The SCANOSS Webhook is released as Open Source to be deployed in the user's network. It features integration to the main software repository providers and enables a secured, automated source code compliance check that triggers upon every Git PUSH. The Webhook automatically retieves the changed files along with the optional Open Souce Assets declaration (oss_assets.json) and posts them to the compliance server for analysis. The commit build status is automatically updated and a comment is posted along with a SCANOSS badge. If presence of an undeclared Open Source asset is detected, regadless of whether it is a complete file or a small code snippet, the commit is marked as "build failed" and a "failed" badge is added to the commit comment.
An essential GIT plugin
The automation of license compliance validation in a Continous Integration environment has never been easier. The SCANOSS Webhook provides seamless integration with Github, Gitlab and Bitbucket. SCANOSS provides the first set of Open Source software comparison algorithms that allow the most secure integration with our OSS compliance servers.