scancode-toolkit
scancode-toolkit copied to clipboard
nexB
:mag: ScanCode detects licenses, copyrights, dependencies by "scanning code" ... to discover and inventory open source and third-party packages used in your code. Sponsored by NLnet project https://nl...
scanned doris-1.1.1-rc03 ( available at https://github.com/apache/doris/archive/refs/tags/1.1.1-rc03.tar.gz ) using scancode-toolkit-31.0.2 and although it detected most of the licenses in the rather complex notice (attached) in doris-1.1.1-rc03/dist/LICENSE-dist.txt it returns unknown-license-reference twice for...
scancode-toolkit-31.0.2 returns an unknown-license-reference just before the bzip2-libbzip-2010 text
I scanned doris-1.1.1-rc03 ( available at https://github.com/apache/doris/archive/refs/tags/1.1.1-rc03.tar.gz ) using scancode-toolkit-31.0.2 and although it detected most of the licenses in the rather complex notice (attached) in doris-1.1.1-rc03/dist/LICENSE-dist.txt it returns both unknown-license-reference...
I scanned doris-1.1.1-rc03 ( available at https://github.com/apache/doris/archive/refs/tags/1.1.1-rc03.tar.gz ) using scancode-toolkit-31.0.2 and although it detected most of the licenses in the rather complex notice (attached) in doris-1.1.1-rc03/dist/LICENSE-dist.txt it returns both unknown-license-reference...
I scanned doris-1.1.1-rc03 ( available at https://github.com/apache/doris/archive/refs/tags/1.1.1-rc03.tar.gz ) using scancode-toolkit-31.0.2 and although it detected most of the licenses in the rather complex notice (attached) in doris-1.1.1-rc03/be/src/glibc-compatibility/musl/COPYRIGHT it returns both unknown-license-reference...
A scan using `scancode-toolkit-31.0.2` of `tomviz-2.0.0-rc1` [tomviz-2.0.0-rc1-results.json.zip](https://github.com/nexB/scancode-toolkit/files/9436042/tomviz-2.0.0-rc1-results.json.zip) ( available from https://github.com/OpenChemistry/tomviz/archive/refs/tags/2.0.0-rc1.tar.gz ) returned the correct Declared license of bsd-new from the project LICENSE file, but it returned 425 instances of...
The LSB and ISO Linux was the genisis of the Linux Foundation. The scancode-toolkit needs to live up to the LF standards of portability. Either [fix to build](https://github.com/nexB/scancode-toolkit/issues/3094) or offer...
### Description When running Scancode in verbose mode (`-v` flag), the files listed in output are duplicated and it looks they are scanned two times. According to @pombredanne, this is...
This PR adds basic support bitbake recipes treated as package data. ### Tasks * [x] Reviewed [contribution guidelines](https://github.com/nexB/scancode-toolkit/blob/develop/CONTRIBUTING.rst) * [x] PR is descriptively titled 📑 and links the original issue...
I've scanned the gemspec https://raw.githubusercontent.com/logstash-plugins/logstash-mixin-ecs_compatibility_support/main/logstash-mixin-ecs_compatibility_support.gemspec and in the dependency results, there is an invalid dependency created from the description (https://github.com/logstash-plugins/logstash-mixin-ecs_compatibility_support/blob/main/logstash-mixin-ecs_compatibility_support.gemspec#L6) The created dependency in question: ``` { "purl": "pkg:gem/this%20adapter%20provides%20an%20implementation%20of%20ECS-Compatibility%20mode%20that%20can%20be%20controlled%20at%20the%20plugin%20instance%20level.", "extracted_requirement":...
### Description Scancode provides "digia-qt-commercial" for the following license text which is a follow up license for Qt from Qt Company: ..... ** Commercial License Usage ** Licensees holding valid...
