Skip to content

Commit

Permalink
chore: update SBOM for Python 3.9
Browse files Browse the repository at this point in the history
  • Loading branch information
@web-flow
web-flow authored May 15, 2023
1 parent 0e9749a commit 6700bb0
Show file tree
Hide file tree
Showing 2 changed files with 147 additions and 131 deletions.
158 changes: 86 additions & 72 deletions sbom/cve-bin-tool-py3.9.json
View file
Original file line number Diff line number Diff line change
Expand Up @@ -2,10 +2,10 @@
"$schema": "http://cyclonedx.org/schema/bom-1.4.schema.json",
"bomFormat": "CycloneDX",
"specVersion": "1.4",
"serialNumber": "urn:uuid89076f91-d72d-452b-a6c0-1b367b2973fa",
"serialNumber": "urn:uuidca3c89e8-0735-4582-9f58-fb8a37340d79",
"version": 1,
"metadata": {
"timestamp": "2023-05-08T01:14:03Z",
"timestamp": "2023-05-15T00:56:37Z",
"tools": [
{
"name": "sbom4python",
Expand Down Expand Up @@ -1377,7 +1377,7 @@
"type": "library",
"bom-ref": "37-google-auth",
"name": "google-auth",
"version": "2.17.3",
"version": "2.18.0",
"supplier": {
"name": "Google Cloud Platform",
"contact": [
Expand All @@ -1386,7 +1386,7 @@
}
]
},
"cpe": "cpe:2.3:a:google_cloud_platform:google-auth:2.17.3:*:*:*:*:*:*:*",
"cpe": "cpe:2.3:a:google_cloud_platform:google-auth:2.18.0:*:*:*:*:*:*:*",
"description": "Google Authentication Library",
"licenses": [
{
Expand All @@ -1403,12 +1403,12 @@
"comment": "Home page for project"
},
{
"url": "https://pypi.org/project/google-auth/2.17.3",
"url": "https://pypi.org/project/google-auth/2.18.0",
"type": "distribution",
"comment": "Download location for component"
}
],
"purl": "pkg:pypi/google-auth@2.17.3",
"purl": "pkg:pypi/google-auth@2.18.0",
"properties": [
{
"name": "License Comments",
Expand Down Expand Up @@ -1455,7 +1455,44 @@
},
{
"type": "library",
"bom-ref": "39-monotonic",
"bom-ref": "39-urllib3",
"name": "urllib3",
"version": "1.26.15",
"supplier": {
"name": "Andrey Petrov",
"contact": [
{
"email": "andrey.petrov@shazow.net"
}
]
},
"cpe": "cpe:2.3:a:andrey_petrov:urllib3:1.26.15:*:*:*:*:*:*:*",
"description": "HTTP library with thread-safe connection pooling, file post, and more.",
"licenses": [
{
"license": {
"id": "MIT",
"url": "https://opensource.org/licenses/MIT"
}
}
],
"externalReferences": [
{
"url": "https://urllib3.readthedocs.io/",
"type": "website",
"comment": "Home page for project"
},
{
"url": "https://pypi.org/project/urllib3/1.26.15",
"type": "distribution",
"comment": "Download location for component"
}
],
"purl": "pkg:pypi/urllib3@1.26.15"
},
{
"type": "library",
"bom-ref": "40-monotonic",
"name": "monotonic",
"version": "1.6",
"supplier": {
Expand Down Expand Up @@ -1498,7 +1535,7 @@
},
{
"type": "library",
"bom-ref": "40-importlib-metadata",
"bom-ref": "41-importlib-metadata",
"name": "importlib-metadata",
"version": "6.6.0",
"supplier": {
Expand Down Expand Up @@ -1527,7 +1564,7 @@
},
{
"type": "library",
"bom-ref": "41-zipp",
"bom-ref": "42-zipp",
"name": "zipp",
"version": "3.15.0",
"supplier": {
Expand Down Expand Up @@ -1556,7 +1593,7 @@
},
{
"type": "library",
"bom-ref": "42-jinja2",
"bom-ref": "43-jinja2",
"name": "jinja2",
"version": "3.1.2",
"supplier": {
Expand Down Expand Up @@ -1593,7 +1630,7 @@
},
{
"type": "library",
"bom-ref": "43-markupsafe",
"bom-ref": "44-markupsafe",
"name": "markupsafe",
"version": "2.1.2",
"supplier": {
Expand Down Expand Up @@ -1630,7 +1667,7 @@
},
{
"type": "library",
"bom-ref": "44-jsonschema",
"bom-ref": "45-jsonschema",
"name": "jsonschema",
"version": "4.17.3",
"supplier": {
Expand All @@ -1657,7 +1694,7 @@
},
{
"type": "library",
"bom-ref": "45-pyrsistent",
"bom-ref": "46-pyrsistent",
"name": "pyrsistent",
"version": "0.19.3",
"supplier": {
Expand Down Expand Up @@ -1694,7 +1731,7 @@
},
{
"type": "library",
"bom-ref": "46-lib4sbom",
"bom-ref": "47-lib4sbom",
"name": "lib4sbom",
"version": "0.3.1",
"supplier": {
Expand Down Expand Up @@ -1731,7 +1768,7 @@
},
{
"type": "library",
"bom-ref": "47-pyyaml",
"bom-ref": "48-pyyaml",
"name": "pyyaml",
"version": "6.0",
"supplier": {
Expand Down Expand Up @@ -1768,7 +1805,7 @@
},
{
"type": "library",
"bom-ref": "48-semantic-version",
"bom-ref": "49-semantic-version",
"name": "semantic-version",
"version": "2.10.0",
"supplier": {
Expand Down Expand Up @@ -1811,7 +1848,7 @@
},
{
"type": "library",
"bom-ref": "49-packaging",
"bom-ref": "50-packaging",
"name": "packaging",
"version": "21.3",
"supplier": {
Expand Down Expand Up @@ -1853,7 +1890,7 @@
},
{
"type": "library",
"bom-ref": "50-plotly",
"bom-ref": "51-plotly",
"name": "plotly",
"version": "5.14.1",
"supplier": {
Expand Down Expand Up @@ -1890,7 +1927,7 @@
},
{
"type": "library",
"bom-ref": "51-tenacity",
"bom-ref": "52-tenacity",
"name": "tenacity",
"version": "8.2.2",
"supplier": {
Expand Down Expand Up @@ -1933,7 +1970,7 @@
},
{
"type": "library",
"bom-ref": "52-requests",
"bom-ref": "53-requests",
"name": "requests",
"version": "2.30.0",
"supplier": {
Expand Down Expand Up @@ -1976,7 +2013,7 @@
},
{
"type": "library",
"bom-ref": "53-certifi",
"bom-ref": "54-certifi",
"name": "certifi",
"version": "2023.5.7",
"supplier": {
Expand Down Expand Up @@ -2011,30 +2048,6 @@
],
"purl": "pkg:pypi/certifi@2023.5.7"
},
{
"type": "library",
"bom-ref": "54-urllib3",
"name": "urllib3",
"version": "2.0.2",
"supplier": {
"name": "Andrey Petrov",
"contact": [
{
"email": "andrey.petrov@shazow.net"
}
]
},
"cpe": "cpe:2.3:a:andrey_petrov:urllib3:2.0.2:*:*:*:*:*:*:*",
"description": "HTTP library with thread-safe connection pooling, file post, and more.",
"externalReferences": [
{
"url": "https://pypi.org/project/urllib3/2.0.2",
"type": "distribution",
"comment": "Download location for component"
}
],
"purl": "pkg:pypi/urllib3@2.0.2"
},
{
"type": "library",
"bom-ref": "55-rich",
Expand Down Expand Up @@ -2360,18 +2373,18 @@
"14-defusedxml",
"15-distro",
"16-gsutil",
"40-importlib-metadata",
"42-jinja2",
"44-jsonschema",
"46-lib4sbom",
"49-packaging",
"50-plotly",
"47-pyyaml",
"52-requests",
"41-importlib-metadata",
"43-jinja2",
"45-jsonschema",
"47-lib4sbom",
"50-packaging",
"51-plotly",
"48-pyyaml",
"53-requests",
"55-rich",
"59-rpmfile",
"60-toml",
"54-urllib3",
"39-urllib3",
"61-xmlschema",
"63-zstandard"
]
Expand Down Expand Up @@ -2418,7 +2431,7 @@
"37-google-auth",
"22-google-reauth",
"25-httplib2",
"39-monotonic",
"40-monotonic",
"31-pyopenssl",
"35-retry-decorator",
"24-six"
Expand Down Expand Up @@ -2510,55 +2523,56 @@
"38-cachetools",
"29-pyasn1-modules",
"30-rsa",
"24-six"
"24-six",
"39-urllib3"
]
},
{
"ref": "40-importlib-metadata",
"ref": "41-importlib-metadata",
"dependsOn": [
"41-zipp"
"42-zipp"
]
},
{
"ref": "42-jinja2",
"ref": "43-jinja2",
"dependsOn": [
"43-markupsafe"
"44-markupsafe"
]
},
{
"ref": "44-jsonschema",
"ref": "45-jsonschema",
"dependsOn": [
"6-attrs",
"45-pyrsistent"
"46-pyrsistent"
]
},
{
"ref": "46-lib4sbom",
"ref": "47-lib4sbom",
"dependsOn": [
"47-pyyaml",
"48-semantic-version"
"48-pyyaml",
"49-semantic-version"
]
},
{
"ref": "49-packaging",
"ref": "50-packaging",
"dependsOn": [
"26-pyparsing"
]
},
{
"ref": "50-plotly",
"ref": "51-plotly",
"dependsOn": [
"49-packaging",
"51-tenacity"
"50-packaging",
"52-tenacity"
]
},
{
"ref": "52-requests",
"ref": "53-requests",
"dependsOn": [
"53-certifi",
"54-certifi",
"7-charset-normalizer",
"10-idna",
"54-urllib3"
"39-urllib3"
]
},
{
Expand Down
Loading

0 comments on commit 6700bb0

Please sign in to comment.