Skip to content

chore(licensing): refresh LICENSE-binary for transitive drift across services#6396

Merged
xuang7 merged 1 commit into
apache:mainfrom
xuang7:fix/refresh-license-binary-main
Jul 14, 2026
Merged

chore(licensing): refresh LICENSE-binary for transitive drift across services#6396
xuang7 merged 1 commit into
apache:mainfrom
xuang7:fix/refresh-license-binary-main

Conversation

@xuang7

@xuang7 xuang7 commented Jul 13, 2026

Copy link
Copy Markdown
Contributor

What changes were proposed in this PR?

Refreshes the per-module LICENSE-binary files on main to match the versions actually bundled, clearing the drift reported by the nightly license-binary checker (run 29248239204, 2026-07-13). Version-only edits; license groupings unchanged.

JVM — transitive jars pulled in by recent dependency bumps (hadoop/iceberg/etc.), applied per service to match each service's own bundle:

  • amber/LICENSE-binary-java (20): jackson-jaxrs 2.12.7→2.18.6 (×3), guice/guice-servlet 4.2.3→5.1.0, zookeeper/-jute 3.8.4→3.8.6, jetty-client/io/util + websocket-api/client/common 9.4.57→9.4.58, json4s-ast/-jackson-core 4.0.1→4.0.6, r2dbc-spi 0.9.0→1.0.0, checker-qual 3.52.0→3.55.1, jakarta.activation-api 1.2.1→1.2.2, jakarta.xml.bind-api 3.0.0→2.3.3, bcprov 1.82→1.84
  • computing-unit-managing-service (10), file-service (11, +bcprov), workflow-compiling-service (11, +bcprov): the subset each actually bundles
  • config-service, access-control-service, notebook-migration-service (1 each): r2dbc-spi 0.9.0→1.0.0 only

Pythonamber/LICENSE-binary-python (11): aiohappyeyeballs 2.6.2→2.7.1, anyio 4.14.1→4.14.2, charset-normalizer 3.4.7→3.4.9, filelock 3.29.4→3.29.7, greenlet 3.5.2→3.5.3, huggingface-hub 1.20.1→1.23.0, regex 2026.5.9→2026.7.10, scramp 1.4.9→1.4.12, tqdm 4.68.3→4.68.4, typer 0.25.1→0.26.8, tzdata 2026.2→2026.3

Only the entries the checker reported per file were changed; e.g. json4s / checker-qual in the service files were left as-is because those services bundle the older versions (no drift).

Any related issues, documentation, discussions?

Closes #5889.

How was this PR tested?

Version-only metadata change, verified against nightly run 29248239204. Transitive versions float with PyPI/Maven resolution, so a re-run may surface newer drift.

Was this PR authored or co-authored using generative AI tooling?

Generated-by: Claude Code (Claude Opus 4.8)

@github-actions github-actions Bot added fix platform Non-amber Scala service paths labels Jul 13, 2026
@github-actions

Copy link
Copy Markdown
Contributor

Automated Reviewer Suggestions

Based on the git blame history of the changed files, we recommend the following reviewers:

  • No candidates found from git blame history.

@codecov-commenter

codecov-commenter commented Jul 13, 2026

Copy link
Copy Markdown

Codecov Report

✅ All modified and coverable lines are covered by tests.
✅ Project coverage is 69.81%. Comparing base (ff82fd8) to head (f7f9b54).

Additional details and impacted files
@@            Coverage Diff            @@
##               main    #6396   +/-   ##
=========================================
  Coverage     69.81%   69.81%           
  Complexity     3382     3382           
=========================================
  Files          1142     1142           
  Lines         44839    44839           
  Branches       4950     4950           
=========================================
  Hits          31304    31304           
  Misses        11881    11881           
  Partials       1654     1654           
Flag Coverage Δ *Carryforward flag
access-control-service 70.00% <ø> (ø)
agent-service 76.76% <ø> (ø) Carriedforward from ff82fd8
amber 66.66% <ø> (ø) Carriedforward from ff82fd8
computing-unit-managing-service 9.97% <ø> (ø)
config-service 52.30% <ø> (ø)
file-service 63.97% <ø> (ø)
frontend 68.12% <ø> (ø) Carriedforward from ff82fd8
notebook-migration-service 78.94% <ø> (ø)
pyamber 91.18% <ø> (ø) Carriedforward from ff82fd8
workflow-compiling-service 55.14% <ø> (ø)

*This pull request uses carry forward flags. Click here to find out more.

☔ View full report in Codecov by Harness.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:
  • 📦 JS Bundle Analysis: Save yourself from yourself by tracking and limiting bundle sizes in JS merges.

Copilot AI left a comment

Copy link
Copy Markdown
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull request overview

Updates Texera’s per-module binary license inventories to eliminate “LICENSE-binary drift” reported by the nightly checker, keeping the recorded third-party artifact versions aligned with what each service/module actually bundles.

Changes:

  • Refreshed JVM LICENSE-binary jar version entries across multiple services (e.g., Jackson JAX-RS, Guice, R2DBC SPI, ZooKeeper, Jetty WebSocket, BouncyCastle).
  • Refreshed Amber’s LICENSE-binary-python pinned package versions to match the currently installed/bundled set.
  • Kept license grouping/structure intact while adjusting only the reported drift entries.

Reviewed changes

Copilot reviewed 8 out of 8 changed files in this pull request and generated no comments.

Show a summary per file
File Description
workflow-compiling-service/LICENSE-binary Updates bundled jar version entries (e.g., Jackson JAX-RS, Guice, R2DBC SPI, ZooKeeper, Jetty WebSocket, bcprov) to match drift checker output.
notebook-migration-service/LICENSE-binary Updates bundled io.r2dbc:r2dbc-spi version entry to clear drift.
file-service/LICENSE-binary Updates bundled jar version entries (same drifted set as applicable for this service) to match actual bundle.
config-service/LICENSE-binary Updates bundled io.r2dbc:r2dbc-spi version entry to clear drift.
computing-unit-managing-service/LICENSE-binary Updates bundled jar version entries (Jackson JAX-RS, Guice, R2DBC SPI, ZooKeeper, Jetty WebSocket) to match actual bundle.
amber/LICENSE-binary-python Updates drifted Python package version pins (e.g., huggingface-hub, regex, tzdata, anyio, typer, tqdm, aiohappyeyeballs).
amber/LICENSE-binary-java Updates drifted jar version entries (e.g., Jackson JAX-RS + jaxb-annotations module, Guice, R2DBC SPI, ZooKeeper, Jetty, json4s, bcprov, checker-qual, Jakarta activation/xmlbind).
access-control-service/LICENSE-binary Updates bundled io.r2dbc:r2dbc-spi version entry to clear drift.

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

@xuang7
xuang7 added this pull request to the merge queue Jul 14, 2026
@xuang7
xuang7 removed this pull request from the merge queue due to a manual request Jul 14, 2026
@xuang7
xuang7 enabled auto-merge July 14, 2026 18:50
@xuang7
xuang7 added this pull request to the merge queue Jul 14, 2026
Merged via the queue into apache:main with commit 97cb3d8 Jul 14, 2026
34 checks passed
@xuang7
xuang7 deleted the fix/refresh-license-binary-main branch July 14, 2026 19:05
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

fix platform Non-amber Scala service paths

Projects

None yet

Development

Successfully merging this pull request may close these issues.

License-binary drift detected

4 participants