-
Bug
-
Resolution: Fixed
-
Minor
-
None
-
-
2.17.0-386.vcb_b_037da_0d62
As discovered by https://github.com/jenkinsci/jackson2-api-plugin/pull/267#pullrequestreview-2612797731 the byte-buddy library uses a shaded asm dependency.
As such the licence for ASM in not in the licences section of byte-buddy`'s pom.xml does not contain the BSD 3 clause licence in use by ASM.
As the jacksone-api plugin also includes this byte-buddy the plugin is likely to be affected also in the same way as detailed here
Steps to reproduce
- Start a jenkins server (hpi:run will not work) and install the jackson2-api plugin
- go to ${JENKINS_URL}/plugin/jackson2-api/wrapper/thirdPartyLicenses
Expected Results
The list of licences contains the ASM licence (BSD 3 clause) for ASM.
Actual Results
Only MIT and ASL is listed.
https://github.com/jenkinsci/jackson2-api-plugin/pull/268