Hot news:
- Richard and I are frequently discussing open issues in fedora-license-data. In past weeks we were able to resolve old
and tricky issues (e.g., libpng licensess or universal foss exception). We are now down to 28 issues (when I omit the
ones where we are waiting for 3rd party). In past, we had over 70 open issues.
- I went through bunch of packages that were flagged as "trivial" or "neither SPDX nor Callaway" and created lots of PR
to correct the license IDs. Sixteen of them are still open and is not visible in this round of statistics.
- Many license tags that do not pass validation are clearly result of situation where you are not sure how to create
SPDX formula and you try "something". For your help we have guidelines that document SPDX formula:
- https://docs.fedoraproject.org/en-US/legal/spdx/
- you can use tool `license-validate` that can validate whole license string.
- documentation how to handle APSL-1.x license has been added
https://docs.fedoraproject.org/en-US/legal/license-field/#_apsl_1_x_licenses
Four weeks ago we had:
* 24528 spec files in Fedora
* 31130license tags in all spec files
* 95 tags are not SPDX compliant (number from line bellow minus packages with
LicenseRef-Callaway-*)
* 2026tags have not been converted to SPDX yet
* 5 tags can be trivially converted using `license-fedora2spdx`
* Progress: 99.67% ░░░░░░░░░█100%
ELN subset:
54 out of 2300 packages are not converted yet (progress 97.65%)
Today we have:
* 24548 spec files in Fedora
* 31159license tags in all spec files
* 104 tags are not SPDX compliant (number from line bellow minus packages with
LicenseRef-Callaway-*)
* 2071tags have not been converted to SPDX yet
* 8 tags can be trivially converted using `license-fedora2spdx`
* Progress: 99.76% ░░░░░░░░░█100%
ELN subset:
52 out of 2314 packages are not converted yet (progress 97.75%)
Graph of these data with the burndown chart:
https://docs.google.com/spreadsheets/d/1QVMEzXWML-6_Mrlln02axFAaRKCQ8zE807rpCjus-8s/edit?usp=sharing
The list of packages needed to be converted is here:
https://pagure.io/copr/license-validate/blob/main/f/packages-without-spdx-final.txt
List by package maintainers is here
https://pagure.io/copr/license-validate/blob/main/f/packages-without-spdx-final-maintainers.txt
Packages that are neither in SPDX nor in Callaway format (highest priority for
now) - 26 packages:
https://pagure.io/copr/license-validate/blob/main/f/neither-nor-remaining-packagers.txt
Many has open PR now. Others has open issue in fedora-license-data. A lot of them are waiting for SPDX to approved the
license and assign ID.
I released new version of fedora-license-data with 5 new license and several
public domain and ultra permissive dedication.
12 licenses are waiting to be reviewed by SPDX.org (and then to be added to fedora-license-data)
https://gitlab.com/fedora/legal/fedora-license-data/-/issues/?label_name%5B%5D=SPDX%3A%3Ablocked
If your package does not have neither git-log entry nor spec-changelog entry mentioning SPDX and you know your license
tag matches SPDX formula, you can put your package on ignore list
https://pagure.io/copr/license-validate/blob/main/f/ignore-packages.txt
Either pull-request or direct email to me is fine.
Miroslav
--
_______________________________________________
devel mailing list -- devel@lists.fedoraproject.org
To unsubscribe send an email to devel-le...@lists.fedoraproject.org
Fedora Code of Conduct:
https://docs.fedoraproject.org/en-US/project/code-of-conduct/
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives:
https://lists.fedoraproject.org/archives/list/devel@lists.fedoraproject.org
Do not reply to spam, report it:
https://pagure.io/fedora-infrastructure/new_issue
