views:

37

answers:

2

Seems like there should be an Open Source tool that helps companies enforce OpenSource licensing compliance? The only open source tool we've been able to find only scans headers, it does not check the source code itself for pattern matches.

There are closed source tools which we will use if we must, but I thought as a last-ditch effort I'd check here since the tools tend to be licensed & quite pricey (the one we are looking at charge per file scanned which can be a pretty large fee over time).

Any help is greatly appreciated.

+1  A: 

That's tough. The closest I can think of is searching for your code at google.com/codesearch

ypnos
+1 for the effort though that's not the most practical solution
Berming
A: 

http://fossology.org/home may be of use/interest.

gutto
I believe that is the one we looked at--it reports on license information in the file (examines the header) but does not analyze the code for unattributed GPL code which is what worries us. (We had someone--possibly unknowingly--copy some GPL classes, pruning the headers in the process. It was found by a customer by accident--kind of embarrassing.) I love the idea of the GPL, but you'd think there would be some tools to make it easier to manage. ps.. We've since made our policy on this subject Very Clear.
Bill K