Frequently Asked Questions

What's the difference between Open Source and Source Available licenses?

Open Source licenses allow users to inspect, use, modify and redistribute the software under terms that meet the Open Source Definition. Source Available projects publish source code, but include license terms that restrict how it can be used or redistributed.

What does "Open Source + Commercial" mean?

The tool has an open-source edition and a paid commercial option. The commercial version usually adds hosted service, enterprise support, advanced features or easier management.

What's the difference between deployment models?

• Self Hosted OnlyYou deploy, operate and update the tool yourself.
• Cloud Service OnlyThe vendor runs the service; you consume it as SaaS or a hosted platform.
• Self Hosted + Cloud OptionsYou can choose between running it yourself or using the vendor-hosted service.
• Cloud Native ServiceThe service is built into, or tightly integrated with, a specific cloud provider.

How often is the directory updated?

The directory is maintained with a mix of manual review and automated checks for metadata, repository activity, redirects and broken URLs.

How are tools selected for inclusion?

Tools are included when they are relevant to cloud security and have enough public information to evaluate. Strong signals include active development, production readiness, useful documentation and meaningful community or customer adoption.