THE SPDX WIKI IS NO LONGER ACTIVE. ALL CONTENT HAS BEEN MOVED TO https://github.com/spdx

Difference between revisions of "Legal Team/License List/Licenses Under Consideration"

From SPDX Wiki
Jump to: navigation, search
(Licenses Under Consideration)
(Licenses Under Consideration)
Line 37: Line 37:
 
Rather than perpetuate the redundant license name, it might be better for scanning tools to recognize this as Apache 1.1."  This request will be reviewed by the SPDX Legal Working Group.  
 
Rather than perpetuate the redundant license name, it might be better for scanning tools to recognize this as Apache 1.1."  This request will be reviewed by the SPDX Legal Working Group.  
  
It was determined is the same as the Apache 1.1, which allows for variations in Year, Owner and Contact, so it is already covered by that license and there is no need to add this one.
+
It was determined that the MX4J text is the same as the Apache 1.1, which allows for variations in Year, Owner and Contact, so it is already covered by that license and there is no need to add this one.
 
    
 
    
 
|-
 
|-
| BSD 4-clause Caldera License (BSD-4-Clause-Caldera)  
+
| Caldera License (Caldera)  
|  <span style="display: none;">3</span> Under Review
+
|  <span style="display: none;">3</span> Accepted in v1.20
 
|2014-04-01
 
|2014-04-01
 
| See http://www.lemis.com/grog/UNIX/     
 
| See http://www.lemis.com/grog/UNIX/     
Line 48: Line 48:
  
 
Per Tom Incorvia: "Due primarily to the licensing information stated prior to the slightly modified BSD-4-Clause, I would recommend that this be reviewed by SPDX as a license distinct from the BSD-4-Clause.  The platform limitations, in particular, appear to make this a distinct license."   
 
Per Tom Incorvia: "Due primarily to the licensing information stated prior to the slightly modified BSD-4-Clause, I would recommend that this be reviewed by SPDX as a license distinct from the BSD-4-Clause.  The platform limitations, in particular, appear to make this a distinct license."   
 +
 +
Because of significant differences in license terms, it was decided to call this license the Caldera License (Caldera) rather than BSD 4-clause Caldera License (BSD-4-Clause-Caldera), even though the text is generally structured in a manner similar to the BSD-4-Clause. 
 
|-
 
|-
 
| Bzip2 License
 
| Bzip2 License

Revision as of 19:44, 1 May 2014

This table is used to track license list requests and is maintained by the Legal team.

We started tracking license requests in this table after release 1.18 of the License List. Entries submitted prior to that had their Date Submitted arbitrarily set to January 1, 2013.

Status Name Explanation
Accepted in v__ The license was added to indicated version of the SPDX License List. The SPDX License List version indicated may be yet to be released in the case where a license is accepted in between SPDX License List releases.
Under Review A license addition has been requested and is currently under review.
Not Accepted The license was reviewed by the Legal Team and it was decided to not add the license to the SPDX License List at this time.
On Hold This means that more research is needed or there are other extenuating factors that have prevented a decision on the addition of the license to be made. See the Notes for more information.


Licenses Under Consideration

License Status Date Submitted Notes
MX4J License 3 Not Accepted 2014-04-04 See http://mx4j.sourceforge.net/docs/ch01s06.html

Submitted by vanek909@gmail.com via bugzilla. "The MX4J license is a license that is identified by multiple license scanning tools (including Ninka and FOSSology), but it is not included in the SPDX 1.2 Standard License List. Consider including this license in the 2.0 spec?"

Per Dennis Clark: "Opinion: A quick glance at the MX4J license text indicates that it is really Apache 1.1, even though the authors have given it the specific name of The MX4J License, Version 1.0. Rather than perpetuate the redundant license name, it might be better for scanning tools to recognize this as Apache 1.1." This request will be reviewed by the SPDX Legal Working Group.

It was determined that the MX4J text is the same as the Apache 1.1, which allows for variations in Year, Owner and Contact, so it is already covered by that license and there is no need to add this one.

Caldera License (Caldera) 3 Accepted in v1.20 2014-04-01 See http://www.lemis.com/grog/UNIX/

Submitted by Maciej Wereski. "This license is used in some older software (e.g. The Traditional Vi)."

Per Tom Incorvia: "Due primarily to the licensing information stated prior to the slightly modified BSD-4-Clause, I would recommend that this be reviewed by SPDX as a license distinct from the BSD-4-Clause. The platform limitations, in particular, appear to make this a distinct license."

Because of significant differences in license terms, it was decided to call this license the Caldera License (Caldera) rather than BSD 4-clause Caldera License (BSD-4-Clause-Caldera), even though the text is generally structured in a manner similar to the BSD-4-Clause.

Bzip2 License 3 Accepted in v1.20 2014-02-10 See http://bzip.org/1.0.5/bzip2-manual-1.0.5.html

Submitted by Oliver Fendt of Siemens AG. "bzip2 is a popular package and often used, thus an entry in the spdx license list would make life easier."

Zend Engine v2.0 3 On Hold 2013-01-01 different license for Zend Engine and Zend Framework and variations as such. more research needed. see research done thus far in attachment below
"old" MIT 3 On Hold 2013-01-01 See http://blog.gmane.org/gmane.comp.licenses.spdx.legal/day=20121201
US Gov't works 3 On Hold 2013-01-01 add short identifier to list; see email from David Wheeler
GPL-2.0 identifier 3 On Hold 2013-01-01 issue of potential confusion with short identifier "GPL-2.0" meaning GPLv2 only; whereas GPLv2 or later, uses short identifier "GPL-2.0+" should short identifier be changed to "GPL-2.0-only" for symmetry and clarity?
  1. what would the ramifications of changing a short identifier be? had said we wouldn't not change short identifiers
  2. alternatively, could add in Notes field for all GNU licenses that short identifier "GPL-2.0" = GPL v2 only for clarification (but will this be "obvious" enough?
Unicode 3 On Hold 2013-01-01 to add? (from FSF list) - Unicode LIcense Agreement for Data Files and Software – are there other versions or other Unicode licenses? It does not appear so, based on the info on this page: http://www.unicode.org/copyright.html ... → realized that Fedora has a different Unicode license(for Character Database, Fedora uses short identifier: UCD, found here: https://fedoraproject.org/wiki/Licensing:UCD?rd=Licensing/UCD ) than the Unicode license above from the FSF list. more research needed to see if there are others, so can appropriately name, etc.
Fedora Good List Licenses 3 Under Review 2013-08-01 Project to reconcile the "Fedora Good List" at https://fedoraproject.org/wiki/Licensing:Main?rd=Licensing

with the SPDX License List. Review status details are available at https://docs.google.com/a/nexb.com/spreadsheet/ccc?key=0AmVnI0dGKEo1dENVVHFNeG5hQjAyYjQ3bm1VVUdjOFE#gid=1

Ruby License 3 Removed as of v1.19 2013-09-12 see discussion here: http://wiki.spdx.org/view/Legal_Team/Minutes/2013-09-12

working with Ruby project to come up with accurate way to identify different license variations

Creative Commons 4.0 License Family 3 Under Review 2013-11-27 Six new licenses. See email from Oliver Fendt.

See discussion here: http://creativecommons.org/weblog/entry/40768 and access the six variants here: http://creativecommons.org/licenses/

Do What The F*ck You Want To Public License 3 Under Review 2013-12-27 we have version 2.0 on the list, but do not have previous versions. Also question about whether version number should be added to short identifier (i.e., WTFPL-2.0 instead of WTFPL currently)


Processed License Requests

License Status Date Submitted Notes
Microsoft patterns & practices License (MSPPL) 3 Not Accepted 2014-03-05 See http://msdn.microsoft.com/en-us/library/gg405489(v=pandp.40).aspx

Submitted by Oliver Fendt. "This license is used quite frequently in the context of the programming language C#"

The major concern regarding this license text is the lack of a specific Version designation for this text by Microsoft, which could change the text at any time without providing a new unique identifier. This is a common situation with many free proprietary licenses that are specific to a vendor and contain various restrictions that tie the license to that vendor only. It would be better to capture the specific applicable text using the SPDX License Ref option when specifying that this license applies to a software package being used.

Eclipse Distribution License - v 1.0 3 Not Accepted 2014-03-03 See http://www.eclipse.org/org/documents/edl-v10.php

Submitted by Mike Milinkovich of the Eclipse Foundation. "The EDL-1.0 is used by Eclipse projects with the approval of the Eclipse Board of Directors." The license is used in multiple Eclipse projects.

However, the license text is the same as the SPDX BSD-3-Clause, which allows for variations in Year and Owner, so it is already covered by that license and there is no need to add this one.

IBM PowerPC Initialization and Boot Software (IBM-pibs) 2 Accepted in v1.19 2013-7-30 http://git.denx.de/?p=u-boot.git;a=blob;f=arch/powerpc/cpu/ppc4xx/4xx_pci.c

A disjunctive license offering a choice of GPL 2.0 or an IBM open source license. Also see: http://thread.gmane.org/gmane.comp.boot-loaders.u-boot/166449

Sun Industry Standards Source License 1.2 (SISSL-1.2) 2 Accepted in v1.19 2013-7-18 http://gridscheduler.sourceforge.net/Gridengine_SISSL_license.html

" It also seems that there is a 1.2 version of this license (http://gridscheduler.sourceforge.net/Gridengine_SISSL_license.html )." from Camille Moulin camille.moulin@alterway.fr via lists.spdx.org, in the context of a discussion about whether the ID for SISSL (which has no version suffix) should be changed. Also see: http://spdx.org/licenses/SISSL and http://www.openoffice.org/licenses/sissl_license.html

Artistic License (Perl) 1.0 2 Accepted in v1.19 2013-6-03 http://thread.gmane.org/gmane.comp.licenses.spdx.legal/557

Even though, the ‘Artistic License – 1.0’ and ‘Artistic License – 2.0’ are included in the SPDX License List, I feel a need to also include the ‘‘Artistic License (Perl) – 1.0’. The ‘Artistic License (Perl) - 1.0’ contains an extra clause and is used in a wide range of PERL based programs. Discussed on 6/6 legal call: http://wiki.spdx.org/view/Legal_Team/Minutes/2013-06-06 --> conferred with OSI and decided to add Artistic-1.0-cl8 and Artistic-1.0-Perl to reflect all contingencies here

Unlicense 3 Accepted in v1.19 2013-01-01 see thread here: http://search.gmane.org/?query=unlicenseamp group=gmane.comp.licenses.spdx.legal
FLORA 4 Not Accepted 2013-01-01 decided not to add at this point in time, pending completion of license inclusion guidelines. see http://blog.gmane.org/gmane.comp.licenses.spdx.legal/month=20121101 for most recent thread on the topic and meeting minutes where discussed at: Legal_Team/Minutes/2012-10-31