Check out this posting and the accompanying article that give a shout out to the Yocto SBOM work that Joshua Watt briefed us on at the last General Meeting. https://www.linkedin.com/posts/vpetersson_im-excited-by-yoctos-sbom-capabilities-activity-7298791001526063106-qqsc/#?lipi=urn%3Ali%3Apage%3Ad_flagship3_detail_base%3Brv%2FCdMTgS36PFZd4RZTQPg%3D%3D...
New podcast episode of Nerding Out with Viktor is now live! In Viktor’s words: I spoke with Kate Stewart from the The Linux Foundation and Gary ONeall about the evolution...
VANCOUVER, May 8, 2023 – We are delighted to announce the release of the SPDX 3.0 Release Candidate, the first in a series of releases that will lead to the general...
Looks like GitHub has a self service option to create SBOMs for a GitHub Project based on SPDX! See this blog from them.
Phil Odence, the Chair for SPDX, has written a very informative article on why you should use SPDX for Security and even goes onto to address some of the common...
After much hard work and anticipation, we are proud to announce that the SPDX Specification is now an ISO Standard! We want to thank everyone who helped make this happen....
The Linux Foundation will be hosting a supply chain townhall virtually on August 18, 2021. View this link for details: Linux Foundation Town Hall
On August 20th, the Software Package Data Exchange® (SPDX®) specification was submitted to ISO for consideration as a Publicly Available Specification. The Joint Development Foundation (which is part of the Linux...
Great article in the International Free and Open Source Software Law Review. Talks about Fossology, license scanning and SPDX.
by Jilayne Lovejoy, Legal team Co-Chair On December 28th, 2017, version 3.0 of the SPDX License List was released. This marks the achievement of several significant milestones for the project...
