Hot news:
- I changed the summary and instead of the tidbits I put there how many
packages are remaining.
- I started counting the packages that has valid SPDX id and no changelog entry (e.g., MIT) as converted. Therefore the
bump in statistics. If the license is indeed correct, we will find out in next phase where we will have to do continues
check if the license is correct. This still need a work and is not yet ready.
- if your package has license LicenseRef-Callaway-foo then it is valid SPDX identifier, but it needs a work. Please se
this documentation https://docs.fedoraproject.org/en-US/legal/license-audit-tools/#_scancode_toolkit And the result need
to pass test of `license-validate` command. There is a lot of SPDX identifier that were not justified by fedora-legal
whether they are good or bad. If `license-validate` does not recognize the identifier then please open issue at
https://gitlab.com/fedora/legal/fedora-license-data
Two weeks ago we had:
* 24378spec files in Fedora
* 31014license tags in all spec files
* 5359 tags have not been converted to SPDX yet
* 149 tags can be trivially converted using `license-fedora2spdx`
* Progress: 82,72% ░░░░░░░░██100%
ELN subset:
71 out of 2320 packages are not converted yet (progress 96.94%)
Today we have:
* 24291spec files in Fedora
* 30947license tags in all spec files
* 404 tags are not SPDX complient (number from line bellow minus packages with
LicenseRef-Callaway-*)
* 2726 tags have not been converted to SPDX yet (drop by 2k+ because I do not caunt
"valid as old and new")
* 111 tags can be trivially converted using `license-fedora2spdx`
* Progress: 98,69% ░░░░░░░░░█100%
ELN subset:
68 out of 1945 packages are not converted yet (progress 96.50%)
Graph of these data with the burndown chart:
https://docs.google.com/spreadsheets/d/1QVMEzXWML-6_Mrlln02axFAaRKCQ8zE807rpCjus-8s/edit?usp=sharing
The list of packages needed to be converted is here:
https://pagure.io/copr/license-validate/blob/main/f/packages-without-spdx-final.txt
List by package maintainers is here
https://pagure.io/copr/license-validate/blob/main/f/packages-without-spdx-final-maintainers.txt
Packages that are neither in SPDX nor in Callaway format (highest priority for
now) - 101 packages:
https://pagure.io/copr/license-validate/blob/main/f/neither-nor-remaining-packagers.txt
New version of fedora-license-data has been released. With:
2 new licenses and lots of public domain dedications
9 licenses are waiting to be reviewed by SPDX.org (and then to be added to fedora-license-data)
https://gitlab.com/fedora/legal/fedora-license-data/-/issues/?label_name%5B%5D=SPDX%3A%3Ablocked
Legal docs and especially
https://docs.fedoraproject.org/en-US/legal/allowed-licenses/
was updated too.
New projection when we will be finished is 2025-11-05 (that is next month!).
Pure linear approximation.
If your package does not have neither git-log entry nor spec-changelog entry mentioning SPDX and you know your license
tag matches SPDX formula, you can put your package on ignore list
https://pagure.io/copr/license-validate/blob/main/f/ignore-packages.txt
Either pull-request or direct email to me is fine.
Miroslav
--
_______________________________________________
devel mailing list -- devel@lists.fedoraproject.org
To unsubscribe send an email to devel-le...@lists.fedoraproject.org
Fedora Code of Conduct:
https://docs.fedoraproject.org/en-US/project/code-of-conduct/
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives:
https://lists.fedoraproject.org/archives/list/devel@lists.fedoraproject.org
Do not reply to spam, report it:
https://pagure.io/fedora-infrastructure/new_issue
