You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: website/docs/getting_started/getting_started-software-identification.md
+14-8Lines changed: 14 additions & 8 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -136,18 +136,24 @@ including:
136
136
-[elf-inspector](https://github.com/aboutcode-org/elf-inspector/blob/main/README.rst) collects data from ELF binaries
137
137
-[go-inspector](https://github.com/aboutcode-org/go-inspector/blob/main/README.rst) extracts dependencies and symbols from Go binaries
138
138
-[rust-inspector](https://github.com/aboutcode-org/rust-inspector/blob/main/README.rst) extracts dependencies and symbols from Rust binaries
139
-
-[source-inspector]https://github.com/aboutcode-org/source-inspector/blob/main/README.rst() collects code symbols, strings and comments from source files
139
+
-[source-inspector](https://github.com/aboutcode-org/source-inspector/blob/main/README.rst) collects code symbols, strings and comments from source files
140
140
141
141
These are all Python utilities that can also be used independently.
142
142
143
143
## Identify software dependencies
144
-
There are many use cases that include identification of package software
145
-
dependencies
146
-
147
-
- ScanCode
148
-
- dependency inspector
149
-
- nuget-inspector
150
-
- python-inspector
144
+
There are many use cases that require the identification of package software
145
+
dependencies including:
146
+
- Identifying the licenses and vulnerabilites from package dependencies before you select a software package to use it in your product or project.
147
+
- Identifying package version dependencies before you upgrade a package.
148
+
- Reporting package dependencies with their licenses or vulnerabilities in an SBOM or other document.
149
+
150
+
-**ScanCode Toolkit** and **ScanCode.io** both collect and report package
151
+
dependency data from package manifest and dependency lock files (e.g., package.json or package-lock.json for npm. The reported package data includes the scope of a dependency and related attributes (runtime, optional, pinned, direct).
152
+
-[dependency inspector](https://github.com/aboutcode-org/dependency-inspector/blob/main/README.rst) is a command line tool to generate package lockfiles and parsable package manifests to make it easy to collect resolved dependencies
153
+
and accurate metadata for a project. It uses the standard package management tool for each package type or ecosystem.
154
+
-[nuget-inspector](https://github.com/aboutcode-org/nuget-inspector/blob/main/README.rst) is a utility to resolve .NET or nuget package dependencies independently of a dotnet SDK installed on the computer used to run the **nuget-inspector**.
155
+
-[python-inspector](https://github.com/aboutcode-org/python-inspector/blob/main/README.rst) is utility to resovlve PyPI package dependencies and query PyPI
0 commit comments