Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Differences between 3.0.1 and 2.2.1 for ISO submission #1124

Draft
wants to merge 7 commits into
base: development/v3.0.1
Choose a base branch
from
Draft

Differences between 3.0.1 and 2.2.1 for ISO submission #1124

wants to merge 7 commits into from

Conversation

bact
Copy link
Collaborator

@bact bact commented Sep 26, 2024
edited
Loading

Draft - Based on text in https://github.com/spdx/using/blob/main/docs/diffs-from-previous-editions.md

Difference from the base-text

  • "Properties Removed" and "Naming Differences" sections are converted to tables for easy comparison
  • Fixed typos and wrong property names, as listed in Fix typos in diffs-from-previous-editions.md using#18
  • Added new hash algorithms (from 2.3)
  • Added info about the change of License matching to XML format (from 2.3)

To resolve #999

To be added

  • Incorporate changes between 2.2.1 and 2.3 in
  • V2.3-V2.2.2:
    • License matching is now using License List XML format
    • Added hash algorithms (SHA3-256, SHA3-384, SHA3-512, BLAKE2b-256,
      BLAKE2b-384, BLAKE2b-512, BLAKE3, ADLER32 )
    • PrimaryPackagePurpose is new in 2.3

Issues to be resolved

  • In SPDX 2 File Type v SPDX 3 Content Type table, there's a mention of "text/spdx", it is tag:value SPDX file format which is not available in SPDX 3 yet.

Possible style

We may like to see examples from similar "diffs" in other ISO docs.

For example, ISO 13485:2016 - Medical devices - Quality management systems - Requirements for regulatory purposes has an "Annex A Comparison of content between ISO 13485:2003 and ISO 13485:2016" in a table format.

Clause in ISO 13485:2016 Comment on change compared with ISO 13485:2003
Foreword — Clarifies ...
Introduction
0.1 General		 — Includes ...
— Explains ...
— Alerts ...

@bact
First draft of diffs
ee043f4 
Signed-off-by: Arthit Suriyawongkul <[email protected]>
@bact
Move diffs to submissions/ISO
daeeff6 
Signed-off-by: Arthit Suriyawongkul <[email protected]>
@bact bact added ISO publication Last minute publication (considerations for markdown to word) publishing labels Sep 26, 2024
@bact bact added this to the 3.0.1 milestone Sep 26, 2024
@bact bact marked this pull request as draft September 26, 2024 10:00
@bact bact self-assigned this Sep 26, 2024
@bact
Convert long sections to tables
08f562d 
Signed-off-by: Arthit Suriyawongkul <[email protected]>
@bact
definingDocument -> definingArtifact
b9c19ba 
Signed-off-by: Arthit Suriyawongkul <[email protected]>
@bact
Remove 2.3 fields from Naming Differences table
b14432a 
"Primary Package Purpose", "Build Date", "Release Date", "Valid Until Date" are from 2.3.

Removed as they not from 2.2.1

Signed-off-by: Arthit Suriyawongkul <[email protected]>
@bact
LicenseInfoInFiles -> LicenseInfoInFile
e3017b1 
Signed-off-by: Arthit Suriyawongkul <[email protected]>
@zvr zvr removed this from the 3.0.1 milestone Sep 27, 2024
@zvr
Copy link
Member

zvr commented Sep 27, 2024

I think the "changes" should start with much more general view, talking about how we went from SpdxDocument to general data, leaving behind the Package/File/Snippet types but introducing dozens of different elements, etc. etc.

I cleared the milestone because I don't think it's realistic to have this ready immediately.

@bact
Sort Content Type table
d94c530 
Signed-off-by: Arthit Suriyawongkul <[email protected]>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees

@bact bact

Labels
ISO publication Last minute publication (considerations for markdown to word) publishing
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

Annex A (diffs from previous) should be about the previous ISO version
2 participants
@bact @zvr