Skip to content

bharathnellepalle/source-code-scan-scanoss-syft

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

37 Commits
.github/workflows
.github/workflows
 
 
.idea
.idea
 
 
demo
demo
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
generate_excel_merge_syft_scanoss.py
generate_excel_merge_syft_scanoss.py
 
 

Repository files navigation

Source Code Compliance Scanner (SCANOSS + Syft)

This project scans a source code repository using SCANOSS and Syft, and generates:

  • SPDX JSON report
  • Combined Excel license report source-code-scan-scanoss-syft Flow Image

Tools Used

  • SCANOSS CLI
  • Syft
  • Python (for merging + Excel output)

Output

  • scanoss-results.json
  • syft-sbom.spdx.json
  • combined_licenses.xlsx

How to Use

Run the GitHub Actions workflow with a target Git repository. Reports will be uploaded as artifacts.

License

This project is licensed under the Apache License 2.0.
See the LICENSE file for details.

About

Automated OSS Compliance & SBOM generation using Syft, SCANOSS, and GitHub Actions with Excel reporting.

Resources

Readme

License

Apache-2.0 license
Activity

Stars

1 star

Watchers

1 watching

Forks

0 forks
Report repository

Releases

20 tags

Packages

 
 
 

Contributors

Languages