chore: update SBOM for Python 3.9 (#3009)

Co-authored-by: GitHub <[email protected]>

Author: github-actions[bot]

sbom/cve-bin-tool-py3.9.json

@@ -2,10 +2,10 @@
   "$schema": "http://cyclonedx.org/schema/bom-1.4.schema.json",
   "bomFormat": "CycloneDX",
   "specVersion": "1.4",
-  "serialNumber": "urn:uuid89076f91-d72d-452b-a6c0-1b367b2973fa",
+  "serialNumber": "urn:uuid8a78e8d7-37c9-48d5-96b6-65fc3516dac3",
   "version": 1,
   "metadata": {
-    "timestamp": "2023-05-08T01:14:03Z",
+    "timestamp": "2023-05-15T00:35:44Z",
     "tools": [
       {
         "name": "sbom4python",
@@ -23,7 +23,7 @@
       "type": "application",
       "bom-ref": "1-cve-bin-tool",
       "name": "cve-bin-tool",
-      "version": "3.2.1.dev0",
+      "version": "3.2.1rc0",
       "supplier": {
         "name": "Terri Oda",
         "contact": [
@@ -32,7 +32,7 @@
           }
         ]
       },
-      "cpe": "cpe:2.3:a:terri_oda:cve-bin-tool:3.2.1.dev0:*:*:*:*:*:*:*",
+      "cpe": "cpe:2.3:a:terri_oda:cve-bin-tool:3.2.1rc0:*:*:*:*:*:*:*",
       "description": "CVE Binary Checker Tool",
       "licenses": [
         {
@@ -49,12 +49,12 @@
           "comment": "Home page for project"
         },
         {
-          "url": "https://pypi.org/project/cve-bin-tool/3.2.1.dev0",
+          "url": "https://pypi.org/project/cve-bin-tool/3.2.1rc0",
           "type": "distribution",
           "comment": "Download location for component"
         }
       ],
-      "purl": "pkg:pypi/[email protected].1.dev0"
+      "purl": "pkg:pypi/[email protected].1rc0"
     },
     {
       "type": "library",
@@ -1377,7 +1377,7 @@
       "type": "library",
       "bom-ref": "37-google-auth",
       "name": "google-auth",
-      "version": "2.17.3",
+      "version": "2.18.0",
       "supplier": {
         "name": "Google Cloud Platform",
         "contact": [
@@ -1386,7 +1386,7 @@
           }
         ]
       },
-      "cpe": "cpe:2.3:a:google_cloud_platform:google-auth:2.17.3:*:*:*:*:*:*:*",
+      "cpe": "cpe:2.3:a:google_cloud_platform:google-auth:2.18.0:*:*:*:*:*:*:*",
       "description": "Google Authentication Library",
       "licenses": [
         {
@@ -1403,12 +1403,12 @@
           "comment": "Home page for project"
         },
         {
-          "url": "https://pypi.org/project/google-auth/2.17.3",
+          "url": "https://pypi.org/project/google-auth/2.18.0",
           "type": "distribution",
           "comment": "Download location for component"
         }
       ],
-      "purl": "pkg:pypi/google-auth@2.17.3",
+      "purl": "pkg:pypi/google-auth@2.18.0",
       "properties": [
         {
           "name": "License Comments",
@@ -1455,7 +1455,44 @@
     },
     {
       "type": "library",
-      "bom-ref": "39-monotonic",
+      "bom-ref": "39-urllib3",
+      "name": "urllib3",
+      "version": "1.26.15",
+      "supplier": {
+        "name": "Andrey Petrov",
+        "contact": [
+          {
+            "email": "[email protected]"
+          }
+        ]
+      },
+      "cpe": "cpe:2.3:a:andrey_petrov:urllib3:1.26.15:*:*:*:*:*:*:*",
+      "description": "HTTP library with thread-safe connection pooling, file post, and more.",
+      "licenses": [
+        {
+          "license": {
+            "id": "MIT",
+            "url": "https://opensource.org/licenses/MIT"
+          }
+        }
+      ],
+      "externalReferences": [
+        {
+          "url": "https://urllib3.readthedocs.io/",
+          "type": "website",
+          "comment": "Home page for project"
+        },
+        {
+          "url": "https://pypi.org/project/urllib3/1.26.15",
+          "type": "distribution",
+          "comment": "Download location for component"
+        }
+      ],
+      "purl": "pkg:pypi/[email protected]"
+    },
+    {
+      "type": "library",
+      "bom-ref": "40-monotonic",
       "name": "monotonic",
       "version": "1.6",
       "supplier": {
@@ -1498,7 +1535,7 @@
     },
     {
       "type": "library",
-      "bom-ref": "40-importlib-metadata",
+      "bom-ref": "41-importlib-metadata",
       "name": "importlib-metadata",
       "version": "6.6.0",
       "supplier": {
@@ -1527,7 +1564,7 @@
     },
     {
       "type": "library",
-      "bom-ref": "41-zipp",
+      "bom-ref": "42-zipp",
       "name": "zipp",
       "version": "3.15.0",
       "supplier": {
@@ -1556,7 +1593,7 @@
     },
     {
       "type": "library",
-      "bom-ref": "42-jinja2",
+      "bom-ref": "43-jinja2",
       "name": "jinja2",
       "version": "3.1.2",
       "supplier": {
@@ -1593,7 +1630,7 @@
     },
     {
       "type": "library",
-      "bom-ref": "43-markupsafe",
+      "bom-ref": "44-markupsafe",
       "name": "markupsafe",
       "version": "2.1.2",
       "supplier": {
@@ -1630,7 +1667,7 @@
     },
     {
       "type": "library",
-      "bom-ref": "44-jsonschema",
+      "bom-ref": "45-jsonschema",
       "name": "jsonschema",
       "version": "4.17.3",
       "supplier": {
@@ -1657,7 +1694,7 @@
     },
     {
       "type": "library",
-      "bom-ref": "45-pyrsistent",
+      "bom-ref": "46-pyrsistent",
       "name": "pyrsistent",
       "version": "0.19.3",
       "supplier": {
@@ -1694,7 +1731,7 @@
     },
     {
       "type": "library",
-      "bom-ref": "46-lib4sbom",
+      "bom-ref": "47-lib4sbom",
       "name": "lib4sbom",
       "version": "0.3.1",
       "supplier": {
@@ -1731,7 +1768,7 @@
     },
     {
       "type": "library",
-      "bom-ref": "47-pyyaml",
+      "bom-ref": "48-pyyaml",
       "name": "pyyaml",
       "version": "6.0",
       "supplier": {
@@ -1768,7 +1805,7 @@
     },
     {
       "type": "library",
-      "bom-ref": "48-semantic-version",
+      "bom-ref": "49-semantic-version",
       "name": "semantic-version",
       "version": "2.10.0",
       "supplier": {
@@ -1811,7 +1848,7 @@
     },
     {
       "type": "library",
-      "bom-ref": "49-packaging",
+      "bom-ref": "50-packaging",
       "name": "packaging",
       "version": "21.3",
       "supplier": {
@@ -1853,7 +1890,7 @@
     },
     {
       "type": "library",
-      "bom-ref": "50-plotly",
+      "bom-ref": "51-plotly",
       "name": "plotly",
       "version": "5.14.1",
       "supplier": {
@@ -1890,7 +1927,7 @@
     },
     {
       "type": "library",
-      "bom-ref": "51-tenacity",
+      "bom-ref": "52-tenacity",
       "name": "tenacity",
       "version": "8.2.2",
       "supplier": {
@@ -1933,7 +1970,7 @@
     },
     {
       "type": "library",
-      "bom-ref": "52-requests",
+      "bom-ref": "53-requests",
       "name": "requests",
       "version": "2.30.0",
       "supplier": {
@@ -1976,7 +2013,7 @@
     },
     {
       "type": "library",
-      "bom-ref": "53-certifi",
+      "bom-ref": "54-certifi",
       "name": "certifi",
       "version": "2023.5.7",
       "supplier": {
@@ -2011,30 +2048,6 @@
       ],
       "purl": "pkg:pypi/[email protected]"
     },
-    {
-      "type": "library",
-      "bom-ref": "54-urllib3",
-      "name": "urllib3",
-      "version": "2.0.2",
-      "supplier": {
-        "name": "Andrey Petrov",
-        "contact": [
-          {
-            "email": "[email protected]"
-          }
-        ]
-      },
-      "cpe": "cpe:2.3:a:andrey_petrov:urllib3:2.0.2:*:*:*:*:*:*:*",
-      "description": "HTTP library with thread-safe connection pooling, file post, and more.",
-      "externalReferences": [
-        {
-          "url": "https://pypi.org/project/urllib3/2.0.2",
-          "type": "distribution",
-          "comment": "Download location for component"
-        }
-      ],
-      "purl": "pkg:pypi/[email protected]"
-    },
     {
       "type": "library",
       "bom-ref": "55-rich",
@@ -2360,18 +2373,18 @@
         "14-defusedxml",
         "15-distro",
         "16-gsutil",
-        "40-importlib-metadata",
-        "42-jinja2",
-        "44-jsonschema",
-        "46-lib4sbom",
-        "49-packaging",
-        "50-plotly",
-        "47-pyyaml",
-        "52-requests",
+        "41-importlib-metadata",
+        "43-jinja2",
+        "45-jsonschema",
+        "47-lib4sbom",
+        "50-packaging",
+        "51-plotly",
+        "48-pyyaml",
+        "53-requests",
         "55-rich",
         "59-rpmfile",
         "60-toml",
-        "54-urllib3",
+        "39-urllib3",
         "61-xmlschema",
         "63-zstandard"
       ]
@@ -2418,7 +2431,7 @@
         "37-google-auth",
         "22-google-reauth",
         "25-httplib2",
-        "39-monotonic",
+        "40-monotonic",
         "31-pyopenssl",
         "35-retry-decorator",
         "24-six"
@@ -2510,55 +2523,56 @@
         "38-cachetools",
         "29-pyasn1-modules",
         "30-rsa",
-        "24-six"
+        "24-six",
+        "39-urllib3"
       ]
     },
     {
-      "ref": "40-importlib-metadata",
+      "ref": "41-importlib-metadata",
       "dependsOn": [
-        "41-zipp"
+        "42-zipp"
       ]
     },
     {
-      "ref": "42-jinja2",
+      "ref": "43-jinja2",
       "dependsOn": [
-        "43-markupsafe"
+        "44-markupsafe"
       ]
     },
     {
-      "ref": "44-jsonschema",
+      "ref": "45-jsonschema",
       "dependsOn": [
         "6-attrs",
-        "45-pyrsistent"
+        "46-pyrsistent"
       ]
     },
     {
-      "ref": "46-lib4sbom",
+      "ref": "47-lib4sbom",
       "dependsOn": [
-        "47-pyyaml",
-        "48-semantic-version"
+        "48-pyyaml",
+        "49-semantic-version"
       ]
     },
     {
-      "ref": "49-packaging",
+      "ref": "50-packaging",
       "dependsOn": [
         "26-pyparsing"
       ]
     },
     {
-      "ref": "50-plotly",
+      "ref": "51-plotly",
       "dependsOn": [
-        "49-packaging",
-        "51-tenacity"
+        "50-packaging",
+        "52-tenacity"
       ]
     },
     {
-      "ref": "52-requests",
+      "ref": "53-requests",
       "dependsOn": [
-        "53-certifi",
+        "54-certifi",
         "7-charset-normalizer",
         "10-idna",
-        "54-urllib3"
+        "39-urllib3"
       ]
     },
     {