Enrich license data reported in the dependency list
Proposal
Today the dependency list includes only the license name. Having further information such as the license type, copyright, homepage, and author, would make it more usable. This kind of information is reported by other tools in the market such as Mend.
Security teams need to generate reports that include more information beyond the license name.
This is a feedback shared by a customer during a POV. They are using Mend.io to generate dependency report.
They were evaluating Gitlab as a way to consolidate their toolchain. However, they will have to keep using Mend.io in combination with Gitlab as the level of information from the dependency list is too limited.