Die 5. 03. 21 et hora 02:49 Mat scripsit: > On Thu, Mar 4, 2021 at 5:42 PM Mat <altima...@gmail.com> wrote: > > Is there a paid version of fossology for on-prem deployment which offers > > more features compared to free offering?
There is no paid version, it’s 100% FOSS. > also, how does your tool compares to https://www.blackducksoftware.com/? BlackDuck Protex and FOSSology have completely different approaches. If anything I would say they fall into complementary (not competitive) categories. BlackDuck Protex, as well as FOSSID, and many other (mostly commercial) solutions are so called code duplication scanners. They look at the source code and compare it against a data base of known (publicly available) sources. Think of it like Shazam or a plagiarism tool for software. So it would e.g. look at the source code you gave it to scan and give a list of components that it saw this file in before (e.g. Apache Struts). It would then also check what it (thinks it) knows what that package is licensed under and who the copyright holders are, and present you that data. What FOSSology, and e.g. ScanCode, are is a so called license scanner. What it does is it scans the source code for occurences that look like licenses and copyright statements, and presents you that information for you to confirm or correct. So in effect, if you are looking what the license and copyright information for a piece of source code is, FOSSology is the better tool, as it looks directly in the source itself. While with a code duplication scanner you rely on second hand (at best) information, as you don’t know how their data base came to the conclusion this file is indeed under that license. If, on the other hand, you are trying to identify pieces of code that you think snuck into your code and don’t have any license info in them, a code duplication scanner would be a better choice (and perhaps taking a critical look at your programming processes work internally). For more info, I suggest you take a look at http://oss-compliance-tooling.org/ Hope this helps :) cheers, Matija -- gsm: tel:+386.41.849.552 www: https://matija.suklje.name xmpp: matija.suk...@gabbler.org sip: matija_suk...@ippi.fr -=-=-=-=-=-=-=-=-=-=-=- Links: You receive all messages sent to this group. View/Reply Online (#3440): https://lists.fossology.org/g/fossology/message/3440 Mute This Topic: https://lists.fossology.org/mt/81245166/21656 Group Owner: fossology+ow...@lists.fossology.org Unsubscribe: https://lists.fossology.org/g/fossology/unsub [arch...@mail-archive.com] -=-=-=-=-=-=-=-=-=-=-=-
