Software Package Data Exchange™ (SPDX™) Workgroup


The goal of this specification is to enable companies and organizations to share license and component information (metadata) for software package and related content with the aim of facilitating license and other policy compliance. The SPDX group is a Linux Foundation working group (part of the Open Compliance Program) and encourages participation by anyone interested. To learn more about SPDX, you can start by watching this 3-minute Introduction to SPDXwebinar.

For access to the SPDX specification and more information visit or contact:

Kate Stewart ( Phil Odence (

For More Information: Download the SPDX Overview