4.1 Component

A discrete unit of software or hardware that can be independently identified, versioned, and tracked through its lifecycle.

4.2 Lifecycle Event

A significant occurrence in the existence of a component, such as release, end of support, or renaming.

4.3 PURL

Package-URL - a standardized format for identifying software packages across diverse ecosystems.

4.4 Types of Work

The following types of work are commonly associated with software projects regardless of whether they are open source or not:

• Marketing: Promoting and advertising a software project to potential users.
• Substantial Modifications: Making substantial changes to a software project that are not considered bug fixes or security fixes, such as adding new features or functionality.
• Bug Fixes: Addressing and resolving issues or defects in a software project.
• Security Fixes: A distinct type of bug fix focused on security vulnerabilities that is useful to differentiate from other types of bug fixes.
• Distribution: The process of making a software project available for use by others.
• Documentation: Writing and updating documentation for a software project to help users understand how to use it.