Integrate with the main software repository providers and perform a secure, automated source code compliance check that triggers upon every ‘GIT PUSH’
Using our Webhook to connect to your software repository
The Webhook automatically retrieves changed files
Get an Open Source Assets Declaration during file retrieval
Both are posted to the Compliance Server for analysis
If an undeclared Open Source asset (file/snippet) is detected, the commit is marked as ‘build failed’ and a ‘failed’-badge is added to the comment
It’s time to reinvent Software Composition Analysis (SCA) with an Open Source inventorying platform aimed at modern DevOps environments.
Find our Webhook functionality on Github
And be sure to give it a try.
Looking for more informations? Download our OSS whitepaper.