-
Notifications
You must be signed in to change notification settings - Fork 984
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Research a way to avoid pulling in Play Services/Firebase #11010
Comments
we can try to use https://github.com/wix/react-native-camera-kit instead, also we need to remove |
@flexsurfer @jakubgs |
Camera replacement: #11016 |
Remove |
Also, we add in 1.5 this dep https://developer.android.com/google/play/installreferrer/library |
@Ferossgp that's non-FOSS too, right? |
I actually can't tell. I've been googling a while now and I can't seem to find out what license it's under.
I'll try taking a look at the AAR file to see if I can find out. |
Well, it looks like it uses <project xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
xmlns="http://maven.apache.org/POM/4.0.0"
xsi:schemaLocation= "http://maven.apache.org/POM/4.0.0
http://maven.apache.org/xsd/maven-4.0.0.xsd">
<modelVersion>4.0.0</modelVersion>
<groupId>com.android.installreferrer</groupId>
<artifactId>installreferrer</artifactId>
<version>1.1.2</version>
<packaging>aar</packaging>
<licenses>
<license>
<name>Android Software Development Kit License</name>
<url>https://developer.android.com/studio/terms.html</url>
<distribution>repo</distribution>
</license>
</licenses>
<dependencies/>
</project> https://dl.google.com/dl/android/maven2/com/android/installreferrer/installreferrer/1.1.2/installreferrer-1.1.2.pom Is that kosher @licaon-kter ? |
Well, it appears that all the Firebase and Play Store stuff also uses the same license as <?xml version='1.0' encoding='UTF-8'?>
<project xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns="http://maven.apache.org/POM/4.0.0" xsi:schemaLocation="http://maven.apache.org/POM/4.0.0 http://maven.apache.org/xsd/maven-4.0.0.xsd">
<modelVersion>4.0.0</modelVersion>
<groupId>com.google.android.gms</groupId>
<artifactId>play-services-base</artifactId>
<version>17.0.0</version>
<packaging>aar</packaging>
<OMITTED>
<licenses>
<license>
<name>Android Software Development Kit License</name>
<url>https://developer.android.com/studio/terms.html</url>
<distribution>repo</distribution>
</license>
</licenses>
</project> So I guess it's also not acceptable. Damn. |
@flexsurfer found this: https://gitlab.com/fdroid/fdroidclient/-/issues/1932 It appears to be open and without a clear conclusion. |
Non-FOSS is not only a license thing, as seen above it could be a deps thing. It could pe GPL3, but if it pulls google-services we can't use it. ;) |
@licaon-kter as far as I know |
Intro
During research on releasing the app via F-Droid in #8512 it was found that our dependency on
status-react-camera
pulls in a lot of dependencies we actually don't use, but are not compatible with the F-Droid requirement to not include non-FOSS software.See: https://f-droid.org/docs/Inclusion_Policy/
Dependencies
Here's a list of stuff
status-react-camera
pulls in that should not be there:Details
This was pointed out by @licaon-kter in fdroiddata#7179 that the APK includes
com.google.android.gms.*
dependencies:https://www.virustotal.com/gui/file/f3232309d534ae3d688dbc9cd089719e353d6eeccf7ca262572060f011454afa/details
The text was updated successfully, but these errors were encountered: