You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Elixir version (elixir -v):
Erlang/OTP 27 [erts-15.1.1] [source] [64-bit] [smp:6:6] [ds:6:6:10] [async-threads:1] [jit:ns]
Elixir 1.17.3 (compiled with Erlang/OTP 27)
Phoenix version (mix deps):
phoenix, "~> 1.7"
Operating system:
Debian GNU/Linux 11 (bullseye) container running on a Linux Gitlab runner
Actual behavior
While leveraging ORT for scanning a project containing Phoenix, the scanner fails on analyzing the Phoenix packages due to duplicate package naming with different 'signatures'. Is there any change to make the package names unique?
Environment
Elixir version (elixir -v):
Erlang/OTP 27 [erts-15.1.1] [source] [64-bit] [smp:6:6] [ds:6:6:10] [async-threads:1] [jit:ns]
Elixir 1.17.3 (compiled with Erlang/OTP 27)
Phoenix version (mix deps):
phoenix, "~> 1.7"
Operating system:
Debian GNU/Linux 11 (bullseye) container running on a Linux Gitlab runner
Actual behavior
While leveraging ORT for scanning a project containing Phoenix, the scanner fails on analyzing the Phoenix packages due to duplicate package naming with different 'signatures'. Is there any change to make the package names unique?
https://github.com/phoenixframework/phoenix/blob/main/package.json
https://github.com/phoenixframework/phoenix/blob/main/assets/package.json
additional information from ORT log output
Expected behavior
By having unique package names, Phoenix project will be better compliant to serve OSS compliancy.
The text was updated successfully, but these errors were encountered: