We noticed in our vendor_bundled/composer.lock that some packages slipped in which are GPL or Apache licensed only (not compatible with LGPL). We have different cases:

  • The packages we are not sure with
  • The packages we should be able to have the right to use (even with a derogation)
  • The packages that are not used or deprecated.

We are aware of the issue and are working on it for Tiki19.1