As some of you might have realized already the last digit keeps increasing steadily. Throughout the last weeks we added silently many upgrades to our new features and we keep evolving. However, as it is now fine to release it alltogether, we came up with the new version 1.9.
- The announced Deep-Scan service has been launched in a beta version
This service allows you to pass a repo URL to the service. In the background the service is cloning the given repo assessing all files and assessing them for hidden license information. We decided to introduce this to close the gap between declared licenses and effective licenses. Sometimes there is a strange gap between these, e.g having a permissive license declared and a GPL hidden.
DeepScan assess the complete repo and reports all findings. You may also use DeepScan for scanning password protected repos. Currently the service only supports Git-repos. Further Repos are plannend to be added. Also linked licenses are still somewhat tricky to resolve.
- COTS Components Management
In our quest to introduce a comprehensive software documentation solution we have added the option to manage 3rd party components - also called "Commercial of the shelf" components or COTS. This jargon originates from IEC 62304 and MDR/MDD, especially relevant to the medical solutions manufacturers.
In a short term we will be able to offer a SOUP-report (Software Of Unknown Provenance) as it is requested by the IEC and MDD.
- Long project names will not break the layout anymore
- Component pages have been improved as well as some features to manage components
- Introduce Counter of Projects
Since we introduced the option to restrict access to projects to specific users it often happened that people uploaded scans bit did wonder where the results had gone. Most of the cases they were not allowed to see the project as the access has been restricted by the project owner.
To cope with this, we introduced a counter in the project and modules section which indicates the number of existing projects/modules (A) and the number of those visible to the user (B).
If A exceeds B, you may be sure that you are missing the right to view the data you have uploaded. Thus you may want to ask your Project Manager to
- Maven Plugin will support Java v11 and v12 now
- Notice file can transport manual changes
Completing the notice file probably is one of the most important tasks of a Compliance Manager. However, with this capability your manual changes to a specific setting will be transported to a new version of the report, so that you do not need to re-enter documentation for remaining component versions.
- Server Error on Notice File
When you did enter an invalid URL for your company Logo, the Notice File trying to use the logo returned a "Server error 500" message. This has been fixed.
In our next updates we will provide DeepScan with several convenient features and improve quality (e.g. single file scans, skip copyright scans for better performance, etc.) and convenience. Also we will introduce new subscription types, a first version of the SOUP report as well as the long awaited linked modules.