|
2 | 2 | "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", |
3 | 3 | "bomFormat": "CycloneDX", |
4 | 4 | "specVersion": "1.6", |
5 | | - "serialNumber": "urn:uuid:c66e1e36-4220-4e10-aad5-162385820f20", |
| 5 | + "serialNumber": "urn:uuid:e4e54700-c6e1-4400-a54c-6be3008b48cb", |
6 | 6 | "version": 1, |
7 | 7 | "metadata": { |
8 | | - "timestamp": "2025-10-13T00:40:50Z", |
| 8 | + "timestamp": "2025-10-20T00:43:33Z", |
9 | 9 | "lifecycles": [ |
10 | 10 | { |
11 | 11 | "phase": "build" |
|
79 | 79 | "type": "library", |
80 | 80 | "bom-ref": "2-aiohttp", |
81 | 81 | "name": "aiohttp", |
82 | | - "version": "3.13.0", |
| 82 | + "version": "3.13.1", |
83 | 83 | "description": "Async http client/server framework (asyncio)", |
84 | 84 | "hashes": [ |
85 | 85 | { |
86 | 86 | "alg": "SHA-256", |
87 | | - "content": "ca69ec38adf5cadcc21d0b25e2144f6a25b7db7bea7e730bac25075bc305eff0" |
| 87 | + "content": "2349a6b642020bf20116a8a5c83bae8ba071acf1461c7cbe45fc7fafd552e7e2" |
88 | 88 | } |
89 | 89 | ], |
90 | 90 | "licenses": [ |
|
100 | 100 | "comment": "Home page for project" |
101 | 101 | }, |
102 | 102 | { |
103 | | - "url": "https://pypi.org/project/aiohttp/3.13.0/#files", |
| 103 | + "url": "https://pypi.org/project/aiohttp/3.13.1/#files", |
104 | 104 | "type": "distribution", |
105 | 105 | "comment": "Download location for component" |
106 | 106 | }, |
|
137 | 137 | "type": "vcs" |
138 | 138 | } |
139 | 139 | ], |
140 | | - "purl": "pkg:pypi/aiohttp@3.13.0", |
| 140 | + "purl": "pkg:pypi/aiohttp@3.13.1", |
141 | 141 | "properties": [ |
142 | 142 | { |
143 | 143 | "name": "release_date", |
144 | | - "value": "2025-10-06T19:54:40Z" |
| 144 | + "value": "2025-10-17T13:58:56Z" |
145 | 145 | }, |
146 | 146 | { |
147 | 147 | "name": "language", |
|
812 | 812 | }, |
813 | 813 | "cpe": "cpe:2.3:a:kim_davies:idna:3.11:*:*:*:*:*:*:*", |
814 | 814 | "description": "Internationalized Domain Names in Applications (IDNA)", |
| 815 | + "hashes": [ |
| 816 | + { |
| 817 | + "alg": "SHA-256", |
| 818 | + "content": "771a87f49d9defaf64091e6e6fe9c18d4833f140bd19464795bc32d966ca37ea" |
| 819 | + } |
| 820 | + ], |
815 | 821 | "externalReferences": [ |
816 | 822 | { |
817 | 823 | "url": "https://pypi.org/project/idna/3.11/#files", |
|
835 | 841 | "properties": [ |
836 | 842 | { |
837 | 843 | "name": "release_date", |
838 | | - "value": "2025-10-06T14:08:42Z" |
| 844 | + "value": "2025-10-12T14:55:18Z" |
839 | 845 | }, |
840 | 846 | { |
841 | 847 | "name": "language", |
|
3049 | 3055 | "type": "library", |
3050 | 3056 | "bom-ref": "47-referencing", |
3051 | 3057 | "name": "referencing", |
3052 | | - "version": "0.36.2", |
| 3058 | + "version": "0.37.0", |
3053 | 3059 | "supplier": { |
3054 | 3060 | "name": "Julian Berman", |
3055 | 3061 | "contact": [ |
|
3058 | 3064 | } |
3059 | 3065 | ] |
3060 | 3066 | }, |
3061 | | - "cpe": "cpe:2.3:a:julian_berman:referencing:0.36.2:*:*:*:*:*:*:*", |
| 3067 | + "cpe": "cpe:2.3:a:julian_berman:referencing:0.37.0:*:*:*:*:*:*:*", |
3062 | 3068 | "description": "JSON Referencing + Python", |
3063 | 3069 | "hashes": [ |
3064 | 3070 | { |
3065 | 3071 | "alg": "SHA-256", |
3066 | | - "content": "e8699adbbf8b5c7de96d8ffa0eb5c158b3beafce084968e2ea8bb08c6794dcd0" |
| 3072 | + "content": "381329a9f99628c9069361716891d34ad94af76e461dcb0335825aecc7692231" |
3067 | 3073 | } |
3068 | 3074 | ], |
3069 | 3075 | "externalReferences": [ |
|
3073 | 3079 | "comment": "Home page for project" |
3074 | 3080 | }, |
3075 | 3081 | { |
3076 | | - "url": "https://pypi.org/project/referencing/0.36.2/#files", |
| 3082 | + "url": "https://pypi.org/project/referencing/0.37.0/#files", |
3077 | 3083 | "type": "distribution", |
3078 | 3084 | "comment": "Download location for component" |
3079 | 3085 | }, |
|
3102 | 3108 | "type": "vcs" |
3103 | 3109 | } |
3104 | 3110 | ], |
3105 | | - "purl": "pkg:pypi/referencing@0.36.2", |
| 3111 | + "purl": "pkg:pypi/referencing@0.37.0", |
3106 | 3112 | "properties": [ |
3107 | 3113 | { |
3108 | 3114 | "name": "release_date", |
3109 | | - "value": "2025-01-25T08:48:14Z" |
| 3115 | + "value": "2025-10-13T15:30:47Z" |
3110 | 3116 | }, |
3111 | 3117 | { |
3112 | 3118 | "name": "language", |
|
3455 | 3461 | "type": "library", |
3456 | 3462 | "bom-ref": "53-xmlschema", |
3457 | 3463 | "name": "xmlschema", |
3458 | | - "version": "4.1.0", |
| 3464 | + "version": "4.2.0", |
3459 | 3465 | "supplier": { |
3460 | 3466 | "name": "Davide Brunato", |
3461 | 3467 | "contact": [ |
|
3464 | 3470 | } |
3465 | 3471 | ] |
3466 | 3472 | }, |
3467 | | - "cpe": "cpe:2.3:a:davide_brunato:xmlschema:4.1.0:*:*:*:*:*:*:*", |
| 3473 | + "cpe": "cpe:2.3:a:davide_brunato:xmlschema:4.2.0:*:*:*:*:*:*:*", |
3468 | 3474 | "description": "An XML Schema validator and decoder", |
3469 | 3475 | "hashes": [ |
3470 | 3476 | { |
3471 | 3477 | "alg": "SHA-256", |
3472 | | - "content": "eabf610f398a58700bc4ac94380ad9ce558297a3f9ca8b7722ed3f7888eb4498" |
| 3478 | + "content": "82d24a50eea5e7f2d603312813848cd66fddf8fa2b6730839c6aa3d66312e3b6" |
3473 | 3479 | } |
3474 | 3480 | ], |
3475 | 3481 | "externalReferences": [ |
|
3479 | 3485 | "comment": "Home page for project" |
3480 | 3486 | }, |
3481 | 3487 | { |
3482 | | - "url": "https://pypi.org/project/xmlschema/4.1.0/#files", |
| 3488 | + "url": "https://pypi.org/project/xmlschema/4.2.0/#files", |
3483 | 3489 | "type": "distribution", |
3484 | 3490 | "comment": "Download location for component" |
3485 | 3491 | } |
3486 | 3492 | ], |
3487 | | - "purl": "pkg:pypi/xmlschema@4.1.0", |
| 3493 | + "purl": "pkg:pypi/xmlschema@4.2.0", |
3488 | 3494 | "properties": [ |
3489 | 3495 | { |
3490 | 3496 | "name": "release_date", |
3491 | | - "value": "2025-06-05T21:17:35Z" |
| 3497 | + "value": "2025-10-14T09:19:28Z" |
3492 | 3498 | }, |
3493 | 3499 | { |
3494 | 3500 | "name": "language", |
|
4113 | 4119 | "type": "library", |
4114 | 4120 | "bom-ref": "64-narwhals", |
4115 | 4121 | "name": "narwhals", |
4116 | | - "version": "2.7.0", |
| 4122 | + "version": "2.8.0", |
4117 | 4123 | "supplier": { |
4118 | 4124 | "name": "Marco Gorelli", |
4119 | 4125 | "contact": [ |
|
4122 | 4128 | } |
4123 | 4129 | ] |
4124 | 4130 | }, |
4125 | | - "cpe": "cpe:2.3:a:marco_gorelli:narwhals:2.7.0:*:*:*:*:*:*:*", |
| 4131 | + "cpe": "cpe:2.3:a:marco_gorelli:narwhals:2.8.0:*:*:*:*:*:*:*", |
4126 | 4132 | "description": "Extremely lightweight compatibility layer between dataframe libraries", |
| 4133 | + "hashes": [ |
| 4134 | + { |
| 4135 | + "alg": "SHA-256", |
| 4136 | + "content": "6304856676ba4a79fd34148bda63aed8060dd6edb1227edf3659ce5e091de73c" |
| 4137 | + } |
| 4138 | + ], |
4127 | 4139 | "licenses": [ |
4128 | 4140 | { |
4129 | 4141 | "license": { |
|
4140 | 4152 | "comment": "Home page for project" |
4141 | 4153 | }, |
4142 | 4154 | { |
4143 | | - "url": "https://pypi.org/project/narwhals/2.7.0/#files", |
| 4155 | + "url": "https://pypi.org/project/narwhals/2.8.0/#files", |
4144 | 4156 | "type": "distribution", |
4145 | 4157 | "comment": "Download location for component" |
4146 | 4158 | }, |
|
4157 | 4169 | "type": "issue-tracker" |
4158 | 4170 | } |
4159 | 4171 | ], |
4160 | | - "purl": "pkg:pypi/narwhals@2.7.0", |
| 4172 | + "purl": "pkg:pypi/narwhals@2.8.0", |
4161 | 4173 | "properties": [ |
4162 | 4174 | { |
4163 | 4175 | "name": "release_date", |
4164 | | - "value": "2025-10-02T16:10:22Z" |
| 4176 | + "value": "2025-10-13T08:44:25Z" |
4165 | 4177 | }, |
4166 | 4178 | { |
4167 | 4179 | "name": "language", |
|
4321 | 4333 | "type": "library", |
4322 | 4334 | "bom-ref": "67-charset-normalizer", |
4323 | 4335 | "name": "charset-normalizer", |
4324 | | - "version": "3.4.3", |
| 4336 | + "version": "3.4.4", |
4325 | 4337 | "supplier": { |
4326 | 4338 | "name": "Ahmed R .", |
4327 | 4339 | "contact": [ |
|
4330 | 4342 | } |
4331 | 4343 | ] |
4332 | 4344 | }, |
4333 | | - "cpe": "cpe:2.3:a:ahmed_r.:charset-normalizer:3.4.3:*:*:*:*:*:*:*", |
| 4345 | + "cpe": "cpe:2.3:a:ahmed_r.:charset-normalizer:3.4.4:*:*:*:*:*:*:*", |
4334 | 4346 | "description": "The Real First Universal Charset Detector. Open, modern and actively maintained alternative to Chardet.", |
4335 | 4347 | "hashes": [ |
4336 | 4348 | { |
4337 | 4349 | "alg": "SHA-256", |
4338 | | - "content": "fb7f67a1bfa6e40b438170ebdc8158b78dc465a5a67b6dde178a46987b244a72" |
| 4350 | + "content": "e824f1492727fa856dd6eda4f7cee25f8518a12f3c4a56a74e8095695089cf6d" |
4339 | 4351 | } |
4340 | 4352 | ], |
4341 | 4353 | "licenses": [ |
|
4349 | 4361 | ], |
4350 | 4362 | "externalReferences": [ |
4351 | 4363 | { |
4352 | | - "url": "https://pypi.org/project/charset-normalizer/3.4.3/#files", |
| 4364 | + "url": "https://pypi.org/project/charset-normalizer/3.4.4/#files", |
4353 | 4365 | "type": "distribution", |
4354 | 4366 | "comment": "Download location for component" |
4355 | 4367 | }, |
|
4370 | 4382 | "type": "issue-tracker" |
4371 | 4383 | } |
4372 | 4384 | ], |
4373 | | - "purl": "pkg:pypi/charset-normalizer@3.4.3", |
| 4385 | + "purl": "pkg:pypi/charset-normalizer@3.4.4", |
4374 | 4386 | "properties": [ |
4375 | 4387 | { |
4376 | 4388 | "name": "release_date", |
4377 | | - "value": "2025-08-09T07:55:36Z" |
| 4389 | + "value": "2025-10-14T04:40:11Z" |
4378 | 4390 | }, |
4379 | 4391 | { |
4380 | 4392 | "name": "language", |
|
![github-actions[bot]](https://avatars.githubusercontent.com/in/15368?v=4&size=40){kind=avatar}
0 commit comments