Software Package Data Exchange (SPDX) is an open standard for software bill of materials (SBOM).[1] SPDX allows the expression of components, licenses, copyrights, security references and other metadata relating to software.[2] Its original purpose was to improve license compliance,[3] and has since been expanded to facilitate additional use-cases, such as supply-chain transparency and security.[4] SPDX is authored by the community-driven SPDX Project under the auspices of the Linux Foundation.
The current version of the standard is 3.0.[5]
^Stewart, Kate (May 25, 2021). "SPDX: It's Already in Use for Global Software Bill of Materials (SBOM) and Supply Chain Security". Linux Foundation. Retrieved 2021-08-13.
^"Survey of Existing SBOM Formats and Standards" (PDF). National Telecommunications and Information Administration. October 25, 2019. p. 9. Retrieved 2021-08-13.
^Bridgwater, Adrian (August 19, 2011). "Linux Foundation eases open source licensing woes". Computer Weekly. Retrieved 2021-08-13.
SoftwarePackageDataExchange (SPDX) is an open standard for software bill of materials (SBOM). SPDX allows the expression of components, licenses, copyrights...
possible with the use of Software Composition Analysis (SCA) solutions. Reproducible builds SoftwarePackageDataExchangeSoftware toolchain Supply chain...
interface and the ability to easily exchangedata with each other. Advantages Less costly than buying individual packages Identical or very similar GUI Designed...
organization established in 2000 to support Linux development and open-source software projects. The Linux Foundation was formed as a merger with Free Standards...
This is a list of notable softwarepackages that implement the finite element method for solving partial differential equations. This table is contributed...
Technology defined electronic data interchange as "the computer-to-computer interchange of a standardized format for dataexchange. EDI implies a sequence of...
Retrieved 11 December 2014. "Open Government Licence v3.0". SoftwarePackageDataExchange (SPDX). San Francisco, California, USA. Archived from the original...
CAD dataexchange is a method of drawing dataexchange used to translate between different computer-aided design (CAD) authoring systems or between CAD...
compress data for several video games, including Need For Speed: High Stakes. VOL – video game datapackage. VSA – Altiris Virtual Software Archive WAX...
about the software architecture is available in the GNOME wiki. Depending on which version of Microsoft Exchange Server is used, different packages need to...
the second largest software vendor in Germany, and the seventh largest in Europe. Software AG is traded on the Frankfurt Stock Exchange under the symbol...
OPC servers provide a method for different softwarepackages (as long as it is an OPC client) to access data from a process control device, such as a programmable...
Open Source Initiative. Retrieved 15 July 2017. "ISC License". SoftwarePackageDataExchange. Retrieved 9 July 2021. Vixie, Paul (20 July 2007). "BIND covered...
data and the software needed to interpret it into a single package, sold as a consumer product. As the number of bundled software with datapackages proliferated...
networking, IoT, etc.) and softwaredataexchange (the different dataexchange formats and software capabilities of such dataexchange). Despite the difference...
European Data Format (EDF) is a standard file format designed for exchange and storage of medical time series. Being an open and non-proprietary format...
Engineering is the creator of the HyperWorks CAE software product, among numerous other softwarepackages and suites. The company was founded in 1985 and...
resulting in the original GPLv2 not being recognised by the SoftwarePackageDataExchange (SPDX).[failed verification] The license includes instructions...
management and publication of product data. In software engineering, this is known as version control. The goals of product data management include ensuring all...
Language Stack Exchange. 2013-07-24. Retrieved 2016-01-16. Fair license at the Open Source Initiative Fair license at the SoftwarePackageDataExchange...