Software Package Data Exchange
Open standard for software bill of materials / From Wikipedia, the free encyclopedia
Dear Wikiwand AI, let's keep it short by simply answering these key questions:
Can you list the top facts and stats about Software Package Data Exchange?
Summarize this article for a 10 year old
SHOW ALL QUESTIONS
For networking protocol, see SPDY.
Software Package Data Exchange (SPDX) is an open standard for software bill of materials (SBOM).[2] SPDX allows the expression of components, licenses, copyrights, security references and other metadata relating to software.[3] Its original purpose was to improve license compliance,[4] and has since been expanded to facilitate additional use-cases, such as supply-chain transparency and security.[5] SPDX is authored by the community-driven SPDX Project under the auspices of the Linux Foundation.
Quick Facts Abbreviation, Status ...
Abbreviation | SPDX |
---|---|
Status | Published |
First published | August 2011 (2011-08) |
Latest version | 2.3 November 2022 (2022-11) |
Preview version | 3.0 RC[1] 16 May 2023 (2023-05-16) |
Organization | Linux Foundation |
Committee | SPDX Project |
Domain | Software bill of materials |
License | CC-BY-3.0 |
Website | spdx |
Close
The current version of the standard is 2.3.[6]