Remove apache-rat dependency completely?

[dweiss]

This is a quick check if anybody minds...

I've had a few attempts to refactor apache rat code (that checks file licenses) and I have to say my conclusion is that it'd be much simpler to just write a simple, specialized task instead of bringing up rat's machinery.

What we need is very simple:

• scan source files with some inclusion/exclusions (gradle task/ file collections would handle this),
• check if these source files are covered under any of the approved licenses; the list of licenses is very small and they have basic substring-based matchers.
• fail if we can't match any of the licenses.

That's it really. We don't need any fancy report, aggregation or exotic licenses. Going through ant/xml report parsing is costly and reimplementing the same on top of rat's current API proved to be a headache (for me). I'd rather just implement it as a basic incremental gradle task, with permitted license string matchers embedded inside.

If anybody can think of a reason this is a bad idea - please let me know.

[dweiss]

Related - #14582

[rmuir]

I agree, I tried to make some progress the other day and seemed to only uncover more breaks and problems.

[dweiss]

I've removed it completely on my dev branch. Will reimplement basic license checks tomorrow. I think this should be simpler to manage and comprehend.

[dweiss]

I rewrote it to be incremental and only read the leading header of each file. It's super fast. I'll finish porting all the patterns tomorrow and make a pr. Sorry, too tired today.

https://github.com/dweiss/lucene/blob/gradle-plugins-to-java-8/build-tools/build-infra/src/main/java/org/apache/lucene/gradle/plugins/licenses/CheckLicensesTask.java