Greetings FOSSologists! As you may (or may not) know, The Linux Foundation's Open Compliance Program has a workgroup dedicated to defining a standardized, adopted format for a software Bill of Materials or Software Package Data eXchange (SPDX). SPDX enables partners in a software supply chain to:
* Easily exchange information about what's in packages and it's licensing * Avoids rework to identify the info * And, overall, leads to better compliance Here is an excellent video introduction to SPDX (~3.5 minutes long): http://www.linuxfoundation.org/programs/legal/compliance/webinars/introduction-to-spdx So, what does this have to do with FOSSology???? Read on! The current version of FOSSology identifies over 600 licenses. Many of these are registered with SPDX (http://spdx.org/licenses/). However, FOSSology is currently missing 54 licenses from the SPDX list (see attached). We have a long standing enhancement to include all SPDX licenses in FOSSology (item #10 in the unprioritized list, http://fossology.org/task_list#everything_else). This task has previously been prioritized lower than other high visibility enhancements, performance improvements and underlying architectural changes (http://fossology.org/task_list#v_2.0) . With the upcoming Launch of SPDX at LinuxCon (August 17), the time seems ripe to get this done. We are looking for feedback from the FOSSology Community to understand how this should be prioritized against other FOSSOlogy requests and enhancements. We also welcome volunteers who want to help with this effort. Adding a new license requires some familiarity with regular expressions and C programming. There are many examples of current licenses in the nomos code (see STRINGS.in<http://fossology.svn.sourceforge.net/viewvc/fossology/branches/fossology2.0/fossology/src/nomos/agent/STRINGS.in?diff_format=f&view=log> and parse.c<http://fossology.svn.sourceforge.net/viewvc/fossology/branches/fossology2.0/fossology/src/nomos/agent/parse.c?diff_format=f&view=log> ). Please respond with your comments and level of interest to participate in an effort to include all SPDX licenses in FOSSology. Thanks, Mary Laser The FOSSology Project http://fossology.org<http://fossology.org/>
AAL ANTLR-PD BSD-2-Clause BSD-3-Clause BSD-4-Clause CC0-1.0 CC-BY-NC-1.0 CC-BY-NC-2.0 CC-BY-NC-2.5 CC-BY-NC-3.0 CC-BY-NC-ND-1.0 CC-BY-NC-ND-2.0 CC-BY-NC-ND-2.5 CC-BY-NC-ND-3.0 CC-BY-NC-SA-1.0 CC-BY-NC-SA-2.0 CC-BY-NC-SA-2.5 CC-BY-NC-SA-3.0 CC-BY-ND-1.0 CC-BY-ND-2.0 CC-BY-ND-2.5 CC-BY-ND-3.0 ClArtistic ECL-1.0 ECL-2.0 eCos-2.0 ErlPL-1.1 EUPL-1.0 EUPL-1.1 GFDL-1.3 GPL-2.0-with-autoconf-exception GPL-2.0-with-font-exception GPL-2.0-with-GCC-exception GPL-3.0-with-autoconf-exception GPL-3.0-with-GCC-exception Libpng MirOS Multics NCSA NPOSL-3.0 NTP ODbL-1.0 OFL-1.1 PostgreSQL RHeCos-1.1 SAX-PD SGI-B2.0 SimPL-2.0 Watcom-1.0 XFree86-1.1 Xnet Zimbra-1.3 ZPL-1.1 ZPL-2.1
_______________________________________________ fossology mailing list fossology@fossology.org http://fossology.org/mailman/listinfo/fossology
