Skip to main content

Changes in Update Released on 05-February-2024

This update includes the changes described in the following sections.

Issues/Bugs Addressed

The following issues were addressed in the Update:

Issue IDIssue Summary
SCA-51559Fix to handle "rejected" cves from NVD in data library.
SCA-38151, SCA-51747, SCA-51959Addition/update license evidence mechanism and license detection capability for licenses like Yahoo! Public License, Open Software License, NASA Open Source Agreement, Sleepycat License etc
SCA-51269, SCA-51036, SCA-51858Added/updated component, version, license or license mappings in data library for the requested components, details are in the separate sections below.

Enhanced License Detection Capability for Components

License detection capability and license evidence mechanism for the following components was updated/added:

  • SIL Open Font License 1.1
  • Yahoo! Public License v1.0
  • Yahoo! Public License v1.1
  • Open Software License 1.0
  • Open Software License 1.1
  • Open Software License 2.0
  • Open Software License 2.1
  • Open Software License 3.0
  • Multics License
  • NASA Open Source Agreement 1.3
  • Naumen Public License
  • Apple Public Source License 1.0
  • CUA Office Public License v1.0
  • Simple Public License 2.0
  • Sleepycat License
  • SugarCRM Public License v1.1.3
  • Independent JPEG Group License

New/Update Component Requests

  • ljharb-define-data-property (Component_id:31686787)
  • editd-jquery-menu-aim (Component_id:31686788)
  • ljharb-set-function-length (Component_id:31686789)
  • imagegear-net-samples (Component_id: 31490027)
  • The-Ultimate-Toolbox-Application-Skins (Component_id: 31490026)
  • SNMP4j (Component_id: 31490028)
  • OpenSSL Project (Component_id: 58316)
  • Bouncy Castle Crypto Csharp (Component_id: 11253334)

New/Update License Requests

Collector Status

The following table lists Collector Status information.

NameDate of Last Successful Run
npm1/24/2024
crates8/25/2022
cpan1/18/2024
clojars1/18/2024
rubygems1/18/2024
maven-google1/19/2024
cran1/20/2024
hackage1/21/2024
packagist1/21/2024
go1/22/2024
pypi1/08/2024
nuget gallery1/11/2024
maven2-ibiblio1/10/2024
github1/23/2024
fedora-koji1/17/2024
alpine1/24/2024
gitlab6/6/2023
debian1/22/2024