Design And Implementation Of Open Source License Compatibility Analysis Tool

With the popularity of open source software and the development of open source community,the unreasonable use of open source license has left many legal hidden dangers for enterprises in the process of actual use.The reason for the extensive use of open source license lies in the popularity of component-based development.Most components exist in the form of open source software,and many components will be used in the development process Each file may contain different kinds of open source licenses,and there may be different versions of the same open source software.There may be some compatibility problems between these open source licenses.Therefore,it is very important to analyze the software compatibility and select open source licenses to reduce or even eliminate the compatibility problems.This paper designs and implements an open source license compatibility analysis tool,carries out demand analysis,system architecture design and the implementation and testing of main functional modules.In order to obtain more accurate open source license information,this paper analyzes its working principle and detection method based on the existing open source license detection tool,and compares the advantages and disadvantages of common text matching algorithms,A high-precision detection method based on two rounds of matching is proposed,which makes up for the defects after the first round of similarity calculation through the comparison of word position and occurrence times in the second round,and improves the accuracy of open source license detection to a certain extent;In addition,an open source license compatibility analysis method based on key attribute extraction is proposed.The method mainly includes the following four parts: the first step is to build a compatibility analysis model before the open source license compatibility analysis,that is,form a compatibility analysis library,analyze the common open source license original texts,and focus on some interest information according to the defined restriction level,Generate a YML(storing content in the form of key value storage)file for each open source license;The second step is to define the compatibility judgment method,that is,how to judge whether there is a compatibility problem between two open source licenses;The third step is to define the compatibility analysis method,that is to define different analysis modes according to the severity of compatibility analysis to meet the compatibility analysis of different requirements;The fourth step is to build a compatibility diagram,that is,to record the compatibility relationship between mutually compatible licenses.After actual deployment and testing,the system in this paper has the characteristics of good scalability,maintainability,and reusability.And use this tool to detect and analyze open source projects with a collection of more than 1000 stars on Github,and found that 1512 projects have missing open source licenses,and 8362 projects have compatibility problems.