From 5c2cce5657f23c6159203cf2635e7e00795a6eb4 Mon Sep 17 00:00:00 2001
From: Ankit Purvesh Shah <ankpshah@amazon.com>
Date: Tue, 7 Nov 2023 18:08:20 -0800
Subject: [PATCH] Enforce version pinning for specified dependencies in license
 check config

- The build process will fail when versions of explicitly allowed dependencies in the license check configuration are updated.

- This enforces a review of any updates in licenses before the changes can be merged.

- This enforcement does not apply to dependencies with already allowed license types and is only for explicitly allowed dependencies
---
 build.gradle.kts | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

diff --git a/build.gradle.kts b/build.gradle.kts
index 0155bdb33b..9eeb6b7a09 100644
--- a/build.gradle.kts
+++ b/build.gradle.kts
@@ -77,8 +77,10 @@ subprojects {
         allow("MIT")
         allow("BSD-2-Clause")
         allow("CC0-1.0")
-        allowUrl("https://www.zetetic.net/sqlcipher/license/")
         allowUrl("https://developer.android.com/studio/terms.html")
+        allowDependency("net.zetetic", "android-database-sqlcipher", "4.5.4") {
+            "BSD style License"
+        }
         allowDependency("org.jetbrains", "annotations", "16.0.1") {
             "Apache-2.0, but typo in license URL fixed in newer versions"
         }