Add a FOSSA configuration file

Summary: Add a .fossa.yml configuration file for analyzing Maven, Java, Python, and JavaScript open-source dependencies.

Test Plan:
fossa

Jenkins: skip

Reviewers: steve.varnau

Reviewed By: steve.varnau

Subscribers: ybase

Differential Revision: https://phabricator.dev.yugabyte.com/D10464

.arclint

@@ -26,7 +26,8 @@
         "(^.*[.]patch$)",
         "(java/yb-cdc/pom.xml)",
         "(java/yb-cdc/README.md)",
-        "(^docs/.*[.]md$)"
+        "(^docs/.*[.]md$)",
+        "(^[.]fossa[.]yml$)"
       ]
     },
     "pycodestyle": {

.fossa.yml

@@ -0,0 +1,47 @@
+# Copyright (c) Yugabyte, Inc.
+#
+# To analyze (without uploading to Fossa) -- for local debugging:
+# fossa analyze --debug --output
+#
+# To analyze and upload dependencies:
+# fossa analyze --debug
+
+version: 2
+cli:
+  server: https://app.fossa.com
+  fetcher: custom
+  project: [email protected]:yugabyte/yugabyte-db.git
+analyze:
+  modules:
+  - name: Yugabyte RPC Client
+    type: mvn
+    target: pom.xml
+    path: java
+    options:
+      strategy: maven-tree
+      cmd: |
+        set -euo pipefail -x
+        cd java
+        mvn --batch-mode dependency:tree
+  - name: Yugabyte Platform
+    type: mvn
+    target: pom.xml
+    path: managed
+    options:
+      strategy: maven-tree
+      cmd: |
+        set -euo pipefail -x
+        cd managed
+        mvn --batch-mode dependency:tree -f "$(
+          USE_MAVEN_LOCAL=true sbt -Dsbt.log.noformat=true make-pom | perl -n -e '/^\[info\] Wrote (.*[.]pom)$/ && print $1'
+        )"
+  - name: ui
+    type: npm
+    target: managed/ui
+    path: managed/ui
+  - name: opscli
+    type: pip
+    target: managed/devops
+    path: managed/devops
+    options:
+      requirements: managed/devops/python_requirements_frozen.txt