1*ba677afaSXin LiSPDXID: SPDXRef-DOCUMENT 2*ba677afaSXin Liannotations: 3*ba677afaSXin Li- annotationDate: "2010-01-29T18:30:22Z" 4*ba677afaSXin Li annotationType: OTHER 5*ba677afaSXin Li annotator: 'Person: Jane Doe ()' 6*ba677afaSXin Li comment: Document level annotation 7*ba677afaSXin Li- annotationDate: "2010-02-10T00:00:00Z" 8*ba677afaSXin Li annotationType: REVIEW 9*ba677afaSXin Li annotator: 'Person: Joe Reviewer' 10*ba677afaSXin Li comment: This is just an example. Some of the non-standard licenses look like they 11*ba677afaSXin Li are actually BSD 3 clause licenses 12*ba677afaSXin Li- annotationDate: "2011-03-13T00:00:00Z" 13*ba677afaSXin Li annotationType: REVIEW 14*ba677afaSXin Li annotator: 'Person: Suzanne Reviewer' 15*ba677afaSXin Li comment: Another example reviewer. 16*ba677afaSXin Licomment: This document was created using SPDX 2.0 using licenses from the web site. 17*ba677afaSXin LicreationInfo: 18*ba677afaSXin Li comment: |- 19*ba677afaSXin Li This package has been shipped in source and binary form. 20*ba677afaSXin Li The binaries were created with gcc 4.5.1 and expect to link to 21*ba677afaSXin Li compatible system run time libraries. 22*ba677afaSXin Li created: "2010-01-29T18:30:22Z" 23*ba677afaSXin Li creators: 24*ba677afaSXin Li - 'Tool: LicenseFind-1.0' 25*ba677afaSXin Li - 'Organization: ExampleCodeInspect ()' 26*ba677afaSXin Li - 'Person: Jane Doe ()' 27*ba677afaSXin Li licenseListVersion: "3.9" 28*ba677afaSXin LidataLicense: CC0-1.0 29*ba677afaSXin LidocumentNamespace: http://spdx.org/spdxdocs/spdx-example-444504E0-4F89-41D3-9A0C-0305E82C3301 30*ba677afaSXin LiexternalDocumentRefs: 31*ba677afaSXin Li- checksum: 32*ba677afaSXin Li algorithm: SHA1 33*ba677afaSXin Li checksumValue: d6a770ba38583ed4bb4525bd96e50461655d2759 34*ba677afaSXin Li externalDocumentId: DocumentRef-spdx-tool-1.2 35*ba677afaSXin Li spdxDocument: http://spdx.org/spdxdocs/spdx-tools-v1.2-3F2504E0-4F89-41D3-9A0C-0305E82C3301 36*ba677afaSXin Lifiles: 37*ba677afaSXin Li- SPDXID: SPDXRef-DoapSource 38*ba677afaSXin Li checksums: 39*ba677afaSXin Li - algorithm: SHA1 40*ba677afaSXin Li checksumValue: 2fd4e1c67a2d28fced849ee1bb76e7391b93eb12 41*ba677afaSXin Li copyrightText: Copyright 2010, 2011 Source Auditor Inc. 42*ba677afaSXin Li fileContributors: 43*ba677afaSXin Li - Protecode Inc. 44*ba677afaSXin Li - SPDX Technical Team Members 45*ba677afaSXin Li - Open Logic Inc. 46*ba677afaSXin Li - Source Auditor Inc. 47*ba677afaSXin Li - Black Duck Software In.c 48*ba677afaSXin Li fileName: ./src/org/spdx/parser/DOAPProject.java 49*ba677afaSXin Li fileTypes: 50*ba677afaSXin Li - SOURCE 51*ba677afaSXin Li licenseConcluded: Apache-2.0 52*ba677afaSXin Li licenseInfoInFiles: 53*ba677afaSXin Li - Apache-2.0 54*ba677afaSXin Li- SPDXID: SPDXRef-CommonsLangSrc 55*ba677afaSXin Li checksums: 56*ba677afaSXin Li - algorithm: SHA1 57*ba677afaSXin Li checksumValue: c2b4e1c67a2d28fced849ee1bb76e7391b93f125 58*ba677afaSXin Li comment: This file is used by Jena 59*ba677afaSXin Li copyrightText: Copyright 2001-2011 The Apache Software Foundation 60*ba677afaSXin Li fileContributors: 61*ba677afaSXin Li - Apache Software Foundation 62*ba677afaSXin Li fileName: ./lib-source/commons-lang3-3.1-sources.jar 63*ba677afaSXin Li fileTypes: 64*ba677afaSXin Li - ARCHIVE 65*ba677afaSXin Li licenseConcluded: Apache-2.0 66*ba677afaSXin Li licenseInfoInFiles: 67*ba677afaSXin Li - Apache-2.0 68*ba677afaSXin Li noticeText: |- 69*ba677afaSXin Li Apache Commons Lang 70*ba677afaSXin Li Copyright 2001-2011 The Apache Software Foundation 71*ba677afaSXin Li 72*ba677afaSXin Li This product includes software developed by 73*ba677afaSXin Li The Apache Software Foundation (http://www.apache.org/). 74*ba677afaSXin Li 75*ba677afaSXin Li This product includes software from the Spring Framework, 76*ba677afaSXin Li under the Apache License 2.0 (see: StringUtils.containsWhitespace()) 77*ba677afaSXin Li- SPDXID: SPDXRef-JenaLib 78*ba677afaSXin Li checksums: 79*ba677afaSXin Li - algorithm: SHA1 80*ba677afaSXin Li checksumValue: 3ab4e1c67a2d28fced849ee1bb76e7391b93f125 81*ba677afaSXin Li comment: This file belongs to Jena 82*ba677afaSXin Li copyrightText: (c) Copyright 2000, 2001, 2002, 2003, 2004, 2005, 2006, 2007, 2008, 83*ba677afaSXin Li 2009 Hewlett-Packard Development Company, LP 84*ba677afaSXin Li fileContributors: 85*ba677afaSXin Li - Apache Software Foundation 86*ba677afaSXin Li - Hewlett Packard Inc. 87*ba677afaSXin Li fileName: ./lib-source/jena-2.6.3-sources.jar 88*ba677afaSXin Li fileTypes: 89*ba677afaSXin Li - ARCHIVE 90*ba677afaSXin Li licenseComments: This license is used by Jena 91*ba677afaSXin Li licenseConcluded: LicenseRef-1 92*ba677afaSXin Li licenseInfoInFiles: 93*ba677afaSXin Li - LicenseRef-1 94*ba677afaSXin Li- SPDXID: SPDXRef-File 95*ba677afaSXin Li annotations: 96*ba677afaSXin Li - annotationDate: "2011-01-29T18:30:22Z" 97*ba677afaSXin Li annotationType: OTHER 98*ba677afaSXin Li annotator: 'Person: File Commenter' 99*ba677afaSXin Li comment: File level annotation 100*ba677afaSXin Li checksums: 101*ba677afaSXin Li - algorithm: SHA1 102*ba677afaSXin Li checksumValue: d6a770ba38583ed4bb4525bd96e50461655d2758 103*ba677afaSXin Li - algorithm: MD5 104*ba677afaSXin Li checksumValue: 624c1abb3664f4b35547e7c73864ad24 105*ba677afaSXin Li comment: |- 106*ba677afaSXin Li The concluded license was taken from the package level that the file was included in. 107*ba677afaSXin Li This information was found in the COPYING.txt file in the xyz directory. 108*ba677afaSXin Li copyrightText: Copyright 2008-2010 John Smith 109*ba677afaSXin Li fileContributors: 110*ba677afaSXin Li - The Regents of the University of California 111*ba677afaSXin Li - Modified by Paul Mundt [email protected] 112*ba677afaSXin Li - IBM Corporation 113*ba677afaSXin Li fileName: ./package/foo.c 114*ba677afaSXin Li fileTypes: 115*ba677afaSXin Li - SOURCE 116*ba677afaSXin Li licenseComments: The concluded license was taken from the package level that the 117*ba677afaSXin Li file was included in. 118*ba677afaSXin Li licenseConcluded: (LGPL-2.0-only OR LicenseRef-2) 119*ba677afaSXin Li licenseInfoInFiles: 120*ba677afaSXin Li - GPL-2.0-only 121*ba677afaSXin Li - LicenseRef-2 122*ba677afaSXin Li noticeText: "Copyright (c) 2001 Aaron Lehmann [email protected]\n\nPermission is 123*ba677afaSXin Li hereby granted, free of charge, to any person obtaining a copy of this software 124*ba677afaSXin Li and associated documentation files (the �Software�), to deal in the Software without 125*ba677afaSXin Li restriction, including without limitation the rights to use, copy, modify, merge, 126*ba677afaSXin Li publish, distribute, sublicense, and/or sell copies of the Software, and to permit 127*ba677afaSXin Li persons to whom the Software is furnished to do so, subject to the following conditions: 128*ba677afaSXin Li \nThe above copyright notice and this permission notice shall be included in all 129*ba677afaSXin Li copies or substantial portions of the Software.\n\nTHE SOFTWARE IS PROVIDED �AS 130*ba677afaSXin Li IS', WITHOUT WARRANTY OF ANY KIND, EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED 131*ba677afaSXin Li TO THE WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. 132*ba677afaSXin Li \ IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, 133*ba677afaSXin Li DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, 134*ba677afaSXin Li ARISING FROM, OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS 135*ba677afaSXin Li IN THE SOFTWARE." 136*ba677afaSXin LihasExtractedLicensingInfos: 137*ba677afaSXin Li- extractedText: |- 138*ba677afaSXin Li /* 139*ba677afaSXin Li * (c) Copyright 2000, 2001, 2002, 2003, 2004, 2005, 2006, 2007, 2008, 2009 Hewlett-Packard Development Company, LP 140*ba677afaSXin Li * All rights reserved. 141*ba677afaSXin Li * 142*ba677afaSXin Li * Redistribution and use in source and binary forms, with or without 143*ba677afaSXin Li * modification, are permitted provided that the following conditions 144*ba677afaSXin Li * are met: 145*ba677afaSXin Li * 1. Redistributions of source code must retain the above copyright 146*ba677afaSXin Li * notice, this list of conditions and the following disclaimer. 147*ba677afaSXin Li * 2. Redistributions in binary form must reproduce the above copyright 148*ba677afaSXin Li * notice, this list of conditions and the following disclaimer in the 149*ba677afaSXin Li * documentation and/or other materials provided with the distribution. 150*ba677afaSXin Li * 3. The name of the author may not be used to endorse or promote products 151*ba677afaSXin Li * derived from this software without specific prior written permission. 152*ba677afaSXin Li * 153*ba677afaSXin Li * THIS SOFTWARE IS PROVIDED BY THE AUTHOR ``AS IS'' AND ANY EXPRESS OR 154*ba677afaSXin Li * IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES 155*ba677afaSXin Li * OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. 156*ba677afaSXin Li * IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR ANY DIRECT, INDIRECT, 157*ba677afaSXin Li * INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT 158*ba677afaSXin Li * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, 159*ba677afaSXin Li * DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY 160*ba677afaSXin Li * THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT 161*ba677afaSXin Li * (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF 162*ba677afaSXin Li * THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. 163*ba677afaSXin Li */ 164*ba677afaSXin Li licenseId: LicenseRef-1 165*ba677afaSXin Li- extractedText: "This package includes the GRDDL parser developed by Hewlett Packard 166*ba677afaSXin Li under the following license:\n� Copyright 2007 Hewlett-Packard Development Company, 167*ba677afaSXin Li LP\n\nRedistribution and use in source and binary forms, with or without modification, 168*ba677afaSXin Li are permitted provided that the following conditions are met: \n\nRedistributions 169*ba677afaSXin Li of source code must retain the above copyright notice, this list of conditions 170*ba677afaSXin Li and the following disclaimer. \nRedistributions in binary form must reproduce 171*ba677afaSXin Li the above copyright notice, this list of conditions and the following disclaimer 172*ba677afaSXin Li in the documentation and/or other materials provided with the distribution. \nThe 173*ba677afaSXin Li name of the author may not be used to endorse or promote products derived from 174*ba677afaSXin Li this software without specific prior written permission. \nTHIS SOFTWARE IS PROVIDED 175*ba677afaSXin Li BY THE AUTHOR ``AS IS'' AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT 176*ba677afaSXin Li NOT LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR 177*ba677afaSXin Li PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR ANY DIRECT, 178*ba677afaSXin Li INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, 179*ba677afaSXin Li BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, 180*ba677afaSXin Li DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF 181*ba677afaSXin Li LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE 182*ba677afaSXin Li OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED 183*ba677afaSXin Li OF THE POSSIBILITY OF SUCH DAMAGE." 184*ba677afaSXin Li licenseId: LicenseRef-2 185*ba677afaSXin Li- extractedText: |- 186*ba677afaSXin Li /* 187*ba677afaSXin Li * (c) Copyright 2009 University of Bristol 188*ba677afaSXin Li * All rights reserved. 189*ba677afaSXin Li * 190*ba677afaSXin Li * Redistribution and use in source and binary forms, with or without 191*ba677afaSXin Li * modification, are permitted provided that the following conditions 192*ba677afaSXin Li * are met: 193*ba677afaSXin Li * 1. Redistributions of source code must retain the above copyright 194*ba677afaSXin Li * notice, this list of conditions and the following disclaimer. 195*ba677afaSXin Li * 2. Redistributions in binary form must reproduce the above copyright 196*ba677afaSXin Li * notice, this list of conditions and the following disclaimer in the 197*ba677afaSXin Li * documentation and/or other materials provided with the distribution. 198*ba677afaSXin Li * 3. The name of the author may not be used to endorse or promote products 199*ba677afaSXin Li * derived from this software without specific prior written permission. 200*ba677afaSXin Li * 201*ba677afaSXin Li * THIS SOFTWARE IS PROVIDED BY THE AUTHOR ``AS IS'' AND ANY EXPRESS OR 202*ba677afaSXin Li * IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES 203*ba677afaSXin Li * OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. 204*ba677afaSXin Li * IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR ANY DIRECT, INDIRECT, 205*ba677afaSXin Li * INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT 206*ba677afaSXin Li * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, 207*ba677afaSXin Li * DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY 208*ba677afaSXin Li * THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT 209*ba677afaSXin Li * (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF 210*ba677afaSXin Li * THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. 211*ba677afaSXin Li */ 212*ba677afaSXin Li licenseId: LicenseRef-4 213*ba677afaSXin Li- comment: The beerware license has a couple of other standard variants. 214*ba677afaSXin Li extractedText: |- 215*ba677afaSXin Li "THE BEER-WARE LICENSE" (Revision 42): 216*ba677afaSXin Li phk@FreeBSD.ORG wrote this file. As long as you retain this notice you 217*ba677afaSXin Li can do whatever you want with this stuff. If we meet some day, and you think this stuff is worth it, you can buy me a beer in return Poul-Henning Kamp 218*ba677afaSXin Li licenseId: LicenseRef-Beerware-4.2 219*ba677afaSXin Li name: Beer-Ware License (Version 42) 220*ba677afaSXin Li seeAlsos: 221*ba677afaSXin Li - http://people.freebsd.org/~phk/ 222*ba677afaSXin Li- comment: This is tye CyperNeko License 223*ba677afaSXin Li extractedText: "The CyberNeko Software License, Version 1.0\n\n \n(C) Copyright 224*ba677afaSXin Li 2002-2005, Andy Clark. All rights reserved.\n \nRedistribution and use in source 225*ba677afaSXin Li and binary forms, with or without\nmodification, are permitted provided that the 226*ba677afaSXin Li following conditions\nare met:\n\n1. Redistributions of source code must retain 227*ba677afaSXin Li the above copyright\n notice, this list of conditions and the following disclaimer. 228*ba677afaSXin Li \n\n2. Redistributions in binary form must reproduce the above copyright\n notice, 229*ba677afaSXin Li this list of conditions and the following disclaimer in\n the documentation 230*ba677afaSXin Li and/or other materials provided with the\n distribution.\n\n3. The end-user 231*ba677afaSXin Li documentation included with the redistribution,\n if any, must include the following 232*ba677afaSXin Li acknowledgment: \n \"This product includes software developed by Andy Clark.\"\n 233*ba677afaSXin Li \ Alternately, this acknowledgment may appear in the software itself,\n if 234*ba677afaSXin Li and wherever such third-party acknowledgments normally appear.\n\n4. The names 235*ba677afaSXin Li \"CyberNeko\" and \"NekoHTML\" must not be used to endorse\n or promote products 236*ba677afaSXin Li derived from this software without prior \n written permission. For written 237*ba677afaSXin Li permission, please contact \n [email protected].\n\n5. Products derived from 238*ba677afaSXin Li this software may not be called \"CyberNeko\",\n nor may \"CyberNeko\" appear 239*ba677afaSXin Li in their name, without prior written\n permission of the author.\n\nTHIS SOFTWARE 240*ba677afaSXin Li IS PROVIDED ``AS IS'' AND ANY EXPRESSED OR IMPLIED\nWARRANTIES, INCLUDING, BUT 241*ba677afaSXin Li NOT LIMITED TO, THE IMPLIED WARRANTIES\nOF MERCHANTABILITY AND FITNESS FOR A PARTICULAR 242*ba677afaSXin Li PURPOSE ARE\nDISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR OTHER CONTRIBUTORS\nBE 243*ba677afaSXin Li LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, \nOR CONSEQUENTIAL 244*ba677afaSXin Li DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT \nOF SUBSTITUTE GOODS OR SERVICES; 245*ba677afaSXin Li LOSS OF USE, DATA, OR PROFITS; OR \nBUSINESS INTERRUPTION) HOWEVER CAUSED AND 246*ba677afaSXin Li ON ANY THEORY OF LIABILITY, \nWHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING 247*ba677afaSXin Li NEGLIGENCE \nOR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, 248*ba677afaSXin Li \nEVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE." 249*ba677afaSXin Li licenseId: LicenseRef-3 250*ba677afaSXin Li name: CyberNeko License 251*ba677afaSXin Li seeAlsos: 252*ba677afaSXin Li - http://people.apache.org/~andyc/neko/LICENSE 253*ba677afaSXin Li - http://justasample.url.com 254*ba677afaSXin Liname: SPDX-Tools-v2.0 255*ba677afaSXin Lipackages: 256*ba677afaSXin Li- SPDXID: SPDXRef-Package 257*ba677afaSXin Li annotations: 258*ba677afaSXin Li - annotationDate: "2011-01-29T18:30:22Z" 259*ba677afaSXin Li annotationType: OTHER 260*ba677afaSXin Li annotator: 'Person: Package Commenter' 261*ba677afaSXin Li comment: Package level annotation 262*ba677afaSXin Li attributionTexts: 263*ba677afaSXin Li - The GNU C Library is free software. See the file COPYING.LIB for copying conditions, 264*ba677afaSXin Li and LICENSES for notices about a few contributions that require these additional 265*ba677afaSXin Li notices to be distributed. License copyright years may be listed using range 266*ba677afaSXin Li notation, e.g., 1996-2015, indicating that every year in the range, inclusive, 267*ba677afaSXin Li is a copyrightable year that would otherwise be listed individually. 268*ba677afaSXin Li checksums: 269*ba677afaSXin Li - algorithm: MD5 270*ba677afaSXin Li checksumValue: 624c1abb3664f4b35547e7c73864ad24 271*ba677afaSXin Li - algorithm: SHA1 272*ba677afaSXin Li checksumValue: 85ed0817af83a24ad8da68c2b5094de69833983c 273*ba677afaSXin Li - algorithm: SHA256 274*ba677afaSXin Li checksumValue: 11b6d3ee554eedf79299905a98f9b9a04e498210b59f15094c916c91d150efcd 275*ba677afaSXin Li copyrightText: Copyright 2008-2010 John Smith 276*ba677afaSXin Li description: The GNU C Library defines functions that are specified by the ISO C 277*ba677afaSXin Li standard, as well as additional features specific to POSIX and other derivatives 278*ba677afaSXin Li of the Unix operating system, and extensions specific to GNU systems. 279*ba677afaSXin Li downloadLocation: http://ftp.gnu.org/gnu/glibc/glibc-ports-2.15.tar.gz 280*ba677afaSXin Li externalRefs: 281*ba677afaSXin Li - comment: "" 282*ba677afaSXin Li referenceCategory: SECURITY 283*ba677afaSXin Li referenceLocator: cpe:2.3:a:pivotal_software:spring_framework:4.1.0:*:*:*:*:*:*:* 284*ba677afaSXin Li referenceType: cpe23Type 285*ba677afaSXin Li - comment: This is the external ref for Acme 286*ba677afaSXin Li referenceCategory: OTHER 287*ba677afaSXin Li referenceLocator: acmecorp/acmenator/4.1.3-alpha 288*ba677afaSXin Li referenceType: http://spdx.org/spdxdocs/spdx-example-444504E0-4F89-41D3-9A0C-0305E82C3301#LocationRef-acmeforge 289*ba677afaSXin Li filesAnalyzed: true 290*ba677afaSXin Li homepage: http://ftp.gnu.org/gnu/glibc 291*ba677afaSXin Li licenseComments: The license for this project changed with the release of version 292*ba677afaSXin Li x.y. The version of the project included here post-dates the license change. 293*ba677afaSXin Li licenseConcluded: (LGPL-2.0-only OR LicenseRef-3) 294*ba677afaSXin Li licenseDeclared: (LGPL-2.0-only AND LicenseRef-3) 295*ba677afaSXin Li licenseInfoFromFiles: 296*ba677afaSXin Li - GPL-2.0-only 297*ba677afaSXin Li - LicenseRef-2 298*ba677afaSXin Li - LicenseRef-1 299*ba677afaSXin Li name: glibc 300*ba677afaSXin Li originator: 'Organization: ExampleCodeInspect ([email protected])' 301*ba677afaSXin Li packageFileName: glibc-2.11.1.tar.gz 302*ba677afaSXin Li packageVerificationCode: 303*ba677afaSXin Li packageVerificationCodeExcludedFiles: 304*ba677afaSXin Li - ./package.spdx 305*ba677afaSXin Li packageVerificationCodeValue: d6a770ba38583ed4bb4525bd96e50461655d2758 306*ba677afaSXin Li sourceInfo: uses glibc-2_11-branch from git://sourceware.org/git/glibc.git. 307*ba677afaSXin Li summary: GNU C library. 308*ba677afaSXin Li supplier: 'Person: Jane Doe ([email protected])' 309*ba677afaSXin Li versionInfo: 2.11.1 310*ba677afaSXin Li- SPDXID: SPDXRef-fromDoap-1 311*ba677afaSXin Li copyrightText: NOASSERTION 312*ba677afaSXin Li downloadLocation: NOASSERTION 313*ba677afaSXin Li homepage: http://commons.apache.org/proper/commons-lang/ 314*ba677afaSXin Li licenseConcluded: NOASSERTION 315*ba677afaSXin Li licenseDeclared: NOASSERTION 316*ba677afaSXin Li name: Apache Commons Lang 317*ba677afaSXin Li- SPDXID: SPDXRef-fromDoap-0 318*ba677afaSXin Li copyrightText: NOASSERTION 319*ba677afaSXin Li downloadLocation: https://search.maven.org/remotecontent?filepath=org/apache/jena/apache-jena/3.12.0/apache-jena-3.12.0.tar.gz 320*ba677afaSXin Li externalRefs: 321*ba677afaSXin Li - comment: "" 322*ba677afaSXin Li referenceCategory: PACKAGE_MANAGER 323*ba677afaSXin Li referenceLocator: pkg:maven/org.apache.jena/apache-jena@3.12.0 324*ba677afaSXin Li referenceType: purl 325*ba677afaSXin Li homepage: http://www.openjena.org/ 326*ba677afaSXin Li licenseConcluded: NOASSERTION 327*ba677afaSXin Li licenseDeclared: NOASSERTION 328*ba677afaSXin Li name: Jena 329*ba677afaSXin Li versionInfo: 3.12.0 330*ba677afaSXin Li- SPDXID: SPDXRef-Saxon 331*ba677afaSXin Li checksums: 332*ba677afaSXin Li - algorithm: SHA1 333*ba677afaSXin Li checksumValue: 85ed0817af83a24ad8da68c2b5094de69833983c 334*ba677afaSXin Li copyrightText: Copyright Saxonica Ltd 335*ba677afaSXin Li description: The Saxon package is a collection of tools for processing XML documents. 336*ba677afaSXin Li downloadLocation: https://sourceforge.net/projects/saxon/files/Saxon-B/8.8.0.7/saxonb8-8-0-7j.zip/download 337*ba677afaSXin Li homepage: http://saxon.sourceforge.net/ 338*ba677afaSXin Li licenseComments: Other versions available for a commercial license 339*ba677afaSXin Li licenseConcluded: MPL-1.0 340*ba677afaSXin Li licenseDeclared: MPL-1.0 341*ba677afaSXin Li name: Saxon 342*ba677afaSXin Li packageFileName: saxonB-8.8.zip 343*ba677afaSXin Li versionInfo: "8.8" 344*ba677afaSXin Li- SPDXID: SPDXRef-CentOS-7 345*ba677afaSXin Li builtDate: "2021-09-15T02:38:00Z" 346*ba677afaSXin Li copyrightText: NOASSERTION 347*ba677afaSXin Li description: The CentOS container used to run the application. 348*ba677afaSXin Li downloadLocation: NOASSERTION 349*ba677afaSXin Li homepage: https://www.centos.org/ 350*ba677afaSXin Li name: centos 351*ba677afaSXin Li packageFileName: saxonB-8.8.zip 352*ba677afaSXin Li primaryPackagePurpose: CONTAINER 353*ba677afaSXin Li releaseDate: "2021-10-15T02:38:00Z" 354*ba677afaSXin Li validUntilDate: "2022-10-15T02:38:00Z" 355*ba677afaSXin Li versionInfo: centos7.9.2009 356*ba677afaSXin Lirelationships: 357*ba677afaSXin Li- comment: A relationship comment 358*ba677afaSXin Li relatedSpdxElement: SPDXRef-Package 359*ba677afaSXin Li relationshipType: CONTAINS 360*ba677afaSXin Li spdxElementId: SPDXRef-DOCUMENT 361*ba677afaSXin Li- relatedSpdxElement: DocumentRef-spdx-tool-1.2:SPDXRef-ToolsElement 362*ba677afaSXin Li relationshipType: COPY_OF 363*ba677afaSXin Li spdxElementId: SPDXRef-DOCUMENT 364*ba677afaSXin Li- relatedSpdxElement: SPDXRef-File 365*ba677afaSXin Li relationshipType: DESCRIBES 366*ba677afaSXin Li spdxElementId: SPDXRef-DOCUMENT 367*ba677afaSXin Li- relatedSpdxElement: SPDXRef-Package 368*ba677afaSXin Li relationshipType: DESCRIBES 369*ba677afaSXin Li spdxElementId: SPDXRef-DOCUMENT 370*ba677afaSXin Li- relatedSpdxElement: SPDXRef-JenaLib 371*ba677afaSXin Li relationshipType: CONTAINS 372*ba677afaSXin Li spdxElementId: SPDXRef-Package 373*ba677afaSXin Li- relatedSpdxElement: SPDXRef-Saxon 374*ba677afaSXin Li relationshipType: DYNAMIC_LINK 375*ba677afaSXin Li spdxElementId: SPDXRef-Package 376*ba677afaSXin Li- relatedSpdxElement: NOASSERTION 377*ba677afaSXin Li relationshipType: GENERATED_FROM 378*ba677afaSXin Li spdxElementId: SPDXRef-CommonsLangSrc 379*ba677afaSXin Li- relatedSpdxElement: SPDXRef-Package 380*ba677afaSXin Li relationshipType: CONTAINS 381*ba677afaSXin Li spdxElementId: SPDXRef-JenaLib 382*ba677afaSXin Li- relatedSpdxElement: SPDXRef-fromDoap-0 383*ba677afaSXin Li relationshipType: GENERATED_FROM 384*ba677afaSXin Li spdxElementId: SPDXRef-File 385*ba677afaSXin Lisnippets: 386*ba677afaSXin Li- SPDXID: SPDXRef-Snippet 387*ba677afaSXin Li comment: This snippet was identified as significant and highlighted in this Apache-2.0 388*ba677afaSXin Li file, when a commercial scanner identified it as being derived from file foo.c 389*ba677afaSXin Li in package xyz which is licensed under GPL-2.0. 390*ba677afaSXin Li copyrightText: Copyright 2008-2010 John Smith 391*ba677afaSXin Li licenseComments: The concluded license was taken from package xyz, from which the 392*ba677afaSXin Li snippet was copied into the current file. The concluded license information was 393*ba677afaSXin Li found in the COPYING.txt file in package xyz. 394*ba677afaSXin Li licenseConcluded: GPL-2.0-only 395*ba677afaSXin Li licenseInfoInSnippets: 396*ba677afaSXin Li - GPL-2.0-only 397*ba677afaSXin Li name: from linux kernel 398*ba677afaSXin Li ranges: 399*ba677afaSXin Li - endPointer: 400*ba677afaSXin Li offset: 420 401*ba677afaSXin Li reference: SPDXRef-DoapSource 402*ba677afaSXin Li startPointer: 403*ba677afaSXin Li offset: 310 404*ba677afaSXin Li reference: SPDXRef-DoapSource 405*ba677afaSXin Li - endPointer: 406*ba677afaSXin Li lineNumber: 23 407*ba677afaSXin Li reference: SPDXRef-DoapSource 408*ba677afaSXin Li startPointer: 409*ba677afaSXin Li lineNumber: 5 410*ba677afaSXin Li reference: SPDXRef-DoapSource 411*ba677afaSXin Li snippetFromFile: SPDXRef-DoapSource 412*ba677afaSXin LispdxVersion: SPDX-2.2 413