Itβs September! Apologies for the late reminder. I just never hit send yesterday.
Note that the minutes from August meeting are at the bottome of this email. This month, there will be no special presentation per se, however the Steering Committee update will be extended and will include Jilayne presenting a new process to facilitate expedient decision making around new ideas that have cross team impact or would represent a big change for the overall project. Phil L. Philip Odence General Manager, Black Duck Audit Business Synopsys Software Integrity Group, Burlington, MA M (781) 258-9502 | [email protected]<mailto:[email protected]> https://www.synopsys.com/audits [SIG-emailsig-2020] [signature_2892046952]<https://www.linkedin.com/showcase/sw_integrity/> [signature_4149161518] <https://twitter.com/SW_Integrity> [signature_715487372] <https://www.youtube.com/channel/UC0I_hKR1E-Ty0roBUEQN4Ww> [signature_2597224942] <https://www.facebook.com/SynopsysSoftwareIntegrity> GENERAL MEETING Meeting Time: Thurs, Sept 1, 8am PT / 10 am CT / 11am ET / 15:00 UTC. http://www.timeanddate.com/worldclock/converter.html<https://urldefense.proofpoint.com/v2/url?u=http-3A__www.timeanddate.com_worldclock_converter.html&d=DwMGaQ&c=DPL6_X_6JkXFx7AXWqB0tg&r=CGsG_HWslMnHmDRZngTUv7VswbuEgSDQQD-XjX0ZZFc&m=aTno2MdPkEyWeFF6NtTVsvkwhro4X8E0ghAjdiaNKPY&s=ZE9sYJcHMoEO3g5qrPPuiKU0gFK7mMjd9Km_ClCNBbU&e=> Conf call dial-in: Join the meeting: https://meet.jit.si/SPDXGeneralMeeting<https://urldefense.com/v3/__https:/www.google.com/url?q=https*3A*2F*2Fmeet.jit.si*2FSPDXGeneralMeeting&sa=D&ust=1619537013292000&usg=AOvVaw224M4IF9lZQ--a36gO3Lwh__;JSUlJQ!!A4F2R9G_pg!I3GFzBfRfUyGZhkyTIdNNgY2TQsTIZL85F0ubPgWSv4TkuBYAzJmtyCci41BGCiD_0k$> To join by phone instead, tap this: +1.512.647.1431,,1310118349# Looking for a different dial-in number? See meeting dial-in numbers: https://meet.jit.si/static/dialInInfo.html?room=SPDXGeneralMeeting<https://urldefense.com/v3/__https:/www.google.com/url?q=https*3A*2F*2Fmeet.jit.si*2Fstatic*2FdialInInfo.html*3Froom*3DSPDXGeneralMeeting&sa=D&ust=1619537013292000&usg=AOvVaw0CFb1socSljscXVhl5wU_R__;JSUlJSUlJQ!!A4F2R9G_pg!I3GFzBfRfUyGZhkyTIdNNgY2TQsTIZL85F0ubPgWSv4TkuBYAzJmtyCci41BhDXVXvs$> If also dialing-in through a room phone, join without connecting to audio: https://meet.jit.si/SPDXGeneralMeeting#config.startSilent=true<https://urldefense.com/v3/__https:/www.google.com/url?q=https*3A*2F*2Fmeet.jit.si*2FSPDXGeneralMeeting*23config.startSilent*3Dtrue&sa=D&ust=1619537013292000&usg=AOvVaw0KXqpP-XHq4V1GzN9CrPgS__;JSUlJSUl!!A4F2R9G_pg!I3GFzBfRfUyGZhkyTIdNNgY2TQsTIZL85F0ubPgWSv4TkuBYAzJmtyCci41B0qALsVU$> Etherpad for minutes: https://spdx.swinslow.net/p/spdx-general-minutes Administrative Agenda Attendance Minutes Approval: At the bottom of this email Steering Committee Update - Phil Technical Team Report β Kate/Gary/Others * Specification and Profiles * Overview * Core * Legal * Integrity * Defects * Usage and Other Emerging * Tooling Legal Team Report β Jilayne/Paul/Steve Outreach/Website Team Report β Jack/Sebastian/Alexios SPDX General Meeting Minutes - Aug 4, 2022 Administrative Attendance: 29 * Lead by Phil Odence, Steve Winslow * Minutes from last meeting approved Special Presentation, Matthew Crawford * A new era for SPDX at Arm, are we ready for change? - A New Era for SPDX at Arm: Are we ready for change? (recording available, insert link later) * Thanks to Jilayne, Sami Atabani and SPDX team * Old system (ulimately non-std BoM format) * Towards generating SPDX * New tooling "hot off the press" Tech Team Report - Gary/Kate/WilliamB Spec * SPDX 2.3 release window - 6 days left. If see any issues, raise in Github, or on tech team email list * RC1 window - no roadblocks raised yet. * Schema available and tool creators requested to experiment and raise issues. * Joshua - CVE reporting added, not clear how to use it. Gary: using external references to refer to CVEs, as well as other security types. Any way to indicate a specific CVE has been fixed? VEX document may be an option. Recommed going to defects working group. * Java tools have been implemented, will be publised after 2.3 release is out. * GSoC checkpoint - Alexios * just passed half-time mark, steady progress on both projects. * SPDX 3.0 Model * Good progress on identities, updated in repo. seee: SPDX v3 model diagram https://github.com/spdx/spdx-3-model/blob/main/model.png * AI BOM profile - discussed into 2 parts - AI App/Model & Data sets * Build Profile - making steady process * Defects - looking at what should be in 3.0 now, use-cases welcome * Usage - Legal Team Report - Jilayne/Paul/Steve * 3.18 release pushed by one week - expect to release likely this coming weekend * 3.19 - looking to focus on documentation * Fedora has now adopted SPDX license identifiers - https://communityblog.fedoraproject.org/important-changes-to-software-license-information-in-fedora-packages-spdx-and-more/ Outreach Team Report - Sebastian / Jack / Alexios * GSoC - mentioned above * general activity, making improvements to outreach team Landscape with Wipro volunteer assistance (thanks Vicky and others!) * logos for SPDX's own tools - seeking folks with graphic design talents * can explore with LF marketing (Steve will help with LF interaction) * noted at OpenSSF - using AI image generators * Meeting time is changing to shorter weekly 30 minute meetings. Attendees * Phil Odence, Synopsys/Black Duck Audits * Matthew Crawford (Arm) * Kate Stewart * Gary O'Neall * Jilayne Lovejoy (Red Hat) * Jari Koivisto * Sebastian Crane * Alexios Zavras * Steve Winslow * Ray Lutz (Citizensoversight.org) * Akbar (Arm) * Alex Rybak (Revenera) * Alfredo Espinosa * Andrew Jorgenson * Brad Goldring (GTC Law Group) * Bryan Cowan * Christopher Lusk * David Edelsohn * Jeff H. * Karsten Klein * Molly Menoni * Rich Steenwyk * Shailja Kumari * Joshua Watt * Ria Schalnat * Stephen Reeves * Janet * VM Brasseur * Jeff Schutt -=-=-=-=-=-=-=-=-=-=-=- Links: You receive all messages sent to this group. View/Reply Online (#1588): https://lists.spdx.org/g/spdx/message/1588 Mute This Topic: https://lists.spdx.org/mt/93392927/21656 Group Owner: [email protected] Unsubscribe: https://lists.spdx.org/g/spdx/leave/2655439/21656/1698928721/xyzzy [[email protected]] -=-=-=-=-=-=-=-=-=-=-=-
