Using license-finder by GitLab makes it easy to list all open source licenses from dependencies of your codebase. What’s nice is that it uses a docker image so it’s easy to run in any environment with no setup.
In the directory to scan, run:
docker run \
–volume “$PWD”:/code \
–env=LM_REPORT_VERSION=“2.1” \
–env=CI_PROJECT_DIR=/code \
registry.gitlab.com/gitlab-org/security-products/analyzers/license-finder:latest