chore: update SBOM for Python 3.11

web-flow · web-flow · commit 44d347bb4e06 · 2023-10-23T00:25:43.000Z
diff --git a/sbom/cve-bin-tool-py3.11.json b/sbom/cve-bin-tool-py3.11.json
@@ -2,10 +2,10 @@
   "$schema": "http://cyclonedx.org/schema/bom-1.5.schema.json",
   "bomFormat": "CycloneDX",
   "specVersion": "1.5",
-  "serialNumber": "urn:uuid:d207333a-18dd-4549-9979-6b7f093bf0f4",
+  "serialNumber": "urn:uuid:68567627-40c2-47d5-9dc8-b9bb0e05b671",
   "version": 1,
   "metadata": {
-    "timestamp": "2023-10-16T00:26:13Z",
+    "timestamp": "2023-10-23T00:25:42Z",
     "tools": {
       "components": [
         {
@@ -218,7 +218,7 @@
       "type": "library",
       "bom-ref": "7-charset-normalizer",
       "name": "charset-normalizer",
-      "version": "3.3.0",
+      "version": "3.3.1",
       "supplier": {
         "name": "Ahmed TAHRI",
         "contact": [
@@ -227,7 +227,7 @@
           }
         ]
       },
-      "cpe": "cpe:2.3:a:ahmed_tahri:charset-normalizer:3.3.0:*:*:*:*:*:*:*",
+      "cpe": "cpe:2.3:a:ahmed_tahri:charset-normalizer:3.3.1:*:*:*:*:*:*:*",
       "description": "The Real First Universal Charset Detector. Open, modern and actively maintained alternative to Chardet.",
       "licenses": [
         {
@@ -239,12 +239,12 @@
       ],
       "externalReferences": [
         {
-          "url": "https://pypi.org/project/charset-normalizer/3.3.0",
+          "url": "https://pypi.org/project/charset-normalizer/3.3.1",
           "type": "distribution",
           "comment": "Download location for component"
         }
       ],
-      "purl": "pkg:pypi/charset-normalizer@3.3.0"
+      "purl": "pkg:pypi/charset-normalizer@3.3.1"
     },
     {
       "type": "library",
@@ -1845,7 +1845,7 @@
       "type": "library",
       "bom-ref": "56-urllib3",
       "name": "urllib3",
-      "version": "2.0.6",
+      "version": "2.0.7",
       "supplier": {
         "name": "Andrey Petrov",
         "contact": [
@@ -1854,16 +1854,16 @@
           }
         ]
       },
-      "cpe": "cpe:2.3:a:andrey_petrov:urllib3:2.0.6:*:*:*:*:*:*:*",
+      "cpe": "cpe:2.3:a:andrey_petrov:urllib3:2.0.7:*:*:*:*:*:*:*",
       "description": "HTTP library with thread-safe connection pooling, file post, and more.",
       "externalReferences": [
         {
-          "url": "https://pypi.org/project/urllib3/2.0.6",
+          "url": "https://pypi.org/project/urllib3/2.0.7",
           "type": "distribution",
           "comment": "Download location for component"
         }
       ],
-      "purl": "pkg:pypi/urllib3@2.0.6"
+      "purl": "pkg:pypi/urllib3@2.0.7"
     },
     {
       "type": "library",
diff --git a/sbom/cve-bin-tool-py3.11.spdx b/sbom/cve-bin-tool-py3.11.spdx
@@ -2,10 +2,10 @@ SPDXVersion: SPDX-2.3
 DataLicense: CC0-1.0
 SPDXID: SPDXRef-DOCUMENT
 DocumentName: Python-cve-bin-tool
-DocumentNamespace: http://spdx.org/spdxdocs/Python-cve-bin-tool-1630fc55-0869-4565-9fcd-5a9c2c3c3614
+DocumentNamespace: http://spdx.org/spdxdocs/Python-cve-bin-tool-65e198f7-3f3e-46bd-9024-dd466ede7839
 LicenseListVersion: 3.21
 Creator: Tool: sbom4python-0.10.0
-Created: 2023-10-16T00:24:59Z
+Created: 2023-10-23T00:24:26Z
 CreatorComment: <text>This document has been automatically generated.</text>
 ##### 
 
@@ -101,17 +101,17 @@ ExternalRef: SECURITY cpe23Type cpe:2.3:a:hynek_schlawack:attrs:23.1.0:*:*:*:*:*
 
 PackageName: charset-normalizer
 SPDXID: SPDXRef-Package-7-charset-normalizer
-PackageVersion: 3.3.0
+PackageVersion: 3.3.1
 PrimaryPackagePurpose: LIBRARY
 PackageSupplier: Person: Ahmed TAHRI (ahmed.tahri@cloudnursery.dev)
-PackageDownloadLocation: https://pypi.org/project/charset-normalizer/3.3.0
+PackageDownloadLocation: https://pypi.org/project/charset-normalizer/3.3.1
 FilesAnalyzed: false
 PackageLicenseDeclared: MIT
 PackageLicenseConcluded: MIT
 PackageCopyrightText: NOASSERTION
 PackageSummary: <text>The Real First Universal Charset Detector. Open, modern and actively maintained alternative to Chardet.</text>
-ExternalRef: PACKAGE-MANAGER purl pkg:pypi/charset-normalizer@3.3.0
-ExternalRef: SECURITY cpe23Type cpe:2.3:a:ahmed_tahri:charset-normalizer:3.3.0:*:*:*:*:*:*:*
+ExternalRef: PACKAGE-MANAGER purl pkg:pypi/charset-normalizer@3.3.1
+ExternalRef: SECURITY cpe23Type cpe:2.3:a:ahmed_tahri:charset-normalizer:3.3.1:*:*:*:*:*:*:*
 ##### 
 
 PackageName: multidict
@@ -857,17 +857,17 @@ ExternalRef: SECURITY cpe23Type cpe:2.3:a:kenneth_reitz:certifi:2023.7.22:*:*:*:
 
 PackageName: urllib3
 SPDXID: SPDXRef-Package-56-urllib3
-PackageVersion: 2.0.6
+PackageVersion: 2.0.7
 PrimaryPackagePurpose: LIBRARY
 PackageSupplier: Person: Andrey Petrov (andrey.petrov@shazow.net)
-PackageDownloadLocation: https://pypi.org/project/urllib3/2.0.6
+PackageDownloadLocation: https://pypi.org/project/urllib3/2.0.7
 FilesAnalyzed: false
 PackageLicenseDeclared: NOASSERTION
 PackageLicenseConcluded: NOASSERTION
 PackageCopyrightText: NOASSERTION
 PackageSummary: <text>HTTP library with thread-safe connection pooling, file post, and more.</text>
-ExternalRef: PACKAGE-MANAGER purl pkg:pypi/urllib3@2.0.6
-ExternalRef: SECURITY cpe23Type cpe:2.3:a:andrey_petrov:urllib3:2.0.6:*:*:*:*:*:*:*
+ExternalRef: PACKAGE-MANAGER purl pkg:pypi/urllib3@2.0.7
+ExternalRef: SECURITY cpe23Type cpe:2.3:a:andrey_petrov:urllib3:2.0.7:*:*:*:*:*:*:*
 ##### 
 
 PackageName: rich
