- Which SDK does this apply to? Which version of the SDK you are using?
email@example.com is licensed under MIT but it is using firstname.lastname@example.org which is licensed under CC-BY-SA-2.0. As per CC-BY-SA-2.0, email@example.com (and subsequently firstname.lastname@example.org and email@example.com) must also be licensed under CC-BY-SA-2.0 because it uses firstname.lastname@example.org.
However, a simple solution exists as email@example.com (3 patch versions later) is licensed under MIT. We can simply switch node-xml-encryption to use firstname.lastname@example.org, and increase the patch version of the libraries increased above in reverse order. A developer has already created a pull request to start fixing this very issue:
I have tried contacting the maintainers of node-xml-encryption on GitHub, but have not heard back from them. Would a developer at Auth0 be able to take a look and merge the pull request at their earliest convenience?