scancode.io icon indicating copy to clipboard operation
scancode.io copied to clipboard

Published 20 hours ago verified publisher icon aboutcode-org

Metadata

ScanCode.io is a server to script and automate software composition analysis pipelines with ScanPipe pipelines. This project is sponsored by NLnet project https://nlnet.nl/project/vulnerabilitydatabas...

Results 313 scancode.io issues
Sort by recently updated
recently updated
newest added

An app to detect licenses from the provided input license text

55 comment

The aim of this PR is to create a working app inside this Django project to detect licenses from the provided input text and summarize the results for the end...

lf32 avatar lf32

Dependencies are not created using the scan_package pipeline

1 comment

Using https://files.pythonhosted.org/packages/ce/21/41a0028f6d610987c0839250357c1a00f351790b8a448c2eb323caa719ac/celery-5.2.7.tar.gz as input. With the `scan_codebase` and `root_filesystems` pipelines, 88 dependencies are created. When using the `scan_package` pipelines, no dependencies are created. Note that the "Datafile resource" `requires.txt` and...

tdruez avatar tdruez

bug

Scan results quality for Python packages: wheel vs. source distributions

1 comment

While the "License clarity" and "Scan summary" data looks great when using source distributions, the quality of the results when using wheel as inputs could be improved. For example with...

tdruez avatar tdruez

Upgrade for fontawesome icons to v6

2 comment

Can `scancode.io's` font awesome icons version be upgraded to `v6`? #### Reason * A lot of icons are supported and can be used to replace `tags` in the project.

lf32 avatar lf32

List views UI improvements

- [x] Add ability to sort columns - [x] Add missing page title - [ ] Display available filter in list views

tdruez avatar tdruez

When we display package manifest and lock files, hyperlink to the upstream package repo web page

16 comment

When we display a package manifest or lockfile in the resource details, we should have a way to add a hyperlink to the upstream repository web page for this repo:...

pombredanne avatar pombredanne

web-ui

Diagnose issues with Resources not associated with a Package

3 comment

We have some major gaps in Package Detection where Resources are not associated with a Package or a Package is not detected. The task here is to run SCIO Scans...

mjherzog avatar mjherzog

Add new field `extracted_to` to `CodebaseResource`

In #485, we have an issue where we get two DiscoveredPackages for the same package when we scan a pypi wheel using the `scan_codebase` pipeline. This is happening because we...

JonoYang avatar JonoYang

SCIO: Design how to report file-level Package data that are not part of a top-level Package instance

1 comment

When we have left over package data that are not "assembled" in a top level package, we will need to design how these are presented to user.

pombredanne avatar pombredanne

Ensure that the UI and JSON project reports contain a version that contains a commit and refects which exact code is running

Running the latest version of the tip of the main branch still reports a tag that's 6 months old. It would be useful to have something that reflects the git...

pombredanne avatar pombredanne

Metadata

109
Stars
85
Forks
Watchers

Owner

verified publisher icon aboutcode-org

Metadata

ScanCode.io is a server to script and automate software composition analysis pipelines with ScanPipe pipelines. This project is sponsored by NLnet project https://nlnet.nl/project/vulnerabilitydatabas...

Back