The Software Package Data Exchange® (SPDX®)

An open standard for communicating software bill of material information, including components, licenses, copyrights, and security references. SPDX reduces redundant work by providing a common format for companies and communities to share important data, thereby streamlining and improving compliance.

LEARN MORE

Learn

Use

Resources

Announcements
September 16, 2020

SPDX Tools have a new Home

Greetings to the community, We are excited about the hosting of the SPDX tools on a more robust and hopefully permanent platform. A new URL for the SPDX online tools…
In the News
September 16, 2020

SPDX Specification submitted to ISO

On August 20th,  the Software Package Data Exchange® (SPDX®) specification was submitted to ISO for consideration as a Publicly Available Specification.  The Joint Development Foundation (which is part of the Linux…