A suite of tools to automate software compliance checks.
-
Updated
Jun 5, 2024 - Kotlin
A suite of tools to automate software compliance checks.
A light-weight app to audit and inventory large codebases for open source license compliance.
🔍 ScanCode detects licenses, copyrights, dependencies by "scanning code" ... to discover and inventory open source and third-party packages used in your code. Sponsored by NLnet project https://nlnet.nl/project/vulnerabilitydatabase, the Google Summer of Code, Azure credits, nexB and others generous sponsors!
Collection of tools for working with Open Source licenses
FOSSology is an open source license compliance software system and toolkit. As a toolkit you can run license, copyright and export control scans from the command line. As a system, a database and web ui are provided to give you a compliance workflow. License, copyright and export scanners are tools used in the workflow.
You have licenses to manage, What Would Henry Rollins Do?
Project providing insights on the metaeffekt license database.
Detect Licenses, dependencies by scanning your project/repositories to discover the Open Source and Third party packages used in your code.
This repo realizes the idea that OSS compliance activities will be less expensive by applying OSS principles
Outputs licenses from 3rd party libraries to a file
Scan is a free & Open Source DevSecOps tool for performing static analysis based security testing of your applications and its dependencies. CI and Git friendly.
project barista - open source license and vulnerability management
Reliable project licenses detector.
Get a list of licenses used by a projects dependencies
Command line tool for running license checks to guard you from using packages with blacklisted licenses. Integrates well into your ci workflow.
Atarashi scans for license statements in open source software, focusing on text statistics. Designed to work stand-alone and with FOSSology.
Validated dataset generation using regex along with NLP Algorithms.
Cool links, tools & papers related to Open Source Licensing
Spandx is a CLI to detect licenses for each dependency.
A Python package to find license expressions and copyright statements in a codebase.
Add a description, image, and links to the license-scan topic page so that developers can more easily learn about it.
To associate your repository with the license-scan topic, visit your repo's landing page and select "manage topics."