Project Ideas Improve package license detection
The goal of this project is to improve package license detection across the board. ScanCode toolkit package license detection works primarily by:
- extracting license statements found in package manifests
- applying license detection and normalization on these extracted statements
In some case things are super simple: for instance the npm package.json license tag
"license": "MIT" is pretty straight forward and obvious. The difficulty is in the
details and getting these right at a large scale on most or all the packages.
This project idea can take multiple shapes and it should focus on one or more package types. The end results should be a significant improvement to the license detection quality for the selected package types.
These are details on sub-projects focused each on a different package type. Some may be completed or quite advanced. The long term goal is to work closely with each package ecosystem to contribute the improved license data upstream.
-
Improve Maven package license detection results. This is important and working only for the basics.
-
Improve Rust package license detection results
-
Improve NPM package license detection results. This is mostly done
-
Improve Debian package license detection results . This is mostly done for the basic copyright file handling.
-
Level
- Intermediate
-
Tech
- Python
-
URLS
-
Mentors
- @pombredanne https://github.com/pombredanne
- @AyanSinhaMahapatra https://github.com/AyanSinhaMahapatra