Greetings SPDX outreach team,
I was trading emails regarding the SPDX java tools library with Steve Springett (cc'd) and learned that SPDX is being used by the OWASP dependency track project: https://www.owasp.org/index.php/OWASP_Dependency_Track_Project It looks like it uses both the license ID's and the bill of materials format for SPDX. This is particularly interesting with the recent interest in using SPDX in more security-oriented applications. Perhaps a blog post or an article? Gary ------------------------------------------------- Gary O'Neall Principal Consultant Source Auditor Inc. Mobile: 408.805.0586 Email: <mailto:g...@sourceauditor.com> g...@sourceauditor.com
_______________________________________________ Spdx-biz mailing list Spdx-biz@lists.spdx.org https://lists.spdx.org/mailman/listinfo/spdx-biz