|
|
Line 1: |
Line 1: |
− | <p><span style="font-family: Calibri; font-size: medium;">Minutes 1/24/2012</span></p><p><span style="font-family: Calibri; font-size: medium;">Attendees:</span></p><ul><li><span style="font-size: medium;">·</span> <span style="font-family: Calibri; font-size: medium;">Gary O’Neall</span></li><li><span style="font-size: medium;">·</span> <span style="font-family: Calibri; font-size: medium;">Bill Schineller</span></li><li><span style="font-size: medium;">·</span> <span style="font-family: Calibri; font-size: medium;">Savino Sguera</span></li><li><span style="font-size: medium;">·</span> <span style="font-family: Calibri; font-size: medium;">Kirsten Newcomer</span></li><li><span style="font-size: medium;">·</span> <span style="font-family: Calibri; font-size: medium;">Ed Warnicke</span></li><li><span style="font-size: medium;">·</span> <span style="font-family: Calibri; font-size: medium;">Brandon Robinson</span></li><li><span style="font-size: medium;">·</span> <span style="font-size: medium;"><span style="font-family: Calibri;">Rana Rahal</span></span></li><li><span style="font-size: medium;">·</span> <span style="font-size: medium;"><span style="font-family: Calibri;">Jack Manbeck</span></span></li></ul><p><span style="font-family: Calibri; font-size: medium;">Agenda:</span></p><ul><li><span style="font-size: medium;">·</span> <span style="font-family: Calibri; font-size: medium;">Discuss proposal for hierarchical supply chain (bug 818)</span></li></ul><p><span style="font-family: Calibri; font-size: medium;">Discussion on excluded files and relationship to SPDX files. Embedded packages will be addressed in version 2.0 of the spec.</span></p><p><span style="font-family: Calibri; font-size: medium;">For the embedded packages which are represented by a subdirectory of files, proposal would be that there is an SPDX file at the root of the subdirectory which would detail out the embedded package. The higher level SPDX would reference the SPDX file in the subdirectory. The higher level SPDX does not need to detail out the files contained in the lower level SPDX.</span></p><p><span style="font-family: Calibri; font-size: medium;">Discussion on references to embedded SPDX files – how does that affect the proposed model? Possibly including a null specifier reference. Possibly including an SPDX reference in the model.</span></p><p><span style="font-size: medium;"><span style="font-family: Calibri;">Discussion on including some of the 1.1 model into the proposed model. </span></span></p><p><span style="font-family: Calibri; font-size: medium;">[I believe there was general agreement that the license model was useful, however this was not confirmed on the call]</span></p><p><span style="font-family: Calibri; font-size: medium;">Discussion on the model around packages files and file types. Discussion on whether this model is useful or if it overly complicates and constrains the model. Agreed that it would be nice to allow SPDX to refer to things other than packages. Discussion on using the annotations for this purpose. Will pick up the discussion next week.</span></p><p><span style="font-family: Calibri; font-size: medium;"> </span></p>
| + | == Attendees == |
| + | |
| + | * Gary O’Neall |
| + | * Bill Schineller |
| + | * Savino Sguera |
| + | * Kirsten Newcomer |
| + | * Ed Warnicke |
| + | * Brandon Robinson |
| + | * Rana Rahal |
| + | * Jack Manbeck |
| + | |
| + | == Agenda == |
| + | |
| + | * Discuss proposal for hierarchical supply chain (bug 818) |
| + | |
| + | Discussion on excluded files and relationship to SPDX files. Embedded packages will be addressed in version 2.0 of the spec. |
| + | |
| + | For the embedded packages which are represented by a subdirectory of files, proposal would be that there is an SPDX file at the root of the subdirectory which would detail out the embedded package. The higher level SPDX would reference the SPDX file in the subdirectory. The higher level SPDX does not need to detail out the files contained in the lower level SPDX. |
| + | |
| + | Discussion on references to embedded SPDX files – how does that affect the proposed model? Possibly including a null specifier reference. Possibly including an SPDX reference in the model. |
| + | |
| + | Discussion on including some of the 1.1 model into the proposed model. |
| + | |
| + | (I believe there was general agreement that the license model was useful, however this was not confirmed on the call) |
| + | |
| + | Discussion on the model around packages files and file types. Discussion on whether this model is useful or if it overly complicates and constrains the model. Agreed that it would be nice to allow SPDX to refer to things other than packages. Discussion on using the annotations for this purpose. Will pick up the discussion next week. |
| + | |
| + | [[Category:Technical|Minutes]] |
| + | [[Category:Minutes]] |
Latest revision as of 13:23, 6 March 2013
Attendees
- Gary O’Neall
- Bill Schineller
- Savino Sguera
- Kirsten Newcomer
- Ed Warnicke
- Brandon Robinson
- Rana Rahal
- Jack Manbeck
Agenda
- Discuss proposal for hierarchical supply chain (bug 818)
Discussion on excluded files and relationship to SPDX files. Embedded packages will be addressed in version 2.0 of the spec.
For the embedded packages which are represented by a subdirectory of files, proposal would be that there is an SPDX file at the root of the subdirectory which would detail out the embedded package. The higher level SPDX would reference the SPDX file in the subdirectory. The higher level SPDX does not need to detail out the files contained in the lower level SPDX.
Discussion on references to embedded SPDX files – how does that affect the proposed model? Possibly including a null specifier reference. Possibly including an SPDX reference in the model.
Discussion on including some of the 1.1 model into the proposed model.
(I believe there was general agreement that the license model was useful, however this was not confirmed on the call)
Discussion on the model around packages files and file types. Discussion on whether this model is useful or if it overly complicates and constrains the model. Agreed that it would be nice to allow SPDX to refer to things other than packages. Discussion on using the annotations for this purpose. Will pick up the discussion next week.