victims

I Use This!

Inactive

Analyzed about 7 hours ago. based on code collected 1 day ago.

Project Summary

The idea is to take SHA512 sums of language packages, such as Jar or Egg files, and matching the sums against a database. The database will have sum to CVE list so that someone would be able to scan their packages and find issues.

Badges

...
has had 776 commits made by 15 contributors
representing 9,014 lines of code
...
is mostly written in Java
with an average number of source code comments
...
has a codebase with a long source history
maintained by nobody
with stable Y-O-Y commits
...
took an estimated 2 years of effort (COCOMO model)
starting with its first commit in December, 2012
ending with its most recent commit over 7 years ago

Quick Reference

(3 Locations)

ashcrow

Licenses

GNU General Public License v3.0 or later

Permitted

Commercial Use

Modify

Distribute

Place Warranty

Use Patent Claims

Forbidden

Sub-License

Hold Liable

Required

Distribute Original

Disclose Source

Include Copyright

State Changes

Include License

Include Install Instructions

These details are provided for information only. No information here is legal advice and should not be used as such.

All Licenses

Project Security

Vulnerabilities per Version ( last 10 releases )

There are no reported vulnerabilities

Project Vulnerability Report

Security Confidence Index

Poor security track-record

Favorable security track-record

Vulnerability Exposure Index

Many reported vulnerabilities

Few reported vulnerabilities

About Project Vulnerability Report

Did You Know...

...
in 2016, 47% of companies did not have formal process in place to track OS code
...
you can subscribe to e-mail newsletters to receive update from the Open Hub blog
...
nearly 1 in 3 companies have no process for identifying, tracking, or remediating known open source vulnerabilities
...
check out hot projects on the Open Hub