aboutcode-org / aboutcode-toolkit
AboutCode Toolkit provides a simple way to document provenance metadata (origin and license) about third-party code that you use in your project: it includes utilities to generate inventory/BOM or Attribution documentation.
☆94Updated 2 months ago
Related projects ⓘ
Alternatives and complementary repositories for aboutcode-toolkit
- Utility library to parse, normalize and compare License expressions for Python using a boolean logic engine. For expressions using SPDX …☆58Updated 3 weeks ago
- SPDX 2.0 document creation and storage☆15Updated last year
- ScanCode Workbench is a desktop app to review and conclude license and origin from code scans generated by ScanCode Toolkit.☆156Updated 3 months ago
- A collection of scripts for license compliance scanning, mostly experimental☆22Updated 4 months ago
- container-inspector is a suite of analysis utilities and command line tools for Docker container images, their layers and how these relat…☆34Updated 3 months ago
- Publications done by Double Open.☆16Updated 4 years ago
- Atarashi scans for license statements in open source software, focusing on text statistics. Designed to work stand-alone and with FOSSolo…☆26Updated 2 years ago
- SPDX Tools☆132Updated last year
- Source for the website providing online SPDX tools☆60Updated last month
- ScanCode.io is a server to script and automate software composition analysis pipelines with ScanPipe pipelines. This project is sponsored…☆119Updated this week
- Python implementation of the package url spec. This project is sponsored by NLnet project https://nlnet.nl/project/vulnerabilitydatabase…☆71Updated 3 weeks ago
- A Python library to parse, validate and create SPDX documents.☆190Updated last month
- Inspect Python code and PyPI package manifests. Resolve Python dependencies.☆22Updated last month
- OSS License Open Data☆12Updated 5 years ago
- Curations and configuration files for the OSS Review Toolkit.☆16Updated this week
- Doc, wiki and organizational content for ClearlyDefined☆86Updated this week
- This repo realizes the idea that OSS compliance activities will be less expensive by applying OSS principles☆83Updated 3 months ago
- Automate open source license compliance and ensure software supply chain integrity☆25Updated this week
- The International FOSS Law Book, v.2 and onwards☆13Updated 2 years ago
- OSADL license compatibility matrix as a CSV☆15Updated 3 weeks ago
- Parse and compare all the package versions and all the ranges. From debian, npm, pypi, ruby and more. Process all the version range specs…☆32Updated last month
- Chrome/Firefox browser extension to compare text against spdx license list☆33Updated last year
- A light-weight app to audit and inventory large codebases for open source license compliance.☆60Updated this week
- FOSSmarks - A practical guide to understanding trademarks in the context of Free and Open Source Software projects.☆25Updated 9 months ago
- Bitergia reports engine☆17Updated 3 years ago
- CHAOSS Value Working Group☆39Updated last week
- material designed to help organizations meet the training and process requirements of the OpenChain Specification☆30Updated 2 years ago
- WARNING - Work in Progress - It is not Bug Free! Use with Caution. This repository contains Dockerfiles and accompanying scripts that all…☆13Updated 2 years ago
- A maturity model for adopting open source☆64Updated 8 years ago
- ☆35Updated 2 weeks ago