Docker Image Licensing compliance/Source Packages

3 posts / 0 new
Last post
#1 Fri, 2016-07-08 15:07
  • i.have.questions's picture
  • Offline
  • Last seen: 1 year 7 months ago
  • Joined: 2016-07-06

We're currently using the Docker Alpine images as a base for our docker images. If we someday want to distribute those to third parties, we need to manage license compliance. I was wondering how others are managing this and how Alpine itself is handling these issues.

  • How does Alpine handle GPL source requests for packages? Debian has source packages, but I don't see any equivalent for Alpine, which combines the original source code with distro patches and build scripts.
  • How does Alpine handle GPL compliance for its docker images?

We were thinking that we could just package the source into the base image, making it only slightly larger. However, we have not yet found a way to package/install the source in an easy automated way. We could probably build some script which packages everything from an aports directory and also pulls in anything external listed in source=, but it seems like this should have already been solved by others who also need to provide compliance.

Any information or advice appreciated
Thank you,

Tue, 2016-10-04 16:11
  • marianol's picture
  • Offline
  • Last seen: 1 year 4 months ago
  • Joined: 2016-10-04

Just Bumping the comment since I have a similar question. Checking on it says that the licenses should be in /usr/share/licenses/ but that folder does not even exist in my base image.

Wed, 2017-08-16 20:05
  • innomonkey's picture
  • Offline
  • Last seen: 6 months 1 week ago
  • Joined: 2017-08-16

The same problem has come up here. Even the license files are not bundled with the packages.

Our current solution is, to try to add all -doc sub packages, for all installed ones. But this only solves the license text part, and even that seems not to work for all the packages.

Log in or register to post comments