What is DeepScan?

DeepScan is a service to scan public repositories for copyright information and effective licenses. 

Especially in source code repositories there are many files in a repository. Each of it may contain information about authorship or licenses. As soon as any of the files contains such an information, the declared license at the repository level is obsolete. 

This bears a huge risk potential, especially in larger projects. DeepScan has been designed to eliminate the risk of hidden licenses. DeepScan scans all text, searches with different methods for licenses or the well known SPDX license keys. It collects all data and presents the data in a nice user interface. 

There are several versions of DeepScan available:

1. Public UI (anonymous) - runs on an AWS ECS-cluster and allows public repositories to be scanned for free
2. Public UI (registered) - registered users may also scan for free but will be allowed to edit  and download the results
3. API (subscription) - integrate DeepScan on a transactional base in your CI/CD processes
4. As part of TrustSource (subscription) - scan also private repositories (authentication) 

Feel free contacting us to learn more about the subscription options or register your open source project for free use of TrustSource, the OpenChain compliant process platform for Open Source governance!

Read here more about how DeepScan works...