Improve license detection for JavaScript
Since only package.json
(with exact package versions) and package-lock.json
is supported we should either use a tool for getting all the licenses from package.json
(like https://github.com/davglass/license-checker) or also support lock files generated from yarn (yarn.lock
).