Solutions: Silhouette Code Scanner
OSRM’s Silhouette code scanner
quickly and easily identifies Open Source and other third-party code
within the code base. Unlike other code scanning tools, Silhouette
identifies risks without a significant number of false positives,
creating output that is easily reviewed.
By scanning binaries and source code from virtually any language, Silhouette
identifies:
- Open Source projects used within the code base
- How the Open Source is used, for example whether it is statically or dynamically linked
- Whether the code base contains significant (and therefore possibly copyrightable) Open Source inline functions or macros
- Whether the Open Source code carries the appropriate copyright and license notices
The Silhouette
reports,
which include reports on Matched Open Source Projects, Files, and
Libraries, can be printed and analyzed, or can be imported into a third-party
license management system.
Silhouette is available as part of OSRM’s Code
Audit service
or as a subscription package. To learn more, download the Silhouette
data sheet or
contact OSRM.
© 2007 Open Source Risk Management, Inc. All rights reserved.