/fosslight

Integrated management webservice for Open Source Compliance Process

Primary LanguageJavaGNU Affero General Public License v3.0AGPL-3.0

[Kor]

FOSSLight Hub

GitHub license GitHub release Website shields.io Guide Dev Guide

FOSSLight Hub helps you use the open source software compliantly and securely by managing open source, license and also vulnerability. Also it can process the OSC (Open Source Compliance) process by managing BOM for each project and track issues on open source license obligations and vulnerabilities.

Features

  • Open Source/License
    • Manage of open source information
    • Manage license restrictions and vulnerabilities
    • Register bulk open source and license
  • Compliance Process
    • All-in-one open source compliance process
    • Generate open source notice and verify the disclosed source
    • Issue tracking
  • Vulnerability
    • Search vulnerability
    • Monitor vulnerabilities of project (Mailing)
  • Self-Check
    • Analyze open source
    • Detect automatically license
    • Check license obligations and vulnerabilities
  • SBOM
    • Manage open source and proprietary software
    • Search projects by software
    • Support SPDX (ISO standard)
  • Supply Chain
    • Manage 3rd party software
    • Register 3rd party agreement
    • Manage as a project

Documentation

Demo site

You can experience FOSSLight Hub through the Demo site.
Please visit the Demo site and try out the many features of the FOSSLight Hub first-hand!

Contributing

We always welcome your contributions. Please see the CONTRIBUTING guide for how to contribute.

License

Copyright (c) 2021 LG Electronics
FOSSLight is released under AGPL-3.0-only.

Contributors