Right now we have to simply remember to update this file whenever we modify our dependencies. It'd be nice if CI could remind us to do this.

We can add a new static analysis task that runs the etc/generate-notices.pl script. Then it can use git diff to see if that made any changes to the THIRD-PARTY-NOTICES file. If it did, then the task will fail.