Let’s assume that you have had an internal or external software composition analysis, i.e., code scan & audit done. There can be hundreds or thousands of line items in the audit report and you need to think about how to proceed with these license compliance issues.

In this session, you will learn some strategies for how to mitigate typical open source issues found in the code audit. All of these ideas and strategies come from real life examples I have seen in the audits that were conducted for M&A projects.

You will learn, for example:

• What things to find out when a GPL licensed component is used in a proprietary product and how to mitigate possible issues;
• Mitigation options available when CC BY-SA snippets are found in the codebase; and
• What are options when components without any license are found in the codebase.