Fwd: SPDX Statistics - 127 packages remaining - legal - Fedora mailing-lists

7 Feb 2025

      -------- Přeposlaná zpráva --------
Předmět: 	SPDX Statistics - 127 packages remaining
Datum: 	Fri, 7 Feb 2025 06:42:03 +0100
Od: 	Miroslav Suchý msuchy@redhat.com
Společnost: 	Red Hat Czech, s.r.o.
Komu: 	Development discussions related to Fedora devel@lists.fedoraproject.org
Hot news:
- the review of licenses in queue has been stalled for several weeks
Two weeks ago we had:
...

24401spec files in Fedora

31038license tags in all spec files

142 tags are not SPDX compliant (number from line bellow minus packages with LicenseRef-Callaway-*)

2289 tags have not been converted to SPDX yet

16 tags can be trivially converted using `license-fedora2spdx`

Progress: 99.48% ░░░░░░░░░█100%

ELN subset:
61 out of 2316 packages are not converted yet (progress 97.41%)
Today we have:
* 24347spec files in Fedora
* 30986license tags in all spec files
* 127 tags are not SPDX compliant (number from line bellow minus packages with LicenseRef-Callaway-*)
* 2246tags have not been converted to SPDX yet
* 15 tags can be trivially converted using `license-fedora2spdx`
* Progress: 99.48% ░░░░░░░░░█100%
ELN subset:
57 out of 2317 packages are not converted yet (progress 97.54%)
Graph of these data with the burndown chart:
https://docs.google.com/spreadsheets/d/1QVMEzXWML-6_Mrlln02axFAaRKCQ8zE807rp...
The list of packages needed to be converted is here:
https://pagure.io/copr/license-validate/blob/main/f/packages-without-spdx-fi...
List by package maintainers is here
https://pagure.io/copr/license-validate/blob/main/f/packages-without-spdx-fi...
Packages that are neither in SPDX nor in Callaway format (highest priority for now) - 35 packages:
https://pagure.io/copr/license-validate/blob/main/f/neither-nor-remaining-pa...
Most of such packages has open issue in fedora-license-data. A lot of them are waiting for SPDX to approved the license 
and assign ID.
There was no release of fedora-license-data.
12 licenses are waiting to be reviewed by SPDX.org (and then to be added to fedora-license-data) 
https://gitlab.com/fedora/legal/fedora-license-data/-/issues/?label_name%5B%...
If your package does not have neither git-log entry nor spec-changelog entry mentioning SPDX and you know your license 
tag matches SPDX formula, you can put your package on ignore list
https://pagure.io/copr/license-validate/blob/main/f/ignore-packages.txt
Either pull-request or direct email to me is fine.
Miroslav