opensbom.org - SPDX – Linux Foundation Projects Site

Example domain paragraphs

An open standard for communicating software bill of material information, including components, licenses, copyrights, and security references. SPDX reduces redundant work by providing a common format for companies and communities to share important data, thereby streamlining and improving compliance. The SPDX specification is an international open standard (ISO/IEC 5962:2021).

Learn Learn more about the structure of SPDX and how to participate.

Explore the ways that you can engage with SPDX.