Die 5. 03. 21 et hora 02:49 Mat scripsit:
> On Thu, Mar 4, 2021 at 5:42 PM Mat <altima...@gmail.com> wrote:
> > Is there a paid version of fossology for on-prem deployment which offers
> > more features compared to free offering?

There is no paid version, it’s 100% FOSS.
> also, how does your tool compares to https://www.blackducksoftware.com/?

BlackDuck Protex and FOSSology have completely different approaches. If 
anything I would say they fall into complementary (not competitive) 

BlackDuck Protex, as well as FOSSID, and many other (mostly commercial) 
solutions are so called code duplication scanners. They look at the source 
code and compare it against a data base of known (publicly available) sources. 
Think of it like Shazam or a plagiarism tool for software.

So it would e.g. look at the source code you gave it to scan and give a list 
of components that it saw this file in before (e.g. Apache Struts). It would 
then also check what it (thinks it) knows what that package is licensed under 
and who the copyright holders are, and present you that data.

What FOSSology, and e.g. ScanCode, are is a so called license scanner. What it 
does is it scans the source code for occurences that look like licenses and 
copyright statements, and presents you that information for you to confirm or 

So in effect, if you are looking what the license and copyright information 
for a piece of source code is, FOSSology is the better tool, as it looks 
directly in the source itself. While with a code duplication scanner you rely 
on second hand (at best) information, as you don’t know how their data base 
came to the conclusion this file is indeed under that license.

If, on the other hand, you are trying to identify pieces of code that you 
think snuck into your code and don’t have any license info in them, a code 
duplication scanner would be a better choice (and perhaps taking a critical 
look at your programming processes work internally).

For more info, I suggest you take a look at http://oss-compliance-tooling.org/

Hope this helps :)

gsm:    tel:+386.41.849.552
www:    https://matija.suklje.name
xmpp:   matija.suk...@gabbler.org
sip:    matija_suk...@ippi.fr

Links: You receive all messages sent to this group.
View/Reply Online (#3440): https://lists.fossology.org/g/fossology/message/3440
Mute This Topic: https://lists.fossology.org/mt/81245166/21656
Group Owner: fossology+ow...@lists.fossology.org
Unsubscribe: https://lists.fossology.org/g/fossology/unsub 

Reply via email to