package-url · captn3m0 · Apr 8, 2022 · Oct 7, 2022 · Oct 7, 2022 · Oct 7, 2022
diff --git a/PURL-TYPES.rst b/PURL-TYPES.rst
@@ -328,6 +328,35 @@ including container images built by Docker and others:
       pkg:oci/static@sha256:<digest>?repository_url=gcr.io/distroless/static&tag=latest
       pkg:oci/hello-wasm@sha256:<digest>?tag=v1
 
+os
+--
+
+``os`` for Operating Systems.
+
+- There is no standard naming convention for operating system identifiers. It's suggested to use the ``vendor:product`` from the CPE defined in ``/etc/os-release`` as the ``namespace/name`` in the PURL.
+- In case no CPE is available, the ``ID`` field from ``/etc/os-release`` can be used as both the namespace and name.
+- The ``version`` field should be latest version (including patch) that the operating system has been updated to. This should closely match the ``VERSION_ID`` field in the ``/etc/os-release`` data.
+- Both ``name`` and ``namespace`` are not case-sensitive and must be lowercased.
+- For rolling or testing distributions, the ``version`` should be set to the rolling channel identifier or branch name. Such as ``edge`` for alpine, or ``sid`` for debian. In case no such identifier is available, no version should be set.
+- For MacOS, the namespace should be set to ``apple`` and the name as ``macos``. The version string should match the ``ProductVersion`` returned by the ``sw_vers`` command.
+- For Windows, the namespace should be set to ``microsoft`` and the name as ``windows``. For special editions, the name should be hyphenated with the ``windows`` prefix, for eg: ``windows-server``, ``windows-embedded``, ``windows-mobile`` etc. Version should match the  ``Version`` as returned by the ``ver`` command.
+- In case ``/etc/os-release`` is not available, an equivalent file (such as ``/etc/lsb-release``, ``/etc/release``) can be used instead.
+- Optional qualifiers may include:
+
+  - ``arch``: key for a package architecture
+- Examples::
+
+    pkg:os/debian/debian@11.5
+    pkg:os/ubuntu/ubuntu@22.04.1
+    pkg:os/alpine/alpine@3.7
+    pkg:os/fedoraproject/fedora@42?arch=x86_64
+    pkg:os/arch/arch
+    pkg:os/alpine/alpine@edge
+    pkg:os/oracle/linux@8.4
+    pkg:os/redhat/enterprise_linux@7.9
+    pkg:os/microsoft/windows-server@10.0.19042
+    pkg:os/microsoft/windows@10.0.19042
+
 pypi
 ----
 ``pypi`` for Python packages:
@@ -413,6 +442,7 @@ Other candidate types to define:
 - ``nim`` for Nim packages:
 - ``nix`` for Nixos packages:
 - ``opam`` for OCaml packages:
+- ``os`` for operating system:
 - ``openwrt`` for OpenWRT packages:
 - ``osgi`` for OSGi bundle packages:
 - ``p2`` for Eclipse p2 packages: