Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Software Package Data Exchange (SPDX) is an open standard for communicating software bill of material information #6

Open
emojifreak opened this issue Dec 13, 2019 · 0 comments

Comments

@emojifreak
Copy link

次の公式リリースが迫っているかもしれないし迫っていないのかもしませんが、SPDXというのが最近OSF業界で流行っているという情報をキャッチしたのでいちおう情報を貼ります。著作権表示をSPDXにするのが流行りになりそうな感じです

What is the SPDX Specification?

The SPDX organization does not and can not make it a requirement for anyone to use the SPDX specification. However, we do encourage the use of SPDX as a way to streamline the processes needed to analyze software for open source licenses. However, there may be companies or organizations that DO require use of the SPDX specification and the creation of SPDX files as part of contracts with their supply chain partners. For example, a mobile handset vendor might require, as part of a contract, that its supplier provide an SPDX file along with any software.

参考
https://spdx.org/frequently-asked-questions-faq-0
lxc/lxc@cc73685

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

No branches or pull requests

1 participant