license_finder 5.0.3 → 5.1.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 961521e1c3ddc7b0d6dea3404f678dec8c686d9c55850ce4fd8e0fae0892d00e
-  data.tar.gz: a6142833a1b40a948ac60bb6a0edfe8a42fb2479de7eeed4edef56b2052f5a3d
+  metadata.gz: 0f61e3d2e9a0285c561c1192e95d0b91e3a46472960bf70e03bc454f0d66d65f
+  data.tar.gz: 2e09b02961abd261e2998a53d5e67122ffe6dec115976ec4bda85d917ea24841
 SHA512:
-  metadata.gz: 0bb763ad328cc03b83ac75ecb05130e1ceb9af9739b5065e9c32bf0340b6bb3bf5f28c659e3b024dda338ae8b2a53444634ef3063c2fdcd6fcc3dbb668a66f75
-  data.tar.gz: ff1c9248369f3b3f2b18b3353f3a89e1ccb2090d5e83bb527bd0be7b5aa6091ac676d4d4f652c710fbdeeb06b5e5049d55023a5f13818028a70ccecddde11a69
+  metadata.gz: cb8e2141ca54fe804bcd94417444b75786042c08c8ecd63d58d23612b12d112fd22a635a6410c207c9ff945f1c86f1fe66de07dd26fe36dd9a0fde5d3d088325
+  data.tar.gz: 8e232fde4fafe4ea8162c8cab8664339ef2e2fbd666484b95ff1fc273b5904ec9ecafe7b3e1f3f05eed23c1eabcb770cc167c00983a87bd74575612efa9e0d75

data/.gitignore

@@ -8,3 +8,6 @@ pkg/*
 tmp/
 features/fixtures/maven-wrapper/target
 *~
+features/fixtures/sbt/target
+features/fixtures/sbt/project/target
+features/fixtures/sbt/project/project

data/CHANGELOG.md

@@ -1,4 +1,9 @@
-# [5.0.1] / 2018-02-06
+# [5.0.3] / 2018-02-13
+
+### Changed
+* Add the -vendor-only flag to dep-ensure calls - [e305bd1](https://github.com/pivotal/LicenseFinder/commit/e305bd1d5b2d9653f828c3940b59a12903904699) 
+
+# [5.0.2] / 2018-02-06
 
 ### Fixed
 * Add conditional production flag to npm - [533f9b8](https://github.com/pivotal/LicenseFinder/commit/533f9b8fda250655f3613444da49fdce60215237) 
@@ -546,4 +551,5 @@ Bugfixes:
 [3.0.1]: https://github.com/pivotal/LicenseFinder/compare/v3.0.0...v3.0.1
 [3.0.0]: https://github.com/pivotal/LicenseFinder/compare/v2.1.2...v3.0.0
 [5.0.0]: https://github.com/pivotal/LicenseFinder/compare/v4.0.2...v5.0.0
-[5.0.1]: https://github.com/pivotal/LicenseFinder/compare/v5.0.0...v5.0.1
+[5.0.2]: https://github.com/pivotal/LicenseFinder/compare/v5.0.0...v5.0.2
+[5.0.3]: https://github.com/pivotal/LicenseFinder/compare/v5.0.2...v5.0.3

data/Dockerfile

@@ -45,6 +45,18 @@ RUN curl -O http://www-us.apache.org/dist/maven/maven-3/3.5.2/binaries/apache-ma
     mv apache-maven-3.5.2 /usr/local/lib/maven && \
     ln -s /usr/local/lib/maven/bin/mvn /usr/local/bin/mvn
 
+# install sbt
+ENV SBT_VERSION 1.1.1
+RUN mkdir -p /usr/local/share/sbt-launcher-packaging && \
+    curl --progress \
+    --retry 3 \
+    --retry-delay 15 \
+    --location "https://github.com/sbt/sbt/releases/download/v${SBT_VERSION}/sbt-${SBT_VERSION}.tgz" \
+    --output "/tmp/sbt-${SBT_VERSION}.tgz" && \
+    tar -xzf "/tmp/sbt-${SBT_VERSION}.tgz" -C /usr/local/share/sbt-launcher-packaging --strip-components=1 && \
+    ln -s /usr/local/share/sbt-launcher-packaging/bin/sbt /usr/local/bin/sbt && \
+    rm -f "/tmp/sbt-${SBT_VERSION}.tgz"
+
 # install gradle
 WORKDIR /tmp
 RUN curl -L -o gradle.zip http://services.gradle.org/distributions/gradle-4.2-bin.zip && \
@@ -78,7 +90,7 @@ ENV LC_ALL=en_US.UTF-8
 
 #install rvm
 RUN curl -sSL https://rvm.io/mpapis.asc | gpg --import && \
-    curl -sSL https://get.rvm.io | sudo bash -s stable --ruby=2.4.1
+    curl -sSL https://get.rvm.io | sudo bash -s stable --ruby=2.5.1
 ENV PATH=/usr/local/rvm/bin:$PATH
 
 #install mix

data/README.md

@@ -6,7 +6,8 @@ Build status
 * Ruby 2.1.5 [![Ruby 2.1.5 build status](https://norsk.cf-app.com/api/v1/teams/main/pipelines/LicenseFinder/jobs/ruby-2.1.5/badge)](https://norsk.cf-app.com/teams/main/pipelines/LicenseFinder)
 * Ruby 2.2.0 [![Ruby 2.2.0 build status](https://norsk.cf-app.com/api/v1/teams/main/pipelines/LicenseFinder/jobs/ruby-2.2.0/badge)](https://norsk.cf-app.com/teams/main/pipelines/LicenseFinder)
 * Ruby 2.3.0 [![Ruby 2.3.0 build status](https://norsk.cf-app.com/api/v1/teams/main/pipelines/LicenseFinder/jobs/ruby-2.3.0/badge)](https://norsk.cf-app.com/teams/main/pipelines/LicenseFinder)
-* Ruby 2.4.1 [![Ruby 2.4.1 build status](https://norsk.cf-app.com/api/v1/teams/main/pipelines/LicenseFinder/jobs/ruby-2.4.1/badge)](https://norsk.cf-app.com/teams/main/pipelines/LicenseFinder)
+* Ruby 2.4.4 [![Ruby 2.4.4 build status](https://norsk.cf-app.com/api/v1/teams/main/pipelines/LicenseFinder/jobs/ruby-2.4.4/badge)](https://norsk.cf-app.com/teams/main/pipelines/LicenseFinder)
+* Ruby 2.5.1 [![Ruby 2.5.1 build status](https://norsk.cf-app.com/api/v1/teams/main/pipelines/LicenseFinder/jobs/ruby-2.5.1/badge)](https://norsk.cf-app.com/teams/main/pipelines/LicenseFinder)
 * JRuby 9.0.4.0 [![JRuby 9.0.4.0 build status](https://norsk.cf-app.com/api/v1/teams/main/pipelines/LicenseFinder/jobs/ruby-jruby-9.0.4.0/badge)](https://norsk.cf-app.com/teams/main/pipelines/LicenseFinder)
 
 
@@ -48,6 +49,7 @@ report.
 * Golang (via `gvt`, `glide`,`dep`, and `govendor`)
 * JavaScript (via `yarn`)
 * C++/C (via `conan`)
+* Scala (via `sbt`)
 
 ## Installation
 
@@ -171,6 +173,7 @@ languages, as long as that language has a package definition in the project dire
 * `Gopkg.lock` file (for `dep`)
 * `yarn.lock` file (for `yarn`)
 * `conanfile.txt` file (for `conan`)
+* `build.sbt` file (for `sbt`)
 
 
 ### Continuous Integration
@@ -409,6 +412,19 @@ Ensure that `conan install` does not generate an error.
 ., license* -> ./licenses @ folder=True, ignore_case=True
 ```
 
+### SBT Projects
+
+`license_finder` supports SBT. You need to have installed the sbt-license-report in your project:
+[https://github.com/sbt/sbt-license-report](https://github.com/sbt/sbt-license-report)
+
+By default, `license_finder` will report on SBT's "compile" and "test" dependencies. If
+you want to generate a report for some other dependency configuration, you can specify
+it in your projects's `build.sbt`
+
+```
+licenseConfigurations := Set("compile", "provided")
+```
+
 ## Requirements
 
 `license_finder` requires ruby >= 1.9, or jruby.

data/ci/pipelines/pipeline.yml.erb

@@ -1,5 +1,5 @@
 <% setup_slack = defined?(slack_url) && defined?(slack_channel) %>
-<% ruby_versions = %w(2.4.1 2.3.0 2.2.0 2.1.5 jruby-9.0.4.0) %>
+<% ruby_versions = %w(2.5.1 2.4.4 2.3.0 2.2.0 2.1.5 jruby-9.0.4.0) %>
 
 resource_types:
 - name: pull-request

data/ci/pipelines/release.yml

@@ -76,3 +76,39 @@ jobs:
       name: version/tag.txt
       tag: version/tag.txt
       body: version/changelog.txt
+
+- name: manual-release
+  plan:
+  - get: lf-git
+  - get: lf-image
+    params:
+      save: true
+  - get: lf-release
+  - task: update-changelog
+    image: lf-image
+    params:
+      GIT_USERNAME: ((GithubApiUser))
+      GIT_EMAIL: ((GithubApiEmail))
+    file: lf-git/ci/tasks/update-changelog.yml
+  - put: lf-image
+    params:
+      build: lf-git
+      tag: version/version.txt
+      tag_as_latest: true
+  - task: build-and-push-gem
+    image: lf-image
+    params:
+      GIT_USERNAME: ((GithubApiUser))
+      GIT_EMAIL: ((GithubApiEmail))
+      GIT_PRIVATE_KEY: ((CfOslBotPrivateKey))
+      GEM_API_KEY: ((LicenseFinderGemApiKey))
+    file: lf-git/ci/tasks/build-and-push-gem.yml
+  - put: lf-git
+    params:
+      repository: lf-git-changed
+      tag: version/tag.txt
+  - put: lf-release
+    params:
+      name: version/tag.txt
+      tag: version/tag.txt
+      body: version/changelog.txt

data/ci/scripts/run-tests.sh

@@ -14,9 +14,17 @@ bundle install
 if [ "$RUBY_VERSION_UNDER_TEST" == "jruby-9.0.4.0" ]
 then
   bundle update rack
+  apt-get -y install software-properties-common
+  add-apt-repository -y ppa:webupd8team/java
+  apt-get update
+  echo "oracle-java8-installer shared/accepted-oracle-license-v1-1 select true" | sudo debconf-set-selections
+  apt -y install oracle-java8-set-default
 fi
-#
+
 
 bundle exec rake install
 bundle exec rake spec
 bundle exec rake features
+
+
+

data/lib/license_finder/cli/base.rb

@@ -47,7 +47,8 @@ module LicenseFinder
           :format,
           :columns,
           :aggregate_paths,
-          :recursive
+          :recursive,
+          :sbt_include_groups
         ).merge(
           logger: logger_mode
         )

data/lib/license_finder/cli/main.rb

@@ -29,6 +29,7 @@ module LicenseFinder
       class_option :rebar_deps_dir, desc: "Path to rebar dependencies directory. Only meaningful if used with a Erlang/rebar project. Defaults to 'deps'."
       class_option :mix_command, desc: "Command to use when fetching packages through Mix. Only meaningful if used with a Mix project (i.e., Elixir or Erlang). Defaults to 'mix'."
       class_option :mix_deps_dir, desc: "Path to Mix dependencies directory. Only meaningful if used with a Mix project (i.e., Elixir or Erlang). Defaults to 'deps'."
+      class_option :sbt_include_groups, desc: 'Whether dependency name should include group id. Only meaningful if used with a Scala/sbt project. Defaults to false.'
 
       # Method options which are shared between report and action_item
       def self.format_option

data/lib/license_finder/configuration.rb

@@ -118,6 +118,10 @@ module LicenseFinder
       get(:columns)
     end
 
+    def sbt_include_groups
+      get(:sbt_include_groups)
+    end
+
     protected
 
     attr_accessor :primary_config

data/lib/license_finder/core.rb

@@ -82,7 +82,7 @@ module LicenseFinder
     end
 
     def clear_logs
-      FileUtils.rmdir config.log_directory if File.directory? config.log_directory
+      FileUtils.rmtree config.log_directory, secure: true if File.directory? config.log_directory
     end
 
     def options
@@ -102,7 +102,8 @@ module LicenseFinder
         mix_command: config.mix_command,
         mix_deps_dir: config.mix_deps_dir,
         prepare: config.prepare,
-        prepare_no_fail: config.prepare_no_fail
+        prepare_no_fail: config.prepare_no_fail,
+        sbt_include_groups: config.sbt_include_groups
       }
     end
   end

data/lib/license_finder/package.rb

@@ -183,3 +183,4 @@ require 'license_finder/packages/merged_package'
 require 'license_finder/packages/nuget_package'
 require 'license_finder/packages/conan_package'
 require 'license_finder/packages/yarn_package'
+require 'license_finder/packages/sbt_package'

data/lib/license_finder/package_manager.rb

@@ -143,5 +143,6 @@ require 'license_finder/package_managers/rebar'
 require 'license_finder/package_managers/nuget'
 require 'license_finder/package_managers/dep'
 require 'license_finder/package_managers/conan'
+require 'license_finder/package_managers/sbt'
 
 require 'license_finder/package'

data/lib/license_finder/package_managers/govendor.rb

@@ -1,3 +1,6 @@
+require 'license_finder/shared_helpers/common_path'
+require 'json'
+
 module LicenseFinder
   class Govendor < PackageManager
     def possible_package_paths
@@ -6,13 +9,12 @@ module LicenseFinder
 
     def current_packages
       file = File.read(detected_package_path)
-      json = JSON.parse(file)
-      packages = json['package']
+      packages = packages_from_json(file)
       packages.map do |package|
         GoPackage.from_dependency({
-                                    'ImportPath' => package['path'],
-                                    'InstallPath' => project_path.join('vendor', package['path']),
-                                    'Rev' => package['revision']
+                                    'ImportPath' => package[:path],
+                                    'InstallPath' => project_path.join('vendor', package[:path]),
+                                    'Rev' => package[:sha]
                                   }, nil, true)
       end
     end
@@ -28,5 +30,32 @@ module LicenseFinder
     def self.prepare_command
       'govendor sync'
     end
+
+    private
+
+    def packages_from_json(json_string)
+      data = JSON.parse(json_string)
+      packages = data['package']
+
+      packages_by_sha = {}
+
+      packages.each do |package|
+        package_path = package['path']
+        package_revision = package['revision']
+        if packages_by_sha[package_revision].nil?
+          packages_by_sha[package_revision] = [package_path]
+        else
+          packages_by_sha[package_revision] << package_path
+        end
+      end
+
+      result = []
+      packages_by_sha.each do |sha, paths|
+        common_paths = CommonPathHelper.shortest_common_paths(paths)
+        common_paths.each { |cp| result << { sha: sha, path: cp } }
+      end
+
+      result
+    end
   end
 end

data/lib/license_finder/package_managers/gvt.rb

@@ -1,3 +1,4 @@
+require 'license_finder/shared_helpers/common_path'
 module LicenseFinder
   class Gvt < PackageManager
     def possible_package_paths
@@ -47,12 +48,32 @@ module LicenseFinder
 
     def packages_from_output(output, path)
       package_lines = output.split("\n")
-      package_lines.map do |package_line|
-        import_path, revision, repo = package_line.split
+      packages_by_sha = {}
+      package_lines.each do |p|
+        package_path, sha, repo = p.split
+        if packages_by_sha[sha].nil?
+          packages_by_sha[sha] = {}
+          packages_by_sha[sha]['paths'] = [package_path]
+          packages_by_sha[sha]['repo'] = repo
+        else
+          packages_by_sha[sha]['paths'] << package_path
+        end
+      end
+
+      result = []
+      packages_by_sha.each do |sha, info|
+        paths = CommonPathHelper.shortest_common_paths(info['paths'])
+
+        paths.each { |p| result << [sha, p, info['repo']] }
+      end
+
+      result.map do |package_info|
+        sha, import_path, repo = package_info
+
         GoPackage.from_dependency({
                                     'ImportPath' => import_path,
                                     'InstallPath' => path.join(import_path),
-                                    'Rev' => revision,
+                                    'Rev' => sha,
                                     'Homepage' => repo
                                   }, nil, true)
       end

data/lib/license_finder/package_managers/nuget.rb

@@ -25,7 +25,8 @@ module LicenseFinder
     def possible_package_paths
       path = project_path.join('vendor/*.nupkg')
       nuget_dir = Dir[path].map { |pkg| File.dirname(pkg) }.uniq
-      possible_paths = [project_path.join('.nuget'), project_path.join('packages')]
+
+      possible_paths = [project_path.join('packages.config'), project_path.join('.nuget')]
       possible_paths.unshift(Pathname(nuget_dir.first)) unless nuget_dir.empty?
       possible_paths
     end

data/lib/license_finder/package_managers/pip.rb

@@ -25,6 +25,18 @@ module LicenseFinder
       'pip'
     end
 
+    def self.prepare_command
+      'pip install'
+    end
+
+    def prepare
+      prep_cmd = "#{Pip.prepare_command} -r #{@requirements_path}"
+      _stdout, stderr, status = Dir.chdir(project_path) { Cmd.run(prep_cmd) }
+      return if status.success?
+      log_errors stderr
+      raise "Prepare command '#{prep_cmd}' failed" unless @prepare_no_fail
+    end
+
     def possible_package_paths
       if project_path.nil?
         [@requirements_path]

data/lib/license_finder/package_managers/sbt.rb

@@ -0,0 +1,46 @@
+require 'csv'
+require 'license_finder/package_utils/sbt_dependency_finder'
+
+module LicenseFinder
+  class Sbt < PackageManager
+    def initialize(options = {})
+      super
+      @include_groups = options[:sbt_include_groups]
+    end
+
+    def current_packages
+      command = "#{package_management_command} dumpLicenseReport"
+      _stdout, stderr, status = Dir.chdir(project_path) { Cmd.run(command) }
+      raise "Command '#{command}' failed to execute: #{stderr}" unless status.success?
+
+      dependencies = SbtDependencyFinder.new(project_path).dependencies
+      packages = dependencies.flat_map do |text|
+        options = {
+          headers: true
+        }
+
+        contents = CSV.parse(text, options)
+        contents.map do |row|
+          group_id, name, version = row['Dependency'].split('#').map(&:strip)
+          spec = {
+            'artifactId' => name,
+            'groupId' => group_id,
+            'version' => version,
+            'licenses' => [{ 'name' => row['License'] }]
+          }
+          SbtPackage.new(spec, logger: logger, include_groups: @include_groups)
+        end
+      end
+
+      packages.uniq
+    end
+
+    def package_management_command
+      'sbt'
+    end
+
+    def possible_package_paths
+      [project_path.join('build.sbt')]
+    end
+  end
+end

data/lib/license_finder/package_utils/sbt_dependency_finder.rb

@@ -0,0 +1,13 @@
+module LicenseFinder
+  class SbtDependencyFinder
+    def initialize(project_path)
+      @project_path = project_path
+    end
+
+    def dependencies
+      Pathname
+        .glob(@project_path.join('**', 'target', 'license-reports', '*.csv'))
+        .map(&:read)
+    end
+  end
+end

data/lib/license_finder/packages/sbt_package.rb

@@ -0,0 +1,20 @@
+module LicenseFinder
+  class SbtPackage < Package
+    def initialize(spec, options = {})
+      name = spec['artifactId']
+      name = "#{spec['groupId']}:#{name}" if options[:include_groups]
+
+      super(
+        name,
+        spec['version'],
+        options.merge(
+          spec_licenses: Array(spec['licenses']).map { |l| l['name'] }
+        )
+      )
+    end
+
+    def package_manager
+      'Sbt'
+    end
+  end
+end

data/lib/license_finder/scanner.rb

@@ -1,7 +1,7 @@
 module LicenseFinder
   class Scanner
     PACKAGE_MANAGERS = [GoDep, GoWorkspace, Go15VendorExperiment, Glide, Gvt, Govendor, Dep, Bundler, NPM, Pip,
-                        Yarn, Bower, Maven, Gradle, CocoaPods, Rebar, Nuget, Carthage, Mix, Conan].freeze
+                        Yarn, Bower, Maven, Gradle, CocoaPods, Rebar, Nuget, Carthage, Mix, Conan, Sbt].freeze
 
     def initialize(config = { project_path: Pathname.new('') })
       @config = config

data/lib/license_finder/shared_helpers/common_path.rb

@@ -0,0 +1,25 @@
+module CommonPathHelper
+  def self.shortest_common_paths(paths)
+    [].tap do |common_paths|
+      # organize by matching root paths
+      paths_with_roots = paths.group_by { |path| path.split('/').first }
+      paths_with_roots.each do |common_root, full_paths|
+        # use the shortest path as the 'template'
+        shortest_path = full_paths.sort_by { |path| path.split('/').length }.first
+        shortest_common_path = common_root
+
+        # iterate through each subpath of the 'template'
+        shortest_path.split('/').each_with_index do |subpath, i|
+          potential_path = i.zero? ? shortest_common_path : [shortest_common_path, subpath].join('/')
+
+          # check each for the existence of the subsequent subpath
+          mismatch = full_paths.any? { |path| !path.start_with?(potential_path) }
+          break if mismatch
+
+          shortest_common_path = potential_path
+        end
+        common_paths << shortest_common_path
+      end
+    end
+  end
+end

data/lib/license_finder/version.rb

@@ -1,3 +1,3 @@
 module LicenseFinder
-  VERSION = '5.0.3'.freeze
+  VERSION = '5.1.0'.freeze
 end

data/license_finder.gemspec

@@ -5,7 +5,7 @@ require 'license_finder/platform'
 require 'license_finder/version'
 
 Gem::Specification.new do |s|
-  s.required_ruby_version = '>= 1.9.3'
+  s.required_ruby_version = '>= 2.1.0'
   s.name        = 'license_finder'
   s.version     = LicenseFinder::VERSION
 
@@ -50,14 +50,14 @@ Gem::Specification.new do |s|
   s.add_dependency 'rubyzip'
   s.add_dependency 'thor'
   s.add_dependency 'toml', '0.2.0'
+  s.add_dependency 'with_env', '1.1.0'
   s.add_dependency 'xml-simple'
 
-  # to preserve ruby 1.9.3 support
-  s.add_dependency 'with_env', (RUBY_VERSION <= '1.9.3' ? '1.0.0' : '> 1.0')
-
+  s.add_development_dependency 'addressable', '2.5.2'
   s.add_development_dependency 'capybara', '~> 2.0.0'
   s.add_development_dependency 'cocoapods', '0.34.0' if LicenseFinder::Platform.darwin?
   s.add_development_dependency 'fakefs', '~> 0.11.3'
+  s.add_development_dependency 'mime-types', '3.1'
   s.add_development_dependency 'pry'
   s.add_development_dependency 'rake'
   s.add_development_dependency 'rspec', '~> 3'
@@ -66,10 +66,7 @@ Gem::Specification.new do |s|
 
   # to preserve ruby < 2.2.2 support.
   s.add_development_dependency 'rack', (RUBY_VERSION < '2.2.2' ? '1.6.0' : '> 1.6')
-
-  # temporary to preserve ruby 1.9.3 support.
-  s.add_development_dependency 'addressable', '< 2.5.0'
-  s.add_development_dependency 'mime-types', '< 3.0'
+  s.add_development_dependency 'rack-test', (RUBY_VERSION < '2.2.2' ? '0.7.0' : '> 0.7')
 
   s.files         = `git ls-files`.split("\n").reject { |f| f.start_with?('spec', 'features') }
   s.executables   = `git ls-files -- bin/*`.split("\n").map { |f| File.basename(f) }

metadata

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification
 name: license_finder
 version: !ruby/object:Gem::Version
-  version: 5.0.3
+  version: 5.1.0
 platform: ruby
 authors:
 - Ryan Collins
@@ -27,7 +27,7 @@ authors:
 autorequire: 
 bindir: bin
 cert_chain: []
-date: 2018-02-13 00:00:00.000000000 Z
+date: 2018-04-02 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: bundler
@@ -99,6 +99,20 @@ dependencies:
     - - '='
       - !ruby/object:Gem::Version
         version: 0.2.0
+- !ruby/object:Gem::Dependency
+  name: with_env
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - '='
+      - !ruby/object:Gem::Version
+        version: 1.1.0
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - '='
+      - !ruby/object:Gem::Version
+        version: 1.1.0
 - !ruby/object:Gem::Dependency
   name: xml-simple
   requirement: !ruby/object:Gem::Requirement
@@ -114,19 +128,19 @@ dependencies:
       - !ruby/object:Gem::Version
         version: '0'
 - !ruby/object:Gem::Dependency
-  name: with_env
+  name: addressable
   requirement: !ruby/object:Gem::Requirement
     requirements:
-    - - ">"
+    - - '='
       - !ruby/object:Gem::Version
-        version: '1.0'
-  type: :runtime
+        version: 2.5.2
+  type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
-    - - ">"
+    - - '='
       - !ruby/object:Gem::Version
-        version: '1.0'
+        version: 2.5.2
 - !ruby/object:Gem::Dependency
   name: capybara
   requirement: !ruby/object:Gem::Requirement
@@ -155,6 +169,20 @@ dependencies:
     - - "~>"
       - !ruby/object:Gem::Version
         version: 0.11.3
+- !ruby/object:Gem::Dependency
+  name: mime-types
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - '='
+      - !ruby/object:Gem::Version
+        version: '3.1'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - '='
+      - !ruby/object:Gem::Version
+        version: '3.1'
 - !ruby/object:Gem::Dependency
   name: pry
   requirement: !ruby/object:Gem::Requirement
@@ -240,33 +268,19 @@ dependencies:
       - !ruby/object:Gem::Version
         version: '1.6'
 - !ruby/object:Gem::Dependency
-  name: addressable
-  requirement: !ruby/object:Gem::Requirement
-    requirements:
-    - - "<"
-      - !ruby/object:Gem::Version
-        version: 2.5.0
-  type: :development
-  prerelease: false
-  version_requirements: !ruby/object:Gem::Requirement
-    requirements:
-    - - "<"
-      - !ruby/object:Gem::Version
-        version: 2.5.0
-- !ruby/object:Gem::Dependency
-  name: mime-types
+  name: rack-test
   requirement: !ruby/object:Gem::Requirement
     requirements:
-    - - "<"
+    - - ">"
       - !ruby/object:Gem::Version
-        version: '3.0'
+        version: '0.7'
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
-    - - "<"
+    - - ">"
       - !ruby/object:Gem::Version
-        version: '3.0'
+        version: '0.7'
 description: |2
       LicenseFinder works with your package managers to find
       dependencies, detect the licenses of the packages in them, compare
@@ -375,6 +389,7 @@ files:
 - lib/license_finder/package_managers/nuget.rb
 - lib/license_finder/package_managers/pip.rb
 - lib/license_finder/package_managers/rebar.rb
+- lib/license_finder/package_managers/sbt.rb
 - lib/license_finder/package_managers/yarn.rb
 - lib/license_finder/package_utils/activation.rb
 - lib/license_finder/package_utils/conan_info_parser.rb
@@ -383,6 +398,7 @@ files:
 - lib/license_finder/package_utils/licensing.rb
 - lib/license_finder/package_utils/maven_dependency_finder.rb
 - lib/license_finder/package_utils/possible_license_file.rb
+- lib/license_finder/package_utils/sbt_dependency_finder.rb
 - lib/license_finder/packages/bower_package.rb
 - lib/license_finder/packages/bundler_package.rb
 - lib/license_finder/packages/carthage_package.rb
@@ -398,6 +414,7 @@ files:
 - lib/license_finder/packages/nuget_package.rb
 - lib/license_finder/packages/pip_package.rb
 - lib/license_finder/packages/rebar_package.rb
+- lib/license_finder/packages/sbt_package.rb
 - lib/license_finder/packages/yarn_package.rb
 - lib/license_finder/platform.rb
 - lib/license_finder/project_finder.rb
@@ -414,6 +431,7 @@ files:
 - lib/license_finder/reports/text_report.rb
 - lib/license_finder/scanner.rb
 - lib/license_finder/shared_helpers/cmd.rb
+- lib/license_finder/shared_helpers/common_path.rb
 - lib/license_finder/version.rb
 - license_finder.gemspec
 - release/instructions.md
@@ -429,7 +447,7 @@ required_ruby_version: !ruby/object:Gem::Requirement
   requirements:
   - - ">="
     - !ruby/object:Gem::Version
-      version: 1.9.3
+      version: 2.1.0
 required_rubygems_version: !ruby/object:Gem::Requirement
   requirements:
   - - ">="
@@ -437,7 +455,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
       version: '0'
 requirements: []
 rubyforge_project: 
-rubygems_version: 2.7.5
+rubygems_version: 2.7.6
 signing_key: 
 specification_version: 4
 summary: Audit the OSS licenses of your application's dependencies.