From 5ff676209d948730b3292ac21b7e9650ab67969d Mon Sep 17 00:00:00 2001 From: peach280 Date: Tue, 17 Dec 2024 17:12:59 +0530 Subject: [PATCH 1/3] Added Dejacode documentation Signed-off-by: peach280 --- README.md | 46 ++++++++++++++++++++++++++++++++++++++++++++++ 1 file changed, 46 insertions(+) diff --git a/README.md b/README.md index 0b578d9..190798e 100644 --- a/README.md +++ b/README.md @@ -30,6 +30,52 @@ software, but also open data, generated and curated by our applications. ### Important Links +DejaCode +======== + +DejaCode is a complete enterprise-level application to automate open source license +compliance and ensure software supply chain integrity, powered by +`ScanCode `_, +the industry-leading code scanner. + +- Run scans and track all the open source and third-party products and components used + in your software. +- Apply usage policies at the license or component level, and integrate into + ScanCode to ensure compliance. +- Capture software inventories (SBOMs), generate compliance artifacts, and keep + historical data. +- Ensure FOSS compliance with enterprise-grade features and integrations for DevOps and + software systems. +- Scan a software package, simply by providing its Download URL, to get comprehensive + details of its composition and create an SBOM. +- Load software package data into DejaCode with the integration for the open source + ScanCode.io and ScanCode Toolkit projects to create a product’s SBOM. +- Track and report vulnerability tracking and reporting by integrating with the open + source VulnerableCode project. +- Create, publish and share SBOM documents in DejaCode, including detailed attribution + documentation and custom reports in multiple file formats and standards, such as + CycloneDX and SPDX. + +Getting started +--------------- + +The DejaCode documentation is available here: https://dejacode.readthedocs.io/ + +If you have questions please ask them in +`Discussions `_. + +If you want to contribute to DejaCode, start with our +`Contributing `_ page. + +Build and tests status +---------------------- + ++------------+-------------------+ +| **Tests** | **Documentation** | ++============+===================+ +| |ci-tests| | |docs-rtd| | ++------------+-------------------+ + Our homepage is at http://aboutcode.org Our documentation (in progress) is at From 1509486349baa4148861ca61cb43342f85e37d27 Mon Sep 17 00:00:00 2001 From: peach280 Date: Wed, 18 Dec 2024 21:02:55 +0530 Subject: [PATCH 2/3] Added Dejacode Signed-off-by: peach280 --- README.md | 51 ++++++--------------------------------------------- 1 file changed, 6 insertions(+), 45 deletions(-) diff --git a/README.md b/README.md index 190798e..3580051 100644 --- a/README.md +++ b/README.md @@ -23,14 +23,7 @@ software, but also open data, generated and curated by our applications. > for links to all the code repositories of our projects with a brief overview > and our [wiki](https://github.com/aboutcode-org/aboutcode/wiki) if you are > looking to participate. - -### Documentation Build Status - -![Doc Build](https://github.com/aboutcode-org/aboutcode/actions/workflows/docs-ci.yml/badge.svg) - -### Important Links - -DejaCode +>DejaCode ======== DejaCode is a complete enterprise-level application to automate open source license @@ -38,43 +31,11 @@ compliance and ensure software supply chain integrity, powered by `ScanCode `_, the industry-leading code scanner. -- Run scans and track all the open source and third-party products and components used - in your software. -- Apply usage policies at the license or component level, and integrate into - ScanCode to ensure compliance. -- Capture software inventories (SBOMs), generate compliance artifacts, and keep - historical data. -- Ensure FOSS compliance with enterprise-grade features and integrations for DevOps and - software systems. -- Scan a software package, simply by providing its Download URL, to get comprehensive - details of its composition and create an SBOM. -- Load software package data into DejaCode with the integration for the open source - ScanCode.io and ScanCode Toolkit projects to create a product’s SBOM. -- Track and report vulnerability tracking and reporting by integrating with the open - source VulnerableCode project. -- Create, publish and share SBOM documents in DejaCode, including detailed attribution - documentation and custom reports in multiple file formats and standards, such as - CycloneDX and SPDX. - -Getting started ---------------- - -The DejaCode documentation is available here: https://dejacode.readthedocs.io/ - -If you have questions please ask them in -`Discussions `_. - -If you want to contribute to DejaCode, start with our -`Contributing `_ page. - -Build and tests status ----------------------- - -+------------+-------------------+ -| **Tests** | **Documentation** | -+============+===================+ -| |ci-tests| | |docs-rtd| | -+------------+-------------------+ +### Documentation Build Status + +![Doc Build](https://github.com/aboutcode-org/aboutcode/actions/workflows/docs-ci.yml/badge.svg) + +### Important Links Our homepage is at http://aboutcode.org From a6c90fc3fab6fed8b6f62f4f17cdb1475c3a8456 Mon Sep 17 00:00:00 2001 From: peach280 Date: Wed, 18 Dec 2024 21:12:50 +0530 Subject: [PATCH 3/3] Added Dejacode Signed-off-by: peach280 --- README.md | 10 ++++------ 1 file changed, 4 insertions(+), 6 deletions(-) diff --git a/README.md b/README.md index 3580051..38595f5 100644 --- a/README.md +++ b/README.md @@ -23,13 +23,7 @@ software, but also open data, generated and curated by our applications. > for links to all the code repositories of our projects with a brief overview > and our [wiki](https://github.com/aboutcode-org/aboutcode/wiki) if you are > looking to participate. ->DejaCode -======== -DejaCode is a complete enterprise-level application to automate open source license -compliance and ensure software supply chain integrity, powered by -`ScanCode `_, -the industry-leading code scanner. ### Documentation Build Status @@ -133,6 +127,10 @@ Each AboutCode project has its own repository: Linux and construct a build graph from syscalls to show which files are used to build a binary. We are contributors to strace. Maintained by @pombredanne +- **[DejaCode](https://github.com/aboutcode-org/dejacode)**: + DejaCode is a complete enterprise-level application to automate open source license + compliance and ensure software supply chain integrity, powered by the industry-leading code scanner. + We also co-started and worked closely with other FOSS orgs and projects: - [Package URL](https://github.com/package-url): a widely used standard to