License scanner plugin

Scans packages for license information and finds license issues

Bytesafe analyzes packages for license information and displays identified licenses for your packages.

The License Scanner plugin adds on top of that, and scans all packages in a registry for potential license issues. License issues include unlicensed packages, identification of custom licenses and unknown license information.

Packages in a registry will be scanned for license issues when:

  • The plugin is enabled (all package versions).
  • A new package version is added.

The plugin can also be configured to optionally quarantine unwanted or risky packages.

Screenshot Package Card Example of license issues detected by the License scanner.

Notifications

New issues are by default sent to all active users in the workspace. For more information see issue notifications.

If you have enabled the Slack integration, a notification will be sent to Slack whenever a new issue is opened.

Use cases

Unlicensed source code

Unlicensed packages are a potential license compliance issues. License scanner identifies packages that are unlicensed. Filter packages containing license issue to identify unlicensed package versions.

Custom licenses

Non-standard open source licenses are a potential license compliance issue. License scanner identifies custom licenses that require manual action from the user.

Restrict licenses with policies

Prevent packages with non-compliant licenses from entering your registry with the License block policy.

License compliance

Coming soon:

License compliance - configure custom license policies of unwanted licenses and get notified when packages with non-compliant licenses are found.