From 3050363fbe13ef1c2774b64a880f98404b2e8c4d Mon Sep 17 00:00:00 2001
From: Sebastian Kawelke <sebastian.kawelke@l3montree.com>
Date: Mon, 3 Feb 2025 17:34:37 +0100
Subject: [PATCH] Adds license decision file, handels chekov finding

Signed-off-by: Sebastian Kawelke <sebastian.kawelke@l3montree.com>
---
 Dockerfile                    |  2 +
 doc/dependency_decisions.yml  |  2 -
 docs/dependency_decisions.yml | 99 +++++++++++++++++++++++++++++++++++
 3 files changed, 101 insertions(+), 2 deletions(-)
 delete mode 100644 doc/dependency_decisions.yml
 create mode 100644 docs/dependency_decisions.yml

diff --git a/Dockerfile b/Dockerfile
index 3e41ab2..ded1bb9 100644
--- a/Dockerfile
+++ b/Dockerfile
@@ -1,6 +1,8 @@
 FROM node:22.12.0@sha256:35a5dd72bcac4bce43266408b58a02be6ff0b6098ffa6f5435aeea980a8951d7 as builder
 LABEL maintainer="Sebastian Kawelke <sebatian.kawelke@l3montree.com"
 
+# checkov:skip=CKV_DOCKER_2
+
 # Disable telemetry
 ENV NEXT_TELEMETRY_DISABLED 1
 ENV NODE_ENV production
diff --git a/doc/dependency_decisions.yml b/doc/dependency_decisions.yml
deleted file mode 100644
index cd21505..0000000
--- a/doc/dependency_decisions.yml
+++ /dev/null
@@ -1,2 +0,0 @@
----
-
diff --git a/docs/dependency_decisions.yml b/docs/dependency_decisions.yml
new file mode 100644
index 0000000..c33d0b8
--- /dev/null
+++ b/docs/dependency_decisions.yml
@@ -0,0 +1,99 @@
+---
+- - :permit
+  - MIT
+  - :who: Sebastian Kawelke
+    :why: Compatible, permissive license, OSI approved, allowed on opencode (https://opencode.de/en/knowledge/general-conditions/standardised-open-source-licenses)
+    :versions: []
+    :when: 2025-01-24 17:14:24.630490000 Z
+- - :permit
+  - New BSD
+  - :who: Sebastian Kawelke
+    :why: Compatible, permissive license, OSI approved, allowed on opencode (https://opencode.de/en/knowledge/general-conditions/standardised-open-source-licenses),
+      SPDX License Identifier BSD-3-Clause
+    :versions: []
+    :when: 2025-01-24 17:18:46.011938000 Z
+- - :permit
+  - Apache 2.0
+  - :who: Sebastian Kawelke
+    :why: Compatible, permissive license, OSI approved, allowed on opencode (https://opencode.de/en/knowledge/general-conditions/standardised-open-source-licenses)
+    :versions: []
+    :when: 2025-01-24 17:20:33.051453000 Z
+- - :permit
+  - Simplified BSD
+  - :who: Sebastian Kawelke
+    :why: Compatible, permissive license, OSI approved, allowed on opencode (https://opencode.de/en/knowledge/general-conditions/standardised-open-source-licenses),
+      SPDX License Identifier BSD-2-Clause
+    :versions: []
+    :when: 2025-01-24 17:22:01.445749000 Z
+- - :permit
+  - Mozilla Public License 2.0
+  - :who: Sebastian Kawelke
+    :why: Compatible, OSI approved, allowed on opencode (https://opencode.de/en/knowledge/general-conditions/standardised-open-source-licenses)
+    :versions: []
+    :when: 2025-01-24 17:22:48.495344000 Z
+- - :permit
+  - ISC
+  - :who: Sebastian Kawelke
+    :why: Compatible, OSI approved, allowed on opencode (https://opencode.de/en/knowledge/general-conditions/standardised-open-source-licenses)
+    :versions: []
+    :when: 2025-02-03 15:50:23.921924000 Z
+- - :permit
+  - EUPL-1.2
+  - :who: Sebastian Kawelke
+    :why: Compatible, OSI approved, allowed on opencode (https://opencode.de/en/knowledge/general-conditions/standardised-open-source-licenses)
+    :versions: []
+    :when: 2025-02-03 15:50:23.921924000 Z
+- - :permit
+  - BlueOak-1.0.0
+  - :who: Sebastian Kawelke
+    :why: Compatible, OSI approved, allowed on opencode (https://opencode.de/en/knowledge/general-conditions/standardised-open-source-licenses)
+    :versions: []
+    :when: 2025-02-03 15:50:23.921924000 Z
+- - :permit
+  - CC0 1.0 Universal
+  - :who: Sebastian Kawelke
+    :why: Compatible, allowed on opencode (https://opencode.de/en/knowledge/general-conditions/standardised-open-source-licenses)
+    :versions: []
+    :when: 2025-02-03 15:50:23.921924000 Z
+- - :permit
+  - CC-BY-4.0
+  - :who: Sebastian Kawelke
+    :why: Compatible, allowed on opencode (https://opencode.de/en/knowledge/general-conditions/standardised-open-source-licenses)
+    :versions: []
+    :when: 2025-02-03 15:50:23.921924000 Z
+- - :permit
+  - MITClause
+  - :who: Sebastian Kawelke
+    :why: Compatible, permissive license, OSI approved, allowed on opencode (https://opencode.de/en/knowledge/general-conditions/standardised-open-source-licenses)
+    :versions: []
+    :when: 2025-01-24 17:14:24.630490000 Z
+- - :permit
+  - The Unlicense
+  - :who: Sebastian Kawelke
+    :why: Compatible, allowed on opencode (https://opencode.de/en/knowledge/general-conditions/standardised-open-source-licenses)
+    :versions: []
+    :when: 2025-01-24 17:14:24.630490000 Z
+- - :approve
+  - xmldom-sre
+  - :who: Sebastian Kawelke
+    :why: MIT License
+    :versions: []
+    :when: 2025-02-03 16:21:10.130682000 Z
+- - :permit
+  - LGPL-3.0-or-later
+  - :who: Sebastian Kawelke
+    :why: Compatible, allowed on opencode (https://opencode.de/en/knowledge/general-conditions/standardised-open-source-licenses)
+    :versions: []
+    :when: 2025-01-24 17:14:24.630490000 Z
+- - :permit
+  - BSD Zero Clause License
+  - :who: Sebastian Kawelke
+    :why: Note from OSI "Despite its name, Zero-Clause BSD is an alteration of the ISC license, and is not textually derived from licenses in the BSD family.", allowed on opencode (https://opencode.de/en/knowledge/general-conditions/standardised-open-source-licenses)
+    :versions: []
+    :when: 2025-01-24 17:14:24.630490000 Z
+- - :permit
+  - Python-2.0
+  - :who: Sebastian Kawelke
+    :why: allowed on opencode (https://opencode.de/en/knowledge/general-conditions/standardised-open-source-licenses)
+    :versions: []
+    :when: 2025-01-24 17:14:24.630490000 Z
\ No newline at end of file
-- 
GitLab