Sonatype Advanced Legal Pack Debuts
May 5, 2021
Sonatype unveiled its Advanced Legal Pack which fundamentally changes how both legal teams and developers manage open source licenses and compliance. Using machine learning and artificial intelligence, the pack automates open source license compliance eliminating manual work, drastically improving team productivity, and expediting development innovation and release times.
Today, most teams rely on extremely
time-consuming, manual processes to collect, compile, and review all of the
necessary legal data to both comply with open source license obligations and
generate accurate attribution reports. Given that each manual review of a
component and its corresponding license can take up to 1 - 2 hours and a typical
application contains 100 components, legal and compliance teams are spending
hundreds of hours completing compliance reviews for just one application.
License Obligation Review Tool - The pack includes an extensive database of open source license obligations across multiple categories, types, and threat groups that is continuously updated by Sonatype. This database of more than 1650 open source licenses has been annotated to highlight each obligation contained within the license text allowing legal and compliance users and fast way to read through obligations and easily look up licenses, view annotated license texts, and export lists.
Extended Legal Data - Our machine
learning algorithm and natural language processing detect legal data and
integrate it into our legal compliance workflows. This includes more than just
license detections to cover copyright statements, all notice statements, and all
license texts found in a component. All legal data collection is automated.