license-scanner
CommunityScan deps for license compliance, avoid risk.
Legal & Compliance#SBOM#CI integration#license compliance#dependency scanning#SPDX#legal risk#open source licenses
Authorrobotijn
Version1.0.0
Installs0
System Documentation
What problem does it solve?
This Skill eliminates the risk of accidental license violations in project dependencies, which can lead to legal takedowns, forced open-sourcing of proprietary code, or costly compliance audits for SaaS and proprietary products.
Core Features & Use Cases
- Multi-ecosystem license scanning: Supports npm, pip, Maven, Gradle, Cargo, Go modules, NuGet, and C/C++ package managers to scan both direct and transitive dependencies for license data.
- Violation detection and triage: Flags AGPL/GPL conflicts with proprietary/SaaS products, SSPL/BSL non-OSI licenses, license drift after upgrades, missing attribution, and unknown licenses, with severity-based prioritization for remediation.
- Use Case: A SaaS team upgrading a Redis dependency can use this Skill to detect the license shift from Apache-2.0 to SSPL/RSALv2, blocking the upgrade until legal review is completed.
Quick Start
Use the license-scanner skill to audit your project's full dependency tree for license compliance issues and receive a prioritized report with remediation steps.
Dependency Matrix
Required Modules
None requiredComponents
Standard package💻 Claude Code Installation
Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.
Please help me install this Skill: Name: license-scanner Download link: https://github.com/robotijn/ctoc/archive/main.zip#license-scanner Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
Agent Skills Search Helper
Install a tiny helper to your Agent, search and equip skill from 537,000+ vetted skills library on demand.