License risk detection

Some open-source licenses include clauses — such as copyleft provisions — that can require you to open-source your own code. Verifying that your dependencies use licenses compatible with your business model is essential to protecting your intellectual property.

The SBOM engine includes license detection that examines each open-source component detected in a scan. Beyond identifying the license type, it reports detailed license information for your open-source dependencies, helping you assess compliance obligations before they become a risk.

Configure to block specific license types in the workflow:


Process result:




Supported programing languages: Python, Ruby, .Net, PHP, Maven, Npm.