: 4 files * CC-BY-4.0: 1 file * CC-BY-SA-3.0: 1 file * CC-BY-SA-4.0: 5 files * CDDL-1.0: 1 file * CDDL-1.1: 1 file * CECILL-C: 1 file * Creative-Commons-Unspecified: 2 files * DES Young adv: 2 files * EPL-1.0: 2 files * EPL-2.0: 1 file * ErlPL-1.1: 1 file * GPL-2.0-only WITH Font-exception-2.0: 2 files * GPL-2.0 WITH Linking-exception: 9 files * GPL-2.0+ WITH Linking-exception: 1 file * LGPL Unspecified: 7 files * LGPL-2.0-or-later: 11 files * LGPL-2.1-or-later: 5 files * LGPL-3.0-or-later: 6 files * LGPL-Unspecified: 2 files * LPPL-1.3: 4 files * MIT-advertising: 1 file * MPL-1.1: 9 files * MPL-2.0: 727 files * MPL-Unspecified: 3 files * MS-RL: 1 file * OFL-1.0: 3 files * OFL-1.1: 3 files * OLDAP-2.0: 1 file * OSL-2.1: 4 files * OpenPBS: 1 file * OpenSSL: 2 files * PHP-3.0: 1 file * PHP-3.01: 1 file * PSF-2.0: 3 files * QPL-1.0: 1 file * RSA-MD: 1 file * SISSL License 1.1: 1 file * SPL-1.0: 1 file * Ubuntu Font License 1.0: 1 file * X11 Apple: 1 file * Zend-2.0: 1 file * bitstream vera font: 1 file * gnuplot: 1 file * texinfo doc: 1 file ### Risk 2 (Low) * All Rights Reserved: 1620 files * Any GPL permissive addon: 1 file * Any all rights reserved: 1 file * Any floating warranty: 1 file * Any no adv: 1 file * Any no warranty: 1 file * Any perm mark changes: 6 files * Any permissive doc nomod: 1 file * Any permissive keep free: 5 files * Any permissive src: 1 file * Any reference local: 659 files * Any trademark: 17 files * Apache-2.0: 2135 files * Apache-2.0 OR MIT: 281 files * Apache-2.0 WITH GPL-Compliance: 1 file * Apache-2.0 WITH LLVM-exception: 5 files * Artistic-1.0: 2 files * Artistic-1.0-Perl OR GPL-1.0-or-later: 1 file * Artistic-2.0: 2 files * BSD-1-Clause: 1 file * BSD-2-Clause: 23 files * BSD-2-Clause-Patent: 1 file * BSD-3-Clause: 44 files * BSD-3-Clause OR GPL-2.0-or-later: 6 files * BSD-Unspecified: 10 files * BSL-1.0: 3 files * BlueOak-1.0.0: 2 files * CECILL-1.0: 2 files * CECILL-2.1: 1 file * ClArtistic: 2 files * Copyleft-Next-0.3.0: 1 file * FTL: 1 file * GCC-exception-3.1: 2 files * GFDL-1.1-only: 1 file * GFDL-1.2-only: 9 files * GFDL-1.3-only: 7 files * GL2PS: 1 file * GPL-2.0 WITH OpenSSL-exception: 1 file * GPL-2.0+ WITH OpenSSL-exception: 2 files * ISC: 533 files * ISC OR Apache-2.0: 2 files * Intel ACPICA: 1 file * Intel X11: 1 file * JasPer-2.0: 1 file * Libpng: 1 file * MIT: 740 files * MIT Kerberos: 3 files * NVidia Free: 1 file * OLDAP-2.0.1: 1 file * Python >= 2.0.1: 3 files * Python-2.0: 1 file * QT LGPL 2.1 WITH Exceptions OR Commercial: 1 file * Arphic-1999: 1 file * LicenseRef-SUSE-FLTK: 1 file * Sendmail: 2 files * UPL-1.0: 1 file * Unicode: 1 file * Unicode-TOU: 67 files * Vim: 1 file * W3C: 3 files * X11: 17 files * XFree86: 2 files * ZPL-2.0: 1 file * ZPL-2.1: 1 file * Zlib: 26 files * bzip2-1.0.6: 2 files * eGenix: 1 file * regex: 1 file ### Risk 1 (Low) * 0BSD: 4 files * All Rights Reserved: 1 file * Any CLA: 1 file * Any Permissive: 176 files * Any copyright: 47 files * Any copyright notice: 3 files * Any distributed with: 15 files * Any floating warranty: 85 files * Any keep notice: 16 files * Any no adv: 2 files * Any no warranty: 14 files * Any perm mark changes: 1 file * Any permissive doc: 1 file * Any reference local: 4 files * Any trademark: 60 files * Beerware: 1 file * CC0-1.0: 12 files * DCO: 3 files * FSF unlimited: 2 files * GPL-2.0 OR ANY: 3 files * GPL-2.0-only OR MIT: 1 file * GPL-2.0+ OR ANY: 1 file * GPL-2.0-or-later OR MIT: 1 file * GPL-2.0-or-later WITH WxWindows-exception-3.1: 2 files * HPND: 9 files * ICU: 1 file * IJG: 1 file * LGPL-2.1 WITH Linking-exception: 1 file * Linking-Exception: 1 file * MIT + Apache-2.0: 8 files * MIT-0: 4 files * MIT OR Apache-2.0: 1235 files * MIT OR Unlicense: 8 files * OLDAP-2.8: 1 file * Public-Domain: 67 files * Qt-Company-GPL-Exception-1.0: 1 file * SGI-B-2.0: 1 file * TCL: 2 files * Unicode-3.0: 19 files * Unicode-DFS-2016: 6 files * Unlicense: 9 files * WTFPL: 1 file * curl: 1 file * man pages: 3 files * openSUSE specfile: 1 file ### Risk 0 (Low) * Any CLA: 1 file * SUSE-FSF: 18 files * Suse Copyright: 1 file ## About This plain text report was generated by Cavil. For more details please consult the HTML and SPDX reports.