Hacker News new | ask | show | jobs
by tsteenbe 1887 days ago
Are you aware of https://github.com/nexB/vulnerablecode? which offers a similar solution, is also open source and written in Python.
1 comments
hardwaresofton 1887 days ago
Thanks for this link to another project that I'd prefer.

Just a small nitpick though, both are "open source" but only one of them is "free". I know that's what you meant but wanted to point it out. Some open source software that most people like (ex. Sentry) is BSL so it's not an uncommon license.

BSL is open source software but you cannot "free"ly use it (to make money) -- GPL v2 is free software.

link
tsteenbe 1887 days ago
Good catch I missed that openCVE is Business Source License which I actually do not consider to be open source.
link
cpach 1887 days ago
I agree. If it doesn’t follow the Debian Free Software Guidelines then I wouldn’t call it open source.

https://en.m.wikipedia.org/wiki/Debian_Free_Software_Guideli...

link
hjek 1887 days ago
> BSL is open source software but you cannot "free"ly use it (to make money)

To nitpick your nitpick: That wouldn't be open source but source-available software[0].

[0]: https://en.wikipedia.org/wiki/Source-available#Distinction_f...

link
hardwaresofton 1887 days ago
Thanks for this, will try to remember and use that term instead
link