#swhid — Public Fediverse posts on home.social

"In this article, I present real-world use cases showing how SWHID can improve SBOMs, support regulatory compliance such as the Cyber Resilience Act, and enable traceability, across different industries."

Last blog post of the #swhid series: https://toscalix.com/2026/04/07/swhid-in-practice-sbom-verification-cra-compliance-and-traceability-use-cases/

#compliance #softwareidentifier #provenance #traceability #cra #sbom

#swhid #compliance #softwareidentifier #provenance #traceability #cra

toscalix @[email protected] · 2026-03-26 · 10:47 UTC

Today at 23:00 UTC I will be speaking about #swhid in automotive use cases to the #openchain #automotive group. Check https://openchain-project.github.io/Automotive-Open-Source-Governance-Monthly/

#provenance #traceability #integrity #compliance #safety

#swhid #openchain #automotive #provenance #traceability #integrity

toscalix @[email protected] · 2026-03-17 · 22:45 UTC

[...] "I just explained the syntax of SWHID, describing how their core identifier and optional qualifiers combine to uniquely reference software artifacts, as well as specific fragments within them. "

https://toscalix.com/2026/03/17/description-of-swhid-syntax/

#swhid #swidentifier #provenance #traceability #integrity #compliance

toscalix @[email protected] · 2026-03-17 · 07:00 UTC

This article explains the syntax of #swhid describing how the core identifier and optional qualifiers are structured. It shows how SWHIDs can reference software artifacts such as files, directories, revisions, and releases, and how their design enables precise comparison of software.

http://toscalix.com/2026/03/17/description-of-swhid-syntax/

#provenance #traceability @swheritage #swidentifier

#swhid #provenance #traceability #swidentifier

toscalix @[email protected] · 2026-02-27 · 13:44 UTC

This coming Monday Mar 2nd at 17: 00 CET I will be speaking online about Software Hash Identifier, at the CRA Mondays sessions, organised by the @orcwg at the @EclipseFdn

I will describe the relevance of intrinsic identifiers, describe #swhid, provide some use cases and discuss with the audience the relevance of identifiers such SWHID in the context of the Cyber Resilience Act.

Join: https://github.com/orcwg/orcwg/blob/main/events/cra-mondays/README.md#march-2-software-hash-identifier-introduction-and-applications-to-in-development-standards

#intrinsicidentifier #provenance #compliance #cra #sbom @swheritage

#swhid #intrinsicidentifier #provenance #compliance #cra #sbom

Simon Tournier @[email protected] · 2026-02-10 · 14:50 UTC

« there are the systemic drivers:

• FAIR data mandates from funders
• Open-lab notebook movements
• Persistent Identifier (PID) expansion into every layer of research
• Preprint-to-publication workflows that treat research as a continuum

All of these point toward a future where the “unit of science” is no longer a PDF but a rich, evolving digital object grounded in data, workflows, and provenance. »

🧐 Guess what?

‣ #Guix and #Nix are designed around Persistent IDentifier (PID) for dealing with reproducible computational environments.

‣ Software Hash IDentifier (#SWHID) proposed by #SoftwareHeritage folk provides a Persistent IDentifier (PID) for source code.

https://scholarlykitchen.sspnet.org/2026/02/05/back-to-the-article-of-the-future-an-interview-with-sami-benchekroun-and-rod-cookson/
#ReproducibleResearch #OpenScience
2/3