An open standard for communicating software bill of material information, including components, licenses, copyrights, and security references. SPDX reduces redundant work by providing a common format for companies and communities to share important data, thereby streamlining and improving compliance. The SPDX specification is an international open standard (ISO/IEC 5962:2021).
Learn Learn more about the structure of SPDX and how to participate.
Explore the ways that you can engage with SPDX.