Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

SPDX 2->3 conversion of excludedFiles in PackageVerificationCode #85

Closed
Tracked by #74
armintaenzertng opened this issue Feb 22, 2023 · 2 comments
Closed
Tracked by #74

SPDX 2->3 conversion of excludedFiles in PackageVerificationCode #85

armintaenzertng opened this issue Feb 22, 2023 · 2 comments
Labels
Profile:Software v2-compatibility
Milestone
3.0

Comments

@armintaenzertng
Copy link
Contributor

armintaenzertng commented Feb 22, 2023
edited
Loading

In SPDX2 we could express a list of excluded files, how is this possible in SPDX3?

Gary's comment from #74:

The idea is we would have a separate verification implementation for packages that would include this information. The work for this hasn't been done.

This has been discussed in the tech team call on 2023-02-28. It is not clear yet whether PackageVerificationCode will be carried over to SPDX3.
@armintaenzertng armintaenzertng mentioned this issue Feb 22, 2023
Closed
9 tasks
@goneall goneall added this to the 3.0 milestone Jun 3, 2023
@goneall
Copy link
Member

goneall commented Jul 28, 2023

The current proposal is to completely replace verification code with a different algorithm.

There still is a migration issue in what we do with the old verification code. It is, however, optional in SPDX 3.

@goneall goneall mentioned this issue Jul 28, 2023
Closed
@goneall
Copy link
Member

goneall commented Mar 17, 2024

Fixed with PR #345

@goneall goneall closed this as completed Mar 17, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
Profile:Software v2-compatibility
Projects
None yet
Milestone
3.0
Development

No branches or pull requests
3 participants
@goneall @maxhbr @armintaenzertng