Hot news:
- Richard and I are frequently discussing open issues in
fedora-license-data. In past weeks we were able to resolve old and
tricky issues (e.g., libpng licensess or universal foss
exception). We are now down to 28 issues (when I omit the ones
where we are waiting for 3rd party). In past, we had over 70 open
issues.
- I went through bunch of packages that were flagged as "trivial" or "neither SPDX nor Callaway" and created lots of PR to correct the license IDs. Sixteen of them are still open and is not visible in this round of statistics.
- Many license tags that do not pass validation are clearly result of situation where you are not sure how to create SPDX formula and you try "something". For your help we have guidelines that document SPDX formula:
- https://docs.fedoraproject.org/en-US/legal/spdx/
- you can use tool `license-validate` that can validate whole
license string.
- documentation how to handle APSL-1.x license has been added
https://docs.fedoraproject.org/en-US/legal/license-field/#_apsl_1_x_licenses
Four weeks ago we had:
* 24528 spec files in Fedora
* 31130 license tags in all spec files
* 95 tags are not SPDX compliant (number from line bellow minus packages with LicenseRef-Callaway-*)
* 2026 tags have not been converted to SPDX yet
* 5 tags can be trivially converted using `license-fedora2spdx`
* Progress: 99.67% ░░░░░░░░░█ 100%
ELN subset:
54 out of 2300 packages are not converted yet (progress 97.65%)
Today we have:
* 24548 spec files in Fedora
* 31159 license tags in all spec files
* 104 tags are
not SPDX compliant (number from line bellow minus packages
with LicenseRef-Callaway-*)
* 2071 tags have not been
converted to SPDX yet
* 8 tags can be trivially converted using `license-fedora2spdx`
*
Progress: 99.76% ░░░░░░░░░█
100%
ELN subset:
52
out of 2314 packages are not converted yet
(progress 97.75%)
Graph of these data with the burndown chart:
https://docs.google.com/spreadsheets/d/1QVMEzXWML-6_Mrlln02axFAaRKCQ8zE807rpCjus-8s/edit?usp=sharing
https://pagure.io/copr/license-validate/blob/main/f/packages-without-spdx-final.txt
List by package maintainers is here
https://pagure.io/copr/license-validate/blob/main/f/packages-without-spdx-final-maintainers.txt
Packages that are neither in SPDX nor in Callaway format (highest priority for now) - 26 packages:
https://pagure.io/copr/license-validate/blob/main/f/neither-nor-remaining-packagers.txt
Many has open PR now. Others has open issue in
fedora-license-data. A lot of them are waiting for SPDX to
approved the license and assign ID.
I released new version of fedora-license-data with 5 new license
and several public domain and ultra permissive dedication.
12 licenses are waiting to be reviewed by SPDX.org (and then to
be added to fedora-license-data) https://gitlab.com/fedora/legal/fedora-license-data/-/issues/?label_name%5B%5D=SPDX%3A%3Ablocked
If your package does not have neither git-log entry nor spec-changelog entry mentioning SPDX and you know your license tag matches SPDX formula, you can put your package on ignore list
https://pagure.io/copr/license-validate/blob/main/f/ignore-packages.txt
Either pull-request or direct email to me is fine.
Miroslav
-- _______________________________________________ devel mailing list -- devel@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe send an email to devel-leave@xxxxxxxxxxxxxxxxxxxxxxx Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/devel@xxxxxxxxxxxxxxxxxxxxxxx Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue
