The Software Package Data Exchange® (SPDX®)
An open standard for communicating software bill of material information, including components, licenses, copyrights, and security references. SPDX reduces redundant work by providing a common format for companies and communities to share important data, thereby streamlining and improving compliance.
The SPDX specification is an international open standard (ISO/IEC 5962:2021).
Latest SPDX News
SPDX Announces 3.0 Release Candidate with New Use Cases
VANCOUVER, May 8, 2023 – We are delighted to announce the release of the SPDX 3.0 Release Candidate, the first in a series of releases that will lead to the general…Read More