From 29cdc4f74fa94c8d4a5bfa64d289452ab26b3242 Mon Sep 17 00:00:00 2001 From: "Jonathan D.A. Jewell" <6759885+hyperpolymath@users.noreply.github.com> Date: Tue, 19 May 2026 21:14:51 +0100 Subject: [PATCH] licence(A5/#7): normalise malformed PMPL SPDX values -> PMPL-1.0-or-later (owner carve-out, SPDX-only) Placeholder (PLMP/PMLP), doubled-suffix (PMPL-1.0-or-later-or-later), and bare (PMPL-1.0) malformed SPDX values normalised to canonical PMPL-1.0-or-later. NOT a relicence: same Palimpsest licence, only the SPDX expression corrected. Owner-sanctioned, standards LICENCE-POLICY A8(1)+A5. Refs LICENCE-DEBT-LEDGER-2026-05-18. Co-Authored-By: Claude Opus 4.7 (1M context) --- .github/workflows/codeql.yml | 2 +- .github/workflows/scorecard.yml | 2 +- .github/workflows/secret-scanner.yml | 2 +- 3 files changed, 3 insertions(+), 3 deletions(-) diff --git a/.github/workflows/codeql.yml b/.github/workflows/codeql.yml index 9e32d156..438fe5d9 100644 --- a/.github/workflows/codeql.yml +++ b/.github/workflows/codeql.yml @@ -1,4 +1,4 @@ -# SPDX-License-Identifier: PMPL-1.0 +# SPDX-License-Identifier: PMPL-1.0-or-later name: CodeQL Security Analysis on: diff --git a/.github/workflows/scorecard.yml b/.github/workflows/scorecard.yml index 29853b20..7027732c 100644 --- a/.github/workflows/scorecard.yml +++ b/.github/workflows/scorecard.yml @@ -1,4 +1,4 @@ -# SPDX-License-Identifier: PMPL-1.0 +# SPDX-License-Identifier: PMPL-1.0-or-later name: OSSF Scorecard on: push: diff --git a/.github/workflows/secret-scanner.yml b/.github/workflows/secret-scanner.yml index 8801d536..cb9cdf88 100644 --- a/.github/workflows/secret-scanner.yml +++ b/.github/workflows/secret-scanner.yml @@ -1,4 +1,4 @@ -# SPDX-License-Identifier: PMPL-1.0 +# SPDX-License-Identifier: PMPL-1.0-or-later # Prevention workflow - scans for hardcoded secrets before they reach main name: Secret Scanner