|
|
Log in / Subscribe / Register

SPDX Becomes Internationally Recognized Standard for Software Bill of Materials

SPDX Becomes Internationally Recognized Standard for Software Bill of Materials

Posted Sep 13, 2021 9:33 UTC (Mon) by Cyberax (✭ supporter ✭, #52523)
Parent article: SPDX Becomes Internationally Recognized Standard for Software Bill of Materials

A sidenote, with the inclusion of the WTFPL in the license list in SPDX, it's the first time an official ISO standard is f**ed.

to post comments

SPDX Becomes Internationally Recognized Standard for Software Bill of Materials

Posted Sep 13, 2021 15:06 UTC (Mon) by NYKevin (subscriber, #129325) [Link] (1 responses)

PSA: The WTFPL is a terrible license. Nobody with legal training has vetted it. Its phrasing may be too vague to have legal effect in some jurisdictions. It completely lacks a warranty disclaimer.

Use one of the standard permissive licenses instead. MIT and 0BSD are both very short and easy to understand, and lawyers have actually looked at them.

SPDX Becomes Internationally Recognized Standard for Software Bill of Materials

Posted Sep 13, 2021 19:31 UTC (Mon) by mdolan (subscriber, #104340) [Link]

It's still useful to know if you picked up any dependencies under the WTFPL... which SPDX short identifiers in source files enable you to easily identify.

SPDX Becomes Internationally Recognized Standard for Software Bill of Materials

Posted Sep 16, 2021 19:41 UTC (Thu) by ncm (guest, #165) [Link]

I guarantee you it is not the first time.


Copyright © 2026, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds