|
2 | 2 | "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", |
3 | 3 | "bomFormat": "CycloneDX", |
4 | 4 | "specVersion": "1.6", |
5 | | - "serialNumber": "urn:uuid:5ab92791-f41f-4b08-b4c4-db025c92b5b9", |
| 5 | + "serialNumber": "urn:uuid:7f60e444-3679-43d3-abd4-a32013541228", |
6 | 6 | "version": 1, |
7 | 7 | "metadata": { |
8 | | - "timestamp": "2025-08-04T00:53:01Z", |
| 8 | + "timestamp": "2025-08-11T00:45:03Z", |
9 | 9 | "lifecycles": [ |
10 | 10 | { |
11 | 11 | "phase": "build" |
|
1004 | 1004 | "type": "library", |
1005 | 1005 | "bom-ref": "14-cvss", |
1006 | 1006 | "name": "cvss", |
1007 | | - "version": "3.4", |
| 1007 | + "version": "3.6", |
1008 | 1008 | "supplier": { |
1009 | 1009 | "name": "Stanislav Red Hat Product Security", |
1010 | 1010 | "contact": [ |
|
1013 | 1013 | } |
1014 | 1014 | ] |
1015 | 1015 | }, |
1016 | | - "cpe": "cpe:2.3:a:stanislav_red_hat_product_security:cvss:3.4:*:*:*:*:*:*:*", |
| 1016 | + "cpe": "cpe:2.3:a:stanislav_red_hat_product_security:cvss:3.6:*:*:*:*:*:*:*", |
1017 | 1017 | "description": "CVSS2/3/4 library with interactive calculator for Python 2 and Python 3", |
1018 | 1018 | "hashes": [ |
1019 | 1019 | { |
1020 | 1020 | "alg": "SHA-256", |
1021 | | - "content": "d9950613758e60820f7fac37ca5f35158712f8f2ea4f6629858a60c4984fe4ef" |
| 1021 | + "content": "e342c6ad9c7eb69d2aebbbc2768a03cabd57eb947c806e145de5b936219833ea" |
1022 | 1022 | } |
1023 | 1023 | ], |
1024 | 1024 | "licenses": [ |
|
1037 | 1037 | "comment": "Home page for project" |
1038 | 1038 | }, |
1039 | 1039 | { |
1040 | | - "url": "https://pypi.org/project/cvss/3.4/#files", |
| 1040 | + "url": "https://pypi.org/project/cvss/3.6/#files", |
1041 | 1041 | "type": "distribution", |
1042 | 1042 | "comment": "Download location for component" |
1043 | 1043 | }, |
|
1058 | 1058 | "type": "build-system" |
1059 | 1059 | } |
1060 | 1060 | ], |
1061 | | - "purl": "pkg:pypi/cvss@3.4", |
| 1061 | + "purl": "pkg:pypi/cvss@3.6", |
1062 | 1062 | "properties": [ |
1063 | 1063 | { |
1064 | 1064 | "name": "release_date", |
1065 | | - "value": "2025-02-11T17:28:21Z" |
| 1065 | + "value": "2025-08-04T10:50:12Z" |
1066 | 1066 | }, |
1067 | 1067 | { |
1068 | 1068 | "name": "language", |
|
3192 | 3192 | "type": "library", |
3193 | 3193 | "bom-ref": "48-rpds-py", |
3194 | 3194 | "name": "rpds-py", |
3195 | | - "version": "0.26.0", |
| 3195 | + "version": "0.27.0", |
3196 | 3196 | "supplier": { |
3197 | 3197 | "name": "Julian Berman", |
3198 | 3198 | "contact": [ |
|
3201 | 3201 | } |
3202 | 3202 | ] |
3203 | 3203 | }, |
3204 | | - "cpe": "cpe:2.3:a:julian_berman:rpds-py:0.26.0:*:*:*:*:*:*:*", |
| 3204 | + "cpe": "cpe:2.3:a:julian_berman:rpds-py:0.27.0:*:*:*:*:*:*:*", |
3205 | 3205 | "description": "Python bindings to Rust's persistent data structures (rpds)", |
3206 | 3206 | "hashes": [ |
3207 | 3207 | { |
3208 | 3208 | "alg": "SHA-256", |
3209 | | - "content": "4c70c70f9169692b36307a95f3d8c0a9fcd79f7b4a383aad5eaa0e9718b79b37" |
3210 | | - } |
3211 | | - ], |
3212 | | - "licenses": [ |
3213 | | - { |
3214 | | - "license": { |
3215 | | - "id": "MIT", |
3216 | | - "url": "https://opensource.org/license/mit/", |
3217 | | - "acknowledgement": "concluded" |
3218 | | - } |
| 3209 | + "content": "130c1ffa5039a333f5926b09e346ab335f0d4ec393b030a18549a7c7e7c2cea4" |
3219 | 3210 | } |
3220 | 3211 | ], |
3221 | 3212 | "externalReferences": [ |
|
3225 | 3216 | "comment": "Home page for project" |
3226 | 3217 | }, |
3227 | 3218 | { |
3228 | | - "url": "https://pypi.org/project/rpds-py/0.26.0/#files", |
| 3219 | + "url": "https://pypi.org/project/rpds-py/0.27.0/#files", |
3229 | 3220 | "type": "distribution", |
3230 | 3221 | "comment": "Download location for component" |
3231 | 3222 | }, |
|
3254 | 3245 | "type": "other" |
3255 | 3246 | } |
3256 | 3247 | ], |
3257 | | - "purl": "pkg:pypi/rpds-py@0.26.0", |
| 3248 | + "purl": "pkg:pypi/rpds-py@0.27.0", |
3258 | 3249 | "properties": [ |
3259 | 3250 | { |
3260 | 3251 | "name": "release_date", |
3261 | | - "value": "2025-07-01T15:53:40Z" |
| 3252 | + "value": "2025-08-07T08:23:06Z" |
3262 | 3253 | }, |
3263 | 3254 | { |
3264 | 3255 | "name": "language", |
|
3686 | 3677 | "type": "library", |
3687 | 3678 | "bom-ref": "56-packageurl-python", |
3688 | 3679 | "name": "packageurl-python", |
3689 | | - "version": "0.17.3", |
| 3680 | + "version": "0.17.5", |
3690 | 3681 | "supplier": { |
3691 | 3682 | "name": "the purl authors" |
3692 | 3683 | }, |
3693 | | - "cpe": "cpe:2.3:a:the_purl_authors:packageurl-python:0.17.3:*:*:*:*:*:*:*", |
| 3684 | + "cpe": "cpe:2.3:a:the_purl_authors:packageurl-python:0.17.5:*:*:*:*:*:*:*", |
3694 | 3685 | "description": "A purl aka. Package URL parser and builder", |
3695 | 3686 | "hashes": [ |
3696 | 3687 | { |
3697 | 3688 | "alg": "SHA-256", |
3698 | | - "content": "f51b5aab570159f07258c8e998e9972ff3bf060da16b7334a42bd9f9737777d9" |
| 3689 | + "content": "f0e55452ab37b5c192c443de1458e3f3b4d8ac27f747df6e8c48adeab081d321" |
3699 | 3690 | } |
3700 | 3691 | ], |
3701 | 3692 | "licenses": [ |
|
3714 | 3705 | "comment": "Home page for project" |
3715 | 3706 | }, |
3716 | 3707 | { |
3717 | | - "url": "https://pypi.org/project/packageurl-python/0.17.3/#files", |
| 3708 | + "url": "https://pypi.org/project/packageurl-python/0.17.5/#files", |
3718 | 3709 | "type": "distribution", |
3719 | 3710 | "comment": "Download location for component" |
3720 | 3711 | } |
3721 | 3712 | ], |
3722 | | - "purl": "pkg:pypi/[email protected].3", |
| 3713 | + "purl": "pkg:pypi/[email protected].5", |
3723 | 3714 | "properties": [ |
3724 | 3715 | { |
3725 | 3716 | "name": "release_date", |
3726 | | - "value": "2025-08-01T03:24:33Z" |
| 3717 | + "value": "2025-08-06T14:08:19Z" |
3727 | 3718 | }, |
3728 | 3719 | { |
3729 | 3720 | "name": "language", |
|
4204 | 4195 | "type": "library", |
4205 | 4196 | "bom-ref": "64-python-gnupg", |
4206 | 4197 | "name": "python-gnupg", |
4207 | | - "version": "0.5.4", |
| 4198 | + "version": "0.5.5", |
4208 | 4199 | "supplier": { |
4209 | 4200 | "name": "Vinay Sajip", |
4210 | 4201 | "contact": [ |
|
4213 | 4204 | } |
4214 | 4205 | ] |
4215 | 4206 | }, |
4216 | | - "cpe": "cpe:2.3:a:vinay_sajip:python-gnupg:0.5.4:*:*:*:*:*:*:*", |
| 4207 | + "cpe": "cpe:2.3:a:vinay_sajip:python-gnupg:0.5.5:*:*:*:*:*:*:*", |
4217 | 4208 | "description": "A wrapper for the Gnu Privacy Guard (GPG or GnuPG)", |
4218 | 4209 | "hashes": [ |
4219 | 4210 | { |
4220 | 4211 | "alg": "SHA-256", |
4221 | | - "content": "40ce25cde9df29af91fe931ce9df3ce544e14a37f62b13ca878c897217b2de6c" |
| 4212 | + "content": "51fa7b8831ff0914bc73d74c59b99c613de7247b91294323c39733bb85ac3fc1" |
4222 | 4213 | } |
4223 | 4214 | ], |
4224 | 4215 | "licenses": [ |
|
4237 | 4228 | "comment": "Home page for project" |
4238 | 4229 | }, |
4239 | 4230 | { |
4240 | | - "url": "https://pypi.org/project/python-gnupg/0.5.4/#files", |
| 4231 | + "url": "https://pypi.org/project/python-gnupg/0.5.5/#files", |
4241 | 4232 | "type": "distribution", |
4242 | 4233 | "comment": "Download location for component" |
4243 | 4234 | }, |
|
4254 | 4245 | "type": "issue-tracker" |
4255 | 4246 | } |
4256 | 4247 | ], |
4257 | | - "purl": "pkg:pypi/[email protected].4", |
| 4248 | + "purl": "pkg:pypi/[email protected].5", |
4258 | 4249 | "properties": [ |
4259 | 4250 | { |
4260 | 4251 | "name": "release_date", |
4261 | | - "value": "2025-01-07T11:58:32Z" |
| 4252 | + "value": "2025-08-04T19:26:54Z" |
4262 | 4253 | }, |
4263 | 4254 | { |
4264 | 4255 | "name": "language", |
|
4344 | 4335 | "type": "library", |
4345 | 4336 | "bom-ref": "66-charset-normalizer", |
4346 | 4337 | "name": "charset-normalizer", |
4347 | | - "version": "3.4.2", |
| 4338 | + "version": "3.4.3", |
4348 | 4339 | "supplier": { |
4349 | 4340 | "name": "Ahmed R .", |
4350 | 4341 | "contact": [ |
|
4353 | 4344 | } |
4354 | 4345 | ] |
4355 | 4346 | }, |
4356 | | - "cpe": "cpe:2.3:a:ahmed_r.:charset-normalizer:3.4.2:*:*:*:*:*:*:*", |
| 4347 | + "cpe": "cpe:2.3:a:ahmed_r.:charset-normalizer:3.4.3:*:*:*:*:*:*:*", |
4357 | 4348 | "description": "The Real First Universal Charset Detector. Open, modern and actively maintained alternative to Chardet.", |
4358 | 4349 | "hashes": [ |
4359 | 4350 | { |
4360 | 4351 | "alg": "SHA-256", |
4361 | | - "content": "7c48ed483eb946e6c04ccbe02c6b4d1d48e51944b6db70f697e089c193404941" |
| 4352 | + "content": "fb7f67a1bfa6e40b438170ebdc8158b78dc465a5a67b6dde178a46987b244a72" |
4362 | 4353 | } |
4363 | 4354 | ], |
4364 | 4355 | "licenses": [ |
|
4372 | 4363 | ], |
4373 | 4364 | "externalReferences": [ |
4374 | 4365 | { |
4375 | | - "url": "https://pypi.org/project/charset-normalizer/3.4.2/#files", |
| 4366 | + "url": "https://pypi.org/project/charset-normalizer/3.4.3/#files", |
4376 | 4367 | "type": "distribution", |
4377 | 4368 | "comment": "Download location for component" |
4378 | 4369 | }, |
|
4393 | 4384 | "type": "issue-tracker" |
4394 | 4385 | } |
4395 | 4386 | ], |
4396 | | - "purl": "pkg:pypi/[email protected].2", |
| 4387 | + "purl": "pkg:pypi/[email protected].3", |
4397 | 4388 | "properties": [ |
4398 | 4389 | { |
4399 | 4390 | "name": "release_date", |
4400 | | - "value": "2025-05-02T08:31:46Z" |
| 4391 | + "value": "2025-08-09T07:55:36Z" |
4401 | 4392 | }, |
4402 | 4393 | { |
4403 | 4394 | "name": "language", |
|
![github-actions[bot]](https://avatars.githubusercontent.com/in/15368?v=4&size=40){kind=avatar}
0 commit comments