Logo Sonatype CLM Step 6 - Review Reports
Documentation Index
Sonatype CLM Downloads
Document Descriptions
Release Notes

Sonatype CLM Server
Installation and Deployment Guide
Security Administration Guide
Policy Management Guide
Report User Guide

CI User Guide

IDE User Guide

Repository Manager User Guide

Nine Steps For Open Source Governance
Optimized Component Lifecycle Management with Sonatype CLM

Step 6 - Review Reports

Chapter 1. Introduction

As we reach step six of the Nine Steps for Open Source Governance, it’s a good idea to take a look at everything we’ve already completed:

  1. Download, Install, and Configure Sonatype CLM Server
  2. Setup Users and Security
  3. Create an Organization and Application
  4. Import Sonatype Policy
  5. Scan an Application

With the previous step, Scan an Application, we now have what we need to take a look at those results. The results themselves are provided in the form of the Sonatype CLM, or Violations, Report. This report will highlight any components that have violated your policies, as well as include additional information representing the overall risk of components used in your application.

In this guide, we’ll provide an overview of the application composition report, as well as offer tips for interpreting results.