Open mxmehl opened 2 years ago
If we want to use the SPDX python tools as a dependency, it'd be great to have them packaged for Debian first, as mentioned in spdx/tools-python#201.
I wouldn't wait for packaging, packaging a pypi module is quite easy. I'd volunteer if I didn't already have too many things to do... (And I'm not a DD so it would need a sponsor anyway). I'm any case, reuse itself isn't packaged I don't think, so no big deal.
FileCopyrightText do not look right
Related to #947
The REUSE tool currently generates a SPDX software bill of materials only in the SPDX-2.1 format. As an example, I attached the output of
reuse spdx
of this repository. There are a number of issues:SPDX-FileCopyrightText
tags.It seems we generate this document manually in
spdx.py
andreport.py
. Perhaps there is some spdx library that we can use?Also, generating an optional JSON/YAML version would be great.