opOSSum is a nice Open Source compliance tool which can be found on GitHub . ScanCode is another nice Open Source compliance tool which can be found on GitHub , too. While the latter provides extensive code scanning functionality, the former can create comprehensive reports and visualize scan results. One just has to figure out how to get opOSSum to read ScanCode output. This is not really an issue, but - as far as I can tell - has not yet been documented anywhere on the internet. opOSSum does read ScanCode json output, but it reqires some transformation beforehand. Good news: opOSSum also provides the tool to perform said transformation. As usual, this is more of a step-by-step-guide for noobs such as myself for future reference, but I figured maybe this can be of use for the community as well. Prerequisites: 1. Get ScanCode Just get it from https://github.com/nexB/scancode-toolkit/releases , I chose scan