Hot news:
- I changed the summary and instead of the tidbits I put there how many packages are remaining.
- I started counting the packages that has valid SPDX id and no changelog entry (e.g., MIT) as converted. Therefore the bump in statistics. If the license is indeed correct, we will find out in next phase where we will have to do continues check if the license is correct. This still need a work and is not yet ready.
- if your package has license LicenseRef-Callaway-foo then it is
valid SPDX identifier, but it needs a work. Please se this
documentation
https://docs.fedoraproject.org/en-US/legal/license-audit-tools/#_scancode_toolkit
And the result need to pass test of `license-validate` command.
There is a lot of SPDX identifier that were not justified by
fedora-legal whether they are good or bad. If `license-validate`
does not recognize the identifier then please open issue at
https://gitlab.com/fedora/legal/fedora-license-data
Two weeks ago we had:
* 24378 spec files in Fedora
* 31014 license tags in all spec files
* 5359 tags have not been converted to SPDX yet
* 149 tags can be trivially converted using `license-fedora2spdx`
* Progress: 82,72% ░░░░░░░░██ 100%
ELN subset:
71 out of 2320 packages are not converted yet (progress 96.94%)
Today we have:
* 24291 spec files in Fedora
* 30947 license tags in all spec files
* 404 tags are
not SPDX complient (number from line bellow minus packages
with LicenseRef-Callaway-*)
* 2726 tags have not been
converted to SPDX yet (drop by 2k+ because I
do not caunt "valid as old and new")
* 111 tags can be trivially converted using `license-fedora2spdx`
*
Progress: 98,69% ░░░░░░░░░█
100%
ELN subset:
68
out of 1945 packages are not converted yet
(progress 96.50%)
Graph of these data with the burndown chart:
https://docs.google.com/spreadsheets/d/1QVMEzXWML-6_Mrlln02axFAaRKCQ8zE807rpCjus-8s/edit?usp=sharing
https://pagure.io/copr/license-validate/blob/main/f/packages-without-spdx-final.txt
List by package maintainers is here
https://pagure.io/copr/license-validate/blob/main/f/packages-without-spdx-final-maintainers.txt
Packages that are neither in SPDX nor in Callaway format (highest priority for now) - 101 packages:
https://pagure.io/copr/license-validate/blob/main/f/neither-nor-remaining-packagers.txt
New version of fedora-license-data has been released. With:
2 new licenses and lots of public domain dedications
9 licenses are waiting to be reviewed by SPDX.org (and then to
be added to fedora-license-data) https://gitlab.com/fedora/legal/fedora-license-data/-/issues/?label_name%5B%5D=SPDX%3A%3Ablocked
https://docs.fedoraproject.org/en-US/legal/allowed-licenses/
was updated too.
If your package does not have neither git-log entry nor spec-changelog entry mentioning SPDX and you know your license tag matches SPDX formula, you can put your package on ignore list
https://pagure.io/copr/license-validate/blob/main/f/ignore-packages.txt
Either pull-request or direct email to me is fine.
Miroslav
-- _______________________________________________ devel mailing list -- devel@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe send an email to devel-leave@xxxxxxxxxxxxxxxxxxxxxxx Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/devel@xxxxxxxxxxxxxxxxxxxxxxx Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue
