### License compliance

If you’re using GitLab CI/CD, you can use License Compliance to search your project’s dependencies for their licenses. You can then decide whether to allow or deny the use of each license. For example, if your application uses an external (open source) library whose license is incompatible with yours, then you can deny the use of that license.   

To detect the licenses in use, License Compliance uses the  [License Finder](https://github.com/pivotal/LicenseFinder) scan tool that runs as part of the CI/CD pipeline. The License Compliance job is not dependent on any other job in a pipeline.  

See the scanning results in a merge request:

![secret-detection-in-mr](./license-compliance-in-mr.png)  

Example project using License compliance:  

[Demo License compliance](https://jihulab.com/ultimate-plan/demo/license-compliance-demo/-/merge_requests/1)

https://docs.gitlab.com/ee/user/compliance/license_compliance/