-
According to the [current SPDX spec](https://spdx.org/sites/spdx/files/SPDX-2.0.pdf), dual-licensing should be done as: `(Apache-2.0 OR MIT)` (and there's also `AND`, `+` and `WITH`), but our [manifes…
-
### Description
As reported by @armijnhemel the FSF has silently published new versions of the GPL 2.0, and likely other licenses, including backporting these modifications to old versions of the …
-
We've recently updated our Xpra HTML5 client from version 10.1 to 16.2. Unfortunately, the stability has decreased massively.
During the initial connection, it reloads several times, then loads and …
-
I attempted to use the shal2code to generate a JSON Schema with the latest SPDX 3.0.1 model.
The output did not include any namespaces - is this an expected argument to shacl2code?
The URI's als…
-
**What would you like to be added**:
Support for PTXdist SPDX out of the ptxdist license-report
**Why is this needed**:
ptxdist is commonly used in embedded sw and it would be great to get als…
-
the license: field is wrong
https://github.com/nodejs/full-icu-npm/blob/main/package.json#L19
since the move to node.js, the license field should reflect node's license.
-
### Describe what should be investigated or refactored
Currently the `sboms.tar` layer contains both JSON documents and generated HTML for an "SBOM viewer" page for each of the images in the Zarf p…
-
SPDX will be used within SCS. Accordingly, we should equip all repositories etc. with it.
https://spdx.dev
-
### Issue Description
SBOM flags are not respected while `podman build` command.
Meanwhile sbom options fails if wrong input.
Builds were made inside `container quay.io/containers/podman:v5`
…
-
SPDX is a Linux Foundation project for license standardization.
I propose adding `spdx_license` and `spdx_version` fields to meta.yaml. We should also as a community try to stay on a single `spdx_…