oss-review-toolkit · chinyeungli · Aug 30, 2024 · Aug 30, 2024 · Aug 30, 2024
@@ -43,7 +43,7 @@ resolutions:
   issues:
   - message: "ERROR: Timeout after 300 seconds while scanning file 'reporter-web-app/public/index.html'."
     reason: "SCANNER_ISSUE"
-    comment: >- 
+    comment: >-
       The error can be ignored because the file does contain relevant license information.
   - message: "ERROR: Timeout after 300 seconds while scanning file 'scanner/src/test/assets/aws-java-sdk-core-1.11.160_scancode-2.9.7.json'."
     reason: "SCANNER_ISSUE"
@@ -175,7 +175,7 @@ curations:
       This directory contains all non-official SPDX license ids which are used to generate open source notices. SPDX and
       ScanCode license files are licensed under CC0-1.0, see
       https://github.com/spdx/license-list-XML/blob/master/package.json#L33 and
-      https://github.com/nexB/scancode-toolkit/blame/develop/README.rst#L168.
+      https://github.com/aboutcode-org/scancode-toolkit/blame/develop/README.rst#L168.
   - path: "utils/spdx/src/main/resources/licenses/**"
     concluded_license: "CC0-1.0"
     reason: "DATA_OF"

@@ -157,7 +157,7 @@ RUN ARCH=$(arch | sed s/aarch64/arm64/) \
     &&  if [ "$ARCH" == "arm64" ]; then \
     pip install -U scancode-toolkit-mini==$SCANCODE_VERSION; \
     else \
-    curl -Os https://raw.githubusercontent.com/nexB/scancode-toolkit/v$SCANCODE_VERSION/requirements.txt; \
+    curl -Os https://raw.githubusercontent.com/aboutcode-org/scancode-toolkit/v$SCANCODE_VERSION/requirements.txt; \
     pip install -U --constraint requirements.txt scancode-toolkit==$SCANCODE_VERSION; \
     rm requirements.txt; \
     fi
@@ -394,7 +394,7 @@ RUN mkdir -p $DOTNET_HOME \
     fi
 
 RUN mkdir -p $DOTNET_HOME/bin \
-    && curl -L https://github.com/nexB/nuget-inspector/releases/download/v$NUGET_INSPECTOR_VERSION/nuget-inspector-v$NUGET_INSPECTOR_VERSION-linux-x64.tar.gz \
+    && curl -L https://github.com/aboutcode-org/nuget-inspector/releases/download/v$NUGET_INSPECTOR_VERSION/nuget-inspector-v$NUGET_INSPECTOR_VERSION-linux-x64.tar.gz \
     | tar --strip-components=1 -C $DOTNET_HOME/bin -xz
 
 FROM scratch AS dotnet

@@ -1,6 +1,6 @@
 ---
 # Example license-classifications.yml based on categorization from
-# https://github.com/nexB/scancode-toolkit/commit/ed644e4
+# https://github.com/aboutcode-org/scancode-toolkit/commit/ed644e4
 #
 # To demonstrate how one can insert a custom written offer
 # include-source-code-offer-in-notice-file has been set to

@@ -55,7 +55,7 @@ private const val BULK_REQUEST_SIZE = 100
 
 /**
  * An [AdviceProvider] implementation that obtains security vulnerability information from a
- * [VulnerableCode][https://github.com/nexB/vulnerablecode] instance.
+ * [VulnerableCode][https://github.com/aboutcode-org/vulnerablecode] instance.
  *
  * This [AdviceProvider] offers the following configuration options:
  *
@@ -155,7 +155,7 @@ class VulnerableCode(override val descriptor: PluginDescriptor, config: Vulnerab
             if (scores.isEmpty()) return listOf(VulnerabilityReference(sourceUri, null, null))
             return scores.map {
                 // VulnerableCode returns MODERATE instead of MEDIUM in case of cvssv3.1_qr, see:
-                // https://github.com/nexB/vulnerablecode/issues/1186
+                // https://github.com/aboutcode-org/vulnerablecode/issues/1186
                 val severity = if (it.scoringSystem == "cvssv3.1_qr" && it.value == "MODERATE") "MEDIUM" else it.value
 
                 VulnerabilityReference(sourceUri, it.scoringSystem, severity)

@@ -147,7 +147,7 @@ internal fun List<PythonInspector.Package>.toOrtPackages(): Set<Package> =
             declaredLicenses = declaredLicenses,
             declaredLicensesProcessed = declaredLicensesProcessed,
             // Only use the first line of the description because the descriptions provided by python-inspector are
-            // currently far too long, see: https://github.com/nexB/python-inspector/issues/74
+            // currently far too long, see: https://github.com/aboutcode-org/python-inspector/issues/74
             description = pkg.description.lineSequence().firstOrNull { it.isNotBlank() }.orEmpty(),
             homepageUrl = pkg.homepageUrl.orEmpty(),
             binaryArtifact = getArtifact(".whl"),

@@ -24,5 +24,5 @@ ort:
 The `DOS_FRONTEND_URL` is meant to point to the Clearance UI which can be used to inspect scan results and to create license finding curations for use with the [DOS Package Configuration Provider].
 
 [DOS]: https://github.com/doubleopen-project/dos
-[ScanCode]: https://github.com/nexB/scancode-toolkit
+[ScanCode]: https://github.com/aboutcode-org/scancode-toolkit
 [DOS Package Configuration Provider]: ../../package-configuration-providers/dos
@@ -46,7 +46,7 @@ import org.semver4j.RangesListFactory
 import org.semver4j.Semver
 
 /**
- * A wrapper for [ScanCode](https://github.com/nexB/scancode-toolkit).
+ * A wrapper for [ScanCode](https://github.com/aboutcode-org/scancode-toolkit).
  *
  * This scanner can be configured in [ScannerConfiguration.config] using the key "ScanCode". It offers the following
  * configuration [options][PluginConfiguration.options]:

@@ -87,7 +87,7 @@ fun ScanCodeResult.toScanSummary(preferFileLicense: Boolean = false): ScanSummar
         val licensesWithoutReferences = file.licenses.filter {
             it !is LicenseEntry.Version3 || it.fromFile == null
                 // Note that "fromFile" contains the name of the input directory, see
-                // https://github.com/nexB/scancode-toolkit/issues/3712.
+                // https://github.com/aboutcode-org/scancode-toolkit/issues/3712.
                 || inputPath.resolveSibling(it.fromFile) == inputPath.resolve(file.path)
                 // Check if input is a single file.
                 || it.fromFile == inputPath.name

@@ -17,7 +17,7 @@
         "--strip-root": true,
         "--timeout": "300.0"
       },
-      "notice": "Generated with ScanCode and provided on an \"AS IS\" BASIS, WITHOUT WARRANTIES\nOR CONDITIONS OF ANY KIND, either express or implied. No content created from\nScanCode should be considered or used as legal advice. Consult an Attorney\nfor any legal advice.\nScanCode is a free software code scanning tool from nexB Inc. and others.\nVisit https://github.com/nexB/scancode-toolkit/ for support and download.",
+      "notice": "Generated with ScanCode and provided on an \"AS IS\" BASIS, WITHOUT WARRANTIES\nOR CONDITIONS OF ANY KIND, either express or implied. No content created from\nScanCode should be considered or used as legal advice. Consult an Attorney\nfor any legal advice.\nScanCode is a free software code scanning tool from nexB Inc. and others.\nVisit https://github.com/aboutcode-org/scancode-toolkit/ for support and download.",
       "start_timestamp": "2019-08-13T074443.361209",
       "end_timestamp": "2019-08-13T074524.131834",
       "message": null,

@@ -15,7 +15,7 @@
         "--strip-root": true,
         "--timeout": "300.0"
       },
-      "notice": "Generated with ScanCode and provided on an \"AS IS\" BASIS, WITHOUT WARRANTIES\nOR CONDITIONS OF ANY KIND, either express or implied. No content created from\nScanCode should be considered or used as legal advice. Consult an Attorney\nfor any legal advice.\nScanCode is a free software code scanning tool from nexB Inc. and others.\nVisit https://github.com/nexB/scancode-toolkit/ for support and download.",
+      "notice": "Generated with ScanCode and provided on an \"AS IS\" BASIS, WITHOUT WARRANTIES\nOR CONDITIONS OF ANY KIND, either express or implied. No content created from\nScanCode should be considered or used as legal advice. Consult an Attorney\nfor any legal advice.\nScanCode is a free software code scanning tool from nexB Inc. and others.\nVisit https://github.com/aboutcode-org/scancode-toolkit/ for support and download.",
       "start_timestamp": "2021-01-28T132916.946903",
       "end_timestamp": "2021-01-28T133435.622217",
       "duration": 318.67532992362976,