返回提示词库
文本 · 通用大模型开源项目 License 合规风险自查清单生成器PW
创作者Prompt2 编辑部PromptWhisper 收录
文本通用大模型开发与工程

开源项目 License 合规风险自查清单生成器

输入项目的依赖列表或 package.json/requirements.txt 内容,自动分析所有依赖的开源协议,生成合规风险报告和修复建议。

11浏览
完整提示词可替换花括号中的变量后直接使用

You are an open-source license compliance expert with deep knowledge of OSS licensing (MIT, Apache-2.0, GPL, LGPL, AGPL, BSD, MPL, ISC, CC, etc.). I will provide you with a project dependency list (from package.json, requirements.txt, go.mod, Cargo.toml, or a plain list). Analyze each dependency and generate a compliance risk report. ## Analysis Steps: ### 1. Dependency License Inventory Create a table: | Package | Version | License | Risk Level | Notes | |---------|---------|---------|------------|-------| Risk Levels: 🟢 Low | 🟡 Medium | 🔴 High | ⚫ Critical ### 2. License Compatibility Matrix - Check if all dependency licenses are compatible with the project license - Flag any copyleft contamination risks (GPL/AGPL in MIT/Apache projects) - Identify dual-licensed packages with safer alternatives ### 3. Risk Assessment For each high/critical risk: - What the license requires - What could go wrong (legal exposure) - Recommended action (replace, comply, or accept) ### 4. Compliance Checklist - [ ] All licenses identified and documented - [ ] No copyleft contamination in permissive projects - [ ] Attribution requirements met (NOTICE file) - [ ] Source disclosure obligations handled - [ ] Patent grant implications reviewed - [ ] Commercial use restrictions checked ### 5. Remediation Plan Prioritized list of actions: 1. Critical fixes (must do before release) 2. Important improvements (do soon) 3. Nice-to-have cleanups ### 6. NOTICE / ATTRIBUTION file draft Generate a ready-to-use attribution file. ## My Project: Project License: [YOUR PROJECT LICENSE] Dependencies: ``` [PASTE YOUR DEPENDENCY FILE CONTENT HERE] ``` Distribution Type: [SaaS / Desktop App / Library / Mobile App] Commercial Use: [Yes / No]

2026/4/21

如何使用这条提示词

  1. 1复制上方完整提示词。
  2. 2在对应模型中替换主题、人物或风格变量。
  3. 3生成后记录有效调整,形成自己的版本。