CLI for software license check

Legal Notifications, EULAs, ToS, GDPR, Software License Assessments and SPDX Licenses that we use

An ongoing & curated collection of awesome software best practices and techniques, libraries and frameworks, E-books and videos, websites, blog posts, links to github Repositories, technical guidelines and important resources about Secure Software Supply Chain Lifecycle in Cybersecurity.

Deploy scripts for FOSSology Docker container

See who wrote each line of code in your git repository with interactive reports.

OpenChain Specification

📝 Detect what license a project is distributed under

Check a GitHub organization's repositories' license choices

bitbake layer repository for intergrating osselot into the build process

A desktop workbench for OSS Review Toolkit result files.

Cool links, tools & papers related to Open Source Licensing

Curated list of security tools

project barista - open source license and vulnerability management

This repo contains license and copyright analysis results of open source packages. It further contains other license compliance relevant artifacts, which might be of value for others

Chainloop is an Open Source evidence store for your Software Supply Chain attestations, SBOMs, VEX, SARIF, CSAF files, QA reports, and more.

A compilation of resources in the software supply chain security domain, with emphasis on open source

A light-weight app to audit and inventory large codebases for open source license compliance.

DeltaCode: compare two codebase scans (from ScanCode) to detect significant changes.

This repo realizes the idea that OSS compliance activities will be less expensive by applying OSS principles

📊 ScanCode Workbench is a desktop app to review and conclude license and origin from code scans generated by ScanCode Toolkit.