WP9 Task 2 – Software Information and Licence Management Team
The WP9 Task 2 team is dedicated to providing expert software review and certification services within the GÉANT community. Our mission is to enhance the security, quality, and compliance of software solutions by carefully managing licensing, dependencies, and legal aspects throughout the entire project lifecycle.
On this page, discover how GÉANT’s structured certification scheme can help you build trust, ensure compliance, and strengthen the impact of open source. Whether your software is internal, unpublished, or openly distributed, our certificates provide clarity, traceability, and assurance at every stage of development.
Why Certify?
Identify licensing, dependency, and compliance risks early in your project.
Ensure alignment with GÉANT IPR Policy and open-source requirements.
Validate licence compatibility, transparency, and completeness before release.
Boost trust among users and stakeholders through certification.
Support reuse and collaboration with verified legal documentation.
Foster long-term sustainability with legal clarity and contributor guidance.
📌 Learn more about our certification methodology and join the open-source evolution with confidence.
Self-Assessed Dependencies
For early-stage or internal projects.
Direct dependencies reviewed for vulnerabilities and licences.
Manual or SCA-based assessment (GÉANT SCA supported).
Lightweight entry into licence governance.
Verified Dependencies
For code not yet distributed or licensed.
All dependencies verified externally (licences & vulnerabilities).
Ideal before declaring a licence.
Stronger assurance than self-assessment.
Verified Software Licence
For projects ready for distribution.
Licence is selected, declared, and compatible.
Requires Software Licence Analysis (SLA) or equivalent.
Enables compliant, low-risk public releases.
Software Licence Assurance
For maintained, publicly distributed projects.
Confirms ongoing compliance and governance.
Suitable for individual tools or product families.
Validates licence maturity & governance process.
OSS Community Champion (forthcoming)
For leaders in open source excellence.
Demonstrates transparency and community engagement.
For projects or branded groups.
Enhances visibility through GÉANT outreach.
🔗 See the comparison table for a full overview of purpose, scope, and effort level.
Select the certificate matching your project’s stage.
Gather and assess information about your dependencies and licence(s).
Use the GÉANT SCA service or equivalent tools (for dependencies-focused certificates).
Complete the checklist or SLA review (for licence-oriented certificates).
Request certification via the GÉANT software governance support channel.
Each certification level builds on the previous one, forming a clear path from basic risk management with Self-Assessed Dependencies to full licence governance.
The certification and its maintenance allow some adaptability to project-specific contexts. While core requirements must be met, the Licence Management Team may accept justified variations in handling dependencies, addressing vulnerabilities or managing licensing – especially when due to technical constraints, team practices or legacy elements being phased out. Projects should clearly explain such cases when submitting or updating their certification.
Start now to build a strong legal and collaborative foundation for your software.
Request Software Licensing Certificates
If you need assistance, reach out to us via email or the Help Desk.
Or post in #sw-licences on Slack for quick support.