scancode.io
scancode.io copied to clipboard
aboutcode-org
ScanCode.io is a server to script and automate software composition analysis pipelines with ScanPipe pipelines. This project is sponsored by NLnet project https://nlnet.nl/project/vulnerabilitydatabas...
At the moment, if the containers are destroyed, information about scans are stored in the database (assuming a remote DB has been configured). However, the original image will be lost....
The same way we have package (and the related resources and licenses) and resources (and the related packages and licenses) listings, it would be useful to have a licenses and/or...
This is a side effect of crafting and displaying the charts at all time in that view.
distroless images are really based on Debian with a slightly different layout for installed packages data. See also: - https://github.com/nexB/container-inspector/blob/90c4aa61be4d69f3392b6e02e88f3996f8375f68/src/container_inspector/distro.py#L420 - https://github.com/GoogleContainerTools/distroless - https://medium.com/@luke_perry_dev/dockerizing-with-distroless-f3b84ae10f3a
See these issues for details: - Improve quality and tracing of license detection in Debian copyright files https://github.com/nexB/scancode-toolkit/issues/2390 - Determine the primary license from a copyright file https://github.com/nexB/debut/issues/8 - Recover...
Alpine license metadata are often weak and we need to make them better. This is a meta issue tp track the work required across several libraries and tools. - https://github.com/nexB/purldb/issues/307...
Currently when project is created a `POST` request is sent. Response for this request is sent after input is downloaded. In my opinion it is wrong user experience as download...
The web interface shows progress on image upload (thanks!). However, it does not show any progress if you specify a URI to download, which for larger images could be quite...
Maybe this already exists, but could there be an option to not store images after a scan completes?
Hi, I have created two user and each added a unique token. Both user belong to same group with following rights ``` -auth | group | Can view group">auth |...
Metadata
Owner
Metadata
ScanCode.io is a server to script and automate software composition analysis pipelines with ScanPipe pipelines. This project is sponsored by NLnet project https://nlnet.nl/project/vulnerabilitydatabas...