macOS
brew install licensefinderlocal Homebrew formula metadata
brew
Prüfe Installationswege, Executables, Metadaten und Sicherheitshinweise für licensefinder in AI-Agent-Workflows.
Installation
brew install licensefinderlocal Homebrew formula metadata
nix profile install nixpkgs#license_findernixpkgs package indexes · pkgs/by-name/li/license_finder/package.nix · Quelle: api.github.com
Überblick
Find licenses for your project's dependencies
Verlauf
LicenseFinder is Pivotal's long-running Ruby CLI for finding dependency licenses, comparing them with approved policies, and reporting unapproved packages. It covers many project types by calling their native package managers rather than treating license scanning as a single-language problem.
The public repository was created on 2011-01-17. The README describes a tool that works with package managers to find dependencies, detect licenses, compare them with permitted licenses, and produce actionable exception reports.
The changelog records a broadening scope over time: support for Ruby, Node, Python, Java, Go, CocoaPods, Swift Package Manager, Rust Cargo, PHP Composer, Conda, Flutter, and other ecosystems appears across releases. Release 7.0.0 in 2022 added Ruby 3 support, Flutter scanning, and SPDX identifier reporting.
LicenseFinder spread through CLI, RubyGems, Homebrew, Docker, and pre-commit workflows. Its Docker image bundles package managers so CI jobs can scan mixed-language repositories without installing every ecosystem tool on the host.
Users run license_finder after installing project dependencies. The tool records approvals and permitted licenses, exits non-zero for unapproved dependencies, and can run in CI to catch new dependency-license work items.
LicenseFinder is important to package people because it exposes the practical mess of license metadata: every package manager has different files, commands, and metadata conventions, so the tool's value is in its adapters and decision record as much as in license detection.
Sicherheitslage
narrow executable package without higher-risk signals.
grün Risiko · niedrig Konfidenz · appliance
Prüfe vor unbeaufsichtigter Agent-Nutzung, ob das Tool Klartext-Credentials liest, Remote-Zustand schreibt, Artefakte veröffentlicht oder Plugins ausführt.
local files
These source-backed paths show where this package keeps local settings or durable credentials. Automic Vault can use them as review targets for secret scanning, migration, and command approval.
Config paths the tool may read or write during local use.
config/license_finder.ymldoc/dependency_decisions.ymlExecutables
| Befehl | Art | Sichtbarkeit | Hinweis |
|---|---|---|---|
license_finder | cli | globales Executable |
Aktualität
Diese Signale trennen das Alter der Seitengenerierung, Aktivität des Paketmanagers und Upstream-Release-Vergleich. Versionsrückstand wird nur gemeldet, wenn eine Evidenz-URL und vergleichbare Versionen vorhanden sind.
https://github.com/pivotal/LicenseFinder
Installationsmetadaten
| Paketschlüssel | brew:licensefinder |
|---|---|
| Version | 7.2.1 |
| Paketmanager | Homebrew |
| Paketmanager-Seite | https://formulae.brew.sh/formula/licensefinder |
| Homepage | https://github.com/pivotal/LicenseFinder |
| Repository | https://github.com/pivotal/LicenseFinder |
| Upstream-Dokumentation | https://github.com/pivotal/LicenseFinder#readme |
| Lizenz | MIT |
| Quellarchiv | https://github.com/pivotal/LicenseFinder.git |
| Zuletzt aktualisiert | 2026-06-22T14:05:10-07:00 |
| Pulse | updated |
| Abhängigkeiten | ruby |
| Bottle | verfügbar (auf arm64_linux, arm64_sequoia, arm64_sonoma, arm64_tahoe, sonoma, x86_64_linux) |
| Homebrew post-install | nicht definiert |
| Dienst | keiner deklariert |
Registry-Fakten
| Source Database | Homebrew formula API |
|---|---|
| Tap | homebrew/core |
| Full Name | licensefinder |
| Version Scheme | 0 |
| Revision | 1 |
| Bottle Stable Root URL | https://ghcr.io/v2/homebrew/core |
| Deprecated | no |
| Disabled | no |
| Keg Only | no |
| URL Keys |
|
Source-Datenbank-Treffer
Treffer stammen aus externen Paketmanager-Indizes und bleiben von lokalen Automic-Vault-Paketlinks getrennt.
license_finder
nix profile install nixpkgs#license_finderQuellspur
Diese Seite wird von av-web aus dem privaten Paket-SQLite-Artefakt bereitgestellt, das scripts/generate-pkg-sqlite.py erstellt.
View the package source record on GitHub.