Sonatype Insight
Ensure License Compliance

A Typical Component Dependency Tree
Do hidden license obligations leave you exposed?

Ensure License Compliance

Open source components help your development teams deliver better software faster. That’s the fact. But are there hidden license obligations that can leave your organization exposed? To eliminate this risk, you need visibility into how components are licensed. And not just the licenses for the components you included, but the entire dependency tree.

How to Avoid License Risk

With a proprietary license database, Sonatype Insight goes beyond a project’s reported license to provide you with accurate, actionable license information. You’ll avoid license risk without disrupting your development process.

Sonatype Insight gives you the information you need when and where you need it:

During Development

Empower your team to avoid problematic licenses and eliminate costly rework without disrupting your development process. Learn how Development Insight enhances your development tools to help you avoid open source licensing issues.

After Deployment

Analyze and continuously monitor your applications, including the full dependency tree, for hidden license risks. Learn how Application Insight helps you identify and address problematic licenses in your production applications.

Organizational Governance

Gain visibility into the licenses being introduced into your organization from the Central Repository. Learn how Management Insight informs you how, when, and where problematic components were consumed so you can proactively address issues.

See Insight in Action

Check out these screenshots to see for yourself how Insight helps you identify and control open source licensing.


Management Insight Dashboard Gain visibility into the licensing of downloaded components enterprise-wide Find Problematic Licenses in your Applications See Component Details

Not sure you have a problem?

Many organizations download vulnerable components, but don’t realize it. Let us help you ensure you're doing everything right. Contact us and we'll work on a complimentary assessment of your open source consumption.



View Insight Webinar
Contact Us to Learn More

Learn More

Larry Roshfeld
"As we were building the license databases for Insight, we found that it can sometimes be difficult to accurately determine an open source component’s license. Some projects have not provided licensing information to the Central Repository, which required a bit of detective work on our part. We also found some projects that declare themselves to be under one type of open source license when in fact they contain components licensed under other, incompatible, license types."
Larry Roshfeld
Executive Vice President
Sonatype
Sonatype Promotion Subscribe via RSS