Docker Image Licensing compliance/Source Packages
-
- Offline
- 1 year 8 months ago
- 2016-07-06
Hello,
We're currently using the Docker Alpine images as a base for our docker images. If we someday want to distribute those to third parties, we need to manage license compliance. I was wondering how others are managing this and how Alpine itself is handling these issues.
- How does Alpine handle GPL source requests for packages? Debian has source packages, but I don't see any equivalent for Alpine, which combines the original source code with distro patches and build scripts.
- How does Alpine handle GPL compliance for its docker images?
We were thinking that we could just package the source into the base image, making it only slightly larger. However, we have not yet found a way to package/install the source in an easy automated way. We could probably build some script which packages everything from an aports directory and also pulls in anything external listed in source=, but it seems like this should have already been solved by others who also need to provide compliance.
Any information or advice appreciated
Thank you,
Paul
Just Bumping the comment since I have a similar question. Checking on https://wiki.alpinelinux.org/wiki/Creating_an_Alpine_package#license it says that the licenses should be in /usr/share/licenses/ but that folder does not even exist in my base image.
The same problem has come up here. Even the license files are not bundled with the packages.
Our current solution is, to try to add all -doc sub packages, for all installed ones. But this only solves the license text part, and even that seems not to work for all the packages.