Hi,
Is it possible, to search remote licenses when using poetry (poetry.lock)? I dont see an configuration option for that.
Or does anyone have a good recommendation how to deal with poetry projects when generating SBOMs including licenses?
Today there are only a few providers that are able to use the network to resolve information when it’s not available locally, as it seems you’ve noticed. We would love to have more added! I can’t say when we will be able to get to this, but we could certainly help get a pull request through if someone had time to work on it (looking at the online golang license resolution would probably be the best pattern to follow).
If license information is available locally, we also include a license scanner to determine licenses from text (e.g. LICENSE files), which could avoid needing online resolution if these happened to. be present. Sorry I don’t have enough context for this to know exactly what to do, but again would be happy to help guide someone who was willing to work on it!