Skip to content

Manage COTS Components

[!NOTE] Required role: component_manager

The COTS (Commercial Off-The-Shelf) management view lets you maintain your company's catalog of commercial software components — proprietary libraries, licensed middleware, purchased tools and any other non-open-source software used in your projects.

What you can do

  • Create new COTS entries with name, vendor, version, license terms and classification.
  • Edit existing entries — update licensing, add internal notes, set renewal dates.
  • Delete entries no longer in use.

📸 Screenshot: the Manage COTS list with entries showing vendor, version and license status.

When to use COTS entries

Unlike open-source components (which are discovered automatically by scans), COTS components must be tracked manually. Typical use cases:

  • Licensed middleware or databases (Oracle, IBM MQ, Dynatrace).
  • Purchased libraries or SDKs (map providers, PDF engines).
  • Internal shared libraries from other teams that are treated as third-party.