Automate open source license validation
Now that we have the ability to collect all of our dependencies and their licenses into one file, we should then check this file to ensure there are no problematic licenses. This check should be a CI test, which fails if problematic licenses were found.
This would reduce the manual effort required by the build team, as well as return valuable feedback to the developer as soon as they make their first commit with a new dependency. They can then try to resolve the license issue or go down a different path.
Edited by Joshua Lambert