Before JavaOne 2012 a few of us joined the Jenkins community at the Jenkins User Conference 2012 in San Francisco as Gold Sponsors. We had a great time talking to KK, Andrew and others as well as showcasing Insight For CI for Jenkins at the booth. The presentation about "Improving Software Quality Using Component Lifecycle Management with Jenkins" was very well attended and there seemed to be a lot of interest. In case you missed it you are however in luck ...
As requested by many attendees, you can download the slides right now. If you already have Jenkins (or Hudson) up and running, you might want to give it a try. The Insight for CI plugin is available in the plugin center and trivial to install and configure. Just add a post build step and configure it to scan e.g. your build output war file. The summary and component results are completely free and will give you a very good indication of the security and license issues (or better their absence) of your software. If you are using a different CI server, you should let us know so we can adjust our priorities. And we even got you covered for manual scans - have a try with Insight App Health Check.