Custom options available below
Personal is for small teams and projects to replace manual auditing, scripts and lightweight commercial utilities for license / dependency tracking.
For Business adds full code scanning, compliance automation and more to help companies set up an enterprise-grade compliance program in minutes.
Checks all the standard ways your dependencies are licensed for harmful terms (i.e. manifests, license notices, documentation, websites and more). Supports subdirectories and deeper dependencies (to a depth of 3).
Alongside standard checks, FOSSA runs full license scans across all deep dependencies per-commit. Detects hidden / embedded GPL; necessary for most corporate compliance programs.
Generate shallow dependency reports, license notices and attribution files in a variety of formats. Perfect for READMEs, open source projects and basic due dilligence.
Full, customizable reports that include all deep dependencies, embedded licenses, code audit data, and more. FOSSA can host these files for you online and update them automatically.
Fully integrate with your favorite tools and services. Out of the box, FOSSA can send of Slack notifications, block pull requests on Github, and more.
Integrate custom tools or license policies using unlocked features, APIs and services - even if they live behind your corporate firewall.
FOSSA only takes a few clicks to set up, but our team will still relentlessly help you get onboarded and successful.
SLAs are bundled into your license with additional service options. Our team offers on-prem installations (behind your firewall / VPC), custom onboarding and premium support.
And much more...
We track unique committers to private repos that are actively running in FOSSA; no limit on repo count. You can start off with a few less active repos/teams and scale out easily across the rest of your org.
Our price attempts to track & scale with the number of paid developers on your staff, and we aim for great value (roughly $0.85/employee/day). For cases where most contributors live outside your staff, contact us.
We do - contact us for details! On-prem deployments are by default handled as annual committments.
If you are a non-profit, educational institution or based in open source, we offer special plans for your budget.