Scan Codebases for License Violations
Upload your package.json or requirements.txt and instantly detect license conflicts, copyleft restrictions, and commercial use violations — with severity levels and fix suggestions.
Cancel anytime. No credit card required to try.
Deep License Detection
Fetches live data from npm and PyPI registries for accurate results.
Severity Ratings
Critical, high, and low severity flags so you know what to fix first.
Remediation Advice
Actionable suggestions to swap or relicense problematic dependencies.
Simple Pricing
- ✓ Unlimited scans
- ✓ npm & PyPI registry lookups
- ✓ Severity-ranked violation reports
- ✓ Remediation suggestions
- ✓ CSV/PDF export
- ✓ Priority email support
FAQ
Which file formats are supported?
We support package.json (Node.js/npm) and requirements.txt (Python/PyPI). More formats like Gemfile and go.mod are on the roadmap.
How do you determine license conflicts?
We fetch license metadata directly from npm and PyPI registries, then cross-reference against a curated conflict matrix covering GPL, AGPL, LGPL, MIT, Apache, and proprietary licenses.
Is my code or dependency data stored?
No. Uploaded files are processed in-memory and discarded immediately after analysis. We never store your dependency data.