Skip to main content
Glama
bivex

Scancode License Analysis Tool for MCP

by bivex
OverviewSchemaRelated ServersScoreDiscussions
TypeScript

mcp_ScancodeMCP_list_high_risk_files

Identify files with copyleft, unknown, or commercial-unfriendly licenses to address compliance risks and legal warnings.

Instructions

Lists all files with copyleft, unknown, or commercial-unfriendly licenses, with a legal warning for each.

Input Schema

TableJSON Schema
NameRequiredDescriptionDefault
random_stringNoDummy parameter for no-parameter tools

Implementation Reference

  • index.ts:162-176 (handler)
    The handler function that implements the tool logic: checks if license data is loaded, defines high-risk categories, iterates over them to build a report listing files with their licenses and short legal summaries, and returns the report as content.
    async ({ random_string }) => { if (!licenseData?.problematic_licenses) { return { content: [{ type: "text", text: "License data not loaded or no problematic licenses found." }] }; } const highRiskCats = ["copyleft", "unknown", "commercial_unfriendly", "gpl", "agpl"]; let report = 'High-Risk Files (copyleft, unknown, commercial-unfriendly):\n'; for (const cat of highRiskCats) { if (!licenseData.problematic_licenses[cat]) continue; for (const item of licenseData.problematic_licenses[cat]) { report += `\nFile: ${item.file}\nLicense: ${item.name}\n`; report += await legalSummaryForLicense(item.name, true); } } return { content: [{ type: "text", text: report }] }; }
  • index.ts:157-161 (schema)
    The tool's metadata including title, description, and input schema (a dummy optional string since no real params needed).
    { title: "List High-Risk Files", description: "Lists all files with copyleft, unknown, or commercial-unfriendly licenses, with a legal warning for each.", inputSchema: { random_string: z.string().describe("Dummy parameter for no-parameter tools").optional() }, },
  • index.ts:155-177 (registration)
    The server.registerTool call that registers the tool with its name, schema/metadata, and handler function.
    server.registerTool( "mcp_ScancodeMCP_list_high_risk_files", { title: "List High-Risk Files", description: "Lists all files with copyleft, unknown, or commercial-unfriendly licenses, with a legal warning for each.", inputSchema: { random_string: z.string().describe("Dummy parameter for no-parameter tools").optional() }, }, async ({ random_string }) => { if (!licenseData?.problematic_licenses) { return { content: [{ type: "text", text: "License data not loaded or no problematic licenses found." }] }; } const highRiskCats = ["copyleft", "unknown", "commercial_unfriendly", "gpl", "agpl"]; let report = 'High-Risk Files (copyleft, unknown, commercial-unfriendly):\n'; for (const cat of highRiskCats) { if (!licenseData.problematic_licenses[cat]) continue; for (const item of licenseData.problematic_licenses[cat]) { report += `\nFile: ${item.file}\nLicense: ${item.name}\n`; report += await legalSummaryForLicense(item.name, true); } } return { content: [{ type: "text", text: report }] }; } );
  • index.ts:196-253 (helper)
    Helper function that provides short or long legal summaries for licenses based on a predefined map, used in the handler to append warnings for each high-risk license.
    async function legalSummaryForLicense(licenseName: string, short = false): Promise<string> { // This is a simplified legal expert system for demo purposes const name = licenseName.toLowerCase(); const licenseSummaries: { [key: string]: { short: string; long: string } } = { "mit": { short: "MIT: Permissive, allows reuse/modification, requires attribution, disclaims warranties. Low risk.", long: `Type: Permissive\nGrant: Broad rights to use, copy, modify, merge, publish, distribute, sublicense, and/or sell copies.\nObligations: Must include original copyright and license.\nWarranty: Disclaimed.\nIndemnity: None.\nCompatibility: Compatible with most open and closed licenses.\nRisks: Minimal.\nCommercial Use: Safe.\n` }, "gpl": { short: "GPL: Copyleft, requires derivatives to be GPL, viral effect, not business-friendly for closed source.", long: `Type: Copyleft\nGrant: Use, copy, modify, distribute.\nObligations: Derivatives must be GPL, source code disclosure required.\nWarranty: Disclaimed.\nIndemnity: None.\nCompatibility: Incompatible with most closed/proprietary licenses.\nRisks: Viral obligations, business model conflict.\nCommercial Use: Risky for proprietary.\n` }, "lgpl": { short: "LGPL: Weak copyleft, allows dynamic linking, but modifications to LGPL code must be open.", long: `Type: Weak Copyleft\nGrant: Use, copy, modify, distribute.\nObligations: Modifications to LGPL code must be LGPL, dynamic linking allowed.\nWarranty: Disclaimed.\nIndemnity: None.\nCompatibility: More compatible than GPL, but still viral for modifications.\nRisks: Linking confusion.\nCommercial Use: Moderate risk.\n` }, "bsd": { short: "BSD: Permissive, minimal restrictions, requires attribution.", long: `Type: Permissive\nGrant: Use, copy, modify, distribute.\nObligations: Attribution, sometimes no endorsement.\nWarranty: Disclaimed.\nIndemnity: None.\nCompatibility: High.\nRisks: Minimal.\nCommercial Use: Safe.\n` }, "apache": { short: "Apache: Permissive, explicit patent grant, requires NOTICE file.", long: `Type: Permissive\nGrant: Use, copy, modify, distribute.\nObligations: Attribution, NOTICE file, patent grant.\nWarranty: Disclaimed.\nIndemnity: None.\nCompatibility: High, but not with GPLv2.\nRisks: Patent termination.\nCommercial Use: Safe.\n` }, "proprietary": { short: "Proprietary: Custom terms, usually restricts use, modification, redistribution. High legal risk.", long: `Type: Proprietary\nGrant: Limited, as specified.\nObligations: As specified, often strict.\nWarranty: Varies.\nIndemnity: Varies.\nCompatibility: Usually incompatible with open source.\nRisks: High, custom terms.\nCommercial Use: Review required.\n` }, "unknown": { short: "Unknown: No license detected, all rights reserved by default. Cannot use, modify, or distribute.", long: `Type: Unknown\nGrant: None.\nObligations: Cannot use, modify, or distribute.\nWarranty: None.\nIndemnity: None.\nCompatibility: None.\nRisks: Maximum.\nCommercial Use: Forbidden.\n` }, "cc-by": { short: "CC-BY: Attribution required, otherwise permissive.", long: `Type: Permissive (Creative Commons)\nGrant: Use, share, adapt.\nObligations: Attribution.\nWarranty: Disclaimed.\nIndemnity: None.\nCompatibility: Not for software.\nRisks: License scope confusion.\nCommercial Use: Allowed.\n` }, "public-domain": { short: "Public Domain: No rights reserved, free to use.", long: `Type: Public Domain\nGrant: Unrestricted.\nObligations: None.\nWarranty: None.\nIndemnity: None.\nCompatibility: Universal.\nRisks: None.\nCommercial Use: Safe.\n` }, "default": { short: `Custom/Unknown: Legal review required. High risk of non-compliance or business conflict.`, long: `Type: Custom/Unknown\nGrant: Unclear.\nObligations: Unclear.\nWarranty: Unclear.\nIndemnity: Unclear.\nCompatibility: Unclear.\nRisks: High.\nCommercial Use: Not recommended without legal review.\n` } }; for (const key in licenseSummaries) { if (name.includes(key)) { const summary = licenseSummaries[key]; return short ? summary.short : summary.long; } } // Fallback for custom/complex/unknown if no match found const defaultSummary = licenseSummaries["default"]; return short ? defaultSummary.short : defaultSummary.long; }
Install Server

Other Tools

Latest Blog Posts

MCP directory API

We provide all the information about MCP servers via our MCP API.

curl -X GET 'https://glama.ai/api/mcp/v1/servers/bivex/scancodeMCP'

If you have feedback or need assistance with the MCP directory API, please join our Discord server