Legal Team/Minutes/2013-03-14

From SPDX Wiki
< Legal Team‎ | Minutes
Revision as of 11:00, 29 March 2013 by MartinMichlmayr (Talk | contribs)

(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)
Jump to: navigation, search

Attendees:

  • Jilayne Lovejoy, OpenLogic
  • Tom Vidal
  • Dennis Clark
  • Jack Manbeck
  • Zack White
  • Paul Madick

update on Collab Summit schedule

schedule is up on LF website; license matching guidelines session scheduled for Tuesday, 2-4. Jilayne will send more detailed info a few days prior to meeting, so everyone can get up to date and ready to roll!

website update & feedback on nav naming

description of new site: redesign and more identifiable, separate wiki. on the new website design there will be a high level link to the LL with a few drop-down items. need some feedback on what to call the sub-nav:

License List

As for the license inclusion guidelines (what Tom V is working on), I'm thinking instead of going on a separate page, those could go on the overview page (or on the request a new license page?) - thoughts? Anything missing?

  • overview page seems like right place for the license inclusion guidelines because it's important info to know from the get-go
  • naming links: names okay as suggested; "overview" preferred instead of "about"
  • could the url links for the actual license text be case insensitive? (need to ask Gary)

additional language to LL description? (see proposed language in italics)

The SPDX License List is a list of commonly found open source software licenses for the purposes of being able to easily and efficiently identify such licenses in an SPDX document. The SPDX License List includes a standardized short identifier, full name for each license, vetted license text, other basic information, and a canonical permanent URL. By providing a short identifier, users can efficiently refer to a license without having to redundantly reproduce the full license.

By including a license on this list, the SPDX workgroup makes no judgement about its suitability or desirability. In general, the SPDX workgroup is supportive of the community standardizing on a small number of licenses, but this position in no way influences what is on the SPDX License List. The list is meant only to standardize references to the most commonly used, open source-like licenses, not to promote or discourage the use of any license.

  • do we need this? if so, review of this draft text
  • has there been confusion as to this in the past? not that anyone remembers, in terms of it being an issue
  • speaks on behalf of the entire SPDX Workgroup - need to vet this with whole group (will need to do so with license inclusion guidelines as well)
  • overall support for this statement
  • maybe remove second sentence and just use first and third sentence; second sentence takes a position, may not be important for SPDX to take a position - all agreed on this
  • remove "most" in third sentence
  • for process: have review by whole group of what the whole "overview" page will look like - new part with old part, will need to proof-read whole thing for continutity, etc.

update from various project leads (Fedora list – Paul; license inclusion guidelines – Tom V.)

License Inclusion Guidelines (Tom V.) - discussed a few nuances and word-smithing; plan to post a page on the wiki with this and other text for the "overview" webpage - to be reviewed by legal team, then whole group.

Fedora list (Paul M.) - progress coming along slowly, hope to have some info in time for Collab Summit... TBD

New license request

  1. Full name of license: The Code Project Open License 1.02
  2. License identifier: CPOL-1.02
  3. License URL: http://www.codeproject.com/info/cpol10.aspx
  4. License text: see attached
  5. OSI approved: No
  6. Programs that use this license: The below programs are used in the wild under CPOL-1.02
  7. Notes: Previous versions of the license include CPOL-1.00 and CPOL-1.01; however, I have not seen these used in the wild. The following is a link to the Wikipedia entry for CPOL: http://en.wikipedia.org/wiki/Code_Project_Open_License

→ ADD TO LIST: all agreed this should be on there - surprising it wasn't to begin with. decided not to put on earlier versions since they seem to only have minor differences and text does not seem to be available.

Guillaume and Daniel's idea and other discussion on list serve of other list identifier (see email)

  • idea of a prefix (letter and dash) - not so good, don't want to change structure of short name; but a "domain identifier" is not a bad idea (Daniel's email) - default of SPDX with possibility of identifying another license list
  • idea that the "domain.short identifer" could be used in the SPDX file, instead of the generic license reference
  • how do we ensure that there aren't duplicates? may end up with different trust levels for different domains - would get worked through over time
  • is this really an tech team/extension of the spec question? would mean changing spec to accomodate this
  • no one on call who was on this suggestion - what is the use case here? need more info to be able to intelligiently comment on/work through potential issues, etc.