Skip to content

spdx/license-list-XML

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

4,294 Commits

.github

.github

 
 

DOCS

DOCS

 
 

schema

schema

 
 

src

src

 
 

test/simpleTestForGenerator

test/simpleTestForGenerator

 
 

.editorconfig

.editorconfig

 
 

.gitattributes

.gitattributes

 
 

.gitignore

.gitignore

 
 

CONTRIBUTING.md

CONTRIBUTING.md

 
 

Makefile

Makefile

 
 

README.md

README.md

 
 

RELEASE-HISTORY.md

RELEASE-HISTORY.md

 
 

RELEASE-NOTES.md

RELEASE-NOTES.md

 
 

auto-comment.yaml

auto-comment.yaml

 
 

equivalentwords.txt

equivalentwords.txt

 
 

expected-warnings

expected-warnings

 
 

goneall.gpg

goneall.gpg

 
 

rename-license

rename-license

 
 

requirements.txt

requirements.txt

 
 

test-one-license

test-one-license

 
 

validate-schema.py

validate-schema.py

 
 

Repository files navigation

.github/workflows/deploy.yaml.github/workflows/validate.yaml

This repository contains the XML source and schema files used to generate the authoritative, supported SPDX list file formats, including the web pages you see at spdx.org/licenses and other generated data formats found in the SPDX license-list-data repository.

How we work

We welcome participants and contributions! The SPDX License List is maintained by the SPDX Legal Team. Work and discussion is done via this Github repo, meetings, and the spdx-legal mailing list:

  • mailing list: Please introduce yourself and let us know a bit about your interest in SPDX! The mailing list is our traditional form of communication. To join the SPDX Legal Team mailing list, send an email to Spdx-legal+subscribe@lists.spdx.org or visit https://lists.spdx.org/g/Spdx-legal (where you can also see the list's archives).
  • calls: We use conference calls to make decisions on topics and issues that may be difficult to discuss only via email or GitHub; or to review licenses. These calls are on the second and fourth Thursday of each month at 12:00 US Eastern Time. A reminder and agenda is (usually) sent prior to the calls to the SPDX-legal mailing list. Meeting minutes for the calls are in the SPDX meetings repo.
  • this GitHub repo: We use this repository for comments, issues, and pull requests related to specific changes to the files that comprise the SPDX License List. This includes new licenses, updates to an existing license, improvements to documentation and other changes.

If you are just getting to know the SPDX License List, check out our FAQ

Please see CONTRIBUTING.md for ways you can contribute.

SPDX License List

What

The SPDX License List is an integral part of the SPDX Specification. The SPDX License List itself is a list of commonly found licenses and exceptions used in free and open or collaborative software, data, hardware, or documentation. The purpose of the SPDX License List is to enable easy and efficient identification of such licenses and exceptions in an SPDX document, in source files or elsewhere. The SPDX License List includes a standardized short identifier, full name, vetted license text including matching guidelines markup as appropriate, and a canonical permanent URL for each license and exception.

Why

The purpose of the SPDX License List is to enable efficient and reliable identification of such licenses and exceptions in an SPDX document, in source files or elsewhere. The SPDX short identifiers combined with the matching guidelines ensures that anyone can reliably know exactly what license text is being referred to for a given SPDX identifier.

How

  • For more about how SPDX license identifiers are used in an SPDX document, a software bill of materials, or other places that store license data, see SPDX Specification, Clauses 7, 8, and 10 and Annexes B, D, and E.
  • For examples of use of SPDX license identifiers in source code, see https://spdx.org/ids. Please note, a license not on the SPDX License List can be included in an SPDX document by using a 'LicenseRef-' as the license name’s prefix and including the full license text as per the specification.

When

  • SPDX License List releases are done on a quarterly basis (more or less) at the end of January, April, July, and October. We schedule our License List releases one month behind the usual quarterly calendar cadence to accommodate the reality that many people contributing have other commitments at quarter-end.
  • See RELEASE-NOTES.md for a summary of each release
  • All PRs to be included as part of release must be merged 1 week prior to release date to allow time for actual release work
  • Any new issues raised within the month of the next release will likely be tagged for the following release, unless it is an easy-to-resolve issue

Consuming License Data from this Repository

Output files in the SPDX license-list-data repository are generated from the XML source in this repository. These output files are stable and well-supported, and make the License List available in RDFa, HTML, text, and JSON formats. You can use SPDX tools (or create your own) to consume the supported formats of the license list.

Please note that the XML format for this repository is internal to the SPDX legal team and is subject to change, so any direct consumers of this repository's source files should expect occasional, backwards-incompatible changes.

About

This is the repository for the master files that comprise the SPDX License List

Resources

Readme
Activity
Custom properties

Stars

324 stars

Watchers

48 watching

Forks

261 forks
Report repository

Releases 22

Version 3.23 of the SPDX License List Latest
Feb 8, 2024
+ 21 releases

Packages

No packages published

Contributors 104

+ 90 contributors

Languages