ci-license-scan reports wrong license on fonts-dejavu

Affected images versions

Apertis v2022dev3

Unaffected images versions

Testcase

Steps to reproduce

Submit a MR with branch name prefix proposed-updates for package fonts-dejavu

Expected result

The ci-license-scan report the license information of the packages.

Actual result

The ci-license-scan reports entries with empty license and does not generate an error/warning. As example

pkg/fonts-dejavu!2 (comment 42136)

Reproducibility

How often the issue is hit when repeating the test and changing nothing (same device, same image, etc.)?

Put the ✅ in the most appropriate entry:

✅ always
often, but not always
rarely

Impact of bug

The license scan is not reliable since it does not warn/error on empty license entries

Attachments

Root cause

The root cause seems to be a an upstream issue on scan-copyright which does not recognizes bitstream license which is reported in debian/copyright or LICENSE file.

Outcomes

apertis-docker-images!245 (merged)

Management data

This section is for management only, it should be the last one in the description.

Phabricator link: https://phabricator.apertis.org/T8214

Edited Jun 30, 2022 by Apertis CI robot