diff --git a/sbom/cve-bin-tool-py3.11.json b/sbom/cve-bin-tool-py3.11.json
index 39b9a567bd..cce31ab5e3 100644
--- a/sbom/cve-bin-tool-py3.11.json
+++ b/sbom/cve-bin-tool-py3.11.json
@@ -2,10 +2,10 @@
"$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json",
"bomFormat": "CycloneDX",
"specVersion": "1.6",
- "serialNumber": "urn:uuid:26cf65a2-3634-40ba-9952-49f2946933a2",
+ "serialNumber": "urn:uuid:55e9d331-0b11-4ab5-afbc-e088eeedb8e7",
"version": 1,
"metadata": {
- "timestamp": "2024-12-02T00:40:31Z",
+ "timestamp": "2024-12-09T00:41:20Z",
"lifecycles": [
{
"phase": "build"
@@ -71,7 +71,7 @@
},
{
"name": "python_version",
- "value": "3.11.10"
+ "value": "3.11.11"
}
]
},
@@ -79,7 +79,7 @@
"type": "library",
"bom-ref": "2-aiohttp",
"name": "aiohttp",
- "version": "3.11.9",
+ "version": "3.11.10",
"description": "Async http client/server framework (asyncio)",
"licenses": [
{
@@ -97,12 +97,12 @@
"comment": "Home page for project"
},
{
- "url": "https://pypi.org/project/aiohttp/3.11.9/#files",
+ "url": "https://pypi.org/project/aiohttp/3.11.10/#files",
"type": "distribution",
"comment": "Download location for component"
}
],
- "purl": "pkg:pypi/aiohttp@3.11.9",
+ "purl": "pkg:pypi/aiohttp@3.11.10",
"properties": [
{
"name": "language",
@@ -110,11 +110,11 @@
},
{
"name": "python_version",
- "value": "3.11.10"
+ "value": "3.11.11"
},
{
"name": "package_release_date",
- "value": "2024-12-01T23:26:48.000Z"
+ "value": "2024-12-05T23:51:02.000Z"
}
]
},
@@ -162,7 +162,7 @@
},
{
"name": "python_version",
- "value": "3.11.10"
+ "value": "3.11.11"
},
{
"name": "package_release_date",
@@ -211,7 +211,7 @@
},
{
"name": "python_version",
- "value": "3.11.10"
+ "value": "3.11.11"
},
{
"name": "package_release_date",
@@ -254,7 +254,7 @@
},
{
"name": "python_version",
- "value": "3.11.10"
+ "value": "3.11.11"
},
{
"name": "package_release_date",
@@ -298,7 +298,7 @@
},
{
"name": "python_version",
- "value": "3.11.10"
+ "value": "3.11.11"
},
{
"name": "package_release_date",
@@ -356,7 +356,7 @@
},
{
"name": "python_version",
- "value": "3.11.10"
+ "value": "3.11.11"
},
{
"name": "package_release_date",
@@ -408,7 +408,7 @@
},
{
"name": "python_version",
- "value": "3.11.10"
+ "value": "3.11.11"
}
]
},
@@ -456,7 +456,11 @@
},
{
"name": "python_version",
- "value": "3.11.10"
+ "value": "3.11.11"
+ },
+ {
+ "name": "package_release_date",
+ "value": "2024-12-01T20:32:32.000Z"
}
]
},
@@ -490,7 +494,7 @@
},
{
"name": "python_version",
- "value": "3.11.10"
+ "value": "3.11.11"
},
{
"name": "package_release_date",
@@ -542,7 +546,7 @@
},
{
"name": "python_version",
- "value": "3.11.10"
+ "value": "3.11.11"
},
{
"name": "package_release_date",
@@ -591,7 +595,7 @@
},
{
"name": "python_version",
- "value": "3.11.10"
+ "value": "3.11.11"
}
]
},
@@ -645,7 +649,7 @@
},
{
"name": "python_version",
- "value": "3.11.10"
+ "value": "3.11.11"
},
{
"name": "package_release_date",
@@ -703,7 +707,7 @@
},
{
"name": "python_version",
- "value": "3.11.10"
+ "value": "3.11.11"
},
{
"name": "package_release_date",
@@ -755,7 +759,7 @@
},
{
"name": "python_version",
- "value": "3.11.10"
+ "value": "3.11.11"
},
{
"name": "package_release_date",
@@ -813,7 +817,7 @@
},
{
"name": "python_version",
- "value": "3.11.10"
+ "value": "3.11.11"
},
{
"name": "package_release_date",
@@ -825,7 +829,7 @@
"type": "library",
"bom-ref": "17-gsutil",
"name": "gsutil",
- "version": "5.31",
+ "version": "5.32",
"supplier": {
"name": "Google Inc .",
"contact": [
@@ -834,7 +838,7 @@
}
]
},
- "cpe": "cpe:2.3:a:google_inc.:gsutil:5.31:*:*:*:*:*:*:*",
+ "cpe": "cpe:2.3:a:google_inc.:gsutil:5.32:*:*:*:*:*:*:*",
"description": "A command line tool for interacting with cloud storage services.",
"licenses": [
{
@@ -852,12 +856,12 @@
"comment": "Home page for project"
},
{
- "url": "https://pypi.org/project/gsutil/5.31/#files",
+ "url": "https://pypi.org/project/gsutil/5.32/#files",
"type": "distribution",
"comment": "Download location for component"
}
],
- "purl": "pkg:pypi/gsutil@5.31",
+ "purl": "pkg:pypi/gsutil@5.32",
"properties": [
{
"name": "language",
@@ -865,11 +869,11 @@
},
{
"name": "python_version",
- "value": "3.11.10"
+ "value": "3.11.11"
},
{
"name": "package_release_date",
- "value": "2024-10-10T15:59:06.000Z"
+ "value": "2024-12-04T14:56:46.000Z"
}
]
},
@@ -877,7 +881,7 @@
"type": "library",
"bom-ref": "18-argcomplete",
"name": "argcomplete",
- "version": "3.5.1",
+ "version": "3.5.2",
"supplier": {
"name": "Andrey Kislyuk",
"contact": [
@@ -886,8 +890,14 @@
}
]
},
- "cpe": "cpe:2.3:a:andrey_kislyuk:argcomplete:3.5.1:*:*:*:*:*:*:*",
+ "cpe": "cpe:2.3:a:andrey_kislyuk:argcomplete:3.5.2:*:*:*:*:*:*:*",
"description": "Bash tab completion for argparse",
+ "hashes": [
+ {
+ "alg": "SHA-1",
+ "content": "fa88f807ee3f1d1c5b2647ca3c38fd3e0349dbfc"
+ }
+ ],
"licenses": [
{
"license": {
@@ -904,12 +914,12 @@
"comment": "Home page for project"
},
{
- "url": "https://pypi.org/project/argcomplete/3.5.1/#files",
+ "url": "https://pypi.org/project/argcomplete/3.5.2/#files",
"type": "distribution",
"comment": "Download location for component"
}
],
- "purl": "pkg:pypi/argcomplete@3.5.1",
+ "purl": "pkg:pypi/argcomplete@3.5.2",
"properties": [
{
"name": "language",
@@ -917,11 +927,11 @@
},
{
"name": "python_version",
- "value": "3.11.10"
+ "value": "3.11.11"
},
{
"name": "package_release_date",
- "value": "2024-10-07T04:00:36.000Z"
+ "value": "2024-12-06T18:24:27.000Z"
}
]
},
@@ -969,7 +979,7 @@
},
{
"name": "python_version",
- "value": "3.11.10"
+ "value": "3.11.11"
}
]
},
@@ -1018,7 +1028,7 @@
},
{
"name": "python_version",
- "value": "3.11.10"
+ "value": "3.11.11"
}
]
},
@@ -1072,7 +1082,7 @@
},
{
"name": "python_version",
- "value": "3.11.10"
+ "value": "3.11.11"
},
{
"name": "package_release_date",
@@ -1130,7 +1140,7 @@
},
{
"name": "python_version",
- "value": "3.11.10"
+ "value": "3.11.11"
},
{
"name": "package_release_date",
@@ -1188,7 +1198,7 @@
},
{
"name": "python_version",
- "value": "3.11.10"
+ "value": "3.11.11"
}
]
},
@@ -1236,7 +1246,7 @@
},
{
"name": "python_version",
- "value": "3.11.10"
+ "value": "3.11.11"
},
{
"name": "package_release_date",
@@ -1288,7 +1298,7 @@
},
{
"name": "python_version",
- "value": "3.11.10"
+ "value": "3.11.11"
},
{
"name": "package_release_date",
@@ -1340,7 +1350,7 @@
},
{
"name": "python_version",
- "value": "3.11.10"
+ "value": "3.11.11"
},
{
"name": "package_release_date",
@@ -1398,7 +1408,7 @@
},
{
"name": "python_version",
- "value": "3.11.10"
+ "value": "3.11.11"
},
{
"name": "package_release_date",
@@ -1410,7 +1420,7 @@
"type": "library",
"bom-ref": "28-six",
"name": "six",
- "version": "1.16.0",
+ "version": "1.17.0",
"supplier": {
"name": "Benjamin Peterson",
"contact": [
@@ -1419,14 +1429,8 @@
}
]
},
- "cpe": "cpe:2.3:a:benjamin_peterson:six:1.16.0:*:*:*:*:*:*:*",
+ "cpe": "cpe:2.3:a:benjamin_peterson:six:1.17.0:*:*:*:*:*:*:*",
"description": "Python 2 and 3 compatibility utilities",
- "hashes": [
- {
- "alg": "SHA-1",
- "content": "65486e4383f9f411da95937451205d3c7b61b9e1"
- }
- ],
"licenses": [
{
"license": {
@@ -1443,12 +1447,12 @@
"comment": "Home page for project"
},
{
- "url": "https://pypi.org/project/six/1.16.0/#files",
+ "url": "https://pypi.org/project/six/1.17.0/#files",
"type": "distribution",
"comment": "Download location for component"
}
],
- "purl": "pkg:pypi/six@1.16.0",
+ "purl": "pkg:pypi/six@1.17.0",
"properties": [
{
"name": "language",
@@ -1456,11 +1460,11 @@
},
{
"name": "python_version",
- "value": "3.11.10"
+ "value": "3.11.11"
},
{
"name": "package_release_date",
- "value": "2021-05-05T14:18:17.000Z"
+ "value": "2024-12-04T17:35:26.000Z"
}
]
},
@@ -1514,7 +1518,7 @@
},
{
"name": "python_version",
- "value": "3.11.10"
+ "value": "3.11.11"
},
{
"name": "package_release_date",
@@ -1572,7 +1576,7 @@
},
{
"name": "python_version",
- "value": "3.11.10"
+ "value": "3.11.11"
}
]
},
@@ -1611,7 +1615,7 @@
},
{
"name": "python_version",
- "value": "3.11.10"
+ "value": "3.11.11"
},
{
"name": "package_release_date",
@@ -1669,7 +1673,7 @@
},
{
"name": "python_version",
- "value": "3.11.10"
+ "value": "3.11.11"
},
{
"name": "package_release_date",
@@ -1727,7 +1731,7 @@
},
{
"name": "python_version",
- "value": "3.11.10"
+ "value": "3.11.11"
},
{
"name": "package_release_date",
@@ -1785,7 +1789,7 @@
},
{
"name": "python_version",
- "value": "3.11.10"
+ "value": "3.11.11"
},
{
"name": "package_release_date",
@@ -1797,7 +1801,7 @@
"type": "library",
"bom-ref": "35-pyopenssl",
"name": "pyopenssl",
- "version": "24.3.0",
+ "version": "24.2.1",
"supplier": {
"name": "The pyOpenSSL developers",
"contact": [
@@ -1806,7 +1810,7 @@
}
]
},
- "cpe": "cpe:2.3:a:the_pyopenssl_developers:pyopenssl:24.3.0:*:*:*:*:*:*:*",
+ "cpe": "cpe:2.3:a:the_pyopenssl_developers:pyopenssl:24.2.1:*:*:*:*:*:*:*",
"description": "Python wrapper module around the OpenSSL library",
"licenses": [
{
@@ -1824,12 +1828,12 @@
"comment": "Home page for project"
},
{
- "url": "https://pypi.org/project/pyopenssl/24.3.0/#files",
+ "url": "https://pypi.org/project/pyopenssl/24.2.1/#files",
"type": "distribution",
"comment": "Download location for component"
}
],
- "purl": "pkg:pypi/pyopenssl@24.3.0",
+ "purl": "pkg:pypi/pyopenssl@24.2.1",
"properties": [
{
"name": "language",
@@ -1837,11 +1841,7 @@
},
{
"name": "python_version",
- "value": "3.11.10"
- },
- {
- "name": "package_release_date",
- "value": "2024-11-27T20:43:21.000Z"
+ "value": "3.11.11"
}
]
},
@@ -1849,7 +1849,7 @@
"type": "library",
"bom-ref": "36-cryptography",
"name": "cryptography",
- "version": "44.0.0",
+ "version": "43.0.3",
"supplier": {
"name": "The cryptography developers The Python Cryptographic Authority and individual contributors",
"contact": [
@@ -1858,7 +1858,7 @@
}
]
},
- "cpe": "cpe:2.3:a:the_cryptography_developers_the_python_cryptographic_authority_and_individual_contributors:cryptography:44.0.0:*:*:*:*:*:*:*",
+ "cpe": "cpe:2.3:a:the_cryptography_developers_the_python_cryptographic_authority_and_individual_contributors:cryptography:43.0.3:*:*:*:*:*:*:*",
"description": "cryptography is a package which provides cryptographic recipes and primitives to Python developers.",
"licenses": [
{
@@ -1872,12 +1872,12 @@
"comment": "Home page for project"
},
{
- "url": "https://pypi.org/project/cryptography/44.0.0/#files",
+ "url": "https://pypi.org/project/cryptography/43.0.3/#files",
"type": "distribution",
"comment": "Download location for component"
}
],
- "purl": "pkg:pypi/cryptography@44.0.0",
+ "purl": "pkg:pypi/cryptography@43.0.3",
"properties": [
{
"name": "language",
@@ -1885,11 +1885,7 @@
},
{
"name": "python_version",
- "value": "3.11.10"
- },
- {
- "name": "package_release_date",
- "value": "2024-11-27T18:05:55.000Z"
+ "value": "3.11.11"
}
]
},
@@ -1943,7 +1939,7 @@
},
{
"name": "python_version",
- "value": "3.11.10"
+ "value": "3.11.11"
},
{
"name": "package_release_date",
@@ -2001,7 +1997,7 @@
},
{
"name": "python_version",
- "value": "3.11.10"
+ "value": "3.11.11"
},
{
"name": "package_release_date",
@@ -2059,7 +2055,7 @@
},
{
"name": "python_version",
- "value": "3.11.10"
+ "value": "3.11.11"
},
{
"name": "package_release_date",
@@ -2117,7 +2113,7 @@
},
{
"name": "python_version",
- "value": "3.11.10"
+ "value": "3.11.11"
},
{
"name": "package_release_date",
@@ -2175,7 +2171,7 @@
},
{
"name": "python_version",
- "value": "3.11.10"
+ "value": "3.11.11"
},
{
"name": "package_release_date",
@@ -2210,7 +2206,7 @@
},
{
"name": "python_version",
- "value": "3.11.10"
+ "value": "3.11.11"
},
{
"name": "package_release_date",
@@ -2245,7 +2241,7 @@
},
{
"name": "python_version",
- "value": "3.11.10"
+ "value": "3.11.11"
},
{
"name": "package_release_date",
@@ -2297,7 +2293,7 @@
},
{
"name": "python_version",
- "value": "3.11.10"
+ "value": "3.11.11"
},
{
"name": "package_release_date",
@@ -2346,7 +2342,7 @@
},
{
"name": "python_version",
- "value": "3.11.10"
+ "value": "3.11.11"
},
{
"name": "package_release_date",
@@ -2395,7 +2391,7 @@
},
{
"name": "python_version",
- "value": "3.11.10"
+ "value": "3.11.11"
},
{
"name": "package_release_date",
@@ -2407,7 +2403,7 @@
"type": "library",
"bom-ref": "47-rpds-py",
"name": "rpds-py",
- "version": "0.21.0",
+ "version": "0.22.3",
"supplier": {
"name": "Julian Berman",
"contact": [
@@ -2416,14 +2412,8 @@
}
]
},
- "cpe": "cpe:2.3:a:julian_berman:rpds-py:0.21.0:*:*:*:*:*:*:*",
+ "cpe": "cpe:2.3:a:julian_berman:rpds-py:0.22.3:*:*:*:*:*:*:*",
"description": "Python bindings to Rust's persistent data structures (rpds)",
- "hashes": [
- {
- "alg": "SHA-1",
- "content": "73581d8dfc56a24eac6ee32c83e6759b4506bb71"
- }
- ],
"externalReferences": [
{
"url": "https://github.com/crate-py/rpds",
@@ -2431,12 +2421,12 @@
"comment": "Home page for project"
},
{
- "url": "https://pypi.org/project/rpds-py/0.21.0/#files",
+ "url": "https://pypi.org/project/rpds-py/0.22.3/#files",
"type": "distribution",
"comment": "Download location for component"
}
],
- "purl": "pkg:pypi/rpds-py@0.21.0",
+ "purl": "pkg:pypi/rpds-py@0.22.3",
"properties": [
{
"name": "language",
@@ -2444,11 +2434,11 @@
},
{
"name": "python_version",
- "value": "3.11.10"
+ "value": "3.11.11"
},
{
"name": "package_release_date",
- "value": "2024-11-06T13:57:41.000Z"
+ "value": "2024-12-04T15:31:31.000Z"
}
]
},
@@ -2496,7 +2486,11 @@
},
{
"name": "python_version",
- "value": "3.11.10"
+ "value": "3.11.11"
+ },
+ {
+ "name": "package_release_date",
+ "value": "2024-09-18T21:36:24.000Z"
}
]
},
@@ -2544,7 +2538,7 @@
},
{
"name": "python_version",
- "value": "3.11.10"
+ "value": "3.11.11"
},
{
"name": "package_release_date",
@@ -2602,7 +2596,7 @@
},
{
"name": "python_version",
- "value": "3.11.10"
+ "value": "3.11.11"
},
{
"name": "package_release_date",
@@ -2660,7 +2654,11 @@
},
{
"name": "python_version",
- "value": "3.11.10"
+ "value": "3.11.11"
+ },
+ {
+ "name": "package_release_date",
+ "value": "2024-08-29T20:36:52.000Z"
}
]
},
@@ -2714,7 +2712,7 @@
},
{
"name": "python_version",
- "value": "3.11.10"
+ "value": "3.11.11"
},
{
"name": "package_release_date",
@@ -2767,7 +2765,7 @@
},
{
"name": "python_version",
- "value": "3.11.10"
+ "value": "3.11.11"
},
{
"name": "package_release_date",
@@ -2825,7 +2823,7 @@
},
{
"name": "python_version",
- "value": "3.11.10"
+ "value": "3.11.11"
},
{
"name": "package_release_date",
@@ -2874,7 +2872,7 @@
},
{
"name": "python_version",
- "value": "3.11.10"
+ "value": "3.11.11"
},
{
"name": "package_release_date",
@@ -2923,7 +2921,7 @@
},
{
"name": "python_version",
- "value": "3.11.10"
+ "value": "3.11.11"
},
{
"name": "package_release_date",
@@ -2981,7 +2979,7 @@
},
{
"name": "python_version",
- "value": "3.11.10"
+ "value": "3.11.11"
},
{
"name": "package_release_date",
@@ -3025,7 +3023,7 @@
},
{
"name": "python_version",
- "value": "3.11.10"
+ "value": "3.11.11"
},
{
"name": "package_release_date",
@@ -3077,7 +3075,7 @@
},
{
"name": "python_version",
- "value": "3.11.10"
+ "value": "3.11.11"
},
{
"name": "package_release_date",
@@ -3135,7 +3133,7 @@
},
{
"name": "python_version",
- "value": "3.11.10"
+ "value": "3.11.11"
},
{
"name": "package_release_date",
@@ -3193,7 +3191,7 @@
},
{
"name": "python_version",
- "value": "3.11.10"
+ "value": "3.11.11"
},
{
"name": "package_release_date",
@@ -3251,7 +3249,7 @@
},
{
"name": "python_version",
- "value": "3.11.10"
+ "value": "3.11.11"
},
{
"name": "package_release_date",
@@ -3303,7 +3301,7 @@
},
{
"name": "python_version",
- "value": "3.11.10"
+ "value": "3.11.11"
},
{
"name": "package_release_date",
@@ -3355,7 +3353,7 @@
},
{
"name": "python_version",
- "value": "3.11.10"
+ "value": "3.11.11"
},
{
"name": "package_release_date",
@@ -3399,7 +3397,7 @@
},
{
"name": "python_version",
- "value": "3.11.10"
+ "value": "3.11.11"
},
{
"name": "package_release_date",
@@ -3457,7 +3455,7 @@
},
{
"name": "python_version",
- "value": "3.11.10"
+ "value": "3.11.11"
},
{
"name": "package_release_date",
@@ -3495,7 +3493,7 @@
},
{
"name": "python_version",
- "value": "3.11.10"
+ "value": "3.11.11"
}
]
},
@@ -3543,7 +3541,7 @@
},
{
"name": "python_version",
- "value": "3.11.10"
+ "value": "3.11.11"
},
{
"name": "package_release_date",
@@ -3595,7 +3593,7 @@
},
{
"name": "python_version",
- "value": "3.11.10"
+ "value": "3.11.11"
},
{
"name": "package_release_date",
@@ -3633,7 +3631,7 @@
},
{
"name": "python_version",
- "value": "3.11.10"
+ "value": "3.11.11"
},
{
"name": "package_release_date",
@@ -3685,7 +3683,7 @@
},
{
"name": "python_version",
- "value": "3.11.10"
+ "value": "3.11.11"
},
{
"name": "package_release_date",
diff --git a/sbom/cve-bin-tool-py3.11.spdx b/sbom/cve-bin-tool-py3.11.spdx
index c6b330f164..e75779bebc 100644
--- a/sbom/cve-bin-tool-py3.11.spdx
+++ b/sbom/cve-bin-tool-py3.11.spdx
@@ -2,10 +2,10 @@ SPDXVersion: SPDX-2.3
DataLicense: CC0-1.0
SPDXID: SPDXRef-DOCUMENT
DocumentName: Python-cve-bin-tool
-DocumentNamespace: http://spdx.org/spdxdocs/Python-cve-bin-tool-7d24f8cb-8f3b-41e7-bad7-84f6018d8c85
+DocumentNamespace: http://spdx.org/spdxdocs/Python-cve-bin-tool-359c54b4-dec7-40dd-9ecd-e087abb23d21
LicenseListVersion: 3.22
Creator: Tool: sbom4python-0.11.3
-Created: 2024-12-02T00:39:32Z
+Created: 2024-12-09T00:40:38Z
CreatorComment: This document has been automatically generated.
#####
@@ -27,17 +27,17 @@ ExternalRef: SECURITY cpe23Type cpe:2.3:a:terri_oda:cve-bin-tool:3.4:*:*:*:*:*:*
PackageName: aiohttp
SPDXID: SPDXRef-2-aiohttp
-PackageVersion: 3.11.9
+PackageVersion: 3.11.10
PrimaryPackagePurpose: LIBRARY
PackageSupplier: NOASSERTION
-PackageDownloadLocation: https://pypi.org/project/aiohttp/3.11.9/#files
+PackageDownloadLocation: https://pypi.org/project/aiohttp/3.11.10/#files
FilesAnalyzed: false
PackageHomePage: https://github.com/aio-libs/aiohttp
PackageLicenseDeclared: Apache-2.0
PackageLicenseConcluded: Apache-2.0
PackageCopyrightText: NOASSERTION
PackageSummary: Async http client/server framework (asyncio)
-ExternalRef: PACKAGE_MANAGER purl pkg:pypi/aiohttp@3.11.9
+ExternalRef: PACKAGE_MANAGER purl pkg:pypi/aiohttp@3.11.10
#####
PackageName: aiohappyeyeballs
@@ -276,10 +276,10 @@ ExternalRef: SECURITY cpe23Type cpe:2.3:a:tomas_aparicio:filetype:1.2.0:*:*:*:*:
PackageName: gsutil
SPDXID: SPDXRef-17-gsutil
-PackageVersion: 5.31
+PackageVersion: 5.32
PrimaryPackagePurpose: LIBRARY
PackageSupplier: Person: Google Inc. (buganizer-system+187143@google.com)
-PackageDownloadLocation: https://pypi.org/project/gsutil/5.31/#files
+PackageDownloadLocation: https://pypi.org/project/gsutil/5.32/#files
FilesAnalyzed: false
PackageHomePage: https://cloud.google.com/storage/docs/gsutil
PackageLicenseDeclared: NOASSERTION
@@ -287,25 +287,26 @@ PackageLicenseConcluded: Apache-2.0
PackageLicenseComments: gsutil declares Apache 2.0 which is not currently a valid SPDX License identifier or expression.
PackageCopyrightText: NOASSERTION
PackageSummary: A command line tool for interacting with cloud storage services.
-ExternalRef: PACKAGE_MANAGER purl pkg:pypi/gsutil@5.31
-ExternalRef: SECURITY cpe23Type cpe:2.3:a:google_inc.:gsutil:5.31:*:*:*:*:*:*:*
+ExternalRef: PACKAGE_MANAGER purl pkg:pypi/gsutil@5.32
+ExternalRef: SECURITY cpe23Type cpe:2.3:a:google_inc.:gsutil:5.32:*:*:*:*:*:*:*
#####
PackageName: argcomplete
SPDXID: SPDXRef-18-argcomplete
-PackageVersion: 3.5.1
+PackageVersion: 3.5.2
PrimaryPackagePurpose: LIBRARY
PackageSupplier: Person: Andrey Kislyuk (kislyuk@gmail.com)
-PackageDownloadLocation: https://pypi.org/project/argcomplete/3.5.1/#files
+PackageDownloadLocation: https://pypi.org/project/argcomplete/3.5.2/#files
FilesAnalyzed: false
PackageHomePage: https://github.com/kislyuk/argcomplete
+PackageChecksum: SHA1: fa88f807ee3f1d1c5b2647ca3c38fd3e0349dbfc
PackageLicenseDeclared: NOASSERTION
PackageLicenseConcluded: Apache-2.0
PackageLicenseComments: argcomplete declares Apache Software License which is not currently a valid SPDX License identifier or expression.
PackageCopyrightText: NOASSERTION
PackageSummary: Bash tab completion for argparse
-ExternalRef: PACKAGE_MANAGER purl pkg:pypi/argcomplete@3.5.1
-ExternalRef: SECURITY cpe23Type cpe:2.3:a:andrey_kislyuk:argcomplete:3.5.1:*:*:*:*:*:*:*
+ExternalRef: PACKAGE_MANAGER purl pkg:pypi/argcomplete@3.5.2
+ExternalRef: SECURITY cpe23Type cpe:2.3:a:andrey_kislyuk:argcomplete:3.5.2:*:*:*:*:*:*:*
#####
PackageName: crcmod
@@ -463,19 +464,18 @@ ExternalRef: SECURITY cpe23Type cpe:2.3:a:sybren_a._stuvel:rsa:4.7.2:*:*:*:*:*:*
PackageName: six
SPDXID: SPDXRef-28-six
-PackageVersion: 1.16.0
+PackageVersion: 1.17.0
PrimaryPackagePurpose: LIBRARY
PackageSupplier: Person: Benjamin Peterson (benjamin@python.org)
-PackageDownloadLocation: https://pypi.org/project/six/1.16.0/#files
+PackageDownloadLocation: https://pypi.org/project/six/1.17.0/#files
FilesAnalyzed: false
PackageHomePage: https://github.com/benjaminp/six
-PackageChecksum: SHA1: 65486e4383f9f411da95937451205d3c7b61b9e1
PackageLicenseDeclared: MIT
PackageLicenseConcluded: MIT
PackageCopyrightText: NOASSERTION
PackageSummary: Python 2 and 3 compatibility utilities
-ExternalRef: PACKAGE_MANAGER purl pkg:pypi/six@1.16.0
-ExternalRef: SECURITY cpe23Type cpe:2.3:a:benjamin_peterson:six:1.16.0:*:*:*:*:*:*:*
+ExternalRef: PACKAGE_MANAGER purl pkg:pypi/six@1.17.0
+ExternalRef: SECURITY cpe23Type cpe:2.3:a:benjamin_peterson:six:1.17.0:*:*:*:*:*:*:*
#####
PackageName: google-auth-httplib2
@@ -585,10 +585,10 @@ ExternalRef: SECURITY cpe23Type cpe:2.3:a:google_inc.:oauth2client:4.1.3:*:*:*:*
PackageName: pyopenssl
SPDXID: SPDXRef-35-pyopenssl
-PackageVersion: 24.3.0
+PackageVersion: 24.2.1
PrimaryPackagePurpose: LIBRARY
PackageSupplier: Organization: The pyOpenSSL developers (cryptography-dev@python.org)
-PackageDownloadLocation: https://pypi.org/project/pyopenssl/24.3.0/#files
+PackageDownloadLocation: https://pypi.org/project/pyopenssl/24.2.1/#files
FilesAnalyzed: false
PackageHomePage: https://pyopenssl.org/
PackageLicenseDeclared: NOASSERTION
@@ -596,24 +596,24 @@ PackageLicenseConcluded: Apache-2.0
PackageLicenseComments: pyopenssl declares Apache License, Version 2.0 which is not currently a valid SPDX License identifier or expression.
PackageCopyrightText: NOASSERTION
PackageSummary: Python wrapper module around the OpenSSL library
-ExternalRef: PACKAGE_MANAGER purl pkg:pypi/pyopenssl@24.3.0
-ExternalRef: SECURITY cpe23Type cpe:2.3:a:the_pyopenssl_developers:pyopenssl:24.3.0:*:*:*:*:*:*:*
+ExternalRef: PACKAGE_MANAGER purl pkg:pypi/pyopenssl@24.2.1
+ExternalRef: SECURITY cpe23Type cpe:2.3:a:the_pyopenssl_developers:pyopenssl:24.2.1:*:*:*:*:*:*:*
#####
PackageName: cryptography
SPDXID: SPDXRef-36-cryptography
-PackageVersion: 44.0.0
+PackageVersion: 43.0.3
PrimaryPackagePurpose: LIBRARY
PackageSupplier: Organization: The cryptography developers The Python Cryptographic Authority and individual contributors (cryptography-dev@python.org)
-PackageDownloadLocation: https://pypi.org/project/cryptography/44.0.0/#files
+PackageDownloadLocation: https://pypi.org/project/cryptography/43.0.3/#files
FilesAnalyzed: false
PackageHomePage: https://github.com/pyca/cryptography
PackageLicenseDeclared: Apache-2.0 OR BSD-3-Clause
PackageLicenseConcluded: Apache-2.0 OR BSD-3-Clause
PackageCopyrightText: NOASSERTION
PackageSummary: cryptography is a package which provides cryptographic recipes and primitives to Python developers.
-ExternalRef: PACKAGE_MANAGER purl pkg:pypi/cryptography@44.0.0
-ExternalRef: SECURITY cpe23Type cpe:2.3:a:the_cryptography_developers_the_python_cryptographic_authority_and_individual_contributors:cryptography:44.0.0:*:*:*:*:*:*:*
+ExternalRef: PACKAGE_MANAGER purl pkg:pypi/cryptography@43.0.3
+ExternalRef: SECURITY cpe23Type cpe:2.3:a:the_cryptography_developers_the_python_cryptographic_authority_and_individual_contributors:cryptography:43.0.3:*:*:*:*:*:*:*
#####
PackageName: cffi
@@ -786,19 +786,18 @@ ExternalRef: SECURITY cpe23Type cpe:2.3:a:julian_berman:referencing:0.35.1:*:*:*
PackageName: rpds-py
SPDXID: SPDXRef-47-rpds-py
-PackageVersion: 0.21.0
+PackageVersion: 0.22.3
PrimaryPackagePurpose: LIBRARY
PackageSupplier: Person: Julian Berman (Julian+rpds@GrayVines.com)
-PackageDownloadLocation: https://pypi.org/project/rpds-py/0.21.0/#files
+PackageDownloadLocation: https://pypi.org/project/rpds-py/0.22.3/#files
FilesAnalyzed: false
PackageHomePage: https://github.com/crate-py/rpds
-PackageChecksum: SHA1: 73581d8dfc56a24eac6ee32c83e6759b4506bb71
PackageLicenseDeclared: NOASSERTION
PackageLicenseConcluded: NOASSERTION
PackageCopyrightText: NOASSERTION
PackageSummary: Python bindings to Rust's persistent data structures (rpds)
-ExternalRef: PACKAGE_MANAGER purl pkg:pypi/rpds-py@0.21.0
-ExternalRef: SECURITY cpe23Type cpe:2.3:a:julian_berman:rpds-py:0.21.0:*:*:*:*:*:*:*
+ExternalRef: PACKAGE_MANAGER purl pkg:pypi/rpds-py@0.22.3
+ExternalRef: SECURITY cpe23Type cpe:2.3:a:julian_berman:rpds-py:0.22.3:*:*:*:*:*:*:*
#####
PackageName: lib4sbom