:mag: ScanCode detects licenses, copyrights, dependencies by "scanning code" ... to discover and inventory open source and third-party packages used in your code. Sponsored by NLnet project https://nlnet.nl/project/vulnerabilitydatabase, the Google Summer of Code, Azure credits, nexB and others generous sponsors!
If I scan_single_package in SCIO, the files of https://crates.io/api/v1/crates/someip_parse/0.6.2/download will not be assigned to the package except for the cargo.toml/cargo.lock files