Black Duck Software Announces Support for SPDX Version 1.0
August 18, 2011 —
WALTHAM, Mass., Aug. 17, 2011 -- Black Duck Software, the leading global provider of strategy, products and services for automating the management, governance and secure use of open source software, today announced support for the release of the Software Package Data Exchange (SPDX) Version 1 open source standard in the Black Duck Suite.
SPDX is an industry standard for communicating the open source components, licenses and copyrights associated with a software package. SPDX provides a uniform approach to documenting and sharing metadata about software packages, making it more efficient for supply chain partners to communicate. The standard's top objective is to help companies more easily comply with software licensing obligations.
Black Duck, which has the largest customer base in the open source code and license management industry, will generate SPDX output as part of the reporting capability of the Black Duck Suite. There will be no additional cost for Black Duck's rapidly expanding base of 1,000 customers located in 24 countries.
"As a Black Duck customer and an active supporter of the SPDX standard, Texas Instruments is pleased that Protex™ now supports SPDX," said Jack Manbeck, manager, Open Source Review Board, TI Texas Instruments. "Having such tools will help the community propagate the use of SPDX and enhance supply chain efficiency."
Black Duck co-chairs the Linux Foundation's SPDX Working Group that brings together representatives from open source projects, vendors, and corporate users across the industry and around the globe; the Black Duck technology team actively contributes to the standard.
"Black Duck is proud to be instrumental in developing the SPDX standard, which we are confident will benefit the entire open source community," said Phil Odence, vice president, business development, Black Duck Software, and co-chair of the SPDX Working Group. "Making it easier to communicate open source obligations will not only enable greater compliance, but will also increase the efficiency of supply chains. We're happy to encourage this by offering SPDX output to our users at no additional cost."
To learn more about Black Duck's involvement and to review a whitepaper and short presentation explaining the SPDX standard, visit: http://www.blackducksoftware.com/spdx.
For more information on the SPDX Working Group and the SPDX standard, visit: http://spdx.org.
Related Search Term(s): Black Duck, SPDX
Share this link: http://sdt.bz/35842
Most Read Latest News Blog Resources
Android is the focus of two new design tools
Anywhere Software and Xamarin provide ways for developers to create and test their applications on PCs
|
|
LEADTOOLS HTML5 add-on modules released
Including New HTML5 Zero Footprint Viewer, JavaScript Libraries and RESTful Web Services for Document and Medical SDKs
|
|
How to speed up your Cukes
Using a five-step process derived from Six Sigma, Cucumber tests can go much faster
|
|
WhiteSource offers open-source license management as a service
Software gives companies insight into the open-source components in products
|
SmartBear rolls out new quality solution: API Complete
Software gives organizations ability to write test scripts and monitor APIs by bridging the DevOps divide
|
|
Android is the focus of two new design tools
Anywhere Software and Xamarin provide ways for developers to create and test their applications on PCs
|
|
WhiteSource offers open-source license management as a service
Software gives companies insight into the open-source components in products
|
|
Top five devices you can integrate with your applications
A five-fingered list of common, household items with which you can talk to (via software, of course)
|
Slick...but who needs it?
compilr.com is a well-designed site and the folks behind it seem to have their heart in the right place. But...who needs it?
|
|
How to be a better software developer
Want to be a better developer? You won't get there by mastering an interesting language or learning a new set of APIs.
|
|
Wooing Galatea
Do yourself a favor and check out Galatea 2.2, a wonderful book by novelist Richard Powers.
|
|
The world as story
An artificial-intelligence system at Carnegie Mellon seeks to understand the world by making statements about it.
|
Five SCM Best Practices
Two-thirds of all software projects fail, according to the Standish Group’s CHAOS study. Improper usage of software configuration management...
|
|
|
Best Practices for Branching and Merging Patterns
Development teams often create a branching pattern, usually drawn out on a white board or in a Visio document, that is used as a model to...
|
|
Automated Error Reporting
We invite you to read a short e-zine that tells you all about automated error reporting for .NET applications. This 8-page e-zine is packed...
|
|
The End of Application Redeploys
Imagine that every time you wanted to write, send or receive an email, you needed to restart your computer. How much time would this take, a...
|