Skip to main content

What Do You Need?

Detect Undeclared Code & Snippets

Identify open source components and code snippets in your codebase to ensure license compliance and transparency. All tools below are found in License Dataset > Snippet Detection.

Pre-Commit Hooks

Automatically scan before every commit to catch compliance issues early in development.

SCANOSS-PY

Terminal based scanning with dependency analysis.

SCANOSS-CC

Desktop application with side-by-side code comparison, keyboard shortcuts and component identification.

GitHub Actions

Scan on push or pull requests, comment on PRs with detected snippets and enforce compliance policies.

Generate Software Bill of Materials (SBOM)

Create comprehensive inventories of all software components, dependencies and licenses in your projects. All tools below are found in License Dataset > SBOM Creation.

SCANOSS-PY

Generate SBOMs from the command line with dependency detection.

SBOM Workbench

Visual component identification, license analysis and export to multiple SBOM formats.

GitHub Actions

Automatically generate SBOMs on push or pull requests, store as workflow artifacts.

Configure Scanning Behavior

Customise how SCANOSS scans your code and manages component detection.

SCANOSS Settings

Control scanning scope, skip files/directories, manage component BOM (include/remove/replace) and set project configurations.

Product Context Dependency

Enforce path-specific restrictions, mandate version upgrades and define license compliance rules. Need help? Contact our AI assistant