Our products were crafted 100% by hand. No generative AI coding tools were used in the creation, debugging, or documentation of our codebase

Of course our products make use of 3rd-party open source software, with different licenses, except for SAST scanning engines that are 100% proprietary. The licenses for the software listed below can be found in the "licenses" folder of each Security Reviewer product after installation. All versions of open source software, before used, are checked for Vunerabilities and Licensing using Static Reviewer and SCA Reviewer. We discard all script, libraries or frameworks generated by AI.

Our products include software developed under:

• The Apache Software Foundation license 2.0

• MIT license

• Mozilla Public License 2.0

• GNU General Public License, version 2

• GNU General Public License, version 3

• GNU AGPL v3.0

• BSD 3-Clause "New" or "Revised" License (permissive)

• MySQL Community license

• PostgreSQL License

Our products are developed using the following programming languages:

• C# and VB.NET using .NET core SDK 7.0.410 and .NET core SDK 10.0.103 (Microsoft Software License)

• Java (openjdk 17 license GNUv2 with classpath exception)

• Python (3.x https://docs.python.org/3/license.html )

• GO (1.26 https://golang.org/LICENSE)

We develop using:

• Avalonia UI licensed under MIT License

• Visual Studio Code licensed under MIT License

• Apache NetBeans licensed under Apache Software Foundation license 2.0

• Roslyn licensed under MIT License

Our products include the following open source software:

• jQuery licensed under MIT License

• Erlend Oftedal RetireJS licensed under Apache Software Foundation license 2.0

• Angular licensed under MIT License

• Jonathan Hedley jsoup licensed under MIT License

• Django licensed under BSD 3-Clause "New" or "Revised" License (permissive)

• Aaron Weaver (OWASP Defect Dojo Project) licensed under BSD 3-Clause "New" or "Revised" License (permissive)

• FastMCP licensed under Apache Software Foundation license 2.0
  

Our software may contain unmodified binary redistributions for:

• MySQL Community Server licensed under MySQL Community license

• PostgreSQL which is licensed and available under PostgreSQL License

• MariaDB Community Server licensed under GNU General Public License, version 2

• PlantUML licensed under GNU General Public License, version 2

• Aqualogic Trivy licensed under Apache Software Foundation License 2.0

• Anchore Syft licensed under Apache Software Foundation License 2.0

• OWASP ZAP and other Security scanners licensed under Apache Software Foundation License 2.0

• SeleniumHQ Selenium licensed under Apache Software Foundation License 2.0

• CppCheck licensed under GNU General Public License version 3

• Brakeman licensed under MIT License

Algorithms

Security Reviewer’s Suite makes use of a large number of third-party Algorithms. Here you can find a (partial) list.

External Data Sources

Security Reviewer’s Suite accesses to External Data Sources for getting updated about vulnerabilities and licenses. Click here for the complete list.