Coursera Flash Sale
40% Off Coursera Plus for 3 Months!
Grab it
Learn how to automate open-source license compliance using the Continuous Clearing (CA) Tool in this 37-minute conference talk from the Linux Foundation's Open Source Summit. Discover an open-source solution that streamlines the identification and license compliance of third-party OSS components across various project types including NPM, NuGet, Maven, Python, Alpine, and Debian ecosystems. Explore the tool's three-module architecture: the Package Identifier module that processes package files or BOMs to generate SBOM files while classifying dependency types; the SW360 Package Creator module that identifies missing components, creates releases in SW360, associates components with projects, triggers FOSSology uploads, and updates clearing states; and the Artifactory Uploader module that uploads approved components to JFrog artifactory. Understand how this solution ensures organizations maintain Software Bill of Materials (SBOM) for all builds within DevOps pipelines while accelerating the license clearing process for OSS components.
