A new way to ensure open source license compliance: SPDX
Posted by Lacey Thoms on Fri, Aug 19, 2011 @ 10:20 AM
Earlier this week at LinuxCon a new way to ensure license compliance was released. Sponsored by the Linux Foundation, the SPDX workgroup announced the release of version 1.0 of the Software Package Data Exchange (SPDX) standard.
SPDX is the result of a collaborative effort to create a standard format for communicating the components, licenses and copyrights associated with a software package.
The release of the SPDX specifications marks the industry and the open source community coming together to fill a need. This standard will revolutionize the way third party software and in particular open source license management is done.
SPDX will enable more organizations to freely use open source software in their products and streamline the license compliance process.
As a member of Linux Foundation, Protecode has been working with the SPDX standard body to make System 4™ fully compliant with the SPDX 1.0 standard, launched today by the SPDX workgroup.
The ability to read and generate SPDX information by System 4™ eases license information exchange across the software supply chain, and allows for a simpler license compliance process.
Learn more about SPDX.
Learn about SPDX support in Protecode System 4™.