Create spdx-license-scan.yml

tcosolutions · Aug 30, 2024 · 77232b6 · 77232b6
1 parent 6bb4c3f
commit 77232b6
Showing 1 changed file with 34 additions and 0 deletions.
diff --git a/.github/workflows/spdx-license-scan.yml b/.github/workflows/spdx-license-scan.yml
@@ -0,0 +1,34 @@
+name: SPDX License Scan
+
+on:
+  push:
+    branches:
+      - main
+  pull_request:
+    branches:
+      - main
+
+jobs:
+  spdx-scan:
+    runs-on: ubuntu-latest
+
+    steps:
+    - name: Checkout code
+      uses: actions/checkout@v2
+
+    - name: Set up Python
+      uses: actions/setup-python@v2
+      with:
+        python-version: '3.8'
+
+    - name: Install pip dependencies
+      run: |
+        python -m pip install --upgrade pip
+        pip install
+
+    - name: SPDX License Scanner
+      uses: fossology/spdx-action@v2
+      with:
+        scan-folder: '.'  # Folder to scan, '.' scans the entire repo
+        output-format: 'tag'  # Can be 'tag', 'rdf', or 'json'
+        fail-on-error: true  # If true, the action will fail on license issues