The security profile captures security-related information in a SPDX Security Document.
Areas of Interest
SPDX is organized in areas of interest, or profiles, focused on specific user needs.
SPDX Licensing
The licensing profile includes capturing details relevant to software licensing.
Learn more
SPDX AI
The AI profile is a documented list of software components and dependencies associated with an AI system.
Learn more
SPDX Data
A document or representation that captures the relevant information about the datasets used in an AI system or application.
Learn more
SPDX Build
The build profile includes capturing details of software builds. Its associated definitions help express how software is generated and transformed.
Learn more
SPDX Lite
The SPDX Lite profile is designed to make it quick and easy to get started with a Software Bill of Materials in situations where a company may have limited capacity for introducing new items in their process.
Learn more
Supported by these foundations:
SPDX Core
The Core profile includes the definitions of classes properties and vocabularies usable by all SPDX profiles.
Learn more
SPDX Software
The Software Profile is an extension of the core profile specific to software. Similar to core, it is used by all profiles which support software.
Learn more
