Open Source Software Provenance Compliance | AboutCode


Open Source for Open Source

AboutCode is a set of open source tools to discover and manage important information about your software. Our primary focus is to solve the problem of discovering, identifying, tracking and managing open source and third-party components used in your products, applications and systems. The AboutCode tools are designed to be modular so that a software development team can quickly implement a workflow tailored for its set of languages, technologies and tools.

Open Source Projects


ScanCode Toolkit

Discovering the license for a free and open source code is important, but it should not be as hard as it seems today. ScanCode is a new open source scanning solution to accurately identify the license(s) of the code you want to consume.

With ScanCode, a development team can start scanning code on their own! You can now focus on whether the license is OK for your organization and if the code works for your projected use. These are the important questions. To learn more or to contribute, visit our scancode-toolkit project on GitHub.

DeltaCode

DeltaCode allows you to easily compare ScanCode scans for two versions of a package, component, codebase or product in order to quickly identify possible changes with a focus on identifying license changes. DeltaCode reports matching files with a score and a list of factors that contribute to that score.

You can use DeltaCode with ScanCode to identify and track license and related changes in open source or third party software packages or components from release to release. To learn more or to contribute, visit our project on GitHub.

AboutCode Manager

AboutCode Manager provides an advanced visual UI to help you quickly evaluate license and other notices identified by ScanCode and record your conclusion about the effective license(s) for a component.

AboutCode Manager is based on Electron and is the primary desktop/GUI tool for using nexB’s AboutCode tools. To learn more or to contribute, visit our aboutcode-manager project on GitHub.

AboutCode Toolkit

AboutCode Toolkit provides a simple way to (1) document the provenance (origin and license) of open source and third-party software components that you use and (2) automate creation of attribution notices and redistribution packages.

An ABOUT file is a small text file stored in the codebase side-by-side with the software component file or archive that it documents. To learn more or to contribute, visit our project on GitHub.

TraceCode Toolkit

TraceCode Toolkit helps you determine which components are actually distributed or deployed for your product. This is essential information for determining your open source license obligations because many are only triggered by distribution or deployment.

TraceCode Toolkit is a tool to analyze the traced execution of a build, so you can learn which files are built into binaries and ultimately deployed in your distributed software. To learn more or to contribute, visit our project on GitHub.

License Expression

License Expression is small utility library to parse, compare, simplify and normalize license expressions (e.g. SPDX license expressions) using boolean logic such as: GPL-2.0 or later WITH Classpath Exception AND MIT. To learn more or to contribute, visit our project on GitHub.