|
2 | 2 | "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", |
3 | 3 | "bomFormat": "CycloneDX", |
4 | 4 | "specVersion": "1.6", |
5 | | - "serialNumber": "urn:uuid:29ffed1c-efa7-44d7-afdf-1a001af181ee", |
| 5 | + "serialNumber": "urn:uuid:5bf150ae-9e66-44e4-a266-d4e87fd3a83e", |
6 | 6 | "version": 1, |
7 | 7 | "metadata": { |
8 | | - "timestamp": "2025-08-04T00:53:09Z", |
| 8 | + "timestamp": "2025-08-11T00:45:01Z", |
9 | 9 | "lifecycles": [ |
10 | 10 | { |
11 | 11 | "phase": "build" |
|
1086 | 1086 | "type": "library", |
1087 | 1087 | "bom-ref": "15-cvss", |
1088 | 1088 | "name": "cvss", |
1089 | | - "version": "3.4", |
| 1089 | + "version": "3.6", |
1090 | 1090 | "supplier": { |
1091 | 1091 | "name": "Stanislav Red Hat Product Security", |
1092 | 1092 | "contact": [ |
|
1095 | 1095 | } |
1096 | 1096 | ] |
1097 | 1097 | }, |
1098 | | - "cpe": "cpe:2.3:a:stanislav_red_hat_product_security:cvss:3.4:*:*:*:*:*:*:*", |
| 1098 | + "cpe": "cpe:2.3:a:stanislav_red_hat_product_security:cvss:3.6:*:*:*:*:*:*:*", |
1099 | 1099 | "description": "CVSS2/3/4 library with interactive calculator for Python 2 and Python 3", |
1100 | 1100 | "hashes": [ |
1101 | 1101 | { |
1102 | 1102 | "alg": "SHA-256", |
1103 | | - "content": "d9950613758e60820f7fac37ca5f35158712f8f2ea4f6629858a60c4984fe4ef" |
| 1103 | + "content": "e342c6ad9c7eb69d2aebbbc2768a03cabd57eb947c806e145de5b936219833ea" |
1104 | 1104 | } |
1105 | 1105 | ], |
1106 | 1106 | "licenses": [ |
|
1119 | 1119 | "comment": "Home page for project" |
1120 | 1120 | }, |
1121 | 1121 | { |
1122 | | - "url": "https://pypi.org/project/cvss/3.4/#files", |
| 1122 | + "url": "https://pypi.org/project/cvss/3.6/#files", |
1123 | 1123 | "type": "distribution", |
1124 | 1124 | "comment": "Download location for component" |
1125 | 1125 | }, |
|
1140 | 1140 | "type": "build-system" |
1141 | 1141 | } |
1142 | 1142 | ], |
1143 | | - "purl": "pkg:pypi/cvss@3.4", |
| 1143 | + "purl": "pkg:pypi/cvss@3.6", |
1144 | 1144 | "properties": [ |
1145 | 1145 | { |
1146 | 1146 | "name": "release_date", |
1147 | | - "value": "2025-02-11T17:28:21Z" |
| 1147 | + "value": "2025-08-04T10:50:12Z" |
1148 | 1148 | }, |
1149 | 1149 | { |
1150 | 1150 | "name": "language", |
|
3383 | 3383 | "type": "library", |
3384 | 3384 | "bom-ref": "51-rpds-py", |
3385 | 3385 | "name": "rpds-py", |
3386 | | - "version": "0.26.0", |
| 3386 | + "version": "0.27.0", |
3387 | 3387 | "supplier": { |
3388 | 3388 | "name": "Julian Berman", |
3389 | 3389 | "contact": [ |
|
3392 | 3392 | } |
3393 | 3393 | ] |
3394 | 3394 | }, |
3395 | | - "cpe": "cpe:2.3:a:julian_berman:rpds-py:0.26.0:*:*:*:*:*:*:*", |
| 3395 | + "cpe": "cpe:2.3:a:julian_berman:rpds-py:0.27.0:*:*:*:*:*:*:*", |
3396 | 3396 | "description": "Python bindings to Rust's persistent data structures (rpds)", |
3397 | 3397 | "hashes": [ |
3398 | 3398 | { |
3399 | 3399 | "alg": "SHA-256", |
3400 | | - "content": "4c70c70f9169692b36307a95f3d8c0a9fcd79f7b4a383aad5eaa0e9718b79b37" |
3401 | | - } |
3402 | | - ], |
3403 | | - "licenses": [ |
3404 | | - { |
3405 | | - "license": { |
3406 | | - "id": "MIT", |
3407 | | - "url": "https://opensource.org/license/mit/", |
3408 | | - "acknowledgement": "concluded" |
3409 | | - } |
| 3400 | + "content": "130c1ffa5039a333f5926b09e346ab335f0d4ec393b030a18549a7c7e7c2cea4" |
3410 | 3401 | } |
3411 | 3402 | ], |
3412 | 3403 | "externalReferences": [ |
|
3416 | 3407 | "comment": "Home page for project" |
3417 | 3408 | }, |
3418 | 3409 | { |
3419 | | - "url": "https://pypi.org/project/rpds-py/0.26.0/#files", |
| 3410 | + "url": "https://pypi.org/project/rpds-py/0.27.0/#files", |
3420 | 3411 | "type": "distribution", |
3421 | 3412 | "comment": "Download location for component" |
3422 | 3413 | }, |
|
3445 | 3436 | "type": "other" |
3446 | 3437 | } |
3447 | 3438 | ], |
3448 | | - "purl": "pkg:pypi/rpds-py@0.26.0", |
| 3439 | + "purl": "pkg:pypi/rpds-py@0.27.0", |
3449 | 3440 | "properties": [ |
3450 | 3441 | { |
3451 | 3442 | "name": "release_date", |
3452 | | - "value": "2025-07-01T15:53:40Z" |
| 3443 | + "value": "2025-08-07T08:23:06Z" |
3453 | 3444 | }, |
3454 | 3445 | { |
3455 | 3446 | "name": "language", |
|
3877 | 3868 | "type": "library", |
3878 | 3869 | "bom-ref": "59-packageurl-python", |
3879 | 3870 | "name": "packageurl-python", |
3880 | | - "version": "0.17.3", |
| 3871 | + "version": "0.17.5", |
3881 | 3872 | "supplier": { |
3882 | 3873 | "name": "the purl authors" |
3883 | 3874 | }, |
3884 | | - "cpe": "cpe:2.3:a:the_purl_authors:packageurl-python:0.17.3:*:*:*:*:*:*:*", |
| 3875 | + "cpe": "cpe:2.3:a:the_purl_authors:packageurl-python:0.17.5:*:*:*:*:*:*:*", |
3885 | 3876 | "description": "A purl aka. Package URL parser and builder", |
3886 | 3877 | "hashes": [ |
3887 | 3878 | { |
3888 | 3879 | "alg": "SHA-256", |
3889 | | - "content": "f51b5aab570159f07258c8e998e9972ff3bf060da16b7334a42bd9f9737777d9" |
| 3880 | + "content": "f0e55452ab37b5c192c443de1458e3f3b4d8ac27f747df6e8c48adeab081d321" |
3890 | 3881 | } |
3891 | 3882 | ], |
3892 | 3883 | "licenses": [ |
|
3905 | 3896 | "comment": "Home page for project" |
3906 | 3897 | }, |
3907 | 3898 | { |
3908 | | - "url": "https://pypi.org/project/packageurl-python/0.17.3/#files", |
| 3899 | + "url": "https://pypi.org/project/packageurl-python/0.17.5/#files", |
3909 | 3900 | "type": "distribution", |
3910 | 3901 | "comment": "Download location for component" |
3911 | 3902 | } |
3912 | 3903 | ], |
3913 | | - "purl": "pkg:pypi/[email protected].3", |
| 3904 | + "purl": "pkg:pypi/[email protected].5", |
3914 | 3905 | "properties": [ |
3915 | 3906 | { |
3916 | 3907 | "name": "release_date", |
3917 | | - "value": "2025-08-01T03:24:33Z" |
| 3908 | + "value": "2025-08-06T14:08:19Z" |
3918 | 3909 | }, |
3919 | 3910 | { |
3920 | 3911 | "name": "language", |
|
4395 | 4386 | "type": "library", |
4396 | 4387 | "bom-ref": "67-python-gnupg", |
4397 | 4388 | "name": "python-gnupg", |
4398 | | - "version": "0.5.4", |
| 4389 | + "version": "0.5.5", |
4399 | 4390 | "supplier": { |
4400 | 4391 | "name": "Vinay Sajip", |
4401 | 4392 | "contact": [ |
|
4404 | 4395 | } |
4405 | 4396 | ] |
4406 | 4397 | }, |
4407 | | - "cpe": "cpe:2.3:a:vinay_sajip:python-gnupg:0.5.4:*:*:*:*:*:*:*", |
| 4398 | + "cpe": "cpe:2.3:a:vinay_sajip:python-gnupg:0.5.5:*:*:*:*:*:*:*", |
4408 | 4399 | "description": "A wrapper for the Gnu Privacy Guard (GPG or GnuPG)", |
4409 | 4400 | "hashes": [ |
4410 | 4401 | { |
4411 | 4402 | "alg": "SHA-256", |
4412 | | - "content": "40ce25cde9df29af91fe931ce9df3ce544e14a37f62b13ca878c897217b2de6c" |
| 4403 | + "content": "51fa7b8831ff0914bc73d74c59b99c613de7247b91294323c39733bb85ac3fc1" |
4413 | 4404 | } |
4414 | 4405 | ], |
4415 | 4406 | "licenses": [ |
|
4428 | 4419 | "comment": "Home page for project" |
4429 | 4420 | }, |
4430 | 4421 | { |
4431 | | - "url": "https://pypi.org/project/python-gnupg/0.5.4/#files", |
| 4422 | + "url": "https://pypi.org/project/python-gnupg/0.5.5/#files", |
4432 | 4423 | "type": "distribution", |
4433 | 4424 | "comment": "Download location for component" |
4434 | 4425 | }, |
|
4445 | 4436 | "type": "issue-tracker" |
4446 | 4437 | } |
4447 | 4438 | ], |
4448 | | - "purl": "pkg:pypi/[email protected].4", |
| 4439 | + "purl": "pkg:pypi/[email protected].5", |
4449 | 4440 | "properties": [ |
4450 | 4441 | { |
4451 | 4442 | "name": "release_date", |
4452 | | - "value": "2025-01-07T11:58:32Z" |
| 4443 | + "value": "2025-08-04T19:26:54Z" |
4453 | 4444 | }, |
4454 | 4445 | { |
4455 | 4446 | "name": "language", |
|
4535 | 4526 | "type": "library", |
4536 | 4527 | "bom-ref": "69-charset-normalizer", |
4537 | 4528 | "name": "charset-normalizer", |
4538 | | - "version": "3.4.2", |
| 4529 | + "version": "3.4.3", |
4539 | 4530 | "supplier": { |
4540 | 4531 | "name": "Ahmed R .", |
4541 | 4532 | "contact": [ |
|
4544 | 4535 | } |
4545 | 4536 | ] |
4546 | 4537 | }, |
4547 | | - "cpe": "cpe:2.3:a:ahmed_r.:charset-normalizer:3.4.2:*:*:*:*:*:*:*", |
| 4538 | + "cpe": "cpe:2.3:a:ahmed_r.:charset-normalizer:3.4.3:*:*:*:*:*:*:*", |
4548 | 4539 | "description": "The Real First Universal Charset Detector. Open, modern and actively maintained alternative to Chardet.", |
4549 | 4540 | "hashes": [ |
4550 | 4541 | { |
4551 | 4542 | "alg": "SHA-256", |
4552 | | - "content": "7c48ed483eb946e6c04ccbe02c6b4d1d48e51944b6db70f697e089c193404941" |
| 4543 | + "content": "fb7f67a1bfa6e40b438170ebdc8158b78dc465a5a67b6dde178a46987b244a72" |
4553 | 4544 | } |
4554 | 4545 | ], |
4555 | 4546 | "licenses": [ |
|
4563 | 4554 | ], |
4564 | 4555 | "externalReferences": [ |
4565 | 4556 | { |
4566 | | - "url": "https://pypi.org/project/charset-normalizer/3.4.2/#files", |
| 4557 | + "url": "https://pypi.org/project/charset-normalizer/3.4.3/#files", |
4567 | 4558 | "type": "distribution", |
4568 | 4559 | "comment": "Download location for component" |
4569 | 4560 | }, |
|
4584 | 4575 | "type": "issue-tracker" |
4585 | 4576 | } |
4586 | 4577 | ], |
4587 | | - "purl": "pkg:pypi/[email protected].2", |
| 4578 | + "purl": "pkg:pypi/[email protected].3", |
4588 | 4579 | "properties": [ |
4589 | 4580 | { |
4590 | 4581 | "name": "release_date", |
4591 | | - "value": "2025-05-02T08:31:46Z" |
| 4582 | + "value": "2025-08-09T07:55:36Z" |
4592 | 4583 | }, |
4593 | 4584 | { |
4594 | 4585 | "name": "language", |
|
![github-actions[bot]](https://avatars.githubusercontent.com/in/15368?v=4&size=40){kind=avatar}
0 commit comments