Enterprise Capabilities

Use this page to describe the platform traits, workflows, and controls that matter most to enterprise teams.

License Compliance

FOSSA Verification

All packages used in Lucidity.js have been verified for license compliance using FOSSA, an automated license compliance and security scanning platform. This ensures that:

• All Dependencies Are Compliant: Every third-party package uses a permissive open-source license compatible with commercial use
• Supply Chain Security: Continuous monitoring for license changes in dependencies
• Audit Trail: Complete documentation of all package licenses for your compliance needs

Approved License Types

Lucidity.js only uses packages with the following approved license types:

• MIT License: The majority of our dependencies use the permissive MIT license
• Apache 2.0: Some packages use Apache 2.0, which is also fully permissive
• BSD Licenses: BSD 2-Clause and 3-Clause licenses are used by select dependencies
• ISC License: A simplified permissive license similar to MIT

All of these licenses allow:

• Commercial use
• Modification
• Distribution
• Private use

Compliance Reports

Enterprise customers can request:

• FOSSA Compliance Reports: Detailed reports showing all dependencies and their licenses
• Bill of Materials: Complete software bill of materials (SBOM) for security and compliance
• License Attestation: Formal attestation of license compliance for your procurement process

Continuous Monitoring

We maintain license compliance through:

• Automated Scanning: FOSSA scans run on every dependency update
• Policy Enforcement: CI/CD pipelines block non-compliant licenses
• Regular Audits: Quarterly reviews of all dependencies
• Update Notifications: Immediate alerts if any dependency changes its license

For more information about Lucidity.js's licensing terms, see our License page.