SPDX

An open standard for communicating Software Bill of Materials

Technologies
python, java, node.js, golang, xml
Topics
compliance, open source, licensing
https://spdx.org/
An open standard for communicating Software Bill of Materials

Develop and promote adoption of a specification to enable any party in a software supply chain, from the original author to the final end user, to accurately communicate the licensing information for any piece of copyrightable material that such party may create, alter, combine, pass on, or receive, and to make such information available in a consistent, understandable, and re-usable fashion, with the aim of facilitating license and other policy compliance.

View 2020 projects
2020 Program

Successful Projects

Contributor
Tanjong Agbor Smith
Mentor
Gary O'Neall, Stephen Winslow
Organization
SPDX
Validate License Cross-References
Enhance the SPDX LicenseListPublisher to validate the cross reference / seeAlso URL's for the license. One check would be to validate the link is...
View project details
View code
Contributor
Anisha Srivastava
Mentor
Rohit Lodha, Gary O'Neall
Organization
SPDX
Generate Java SPDX Model Classes from XML XSD file.
The project aims at generating the Java Model Classes for proposed XML XSD files of repositories. This involves mapping the elements of XML Schema to...
View project details
View code
Contributor
Rishabh Bhatnagar
Mentor
gauntface, Rohit Lodha, Gary O'Neall, Stephen Winslow
Organization
SPDX
Concurrent RDF Parser in GoLang
The project focuses on building a GoLang RDF reader in native GoLang which not only would be useful for the SPDX community but also might help the...
View project details
View code
Contributor
Ekong Obie Philip
Mentor
Philippe Ombredanne _, Santiago Torres-Arias, Kate Stewart
Organization
SPDX
SPDX Plugins for Package Managers
Create a native plug-in or extension to a well-known package manager to generate valid SPDX documents based on the information provided in the build...
View project details
View code