SPDX
Software Package Data Exchange
ISO standard for communicating software bill of materials (SBOM) information including component names, versions, licences, and security references. Enables automated compliance checking and vulnerability tracking across software supply chains.
- Document
- ISO/IEC 5962:2021 (SPDX 2.3)
- URL
- https://spdx.dev/
- Label
- Standard
- Keywords
- SBOM software bill of materials licence compliance vulnerability tracking supply chain SPDX
Domain: Software Engineering · Standard