Permalink
Fetching contributors…
Cannot retrieve contributors at this time
45 lines (30 sloc) 5.63 KB

Before you contribute to the SPDX License List

Please familiarize yourself with the SPDX License List and its supporting documentation, so that you understand the pertinent context around the list itself:

  • Overview of the SPDX License List explains some key background, principles for the inclusion of a license on the SPDX License List, as well as an explanation of the fields contained on the list.
  • SPDX License List Matching Guidelines provides guidelines to be used for the purposes of matching licenses and license exceptions against those included on the SPDX License List.
  • SPDX Specification: It is helpful to be familiar with certain sections of the SPDX Specification thatuse or deal with the SPDX License List. In particular: sub-sections related to license information in Section 3, 4, and 6; Appendices II, IV, and V.

How to contribute/participate: general

The SPDX License List is maintained by the SPDX Legal Team. Work and discussion is primarily done via:

  • mailing list: our traditional form of communication. Meeting reminders, minutes, and updates are posted there, as well as discussion. You can join the mailing list and otherwise manage your subscription via spdx-legal mailman.
  • this Github repo: comments and issues and PRs related to specific changes to the files that comprise the SPDX License List, e.g., update a URL, recommend additional markup for matching purposes, or other such changes. Requests for new license or exceptions are tracked here, see more info on that process below.
  • bi-weekly calls: used to discuss topics and issues that may be difficult to only discuss via email or via Github. Information on the bi-weekly calls and the working area for the SPDX Legal Team, can be found on the SPDX legal team wiki

Please do not raise general questions via issues in this Github repository, but use the appropriate workgroup mailing list.

Request a new license or exception be added to the SPDX License List

The SPDX Legal Team appreciates proposals for new free and open source licenses or exceptions to be added to the SPDX License List. To request a license or exception be added to the SPDX License List, please:

  1. Review the license list overview and inclusion principles.

  2. Check the SPDX License List, historical license and exceptions tracking page and issues labeled new license/exception request to ensure this license or exception has not been previously requested.

  3. Submit your request via the SPDX Online Tool Submit New License using the following guidance. See also overview-fields for more info on some of these fields. Note: you must have a Github account in order to use this tool/process.

  • Full Name: Provide a proposed Full Name for the license or exception using the guidance in the overview-fields.
  • Short Identifier: Provide a proposed Short Identifier using the guidance in the overview-fields.
  • Source/URL: Provide a functioning URL reference to the license or exception text, preferably from the author or a community recognized source.
  • OSI Approved: Indicate whether the license is OSI-approved or is currently under review. (If the latter, please provide some information as to where in the process.)
  • Standard License Header: If the license designates specific text to be put in the header of source files, include that here; otherwise leave blank.
  • Text: Full text of the license or exception.
  • Comments: Provide a short explanation regarding the need for this license or exception to be included on the SPDX License List, and identify at least one program that uses it or any other related information.
  1. Follow the discussion or any request for additional information via the issue and comments. Please note, if the SPDX-legal team has questions that go unanswered by the submitter for several months, we will close the issue without making a final decision.

Review Process

  1. The SPDX Legal Team will discuss any submissions for new licenses or exceptions via comments in the Github issue. Please follow the comments and respond accordingly if there are questions or additional information requested.
  2. New licenses may be approved if 3 SPDX-legal team members (2 lawyers, 1 non-lawyer) sign-off that the license is acceptable AND there is no objection raised from the greater SPDX-legal community within the Github issue comments. If there are objections, then the issue will be labelled "discuss on legal call" and will be discussed on an upcoming bi-weekly call.
  3. Issues will be labelled either "new license/exception: Accepted" or "new license/exception: Not Accepted" as appropriate with an explanation and the Issue closed for the latter case.
  4. If accepted, the new license or exception will be prepared by a member of the SPDX Legal Team in the proper XML format and plain text test file via a Pull Request and reviewed as appropriate.
  5. The new license/exception will be officially added for the next release of the SPDX License List.