We should provide //licenses/spdx:* for all of the SPDX identifiers.
That will allow package authors to more precisely declare what license the package is under.
In the future we could add tooling to generate SPDX file from a license() rule, but there are few consumers for that now. We can create an issue for that in the future if we want.