Logo Sonatype CLM Sonatype CLM Server - Application Composition Report
Documentation Index
Sonatype CLM Downloads
Release Notes
Document Descriptions and PDFs
Upgrade Instructions
Requirements

Sonatype CLM Server
Installation and Configuration
Security Administration
Policy Management
Dashboard
Application Composition Report
REST APIs

Sonatype CLM for...
Bamboo
CLI
Hudson and Jenkins
IDE
Maven
Nexus
SonarQube

The CLM Book (All Guides)
Optimized Component Lifecycle Management with Sonatype CLM

Sonatype CLM Server - Application Composition Report

Chapter 5. Component Identification

5.1. Matching Components
5.2. Managing Proprietary Components
5.3. Claiming a Component
5.4. Summary

One of the most important things you can do with regards to understanding the components in your application, is to identify them. What remains unidentified is of obvious concern.

figs/web/app-comp-report-unknown.png

Figure 5.1. Unknown Component


Sonatype CLM allows you to identify components in a number of ways, including:

  • Extensive matching via Sonatype CLM algorithms
  • Claiming components
  • Establishing proprietary components

In this section, we’ll describe all of these in detail, within the context of identifying components using the application composition report, as well as offer our suggestion for best practices.