Viewing and Updating Detection and Auditing Notes in the Analysis Workbench

The Notes tab can provide information about automated and manual analysis of codebase as it relates to an inventory item. This can help you in your analysis of your product’s use of the OSS or third-party software identified by the inventory item.

To view notes, do the following:

1.

Open the Analysis Workbench for the desired project. (For instructions, see Opening the Analysis Workbench.)

2.

From the Inventory Details tab for a selected inventory item in the Analysis Workbench, select the Notes tab.

3.

Review or update content in the following fields as needed:

•

Detection Notes—Information generated during the scan to explain the means by which the scan detected OSS or third-party software in the codebase. The Detected By attribute in the Detection Notes content indicates the automated detection technique(s) responsible for the inventory finding. The following example shows that the detection techniques used to find the inventory item included File Name Analyzer and Jar Analyzer.

The Detection Notes content is not editable.

 

•

Audit Notes—Information recorded about the manual analysis of the codebase associated with this software. You can add your own notes. For example, you might indicate that you needed to create this inventory item manually.

4.

Click Save in the upper right corner of the Inventory Details tab to save any updates to the Audit Notes field.