> For the complete documentation index, see [llms.txt](https://docs.metatrust.io/llms.txt). Markdown versions of documentation pages are available by appending `.md` to page URLs; this page is available as [Markdown](https://docs.metatrust.io/introduction/metascan/open-source-analyzer.md). # Open Source Analyzer **Open Source Analyzer** (also known as SCA, Software Supply-Chain Analyzer) is a powerful engine designed to identify, monitor, and manage the various components and their dependencies within software. it provides developers and security experts with an in-depth understanding of software composition, enabling them to more effectively control risks and ensure system security. Key features include: 1. Open-source component identification: SCA can automatically detect open-source components and version information used in software, facilitating tracking and management of open-source dependencies. 2. License compliance: SCA can review software component licenses, ensuring that businesses adhere to relevant regulations and compliance requirements. 3. Security vulnerability detection: SCA can identify known security flaws and risks, assisting developers in promptly patching vulnerabilities and reducing system security risks. 4. Dependency analysis: SCA can analyze the dependency structure between components, helping developers understand component interaction relationships and potential risk points. --- # Agent Instructions This documentation is published with GitBook. GitBook is the documentation platform designed so that both humans and AI agents can read, navigate, and reason over technical content effectively. Learn more at gitbook.com. ## Querying This Documentation If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question. Perform an HTTP GET request on the current page URL with the `ask` query parameter, and the optional `goal` query parameter: ``` GET https://docs.metatrust.io/introduction/metascan/open-source-analyzer.md?ask=&goal= ``` `ask` is the immediate question: it should be specific, self-contained, and written in natural language. `goal` is optional and describes the broader end goal you are ultimately trying to accomplish on behalf of the user. GitBook uses it to tailor the answer towards what is most useful for that goal. The response will contain a direct answer to the question and relevant excerpts and sources from the documentation. Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.