scancode.io
scancode.io copied to clipboard
aboutcode-org
ScanCode.io is a server to script and automate software composition analysis pipelines with ScanPipe pipelines. This project is sponsored by NLnet project https://nlnet.nl/project/vulnerabilitydatabas...
We should ensure that rerunning some pipeline/step does not crash. For instance, rerunning the about file mapping in a d2d pipeline should be OK.
In a deploy_to_devel pipeline, when I have an archive like "foo.zip", there will be a directory "foo.zip.extract" with the extracted content. - If "foo.zip" is matched to the purlDB then...
When doing a JS and Java D2d on a large codebase, there is either little or no progress provided ``` 2024-06-27 03:27:44.41 Step [match_directories_to_purldb] starting 2024-06-27 03:27:45.65 Matching 78,856 directories...
These are important to figure out detection issues.
I have a project that I created using the `inspect_packages` pipeline. I ran the `populate_purldb` pipeline on it and it ended with a failure status. Looking at the error log,...
run is a fairly common name. We should prefix this with scancodeio to make it well distinguished https://scancodeio.readthedocs.io/en/latest/command-line-interface.html#run-pipeline-name-input-location
When using the purldb scan worker command, the main worker loop gets the next job from purldb and creates a scan project for it. It then polls the project until...
We need to add the "is_legal" and all "classify" attributes when running a "scan_single_package" in ScanCode.io. This should also be part of the output of the `api/projects//summary/` endpoint, (this likely...
Metadata
Owner
Metadata
ScanCode.io is a server to script and automate software composition analysis pipelines with ScanPipe pipelines. This project is sponsored by NLnet project https://nlnet.nl/project/vulnerabilitydatabas...