General Meeting/Minutes/2020-06-04

From SPDX Wiki
< General Meeting‎ | Minutes
Revision as of 13:21, 12 June 2020 by Podence (Talk | contribs)

(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)
Jump to: navigation, search
  • Attendance: 17
  • Lead by Phil Odence
  • Minutes of May meeting

Presentation - Health Care PoC & NTiA, Ed Heierman, Abbott Labs

  • Discussed medical device manufacturers’ development of proof-of-concept SBOMs using SPDX
  • Demonstrated tag-value SPDX file, and tooling to generate through Excel spreadsheets as well as an open online tool
    • the latter is also able to import existing SPDX files
  • He will make slides available.


Tech Team Report - Kate / Gary

  • GSoC
    • Coding period just started
    • Also doing funding for one student through CommunityBridge Mentorships, will start in July
  • Tools
    • Java tooling updated to released 2.2 spec
    • Python – partial implementation, still in progress
  • Spec
    • v2.2 published
    • now focusing on refactoring into specific profiles for v3.0 – security; revised licensing profile
    • also transforming v2.2 spec into format for submission to ISO
    • if looking at repo, will be seeing churn from section renumbering, table formats, etc. to align with ISO guidelines – will be v2.2.1
    • will use transformed version as basis for v3.0
    • active areas: security, licensing, base, integrity, usage rules (lifecycle of software, etc.)
    • Tuesday weekly calls as well as out-of-band calls
    • SPDX Japan calls – once a month, happening second Monday of each month – 8PM Eastern, for now reach out to Kate for invite (will document on website)

Legal Team Report - Jilayne/Paul/Steve

Outreach Team Report – Steve (Jack unable to attend)


Attendees

  • Phil Odence, Black Duck/Synopsys
  • Ed Heieman, Abbott Labs
  • Kate Stewart, Linux Foundation
  • Gary O’Neall, SourceAuditor
  • Steve Winslow, LF
  • Alexios Zavras, Intel
  • Takashi Ninjouji, Toshiba
  • Peter Shin, Canvass Labs
  • Jilayne Lovejoy, Canonical
  • Emmanuel Tournier, Black Duck/Synopsys
  • David Wheeler, Linux Foundation
  • Mike Dolan, Linux Foundation
  • Ed Heierman, Abbott Labs
  • Mark Atwood, Amazon
  • Jeremiah Foster, Purism
  • Mark Baushke, Juniper
  • McCoy Smith, LexPan

• • •