SPDX Statistics - 104 packages remaining

Miroslav Suchý <msuchy@xxxxxxxxxx> · Tue, 1 Jul 2025 13:04:02 +0200



    Hot news:
    - new version of SPDX license list is going to be released soon
      (today?)
    

    Four weeks ago we had: 

    
      * 24552 spec files in Fedora 

            
      * 31159 license
            tags in all spec files
      * 108 tags
            are not SPDX compliant (number from line bellow minus
            packages with LicenseRef-Callaway-*)

          
      * 2093 tags have not been
                            converted to SPDX yet

      
      * 8 tags
                        can be trivially converted using
                        `license-fedora2spdx`
      *
                        Progress: 99.65% ░░░░░░░░░█
                        100%

      
      ELN
                        subset:
      55
                        out of 2291 packages are not converted yet
                        (progress 97.65%)
    
    
    Today we have: 
    * 24548 spec files in Fedora 

          
    * 31159 license tags
          in all spec files
    * 104 tags are
          not SPDX compliant (number from line bellow minus packages
          with LicenseRef-Callaway-*)

        
    * 2071 tags have not been
                          converted to SPDX yet

    
    * 8 tags
                      can be trivially converted using
                      `license-fedora2spdx`
    *
                      Progress: 99.67% ░░░░░░░░░█
                      100%

    
    ELN
                      subset:
    54
                      out of 2300 packages are not converted yet
                      (progress 97.65%)

                    
    Graph of these data with the burndown chart:

      
         https://docs.google.com/spreadsheets/d/1QVMEzXWML-6_Mrlln02axFAaRKCQ8zE807rpCjus-8s/edit?usp=sharing
    The list of packages needed to be converted is here:
         https://pagure.io/copr/license-validate/blob/main/f/packages-without-spdx-final.txt
    List by package maintainers is here
       https://pagure.io/copr/license-validate/blob/main/f/packages-without-spdx-final-maintainers.txt
    Packages that are neither in SPDX nor in Callaway format (highest
      priority for now) - 27 packages:
    https://pagure.io/copr/license-validate/blob/main/f/neither-nor-remaining-packagers.txt
    Most of such packages has open issue in fedora-license-data. A
      lot of them are waiting for SPDX to approved the license and
      assign ID.

    
    I released new version of fedora-license-data with 1 new license.
      (I am lying, due fedora-infra outage I am unable to build it now,
      so this will happen tomorrow).

    
    9 licenses are waiting to be reviewed by SPDX.org (and then to be
      added to fedora-license-data) https://gitlab.com/fedora/legal/fedora-license-data/-/issues/?label_name%5B%5D=SPDX%3A%3Ablocked

    
    If your package does not have neither git-log entry nor
      spec-changelog entry mentioning SPDX and you know your license tag
      matches SPDX formula, you can put your package on ignore list 
      https://pagure.io/copr/license-validate/blob/main/f/ignore-packages.txt
    Either pull-request or direct email to me is fine. 

    
    Miroslav

      
-- 
_______________________________________________
devel mailing list -- devel@xxxxxxxxxxxxxxxxxxxxxxx
To unsubscribe send an email to devel-leave@xxxxxxxxxxxxxxxxxxxxxxx
Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives: https://lists.fedoraproject.org/archives/list/devel@xxxxxxxxxxxxxxxxxxxxxxx
Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue