Cloud Services

DevOps Intelligence

Open source license
Published On May 16, 2024 - 11:07 AM

Open source license

This topic presents information regarding license compliance.
Open Source License Compliance
Selecting Open source license compliance will open the Open Source License Compliance dashboard displaying a set of graphs that monitor open-source licenses statuses, and an export feature that allows a customized report file download, as follows:
  • License detected
  • License by severity
  • Export license compliance details
  • License compliance details
In essence, all open-source code needs to be regulated, so the main purpose of this dashboard is to keep track of all the licenses being used per our applications to see which ones are authorized and which are not.
License Detected
The License Detected graph represents the total number of licenses detected according to the day-month timeline selection. Severities in this widget are classified according to their criticality:
  • Allowed
    : Green color.
  • Denied
    : Red color.
  • Uncategorized
    : Dark red color.
  • Need approval
    : Yellow color.
Graph data supports selecting predetermined Applications and Dashboards from the Drop-down menu. By default, it is for all applications and all technical services and, it represents the data for the last 7 days.
The License Detected widget presents two axis that indicates the
Total License Detected
within a specified period:
  • X-Axis (
    Duration
    ): The X-axis corresponds to the month in which the bar graph data is shown. Depending on the time you select, the bar graph changes in color based on the severity of the licenses detected. By hovering over the graph, the following data is presented for each license severity:
    • Group
      : The severity that the licenses in a given group have.
    • Range
      : The cut-out date for detected licenses.
    • Value
      : Total number of licenses in a particular severity group.
  • Y-Axis (
    Total License Detected
    : The Y axis corresponds to the total number of licenses found for each severity within a given period. By placing the cursor right above a bar, in alignment with the center of it, the following information is displayed:
    • Range
      : The cut-out date for detected licenses.
    • Allowed
      : Total number of licenses detected in the Allowed category.
    • Denied
      : Total number of licenses detected in the Denied category.
    • Uncategorized
      : Total number of licenses detected in the Uncategorized category.
    • Need approval
      : Total number of licenses detected in the Need Approval category.
    • Total Licenses
      : The total number of licenses from all categories.
License by severity
The License by severity widget graph represents the total number of aggregated licenses detected according to day-month timeline selection. Severities are classified into two categories:
Critical
and
Info
.
Graph data supports selecting predetermined Applications and Dashboards from the Drop-down menu. By default, it is for all applications, all teams, and for default organizations. By default, it represents the data for the last 7 days.
The License by severity widget presents two axis that indicates the
Total License Detected
within a specified period:
  • X-Axis (
    Duration
    ): The X-axis corresponds to the month in which the bar graph data is shown. Depending on the time you select, the bar graph changes in color based on the severity of the licenses detected. By hovering over the graph, the following data is presented for each license severity:
    • Group
      : The severity that the licenses in a given group have.
    • Range
      : The cut-out date for detected licenses.
    • Value
      : Total number of licenses in a particular severity group.
  • Y-Axis (
    Total License Detected
    ): The Y-axis corresponds to the total number of licenses found for each severity within a given period. By placing the cursor right above a bar, in alignment with the center of it, the following information is displayed:
    • Range
      : The cut-out date for detected licenses.
    • Critical
      : Total number of licenses detected and classified as Critical severity.
    • Info
      : Total number of licenses detected and classified as Info severity.
    • Total
      : The total number of licenses from all severities.
Export license compliance details
Export license compliance details allow you to download a report file based on
Technical services
and
License status
, multiple selections are enabled on both options, to download a license report complete the following procedure:
  1. Select
    Search Technical services
    and choose one or more technical services.
  2. Select
    Search Licence Type
    and choose one or more license statuses.
  3. Select
    Export to CSV
    and a dialog will prompt you to save or open the CSV file.
License compliance details
The License Compliance Details Table View is a table that provides technical service Security data in a tabular form and enables a detailed view of each technical service. Each row in the table displays information for a specific technical service, separated by columns of information type:
  • Technical service
    : The name of the micro-technical service within the larger application.
  • Application
    : The name of the application, typically comprising multiple micro-technical services.
  • License detected
    : Total number of licenses detected for a technical service.
  • Critical
    : Total number of critical licenses detected for a technical service.
  • Scanned on
    : Date of the latest scan.
  • Secure engine
    : The security source tool is configured.
The Table view supports a sort feature that enables you to toggle between ascending and descending alphanumeric order for all columns except
License detected
and
Critical
.
The Table View displays all data without regard to filter selection.
To access details for a specific technical service, click the row for that technical service. It also supports detailed views for each technical service, to access details for a specific technical service, click the row for that technical service).
License compliance table view details
When you click on a technical service from the Table View, a new dialog appears with technical service details. The following elements are displayed in this dialog:
  • License
    : The name of the license for a given technical service.
  • Package name
    : The name of the license directory (package location)
  • Package version
    : The version of the license detected.
  • License Status
    : One of the categories that licenses can fall into.
The Table View provides a clickable arrow below the bottom right corner of the table that enables navigation across pages of data (Page 1 of 3, Page 2 of 3, etc
Do you have two minutes for a quick survey?
Take Survey