(Enterprise Only) FOSSLight Scanner Service
Overview
Source, binary and dependency analysis is performed using FOSSLight Scanneras a web service. Analysis results are generated in the form of a FOSSLight Report.
- URL : http://fs.lge.com
- Supported items
- FOSSLight Source Scanner
- FOSSLight Binary Scanner
-
FOSSLight Dependency Scanner
- Supported : npm, pypi, maven, pub, go, nuget, cargo, swift, carthage (Other package managers are currently undergoing verification)
- Not supported items
How to use
Login
- You can access it by entering your AD account ID and password at http://fs.lge.com
Create a Project
-
Click the "New Project" button in the upper right corner to create a project.
-
Enter the contents in "Create a Project".
- Name : Enter the Project name.
-
Inputs : Select sources to analyze.
-
Upload files : Compress and upload files to be analyzed. (Please upload only 1 file.)
⚠️ You can upload up to 3GB. -
Download URLs : Enter the source link to be analyzed (link that can be obtained through "wget" or "git clone")
-
Public
- The example of input value
- wget : github.com/LGE-OSS/example/archive/refs/tags/v1.0.0.zip
- git clone : github.com/LGE-OSS/example
- The example of input value
-
Private Git
- http:// or https:// : You must enter the user name and PAT value.
-
ssh:// : Copy the provided ssh key value and register it in your private git repository. ⚠️ Please use PAT instead of ssh for github.
-
Public
-
Upload files : Compress and upload files to be analyzed. (Please upload only 1 file.)
-
Pipeline
- scan_all : Analyze source, binary, dependency.
- source : Analyze only the source code.
- binary : Analyze only binary.
- dependency : Analyze only dependency.
-
Permission
- Private : Only the creator can view.
- Public : Other people can view the project and download analysis results through the link.
Analysis Result
-
Dependencies
- The number displayed under Dependencies indicates the count of dependency analysis results. Clicking this number allows you to view the list of open source packages detected through dependency analysis.
- The number displayed under Dependencies indicates the count of dependency analysis results. Clicking this number allows you to view the list of open source packages detected through dependency analysis.
-
Detected Open Source
- The number displayed under Detected Open Source indicates the count of source and binary analysis results. Clicking this number allows you to view the list of open source detected through source and binary analysis.
- When you click on the file name in the Path column, you can view the contents of that file.
- When you click on the file name in the Path column, you can view the contents of that file.
- The number displayed under Detected Open Source indicates the count of source and binary analysis results. Clicking this number allows you to view the list of open source detected through source and binary analysis.
-
Download results
- You can download the analysis result file.
- FOSSLight Scanner Result : This is a report that can be uploaded during the Identification process in FOSSLight Hub.
- You can download the analysis result file.
-
Files
- You can view the detection results for each analyzed file in File Tree format. (Since these are file-specific detection results, FOSSLight Dependency results are not included)