Support non SPDX licenses provided in the SBOM report
Release notes
Problem to solve
With Use licenses of CycloneDX SBOMs in license scanner (#415935 - closed) we've added the ability to provide licenses via the SBOM report, using the corresponding CycloneDX specification.
Though, this is still restricted to licenses providing an SPDX identifier.
To increase the value of this feature, we should support custom licenses outside of the SPDX index.
Proposal
Allow users to provide custom licenses in their SBOM report, which may not provide a spdx identifier.