Fast, portable and reliable dependency analysis for any codebase. Supports license & vulnerability scanning for large monoliths. Language-agnostic; integrates with 20+ build systems.
tgz
, taz
, txz
, tbz
, tbz2
, and tz2
files for --unpack-archives
(#1402)fossa test
: improves diagnostic message (#1403)fossa release-group
: Adds commands to interact with FOSSA release-groups (fossa release-group add-projects
, fossa release-group create
, fossa release-group delete
, fossa release-group delete-release
) #1399.Reachability: Users may now provide custom locations for the JAR files emitted by projects and used for reachability analysis (#1382).
analyze
commands #1386
Reachability
: Includes reachability analysis in scan summary https://github.com/fossas/fossa-cli/pull/1379
Maven
: Adds reachability analysis https://github.com/fossas/fossa-cli/pull/1377
Gradle
: Adds reachability analysis https://github.com/fossas/fossa-cli/pull/1377
--detect-dynamic
: Safely ignores not found
cases in ldd
parsing. (https://github.com/fossas/fossa-cli/pull/1376)