The Linux Foundation Projects
Skip to main content

News & Announcements

Jun 19, 2023

SPDX Projects in Google Summer of Code 2023

Google Summer of Code Google Summer of Code (GSoC) is an international annual program, first held in 2005, that encourages and incentivizes newcomers to open source to spend their summer working on open source projects. It's organized by Google with the goal of encouraging more participation in open source development.…

Jun 14, 2023

Unpacking the SPDX 3.0 Tooling Mini Summit: A New Era of Compliance and Security

The Software Package Data Exchange (SPDX) 3.0 Tooling Mini Summit recently hosted by the Linux Foundation at Open Source Summit North America stands as a significant milestone in the evolution of compliance and security in the realm of software supply chains. The event brought together an array of tooling operators,…

May 16, 2023

SPDX Announces 3.0 Release Candidate with New Use Cases

VANCOUVER, May 8, 2023 – We are delighted to announce the release of the SPDX 3.0 Release Candidate, the first in a series of releases that will lead to the general availability of SPDX 3.0. This is a significant milestone for the SPDX project, and we are thrilled to share some…

Mar 29, 2023

GitHub Creating SBOMs using SPDX

Looks like GitHub has a self service option to create SBOMs for a GitHub Project based on SPDX! See this blog from them.

Jan 30, 2023

Why you should use SPDX for security

Phil Odence, the Chair for SPDX, has written a very informative article on why you should use SPDX for Security and even goes onto to address some of the common Myths around SPDX. It was published on You can read the article here.