Scan React Apps for
License Violations
Upload your package.json or connect a GitHub repo. Get an instant report of GPL and copyleft conflicts hiding in your React dependencies — before legal finds them first.
Cancel anytime. No credit card surprises.
Deep Dependency Scan
Checks direct and transitive npm packages for GPL, LGPL, AGPL, and other copyleft licenses.
Conflict Reports
Clear breakdown of which packages conflict with commercial use and exactly why.
Safe Alternatives
Recommendations for MIT/Apache-licensed drop-in replacements for flagged packages.
Simple Pricing
Pro
$9
/month
- ✓Unlimited package.json scans
- ✓GitHub repo integration
- ✓Full transitive dependency analysis
- ✓GPL / LGPL / AGPL / EUPL detection
- ✓Commercial-safe alternative suggestions
- ✓Exportable PDF reports
FAQ
Which licenses are flagged as problematic?
We flag GPL v2/v3, LGPL, AGPL, EUPL, CDDL, and other copyleft licenses that can impose obligations on commercial software. MIT, Apache 2.0, BSD, and ISC are considered safe.
Do you store my package.json or source code?
No. Uploaded files are analyzed in memory and discarded immediately. We never persist your dependency data or source code.
Can I scan a private GitHub repository?
Yes. You grant read-only access via GitHub OAuth. We only read your package.json and lock files — never your source code.