About SCANOSS

SCANOSS is a software risk intelligence company focused on transparency in
modern software development.

We exist to help organisations understand what is actually inside their codebases — including reused, modified, AI-assisted code, and cryptographic algorithms — so they can make informed decisions about compliance, security, and long-term risk.

Our work centers on producing accurate, machine-readable intelligence designed to support decision-making across existing tools and workflows.

Meet Frankie

Frankie is what happens to modern software. Stitched together from open source libraries, copied snippets, internal components, and increasingly, AI-generated code — your codebase becomes a creature of many origins. Each piece accelerates development, but also brings blind spots around origin, obligations, and risk. The result is software that works, but whose full composition nobody can quite account for.

Every organisation has a Frankie. The question is whether you know what yours is made of.

As supply chains grow more complex and regulatory scrutiny increases, organisations need verifiable insight into how code is reused — not just what dependencies are declared.

SCANOSS was created to address that gap. Our mission is to make software composition transparent and verifiable at scale, so organisations can understand how reused code enters their software, build inventories that stand up to audit, and make decisions based on evidence.

Transparency is a prerequisite for trust.

How we work

Our work is guided by a small set of principles that shape both our technology and how we collaborate with others:

Data over assumptions | Evidence over scoring | Integration over lock-in | Modularity over monoliths

These principles are reflected in the people who build and maintain SCANOSS.

SCANOSS is built by a distributed team of engineers, data specialists, and open source practitioners, working across multiple regions and time zones.