chore: update SBOM for Python 3.10 (#3108)

github-actions[bot] · web-flow · web-flow · commit 48f44729e859 · 2023-06-26T11:47:46.000-07:00
Co-authored-by: GitHub &lt;noreply@github.com&gt;
diff --git a/sbom/cve-bin-tool-py3.10.json b/sbom/cve-bin-tool-py3.10.json
@@ -2,10 +2,10 @@
   "$schema": "http://cyclonedx.org/schema/bom-1.4.schema.json",
   "bomFormat": "CycloneDX",
   "specVersion": "1.4",
-  "serialNumber": "urn:uuidca6b7b6d-f0cc-4da8-85d7-66de89ca10fc",
+  "serialNumber": "urn:uuid0d48cc9f-4f3f-4799-920d-e16ef1459c37",
   "version": 1,
   "metadata": {
-    "timestamp": "2023-06-19T00:29:08Z",
+    "timestamp": "2023-06-26T00:33:30Z",
     "tools": [
       {
         "name": "sbom4python",
@@ -547,7 +547,7 @@
       "type": "library",
       "bom-ref": "16-gsutil",
       "name": "gsutil",
-      "version": "5.24",
+      "version": "5.25",
       "supplier": {
         "name": "Google Inc.",
         "contact": [
@@ -556,7 +556,7 @@
           }
         ]
       },
-      "cpe": "cpe:2.3:a:google_inc.:gsutil:5.24:*:*:*:*:*:*:*",
+      "cpe": "cpe:2.3:a:google_inc.:gsutil:5.25:*:*:*:*:*:*:*",
       "description": "A command line tool for interacting with cloud storage services.",
       "licenses": [
         {
@@ -573,12 +573,12 @@
           "comment": "Home page for project"
         },
         {
-          "url": "https://pypi.org/project/gsutil/5.24",
+          "url": "https://pypi.org/project/gsutil/5.25",
           "type": "distribution",
           "comment": "Download location for component"
         }
       ],
-      "purl": "pkg:pypi/gsutil@5.24",
+      "purl": "pkg:pypi/gsutil@5.25",
       "properties": [
         {
           "name": "License Comments",
diff --git a/sbom/cve-bin-tool-py3.10.spdx b/sbom/cve-bin-tool-py3.10.spdx
@@ -2,10 +2,10 @@ SPDXVersion: SPDX-2.3
 DataLicense: CC0-1.0
 SPDXID: SPDXRef-DOCUMENT
 DocumentName: Python-cve-bin-tool
-DocumentNamespace: http://spdx.org/spdxdocs/Python-cve-bin-tool-888467a7-bdcd-4ded-b1ec-86364da5f20f
+DocumentNamespace: http://spdx.org/spdxdocs/Python-cve-bin-tool-4978efc0-ccd0-48aa-ba68-02ab2929093e
 LicenseListVersion: 3.20
 Creator: Tool: sbom4python-0.9.1
-Created: 2023-06-19T00:28:00Z
+Created: 2023-06-26T00:31:58Z
 CreatorComment: <text>This document has been automatically generated.</text>
 ##### 
 
@@ -252,19 +252,19 @@ ExternalRef: SECURITY cpe23Type cpe:2.3:a:nir_cohen:distro:1.8.0:*:*:*:*:*:*:*
 
 PackageName: gsutil
 SPDXID: SPDXRef-Package-16-gsutil
-PackageVersion: 5.24
+PackageVersion: 5.25
 PrimaryPackagePurpose: LIBRARY
 PackageSupplier: Person: Google Inc. (buganizer-system+187143@google.com)
-PackageDownloadLocation: https://pypi.org/project/gsutil/5.24
+PackageDownloadLocation: https://pypi.org/project/gsutil/5.25
 FilesAnalyzed: false
 PackageHomePage: https://cloud.google.com/storage/docs/gsutil
 PackageLicenseDeclared: NOASSERTION
 PackageLicenseConcluded: Apache-2.0
 PackageLicenseComments: <text>gsutil declares Apache 2.0 which is not currently a valid SPDX License identifier or expression.</text>
 PackageCopyrightText: NOASSERTION
 PackageSummary: <text>A command line tool for interacting with cloud storage services.</text>
-ExternalRef: PACKAGE-MANAGER purl pkg:pypi/gsutil@5.24
-ExternalRef: SECURITY cpe23Type cpe:2.3:a:google_inc.:gsutil:5.24:*:*:*:*:*:*:*
+ExternalRef: PACKAGE-MANAGER purl pkg:pypi/gsutil@5.25
+ExternalRef: SECURITY cpe23Type cpe:2.3:a:google_inc.:gsutil:5.25:*:*:*:*:*:*:*
 ##### 
 
 PackageName: argcomplete
