diff --git a/sbom/cve-bin-tool-py3.9.json b/sbom/cve-bin-tool-py3.9.json index 56c93834f4..80ad06ba3b 100644 --- a/sbom/cve-bin-tool-py3.9.json +++ b/sbom/cve-bin-tool-py3.9.json @@ -2,10 +2,10 @@ "$schema": "http://cyclonedx.org/schema/bom-1.4.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.4", - "serialNumber": "urn:uuidda4e0ace-5d07-412d-a756-03d1a1286dff", + "serialNumber": "urn:uuid928b477b-76dc-4d56-8394-b33680f7cf7f", "version": 1, "metadata": { - "timestamp": "2023-01-23T00:26:31Z", + "timestamp": "2023-01-30T00:30:18Z", "tools": [ { "name": "sbom4python", @@ -200,10 +200,10 @@ "type": "library", "bom-ref": "13-cvss", "name": "cvss", - "version": "2.5", + "version": "2.6", "author": "Stanislav Red Hat Product Security", - "cpe": "cpe:/a:stanislav_red_hat_product_security:cvss:2.5", - "purl": "pkg:pypi/cvss@2.5" + "cpe": "cpe:/a:stanislav_red_hat_product_security:cvss:2.6", + "purl": "pkg:pypi/cvss@2.6" }, { "type": "library", @@ -235,9 +235,9 @@ "type": "library", "bom-ref": "16-gsutil", "name": "gsutil", - "version": "5.18", + "version": "5.19", "author": "Google Inc.", - "cpe": "cpe:/a:google_inc.:gsutil:5.18", + "cpe": "cpe:/a:google_inc.:gsutil:5.19", "licenses": [ { "license": { @@ -246,7 +246,7 @@ } } ], - "purl": "pkg:pypi/gsutil@5.18" + "purl": "pkg:pypi/gsutil@5.19" }, { "type": "library", @@ -664,9 +664,9 @@ "type": "library", "bom-ref": "45-plotly", "name": "plotly", - "version": "5.12.0", + "version": "5.13.0", "author": "Chris P", - "cpe": "cpe:/a:chris_p:plotly:5.12.0", + "cpe": "cpe:/a:chris_p:plotly:5.13.0", "licenses": [ { "license": { @@ -675,7 +675,7 @@ } } ], - "purl": "pkg:pypi/plotly@5.12.0" + "purl": "pkg:pypi/plotly@5.13.0" }, { "type": "library", @@ -766,9 +766,9 @@ "type": "library", "bom-ref": "51-rich", "name": "rich", - "version": "13.2.0", + "version": "13.3.1", "author": "Will McGugan", - "cpe": "cpe:/a:will_mcgugan:rich:13.2.0", + "cpe": "cpe:/a:will_mcgugan:rich:13.3.1", "licenses": [ { "license": { @@ -777,7 +777,7 @@ } } ], - "purl": "pkg:pypi/rich@13.2.0" + "purl": "pkg:pypi/rich@13.3.1" }, { "type": "library", diff --git a/sbom/cve-bin-tool-py3.9.spdx b/sbom/cve-bin-tool-py3.9.spdx index 78f1453b64..e5a3b54c64 100644 --- a/sbom/cve-bin-tool-py3.9.spdx +++ b/sbom/cve-bin-tool-py3.9.spdx @@ -2,10 +2,10 @@ SPDXVersion: SPDX-2.2 DataLicense: CC0-1.0 SPDXID: SPDXRef-DOCUMENT DocumentName: cve-bin-tool -DocumentNamespace: http://spdx.org/spdxdocs/cve-bin-tool-df885fb6-5f8d-49f4-8dff-2dbc89c55a4d +DocumentNamespace: http://spdx.org/spdxdocs/cve-bin-tool-adab1924-a6b6-4a08-99e6-de4e4ca0f5ae LicenseListVersion: 3.18 Creator: Tool: sbom4python-0.7.0 -Created: 2023-01-23T00:25:16Z +Created: 2023-01-30T00:29:16Z CreatorComment: This document has been automatically generated. ##### @@ -177,15 +177,15 @@ ExternalRef: SECURITY cpe23Type cpe:2.3:a:isaac_muse:soupsieve:2.3.2.post1:*:*:* PackageName: cvss SPDXID: SPDXRef-Package-13-cvss PackageSupplier: Organization: Stanislav Red Hat Product Security (skontar@redhat.com) -PackageVersion: 2.5 +PackageVersion: 2.6 PackageDownloadLocation: NOASSERTION FilesAnalyzed: false ##### Reported license LGPLv3+ PackageLicenseConcluded: NOASSERTION PackageLicenseDeclared: NOASSERTION PackageCopyrightText: NOASSERTION -ExternalRef: PACKAGE-MANAGER purl pkg:pypi/cvss@2.5 -ExternalRef: SECURITY cpe23Type cpe:2.3:a:stanislav_red_hat_product_security:cvss:2.5:*:*:*:*:*:*:* +ExternalRef: PACKAGE-MANAGER purl pkg:pypi/cvss@2.6 +ExternalRef: SECURITY cpe23Type cpe:2.3:a:stanislav_red_hat_product_security:cvss:2.6:*:*:*:*:*:*:* ##### PackageName: defusedxml @@ -219,15 +219,15 @@ ExternalRef: SECURITY cpe23Type cpe:2.3:a:nir_cohen:distro:1.8.0:*:*:*:*:*:*:* PackageName: gsutil SPDXID: SPDXRef-Package-16-gsutil PackageSupplier: Person: Google Inc. (buganizer-system+187143@google.com) -PackageVersion: 5.18 +PackageVersion: 5.19 PackageDownloadLocation: NOASSERTION FilesAnalyzed: false ##### Reported license Apache 2.0 PackageLicenseConcluded: Apache-2.0 PackageLicenseDeclared: Apache-2.0 PackageCopyrightText: NOASSERTION -ExternalRef: PACKAGE-MANAGER purl pkg:pypi/gsutil@5.18 -ExternalRef: SECURITY cpe23Type cpe:2.3:a:google_inc.:gsutil:5.18:*:*:*:*:*:*:* +ExternalRef: PACKAGE-MANAGER purl pkg:pypi/gsutil@5.19 +ExternalRef: SECURITY cpe23Type cpe:2.3:a:google_inc.:gsutil:5.19:*:*:*:*:*:*:* ##### PackageName: argcomplete @@ -625,15 +625,15 @@ ExternalRef: SECURITY cpe23Type cpe:2.3:a:donald_stufft_and_individual_contribut PackageName: plotly SPDXID: SPDXRef-Package-45-plotly PackageSupplier: Person: Chris P (chris@plot.ly) -PackageVersion: 5.12.0 +PackageVersion: 5.13.0 PackageDownloadLocation: NOASSERTION FilesAnalyzed: false ##### Reported license MIT PackageLicenseConcluded: MIT PackageLicenseDeclared: MIT PackageCopyrightText: NOASSERTION -ExternalRef: PACKAGE-MANAGER purl pkg:pypi/plotly@5.12.0 -ExternalRef: SECURITY cpe23Type cpe:2.3:a:chris_p:plotly:5.12.0:*:*:*:*:*:*:* +ExternalRef: PACKAGE-MANAGER purl pkg:pypi/plotly@5.13.0 +ExternalRef: SECURITY cpe23Type cpe:2.3:a:chris_p:plotly:5.13.0:*:*:*:*:*:*:* ##### PackageName: tenacity @@ -709,15 +709,15 @@ ExternalRef: SECURITY cpe23Type cpe:2.3:a:andrey_petrov:urllib3:1.26.14:*:*:*:*: PackageName: rich SPDXID: SPDXRef-Package-51-rich PackageSupplier: Person: Will McGugan (willmcgugan@gmail.com) -PackageVersion: 13.2.0 +PackageVersion: 13.3.1 PackageDownloadLocation: NOASSERTION FilesAnalyzed: false ##### Reported license MIT PackageLicenseConcluded: MIT PackageLicenseDeclared: MIT PackageCopyrightText: NOASSERTION -ExternalRef: PACKAGE-MANAGER purl pkg:pypi/rich@13.2.0 -ExternalRef: SECURITY cpe23Type cpe:2.3:a:will_mcgugan:rich:13.2.0:*:*:*:*:*:*:* +ExternalRef: PACKAGE-MANAGER purl pkg:pypi/rich@13.3.1 +ExternalRef: SECURITY cpe23Type cpe:2.3:a:will_mcgugan:rich:13.3.1:*:*:*:*:*:*:* ##### PackageName: markdown-it-py