Re: Next week's SPDX General Meeting & Nov Meeting Minutes

Philip Odence

corrected date…apologies

From: Phil Odence <podence@...>
Date: Wednesday, November 26, 2014 at 9:37 AM
To: "spdx@..." <spdx@...>
Subject: Next week's SPDX General Meeting & Nov Meeting Minutes

ANOTHER SPECIAL PRESENTATION: In addition to our normal agenda, I’ve asked my friend Bruno Grasset from Valeo to talk about his company’s adoption of SPDX. Valeo is one of the world’s largest suppliers to the automotive industry. Bruno runs Valeo's open source compliance program and one of the technical leaders of GENIVI. 

I’m trying to line up other speakers from complementary projects and companies using SPDX for future General Meetings…ideas welcome.


Meeting Time: Thurs, Dec 4, 8am PT / 10 am CT / 11am ET / 15:00 UTC.

Conf call dial-in:
Conference code:  7812589502
Toll-free dial-in number (U.S. and Canada):  (877) 435-0230
International dial-in number: (253) 336-6732
For those dialing in from other regions, a list of toll free numbers can be found:

Administrative Agenda

Valeo Presentation

Technical Team Report - Kate

Legal Team Report - Jilayne

Business Team Report – Jack

Cross Functional Issues – Phil

General Meeting/Minutes/2014-11-06

  • Attendance: 15+
  • Lead by Phil Odence
  • Minutes of October meeting approved

Cross Functional Issues, Special Presentation from Polarsys – Phil[edit]

  • Presentation from Polarsys COTSAQ project
    • OSS tool for managing software BoMs
    • SPDX connections
      • First will use SPDX License List
      • Connecting with code scanners through SPDX

Biz Team Report - Jack[edit]

  • Last call cancelled. Call in an hour.
  • Current focus is revamping the website homepage to guide new users

Legal Team Report - Jilayne[edit]

  • Working through 2.0 task list
  • Syncing with tech team schedule for release
  • Cross team topic- Standard Header field in list that applies to a subset of licenses (e.g. GPL, Apache)
    • Proposal is to remove the field as it becomes problematic with 2.0
    • Notice will go out to tech team/legal team

Tech Team Report - Kate[edit]

  • Fleshed out external SPDX document reference syntax. (currently sec 3.5, but may spin off to own section) and working on self reference (2.4)
  • Finishing off clarifying examples for relationship references (sec 8)
  • Extended the recognized checksums to include SHA256, MD5 (sec. 4.9, 6.4)
  • Decided to start off separate spec for inline references rather than include it in Appendix.
  • What's up for this month...
    • Gluing it all together and making available for other reviewers
    • Near term schedule: Draft Nov 14, feedback by Dec 1. 


  • Phil Odence, Black Duck
  • Kirsten Newcomer, Black Duck
  • Pierre LaPonte, nexB 
  • Gary O’Neill, SourceA
  • Mark Gisi, Wind River
  • Scott Sterling, Palamida
  • Matt Germonprez, UNO
  • Jilayne Lovejoy, ARM 
  • Jack Manbeck, TI 
  • Mike Dolan, Linux Foundation
  • Paul Maddick, HP
  • Michael Herzog, nexB
  • Pierre G, AirBus
  • Others from project COTSAQ

Join to automatically receive all group messages.