|
2 | 2 | "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", |
3 | 3 | "bomFormat": "CycloneDX", |
4 | 4 | "specVersion": "1.6", |
5 | | - "serialNumber": "urn:uuid:8e5a9ac8-16d3-4348-933c-350d7f690edb", |
| 5 | + "serialNumber": "urn:uuid:e5fa14c3-4381-4ce6-92e5-41b46dcbed90", |
6 | 6 | "version": 1, |
7 | 7 | "metadata": { |
8 | | - "timestamp": "2025-08-04T00:53:06Z", |
| 8 | + "timestamp": "2025-08-11T00:45:01Z", |
9 | 9 | "lifecycles": [ |
10 | 10 | { |
11 | 11 | "phase": "build" |
|
1086 | 1086 | "type": "library", |
1087 | 1087 | "bom-ref": "15-cvss", |
1088 | 1088 | "name": "cvss", |
1089 | | - "version": "3.4", |
| 1089 | + "version": "3.6", |
1090 | 1090 | "supplier": { |
1091 | 1091 | "name": "Stanislav Red Hat Product Security", |
1092 | 1092 | "contact": [ |
|
1095 | 1095 | } |
1096 | 1096 | ] |
1097 | 1097 | }, |
1098 | | - "cpe": "cpe:2.3:a:stanislav_red_hat_product_security:cvss:3.4:*:*:*:*:*:*:*", |
| 1098 | + "cpe": "cpe:2.3:a:stanislav_red_hat_product_security:cvss:3.6:*:*:*:*:*:*:*", |
1099 | 1099 | "description": "CVSS2/3/4 library with interactive calculator for Python 2 and Python 3", |
1100 | 1100 | "hashes": [ |
1101 | 1101 | { |
1102 | 1102 | "alg": "SHA-256", |
1103 | | - "content": "d9950613758e60820f7fac37ca5f35158712f8f2ea4f6629858a60c4984fe4ef" |
| 1103 | + "content": "e342c6ad9c7eb69d2aebbbc2768a03cabd57eb947c806e145de5b936219833ea" |
1104 | 1104 | } |
1105 | 1105 | ], |
1106 | 1106 | "licenses": [ |
|
1119 | 1119 | "comment": "Home page for project" |
1120 | 1120 | }, |
1121 | 1121 | { |
1122 | | - "url": "https://pypi.org/project/cvss/3.4/#files", |
| 1122 | + "url": "https://pypi.org/project/cvss/3.6/#files", |
1123 | 1123 | "type": "distribution", |
1124 | 1124 | "comment": "Download location for component" |
1125 | 1125 | }, |
|
1140 | 1140 | "type": "build-system" |
1141 | 1141 | } |
1142 | 1142 | ], |
1143 | | - "purl": "pkg:pypi/cvss@3.4", |
| 1143 | + "purl": "pkg:pypi/cvss@3.6", |
1144 | 1144 | "properties": [ |
1145 | 1145 | { |
1146 | 1146 | "name": "release_date", |
1147 | | - "value": "2025-02-11T17:28:21Z" |
| 1147 | + "value": "2025-08-04T10:50:12Z" |
1148 | 1148 | }, |
1149 | 1149 | { |
1150 | 1150 | "name": "language", |
|
3274 | 3274 | "type": "library", |
3275 | 3275 | "bom-ref": "49-rpds-py", |
3276 | 3276 | "name": "rpds-py", |
3277 | | - "version": "0.26.0", |
| 3277 | + "version": "0.27.0", |
3278 | 3278 | "supplier": { |
3279 | 3279 | "name": "Julian Berman", |
3280 | 3280 | "contact": [ |
|
3283 | 3283 | } |
3284 | 3284 | ] |
3285 | 3285 | }, |
3286 | | - "cpe": "cpe:2.3:a:julian_berman:rpds-py:0.26.0:*:*:*:*:*:*:*", |
| 3286 | + "cpe": "cpe:2.3:a:julian_berman:rpds-py:0.27.0:*:*:*:*:*:*:*", |
3287 | 3287 | "description": "Python bindings to Rust's persistent data structures (rpds)", |
3288 | 3288 | "hashes": [ |
3289 | 3289 | { |
3290 | 3290 | "alg": "SHA-256", |
3291 | | - "content": "4c70c70f9169692b36307a95f3d8c0a9fcd79f7b4a383aad5eaa0e9718b79b37" |
3292 | | - } |
3293 | | - ], |
3294 | | - "licenses": [ |
3295 | | - { |
3296 | | - "license": { |
3297 | | - "id": "MIT", |
3298 | | - "url": "https://opensource.org/license/mit/", |
3299 | | - "acknowledgement": "concluded" |
3300 | | - } |
| 3291 | + "content": "130c1ffa5039a333f5926b09e346ab335f0d4ec393b030a18549a7c7e7c2cea4" |
3301 | 3292 | } |
3302 | 3293 | ], |
3303 | 3294 | "externalReferences": [ |
|
3307 | 3298 | "comment": "Home page for project" |
3308 | 3299 | }, |
3309 | 3300 | { |
3310 | | - "url": "https://pypi.org/project/rpds-py/0.26.0/#files", |
| 3301 | + "url": "https://pypi.org/project/rpds-py/0.27.0/#files", |
3311 | 3302 | "type": "distribution", |
3312 | 3303 | "comment": "Download location for component" |
3313 | 3304 | }, |
|
3336 | 3327 | "type": "other" |
3337 | 3328 | } |
3338 | 3329 | ], |
3339 | | - "purl": "pkg:pypi/rpds-py@0.26.0", |
| 3330 | + "purl": "pkg:pypi/rpds-py@0.27.0", |
3340 | 3331 | "properties": [ |
3341 | 3332 | { |
3342 | 3333 | "name": "release_date", |
3343 | | - "value": "2025-07-01T15:53:40Z" |
| 3334 | + "value": "2025-08-07T08:23:06Z" |
3344 | 3335 | }, |
3345 | 3336 | { |
3346 | 3337 | "name": "language", |
|
3768 | 3759 | "type": "library", |
3769 | 3760 | "bom-ref": "57-packageurl-python", |
3770 | 3761 | "name": "packageurl-python", |
3771 | | - "version": "0.17.3", |
| 3762 | + "version": "0.17.5", |
3772 | 3763 | "supplier": { |
3773 | 3764 | "name": "the purl authors" |
3774 | 3765 | }, |
3775 | | - "cpe": "cpe:2.3:a:the_purl_authors:packageurl-python:0.17.3:*:*:*:*:*:*:*", |
| 3766 | + "cpe": "cpe:2.3:a:the_purl_authors:packageurl-python:0.17.5:*:*:*:*:*:*:*", |
3776 | 3767 | "description": "A purl aka. Package URL parser and builder", |
3777 | 3768 | "hashes": [ |
3778 | 3769 | { |
3779 | 3770 | "alg": "SHA-256", |
3780 | | - "content": "f51b5aab570159f07258c8e998e9972ff3bf060da16b7334a42bd9f9737777d9" |
| 3771 | + "content": "f0e55452ab37b5c192c443de1458e3f3b4d8ac27f747df6e8c48adeab081d321" |
3781 | 3772 | } |
3782 | 3773 | ], |
3783 | 3774 | "licenses": [ |
|
3796 | 3787 | "comment": "Home page for project" |
3797 | 3788 | }, |
3798 | 3789 | { |
3799 | | - "url": "https://pypi.org/project/packageurl-python/0.17.3/#files", |
| 3790 | + "url": "https://pypi.org/project/packageurl-python/0.17.5/#files", |
3800 | 3791 | "type": "distribution", |
3801 | 3792 | "comment": "Download location for component" |
3802 | 3793 | } |
3803 | 3794 | ], |
3804 | | - "purl": "pkg:pypi/[email protected].3", |
| 3795 | + "purl": "pkg:pypi/[email protected].5", |
3805 | 3796 | "properties": [ |
3806 | 3797 | { |
3807 | 3798 | "name": "release_date", |
3808 | | - "value": "2025-08-01T03:24:33Z" |
| 3799 | + "value": "2025-08-06T14:08:19Z" |
3809 | 3800 | }, |
3810 | 3801 | { |
3811 | 3802 | "name": "language", |
|
4286 | 4277 | "type": "library", |
4287 | 4278 | "bom-ref": "65-python-gnupg", |
4288 | 4279 | "name": "python-gnupg", |
4289 | | - "version": "0.5.4", |
| 4280 | + "version": "0.5.5", |
4290 | 4281 | "supplier": { |
4291 | 4282 | "name": "Vinay Sajip", |
4292 | 4283 | "contact": [ |
|
4295 | 4286 | } |
4296 | 4287 | ] |
4297 | 4288 | }, |
4298 | | - "cpe": "cpe:2.3:a:vinay_sajip:python-gnupg:0.5.4:*:*:*:*:*:*:*", |
| 4289 | + "cpe": "cpe:2.3:a:vinay_sajip:python-gnupg:0.5.5:*:*:*:*:*:*:*", |
4299 | 4290 | "description": "A wrapper for the Gnu Privacy Guard (GPG or GnuPG)", |
4300 | 4291 | "hashes": [ |
4301 | 4292 | { |
4302 | 4293 | "alg": "SHA-256", |
4303 | | - "content": "40ce25cde9df29af91fe931ce9df3ce544e14a37f62b13ca878c897217b2de6c" |
| 4294 | + "content": "51fa7b8831ff0914bc73d74c59b99c613de7247b91294323c39733bb85ac3fc1" |
4304 | 4295 | } |
4305 | 4296 | ], |
4306 | 4297 | "licenses": [ |
|
4319 | 4310 | "comment": "Home page for project" |
4320 | 4311 | }, |
4321 | 4312 | { |
4322 | | - "url": "https://pypi.org/project/python-gnupg/0.5.4/#files", |
| 4313 | + "url": "https://pypi.org/project/python-gnupg/0.5.5/#files", |
4323 | 4314 | "type": "distribution", |
4324 | 4315 | "comment": "Download location for component" |
4325 | 4316 | }, |
|
4336 | 4327 | "type": "issue-tracker" |
4337 | 4328 | } |
4338 | 4329 | ], |
4339 | | - "purl": "pkg:pypi/[email protected].4", |
| 4330 | + "purl": "pkg:pypi/[email protected].5", |
4340 | 4331 | "properties": [ |
4341 | 4332 | { |
4342 | 4333 | "name": "release_date", |
4343 | | - "value": "2025-01-07T11:58:32Z" |
| 4334 | + "value": "2025-08-04T19:26:54Z" |
4344 | 4335 | }, |
4345 | 4336 | { |
4346 | 4337 | "name": "language", |
|
4426 | 4417 | "type": "library", |
4427 | 4418 | "bom-ref": "67-charset-normalizer", |
4428 | 4419 | "name": "charset-normalizer", |
4429 | | - "version": "3.4.2", |
| 4420 | + "version": "3.4.3", |
4430 | 4421 | "supplier": { |
4431 | 4422 | "name": "Ahmed R .", |
4432 | 4423 | "contact": [ |
|
4435 | 4426 | } |
4436 | 4427 | ] |
4437 | 4428 | }, |
4438 | | - "cpe": "cpe:2.3:a:ahmed_r.:charset-normalizer:3.4.2:*:*:*:*:*:*:*", |
| 4429 | + "cpe": "cpe:2.3:a:ahmed_r.:charset-normalizer:3.4.3:*:*:*:*:*:*:*", |
4439 | 4430 | "description": "The Real First Universal Charset Detector. Open, modern and actively maintained alternative to Chardet.", |
4440 | 4431 | "hashes": [ |
4441 | 4432 | { |
4442 | 4433 | "alg": "SHA-256", |
4443 | | - "content": "7c48ed483eb946e6c04ccbe02c6b4d1d48e51944b6db70f697e089c193404941" |
| 4434 | + "content": "fb7f67a1bfa6e40b438170ebdc8158b78dc465a5a67b6dde178a46987b244a72" |
4444 | 4435 | } |
4445 | 4436 | ], |
4446 | 4437 | "licenses": [ |
|
4454 | 4445 | ], |
4455 | 4446 | "externalReferences": [ |
4456 | 4447 | { |
4457 | | - "url": "https://pypi.org/project/charset-normalizer/3.4.2/#files", |
| 4448 | + "url": "https://pypi.org/project/charset-normalizer/3.4.3/#files", |
4458 | 4449 | "type": "distribution", |
4459 | 4450 | "comment": "Download location for component" |
4460 | 4451 | }, |
|
4475 | 4466 | "type": "issue-tracker" |
4476 | 4467 | } |
4477 | 4468 | ], |
4478 | | - "purl": "pkg:pypi/[email protected].2", |
| 4469 | + "purl": "pkg:pypi/[email protected].3", |
4479 | 4470 | "properties": [ |
4480 | 4471 | { |
4481 | 4472 | "name": "release_date", |
4482 | | - "value": "2025-05-02T08:31:46Z" |
| 4473 | + "value": "2025-08-09T07:55:36Z" |
4483 | 4474 | }, |
4484 | 4475 | { |
4485 | 4476 | "name": "language", |
|
![github-actions[bot]](https://avatars.githubusercontent.com/in/15368?v=4&size=40){kind=avatar}
0 commit comments