Consider replacing LicenceFinder with pip-licenses for Python projects in Licence Compliance
Our current license compliance image is gigantic (~2GB, because we embed all supported languages in there), and not working great with Python projects. Not only the underlying LicenseFinder requires to install the dependencies, but it will also need to hit pypi.org to fetch the license data. This data is available in the packages already, so it shouldn't be necessary. Also, installing the packages is not going to work in many real-world projects, as explained in #33034 (closed)
We should evaluate the replacement of LicenceFinder with pip-licenses
, which was suggested by one of our customers. It doesn't require the installation of python packages, is way lighter and faster, and report licenses correctly, according to them.
We could take the same approach as what we used for getting rid of dind, and have pip-licenses running when running python files. Unfortunately, there's no way to tell LicenseFinder to disable Python support, so this job would still fail. And we need to launch it, since there might be other languages in the same project.