GET/POST https://127.0.0.1:8868/doSca?url={url}&asyn={asyn}&resp={resp}¶={para}
url: 扫描的repo地址,可以为purl/url/软件包http下载链接 string 必需
asyn: 是否开启异步扫描,默认False boolean 可选
resp: 扫描完回送接口 string 可选
para: 接收接口参数 string 可选
200: OK
500: Internal Server Error
repo_license_legal: repo级许可证合规信息 string
spec_license_legal: spec文件许可证合规信息 string
license_in_scope: 文件级许可证合规准入信息 string
repo_copyright_legal: repo级copyright信息 string
pass: 是否通过 boolean
notice: 具体情况声明 string
is_legal: repo级许可证合规具体信息 json
license: repo级许可证列表 list
detail: repo级许可证三个规则具体结果 json
is_standard: license是否声明清晰 json
is_white: license是否准入 json
is_review: license是否需要审查 json
risks: 不通过license列表 list
blackReason: license不准入理由 string
copyright: repo级的copyright列表 list
result_code: 放回状态码 string(预留字段,暂时无用)
GET/POST http://127.0.0.1:8868/doSca?url=pkg:gitee/openharmony/[email protected]
{
"repo_license_legal": {
"pass": true,
"result_code": "",
"notice": "test/LICENSE",
"is_legal": {
"pass": true,
"license": [
"Public Domain"
],
"notice": "通过",
"detail": {
"is_standard": {
"pass": true,
"risks": []
},
"is_white": {
"pass": true,
"risks": [],
"blackReason": ""
},
"is_review": {
"pass": true,
"risks": []
}
}
}
},
"spec_license_legal": {
"pass": false,
"result_code": "",
"notice": "无spec文件",
"detail": {}
},
"license_in_scope": {
"pass": true,
"result_code": "",
"notice": "OSI/FSF认证License"
},
"repo_copyright_legal": {
"pass": true,
"result_code": "",
"notice": "缺少项目级Copyright声明文件",
"copyright": []
}
}