Skip to main content
Open source software comes with various licenses that define how the software can be used, modified, and distributed. Managing license compliance is essential for organizations to avoid legal risks and ensure proper use of open source components.

Policy templates for open source license detection

Endor Labs provides the following policy templates for detecting open source license usage. See Finding policies for details on how to create policies from policy templates.

License types

Endor Labs classifies licenses according to industry best practices:
  • Permissive: Licenses that allow broad use with minimal restrictions (for example, MIT, Apache 2.0)
  • Copyleft: Licenses that require derivative works to use the same license (for example, GPL)
  • Restricted: Licenses with significant usage restrictions
  • Forbidden: Licenses that should not be used in your organization