How Does Mend Deal with Unknown Components?

Unrecognized libraries are marked as ‘Requires Review'.

Libraries marked as ‘Requires Review’ can be submitted for review by the Mend Compliance & Security team, via the web UI.
If no open source license is found by the Compliance & Security team (e.g. in case of proprietary or commercial software), the library is associated with the appropriate flag (e.g. 'Suspected In-House' or 'Suspect Commercial', respectively).