A suite of tools to automate software compliance checks.
-
Updated
Jun 1, 2024 - Kotlin
A suite of tools to automate software compliance checks.
Generates a text file containing all of the licences for your production dependencies
🔍 ScanCode detects licenses, copyrights, dependencies by "scanning code" ... to discover and inventory open source and third-party packages used in your code. Sponsored by NLnet project https://nlnet.nl/project/vulnerabilitydatabase, the Google Summer of Code, Azure credits, nexB and others generous sponsors!
A Gradle Plugin allowing easy execution of the Eclipse Dash License Tool.
A cargo subcommand to give credit to your dependencies
Chainloop is an Open Source evidence store for your Software Supply Chain attestations, SBOMs, VEX, SARIF, CSAF files, QA reports, and more.
Search an SBOM for licenses and the packages they belong to
OWASP CycloneDX is a full-stack Bill of Materials (BOM) standard that provides advanced supply chain capabilities for cyber risk reduction. SBOM, SaaSBOM, HBOM, AI/ML-BOM, CBOM, OBOM, MBOM, VDR, and VEX
ScanCode.io is a server to script and automate software composition analysis pipelines with ScanPipe pipelines. This project is sponsored by NLnet project https://nlnet.nl/project/vulnerabilitydatabase/ Google Summer of Code, nexB and others generous sponsors!
Basic .NET Core license key generator and verifier library featuring TPL and async/await.
License Pre-Validation Service analyzes which open source components and licenses are used in every patch. It returns the list of restricted licenses and the possibility of license violation on the comment with the exact code location and the open source component information.
🍋🟩 light license-key server in 1 file
💼 Provides a composer package with an abstraction of an open-source license.
Automate open source license compliance and ensure software supply chain integrity
Notice file generator for Go and Node projects.
Add a description, image, and links to the license topic page so that developers can more easily learn about it.
To associate your repository with the license topic, visit your repo's landing page and select "manage topics."