Violation Issues

what are they? soos allows you to create policies or rules around the packages, licenses and cwes identified through soos scans once a policy is created, a policy violation warning will be generated any time a scan detects something which matches the policy definition governance policies docid 9vmt4i8 zxursrzwua1y contains information on the different types of policies that can be created, as well as how to create them how does it affect my code? policies are a great way to protect against open source issues such as unacceptable licenses, undesirable packages, unacceptable cwes and more what can i do about them? since violations are the result of a policy definition that was deliberately created by someone in your organization, they typically need to be resolved by removing the offending package alternatively, you may wish to adjust the policy scope if it should only apply to a subset of projects