This article explains the syntax of SWHIDs, describing how the core identifier and optional qualifiers are structured. It shows how SWHIDs can reference software artifacts such as files, directories, revisions, and releases, and how their design enables precise comparison of software
What is the best way to identify software? Introducing SWHID
Modern software is assembled from hundreds of components that organizations often did not write and do not fully control. Identifying those components reliably is becoming a legal requirement. This article introduces SWHID, an open standard for identifying software artifacts.
SPDX Cryptographic Algorithm List: February 2026 Update
The SPDX Cryptographic Algorithm List now includes 120+ algorithms and 7 properties. The community is growing, the roadmap is clear, and the list is moving toward the SPDX website. Here is the February 2026 update.
AGL’s Business Intelligence Journey – Understanding Activity
Measuring activity is not about producing more metrics. It is about supporting better decisions and enabling continuous improvement. We restricted our analysis to main/master to observe validated flow and kept visualizations simple to promote adoption across the community.
Returning Home and Evolving As Consultant in 2026
In 2026, Agustin relocates to La Palma while evolving his independent consulting practice. He aims to specialize services, explore freelancer collaborations, and adapt to AI, while remaining active in the thriving global open-source community.
Community Analysis: AGL BI Journey
This article focuses on the community analysis of the Automotive Grade Linux Business Intelligence study. It explains which data was analyzed, why individuals were excluded, and how understanding teams and organizations helps correctly interpret metrics from complex software production systems.
Automotive Grade Linux Business Intelligence Journey: Introduction
This study applies business intelligence to Automotive Grade Linux, offering a data-driven view of its software production system. By analyzing activity, code review, and delivery performance, it shows how descriptive analytics can guide improvement in complex open source ecosystems.
There Is No “Commercial” Open Source – Only Open Source
Open source already includes commercial use by definition. The label “commercial open source” mixes copyright, licenses and business models, creates confusion, and helps disguise non‑open‑source licenses. If you care about the open source commons, avoid the term and always check the facts.
Choosing AnyType: A Platform for Scalable, Secure Governance
STF needed a scalable, secure, and asynchronous collaboration system for representatives across multiple time zones. This article explains why AnyType was selected, how it is used today, and which features and challenges matter most as the Software Transparency Foundation.
Thank you SCANOSS. Hello STF.
After two years helping SCANOSS strengthen its open source and open data strategy, my focus now shifts fully to the Software Transparency Foundation. I’m grateful for SCANOSS’s trust and support, and I look forward to continuing our collaboration through STF.
toscalix 