Skip to main content

ScanCode is a tool to scan code for license, copyright, package and their documented dependencies and other interesting facts.

Project description

A typical software project often reuses hundreds of third-party packages. License and origin information is not always easy to find and not normalized: ScanCode discovers and normalizes this data for you.

Read more about ScanCode here: scancode-toolkit.readthedocs.io.

Why use ScanCode?

  • As a standalone command line tool, ScanCode is easy to install, run and embed in your CI/CD processing pipeline. It runs on Windows, macOS and Linux.

  • ScanCode is used by several projects and organizations such as the Eclipse Foundation, OpenEmbedded.org, the FSF, OSS Review Toolkit, ClearlyDefined.io, RedHat Fabric8 analytics and many more.

  • ScanCode detects licenses, copyrights, package manifests and direct dependencies and more both in source code and binary files.

  • ScanCode provides the most accurate license detection engine and does a full comparison (also known as diff or red line comparison) between a database of license texts and your code instead of relying only on regex patterns or probabilistic search, edit distance or machine learning.

  • Written in Python, ScanCode is easy to extend with plugins to contribute new and improved scanners, data summarization, package manifest parsers and new outputs.

  • You can save your scan results as JSON, HTML, CSV or SPDX. And you can use the companion ScanCode workbench GUI app to review and display scan results, statistics and graphics.

  • ScanCode is actively maintained, has a growing community of users.

  • ScanCode is heavily tested with an automated test suite of over 8000 tests.

  • ScanCode has extensive and updated Documentation help for users.

See our roadmap for upcoming features.

Build and tests status

Branch

Coverage

Linux/macOS

Windows

Master

Master branch test coverage (Linux)

Linux Master branch tests status

Windows Master branch tests status

Develop

Develop branch test coverage (Linux)

Linux Develop branch tests status

Windows Develop branch tests status

Documentation Build

Version

RTD Build

Latest

Documentation Status

Documentation

The ScanCode documentation is hosted at scancode-toolkit.readthedocs.io.

If you are new to Scancode, start here.

Other Important Documentation Pages:

See also https://aboutcode.org for related companion projects and tools.

Installation

Before installing ScanCode make sure you’ve installed the prerequisites properly. This mainly refers to installing the required Python interpreter (Python 3.6 is recommended). Refer Prerequisites for detailed information on all different platforms and Python Versions.

There are 3 main ways you can install ScanCode.

Quick Start

Note the Commands Variation across Installation methods and Platforms.

You can run an example scan printed on screen as JSON:

./scancode -clip --json-pp - samples

Follow the How to Run a Scan Tutorial to perform a basic scan on the samples directory distributed by default with Scancode.

See more command examples:

./scancode --examples

Refer How to set what will be detected in Scan and How to specify Scancode Output Format for more information.

You can also refer to Command Line Options Synopsis and an exhaustive List of All Available Options.

Archive extraction

The archives that exist in a codebase must be extracted before running a scan: ScanCode does not extract files from tarballs, zip files, etc. as part of the scan. The bundled utility extractcode is a mostly-universal archive extractor. For example, this command will recursively extract the mytar.tar.bz2 tarball in the mytar.tar.bz2-extract directory:

./extractcode mytar.tar.bz2

Refer All Extractcode Options and How To Extract Archives for more information.

Support

If you have a problem, a suggestion or found a bug, please enter a ticket at: https://github.com/nexB/scancode-toolkit/issues

For discussions and chats, we have:

Source code and downloads

License

  • Apache-2.0 with an acknowledgement required to accompany the scan output.

  • Public domain CC0-1.0 for reference datasets.

  • Multiple licenses (GPL2/3, LGPL, MIT, BSD, etc.) for third-party components.

See the NOTICE file and the .ABOUT files that document the origin and license of the third-party code used in ScanCode for more details.

Project details


Release history Release notifications | RSS feed

Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Source Distributions

No source distribution files available for this release.See tutorial on generating distribution archives.

Built Distribution

scancode_toolkit-3.2.0-py2.py3-none-any.whl (20.7 MB view details)

Uploaded Python 2 Python 3

File details

Details for the file scancode_toolkit-3.2.0-py2.py3-none-any.whl.

File metadata

  • Download URL: scancode_toolkit-3.2.0-py2.py3-none-any.whl
  • Upload date:
  • Size: 20.7 MB
  • Tags: Python 2, Python 3
  • Uploaded using Trusted Publishing? No
  • Uploaded via: twine/3.2.0 pkginfo/1.5.0.1 requests/2.24.0 setuptools/49.1.0 requests-toolbelt/0.9.1 tqdm/4.48.2 CPython/3.6.10

File hashes

Hashes for scancode_toolkit-3.2.0-py2.py3-none-any.whl
Algorithm Hash digest
SHA256 807d70fd8da567097357af5a777c004fb780d4b396c023845d8d69c563e8445a
MD5 1db20acb3bba1bc296219c0afe2a0dc2
BLAKE2b-256 d22d6f03b8738a33b11afff20f1c3388d1c0fcf3c0fae397271864e20afe9cf5

See more details on using hashes here.

Supported by

AWS AWS Cloud computing and Security Sponsor Datadog Datadog Monitoring Fastly Fastly CDN Google Google Download Analytics Microsoft Microsoft PSF Sponsor Pingdom Pingdom Monitoring Sentry Sentry Error logging StatusPage StatusPage Status page