{"id":42424715,"url":"https://github.com/tehcyx/lic","last_synced_at":"2026-01-28T03:07:47.830Z","repository":{"id":57512248,"uuid":"169485713","full_name":"tehcyx/lic","owner":"tehcyx","description":"Static code analysis of software licenses","archived":false,"fork":false,"pushed_at":"2020-06-30T16:31:46.000Z","size":75,"stargazers_count":3,"open_issues_count":1,"forks_count":0,"subscribers_count":2,"default_branch":"master","last_synced_at":"2024-06-20T06:32:17.115Z","etag":null,"topics":["dependency-scanning","golang","lic","open-source"],"latest_commit_sha":null,"homepage":null,"language":"Go","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"apache-2.0","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/tehcyx.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null}},"created_at":"2019-02-06T22:19:20.000Z","updated_at":"2020-06-30T16:31:49.000Z","dependencies_parsed_at":"2022-09-26T17:51:36.440Z","dependency_job_id":null,"html_url":"https://github.com/tehcyx/lic","commit_stats":null,"previous_names":[],"tags_count":0,"template":false,"template_full_name":null,"purl":"pkg:github/tehcyx/lic","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/tehcyx%2Flic","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/tehcyx%2Flic/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/tehcyx%2Flic/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/tehcyx%2Flic/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/tehcyx","download_url":"https://codeload.github.com/tehcyx/lic/tar.gz/refs/heads/master","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/tehcyx%2Flic/sbom","scorecard":null,"host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":286080680,"owners_count":28836065,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2026-01-28T02:10:51.810Z","status":"ssl_error","status_checked_at":"2026-01-28T02:10:50.806Z","response_time":57,"last_error":"SSL_connect returned=1 errno=0 peeraddr=140.82.121.6:443 state=error: unexpected eof while reading","robots_txt_status":"success","robots_txt_updated_at":"2025-07-24T06:49:26.215Z","robots_txt_url":"https://github.com/robots.txt","online":false,"can_crawl_api":true,"host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["dependency-scanning","golang","lic","open-source"],"created_at":"2026-01-28T03:07:47.466Z","updated_at":"2026-01-28T03:07:47.820Z","avatar_url":"https://github.com/tehcyx.png","language":"Go","funding_links":[],"categories":[],"sub_categories":[],"readme":"# lic\nLic is an easily extensible \u0026 flexible report generator to statically analyse your local sources and create a report on the fly or upload said report to a server.\n\n- [How to build lic](#how-to-build-lic)\n- [How to use lic](#how-to-use-lic)\n- [Roadmap](#roadmap)\n- [Contribute](#contribute)\n\n## How to build lic\nMake sure to run `go get` to install missing dependencies and then just run `make` to get an executable into the /bin/ folder.\nIf you want to use the executable from your path, you can invoke `make install` to install the file in the specified `$GOBIN` location.\n\n## How to use lic\nTo generate your first report invoke `lic report golang` in the project folder of your choice or specify an absolute path like `lic report golang --src $GOPATH/src/github.com/username/repository` to run the report in a different folder than the current working directory.\n\nThe executable supports various other commands that you can see via the help sub-command (`lic help`):\n\n```shell\nUsage:\n  lic [command]\n\nAvailable Commands:\n  help        Help about any command\n  report      Creates a report of sources\n  version     Version of the lic CLI\n\nFlags:\n  -h, --help      help for lic\n  -v, --verbose   verbose output\n```\n\nVarious commands will have sub commands, for example the report command will differentiate with the supported languages (currently only golang).\n```shell\nUsage:\n  lic report [command]\n\nAliases:\n  report, r\n\nAvailable Commands:\n  golang      Generates a report of current working directory or specified path\n\nFlags:\n  -h, --help   help for report\n\nGlobal Flags:\n  -v, --verbose   verbose output\n```\n\n## Roadmap\n- Extend language support\n  - Java\n  - JavaScript\n  - Typescript\n  - ...?\n- Report generation\n  - richer reports (HTML, JSON)\n- Version detection\n- Server-side component that receives reports, holds history\n\n## Requirements\n\nTo not run into early rate-limiting of GitHub's API, the tool requires the `LIC_GITHUB_ACCESS_TOKEN` environment variable to be set with the value of a GitHub personal access token, which can be created here: [Get a personal access token](https://github.com/settings/tokens). The token does not need to have any checkboxes applied and runs with a standard no-permission token.\n\nThe `git` executable is assumed to be on the PATH, so that the tool can get the repositories tags via this command: `git describe --tags --always`. Future implementations should safeguard this by checking if the tool exists. Current implementation would probably result in an error.\n\n## Contribute\nThis tool should support multiple languages. Currently I'm working on golang. Feel free to chip in or contribute a new language set (I'd be happy to see Java/JavaScript/Typescript). Tests are rare so far, so there's definitely more needed.\n\nThe goal of this tool for me to get a reliable list of used software components on any sources I throw at it, to be able to check licenses against whatever licenses I want to use/don't want to use.\n\nThe implementation will most likely change over time and is as of now a moving spec. The report might need to have more information to it than I currently foresee.\n\nAlso I want to connect this to some sort of CVE search, to be able to tell if I have any vulnerabilities in my code. This doesn't have to be on API level and I can see this as a stretch goal to build a server-side component or re-use an existing tool and format the output the right way, so that result visualization over time, storing of scan results and updates on findings as they become known are a possibility.\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Ftehcyx%2Flic","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Ftehcyx%2Flic","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Ftehcyx%2Flic/lists"}