{ "SchemaVersion": 2, "Trivy": { "Version": "0.69.3" }, "ReportID": "019d57b3-4abc-76a3-8e18-533ef4a002a1", "CreatedAt": "2026-04-04T08:54:21.116436306Z", "ArtifactName": "sboms/ai-containers-litellm-database-1.82.1-cyclonedx.json", "ArtifactType": "cyclonedx", "Metadata": { "OS": { "Family": "wolfi", "Name": "20230201" }, "ImageID": "sha256:9b7ea55ee78d85ffda3dc63ae41b5d92b9f62880d269b99a18c4d114f93c221a", "DiffIDs": [ "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765", "sha256:046dcc979408b392ed15eb73d03e105b1f21c9edb4bef0140b6f67020c3af36f", "sha256:06273a1fde1593ea299ad4344636055f68108990f3388a54a1170207044ba828", "sha256:0f1b615774ee2ccd9e444b41baa343957f71b583cf1c144fe15dc1d874f09b46", "sha256:0fc4214889cc0eecf9507432a147953f28aec4ad45a0516d99ebe2d3aac8c8a7", "sha256:121460d75f571088a703e4eaa9772b2955c03cb374d8595dbbf91a821d75a096", "sha256:1c2de32430e076ddbd78f498eefcf1678f1d584007214b2ad1cf42a06d005fb7", "sha256:1f7b804e2e3b2ce78f108ce6ea8e3c5c42309860a59a5342e101ba77669d8a92", "sha256:218ed9f367b2b0119616c8468e070388eca83c9423430d63a868d7eb3dc5f820", "sha256:304c62322cfddb3f96584d17a45e75f892b78d142a299c9351029c250a2e57ec", "sha256:32a6178206b8940b9bedcd623f360580fc2e96976d62e70b700581ea3edd5430", "sha256:32c2c5317cc0de9e8b16331a58c07ce45247b922843db9f1c8051235e8546db8", "sha256:41e9d0a537bb3ae303c8d8f4ddd66012cba77c78632507378ccda0cefb820a3a", "sha256:5d852388f24aa75b24f24f7e85bc2062faa0ac61ac9e530a87ab9d97ad80d9b4", "sha256:5f70bf18a086007016e948b04aed3b82103a36bea41755b6cddfaf10ace3c6ef", "sha256:5f70bf18a086007016e948b04aed3b82103a36bea41755b6cddfaf10ace3c6ef", "sha256:6562679d109c939489d457fcbd6d961c9d5f592f316cefcb2e62fa595199797a", "sha256:6da91fd6d07caf4ad56ae74cd95d5540242e9ae443c71b2f652689cd161eda87", "sha256:70991d5976e247cb33ca1923edd3f609e6c23f527dbe62b838d6a03c0bca6453", "sha256:8be6528760f32670841bb1f6b6e049fb138bdd199df3e58ae4a2974261a5a5ee", "sha256:929e73072a4d0c27c3a52c05539c004171fe0a23c50a05fe1c92e3576df7c647", "sha256:98481b16b5b7db2fe5071acddc9cb81c29411335c97e9ddeb35c7c800d9fb568", "sha256:9f3d2893d8f3fc4c7dd6c998a77da35e49ea391f6aa9ac800ad8d917cd07a9ab", "sha256:a80c931912f720d92ecc3b4d4bb757b5604caddb3a69914463a7f41e257ccbf5", "sha256:a8c12b311e298ef922aacd45a7c1a5dd32499f39387c323a6ad232e954140897", "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805", "sha256:b8195249dcd92d2c0519946f0a9f9d9ec7b88e9a19b5f83bc156103a39d5ab50", "sha256:d9e1123f044196d72c3112e39a458ed044dd7436b92e54eae163513d55546cb0", "sha256:e575889774b7c719f425b3b6ae67eeb1e4f4da5cadbb13d7cc4e498838b23722" ], "RepoDigests": [ "registry.suse.com/ai/containers/litellm-database@sha256:ec988cd02aeebe216d28ac0c3a3420a5a721ad5448aa076acda16212a9ce1ea1" ], "Reference": "registry.suse.com/ai/containers/litellm-database@sha256:ec988cd02aeebe216d28ac0c3a3420a5a721ad5448aa076acda16212a9ce1ea1" }, "Results": [ { "Target": "sboms/ai-containers-litellm-database-1.82.1-cyclonedx.json (wolfi 20230201)", "Class": "os-pkgs", "Type": "wolfi", "Packages": [ { "ID": "alsa-lib@1.2.15.3-r1", "Name": "alsa-lib", "Identifier": { "PURL": "pkg:apk/wolfi/alsa-lib@1.2.15.3-r1?arch=x86_64\u0026distro=20230201", "UID": "8a396f12356cc339", "BOMRef": "pkg:apk/wolfi/alsa-lib@1.2.15.3-r1?arch=x86_64\u0026distro=20230201" }, "Version": "1.2.15.3-r1", "Arch": "x86_64", "SrcName": "alsa-lib", "SrcVersion": "1.2.15.3-r1", "Licenses": [ "LGPL-2.1-or-later" ], "DependsOn": [ "glibc@2.43-r2", "ld-linux@2.43-r2" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "Digest": "sha1:f102fe2f70af2ef8759d1f41d418cc93b507a5c4" }, { "ID": "apk-tools@2.14.10-r10", "Name": "apk-tools", "Identifier": { "PURL": "pkg:apk/wolfi/apk-tools@2.14.10-r10?arch=x86_64\u0026distro=20230201", "UID": "d028c170687fe8e5", "BOMRef": "pkg:apk/wolfi/apk-tools@2.14.10-r10?arch=x86_64\u0026distro=20230201" }, "Version": "2.14.10-r10", "Arch": "x86_64", "SrcName": "apk-tools", "SrcVersion": "2.14.10-r10", "Licenses": [ "GPL-2.0-only" ], "DependsOn": [ "ca-certificates-bundle@20251003-r3", "glibc@2.43-r2", "ld-linux@2.43-r2", "libcrypto3@3.6.1-r2", "libssl3@3.6.1-r2", "wolfi-baselayout@20230201-r28", "zlib@1.3.2-r1" ], "Layer": { "Digest": "sha256:1d53393b78f00c417dbc484afee224f386ba037746127e62a4bc86b6ad11daa1", "DiffID": "sha256:6562679d109c939489d457fcbd6d961c9d5f592f316cefcb2e62fa595199797a" }, "Digest": "sha1:360094f42540d8f16177f251916e29619be762fe" }, { "ID": "bash@5.3-r5", "Name": "bash", "Identifier": { "PURL": "pkg:apk/wolfi/bash@5.3-r5?arch=x86_64\u0026distro=20230201", "UID": "46a85722ad0955b8", "BOMRef": "pkg:apk/wolfi/bash@5.3-r5?arch=x86_64\u0026distro=20230201" }, "Version": "5.3-r5", "Arch": "x86_64", "SrcName": "bash", "SrcVersion": "5.3-r5", "Licenses": [ "GPL-3.0-or-later" ], "DependsOn": [ "glibc@2.43-r2", "ld-linux@2.43-r2", "ncurses@6.6_p20251230-r5", "wolfi-baselayout@20230201-r28" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "Digest": "sha1:9dd00dcd7654147d2998f5b11213adb52cae5ad2" }, { "ID": "busybox@1.37.0-r54", "Name": "busybox", "Identifier": { "PURL": "pkg:apk/wolfi/busybox@1.37.0-r54?arch=x86_64\u0026distro=20230201", "UID": "3e07ee38d52bf54a", "BOMRef": "pkg:apk/wolfi/busybox@1.37.0-r54?arch=x86_64\u0026distro=20230201" }, "Version": "1.37.0-r54", "Arch": "x86_64", "SrcName": "busybox", "SrcVersion": "1.37.0-r54", "Licenses": [ "GPL-2.0-only" ], "DependsOn": [ "glibc@2.43-r2", "ld-linux@2.43-r2", "libcrypt1@2.43-r2", "wolfi-baselayout@20230201-r28" ], "Layer": { "Digest": "sha256:3f02fc482423f53d1d5bfdf6094776ebe0b7eba4617489f96d32e6c61ac92d92", "DiffID": "sha256:1f7b804e2e3b2ce78f108ce6ea8e3c5c42309860a59a5342e101ba77669d8a92" }, "Digest": "sha1:dfbfdd4815b2ce870ce5a428f10f6ad21a1f549a" }, { "ID": "c-ares@1.34.6-r0", "Name": "c-ares", "Identifier": { "PURL": "pkg:apk/wolfi/c-ares@1.34.6-r0?arch=x86_64\u0026distro=20230201", "UID": "ecab659a0575bf58", "BOMRef": "pkg:apk/wolfi/c-ares@1.34.6-r0?arch=x86_64\u0026distro=20230201" }, "Version": "1.34.6-r0", "Arch": "x86_64", "SrcName": "c-ares", "SrcVersion": "1.34.6-r0", "Licenses": [ "MIT" ], "DependsOn": [ "glibc@2.43-r2" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "Digest": "sha1:72c82e5c25bfd691982cf508bfda988bad5ced12" }, { "ID": "ca-certificates-bundle@20251003-r3", "Name": "ca-certificates-bundle", "Identifier": { "PURL": "pkg:apk/wolfi/ca-certificates-bundle@20251003-r3?arch=x86_64\u0026distro=20230201", "UID": "620a51e22b048a65", "BOMRef": "pkg:apk/wolfi/ca-certificates-bundle@20251003-r3?arch=x86_64\u0026distro=20230201" }, "Version": "20251003-r3", "Arch": "x86_64", "SrcName": "ca-certificates", "SrcVersion": "20251003-r3", "Licenses": [ "MPL-2.0", "MIT" ], "DependsOn": [ "wolfi-baselayout@20230201-r28" ], "Layer": { "Digest": "sha256:2a4da0691147ee88d0960b8ac8bda5481f91b115a20a0dcb9f30481401d91d36", "DiffID": "sha256:98481b16b5b7db2fe5071acddc9cb81c29411335c97e9ddeb35c7c800d9fb568" }, "Digest": "sha1:b8fb05eba8b52c5b8e3ae448c96ec4218e2bc447" }, { "ID": "gdbm@1.26-r2", "Name": "gdbm", "Identifier": { "PURL": "pkg:apk/wolfi/gdbm@1.26-r2?arch=x86_64\u0026distro=20230201", "UID": "72016a988c5620d3", "BOMRef": "pkg:apk/wolfi/gdbm@1.26-r2?arch=x86_64\u0026distro=20230201" }, "Version": "1.26-r2", "Arch": "x86_64", "SrcName": "gdbm", "SrcVersion": "1.26-r2", "Licenses": [ "GPL-3.0-or-later" ], "DependsOn": [ "glibc@2.43-r2", "ld-linux@2.43-r2" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "Digest": "sha1:375d22e56a0c032b92b8f3bd9eb4112e7864fb25" }, { "ID": "glibc@2.43-r2", "Name": "glibc", "Identifier": { "PURL": "pkg:apk/wolfi/glibc@2.43-r2?arch=x86_64\u0026distro=20230201", "UID": "1b0f365abb05a82c", "BOMRef": "pkg:apk/wolfi/glibc@2.43-r2?arch=x86_64\u0026distro=20230201" }, "Version": "2.43-r2", "Arch": "x86_64", "SrcName": "glibc", "SrcVersion": "2.43-r2", "Licenses": [ "LGPL-2.1-or-later" ], "DependsOn": [ "glibc-locale-posix@2.43-r2", "ld-linux@2.43-r2", "libgcc@15.2.0-r10", "wolfi-baselayout@20230201-r28" ], "Layer": { "Digest": "sha256:ffdea549da14a0907a605f520d5d7d74c27b4113af015d68d9bb498f02602701", "DiffID": "sha256:1c2de32430e076ddbd78f498eefcf1678f1d584007214b2ad1cf42a06d005fb7" }, "Digest": "sha1:0a86f790ec5a4d3441a3883604e4a6903ac3d155" }, { "ID": "glibc-locale-posix@2.43-r2", "Name": "glibc-locale-posix", "Identifier": { "PURL": "pkg:apk/wolfi/glibc-locale-posix@2.43-r2?arch=x86_64\u0026distro=20230201", "UID": "de4bfc79c18bed05", "BOMRef": "pkg:apk/wolfi/glibc-locale-posix@2.43-r2?arch=x86_64\u0026distro=20230201" }, "Version": "2.43-r2", "Arch": "x86_64", "SrcName": "glibc", "SrcVersion": "2.43-r2", "Licenses": [ "LGPL-2.1-or-later" ], "DependsOn": [ "wolfi-baselayout@20230201-r28" ], "Layer": { "Digest": "sha256:ffdea549da14a0907a605f520d5d7d74c27b4113af015d68d9bb498f02602701", "DiffID": "sha256:1c2de32430e076ddbd78f498eefcf1678f1d584007214b2ad1cf42a06d005fb7" }, "Digest": "sha1:c189d222e529ba871b25d81b5bb5c83db53a24ac" }, { "ID": "icu78-data-full@78.2-r0", "Name": "icu78-data-full", "Identifier": { "PURL": "pkg:apk/wolfi/icu78-data-full@78.2-r0?arch=x86_64\u0026distro=20230201", "UID": "72c3ec267fd92099", "BOMRef": "pkg:apk/wolfi/icu78-data-full@78.2-r0?arch=x86_64\u0026distro=20230201" }, "Version": "78.2-r0", "Arch": "x86_64", "SrcName": "icu", "SrcVersion": "78.2-r0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "Digest": "sha1:e615eeade973d33e6d30bca1bcb08383dec2c505" }, { "ID": "ld-linux@2.43-r2", "Name": "ld-linux", "Identifier": { "PURL": "pkg:apk/wolfi/ld-linux@2.43-r2?arch=x86_64\u0026distro=20230201", "UID": "5d95e150843b6e9b", "BOMRef": "pkg:apk/wolfi/ld-linux@2.43-r2?arch=x86_64\u0026distro=20230201" }, "Version": "2.43-r2", "Arch": "x86_64", "SrcName": "glibc", "SrcVersion": "2.43-r2", "Licenses": [ "LGPL-2.1-or-later" ], "DependsOn": [ "glibc@2.43-r2", "wolfi-baselayout@20230201-r28" ], "Layer": { "Digest": "sha256:ffdea549da14a0907a605f520d5d7d74c27b4113af015d68d9bb498f02602701", "DiffID": "sha256:1c2de32430e076ddbd78f498eefcf1678f1d584007214b2ad1cf42a06d005fb7" }, "Digest": "sha1:11808daa25be322e3b534fe454b184d4553168c6" }, { "ID": "libbrotlicommon1@1.2.0-r1", "Name": "libbrotlicommon1", "Identifier": { "PURL": "pkg:apk/wolfi/libbrotlicommon1@1.2.0-r1?arch=x86_64\u0026distro=20230201", "UID": "cd0e94b8cafb326b", "BOMRef": "pkg:apk/wolfi/libbrotlicommon1@1.2.0-r1?arch=x86_64\u0026distro=20230201" }, "Version": "1.2.0-r1", "Arch": "x86_64", "SrcName": "brotli", "SrcVersion": "1.2.0-r1", "Licenses": [ "MIT" ], "DependsOn": [ "glibc@2.43-r2" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "Digest": "sha1:f16ef9c593de91cc6945073b4636aeeda0c80a0e" }, { "ID": "libbrotlidec1@1.2.0-r1", "Name": "libbrotlidec1", "Identifier": { "PURL": "pkg:apk/wolfi/libbrotlidec1@1.2.0-r1?arch=x86_64\u0026distro=20230201", "UID": "d16284bde7c5d4d6", "BOMRef": "pkg:apk/wolfi/libbrotlidec1@1.2.0-r1?arch=x86_64\u0026distro=20230201" }, "Version": "1.2.0-r1", "Arch": "x86_64", "SrcName": "brotli", "SrcVersion": "1.2.0-r1", "Licenses": [ "MIT" ], "DependsOn": [ "glibc@2.43-r2", "libbrotlicommon1@1.2.0-r1" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "Digest": "sha1:b98182b5ebf03788a5dfd808af6e2d3eeb4ff13c" }, { "ID": "libbrotlienc1@1.2.0-r1", "Name": "libbrotlienc1", "Identifier": { "PURL": "pkg:apk/wolfi/libbrotlienc1@1.2.0-r1?arch=x86_64\u0026distro=20230201", "UID": "7afe9cf3179416fa", "BOMRef": "pkg:apk/wolfi/libbrotlienc1@1.2.0-r1?arch=x86_64\u0026distro=20230201" }, "Version": "1.2.0-r1", "Arch": "x86_64", "SrcName": "brotli", "SrcVersion": "1.2.0-r1", "Licenses": [ "MIT" ], "DependsOn": [ "glibc@2.43-r2", "libbrotlicommon1@1.2.0-r1" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "Digest": "sha1:da1a062cc901589428b8d8fc3daa83a23f8cb929" }, { "ID": "libbz2-1@1.0.8-r22", "Name": "libbz2-1", "Identifier": { "PURL": "pkg:apk/wolfi/libbz2-1@1.0.8-r22?arch=x86_64\u0026distro=20230201", "UID": "62441a29be4282dc", "BOMRef": "pkg:apk/wolfi/libbz2-1@1.0.8-r22?arch=x86_64\u0026distro=20230201" }, "Version": "1.0.8-r22", "Arch": "x86_64", "SrcName": "bzip2", "SrcVersion": "1.0.8-r22", "Licenses": [ "MPL-2.0", "MIT" ], "DependsOn": [ "glibc@2.43-r2" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "Digest": "sha1:7881510d91ca841ea9441e08e4a352199b87ff65" }, { "ID": "libcrypt1@2.43-r2", "Name": "libcrypt1", "Identifier": { "PURL": "pkg:apk/wolfi/libcrypt1@2.43-r2?arch=x86_64\u0026distro=20230201", "UID": "af184fa48a83ce11", "BOMRef": "pkg:apk/wolfi/libcrypt1@2.43-r2?arch=x86_64\u0026distro=20230201" }, "Version": "2.43-r2", "Arch": "x86_64", "SrcName": "glibc", "SrcVersion": "2.43-r2", "Licenses": [ "LGPL-2.1-or-later" ], "DependsOn": [ "glibc@2.43-r2", "libxcrypt@4.5.2-r2", "wolfi-baselayout@20230201-r28" ], "Layer": { "Digest": "sha256:ffdea549da14a0907a605f520d5d7d74c27b4113af015d68d9bb498f02602701", "DiffID": "sha256:1c2de32430e076ddbd78f498eefcf1678f1d584007214b2ad1cf42a06d005fb7" }, "Digest": "sha1:adc48890987f5afe7eebce11da5ccba30f21feb1" }, { "ID": "libcrypto3@3.6.1-r2", "Name": "libcrypto3", "Identifier": { "PURL": "pkg:apk/wolfi/libcrypto3@3.6.1-r2?arch=x86_64\u0026distro=20230201", "UID": "885ab4fa55c14236", "BOMRef": "pkg:apk/wolfi/libcrypto3@3.6.1-r2?arch=x86_64\u0026distro=20230201" }, "Version": "3.6.1-r2", "Arch": "x86_64", "SrcName": "openssl", "SrcVersion": "3.6.1-r2", "Licenses": [ "Apache-2.0" ], "DependsOn": [ "glibc@2.43-r2" ], "Layer": { "Digest": "sha256:8b7b5281edc4c60abdd5b11639fc31a70145a71e9159adfb065613716727dcf9", "DiffID": "sha256:a80c931912f720d92ecc3b4d4bb757b5604caddb3a69914463a7f41e257ccbf5" }, "Digest": "sha1:fae7c32c54054adcdeb4ce2c4f7b767dd662a5c3" }, { "ID": "libexpat1@2.7.4-r2", "Name": "libexpat1", "Identifier": { "PURL": "pkg:apk/wolfi/libexpat1@2.7.4-r2?arch=x86_64\u0026distro=20230201", "UID": "c71179d36568b95d", "BOMRef": "pkg:apk/wolfi/libexpat1@2.7.4-r2?arch=x86_64\u0026distro=20230201" }, "Version": "2.7.4-r2", "Arch": "x86_64", "SrcName": "expat", "SrcVersion": "2.7.4-r2", "Licenses": [ "MIT" ], "DependsOn": [ "glibc@2.43-r2" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "Digest": "sha1:849cb39cdc5ed2787e76c01f4925e82ad48a5651" }, { "ID": "libffi@3.5.2-r1", "Name": "libffi", "Identifier": { "PURL": "pkg:apk/wolfi/libffi@3.5.2-r1?arch=x86_64\u0026distro=20230201", "UID": "e353329c212a8dbf", "BOMRef": "pkg:apk/wolfi/libffi@3.5.2-r1?arch=x86_64\u0026distro=20230201" }, "Version": "3.5.2-r1", "Arch": "x86_64", "SrcName": "libffi", "SrcVersion": "3.5.2-r1", "Licenses": [ "MIT" ], "DependsOn": [ "glibc@2.43-r2" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "Digest": "sha1:ce40e7d1f8951ac77983c4e263e2d7b04b194c17" }, { "ID": "libflac@1.4.3-r5", "Name": "libflac", "Identifier": { "PURL": "pkg:apk/wolfi/libflac@1.4.3-r5?arch=x86_64\u0026distro=20230201", "UID": "e57841d89f60a81f", "BOMRef": "pkg:apk/wolfi/libflac@1.4.3-r5?arch=x86_64\u0026distro=20230201" }, "Version": "1.4.3-r5", "Arch": "x86_64", "SrcName": "flac", "SrcVersion": "1.4.3-r5", "Licenses": [ "BSD-3-Clause", "GPL-2.0-or-later" ], "DependsOn": [ "glibc@2.43-r2", "libogg@1.3.6-r4" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "Digest": "sha1:9f85a0f6948efb6edb5a9108403306d5c5eefe79" }, { "ID": "libgcc@15.2.0-r10", "Name": "libgcc", "Identifier": { "PURL": "pkg:apk/wolfi/libgcc@15.2.0-r10?arch=x86_64\u0026distro=20230201", "UID": "915eec883d55d9fe", "BOMRef": "pkg:apk/wolfi/libgcc@15.2.0-r10?arch=x86_64\u0026distro=20230201" }, "Version": "15.2.0-r10", "Arch": "x86_64", "SrcName": "gcc", "SrcVersion": "15.2.0-r10", "Licenses": [ "GPL-3.0-or-later WITH GCC-exception-3.1" ], "DependsOn": [ "glibc@2.43-r2", "ld-linux@2.43-r2" ], "Layer": { "Digest": "sha256:9210304cdc542d45dd63cff03098c15d19d373284256be85a6b1d95cf2f95bf9", "DiffID": "sha256:121460d75f571088a703e4eaa9772b2955c03cb374d8595dbbf91a821d75a096" }, "Digest": "sha1:6dd85ff9ea08c2f211296a9b622fff53ac7e8fe0" }, { "ID": "libicu78@78.2-r0", "Name": "libicu78", "Identifier": { "PURL": "pkg:apk/wolfi/libicu78@78.2-r0?arch=x86_64\u0026distro=20230201", "UID": "b91d5923e38fbb49", "BOMRef": "pkg:apk/wolfi/libicu78@78.2-r0?arch=x86_64\u0026distro=20230201" }, "Version": "78.2-r0", "Arch": "x86_64", "SrcName": "icu", "SrcVersion": "78.2-r0", "Licenses": [ "MIT" ], "DependsOn": [ "glibc@2.43-r2", "icu78-data-full@78.2-r0", "ld-linux@2.43-r2", "libgcc@15.2.0-r10", "libstdc++@15.2.0-r10" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "Digest": "sha1:7afb4e60da61c174faf3cde4b2919c67653c8630" }, { "ID": "libnghttp2-14@1.68.0-r1", "Name": "libnghttp2-14", "Identifier": { "PURL": "pkg:apk/wolfi/libnghttp2-14@1.68.0-r1?arch=x86_64\u0026distro=20230201", "UID": "433e5b08093b07de", "BOMRef": "pkg:apk/wolfi/libnghttp2-14@1.68.0-r1?arch=x86_64\u0026distro=20230201" }, "Version": "1.68.0-r1", "Arch": "x86_64", "SrcName": "nghttp2", "SrcVersion": "1.68.0-r1", "Licenses": [ "MIT" ], "DependsOn": [ "glibc@2.43-r2" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "Digest": "sha1:51db5560582e98f33ac7d85cce1255191c92a3f3" }, { "ID": "libogg@1.3.6-r4", "Name": "libogg", "Identifier": { "PURL": "pkg:apk/wolfi/libogg@1.3.6-r4?arch=x86_64\u0026distro=20230201", "UID": "6313d3a31f1d6f52", "BOMRef": "pkg:apk/wolfi/libogg@1.3.6-r4?arch=x86_64\u0026distro=20230201" }, "Version": "1.3.6-r4", "Arch": "x86_64", "SrcName": "libogg", "SrcVersion": "1.3.6-r4", "Licenses": [ "BSD-3-Clause" ], "DependsOn": [ "glibc@2.43-r2" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "Digest": "sha1:0dbd8dcd6570f3107271a4efc4d660976255df06" }, { "ID": "libsndfile@1.2.2-r2", "Name": "libsndfile", "Identifier": { "PURL": "pkg:apk/wolfi/libsndfile@1.2.2-r2?arch=x86_64\u0026distro=20230201", "UID": "a9421a0ef27adfbd", "BOMRef": "pkg:apk/wolfi/libsndfile@1.2.2-r2?arch=x86_64\u0026distro=20230201" }, "Version": "1.2.2-r2", "Arch": "x86_64", "SrcName": "libsndfile", "SrcVersion": "1.2.2-r2", "Licenses": [ "LGPL-2.1-or-later" ], "DependsOn": [ "alsa-lib@1.2.15.3-r1", "glibc@2.43-r2", "ld-linux@2.43-r2", "libflac@1.4.3-r5", "libogg@1.3.6-r4", "libvorbis@1.3.7-r8", "opus@1.6.1-r2" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "Digest": "sha1:222cf6c756b25d6aaf54884c124f7291afbb16ad" }, { "ID": "libssl3@3.6.1-r2", "Name": "libssl3", "Identifier": { "PURL": "pkg:apk/wolfi/libssl3@3.6.1-r2?arch=x86_64\u0026distro=20230201", "UID": "74f6bd603c6e0818", "BOMRef": "pkg:apk/wolfi/libssl3@3.6.1-r2?arch=x86_64\u0026distro=20230201" }, "Version": "3.6.1-r2", "Arch": "x86_64", "SrcName": "openssl", "SrcVersion": "3.6.1-r2", "Licenses": [ "Apache-2.0" ], "DependsOn": [ "glibc@2.43-r2", "libcrypto3@3.6.1-r2" ], "Layer": { "Digest": "sha256:8b7b5281edc4c60abdd5b11639fc31a70145a71e9159adfb065613716727dcf9", "DiffID": "sha256:a80c931912f720d92ecc3b4d4bb757b5604caddb3a69914463a7f41e257ccbf5" }, "Digest": "sha1:13c4a5220abf531fa3fc402f09f5eab38af79f17" }, { "ID": "libstdc++@15.2.0-r10", "Name": "libstdc++", "Identifier": { "PURL": "pkg:apk/wolfi/libstdc%2B%2B@15.2.0-r10?arch=x86_64\u0026distro=20230201", "UID": "5337b943dba8bb72", "BOMRef": "pkg:apk/wolfi/libstdc%2B%2B@15.2.0-r10?arch=x86_64\u0026distro=20230201" }, "Version": "15.2.0-r10", "Arch": "x86_64", "SrcName": "gcc", "SrcVersion": "15.2.0-r10", "Licenses": [ "GPL-3.0-or-later WITH GCC-exception-3.1" ], "DependsOn": [ "glibc@2.43-r2", "ld-linux@2.43-r2", "libgcc@15.2.0-r10" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "Digest": "sha1:053463c1fb9f4243c45322def37779233a5cc5a3" }, { "ID": "libuuid@2.41.3-r3", "Name": "libuuid", "Identifier": { "PURL": "pkg:apk/wolfi/libuuid@2.41.3-r3?arch=x86_64\u0026distro=20230201", "UID": "328fd986c46fd91f", "BOMRef": "pkg:apk/wolfi/libuuid@2.41.3-r3?arch=x86_64\u0026distro=20230201" }, "Version": "2.41.3-r3", "Arch": "x86_64", "SrcName": "util-linux", "SrcVersion": "2.41.3-r3", "Licenses": [ "GPL-3.0-or-later", "GPL-2.0-or-later", "GPL-2.0-only", "GPL-1.0-only", "LGPL-2.1-or-later", "BSD-1-Clause", "BSD-3-Clause", "BSD-4-Clause-UC", "MIT", "CC-PDDC" ], "DependsOn": [ "glibc@2.43-r2", "wolfi-baselayout@20230201-r28" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "Digest": "sha1:578db12606c45c43abe623521fe7c1d8692eeb3a" }, { "ID": "libuv@1.52.0-r0", "Name": "libuv", "Identifier": { "PURL": "pkg:apk/wolfi/libuv@1.52.0-r0?arch=x86_64\u0026distro=20230201", "UID": "fc3d4554e0013f57", "BOMRef": "pkg:apk/wolfi/libuv@1.52.0-r0?arch=x86_64\u0026distro=20230201" }, "Version": "1.52.0-r0", "Arch": "x86_64", "SrcName": "libuv", "SrcVersion": "1.52.0-r0", "Licenses": [ "MIT", "ISC" ], "DependsOn": [ "glibc@2.43-r2" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "Digest": "sha1:c6b05df19485549b3c0a54e97b7a079dc92ee909" }, { "ID": "libvorbis@1.3.7-r8", "Name": "libvorbis", "Identifier": { "PURL": "pkg:apk/wolfi/libvorbis@1.3.7-r8?arch=x86_64\u0026distro=20230201", "UID": "41b2db290891b45d", "BOMRef": "pkg:apk/wolfi/libvorbis@1.3.7-r8?arch=x86_64\u0026distro=20230201" }, "Version": "1.3.7-r8", "Arch": "x86_64", "SrcName": "libvorbis", "SrcVersion": "1.3.7-r8", "Licenses": [ "BSD-3-Clause" ], "DependsOn": [ "glibc@2.43-r2", "libogg@1.3.6-r4" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "Digest": "sha1:d17dab1d553d174365351b91f109a1a8a7f993a7" }, { "ID": "libxcrypt@4.5.2-r2", "Name": "libxcrypt", "Identifier": { "PURL": "pkg:apk/wolfi/libxcrypt@4.5.2-r2?arch=x86_64\u0026distro=20230201", "UID": "fc1ad85f26b1fd3b", "BOMRef": "pkg:apk/wolfi/libxcrypt@4.5.2-r2?arch=x86_64\u0026distro=20230201" }, "Version": "4.5.2-r2", "Arch": "x86_64", "SrcName": "libxcrypt", "SrcVersion": "4.5.2-r2", "Licenses": [ "GPL-2.0-or-later", "LGPL-2.1-or-later" ], "Layer": { "Digest": "sha256:7c6e71c1fdfdf429844e25aad86441920641c0ba46466bc1d043556bfb81b24e", "DiffID": "sha256:70991d5976e247cb33ca1923edd3f609e6c23f527dbe62b838d6a03c0bca6453" }, "Digest": "sha1:1dde219a6ba81f29f519398066c7924a90e34598" }, { "ID": "mpdecimal@4.0.1-r3", "Name": "mpdecimal", "Identifier": { "PURL": "pkg:apk/wolfi/mpdecimal@4.0.1-r3?arch=x86_64\u0026distro=20230201", "UID": "e5ab8007cd285f73", "BOMRef": "pkg:apk/wolfi/mpdecimal@4.0.1-r3?arch=x86_64\u0026distro=20230201" }, "Version": "4.0.1-r3", "Arch": "x86_64", "SrcName": "mpdecimal", "SrcVersion": "4.0.1-r3", "Licenses": [ "BSD-2-Clause" ], "DependsOn": [ "glibc@2.43-r2", "ld-linux@2.43-r2", "libgcc@15.2.0-r10", "libstdc++@15.2.0-r10" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "Digest": "sha1:12885674e7ba1c71ee370a6876aedfd8c4f02ce4" }, { "ID": "ncurses@6.6_p20251230-r5", "Name": "ncurses", "Identifier": { "PURL": "pkg:apk/wolfi/ncurses@6.6_p20251230-r5?arch=x86_64\u0026distro=20230201", "UID": "74b46c06f6215fa7", "BOMRef": "pkg:apk/wolfi/ncurses@6.6_p20251230-r5?arch=x86_64\u0026distro=20230201" }, "Version": "6.6_p20251230-r5", "Arch": "x86_64", "SrcName": "ncurses", "SrcVersion": "6.6_p20251230-r5", "Licenses": [ "MIT" ], "DependsOn": [ "glibc@2.43-r2", "ld-linux@2.43-r2", "ncurses-terminfo-base@6.6_p20251230-r5" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "Digest": "sha1:3919f42a2b850509f394890d1e04dfe4fbaaf382" }, { "ID": "ncurses-terminfo-base@6.6_p20251230-r5", "Name": "ncurses-terminfo-base", "Identifier": { "PURL": "pkg:apk/wolfi/ncurses-terminfo-base@6.6_p20251230-r5?arch=x86_64\u0026distro=20230201", "UID": "66506f04d8f8d1ac", "BOMRef": "pkg:apk/wolfi/ncurses-terminfo-base@6.6_p20251230-r5?arch=x86_64\u0026distro=20230201" }, "Version": "6.6_p20251230-r5", "Arch": "x86_64", "SrcName": "ncurses", "SrcVersion": "6.6_p20251230-r5", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "Digest": "sha1:33fc1714782e8ddcff1c3f8a24e2f72216771535" }, { "ID": "nodejs-25@25.8.0-r0", "Name": "nodejs-25", "Identifier": { "PURL": "pkg:apk/wolfi/nodejs-25@25.8.0-r0?arch=x86_64\u0026distro=20230201", "UID": "638e4536df9fc36c", "BOMRef": "pkg:apk/wolfi/nodejs-25@25.8.0-r0?arch=x86_64\u0026distro=20230201" }, "Version": "25.8.0-r0", "Arch": "x86_64", "SrcName": "nodejs-25", "SrcVersion": "25.8.0-r0", "Licenses": [ "MIT" ], "DependsOn": [ "c-ares@1.34.6-r0", "glibc@2.43-r2", "ld-linux@2.43-r2", "libbrotlidec1@1.2.0-r1", "libbrotlienc1@1.2.0-r1", "libcrypto3@3.6.1-r2", "libgcc@15.2.0-r10", "libicu78@78.2-r0", "libnghttp2-14@1.68.0-r1", "libssl3@3.6.1-r2", "libstdc++@15.2.0-r10", "libuv@1.52.0-r0", "zlib@1.3.2-r1" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "Digest": "sha1:c17c7ff8aeb8455ff63cc2e62865bdd5ef78539c" }, { "ID": "npm@11.11.0-r1", "Name": "npm", "Identifier": { "PURL": "pkg:apk/wolfi/npm@11.11.0-r1?arch=x86_64\u0026distro=20230201", "UID": "4b0991e1c57af096", "BOMRef": "pkg:apk/wolfi/npm@11.11.0-r1?arch=x86_64\u0026distro=20230201" }, "Version": "11.11.0-r1", "Arch": "x86_64", "SrcName": "npm", "SrcVersion": "11.11.0-r1", "Licenses": [ "Artistic-2.0" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "Digest": "sha1:e4417ee7585a65e713012d3b5f6645a0cc6cd0c8" }, { "ID": "openssl@3.6.1-r2", "Name": "openssl", "Identifier": { "PURL": "pkg:apk/wolfi/openssl@3.6.1-r2?arch=x86_64\u0026distro=20230201", "UID": "fb57e01f6d05abbb", "BOMRef": "pkg:apk/wolfi/openssl@3.6.1-r2?arch=x86_64\u0026distro=20230201" }, "Version": "3.6.1-r2", "Arch": "x86_64", "SrcName": "openssl", "SrcVersion": "3.6.1-r2", "Licenses": [ "Apache-2.0" ], "DependsOn": [ "glibc@2.43-r2", "ld-linux@2.43-r2", "libcrypto3@3.6.1-r2", "libssl3@3.6.1-r2" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "Digest": "sha1:c170cc7d5670e89a454b6a2b96263fd6b1891160" }, { "ID": "opus@1.6.1-r2", "Name": "opus", "Identifier": { "PURL": "pkg:apk/wolfi/opus@1.6.1-r2?arch=x86_64\u0026distro=20230201", "UID": "ddf166e73faf546b", "BOMRef": "pkg:apk/wolfi/opus@1.6.1-r2?arch=x86_64\u0026distro=20230201" }, "Version": "1.6.1-r2", "Arch": "x86_64", "SrcName": "opus", "SrcVersion": "1.6.1-r2", "Licenses": [ "BSD-3-Clause" ], "DependsOn": [ "glibc@2.43-r2" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "Digest": "sha1:57086a6857285bc297d00af6e2eb5bfa53c9eed5" }, { "ID": "py3-pip-wheel@26.0.1-r1", "Name": "py3-pip-wheel", "Identifier": { "PURL": "pkg:apk/wolfi/py3-pip-wheel@26.0.1-r1?arch=x86_64\u0026distro=20230201", "UID": "19f23860421ca8e7", "BOMRef": "pkg:apk/wolfi/py3-pip-wheel@26.0.1-r1?arch=x86_64\u0026distro=20230201" }, "Version": "26.0.1-r1", "Arch": "x86_64", "SrcName": "py3-pip", "SrcVersion": "26.0.1-r1", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "Digest": "sha1:fbfdeab3dd1ad8b3e5d16df7716d10870f3c8ec9" }, { "ID": "py3.13-pip@26.0.1-r1", "Name": "py3.13-pip", "Identifier": { "PURL": "pkg:apk/wolfi/py3.13-pip@26.0.1-r1?arch=x86_64\u0026distro=20230201", "UID": "7698a327966676bd", "BOMRef": "pkg:apk/wolfi/py3.13-pip@26.0.1-r1?arch=x86_64\u0026distro=20230201" }, "Version": "26.0.1-r1", "Arch": "x86_64", "SrcName": "py3-pip", "SrcVersion": "26.0.1-r1", "Licenses": [ "MIT" ], "DependsOn": [ "py3.13-pip-base@26.0.1-r1", "python-3.13-base@3.13.12-r2" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "Digest": "sha1:61443d427de3418ccb77b5972b1b807617221297" }, { "ID": "py3.13-pip-base@26.0.1-r1", "Name": "py3.13-pip-base", "Identifier": { "PURL": "pkg:apk/wolfi/py3.13-pip-base@26.0.1-r1?arch=x86_64\u0026distro=20230201", "UID": "e97f04800cccb99b", "BOMRef": "pkg:apk/wolfi/py3.13-pip-base@26.0.1-r1?arch=x86_64\u0026distro=20230201" }, "Version": "26.0.1-r1", "Arch": "x86_64", "SrcName": "py3-pip", "SrcVersion": "26.0.1-r1", "Licenses": [ "MIT" ], "DependsOn": [ "py3.13-setuptools@82.0.0-r1", "python-3.13-base@3.13.12-r2" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "Digest": "sha1:7c987010127797c7cb69fd7d9ffd5864682e6c6f" }, { "ID": "py3.13-setuptools@82.0.0-r1", "Name": "py3.13-setuptools", "Identifier": { "PURL": "pkg:apk/wolfi/py3.13-setuptools@82.0.0-r1?arch=x86_64\u0026distro=20230201", "UID": "1befdf4cc0debfaf", "BOMRef": "pkg:apk/wolfi/py3.13-setuptools@82.0.0-r1?arch=x86_64\u0026distro=20230201" }, "Version": "82.0.0-r1", "Arch": "x86_64", "SrcName": "py3-setuptools", "SrcVersion": "82.0.0-r1", "Licenses": [ "MIT" ], "DependsOn": [ "python-3.13-base@3.13.12-r2" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "Digest": "sha1:fa47969b9522e3440e44ac0eb642d810041bf4b2" }, { "ID": "python-3.13@3.13.12-r2", "Name": "python-3.13", "Identifier": { "PURL": "pkg:apk/wolfi/python-3.13@3.13.12-r2?arch=x86_64\u0026distro=20230201", "UID": "483496ae153887a4", "BOMRef": "pkg:apk/wolfi/python-3.13@3.13.12-r2?arch=x86_64\u0026distro=20230201" }, "Version": "3.13.12-r2", "Arch": "x86_64", "SrcName": "python-3.13", "SrcVersion": "3.13.12-r2", "Licenses": [ "PSF-2.0" ], "DependsOn": [ "python-3.13-base@3.13.12-r2" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "Digest": "sha1:bd8c345b6ff8679113f29d032fec2c79acd2048e" }, { "ID": "python-3.13-base@3.13.12-r2", "Name": "python-3.13-base", "Identifier": { "PURL": "pkg:apk/wolfi/python-3.13-base@3.13.12-r2?arch=x86_64\u0026distro=20230201", "UID": "e8816ca5031e680b", "BOMRef": "pkg:apk/wolfi/python-3.13-base@3.13.12-r2?arch=x86_64\u0026distro=20230201" }, "Version": "3.13.12-r2", "Arch": "x86_64", "SrcName": "python-3.13", "SrcVersion": "3.13.12-r2", "Licenses": [ "PSF-2.0" ], "DependsOn": [ "gdbm@1.26-r2", "glibc@2.43-r2", "ld-linux@2.43-r2", "libbz2-1@1.0.8-r22", "libcrypto3@3.6.1-r2", "libexpat1@2.7.4-r2", "libffi@3.5.2-r1", "libssl3@3.6.1-r2", "libuuid@2.41.3-r3", "mpdecimal@4.0.1-r3", "ncurses@6.6_p20251230-r5", "py3-pip-wheel@26.0.1-r1", "readline@8.3-r1", "sqlite-libs@3.51.1-r0", "xz@5.8.2-r1", "zlib@1.3.2-r1" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "Digest": "sha1:55de8bf1ab68768c7caa1a9b5d2c82075ebba736" }, { "ID": "readline@8.3-r1", "Name": "readline", "Identifier": { "PURL": "pkg:apk/wolfi/readline@8.3-r1?arch=x86_64\u0026distro=20230201", "UID": "9dd6cde12a075775", "BOMRef": "pkg:apk/wolfi/readline@8.3-r1?arch=x86_64\u0026distro=20230201" }, "Version": "8.3-r1", "Arch": "x86_64", "SrcName": "readline", "SrcVersion": "8.3-r1", "Licenses": [ "GPL-3.0-or-later" ], "DependsOn": [ "glibc@2.43-r2", "ncurses@6.6_p20251230-r5" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "Digest": "sha1:bcbe178d5b1edd94ce7b1cb8465e1cda8964a3db" }, { "ID": "sqlite-libs@3.51.1-r0", "Name": "sqlite-libs", "Identifier": { "PURL": "pkg:apk/wolfi/sqlite-libs@3.51.1-r0?arch=x86_64\u0026distro=20230201", "UID": "5031ab3395fb5e8f", "BOMRef": "pkg:apk/wolfi/sqlite-libs@3.51.1-r0?arch=x86_64\u0026distro=20230201" }, "Version": "3.51.1-r0", "Arch": "x86_64", "SrcName": "sqlite", "SrcVersion": "3.51.1-r0", "Licenses": [ "blessing" ], "DependsOn": [ "glibc@2.43-r2" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "Digest": "sha1:d0361a0bc6717f9262dbf71e350da24cd1987755" }, { "ID": "supervisor@4.3.0-r3", "Name": "supervisor", "Identifier": { "PURL": "pkg:apk/wolfi/supervisor@4.3.0-r3?arch=x86_64\u0026distro=20230201", "UID": "6b8dcd417e682efd", "BOMRef": "pkg:apk/wolfi/supervisor@4.3.0-r3?arch=x86_64\u0026distro=20230201" }, "Version": "4.3.0-r3", "Arch": "x86_64", "SrcName": "supervisor", "SrcVersion": "4.3.0-r3", "Licenses": [ "BSD-3-Clause" ], "DependsOn": [ "py3.13-setuptools@82.0.0-r1", "python-3.13-base@3.13.12-r2", "supervisor-config@4.3.0-r3" ], "Layer": { "Digest": "sha256:a5d9d5798608026cab312458dfeb821b930c575f0fc8c4ab2b3ed33d83e8af50", "DiffID": "sha256:929e73072a4d0c27c3a52c05539c004171fe0a23c50a05fe1c92e3576df7c647" }, "Digest": "sha1:06f921a990424084af778d966fcf328d7ed3b7c0" }, { "ID": "supervisor-config@4.3.0-r3", "Name": "supervisor-config", "Identifier": { "PURL": "pkg:apk/wolfi/supervisor-config@4.3.0-r3?arch=x86_64\u0026distro=20230201", "UID": "aae3d6f1c6c6ae07", "BOMRef": "pkg:apk/wolfi/supervisor-config@4.3.0-r3?arch=x86_64\u0026distro=20230201" }, "Version": "4.3.0-r3", "Arch": "x86_64", "SrcName": "supervisor", "SrcVersion": "4.3.0-r3", "Licenses": [ "BSD-3-Clause" ], "Layer": { "Digest": "sha256:a5d9d5798608026cab312458dfeb821b930c575f0fc8c4ab2b3ed33d83e8af50", "DiffID": "sha256:929e73072a4d0c27c3a52c05539c004171fe0a23c50a05fe1c92e3576df7c647" }, "Digest": "sha1:82a374594443e72efca5b8429cd4b065f3caae87" }, { "ID": "tzdata@2026a-r0", "Name": "tzdata", "Identifier": { "PURL": "pkg:apk/wolfi/tzdata@2026a-r0?arch=x86_64\u0026distro=20230201", "UID": "d30d83878e2825e4", "BOMRef": "pkg:apk/wolfi/tzdata@2026a-r0?arch=x86_64\u0026distro=20230201" }, "Version": "2026a-r0", "Arch": "x86_64", "SrcName": "tzdata", "SrcVersion": "2026a-r0", "Licenses": [ "CC-PDDC" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "Digest": "sha1:e56ed3f59330127259cece2ae5c11363744592be" }, { "ID": "wolfi-base@1-r7", "Name": "wolfi-base", "Identifier": { "PURL": "pkg:apk/wolfi/wolfi-base@1-r7?arch=x86_64\u0026distro=20230201", "UID": "6f8cf0f66597c990", "BOMRef": "pkg:apk/wolfi/wolfi-base@1-r7?arch=x86_64\u0026distro=20230201" }, "Version": "1-r7", "Arch": "x86_64", "SrcName": "wolfi-base", "SrcVersion": "1-r7", "Licenses": [ "MIT" ], "DependsOn": [ "apk-tools@2.14.10-r10", "busybox@1.37.0-r54", "wolfi-keys@1-r13" ], "Layer": { "Digest": "sha256:cdea145aa11554331de7d95b1834fd4f2a784fa573086475ff0d7c86d3abd020", "DiffID": "sha256:b8195249dcd92d2c0519946f0a9f9d9ec7b88e9a19b5f83bc156103a39d5ab50" }, "Digest": "sha1:e82b5ced3be890350f3a2fb44e41c27929abca1d" }, { "ID": "wolfi-baselayout@20230201-r28", "Name": "wolfi-baselayout", "Identifier": { "PURL": "pkg:apk/wolfi/wolfi-baselayout@20230201-r28?arch=x86_64\u0026distro=20230201", "UID": "146f2e84f6dc8a81", "BOMRef": "pkg:apk/wolfi/wolfi-baselayout@20230201-r28?arch=x86_64\u0026distro=20230201" }, "Version": "20230201-r28", "Arch": "x86_64", "SrcName": "wolfi-baselayout", "SrcVersion": "20230201-r28", "Licenses": [ "MIT" ], "DependsOn": [ "ca-certificates-bundle@20251003-r3" ], "Layer": { "Digest": "sha256:54bfed0539e5fed0528c4a701b804fc053fa1e08d40f64d8ad3e8e3fa11b2545", "DiffID": "sha256:32c2c5317cc0de9e8b16331a58c07ce45247b922843db9f1c8051235e8546db8" }, "Digest": "sha1:9b015b9b45116670d84ae23c43608e3eee9120a3" }, { "ID": "wolfi-keys@1-r13", "Name": "wolfi-keys", "Identifier": { "PURL": "pkg:apk/wolfi/wolfi-keys@1-r13?arch=x86_64\u0026distro=20230201", "UID": "6d83bacbf2f192de", "BOMRef": "pkg:apk/wolfi/wolfi-keys@1-r13?arch=x86_64\u0026distro=20230201" }, "Version": "1-r13", "Arch": "x86_64", "SrcName": "wolfi-keys", "SrcVersion": "1-r13", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:cdea145aa11554331de7d95b1834fd4f2a784fa573086475ff0d7c86d3abd020", "DiffID": "sha256:b8195249dcd92d2c0519946f0a9f9d9ec7b88e9a19b5f83bc156103a39d5ab50" }, "Digest": "sha1:c9e9f5b4a87785ae4aae9539e439d85b22c7390d" }, { "ID": "xz@5.8.2-r1", "Name": "xz", "Identifier": { "PURL": "pkg:apk/wolfi/xz@5.8.2-r1?arch=x86_64\u0026distro=20230201", "UID": "a0d33c15e4764e0", "BOMRef": "pkg:apk/wolfi/xz@5.8.2-r1?arch=x86_64\u0026distro=20230201" }, "Version": "5.8.2-r1", "Arch": "x86_64", "SrcName": "xz", "SrcVersion": "5.8.2-r1", "Licenses": [ "GPL-3.0-or-later" ], "DependsOn": [ "glibc@2.43-r2", "ld-linux@2.43-r2" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "Digest": "sha1:a62ac8ca6b6fce65347163e705059c140c679433" }, { "ID": "zlib@1.3.2-r1", "Name": "zlib", "Identifier": { "PURL": "pkg:apk/wolfi/zlib@1.3.2-r1?arch=x86_64\u0026distro=20230201", "UID": "2ec1720f42546020", "BOMRef": "pkg:apk/wolfi/zlib@1.3.2-r1?arch=x86_64\u0026distro=20230201" }, "Version": "1.3.2-r1", "Arch": "x86_64", "SrcName": "zlib", "SrcVersion": "1.3.2-r1", "Licenses": [ "MPL-2.0", "MIT" ], "DependsOn": [ "glibc@2.43-r2", "wolfi-baselayout@20230201-r28" ], "Layer": { "Digest": "sha256:3737345308ab6ef2397edb6064c974cefbb54eeac105eaccf8fbc9045eecc04d", "DiffID": "sha256:d9e1123f044196d72c3112e39a458ed044dd7436b92e54eae163513d55546cb0" }, "Digest": "sha1:65e605a24da1da2ee96576bf51b07c00951b30e8" } ], "Vulnerabilities": [ { "VulnerabilityID": "CVE-2026-4437", "PkgID": "glibc@2.43-r2", "PkgName": "glibc", "PkgIdentifier": { "PURL": "pkg:apk/wolfi/glibc@2.43-r2?arch=x86_64\u0026distro=20230201", "UID": "1b0f365abb05a82c", "BOMRef": "pkg:apk/wolfi/glibc@2.43-r2?arch=x86_64\u0026distro=20230201" }, "InstalledVersion": "2.43-r2", "FixedVersion": "2.43-r4", "Status": "fixed", "Layer": { "Digest": "sha256:ffdea549da14a0907a605f520d5d7d74c27b4113af015d68d9bb498f02602701", "DiffID": "sha256:1c2de32430e076ddbd78f498eefcf1678f1d584007214b2ad1cf42a06d005fb7" }, "PrimaryURL": "https://avd.aquasec.com/nvd/cve-2026-4437", "DataSource": { "ID": "wolfi", "Name": "Wolfi Secdb", "URL": "https://packages.wolfi.dev/os/security.json" }, "Fingerprint": "sha256:a3f12d97268227ddcce4cf14df3c8e1b97a3ff2c7e0277aeed6513effcf38dff", "Title": "glibc: glibc: Incorrect DNS response parsing via crafted DNS server response", "Description": "Calling gethostbyaddr or gethostbyaddr_r with a configured nsswitch.conf that specifies the library's DNS backend in the GNU C Library version 2.34 to version 2.43 could, with a crafted response from the configured DNS server, result in a violation of the DNS specification that causes the application to treat a non-answer section of the DNS response as a valid answer.", "Severity": "MEDIUM", "CweIDs": [ "CWE-125" ], "VendorSeverity": { "redhat": 2 }, "CVSS": { "redhat": { "V3Vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L", "V3Score": 6.5 } }, "References": [ "https://access.redhat.com/security/cve/CVE-2026-4437", "https://nvd.nist.gov/vuln/detail/CVE-2026-4437", "https://sourceware.org/bugzilla/show_bug.cgi?id=34014", "https://www.cve.org/CVERecord?id=CVE-2026-4437" ], "PublishedDate": "2026-03-20T20:16:49.477Z", "LastModifiedDate": "2026-03-23T16:16:51.537Z" }, { "VulnerabilityID": "CVE-2026-4438", "PkgID": "glibc@2.43-r2", "PkgName": "glibc", "PkgIdentifier": { "PURL": "pkg:apk/wolfi/glibc@2.43-r2?arch=x86_64\u0026distro=20230201", "UID": "1b0f365abb05a82c", "BOMRef": "pkg:apk/wolfi/glibc@2.43-r2?arch=x86_64\u0026distro=20230201" }, "InstalledVersion": "2.43-r2", "FixedVersion": "2.43-r4", "Status": "fixed", "Layer": { "Digest": "sha256:ffdea549da14a0907a605f520d5d7d74c27b4113af015d68d9bb498f02602701", "DiffID": "sha256:1c2de32430e076ddbd78f498eefcf1678f1d584007214b2ad1cf42a06d005fb7" }, "PrimaryURL": "https://avd.aquasec.com/nvd/cve-2026-4438", "DataSource": { "ID": "wolfi", "Name": "Wolfi Secdb", "URL": "https://packages.wolfi.dev/os/security.json" }, "Fingerprint": "sha256:7666354785417b5c6d53e1b890567abe0090ba1afbf54e3a982d32eb881af806", "Title": "glibc: glibc: Invalid DNS hostname returned via gethostbyaddr functions", "Description": "Calling gethostbyaddr or gethostbyaddr_r with a configured nsswitch.conf that specifies the library's DNS backend in the GNU C library version 2.34 to version 2.43 could result in an invalid DNS hostname being returned to the caller in violation of the DNS specification.", "Severity": "MEDIUM", "CweIDs": [ "CWE-20", "CWE-88" ], "VendorSeverity": { "redhat": 1 }, "CVSS": { "redhat": { "V3Vector": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N", "V3Score": 4 } }, "References": [ "https://access.redhat.com/security/cve/CVE-2026-4438", "https://nvd.nist.gov/vuln/detail/CVE-2026-4438", "https://sourceware.org/bugzilla/show_bug.cgi?id=34015", "https://www.cve.org/CVERecord?id=CVE-2026-4438" ], "PublishedDate": "2026-03-20T20:16:49.623Z", "LastModifiedDate": "2026-03-23T15:16:35.68Z" }, { "VulnerabilityID": "CVE-2026-4437", "PkgID": "glibc-locale-posix@2.43-r2", "PkgName": "glibc-locale-posix", "PkgIdentifier": { "PURL": "pkg:apk/wolfi/glibc-locale-posix@2.43-r2?arch=x86_64\u0026distro=20230201", "UID": "de4bfc79c18bed05", "BOMRef": "pkg:apk/wolfi/glibc-locale-posix@2.43-r2?arch=x86_64\u0026distro=20230201" }, "InstalledVersion": "2.43-r2", "FixedVersion": "2.43-r4", "Status": "fixed", "Layer": { "Digest": "sha256:ffdea549da14a0907a605f520d5d7d74c27b4113af015d68d9bb498f02602701", "DiffID": "sha256:1c2de32430e076ddbd78f498eefcf1678f1d584007214b2ad1cf42a06d005fb7" }, "PrimaryURL": "https://avd.aquasec.com/nvd/cve-2026-4437", "DataSource": { "ID": "wolfi", "Name": "Wolfi Secdb", "URL": "https://packages.wolfi.dev/os/security.json" }, "Fingerprint": "sha256:5c0a1fa38143d73b6b57514575a037398f533853c018473a6a0b7fb10a02a6df", "Title": "glibc: glibc: Incorrect DNS response parsing via crafted DNS server response", "Description": "Calling gethostbyaddr or gethostbyaddr_r with a configured nsswitch.conf that specifies the library's DNS backend in the GNU C Library version 2.34 to version 2.43 could, with a crafted response from the configured DNS server, result in a violation of the DNS specification that causes the application to treat a non-answer section of the DNS response as a valid answer.", "Severity": "MEDIUM", "CweIDs": [ "CWE-125" ], "VendorSeverity": { "redhat": 2 }, "CVSS": { "redhat": { "V3Vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L", "V3Score": 6.5 } }, "References": [ "https://access.redhat.com/security/cve/CVE-2026-4437", "https://nvd.nist.gov/vuln/detail/CVE-2026-4437", "https://sourceware.org/bugzilla/show_bug.cgi?id=34014", "https://www.cve.org/CVERecord?id=CVE-2026-4437" ], "PublishedDate": "2026-03-20T20:16:49.477Z", "LastModifiedDate": "2026-03-23T16:16:51.537Z" }, { "VulnerabilityID": "CVE-2026-4438", "PkgID": "glibc-locale-posix@2.43-r2", "PkgName": "glibc-locale-posix", "PkgIdentifier": { "PURL": "pkg:apk/wolfi/glibc-locale-posix@2.43-r2?arch=x86_64\u0026distro=20230201", "UID": "de4bfc79c18bed05", "BOMRef": "pkg:apk/wolfi/glibc-locale-posix@2.43-r2?arch=x86_64\u0026distro=20230201" }, "InstalledVersion": "2.43-r2", "FixedVersion": "2.43-r4", "Status": "fixed", "Layer": { "Digest": "sha256:ffdea549da14a0907a605f520d5d7d74c27b4113af015d68d9bb498f02602701", "DiffID": "sha256:1c2de32430e076ddbd78f498eefcf1678f1d584007214b2ad1cf42a06d005fb7" }, "PrimaryURL": "https://avd.aquasec.com/nvd/cve-2026-4438", "DataSource": { "ID": "wolfi", "Name": "Wolfi Secdb", "URL": "https://packages.wolfi.dev/os/security.json" }, "Fingerprint": "sha256:c3d7e5935a8b1349a645d3ce651454f28d5be77d30b664ca310fccd9fb8eceda", "Title": "glibc: glibc: Invalid DNS hostname returned via gethostbyaddr functions", "Description": "Calling gethostbyaddr or gethostbyaddr_r with a configured nsswitch.conf that specifies the library's DNS backend in the GNU C library version 2.34 to version 2.43 could result in an invalid DNS hostname being returned to the caller in violation of the DNS specification.", "Severity": "MEDIUM", "CweIDs": [ "CWE-20", "CWE-88" ], "VendorSeverity": { "redhat": 1 }, "CVSS": { "redhat": { "V3Vector": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N", "V3Score": 4 } }, "References": [ "https://access.redhat.com/security/cve/CVE-2026-4438", "https://nvd.nist.gov/vuln/detail/CVE-2026-4438", "https://sourceware.org/bugzilla/show_bug.cgi?id=34015", "https://www.cve.org/CVERecord?id=CVE-2026-4438" ], "PublishedDate": "2026-03-20T20:16:49.623Z", "LastModifiedDate": "2026-03-23T15:16:35.68Z" }, { "VulnerabilityID": "CVE-2026-4437", "PkgID": "ld-linux@2.43-r2", "PkgName": "ld-linux", "PkgIdentifier": { "PURL": "pkg:apk/wolfi/ld-linux@2.43-r2?arch=x86_64\u0026distro=20230201", "UID": "5d95e150843b6e9b", "BOMRef": "pkg:apk/wolfi/ld-linux@2.43-r2?arch=x86_64\u0026distro=20230201" }, "InstalledVersion": "2.43-r2", "FixedVersion": "2.43-r4", "Status": "fixed", "Layer": { "Digest": "sha256:ffdea549da14a0907a605f520d5d7d74c27b4113af015d68d9bb498f02602701", "DiffID": "sha256:1c2de32430e076ddbd78f498eefcf1678f1d584007214b2ad1cf42a06d005fb7" }, "PrimaryURL": "https://avd.aquasec.com/nvd/cve-2026-4437", "DataSource": { "ID": "wolfi", "Name": "Wolfi Secdb", "URL": "https://packages.wolfi.dev/os/security.json" }, "Fingerprint": "sha256:381404d621add643fecd63904316f0910926d834484148e10c421f869198f8e3", "Title": "glibc: glibc: Incorrect DNS response parsing via crafted DNS server response", "Description": "Calling gethostbyaddr or gethostbyaddr_r with a configured nsswitch.conf that specifies the library's DNS backend in the GNU C Library version 2.34 to version 2.43 could, with a crafted response from the configured DNS server, result in a violation of the DNS specification that causes the application to treat a non-answer section of the DNS response as a valid answer.", "Severity": "MEDIUM", "CweIDs": [ "CWE-125" ], "VendorSeverity": { "redhat": 2 }, "CVSS": { "redhat": { "V3Vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L", "V3Score": 6.5 } }, "References": [ "https://access.redhat.com/security/cve/CVE-2026-4437", "https://nvd.nist.gov/vuln/detail/CVE-2026-4437", "https://sourceware.org/bugzilla/show_bug.cgi?id=34014", "https://www.cve.org/CVERecord?id=CVE-2026-4437" ], "PublishedDate": "2026-03-20T20:16:49.477Z", "LastModifiedDate": "2026-03-23T16:16:51.537Z" }, { "VulnerabilityID": "CVE-2026-4438", "PkgID": "ld-linux@2.43-r2", "PkgName": "ld-linux", "PkgIdentifier": { "PURL": "pkg:apk/wolfi/ld-linux@2.43-r2?arch=x86_64\u0026distro=20230201", "UID": "5d95e150843b6e9b", "BOMRef": "pkg:apk/wolfi/ld-linux@2.43-r2?arch=x86_64\u0026distro=20230201" }, "InstalledVersion": "2.43-r2", "FixedVersion": "2.43-r4", "Status": "fixed", "Layer": { "Digest": "sha256:ffdea549da14a0907a605f520d5d7d74c27b4113af015d68d9bb498f02602701", "DiffID": "sha256:1c2de32430e076ddbd78f498eefcf1678f1d584007214b2ad1cf42a06d005fb7" }, "PrimaryURL": "https://avd.aquasec.com/nvd/cve-2026-4438", "DataSource": { "ID": "wolfi", "Name": "Wolfi Secdb", "URL": "https://packages.wolfi.dev/os/security.json" }, "Fingerprint": "sha256:6855c5804947bcb8690c5b478b96ab1b3ae9bcf3532a44ba0c1f4e72676adfd5", "Title": "glibc: glibc: Invalid DNS hostname returned via gethostbyaddr functions", "Description": "Calling gethostbyaddr or gethostbyaddr_r with a configured nsswitch.conf that specifies the library's DNS backend in the GNU C library version 2.34 to version 2.43 could result in an invalid DNS hostname being returned to the caller in violation of the DNS specification.", "Severity": "MEDIUM", "CweIDs": [ "CWE-20", "CWE-88" ], "VendorSeverity": { "redhat": 1 }, "CVSS": { "redhat": { "V3Vector": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N", "V3Score": 4 } }, "References": [ "https://access.redhat.com/security/cve/CVE-2026-4438", "https://nvd.nist.gov/vuln/detail/CVE-2026-4438", "https://sourceware.org/bugzilla/show_bug.cgi?id=34015", "https://www.cve.org/CVERecord?id=CVE-2026-4438" ], "PublishedDate": "2026-03-20T20:16:49.623Z", "LastModifiedDate": "2026-03-23T15:16:35.68Z" }, { "VulnerabilityID": "CVE-2026-4437", "PkgID": "libcrypt1@2.43-r2", "PkgName": "libcrypt1", "PkgIdentifier": { "PURL": "pkg:apk/wolfi/libcrypt1@2.43-r2?arch=x86_64\u0026distro=20230201", "UID": "af184fa48a83ce11", "BOMRef": "pkg:apk/wolfi/libcrypt1@2.43-r2?arch=x86_64\u0026distro=20230201" }, "InstalledVersion": "2.43-r2", "FixedVersion": "2.43-r4", "Status": "fixed", "Layer": { "Digest": "sha256:ffdea549da14a0907a605f520d5d7d74c27b4113af015d68d9bb498f02602701", "DiffID": "sha256:1c2de32430e076ddbd78f498eefcf1678f1d584007214b2ad1cf42a06d005fb7" }, "PrimaryURL": "https://avd.aquasec.com/nvd/cve-2026-4437", "DataSource": { "ID": "wolfi", "Name": "Wolfi Secdb", "URL": "https://packages.wolfi.dev/os/security.json" }, "Fingerprint": "sha256:ac53fb9cc2e49762b28903eb3e197dc762f5b981280caef0dc5bed236c89bcc2", "Title": "glibc: glibc: Incorrect DNS response parsing via crafted DNS server response", "Description": "Calling gethostbyaddr or gethostbyaddr_r with a configured nsswitch.conf that specifies the library's DNS backend in the GNU C Library version 2.34 to version 2.43 could, with a crafted response from the configured DNS server, result in a violation of the DNS specification that causes the application to treat a non-answer section of the DNS response as a valid answer.", "Severity": "MEDIUM", "CweIDs": [ "CWE-125" ], "VendorSeverity": { "redhat": 2 }, "CVSS": { "redhat": { "V3Vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L", "V3Score": 6.5 } }, "References": [ "https://access.redhat.com/security/cve/CVE-2026-4437", "https://nvd.nist.gov/vuln/detail/CVE-2026-4437", "https://sourceware.org/bugzilla/show_bug.cgi?id=34014", "https://www.cve.org/CVERecord?id=CVE-2026-4437" ], "PublishedDate": "2026-03-20T20:16:49.477Z", "LastModifiedDate": "2026-03-23T16:16:51.537Z" }, { "VulnerabilityID": "CVE-2026-4438", "PkgID": "libcrypt1@2.43-r2", "PkgName": "libcrypt1", "PkgIdentifier": { "PURL": "pkg:apk/wolfi/libcrypt1@2.43-r2?arch=x86_64\u0026distro=20230201", "UID": "af184fa48a83ce11", "BOMRef": "pkg:apk/wolfi/libcrypt1@2.43-r2?arch=x86_64\u0026distro=20230201" }, "InstalledVersion": "2.43-r2", "FixedVersion": "2.43-r4", "Status": "fixed", "Layer": { "Digest": "sha256:ffdea549da14a0907a605f520d5d7d74c27b4113af015d68d9bb498f02602701", "DiffID": "sha256:1c2de32430e076ddbd78f498eefcf1678f1d584007214b2ad1cf42a06d005fb7" }, "PrimaryURL": "https://avd.aquasec.com/nvd/cve-2026-4438", "DataSource": { "ID": "wolfi", "Name": "Wolfi Secdb", "URL": "https://packages.wolfi.dev/os/security.json" }, "Fingerprint": "sha256:4617f0cdacc6f192bb2ca82060dd378e32e1786f539a5f34939ae9f73c21d445", "Title": "glibc: glibc: Invalid DNS hostname returned via gethostbyaddr functions", "Description": "Calling gethostbyaddr or gethostbyaddr_r with a configured nsswitch.conf that specifies the library's DNS backend in the GNU C library version 2.34 to version 2.43 could result in an invalid DNS hostname being returned to the caller in violation of the DNS specification.", "Severity": "MEDIUM", "CweIDs": [ "CWE-20", "CWE-88" ], "VendorSeverity": { "redhat": 1 }, "CVSS": { "redhat": { "V3Vector": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N", "V3Score": 4 } }, "References": [ "https://access.redhat.com/security/cve/CVE-2026-4438", "https://nvd.nist.gov/vuln/detail/CVE-2026-4438", "https://sourceware.org/bugzilla/show_bug.cgi?id=34015", "https://www.cve.org/CVERecord?id=CVE-2026-4438" ], "PublishedDate": "2026-03-20T20:16:49.623Z", "LastModifiedDate": "2026-03-23T15:16:35.68Z" }, { "VulnerabilityID": "CVE-2026-2673", "PkgID": "libcrypto3@3.6.1-r2", "PkgName": "libcrypto3", "PkgIdentifier": { "PURL": "pkg:apk/wolfi/libcrypto3@3.6.1-r2?arch=x86_64\u0026distro=20230201", "UID": "885ab4fa55c14236", "BOMRef": "pkg:apk/wolfi/libcrypto3@3.6.1-r2?arch=x86_64\u0026distro=20230201" }, "InstalledVersion": "3.6.1-r2", "FixedVersion": "3.6.1-r3", "Status": "fixed", "Layer": { "Digest": "sha256:8b7b5281edc4c60abdd5b11639fc31a70145a71e9159adfb065613716727dcf9", "DiffID": "sha256:a80c931912f720d92ecc3b4d4bb757b5604caddb3a69914463a7f41e257ccbf5" }, "PrimaryURL": "https://avd.aquasec.com/nvd/cve-2026-2673", "DataSource": { "ID": "wolfi", "Name": "Wolfi Secdb", "URL": "https://packages.wolfi.dev/os/security.json" }, "Fingerprint": "sha256:30e30f81d1cc34eefd65c26ca6c83b0e869d6d5c03ad476f6430f6d9f2166e4c", "Title": "openssl: OpenSSL TLS 1.3 server may choose unexpected key agreement group", "Description": "Issue summary: An OpenSSL TLS 1.3 server may fail to negotiate the expected\npreferred key exchange group when its key exchange group configuration includes\nthe default by using the 'DEFAULT' keyword.\n\nImpact summary: A less preferred key exchange may be used even when a more\npreferred group is supported by both client and server, if the group\nwas not included among the client's initial predicated keyshares.\nThis will sometimes be the case with the new hybrid post-quantum groups,\nif the client chooses to defer their use until specifically requested by\nthe server.\n\nIf an OpenSSL TLS 1.3 server's configuration uses the 'DEFAULT' keyword to\ninterpolate the built-in default group list into its own configuration, perhaps\nadding or removing specific elements, then an implementation defect causes the\n'DEFAULT' list to lose its 'tuple' structure, and all server-supported groups\nwere treated as a single sufficiently secure 'tuple', with the server not\nsending a Hello Retry Request (HRR) even when a group in a more preferred tuple\nwas mutually supported.\n\nAs a result, the client and server might fail to negotiate a mutually supported\npost-quantum key agreement group, such as 'X25519MLKEM768', if the client's\nconfiguration results in only 'classical' groups (such as 'X25519' being the\nonly ones in the client's initial keyshare prediction).\n\nOpenSSL 3.5 and later support a new syntax for selecting the most preferred TLS\n1.3 key agreement group on TLS servers. The old syntax had a single 'flat'\nlist of groups, and treated all the supported groups as sufficiently secure.\nIf any of the keyshares predicted by the client were supported by the server\nthe most preferred among these was selected, even if other groups supported by\nthe client, but not included in the list of predicted keyshares would have been\nmore preferred, if included.\n\nThe new syntax partitions the groups into distinct 'tuples' of roughly\nequivalent security. Within each tuple the most preferred group included among\nthe client's predicted keyshares is chosen, but if the client supports a group\nfrom a more preferred tuple, but did not predict any corresponding keyshares,\nthe server will ask the client to retry the ClientHello (by issuing a Hello\nRetry Request or HRR) with the most preferred mutually supported group.\n\nThe above works as expected when the server's configuration uses the built-in\ndefault group list, or explicitly defines its own list by directly defining the\nvarious desired groups and group 'tuples'.\n\nNo OpenSSL FIPS modules are affected by this issue, the code in question lies\noutside the FIPS boundary.\n\nOpenSSL 3.6 and 3.5 are vulnerable to this issue.\n\nOpenSSL 3.6 users should upgrade to OpenSSL 3.6.2 once it is released.\nOpenSSL 3.5 users should upgrade to OpenSSL 3.5.6 once it is released.\n\nOpenSSL 3.4, 3.3, 3.0, 1.0.2 and 1.1.1 are not affected by this issue.", "Severity": "LOW", "CweIDs": [ "CWE-757" ], "VendorSeverity": { "amazon": 1, "redhat": 1, "ubuntu": 1 }, "CVSS": { "redhat": { "V3Vector": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:N", "V3Score": 3.1 } }, "References": [ "http://www.openwall.com/lists/oss-security/2026/03/13/3", "https://access.redhat.com/security/cve/CVE-2026-2673", "https://github.com/openssl/openssl/commit/2157c9d81f7b0bd7dfa25b960e928ec28e8dd63f", "https://github.com/openssl/openssl/commit/85977e013f32ceb96aa034c0e741adddc1a05e34", "https://nvd.nist.gov/vuln/detail/CVE-2026-2673", "https://openssl-library.org/news/secadv/20260313.txt", "https://www.cve.org/CVERecord?id=CVE-2026-2673" ], "PublishedDate": "2026-03-13T19:54:34.033Z", "LastModifiedDate": "2026-03-17T18:16:15.6Z" }, { "VulnerabilityID": "CVE-2026-2673", "PkgID": "libssl3@3.6.1-r2", "PkgName": "libssl3", "PkgIdentifier": { "PURL": "pkg:apk/wolfi/libssl3@3.6.1-r2?arch=x86_64\u0026distro=20230201", "UID": "74f6bd603c6e0818", "BOMRef": "pkg:apk/wolfi/libssl3@3.6.1-r2?arch=x86_64\u0026distro=20230201" }, "InstalledVersion": "3.6.1-r2", "FixedVersion": "3.6.1-r3", "Status": "fixed", "Layer": { "Digest": "sha256:8b7b5281edc4c60abdd5b11639fc31a70145a71e9159adfb065613716727dcf9", "DiffID": "sha256:a80c931912f720d92ecc3b4d4bb757b5604caddb3a69914463a7f41e257ccbf5" }, "PrimaryURL": "https://avd.aquasec.com/nvd/cve-2026-2673", "DataSource": { "ID": "wolfi", "Name": "Wolfi Secdb", "URL": "https://packages.wolfi.dev/os/security.json" }, "Fingerprint": "sha256:e56042feb76b47c69e73b2478caf03af131440f816579088270c8c77e409d74b", "Title": "openssl: OpenSSL TLS 1.3 server may choose unexpected key agreement group", "Description": "Issue summary: An OpenSSL TLS 1.3 server may fail to negotiate the expected\npreferred key exchange group when its key exchange group configuration includes\nthe default by using the 'DEFAULT' keyword.\n\nImpact summary: A less preferred key exchange may be used even when a more\npreferred group is supported by both client and server, if the group\nwas not included among the client's initial predicated keyshares.\nThis will sometimes be the case with the new hybrid post-quantum groups,\nif the client chooses to defer their use until specifically requested by\nthe server.\n\nIf an OpenSSL TLS 1.3 server's configuration uses the 'DEFAULT' keyword to\ninterpolate the built-in default group list into its own configuration, perhaps\nadding or removing specific elements, then an implementation defect causes the\n'DEFAULT' list to lose its 'tuple' structure, and all server-supported groups\nwere treated as a single sufficiently secure 'tuple', with the server not\nsending a Hello Retry Request (HRR) even when a group in a more preferred tuple\nwas mutually supported.\n\nAs a result, the client and server might fail to negotiate a mutually supported\npost-quantum key agreement group, such as 'X25519MLKEM768', if the client's\nconfiguration results in only 'classical' groups (such as 'X25519' being the\nonly ones in the client's initial keyshare prediction).\n\nOpenSSL 3.5 and later support a new syntax for selecting the most preferred TLS\n1.3 key agreement group on TLS servers. The old syntax had a single 'flat'\nlist of groups, and treated all the supported groups as sufficiently secure.\nIf any of the keyshares predicted by the client were supported by the server\nthe most preferred among these was selected, even if other groups supported by\nthe client, but not included in the list of predicted keyshares would have been\nmore preferred, if included.\n\nThe new syntax partitions the groups into distinct 'tuples' of roughly\nequivalent security. Within each tuple the most preferred group included among\nthe client's predicted keyshares is chosen, but if the client supports a group\nfrom a more preferred tuple, but did not predict any corresponding keyshares,\nthe server will ask the client to retry the ClientHello (by issuing a Hello\nRetry Request or HRR) with the most preferred mutually supported group.\n\nThe above works as expected when the server's configuration uses the built-in\ndefault group list, or explicitly defines its own list by directly defining the\nvarious desired groups and group 'tuples'.\n\nNo OpenSSL FIPS modules are affected by this issue, the code in question lies\noutside the FIPS boundary.\n\nOpenSSL 3.6 and 3.5 are vulnerable to this issue.\n\nOpenSSL 3.6 users should upgrade to OpenSSL 3.6.2 once it is released.\nOpenSSL 3.5 users should upgrade to OpenSSL 3.5.6 once it is released.\n\nOpenSSL 3.4, 3.3, 3.0, 1.0.2 and 1.1.1 are not affected by this issue.", "Severity": "LOW", "CweIDs": [ "CWE-757" ], "VendorSeverity": { "amazon": 1, "redhat": 1, "ubuntu": 1 }, "CVSS": { "redhat": { "V3Vector": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:N", "V3Score": 3.1 } }, "References": [ "http://www.openwall.com/lists/oss-security/2026/03/13/3", "https://access.redhat.com/security/cve/CVE-2026-2673", "https://github.com/openssl/openssl/commit/2157c9d81f7b0bd7dfa25b960e928ec28e8dd63f", "https://github.com/openssl/openssl/commit/85977e013f32ceb96aa034c0e741adddc1a05e34", "https://nvd.nist.gov/vuln/detail/CVE-2026-2673", "https://openssl-library.org/news/secadv/20260313.txt", "https://www.cve.org/CVERecord?id=CVE-2026-2673" ], "PublishedDate": "2026-03-13T19:54:34.033Z", "LastModifiedDate": "2026-03-17T18:16:15.6Z" }, { "VulnerabilityID": "CVE-2026-29786", "PkgID": "npm@11.11.0-r1", "PkgName": "npm", "PkgIdentifier": { "PURL": "pkg:apk/wolfi/npm@11.11.0-r1?arch=x86_64\u0026distro=20230201", "UID": "4b0991e1c57af096", "BOMRef": "pkg:apk/wolfi/npm@11.11.0-r1?arch=x86_64\u0026distro=20230201" }, "InstalledVersion": "11.11.0-r1", "FixedVersion": "11.11.0-r2", "Status": "fixed", "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "SeveritySource": "nvd", "PrimaryURL": "https://avd.aquasec.com/nvd/cve-2026-29786", "DataSource": { "ID": "wolfi", "Name": "Wolfi Secdb", "URL": "https://packages.wolfi.dev/os/security.json" }, "Fingerprint": "sha256:ddaca2789cb5529b6d20e29ad1727e550141f5c9d385baa1b639c57b2b34fcd2", "Title": "node-tar: hardlink path traversal via drive-relative linkpath", "Description": "node-tar is a full-featured Tar for Node.js. Prior to version 7.5.10, tar can be tricked into creating a hardlink that points outside the extraction directory by using a drive-relative link target such as C:../target.txt, which enables file overwrite outside cwd during normal tar.x() extraction. This issue has been patched in version 7.5.10.", "Severity": "MEDIUM", "CweIDs": [ "CWE-22", "CWE-59" ], "VendorSeverity": { "amazon": 3, "ghsa": 3, "nvd": 2, "redhat": 3 }, "CVSS": { "ghsa": { "V40Vector": "CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:P/VC:N/VI:H/VA:L/SC:N/SI:H/SA:L", "V40Score": 8.2 }, "nvd": { "V3Vector": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:N/I:H/A:N", "V3Score": 6.3 }, "redhat": { "V3Vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:H/A:N", "V3Score": 8.6 } }, "References": [ "https://access.redhat.com/security/cve/CVE-2026-29786", "https://github.com/isaacs/node-tar", "https://github.com/isaacs/node-tar/commit/7bc755dd85e623c0279e08eb3784909e6d7e4b9f", "https://github.com/isaacs/node-tar/security/advisories/GHSA-qffp-2rhf-9h96", "https://nvd.nist.gov/vuln/detail/CVE-2026-29786", "https://www.cve.org/CVERecord?id=CVE-2026-29786" ], "PublishedDate": "2026-03-07T16:15:55.587Z", "LastModifiedDate": "2026-03-11T21:50:01.91Z" }, { "VulnerabilityID": "CVE-2026-33671", "PkgID": "npm@11.11.0-r1", "PkgName": "npm", "PkgIdentifier": { "PURL": "pkg:apk/wolfi/npm@11.11.0-r1?arch=x86_64\u0026distro=20230201", "UID": "4b0991e1c57af096", "BOMRef": "pkg:apk/wolfi/npm@11.11.0-r1?arch=x86_64\u0026distro=20230201" }, "InstalledVersion": "11.11.0-r1", "FixedVersion": "11.12.1-r0", "Status": "fixed", "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "PrimaryURL": "https://avd.aquasec.com/nvd/cve-2026-33671", "DataSource": { "ID": "wolfi", "Name": "Wolfi Secdb", "URL": "https://packages.wolfi.dev/os/security.json" }, "Fingerprint": "sha256:096416b89d57fc8b8dd9cad7f5495939b4c034e6c6ae0a7c170b95b59e60f8d4", "Title": "picomatch: Picomatch: Regular Expression Denial of Service via crafted extglob patterns", "Description": "Picomatch is a glob matcher written JavaScript. Versions prior to 4.0.4, 3.0.2, and 2.3.2 are vulnerable to Regular Expression Denial of Service (ReDoS) when processing crafted extglob patterns. Certain patterns using extglob quantifiers such as `+()` and `*()`, especially when combined with overlapping alternatives or nested extglobs, are compiled into regular expressions that can exhibit catastrophic backtracking on non-matching input. Applications are impacted when they allow untrusted users to supply glob patterns that are passed to `picomatch` for compilation or matching. In those cases, an attacker can cause excessive CPU consumption and block the Node.js event loop, resulting in a denial of service. Applications that only use trusted, developer-controlled glob patterns are much less likely to be exposed in a security-relevant way. This issue is fixed in picomatch 4.0.4, 3.0.2 and 2.3.2. Users should upgrade to one of these versions or later, depending on their supported release line. If upgrading is not immediately possible, avoid passing untrusted glob patterns to `picomatch`. Possible mitigations include disabling extglob support for untrusted patterns by using `noextglob: true`, rejecting or sanitizing patterns containing nested extglobs or extglob quantifiers such as `+()` and `*()`, enforcing strict allowlists for accepted pattern syntax, running matching in an isolated worker or separate process with time and resource limits, and applying application-level request throttling and input validation for any endpoint that accepts glob patterns.", "Severity": "MEDIUM", "CweIDs": [ "CWE-1333" ], "VendorSeverity": { "ghsa": 3, "redhat": 2 }, "CVSS": { "ghsa": { "V3Vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "V3Score": 7.5 }, "redhat": { "V3Vector": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", "V3Score": 6.5 } }, "References": [ "https://access.redhat.com/security/cve/CVE-2026-33671", "https://github.com/micromatch/picomatch", "https://github.com/micromatch/picomatch/commit/5eceecd27543b8e056b9307d69e105ea03618a7d", "https://github.com/micromatch/picomatch/security/advisories/GHSA-c2c7-rcm5-vvqj", "https://nvd.nist.gov/vuln/detail/CVE-2026-33671", "https://www.cve.org/CVERecord?id=CVE-2026-33671" ], "PublishedDate": "2026-03-26T22:16:30.21Z", "LastModifiedDate": "2026-04-01T13:45:11.687Z" }, { "VulnerabilityID": "CVE-2026-33672", "PkgID": "npm@11.11.0-r1", "PkgName": "npm", "PkgIdentifier": { "PURL": "pkg:apk/wolfi/npm@11.11.0-r1?arch=x86_64\u0026distro=20230201", "UID": "4b0991e1c57af096", "BOMRef": "pkg:apk/wolfi/npm@11.11.0-r1?arch=x86_64\u0026distro=20230201" }, "InstalledVersion": "11.11.0-r1", "FixedVersion": "11.12.1-r0", "Status": "fixed", "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "PrimaryURL": "https://avd.aquasec.com/nvd/cve-2026-33672", "DataSource": { "ID": "wolfi", "Name": "Wolfi Secdb", "URL": "https://packages.wolfi.dev/os/security.json" }, "Fingerprint": "sha256:ebdd37ce1a8d99243b6bc84bbe8fac988a17cf8fe08adad647238510181460a5", "Title": "picomatch: Picomatch: Data integrity compromised via method injection with crafted POSIX bracket expressions", "Description": "Picomatch is a glob matcher written JavaScript. Versions prior to 4.0.4, 3.0.2, and 2.3.2 are vulnerable to a method injection vulnerability affecting the `POSIX_REGEX_SOURCE` object. Because the object inherits from `Object.prototype`, specially crafted POSIX bracket expressions (e.g., `[[:constructor:]]`) can reference inherited method names. These methods are implicitly converted to strings and injected into the generated regular expression. This leads to incorrect glob matching behavior (integrity impact), where patterns may match unintended filenames. The issue does not enable remote code execution, but it can cause security-relevant logic errors in applications that rely on glob matching for filtering, validation, or access control. All users of affected `picomatch` versions that process untrusted or user-controlled glob patterns are potentially impacted. This issue is fixed in picomatch 4.0.4, 3.0.2 and 2.3.2. Users should upgrade to one of these versions or later, depending on their supported release line. If upgrading is not immediately possible, avoid passing untrusted glob patterns to picomatch. Possible mitigations include sanitizing or rejecting untrusted glob patterns, especially those containing POSIX character classes like `[[:...:]]`; avoiding the use of POSIX bracket expressions if user input is involved; and manually patching the library by modifying `POSIX_REGEX_SOURCE` to use a null prototype.", "Severity": "MEDIUM", "CweIDs": [ "CWE-1321" ], "VendorSeverity": { "ghsa": 2, "redhat": 2 }, "CVSS": { "ghsa": { "V3Vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N", "V3Score": 5.3 }, "redhat": { "V3Vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N", "V3Score": 5.3 } }, "References": [ "https://access.redhat.com/security/cve/CVE-2026-33672", "https://github.com/micromatch/picomatch", "https://github.com/micromatch/picomatch/commit/4516eb521f13a46b2fe1a1d2c9ef6b20ddc0e903", "https://github.com/micromatch/picomatch/security/advisories/GHSA-3v7f-55p6-f55p", "https://nvd.nist.gov/vuln/detail/CVE-2026-33672", "https://www.cve.org/CVERecord?id=CVE-2026-33672" ], "PublishedDate": "2026-03-26T22:16:30.387Z", "LastModifiedDate": "2026-04-01T13:44:53.397Z" }, { "VulnerabilityID": "CVE-2026-33750", "PkgID": "npm@11.11.0-r1", "PkgName": "npm", "PkgIdentifier": { "PURL": "pkg:apk/wolfi/npm@11.11.0-r1?arch=x86_64\u0026distro=20230201", "UID": "4b0991e1c57af096", "BOMRef": "pkg:apk/wolfi/npm@11.11.0-r1?arch=x86_64\u0026distro=20230201" }, "InstalledVersion": "11.11.0-r1", "FixedVersion": "11.12.1-r0", "Status": "fixed", "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "PrimaryURL": "https://avd.aquasec.com/nvd/cve-2026-33750", "DataSource": { "ID": "wolfi", "Name": "Wolfi Secdb", "URL": "https://packages.wolfi.dev/os/security.json" }, "Fingerprint": "sha256:58e8dc3538e6b7878f230ffa0c9243bf7e9e862b63b73993bdccdc630ca4cf7b", "Title": "brace-expansion: brace-expansion: Denial of Service via zero step value in brace pattern", "Description": "The brace-expansion library generates arbitrary strings containing a common prefix and suffix. Prior to versions 5.0.5, 3.0.2, 2.0.3, and 1.1.13, a brace pattern with a zero step value (e.g., `{1..2..0}`) causes the sequence generation loop to run indefinitely, making the process hang for seconds and allocate heaps of memory. Versions 5.0.5, 3.0.2, 2.0.3, and 1.1.13 fix the issue. As a workaround, sanitize strings passed to `expand()` to ensure a step value of `0` is not used.", "Severity": "MEDIUM", "CweIDs": [ "CWE-400" ], "VendorSeverity": { "ghsa": 2, "redhat": 2 }, "CVSS": { "ghsa": { "V3Vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H", "V3Score": 6.5 }, "redhat": { "V3Vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H", "V3Score": 6.5 } }, "References": [ "https://access.redhat.com/security/cve/CVE-2026-33750", "https://github.com/juliangruber/brace-expansion", "https://github.com/juliangruber/brace-expansion/blob/daa71bcb4a30a2df9bcb7f7b8daaf2ab30e5794a/src/index.ts#L107-L113", "https://github.com/juliangruber/brace-expansion/blob/daa71bcb4a30a2df9bcb7f7b8daaf2ab30e5794a/src/index.ts#L184", "https://github.com/juliangruber/brace-expansion/commit/311ac0d54994158c0a384e286a7d6cbb17ee8ed5", "https://github.com/juliangruber/brace-expansion/commit/7fd684f89fdde3549563d0a6522226a9189472a2", "https://github.com/juliangruber/brace-expansion/commit/b9cacd9e55e7a1fa588fe4b7bb1159d52f1d902a", "https://github.com/juliangruber/brace-expansion/issues/98", "https://github.com/juliangruber/brace-expansion/pull/95", "https://github.com/juliangruber/brace-expansion/pull/96", "https://github.com/juliangruber/brace-expansion/pull/97", "https://github.com/juliangruber/brace-expansion/security/advisories/GHSA-f886-m6hf-6m8v", "https://nvd.nist.gov/vuln/detail/CVE-2026-33750", "https://www.cve.org/CVERecord?id=CVE-2026-33750" ], "PublishedDate": "2026-03-27T15:16:57.297Z", "LastModifiedDate": "2026-03-30T13:26:29.793Z" }, { "VulnerabilityID": "CVE-2026-2673", "PkgID": "openssl@3.6.1-r2", "PkgName": "openssl", "PkgIdentifier": { "PURL": "pkg:apk/wolfi/openssl@3.6.1-r2?arch=x86_64\u0026distro=20230201", "UID": "fb57e01f6d05abbb", "BOMRef": "pkg:apk/wolfi/openssl@3.6.1-r2?arch=x86_64\u0026distro=20230201" }, "InstalledVersion": "3.6.1-r2", "FixedVersion": "3.6.1-r3", "Status": "fixed", "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "PrimaryURL": "https://avd.aquasec.com/nvd/cve-2026-2673", "DataSource": { "ID": "wolfi", "Name": "Wolfi Secdb", "URL": "https://packages.wolfi.dev/os/security.json" }, "Fingerprint": "sha256:3516b0458b3da111fa87a094ededce3774f4337cf5932db96e90097ba0420349", "Title": "openssl: OpenSSL TLS 1.3 server may choose unexpected key agreement group", "Description": "Issue summary: An OpenSSL TLS 1.3 server may fail to negotiate the expected\npreferred key exchange group when its key exchange group configuration includes\nthe default by using the 'DEFAULT' keyword.\n\nImpact summary: A less preferred key exchange may be used even when a more\npreferred group is supported by both client and server, if the group\nwas not included among the client's initial predicated keyshares.\nThis will sometimes be the case with the new hybrid post-quantum groups,\nif the client chooses to defer their use until specifically requested by\nthe server.\n\nIf an OpenSSL TLS 1.3 server's configuration uses the 'DEFAULT' keyword to\ninterpolate the built-in default group list into its own configuration, perhaps\nadding or removing specific elements, then an implementation defect causes the\n'DEFAULT' list to lose its 'tuple' structure, and all server-supported groups\nwere treated as a single sufficiently secure 'tuple', with the server not\nsending a Hello Retry Request (HRR) even when a group in a more preferred tuple\nwas mutually supported.\n\nAs a result, the client and server might fail to negotiate a mutually supported\npost-quantum key agreement group, such as 'X25519MLKEM768', if the client's\nconfiguration results in only 'classical' groups (such as 'X25519' being the\nonly ones in the client's initial keyshare prediction).\n\nOpenSSL 3.5 and later support a new syntax for selecting the most preferred TLS\n1.3 key agreement group on TLS servers. The old syntax had a single 'flat'\nlist of groups, and treated all the supported groups as sufficiently secure.\nIf any of the keyshares predicted by the client were supported by the server\nthe most preferred among these was selected, even if other groups supported by\nthe client, but not included in the list of predicted keyshares would have been\nmore preferred, if included.\n\nThe new syntax partitions the groups into distinct 'tuples' of roughly\nequivalent security. Within each tuple the most preferred group included among\nthe client's predicted keyshares is chosen, but if the client supports a group\nfrom a more preferred tuple, but did not predict any corresponding keyshares,\nthe server will ask the client to retry the ClientHello (by issuing a Hello\nRetry Request or HRR) with the most preferred mutually supported group.\n\nThe above works as expected when the server's configuration uses the built-in\ndefault group list, or explicitly defines its own list by directly defining the\nvarious desired groups and group 'tuples'.\n\nNo OpenSSL FIPS modules are affected by this issue, the code in question lies\noutside the FIPS boundary.\n\nOpenSSL 3.6 and 3.5 are vulnerable to this issue.\n\nOpenSSL 3.6 users should upgrade to OpenSSL 3.6.2 once it is released.\nOpenSSL 3.5 users should upgrade to OpenSSL 3.5.6 once it is released.\n\nOpenSSL 3.4, 3.3, 3.0, 1.0.2 and 1.1.1 are not affected by this issue.", "Severity": "LOW", "CweIDs": [ "CWE-757" ], "VendorSeverity": { "amazon": 1, "redhat": 1, "ubuntu": 1 }, "CVSS": { "redhat": { "V3Vector": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:N", "V3Score": 3.1 } }, "References": [ "http://www.openwall.com/lists/oss-security/2026/03/13/3", "https://access.redhat.com/security/cve/CVE-2026-2673", "https://github.com/openssl/openssl/commit/2157c9d81f7b0bd7dfa25b960e928ec28e8dd63f", "https://github.com/openssl/openssl/commit/85977e013f32ceb96aa034c0e741adddc1a05e34", "https://nvd.nist.gov/vuln/detail/CVE-2026-2673", "https://openssl-library.org/news/secadv/20260313.txt", "https://www.cve.org/CVERecord?id=CVE-2026-2673" ], "PublishedDate": "2026-03-13T19:54:34.033Z", "LastModifiedDate": "2026-03-17T18:16:15.6Z" }, { "VulnerabilityID": "CVE-2026-4519", "PkgID": "python-3.13@3.13.12-r2", "PkgName": "python-3.13", "PkgIdentifier": { "PURL": "pkg:apk/wolfi/python-3.13@3.13.12-r2?arch=x86_64\u0026distro=20230201", "UID": "483496ae153887a4", "BOMRef": "pkg:apk/wolfi/python-3.13@3.13.12-r2?arch=x86_64\u0026distro=20230201" }, "InstalledVersion": "3.13.12-r2", "FixedVersion": "3.13.12-r5", "Status": "fixed", "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "PrimaryURL": "https://avd.aquasec.com/nvd/cve-2026-4519", "DataSource": { "ID": "wolfi", "Name": "Wolfi Secdb", "URL": "https://packages.wolfi.dev/os/security.json" }, "Fingerprint": "sha256:76e49bf688d1387b78b0f83e5723038536bcc29602a4769b10b563de9223fbfb", "Title": "python: Python: Command-line option injection in webbrowser.open() via crafted URLs", "Description": "The webbrowser.open() API would accept leading dashes in the URL which \ncould be handled as command line options for certain web browsers. New \nbehavior rejects leading dashes. Users are recommended to sanitize URLs \nprior to passing to webbrowser.open().", "Severity": "HIGH", "CweIDs": [ "CWE-20" ], "VendorSeverity": { "alma": 3, "azure": 3, "cbl-mariner": 3, "oracle-oval": 3, "photon": 3, "redhat": 3 }, "CVSS": { "redhat": { "V3Vector": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:L", "V3Score": 7.1 } }, "References": [ "http://www.openwall.com/lists/oss-security/2026/03/20/1", "https://access.redhat.com/errata/RHSA-2026:6286", "https://access.redhat.com/security/cve/CVE-2026-4519", "https://bugzilla.redhat.com/2449649", "https://errata.almalinux.org/9/ALSA-2026-6286.html", "https://github.com/python/cpython/commit/43fe06b96f6a6cf5cfd5bdab20b8649374956866", "https://github.com/python/cpython/commit/82a24a4442312bdcfc4c799885e8b3e00990f02b", "https://github.com/python/cpython/commit/9669a912a0e329c094e992204d6bdb8787024d76", "https://github.com/python/cpython/commit/ad4d5ba32af4d80b0dfa2ba9d8203bfb219e60a5", "https://github.com/python/cpython/commit/cbba6119391112aba9c5aebf7b94aea447922c48", "https://github.com/python/cpython/commit/ceac1efc66516ac387eef2c9a0ce671895b44f03", "https://github.com/python/cpython/issues/143930", "https://github.com/python/cpython/pull/143931", "https://linux.oracle.com/cve/CVE-2026-4519.html", "https://linux.oracle.com/errata/ELSA-2026-6473.html", "https://mail.python.org/archives/list/security-announce@python.org/thread/AY5NDSS433JK56Q7Q5IS7B37QFZVVOUS/", "https://nvd.nist.gov/vuln/detail/CVE-2026-4519", "https://www.cve.org/CVERecord?id=CVE-2026-4519" ], "PublishedDate": "2026-03-20T15:16:24.057Z", "LastModifiedDate": "2026-03-25T18:16:33.073Z" }, { "VulnerabilityID": "CVE-2026-3644", "PkgID": "python-3.13@3.13.12-r2", "PkgName": "python-3.13", "PkgIdentifier": { "PURL": "pkg:apk/wolfi/python-3.13@3.13.12-r2?arch=x86_64\u0026distro=20230201", "UID": "483496ae153887a4", "BOMRef": "pkg:apk/wolfi/python-3.13@3.13.12-r2?arch=x86_64\u0026distro=20230201" }, "InstalledVersion": "3.13.12-r2", "FixedVersion": "3.13.12-r7", "Status": "fixed", "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "PrimaryURL": "https://avd.aquasec.com/nvd/cve-2026-3644", "DataSource": { "ID": "wolfi", "Name": "Wolfi Secdb", "URL": "https://packages.wolfi.dev/os/security.json" }, "Fingerprint": "sha256:ec616c223e26b379ed7cc492f3fa0ee3e9a8c8f36c9f1411499b254896f2f6b5", "Title": "cpython: Incomplete control character validation in http.cookies", "Description": "The fix for CVE-2026-0672, which rejected control characters in http.cookies.Morsel, was incomplete. The Morsel.update(), |= operator, and unpickling paths were not patched, allowing control characters to bypass input validation. Additionally, BaseCookie.js_output() lacked the output validation applied to BaseCookie.output().", "Severity": "MEDIUM", "CweIDs": [ "CWE-20", "CWE-116" ], "VendorSeverity": { "amazon": 2, "redhat": 2 }, "CVSS": { "redhat": { "V3Vector": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N", "V3Score": 5.4 } }, "References": [ "https://access.redhat.com/security/cve/CVE-2026-3644", "https://github.com/python/cpython/commit/57e88c1cf95e1481b94ae57abe1010469d47a6b4", "https://github.com/python/cpython/commit/62ceb396fcbe69da1ded3702de586f4072b590dd", "https://github.com/python/cpython/commit/d16ecc6c3626f0e2cc8f08c309c83934e8a979dd", "https://github.com/python/cpython/issues/145599", "https://github.com/python/cpython/pull/145600", "https://mail.python.org/archives/list/security-announce@python.org/thread/H6CADMBCDRFGWCMOXWUIHFJNV43GABJ7/", "https://nvd.nist.gov/vuln/detail/CVE-2026-3644", "https://www.cve.org/CVERecord?id=CVE-2026-3644" ], "PublishedDate": "2026-03-16T18:16:09.907Z", "LastModifiedDate": "2026-03-17T14:20:01.67Z" }, { "VulnerabilityID": "CVE-2026-4224", "PkgID": "python-3.13@3.13.12-r2", "PkgName": "python-3.13", "PkgIdentifier": { "PURL": "pkg:apk/wolfi/python-3.13@3.13.12-r2?arch=x86_64\u0026distro=20230201", "UID": "483496ae153887a4", "BOMRef": "pkg:apk/wolfi/python-3.13@3.13.12-r2?arch=x86_64\u0026distro=20230201" }, "InstalledVersion": "3.13.12-r2", "FixedVersion": "3.13.12-r7", "Status": "fixed", "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "PrimaryURL": "https://avd.aquasec.com/nvd/cve-2026-4224", "DataSource": { "ID": "wolfi", "Name": "Wolfi Secdb", "URL": "https://packages.wolfi.dev/os/security.json" }, "Fingerprint": "sha256:f26d503567a57f8d70283810ef2f55d0c4b02a59294468c0307290fb5529e242", "Title": "cpython: Stack overflow parsing XML with deeply nested DTD content models", "Description": "When an Expat parser with a registered ElementDeclHandler parses an inline\ndocument type definition containing a deeply nested content model a C stack\noverflow occurs.", "Severity": "MEDIUM", "CweIDs": [ "CWE-674" ], "VendorSeverity": { "amazon": 2, "redhat": 2 }, "CVSS": { "redhat": { "V3Vector": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H", "V3Score": 5.9 } }, "References": [ "http://www.openwall.com/lists/oss-security/2026/03/16/4", "https://access.redhat.com/security/cve/CVE-2026-4224", "https://github.com/python/cpython/commit/196edfb06a7458377d4d0f4b3cd41724c1f3bd4a", "https://github.com/python/cpython/commit/e0a8a6da90597a924b300debe045cdb4628ee1f3", "https://github.com/python/cpython/commit/eb0e8be3a7e11b87d198a2c3af1ed0eccf532768", "https://github.com/python/cpython/issues/145986", "https://github.com/python/cpython/pull/145987", "https://mail.python.org/archives/list/security-announce@python.org/thread/5M7CGUW3XBRY7II4DK43KF7NQQ3TPZ6R/", "https://nvd.nist.gov/vuln/detail/CVE-2026-4224", "https://www.cve.org/CVERecord?id=CVE-2026-4224" ], "PublishedDate": "2026-03-16T18:16:10.07Z", "LastModifiedDate": "2026-03-17T14:20:01.67Z" }, { "VulnerabilityID": "CVE-2026-2297", "PkgID": "python-3.13@3.13.12-r2", "PkgName": "python-3.13", "PkgIdentifier": { "PURL": "pkg:apk/wolfi/python-3.13@3.13.12-r2?arch=x86_64\u0026distro=20230201", "UID": "483496ae153887a4", "BOMRef": "pkg:apk/wolfi/python-3.13@3.13.12-r2?arch=x86_64\u0026distro=20230201" }, "InstalledVersion": "3.13.12-r2", "FixedVersion": "3.13.12-r3", "Status": "fixed", "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "PrimaryURL": "https://avd.aquasec.com/nvd/cve-2026-2297", "DataSource": { "ID": "wolfi", "Name": "Wolfi Secdb", "URL": "https://packages.wolfi.dev/os/security.json" }, "Fingerprint": "sha256:deef43818ccaa0545e9a709c74a8972d197343bccfbb94150635692c206765e3", "Title": "cpython: CPython: Logging Bypass in Legacy .pyc File Handling", "Description": "The import hook in CPython that handles legacy *.pyc files (SourcelessFileLoader) is incorrectly handled in FileLoader (a base class) and so does not use io.open_code() to read the .pyc files. sys.audit handlers for this audit event therefore do not fire.", "Severity": "LOW", "CweIDs": [ "CWE-668" ], "VendorSeverity": { "redhat": 1 }, "CVSS": { "redhat": { "V3Vector": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N", "V3Score": 3.3 } }, "References": [ "http://www.openwall.com/lists/oss-security/2026/03/05/6", "https://access.redhat.com/security/cve/CVE-2026-2297", "https://github.com/python/cpython/commit/482d6f8bdba9da3725d272e8bb4a2d25fb6a603e", "https://github.com/python/cpython/commit/a51b1b512de1d56b3714b65628a2eae2b07e535e", "https://github.com/python/cpython/commit/e58e9802b9bec5cdbf48fc9bf1da5f4fda482e86", "https://github.com/python/cpython/issues/145506", "https://github.com/python/cpython/pull/145507", "https://nvd.nist.gov/vuln/detail/CVE-2026-2297", "https://www.cve.org/CVERecord?id=CVE-2026-2297" ], "PublishedDate": "2026-03-04T23:16:10.757Z", "LastModifiedDate": "2026-03-12T15:16:27.957Z" }, { "VulnerabilityID": "CVE-2026-4519", "PkgID": "python-3.13-base@3.13.12-r2", "PkgName": "python-3.13-base", "PkgIdentifier": { "PURL": "pkg:apk/wolfi/python-3.13-base@3.13.12-r2?arch=x86_64\u0026distro=20230201", "UID": "e8816ca5031e680b", "BOMRef": "pkg:apk/wolfi/python-3.13-base@3.13.12-r2?arch=x86_64\u0026distro=20230201" }, "InstalledVersion": "3.13.12-r2", "FixedVersion": "3.13.12-r5", "Status": "fixed", "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "PrimaryURL": "https://avd.aquasec.com/nvd/cve-2026-4519", "DataSource": { "ID": "wolfi", "Name": "Wolfi Secdb", "URL": "https://packages.wolfi.dev/os/security.json" }, "Fingerprint": "sha256:aa9e211ded9d038de8eebaab4aff2769d4ed1b8440fe1e8674e48f919189373c", "Title": "python: Python: Command-line option injection in webbrowser.open() via crafted URLs", "Description": "The webbrowser.open() API would accept leading dashes in the URL which \ncould be handled as command line options for certain web browsers. New \nbehavior rejects leading dashes. Users are recommended to sanitize URLs \nprior to passing to webbrowser.open().", "Severity": "HIGH", "CweIDs": [ "CWE-20" ], "VendorSeverity": { "alma": 3, "azure": 3, "cbl-mariner": 3, "oracle-oval": 3, "photon": 3, "redhat": 3 }, "CVSS": { "redhat": { "V3Vector": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:L", "V3Score": 7.1 } }, "References": [ "http://www.openwall.com/lists/oss-security/2026/03/20/1", "https://access.redhat.com/errata/RHSA-2026:6286", "https://access.redhat.com/security/cve/CVE-2026-4519", "https://bugzilla.redhat.com/2449649", "https://errata.almalinux.org/9/ALSA-2026-6286.html", "https://github.com/python/cpython/commit/43fe06b96f6a6cf5cfd5bdab20b8649374956866", "https://github.com/python/cpython/commit/82a24a4442312bdcfc4c799885e8b3e00990f02b", "https://github.com/python/cpython/commit/9669a912a0e329c094e992204d6bdb8787024d76", "https://github.com/python/cpython/commit/ad4d5ba32af4d80b0dfa2ba9d8203bfb219e60a5", "https://github.com/python/cpython/commit/cbba6119391112aba9c5aebf7b94aea447922c48", "https://github.com/python/cpython/commit/ceac1efc66516ac387eef2c9a0ce671895b44f03", "https://github.com/python/cpython/issues/143930", "https://github.com/python/cpython/pull/143931", "https://linux.oracle.com/cve/CVE-2026-4519.html", "https://linux.oracle.com/errata/ELSA-2026-6473.html", "https://mail.python.org/archives/list/security-announce@python.org/thread/AY5NDSS433JK56Q7Q5IS7B37QFZVVOUS/", "https://nvd.nist.gov/vuln/detail/CVE-2026-4519", "https://www.cve.org/CVERecord?id=CVE-2026-4519" ], "PublishedDate": "2026-03-20T15:16:24.057Z", "LastModifiedDate": "2026-03-25T18:16:33.073Z" }, { "VulnerabilityID": "CVE-2026-3644", "PkgID": "python-3.13-base@3.13.12-r2", "PkgName": "python-3.13-base", "PkgIdentifier": { "PURL": "pkg:apk/wolfi/python-3.13-base@3.13.12-r2?arch=x86_64\u0026distro=20230201", "UID": "e8816ca5031e680b", "BOMRef": "pkg:apk/wolfi/python-3.13-base@3.13.12-r2?arch=x86_64\u0026distro=20230201" }, "InstalledVersion": "3.13.12-r2", "FixedVersion": "3.13.12-r7", "Status": "fixed", "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "PrimaryURL": "https://avd.aquasec.com/nvd/cve-2026-3644", "DataSource": { "ID": "wolfi", "Name": "Wolfi Secdb", "URL": "https://packages.wolfi.dev/os/security.json" }, "Fingerprint": "sha256:82d41c6a0478e554eaed63bcfbbe4ef0ffaba340eb835eb32e37a00c7d9dc097", "Title": "cpython: Incomplete control character validation in http.cookies", "Description": "The fix for CVE-2026-0672, which rejected control characters in http.cookies.Morsel, was incomplete. The Morsel.update(), |= operator, and unpickling paths were not patched, allowing control characters to bypass input validation. Additionally, BaseCookie.js_output() lacked the output validation applied to BaseCookie.output().", "Severity": "MEDIUM", "CweIDs": [ "CWE-20", "CWE-116" ], "VendorSeverity": { "amazon": 2, "redhat": 2 }, "CVSS": { "redhat": { "V3Vector": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N", "V3Score": 5.4 } }, "References": [ "https://access.redhat.com/security/cve/CVE-2026-3644", "https://github.com/python/cpython/commit/57e88c1cf95e1481b94ae57abe1010469d47a6b4", "https://github.com/python/cpython/commit/62ceb396fcbe69da1ded3702de586f4072b590dd", "https://github.com/python/cpython/commit/d16ecc6c3626f0e2cc8f08c309c83934e8a979dd", "https://github.com/python/cpython/issues/145599", "https://github.com/python/cpython/pull/145600", "https://mail.python.org/archives/list/security-announce@python.org/thread/H6CADMBCDRFGWCMOXWUIHFJNV43GABJ7/", "https://nvd.nist.gov/vuln/detail/CVE-2026-3644", "https://www.cve.org/CVERecord?id=CVE-2026-3644" ], "PublishedDate": "2026-03-16T18:16:09.907Z", "LastModifiedDate": "2026-03-17T14:20:01.67Z" }, { "VulnerabilityID": "CVE-2026-4224", "PkgID": "python-3.13-base@3.13.12-r2", "PkgName": "python-3.13-base", "PkgIdentifier": { "PURL": "pkg:apk/wolfi/python-3.13-base@3.13.12-r2?arch=x86_64\u0026distro=20230201", "UID": "e8816ca5031e680b", "BOMRef": "pkg:apk/wolfi/python-3.13-base@3.13.12-r2?arch=x86_64\u0026distro=20230201" }, "InstalledVersion": "3.13.12-r2", "FixedVersion": "3.13.12-r7", "Status": "fixed", "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "PrimaryURL": "https://avd.aquasec.com/nvd/cve-2026-4224", "DataSource": { "ID": "wolfi", "Name": "Wolfi Secdb", "URL": "https://packages.wolfi.dev/os/security.json" }, "Fingerprint": "sha256:30d79df317eaa95cd2fe6a5d4f706001891cb3f99487ff791a2e76542bd606f2", "Title": "cpython: Stack overflow parsing XML with deeply nested DTD content models", "Description": "When an Expat parser with a registered ElementDeclHandler parses an inline\ndocument type definition containing a deeply nested content model a C stack\noverflow occurs.", "Severity": "MEDIUM", "CweIDs": [ "CWE-674" ], "VendorSeverity": { "amazon": 2, "redhat": 2 }, "CVSS": { "redhat": { "V3Vector": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H", "V3Score": 5.9 } }, "References": [ "http://www.openwall.com/lists/oss-security/2026/03/16/4", "https://access.redhat.com/security/cve/CVE-2026-4224", "https://github.com/python/cpython/commit/196edfb06a7458377d4d0f4b3cd41724c1f3bd4a", "https://github.com/python/cpython/commit/e0a8a6da90597a924b300debe045cdb4628ee1f3", "https://github.com/python/cpython/commit/eb0e8be3a7e11b87d198a2c3af1ed0eccf532768", "https://github.com/python/cpython/issues/145986", "https://github.com/python/cpython/pull/145987", "https://mail.python.org/archives/list/security-announce@python.org/thread/5M7CGUW3XBRY7II4DK43KF7NQQ3TPZ6R/", "https://nvd.nist.gov/vuln/detail/CVE-2026-4224", "https://www.cve.org/CVERecord?id=CVE-2026-4224" ], "PublishedDate": "2026-03-16T18:16:10.07Z", "LastModifiedDate": "2026-03-17T14:20:01.67Z" }, { "VulnerabilityID": "CVE-2026-2297", "PkgID": "python-3.13-base@3.13.12-r2", "PkgName": "python-3.13-base", "PkgIdentifier": { "PURL": "pkg:apk/wolfi/python-3.13-base@3.13.12-r2?arch=x86_64\u0026distro=20230201", "UID": "e8816ca5031e680b", "BOMRef": "pkg:apk/wolfi/python-3.13-base@3.13.12-r2?arch=x86_64\u0026distro=20230201" }, "InstalledVersion": "3.13.12-r2", "FixedVersion": "3.13.12-r3", "Status": "fixed", "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "PrimaryURL": "https://avd.aquasec.com/nvd/cve-2026-2297", "DataSource": { "ID": "wolfi", "Name": "Wolfi Secdb", "URL": "https://packages.wolfi.dev/os/security.json" }, "Fingerprint": "sha256:61fdf30bd9bf8e7c5d6c540e8137266882fc8be93423d07eaa171c5f09402b24", "Title": "cpython: CPython: Logging Bypass in Legacy .pyc File Handling", "Description": "The import hook in CPython that handles legacy *.pyc files (SourcelessFileLoader) is incorrectly handled in FileLoader (a base class) and so does not use io.open_code() to read the .pyc files. sys.audit handlers for this audit event therefore do not fire.", "Severity": "LOW", "CweIDs": [ "CWE-668" ], "VendorSeverity": { "redhat": 1 }, "CVSS": { "redhat": { "V3Vector": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N", "V3Score": 3.3 } }, "References": [ "http://www.openwall.com/lists/oss-security/2026/03/05/6", "https://access.redhat.com/security/cve/CVE-2026-2297", "https://github.com/python/cpython/commit/482d6f8bdba9da3725d272e8bb4a2d25fb6a603e", "https://github.com/python/cpython/commit/a51b1b512de1d56b3714b65628a2eae2b07e535e", "https://github.com/python/cpython/commit/e58e9802b9bec5cdbf48fc9bf1da5f4fda482e86", "https://github.com/python/cpython/issues/145506", "https://github.com/python/cpython/pull/145507", "https://nvd.nist.gov/vuln/detail/CVE-2026-2297", "https://www.cve.org/CVERecord?id=CVE-2026-2297" ], "PublishedDate": "2026-03-04T23:16:10.757Z", "LastModifiedDate": "2026-03-12T15:16:27.957Z" } ] }, { "Target": "Node.js", "Class": "lang-pkgs", "Type": "node-pkg", "Packages": [ { "ID": "@gar/promise-retry@1.0.2", "Name": "@gar/promise-retry", "Identifier": { "PURL": "pkg:npm/%40gar/promise-retry@1.0.2", "UID": "dd687db884ad42e0", "BOMRef": "pkg:npm/%40gar/promise-retry@1.0.2" }, "Version": "1.0.2", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/@gar/promise-retry/package.json", "Digest": "sha1:85c1a6717187a21b3cb7799f0a83c288145dfef2" }, { "ID": "@isaacs/balanced-match@4.0.1", "Name": "@isaacs/balanced-match", "Identifier": { "PURL": "pkg:npm/%40isaacs/balanced-match@4.0.1", "UID": "fab4d0f5e55e5271", "BOMRef": "35bdc70e-dd35-4608-9230-8c0097b544da" }, "Version": "4.0.1", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/@isaacs/balanced-match/package.json", "Digest": "sha1:17c25730c5cb82e1d4ee1c212f2b2588dd5a3781" }, { "ID": "@isaacs/balanced-match@4.0.1", "Name": "@isaacs/balanced-match", "Identifier": { "PURL": "pkg:npm/%40isaacs/balanced-match@4.0.1", "UID": "b0c7d397f6d718ac", "BOMRef": "4533f69e-ddef-49b5-b58d-099a0822ba37" }, "Version": "4.0.1", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:e3c43a0726da69846ae4d3ebced108345891586e5a513d46eb2c2e06b844b939", "DiffID": "sha256:06273a1fde1593ea299ad4344636055f68108990f3388a54a1170207044ba828" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/@isaacs/brace-expansion/node_modules/@isaacs/balanced-match/package.json", "Digest": "sha1:17c25730c5cb82e1d4ee1c212f2b2588dd5a3781" }, { "ID": "@isaacs/balanced-match@4.0.1", "Name": "@isaacs/balanced-match", "Identifier": { "PURL": "pkg:npm/%40isaacs/balanced-match@4.0.1", "UID": "a0d495a0e2f0b834", "BOMRef": "7c562b3c-c2ea-44fb-a0e5-35b1d3888baa" }, "Version": "4.0.1", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/@isaacs/brace-expansion/node_modules/@isaacs/balanced-match/package.json", "Digest": "sha1:17c25730c5cb82e1d4ee1c212f2b2588dd5a3781" }, { "ID": "@isaacs/brace-expansion@5.0.1", "Name": "@isaacs/brace-expansion", "Identifier": { "PURL": "pkg:npm/%40isaacs/brace-expansion@5.0.1", "UID": "59b1d5d5dc22325f", "BOMRef": "94b3bb5a-0249-4d7a-9228-2748a587f49c" }, "Version": "5.0.1", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:e3c43a0726da69846ae4d3ebced108345891586e5a513d46eb2c2e06b844b939", "DiffID": "sha256:06273a1fde1593ea299ad4344636055f68108990f3388a54a1170207044ba828" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/@isaacs/brace-expansion/package.json", "Digest": "sha1:582e89e8912ed72319d3768c79b15781164e5594" }, { "ID": "@isaacs/brace-expansion@5.0.1", "Name": "@isaacs/brace-expansion", "Identifier": { "PURL": "pkg:npm/%40isaacs/brace-expansion@5.0.1", "UID": "c7e5ee97efd4616c", "BOMRef": "d4023a19-c5e5-4257-a6b6-5aed8c6f1568" }, "Version": "5.0.1", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/@isaacs/brace-expansion/package.json", "Digest": "sha1:582e89e8912ed72319d3768c79b15781164e5594" }, { "ID": "@isaacs/cliui@9.0.0", "Name": "@isaacs/cliui", "Identifier": { "PURL": "pkg:npm/%40isaacs/cliui@9.0.0", "UID": "338844903253a00a", "BOMRef": "94df2dd9-e64c-4194-b934-b4a155c93b18" }, "Version": "9.0.0", "Licenses": [ "BlueOak-1.0.0" ], "Layer": { "Digest": "sha256:e3c43a0726da69846ae4d3ebced108345891586e5a513d46eb2c2e06b844b939", "DiffID": "sha256:06273a1fde1593ea299ad4344636055f68108990f3388a54a1170207044ba828" }, "FilePath": "usr/lib/node_modules/npm/node_modules/glob/node_modules/@isaacs/cliui/package.json", "Digest": "sha1:1ce0188abd4792f8dbcd6fede4f6bfc508a2e3fe" }, { "ID": "@isaacs/cliui@9.0.0", "Name": "@isaacs/cliui", "Identifier": { "PURL": "pkg:npm/%40isaacs/cliui@9.0.0", "UID": "80462eab44ce7849", "BOMRef": "0a00f703-f241-47df-a782-3051ce2fb2ac" }, "Version": "9.0.0", "Licenses": [ "BlueOak-1.0.0" ], "Layer": { "Digest": "sha256:e3c43a0726da69846ae4d3ebced108345891586e5a513d46eb2c2e06b844b939", "DiffID": "sha256:06273a1fde1593ea299ad4344636055f68108990f3388a54a1170207044ba828" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/glob/node_modules/@isaacs/cliui/package.json", "Digest": "sha1:1ce0188abd4792f8dbcd6fede4f6bfc508a2e3fe" }, { "ID": "@isaacs/cliui@9.0.0", "Name": "@isaacs/cliui", "Identifier": { "PURL": "pkg:npm/%40isaacs/cliui@9.0.0", "UID": "892d0341e29314ee", "BOMRef": "527c83f0-a2ff-414b-b6f7-09a944c6f1dc" }, "Version": "9.0.0", "Licenses": [ "BlueOak-1.0.0" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/glob/node_modules/@isaacs/cliui/package.json", "Digest": "sha1:1ce0188abd4792f8dbcd6fede4f6bfc508a2e3fe" }, { "ID": "@isaacs/cliui@9.0.0", "Name": "@isaacs/cliui", "Identifier": { "PURL": "pkg:npm/%40isaacs/cliui@9.0.0", "UID": "25a4aae88cfcf52c", "BOMRef": "ab05bcd3-a233-4359-a2aa-93ffba292c5d" }, "Version": "9.0.0", "Licenses": [ "BlueOak-1.0.0" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/glob/node_modules/@isaacs/cliui/package.json", "Digest": "sha1:1ce0188abd4792f8dbcd6fede4f6bfc508a2e3fe" }, { "ID": "@isaacs/fs-minipass@4.0.1", "Name": "@isaacs/fs-minipass", "Identifier": { "PURL": "pkg:npm/%40isaacs/fs-minipass@4.0.1", "UID": "988b210b4d2a97b0", "BOMRef": "78c82cb8-8933-458e-8731-6f4e1afc2c6c" }, "Version": "4.0.1", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:e3c43a0726da69846ae4d3ebced108345891586e5a513d46eb2c2e06b844b939", "DiffID": "sha256:06273a1fde1593ea299ad4344636055f68108990f3388a54a1170207044ba828" }, "FilePath": "usr/lib/node_modules/npm/node_modules/tar/node_modules/@isaacs/fs-minipass/package.json", "Digest": "sha1:504edba0a95630e08edf150335c2fe914825fc5a" }, { "ID": "@isaacs/fs-minipass@4.0.1", "Name": "@isaacs/fs-minipass", "Identifier": { "PURL": "pkg:npm/%40isaacs/fs-minipass@4.0.1", "UID": "e75d2d4e3baa4d81", "BOMRef": "99ef81e7-5171-4196-a126-e942f40f81be" }, "Version": "4.0.1", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/@isaacs/fs-minipass/package.json", "Digest": "sha1:504edba0a95630e08edf150335c2fe914825fc5a" }, { "ID": "@isaacs/fs-minipass@4.0.1", "Name": "@isaacs/fs-minipass", "Identifier": { "PURL": "pkg:npm/%40isaacs/fs-minipass@4.0.1", "UID": "ef224ab94892f698", "BOMRef": "03705261-596a-42c1-99ca-ebc499c9946f" }, "Version": "4.0.1", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:e3c43a0726da69846ae4d3ebced108345891586e5a513d46eb2c2e06b844b939", "DiffID": "sha256:06273a1fde1593ea299ad4344636055f68108990f3388a54a1170207044ba828" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/tar/node_modules/@isaacs/fs-minipass/package.json", "Digest": "sha1:504edba0a95630e08edf150335c2fe914825fc5a" }, { "ID": "@isaacs/fs-minipass@4.0.1", "Name": "@isaacs/fs-minipass", "Identifier": { "PURL": "pkg:npm/%40isaacs/fs-minipass@4.0.1", "UID": "325843b91bd5255a", "BOMRef": "01295514-0681-4e5b-a928-a3635905c40e" }, "Version": "4.0.1", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/@isaacs/fs-minipass/package.json", "Digest": "sha1:504edba0a95630e08edf150335c2fe914825fc5a" }, { "ID": "@isaacs/fs-minipass@4.0.1", "Name": "@isaacs/fs-minipass", "Identifier": { "PURL": "pkg:npm/%40isaacs/fs-minipass@4.0.1", "UID": "456931fbb8d71b64", "BOMRef": "ac4245cd-5729-4c5d-9c0c-f9ebabea0713" }, "Version": "4.0.1", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/tar/node_modules/@isaacs/fs-minipass/package.json", "Digest": "sha1:504edba0a95630e08edf150335c2fe914825fc5a" }, { "ID": "@isaacs/fs-minipass@4.0.1", "Name": "@isaacs/fs-minipass", "Identifier": { "PURL": "pkg:npm/%40isaacs/fs-minipass@4.0.1", "UID": "b2739372ca87ac5d", "BOMRef": "448d288d-b649-4cde-b7ba-8be23ca65dc5" }, "Version": "4.0.1", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/tar/node_modules/@isaacs/fs-minipass/package.json", "Digest": "sha1:504edba0a95630e08edf150335c2fe914825fc5a" }, { "ID": "@isaacs/string-locale-compare@1.1.0", "Name": "@isaacs/string-locale-compare", "Identifier": { "PURL": "pkg:npm/%40isaacs/string-locale-compare@1.1.0", "UID": "9fc2e3cc9895f36f", "BOMRef": "74540680-71a9-43b7-b38c-e9a40188bc85" }, "Version": "1.1.0", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/@isaacs/string-locale-compare/package.json", "Digest": "sha1:9dc38644ea6f125e3b06825ff04df5ea22f56094" }, { "ID": "@isaacs/string-locale-compare@1.1.0", "Name": "@isaacs/string-locale-compare", "Identifier": { "PURL": "pkg:npm/%40isaacs/string-locale-compare@1.1.0", "UID": "e2c1ce9f04feca84", "BOMRef": "1e22af56-0158-4b0d-87ec-7f85b03e8e6b" }, "Version": "1.1.0", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/@isaacs/string-locale-compare/package.json", "Digest": "sha1:9dc38644ea6f125e3b06825ff04df5ea22f56094" }, { "ID": "@npmcli/agent@4.0.0", "Name": "@npmcli/agent", "Identifier": { "PURL": "pkg:npm/%40npmcli/agent@4.0.0", "UID": "fa5d98b18cce484a", "BOMRef": "b5e406d8-e9e9-4301-ac4e-6c80fea0db7f" }, "Version": "4.0.0", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/@npmcli/agent/package.json", "Digest": "sha1:48e34f21103faf00d9c60756e62dee09494be465" }, { "ID": "@npmcli/agent@4.0.0", "Name": "@npmcli/agent", "Identifier": { "PURL": "pkg:npm/%40npmcli/agent@4.0.0", "UID": "efda1fa1e44d59df", "BOMRef": "1bf9eab0-b3f9-4d5e-93ab-b17d3173d4bf" }, "Version": "4.0.0", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/@npmcli/agent/package.json", "Digest": "sha1:48e34f21103faf00d9c60756e62dee09494be465" }, { "ID": "@npmcli/arborist@9.1.10", "Name": "@npmcli/arborist", "Identifier": { "PURL": "pkg:npm/%40npmcli/arborist@9.1.10", "UID": "f4d08dc633579dd9", "BOMRef": "pkg:npm/%40npmcli/arborist@9.1.10" }, "Version": "9.1.10", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/@npmcli/arborist/package.json", "Digest": "sha1:8e4589e96293dc11053236ce210a3e55de99e7b9" }, { "ID": "@npmcli/arborist@9.4.0", "Name": "@npmcli/arborist", "Identifier": { "PURL": "pkg:npm/%40npmcli/arborist@9.4.0", "UID": "2de2d08227c3586c", "BOMRef": "pkg:npm/%40npmcli/arborist@9.4.0" }, "Version": "9.4.0", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/@npmcli/arborist/package.json", "Digest": "sha1:4dffd9d49bb5c28f83f8741799d6368e71ac0d4f" }, { "ID": "@npmcli/config@10.5.0", "Name": "@npmcli/config", "Identifier": { "PURL": "pkg:npm/%40npmcli/config@10.5.0", "UID": "5776510be5ecaaa", "BOMRef": "pkg:npm/%40npmcli/config@10.5.0" }, "Version": "10.5.0", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/@npmcli/config/package.json", "Digest": "sha1:3ff7c610ec3542ff18bc54df984f23a2c29f06aa" }, { "ID": "@npmcli/config@10.7.1", "Name": "@npmcli/config", "Identifier": { "PURL": "pkg:npm/%40npmcli/config@10.7.1", "UID": "a5af64770dd97745", "BOMRef": "pkg:npm/%40npmcli/config@10.7.1" }, "Version": "10.7.1", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/@npmcli/config/package.json", "Digest": "sha1:779af7712d5765f5b69dc3f99ae8dfb2d6600e1c" }, { "ID": "@npmcli/fs@5.0.0", "Name": "@npmcli/fs", "Identifier": { "PURL": "pkg:npm/%40npmcli/fs@5.0.0", "UID": "257d77f53a7e1764", "BOMRef": "1c046113-d826-4710-859f-6a3ae20e3739" }, "Version": "5.0.0", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/@npmcli/fs/package.json", "Digest": "sha1:3a4053128a62fd9581012b83ef531b95397167e3" }, { "ID": "@npmcli/fs@5.0.0", "Name": "@npmcli/fs", "Identifier": { "PURL": "pkg:npm/%40npmcli/fs@5.0.0", "UID": "eb4384a77fda9a19", "BOMRef": "d8a20e4b-195b-463b-bcfa-5ba37e06c01a" }, "Version": "5.0.0", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/@npmcli/fs/package.json", "Digest": "sha1:3a4053128a62fd9581012b83ef531b95397167e3" }, { "ID": "@npmcli/git@7.0.1", "Name": "@npmcli/git", "Identifier": { "PURL": "pkg:npm/%40npmcli/git@7.0.1", "UID": "39335f0c9f08bb0a", "BOMRef": "pkg:npm/%40npmcli/git@7.0.1" }, "Version": "7.0.1", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/@npmcli/git/package.json", "Digest": "sha1:d74915bdb0a742b4c720d33fff12917072da12ab" }, { "ID": "@npmcli/git@7.0.2", "Name": "@npmcli/git", "Identifier": { "PURL": "pkg:npm/%40npmcli/git@7.0.2", "UID": "5c79898ebd1ec9e9", "BOMRef": "pkg:npm/%40npmcli/git@7.0.2" }, "Version": "7.0.2", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/@npmcli/git/package.json", "Digest": "sha1:3ef6957cc9f0604d0b1b9c368be2d9d562f0a2ca" }, { "ID": "@npmcli/installed-package-contents@4.0.0", "Name": "@npmcli/installed-package-contents", "Identifier": { "PURL": "pkg:npm/%40npmcli/installed-package-contents@4.0.0", "UID": "40181a7bac8330ed", "BOMRef": "b6716e87-fbff-4e48-a44c-4b71f0fc6e72" }, "Version": "4.0.0", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/@npmcli/installed-package-contents/package.json", "Digest": "sha1:189051543dd09896a1c31f80390afe0b5306d4c0" }, { "ID": "@npmcli/installed-package-contents@4.0.0", "Name": "@npmcli/installed-package-contents", "Identifier": { "PURL": "pkg:npm/%40npmcli/installed-package-contents@4.0.0", "UID": "ef51f2dc8227b5ae", "BOMRef": "0efc7662-c05b-4866-b9a4-24918fbc05e8" }, "Version": "4.0.0", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/@npmcli/installed-package-contents/package.json", "Digest": "sha1:189051543dd09896a1c31f80390afe0b5306d4c0" }, { "ID": "@npmcli/map-workspaces@5.0.3", "Name": "@npmcli/map-workspaces", "Identifier": { "PURL": "pkg:npm/%40npmcli/map-workspaces@5.0.3", "UID": "e1cd76e6324b128b", "BOMRef": "07dde50a-0300-48eb-97fc-5023010b9bd8" }, "Version": "5.0.3", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/@npmcli/map-workspaces/package.json", "Digest": "sha1:9b2b024266bb8c342ed0bfbefb1c48a7d9b0c015" }, { "ID": "@npmcli/map-workspaces@5.0.3", "Name": "@npmcli/map-workspaces", "Identifier": { "PURL": "pkg:npm/%40npmcli/map-workspaces@5.0.3", "UID": "e867e144cd0a13b1", "BOMRef": "dd317d6f-a92f-4f71-8246-b42a2d013d1e" }, "Version": "5.0.3", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/@npmcli/map-workspaces/package.json", "Digest": "sha1:9b2b024266bb8c342ed0bfbefb1c48a7d9b0c015" }, { "ID": "@npmcli/metavuln-calculator@9.0.3", "Name": "@npmcli/metavuln-calculator", "Identifier": { "PURL": "pkg:npm/%40npmcli/metavuln-calculator@9.0.3", "UID": "77f130a735d4f25d", "BOMRef": "49d6d35e-cf78-47a3-87da-3b381ee0e6d3" }, "Version": "9.0.3", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/@npmcli/metavuln-calculator/package.json", "Digest": "sha1:ef331816f66b624d692f45b26c2e6a910767656c" }, { "ID": "@npmcli/metavuln-calculator@9.0.3", "Name": "@npmcli/metavuln-calculator", "Identifier": { "PURL": "pkg:npm/%40npmcli/metavuln-calculator@9.0.3", "UID": "37a52a405fb54e94", "BOMRef": "58512144-6f72-47c3-8a61-a7bb2f25f7a9" }, "Version": "9.0.3", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/@npmcli/metavuln-calculator/package.json", "Digest": "sha1:ef331816f66b624d692f45b26c2e6a910767656c" }, { "ID": "@npmcli/name-from-folder@4.0.0", "Name": "@npmcli/name-from-folder", "Identifier": { "PURL": "pkg:npm/%40npmcli/name-from-folder@4.0.0", "UID": "b192b5ef2d0479f9", "BOMRef": "aae2f022-110a-4dc1-bd5c-46f96ebe1b72" }, "Version": "4.0.0", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/@npmcli/name-from-folder/package.json", "Digest": "sha1:4d3174b80cc1b257fa96b098c95e27ffaff5b659" }, { "ID": "@npmcli/name-from-folder@4.0.0", "Name": "@npmcli/name-from-folder", "Identifier": { "PURL": "pkg:npm/%40npmcli/name-from-folder@4.0.0", "UID": "626fc6d944502f5f", "BOMRef": "49c68fef-f9d3-4714-8557-cba6ed3d68b8" }, "Version": "4.0.0", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/@npmcli/name-from-folder/package.json", "Digest": "sha1:4d3174b80cc1b257fa96b098c95e27ffaff5b659" }, { "ID": "@npmcli/node-gyp@5.0.0", "Name": "@npmcli/node-gyp", "Identifier": { "PURL": "pkg:npm/%40npmcli/node-gyp@5.0.0", "UID": "d4c32ba417e0085a", "BOMRef": "c2d6ecac-6e8e-492b-9373-81c130021fea" }, "Version": "5.0.0", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/@npmcli/node-gyp/package.json", "Digest": "sha1:c2549c9809a38abb866596530702d0de2c0cdc44" }, { "ID": "@npmcli/node-gyp@5.0.0", "Name": "@npmcli/node-gyp", "Identifier": { "PURL": "pkg:npm/%40npmcli/node-gyp@5.0.0", "UID": "cf73686508aaeb7f", "BOMRef": "ea1ba20c-70f0-41b0-b4d1-2477d1c430fd" }, "Version": "5.0.0", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/@npmcli/node-gyp/package.json", "Digest": "sha1:c2549c9809a38abb866596530702d0de2c0cdc44" }, { "ID": "@npmcli/package-json@7.0.4", "Name": "@npmcli/package-json", "Identifier": { "PURL": "pkg:npm/%40npmcli/package-json@7.0.4", "UID": "dc75d0ef493ffcd4", "BOMRef": "pkg:npm/%40npmcli/package-json@7.0.4" }, "Version": "7.0.4", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/@npmcli/package-json/package.json", "Digest": "sha1:765d7c3731b2abc0d33fd2c548968251527de7a4" }, { "ID": "@npmcli/package-json@7.0.5", "Name": "@npmcli/package-json", "Identifier": { "PURL": "pkg:npm/%40npmcli/package-json@7.0.5", "UID": "ae073dfc3648fef2", "BOMRef": "pkg:npm/%40npmcli/package-json@7.0.5" }, "Version": "7.0.5", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/@npmcli/package-json/package.json", "Digest": "sha1:6f10f890a1dd14676d61faee4d379c06ec93502e" }, { "ID": "@npmcli/promise-spawn@9.0.1", "Name": "@npmcli/promise-spawn", "Identifier": { "PURL": "pkg:npm/%40npmcli/promise-spawn@9.0.1", "UID": "f499a5b7a6a60caf", "BOMRef": "52af2880-d3b6-4f0e-949a-26edf93d738e" }, "Version": "9.0.1", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/@npmcli/promise-spawn/package.json", "Digest": "sha1:8cc9163ac59ee91de9240a11723d8701fa80317e" }, { "ID": "@npmcli/promise-spawn@9.0.1", "Name": "@npmcli/promise-spawn", "Identifier": { "PURL": "pkg:npm/%40npmcli/promise-spawn@9.0.1", "UID": "a3d9186eb6fad52d", "BOMRef": "7ce3ad2f-4910-4c6e-ae8d-921ab66a76f0" }, "Version": "9.0.1", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/@npmcli/promise-spawn/package.json", "Digest": "sha1:8cc9163ac59ee91de9240a11723d8701fa80317e" }, { "ID": "@npmcli/query@5.0.0", "Name": "@npmcli/query", "Identifier": { "PURL": "pkg:npm/%40npmcli/query@5.0.0", "UID": "6f91f91354a04d98", "BOMRef": "70b9f0d2-24b9-489a-9cff-7df45124b3df" }, "Version": "5.0.0", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/@npmcli/query/package.json", "Digest": "sha1:f56866b082e0015fbbe60b12d303c71b778af0e1" }, { "ID": "@npmcli/query@5.0.0", "Name": "@npmcli/query", "Identifier": { "PURL": "pkg:npm/%40npmcli/query@5.0.0", "UID": "5083e9e564fb42ea", "BOMRef": "dad8acfe-9bbb-4ed9-bb70-c96cefbc7954" }, "Version": "5.0.0", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/@npmcli/query/package.json", "Digest": "sha1:f56866b082e0015fbbe60b12d303c71b778af0e1" }, { "ID": "@npmcli/redact@4.0.0", "Name": "@npmcli/redact", "Identifier": { "PURL": "pkg:npm/%40npmcli/redact@4.0.0", "UID": "d6cbe55cdd012a3", "BOMRef": "cadc73aa-7284-42fb-aceb-ab317e271574" }, "Version": "4.0.0", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/@npmcli/redact/package.json", "Digest": "sha1:e81d178ea5aac085222f1c853a9b42fb0cc96a46" }, { "ID": "@npmcli/redact@4.0.0", "Name": "@npmcli/redact", "Identifier": { "PURL": "pkg:npm/%40npmcli/redact@4.0.0", "UID": "2332b433247c32aa", "BOMRef": "68fabb5f-9841-4165-b569-5f35aa5e6e7b" }, "Version": "4.0.0", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/@npmcli/redact/package.json", "Digest": "sha1:e81d178ea5aac085222f1c853a9b42fb0cc96a46" }, { "ID": "@npmcli/run-script@10.0.3", "Name": "@npmcli/run-script", "Identifier": { "PURL": "pkg:npm/%40npmcli/run-script@10.0.3", "UID": "1af889f15a7db439", "BOMRef": "504652cc-750d-48ed-a43a-9f0e020fd0b8" }, "Version": "10.0.3", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/@npmcli/run-script/package.json", "Digest": "sha1:d9a49385f1a06449642c48bcb52f9600898eb65f" }, { "ID": "@npmcli/run-script@10.0.3", "Name": "@npmcli/run-script", "Identifier": { "PURL": "pkg:npm/%40npmcli/run-script@10.0.3", "UID": "7e77c95f8de930b4", "BOMRef": "b9a92e19-5491-4d79-859c-4929f33946d1" }, "Version": "10.0.3", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/@npmcli/run-script/package.json", "Digest": "sha1:d9a49385f1a06449642c48bcb52f9600898eb65f" }, { "ID": "@prisma/client@5.4.2", "Name": "@prisma/client", "Identifier": { "PURL": "pkg:npm/%40prisma/client@5.4.2", "UID": "6c908c19924085d3", "BOMRef": "pkg:npm/%40prisma/client@5.4.2" }, "Version": "5.4.2", "Licenses": [ "Apache-2.0" ], "Layer": { "Digest": "sha256:2bc49981820194127004629d5292bede860adc2d7915817fb2a662ee9dea516a", "DiffID": "sha256:304c62322cfddb3f96584d17a45e75f892b78d142a299c9351029c250a2e57ec" }, "FilePath": "root/.cache/prisma-python/binaries/5.4.2/ac9d7041ed77bcc8a8dbd2ab6616b39013829574/node_modules/prisma/prisma-client/package.json", "Digest": "sha1:067a3cf4b08bb66df88691a278bd21a778474e60" }, { "ID": "@prisma/engines@5.4.2", "Name": "@prisma/engines", "Identifier": { "PURL": "pkg:npm/%40prisma/engines@5.4.2", "UID": "ab259b4eea4ac64e", "BOMRef": "pkg:npm/%40prisma/engines@5.4.2" }, "Version": "5.4.2", "Licenses": [ "Apache-2.0" ], "Layer": { "Digest": "sha256:2bc49981820194127004629d5292bede860adc2d7915817fb2a662ee9dea516a", "DiffID": "sha256:304c62322cfddb3f96584d17a45e75f892b78d142a299c9351029c250a2e57ec" }, "FilePath": "root/.cache/prisma-python/binaries/5.4.2/ac9d7041ed77bcc8a8dbd2ab6616b39013829574/node_modules/@prisma/engines/package.json", "Digest": "sha1:27f640d9b356e0726de8c28f78eb8ad1c8bf1dd9" }, { "ID": "@sigstore/bundle@4.0.0", "Name": "@sigstore/bundle", "Identifier": { "PURL": "pkg:npm/%40sigstore/bundle@4.0.0", "UID": "e40bbaa5cdebac0b", "BOMRef": "5da05b2b-762c-4813-b79c-f98960294b2b" }, "Version": "4.0.0", "Licenses": [ "Apache-2.0" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/@sigstore/bundle/package.json", "Digest": "sha1:1d6ca2f018ec884e6df5424d8d7fc6818d64c3b4" }, { "ID": "@sigstore/bundle@4.0.0", "Name": "@sigstore/bundle", "Identifier": { "PURL": "pkg:npm/%40sigstore/bundle@4.0.0", "UID": "aa037ffa278d58d5", "BOMRef": "7e0c84f4-1797-4941-a643-6a7213057f8b" }, "Version": "4.0.0", "Licenses": [ "Apache-2.0" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/@sigstore/bundle/package.json", "Digest": "sha1:1d6ca2f018ec884e6df5424d8d7fc6818d64c3b4" }, { "ID": "@sigstore/core@3.1.0", "Name": "@sigstore/core", "Identifier": { "PURL": "pkg:npm/%40sigstore/core@3.1.0", "UID": "abd63d856f3698be", "BOMRef": "cca9e6a7-b07b-48d7-b5b6-c1590421056c" }, "Version": "3.1.0", "Licenses": [ "Apache-2.0" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/@sigstore/core/package.json", "Digest": "sha1:1b171001ef4ffeaaab9d24334adcb37c669acb60" }, { "ID": "@sigstore/core@3.1.0", "Name": "@sigstore/core", "Identifier": { "PURL": "pkg:npm/%40sigstore/core@3.1.0", "UID": "88b5caf5b58871ac", "BOMRef": "3500e055-8ec6-424a-970d-fb96c951cdba" }, "Version": "3.1.0", "Licenses": [ "Apache-2.0" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/@sigstore/core/package.json", "Digest": "sha1:1b171001ef4ffeaaab9d24334adcb37c669acb60" }, { "ID": "@sigstore/protobuf-specs@0.5.0", "Name": "@sigstore/protobuf-specs", "Identifier": { "PURL": "pkg:npm/%40sigstore/protobuf-specs@0.5.0", "UID": "2d8a369de3bb9428", "BOMRef": "f0d03638-cf7f-475b-b995-3de13d42fc0b" }, "Version": "0.5.0", "Licenses": [ "Apache-2.0" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/@sigstore/protobuf-specs/package.json", "Digest": "sha1:883da1dcb03a5b8e4ba41bd5e8db239c9c17392b" }, { "ID": "@sigstore/protobuf-specs@0.5.0", "Name": "@sigstore/protobuf-specs", "Identifier": { "PURL": "pkg:npm/%40sigstore/protobuf-specs@0.5.0", "UID": "242ba21b017a6aaf", "BOMRef": "adb85cf0-f3cd-4eb0-8a53-89d0db756052" }, "Version": "0.5.0", "Licenses": [ "Apache-2.0" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/@sigstore/protobuf-specs/package.json", "Digest": "sha1:883da1dcb03a5b8e4ba41bd5e8db239c9c17392b" }, { "ID": "@sigstore/sign@4.1.0", "Name": "@sigstore/sign", "Identifier": { "PURL": "pkg:npm/%40sigstore/sign@4.1.0", "UID": "4dfd70606f8463dc", "BOMRef": "50a744f6-0d94-4d7a-9f27-2d71d443388c" }, "Version": "4.1.0", "Licenses": [ "Apache-2.0" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/@sigstore/sign/package.json", "Digest": "sha1:191dce764e0717fa6f8ae2e214e69421c6fd5797" }, { "ID": "@sigstore/sign@4.1.0", "Name": "@sigstore/sign", "Identifier": { "PURL": "pkg:npm/%40sigstore/sign@4.1.0", "UID": "ab4e6d09152f62c8", "BOMRef": "ad280a8c-ea2e-447a-bb4e-0e9a6a6d3e9c" }, "Version": "4.1.0", "Licenses": [ "Apache-2.0" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/@sigstore/sign/package.json", "Digest": "sha1:191dce764e0717fa6f8ae2e214e69421c6fd5797" }, { "ID": "@sigstore/tuf@4.0.1", "Name": "@sigstore/tuf", "Identifier": { "PURL": "pkg:npm/%40sigstore/tuf@4.0.1", "UID": "2b9495295aa60091", "BOMRef": "a8840bd4-cec9-405f-993d-4a4b6660e5d6" }, "Version": "4.0.1", "Licenses": [ "Apache-2.0" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/@sigstore/tuf/package.json", "Digest": "sha1:6e166263107e702af9d17595f800a6e6498a7726" }, { "ID": "@sigstore/tuf@4.0.1", "Name": "@sigstore/tuf", "Identifier": { "PURL": "pkg:npm/%40sigstore/tuf@4.0.1", "UID": "d9625b6ccfa228d4", "BOMRef": "6f87515a-dbe1-4bec-b873-c657550e572e" }, "Version": "4.0.1", "Licenses": [ "Apache-2.0" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/@sigstore/tuf/package.json", "Digest": "sha1:6e166263107e702af9d17595f800a6e6498a7726" }, { "ID": "@sigstore/verify@3.1.0", "Name": "@sigstore/verify", "Identifier": { "PURL": "pkg:npm/%40sigstore/verify@3.1.0", "UID": "f9cb9d7dd3ff57f6", "BOMRef": "fae30ac7-bd5e-4673-b052-5d82829f3c86" }, "Version": "3.1.0", "Licenses": [ "Apache-2.0" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/@sigstore/verify/package.json", "Digest": "sha1:4523305db384269754d0fab04bacf31ca05ad1be" }, { "ID": "@sigstore/verify@3.1.0", "Name": "@sigstore/verify", "Identifier": { "PURL": "pkg:npm/%40sigstore/verify@3.1.0", "UID": "143b846e0065652b", "BOMRef": "bd45a3f6-8829-41fd-83cd-dfdab23f1a9a" }, "Version": "3.1.0", "Licenses": [ "Apache-2.0" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/@sigstore/verify/package.json", "Digest": "sha1:4523305db384269754d0fab04bacf31ca05ad1be" }, { "ID": "@tufjs/canonical-json@2.0.0", "Name": "@tufjs/canonical-json", "Identifier": { "PURL": "pkg:npm/%40tufjs/canonical-json@2.0.0", "UID": "bc786a3da4dfe3a", "BOMRef": "5ba1333b-e12a-4e38-97f6-3f0abfb66eff" }, "Version": "2.0.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/@tufjs/canonical-json/package.json", "Digest": "sha1:5af11d14b15be3f1dc8a1195100ea60de40325c9" }, { "ID": "@tufjs/canonical-json@2.0.0", "Name": "@tufjs/canonical-json", "Identifier": { "PURL": "pkg:npm/%40tufjs/canonical-json@2.0.0", "UID": "6ab4e79b9f43dbe6", "BOMRef": "e503656d-b26c-45de-946e-fc3c61fd758e" }, "Version": "2.0.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/@tufjs/canonical-json/package.json", "Digest": "sha1:5af11d14b15be3f1dc8a1195100ea60de40325c9" }, { "ID": "@tufjs/models@4.1.0", "Name": "@tufjs/models", "Identifier": { "PURL": "pkg:npm/%40tufjs/models@4.1.0", "UID": "392a5a34c29f13a0", "BOMRef": "c5f15e3a-1f2d-44d3-beb5-4ce7002ff09f" }, "Version": "4.1.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/@tufjs/models/package.json", "Digest": "sha1:2ac6b88622c667e4c6582d32bbb21276b6781c61" }, { "ID": "@tufjs/models@4.1.0", "Name": "@tufjs/models", "Identifier": { "PURL": "pkg:npm/%40tufjs/models@4.1.0", "UID": "5900e706fd813745", "BOMRef": "10ac17b4-9270-494c-8916-1bfbf7744a82" }, "Version": "4.1.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/@tufjs/models/package.json", "Digest": "sha1:2ac6b88622c667e4c6582d32bbb21276b6781c61" }, { "ID": "abbrev@4.0.0", "Name": "abbrev", "Identifier": { "PURL": "pkg:npm/abbrev@4.0.0", "UID": "ba8a1a4adf42ea94", "BOMRef": "a21fe857-13ff-4ef8-8747-7098af25b5fa" }, "Version": "4.0.0", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/abbrev/package.json", "Digest": "sha1:6869bc2da89cbb7aba0c148aefa7e8fc43456128" }, { "ID": "abbrev@4.0.0", "Name": "abbrev", "Identifier": { "PURL": "pkg:npm/abbrev@4.0.0", "UID": "3746113941105fbc", "BOMRef": "0e08a97a-9545-4d5f-95c3-9334244b0660" }, "Version": "4.0.0", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/abbrev/package.json", "Digest": "sha1:6869bc2da89cbb7aba0c148aefa7e8fc43456128" }, { "ID": "agent-base@7.1.4", "Name": "agent-base", "Identifier": { "PURL": "pkg:npm/agent-base@7.1.4", "UID": "49cb104d1b0b3979", "BOMRef": "ace27e40-f958-4994-b587-ccd0738606f0" }, "Version": "7.1.4", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/agent-base/package.json", "Digest": "sha1:126adbedcff6faa6826eca63c75e9193237ab10b" }, { "ID": "agent-base@7.1.4", "Name": "agent-base", "Identifier": { "PURL": "pkg:npm/agent-base@7.1.4", "UID": "8e7029001a05e470", "BOMRef": "24b6874a-531c-4015-992a-e7a33c09760c" }, "Version": "7.1.4", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/agent-base/package.json", "Digest": "sha1:126adbedcff6faa6826eca63c75e9193237ab10b" }, { "ID": "ansi-regex@5.0.1", "Name": "ansi-regex", "Identifier": { "PURL": "pkg:npm/ansi-regex@5.0.1", "UID": "3853055f9729e401", "BOMRef": "pkg:npm/ansi-regex@5.0.1" }, "Version": "5.0.1", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/ansi-regex/package.json", "Digest": "sha1:f1b78e043012e1ab5689d57377093e88f1400677" }, { "ID": "aproba@2.1.0", "Name": "aproba", "Identifier": { "PURL": "pkg:npm/aproba@2.1.0", "UID": "dc51fd7b06d8d2eb", "BOMRef": "0fc7c310-1fdb-45d7-b629-d4db58d33376" }, "Version": "2.1.0", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/aproba/package.json", "Digest": "sha1:1cc57d456b29f580ef93bb2fee5566d3e3285009" }, { "ID": "aproba@2.1.0", "Name": "aproba", "Identifier": { "PURL": "pkg:npm/aproba@2.1.0", "UID": "5a9417e85cf8e721", "BOMRef": "8bb5514b-b60d-4d3e-9254-df8d2c7aef82" }, "Version": "2.1.0", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/aproba/package.json", "Digest": "sha1:1cc57d456b29f580ef93bb2fee5566d3e3285009" }, { "ID": "archy@1.0.0", "Name": "archy", "Identifier": { "PURL": "pkg:npm/archy@1.0.0", "UID": "67113e39a5723d2b", "BOMRef": "d3653047-a5dd-4b9a-ac94-3b3c5725e232" }, "Version": "1.0.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/archy/package.json", "Digest": "sha1:3bd81e8f9d8e79057497b7473c6eac4f3d519149" }, { "ID": "archy@1.0.0", "Name": "archy", "Identifier": { "PURL": "pkg:npm/archy@1.0.0", "UID": "c306777f8faa1e75", "BOMRef": "6d2b3ab6-a56c-457c-b5c8-0aa77985db6b" }, "Version": "1.0.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/archy/package.json", "Digest": "sha1:3bd81e8f9d8e79057497b7473c6eac4f3d519149" }, { "ID": "balanced-match@4.0.4", "Name": "balanced-match", "Identifier": { "PURL": "pkg:npm/balanced-match@4.0.4", "UID": "521c4d5bc44c856", "BOMRef": "50fa95c2-2da7-4b4d-afa7-7a073deb171e" }, "Version": "4.0.4", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:e3c43a0726da69846ae4d3ebced108345891586e5a513d46eb2c2e06b844b939", "DiffID": "sha256:06273a1fde1593ea299ad4344636055f68108990f3388a54a1170207044ba828" }, "FilePath": "usr/lib/node_modules/npm/node_modules/minimatch/node_modules/balanced-match/package.json", "Digest": "sha1:a878f68f14569d5eeca00fc49803d192f24163cb" }, { "ID": "balanced-match@4.0.4", "Name": "balanced-match", "Identifier": { "PURL": "pkg:npm/balanced-match@4.0.4", "UID": "4057534f9badd3a9", "BOMRef": "f855c133-3dca-4ee1-a817-bcef9806ceb8" }, "Version": "4.0.4", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:e3c43a0726da69846ae4d3ebced108345891586e5a513d46eb2c2e06b844b939", "DiffID": "sha256:06273a1fde1593ea299ad4344636055f68108990f3388a54a1170207044ba828" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/minimatch/node_modules/balanced-match/package.json", "Digest": "sha1:a878f68f14569d5eeca00fc49803d192f24163cb" }, { "ID": "balanced-match@4.0.4", "Name": "balanced-match", "Identifier": { "PURL": "pkg:npm/balanced-match@4.0.4", "UID": "e442bd9ebc8b37e2", "BOMRef": "f4c5cc8f-6c1b-468f-a85e-633bd129e9db" }, "Version": "4.0.4", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/minimatch/node_modules/balanced-match/package.json", "Digest": "sha1:a878f68f14569d5eeca00fc49803d192f24163cb" }, { "ID": "balanced-match@4.0.4", "Name": "balanced-match", "Identifier": { "PURL": "pkg:npm/balanced-match@4.0.4", "UID": "4c9a17e01e239352", "BOMRef": "b898a0b2-8c51-4841-8c9e-f26565d7b995" }, "Version": "4.0.4", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/balanced-match/package.json", "Digest": "sha1:a878f68f14569d5eeca00fc49803d192f24163cb" }, { "ID": "balanced-match@4.0.4", "Name": "balanced-match", "Identifier": { "PURL": "pkg:npm/balanced-match@4.0.4", "UID": "b9c1ae56ea89554b", "BOMRef": "b0cb022a-c637-4019-8ff9-5b1198344824" }, "Version": "4.0.4", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/minimatch/node_modules/balanced-match/package.json", "Digest": "sha1:a878f68f14569d5eeca00fc49803d192f24163cb" }, { "ID": "bin-links@6.0.0", "Name": "bin-links", "Identifier": { "PURL": "pkg:npm/bin-links@6.0.0", "UID": "290db5a4da7d7080", "BOMRef": "f7af5fd6-dd3d-4d37-9a16-a3c82cdfbfa2" }, "Version": "6.0.0", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/bin-links/package.json", "Digest": "sha1:93d3777b34117955d6d5e16ab5342b65b8a21d46" }, { "ID": "bin-links@6.0.0", "Name": "bin-links", "Identifier": { "PURL": "pkg:npm/bin-links@6.0.0", "UID": "f7bfb0530eac78dc", "BOMRef": "80cae40f-7ea0-4dcb-b78d-4b5e843f054a" }, "Version": "6.0.0", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/bin-links/package.json", "Digest": "sha1:93d3777b34117955d6d5e16ab5342b65b8a21d46" }, { "ID": "binary-extensions@3.1.0", "Name": "binary-extensions", "Identifier": { "PURL": "pkg:npm/binary-extensions@3.1.0", "UID": "fc3f8573b163533a", "BOMRef": "94a5f2be-759c-4a18-bf09-9921794d98da" }, "Version": "3.1.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/binary-extensions/package.json", "Digest": "sha1:fd41784d905c4769ecd7a2045234bf3336b20240" }, { "ID": "binary-extensions@3.1.0", "Name": "binary-extensions", "Identifier": { "PURL": "pkg:npm/binary-extensions@3.1.0", "UID": "5739e767cbc596c5", "BOMRef": "1362f0a3-7408-446b-8afc-64944ae66609" }, "Version": "3.1.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/binary-extensions/package.json", "Digest": "sha1:fd41784d905c4769ecd7a2045234bf3336b20240" }, { "ID": "brace-expansion@5.0.3", "Name": "brace-expansion", "Identifier": { "PURL": "pkg:npm/brace-expansion@5.0.3", "UID": "1c10f79fd443c50d", "BOMRef": "pkg:npm/brace-expansion@5.0.3" }, "Version": "5.0.3", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/brace-expansion/package.json", "Digest": "sha1:afc678eba0408ee65ece9143c1a50eea31b7740a" }, { "ID": "brace-expansion@5.0.4", "Name": "brace-expansion", "Identifier": { "PURL": "pkg:npm/brace-expansion@5.0.4", "UID": "217020a92b896f62", "BOMRef": "074d9db7-df58-45e0-a89e-f111c2645881" }, "Version": "5.0.4", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:e3c43a0726da69846ae4d3ebced108345891586e5a513d46eb2c2e06b844b939", "DiffID": "sha256:06273a1fde1593ea299ad4344636055f68108990f3388a54a1170207044ba828" }, "FilePath": "usr/lib/node_modules/npm/node_modules/minimatch/node_modules/brace-expansion/package.json", "Digest": "sha1:294f6804b500fb266c02e73c294c165f31d56b76" }, { "ID": "brace-expansion@5.0.4", "Name": "brace-expansion", "Identifier": { "PURL": "pkg:npm/brace-expansion@5.0.4", "UID": "90620db9623dd104", "BOMRef": "a1338ec4-75e9-4a29-8faa-359d37505901" }, "Version": "5.0.4", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:e3c43a0726da69846ae4d3ebced108345891586e5a513d46eb2c2e06b844b939", "DiffID": "sha256:06273a1fde1593ea299ad4344636055f68108990f3388a54a1170207044ba828" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/minimatch/node_modules/brace-expansion/package.json", "Digest": "sha1:294f6804b500fb266c02e73c294c165f31d56b76" }, { "ID": "brace-expansion@5.0.4", "Name": "brace-expansion", "Identifier": { "PURL": "pkg:npm/brace-expansion@5.0.4", "UID": "23ee16608ebcb7ef", "BOMRef": "9e3120a4-c591-4f0f-bbfb-2d2f55072ad9" }, "Version": "5.0.4", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/minimatch/node_modules/brace-expansion/package.json", "Digest": "sha1:294f6804b500fb266c02e73c294c165f31d56b76" }, { "ID": "brace-expansion@5.0.4", "Name": "brace-expansion", "Identifier": { "PURL": "pkg:npm/brace-expansion@5.0.4", "UID": "60ba9e90de38493e", "BOMRef": "4d3d3ea8-981d-428f-b6a3-7e16320ecd67" }, "Version": "5.0.4", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/minimatch/node_modules/brace-expansion/package.json", "Digest": "sha1:294f6804b500fb266c02e73c294c165f31d56b76" }, { "ID": "cacache@20.0.3", "Name": "cacache", "Identifier": { "PURL": "pkg:npm/cacache@20.0.3", "UID": "da5e7faa592489bf", "BOMRef": "d2aa0365-4e06-45eb-892f-5e8c478523ea" }, "Version": "20.0.3", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/cacache/package.json", "Digest": "sha1:794ddf6857b8e0a3ab5e8b853a874fedd196d468" }, { "ID": "cacache@20.0.3", "Name": "cacache", "Identifier": { "PURL": "pkg:npm/cacache@20.0.3", "UID": "4f4be59c06964af2", "BOMRef": "72750ad5-7ef2-47da-84bd-e5b01ad397ac" }, "Version": "20.0.3", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/cacache/package.json", "Digest": "sha1:794ddf6857b8e0a3ab5e8b853a874fedd196d468" }, { "ID": "chalk@5.6.2", "Name": "chalk", "Identifier": { "PURL": "pkg:npm/chalk@5.6.2", "UID": "5a1b322bfa4ee762", "BOMRef": "2079a6be-651d-4667-969d-d5d95cdf20b2" }, "Version": "5.6.2", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/chalk/package.json", "Digest": "sha1:468d2997b68c367664e82a1d1b8bc344c65a52f6" }, { "ID": "chalk@5.6.2", "Name": "chalk", "Identifier": { "PURL": "pkg:npm/chalk@5.6.2", "UID": "21e102aa08c56189", "BOMRef": "e36cbe53-63c4-4b44-9e84-e41879ab6c27" }, "Version": "5.6.2", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/chalk/package.json", "Digest": "sha1:468d2997b68c367664e82a1d1b8bc344c65a52f6" }, { "ID": "chownr@3.0.0", "Name": "chownr", "Identifier": { "PURL": "pkg:npm/chownr@3.0.0", "UID": "ee4fc0b80e9de69a", "BOMRef": "22dbce83-05d6-4158-8ca9-ae5d1cdbb6b6" }, "Version": "3.0.0", "Licenses": [ "BlueOak-1.0.0" ], "Layer": { "Digest": "sha256:e3c43a0726da69846ae4d3ebced108345891586e5a513d46eb2c2e06b844b939", "DiffID": "sha256:06273a1fde1593ea299ad4344636055f68108990f3388a54a1170207044ba828" }, "FilePath": "usr/lib/node_modules/npm/node_modules/tar/node_modules/chownr/package.json", "Digest": "sha1:fc7d452c2e7e9b57f311b04f8b5826656ccc8e1b" }, { "ID": "chownr@3.0.0", "Name": "chownr", "Identifier": { "PURL": "pkg:npm/chownr@3.0.0", "UID": "1e278831f58bd1cc", "BOMRef": "e19e1f4b-de16-49f2-adb8-15c2c72e5d77" }, "Version": "3.0.0", "Licenses": [ "BlueOak-1.0.0" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/chownr/package.json", "Digest": "sha1:fc7d452c2e7e9b57f311b04f8b5826656ccc8e1b" }, { "ID": "chownr@3.0.0", "Name": "chownr", "Identifier": { "PURL": "pkg:npm/chownr@3.0.0", "UID": "9f90810978163e60", "BOMRef": "a0c27dd4-f391-43cf-b4fe-a6d742b01ab4" }, "Version": "3.0.0", "Licenses": [ "BlueOak-1.0.0" ], "Layer": { "Digest": "sha256:e3c43a0726da69846ae4d3ebced108345891586e5a513d46eb2c2e06b844b939", "DiffID": "sha256:06273a1fde1593ea299ad4344636055f68108990f3388a54a1170207044ba828" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/tar/node_modules/chownr/package.json", "Digest": "sha1:fc7d452c2e7e9b57f311b04f8b5826656ccc8e1b" }, { "ID": "chownr@3.0.0", "Name": "chownr", "Identifier": { "PURL": "pkg:npm/chownr@3.0.0", "UID": "c41bc96b35428cd0", "BOMRef": "92e755c4-8ba1-4524-89bf-4fd701a80624" }, "Version": "3.0.0", "Licenses": [ "BlueOak-1.0.0" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/chownr/package.json", "Digest": "sha1:fc7d452c2e7e9b57f311b04f8b5826656ccc8e1b" }, { "ID": "chownr@3.0.0", "Name": "chownr", "Identifier": { "PURL": "pkg:npm/chownr@3.0.0", "UID": "7868777839677753", "BOMRef": "ff96eb36-1002-42b4-a005-347540fd2b9d" }, "Version": "3.0.0", "Licenses": [ "BlueOak-1.0.0" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/tar/node_modules/chownr/package.json", "Digest": "sha1:fc7d452c2e7e9b57f311b04f8b5826656ccc8e1b" }, { "ID": "chownr@3.0.0", "Name": "chownr", "Identifier": { "PURL": "pkg:npm/chownr@3.0.0", "UID": "a2f1e5f3dd85b7cb", "BOMRef": "396e6dd6-f48a-4afd-bf98-378719c76735" }, "Version": "3.0.0", "Licenses": [ "BlueOak-1.0.0" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/tar/node_modules/chownr/package.json", "Digest": "sha1:fc7d452c2e7e9b57f311b04f8b5826656ccc8e1b" }, { "ID": "ci-info@4.3.1", "Name": "ci-info", "Identifier": { "PURL": "pkg:npm/ci-info@4.3.1", "UID": "da6fe842d6c86bc3", "BOMRef": "pkg:npm/ci-info@4.3.1" }, "Version": "4.3.1", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/ci-info/package.json", "Digest": "sha1:6b3b12a5534f6e76cb13a851250efc1bb7e5ff21" }, { "ID": "ci-info@4.4.0", "Name": "ci-info", "Identifier": { "PURL": "pkg:npm/ci-info@4.4.0", "UID": "7c6d9141fe79b5ca", "BOMRef": "pkg:npm/ci-info@4.4.0" }, "Version": "4.4.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/ci-info/package.json", "Digest": "sha1:e2623b66b993dca3177e444bd44a85376724c11d" }, { "ID": "cidr-regex@5.0.1", "Name": "cidr-regex", "Identifier": { "PURL": "pkg:npm/cidr-regex@5.0.1", "UID": "4e020b614c67b1b5", "BOMRef": "pkg:npm/cidr-regex@5.0.1" }, "Version": "5.0.1", "Licenses": [ "BSD-2-Clause" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/cidr-regex/package.json", "Digest": "sha1:472161dcb9eaebd9f280a0b36172ba21f93a9b86" }, { "ID": "cidr-regex@5.0.3", "Name": "cidr-regex", "Identifier": { "PURL": "pkg:npm/cidr-regex@5.0.3", "UID": "5754684715958fb2", "BOMRef": "pkg:npm/cidr-regex@5.0.3" }, "Version": "5.0.3", "Licenses": [ "BSD-2-Clause" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/cidr-regex/package.json", "Digest": "sha1:e6f201f195a92eda4aa01dca4b73641ac79e1d89" }, { "ID": "cli-columns@4.0.0", "Name": "cli-columns", "Identifier": { "PURL": "pkg:npm/cli-columns@4.0.0", "UID": "321f0827a1f28ba7", "BOMRef": "pkg:npm/cli-columns@4.0.0" }, "Version": "4.0.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/cli-columns/package.json", "Digest": "sha1:06c7ce3d82ba512eafa34bab2566bcce77d4beb9" }, { "ID": "cmd-shim@8.0.0", "Name": "cmd-shim", "Identifier": { "PURL": "pkg:npm/cmd-shim@8.0.0", "UID": "3ba760727f1cb512", "BOMRef": "50bbbca5-1db8-4dfc-8d50-f7e9b13bacc7" }, "Version": "8.0.0", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/cmd-shim/package.json", "Digest": "sha1:bd1a460fd1e14f3dd73e03a0b21fc6e8bb60bfff" }, { "ID": "cmd-shim@8.0.0", "Name": "cmd-shim", "Identifier": { "PURL": "pkg:npm/cmd-shim@8.0.0", "UID": "73ee380a5a0e0efa", "BOMRef": "2596aa80-0839-4762-90e9-e74580e0cef1" }, "Version": "8.0.0", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/cmd-shim/package.json", "Digest": "sha1:bd1a460fd1e14f3dd73e03a0b21fc6e8bb60bfff" }, { "ID": "common-ancestor-path@2.0.0", "Name": "common-ancestor-path", "Identifier": { "PURL": "pkg:npm/common-ancestor-path@2.0.0", "UID": "c861847307006d5", "BOMRef": "e9698729-e294-4f10-ac81-7eaaf8c3f0a3" }, "Version": "2.0.0", "Licenses": [ "BlueOak-1.0.0" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/common-ancestor-path/package.json", "Digest": "sha1:8036c99c2d18b8840dc4aa274be9fbe844e9e16f" }, { "ID": "common-ancestor-path@2.0.0", "Name": "common-ancestor-path", "Identifier": { "PURL": "pkg:npm/common-ancestor-path@2.0.0", "UID": "2bb940aabbdd720d", "BOMRef": "893dde69-aa2a-4842-ac2e-c50077be7bb9" }, "Version": "2.0.0", "Licenses": [ "BlueOak-1.0.0" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/common-ancestor-path/package.json", "Digest": "sha1:8036c99c2d18b8840dc4aa274be9fbe844e9e16f" }, { "ID": "corepack@0.34.6", "Name": "corepack", "Identifier": { "PURL": "pkg:npm/corepack@0.34.6", "UID": "d9a8a2116ad5d7a8", "BOMRef": "pkg:npm/corepack@0.34.6" }, "Version": "0.34.6", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/corepack/package.json", "Digest": "sha1:5c7c6859a36c05736c52ecdc731bfa3499ff31fb" }, { "ID": "cross-spawn@7.0.6", "Name": "cross-spawn", "Identifier": { "PURL": "pkg:npm/cross-spawn@7.0.6", "UID": "6bb87269afa4ff2a", "BOMRef": "8d826687-d960-47d7-9499-8d98ecf5db59" }, "Version": "7.0.6", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:e3c43a0726da69846ae4d3ebced108345891586e5a513d46eb2c2e06b844b939", "DiffID": "sha256:06273a1fde1593ea299ad4344636055f68108990f3388a54a1170207044ba828" }, "FilePath": "usr/lib/node_modules/npm/node_modules/glob/node_modules/cross-spawn/package.json", "Digest": "sha1:9becaa8ecb51ad9b303dd62369423cb9f287163a" }, { "ID": "cross-spawn@7.0.6", "Name": "cross-spawn", "Identifier": { "PURL": "pkg:npm/cross-spawn@7.0.6", "UID": "38e49f711bdad745", "BOMRef": "8236e502-68a8-47a3-9ee6-f20f041d18f0" }, "Version": "7.0.6", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:e3c43a0726da69846ae4d3ebced108345891586e5a513d46eb2c2e06b844b939", "DiffID": "sha256:06273a1fde1593ea299ad4344636055f68108990f3388a54a1170207044ba828" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/glob/node_modules/cross-spawn/package.json", "Digest": "sha1:9becaa8ecb51ad9b303dd62369423cb9f287163a" }, { "ID": "cross-spawn@7.0.6", "Name": "cross-spawn", "Identifier": { "PURL": "pkg:npm/cross-spawn@7.0.6", "UID": "e22e236f1d9be2bf", "BOMRef": "438f8785-11e3-4e73-8459-fa9401f5321a" }, "Version": "7.0.6", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/glob/node_modules/cross-spawn/package.json", "Digest": "sha1:9becaa8ecb51ad9b303dd62369423cb9f287163a" }, { "ID": "cross-spawn@7.0.6", "Name": "cross-spawn", "Identifier": { "PURL": "pkg:npm/cross-spawn@7.0.6", "UID": "3e408d12d4fb81e0", "BOMRef": "110cc808-f1b7-430f-8149-792a4f12533d" }, "Version": "7.0.6", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/glob/node_modules/cross-spawn/package.json", "Digest": "sha1:9becaa8ecb51ad9b303dd62369423cb9f287163a" }, { "ID": "cssesc@3.0.0", "Name": "cssesc", "Identifier": { "PURL": "pkg:npm/cssesc@3.0.0", "UID": "143398b4a8dd0db", "BOMRef": "c68cd0f4-05cf-4b72-a3e5-58c631d5e291" }, "Version": "3.0.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/cssesc/package.json", "Digest": "sha1:3a37cece4f715e91ef0aed027baea0039bb20087" }, { "ID": "cssesc@3.0.0", "Name": "cssesc", "Identifier": { "PURL": "pkg:npm/cssesc@3.0.0", "UID": "10efd7e32a22b64b", "BOMRef": "b6f6e69e-4ec3-47ed-9b3a-f857a59de07c" }, "Version": "3.0.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/cssesc/package.json", "Digest": "sha1:3a37cece4f715e91ef0aed027baea0039bb20087" }, { "ID": "debug@4.4.3", "Name": "debug", "Identifier": { "PURL": "pkg:npm/debug@4.4.3", "UID": "f52930af66c6033f", "BOMRef": "e2f35184-9362-4973-8dd2-9c1f5fd126f3" }, "Version": "4.4.3", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/debug/package.json", "Digest": "sha1:f1c3de400f61581ce6d6d43f9ec4c456cb8017f7" }, { "ID": "debug@4.4.3", "Name": "debug", "Identifier": { "PURL": "pkg:npm/debug@4.4.3", "UID": "1d39df0a874ed1", "BOMRef": "931a201d-92fd-42af-9891-637e4c776655" }, "Version": "4.4.3", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/debug/package.json", "Digest": "sha1:f1c3de400f61581ce6d6d43f9ec4c456cb8017f7" }, { "ID": "diff@8.0.3", "Name": "diff", "Identifier": { "PURL": "pkg:npm/diff@8.0.3", "UID": "4268263e674056e8", "BOMRef": "f84bd4c3-7d15-4c68-857e-615848af74e5" }, "Version": "8.0.3", "Licenses": [ "BSD-3-Clause" ], "Layer": { "Digest": "sha256:e3c43a0726da69846ae4d3ebced108345891586e5a513d46eb2c2e06b844b939", "DiffID": "sha256:06273a1fde1593ea299ad4344636055f68108990f3388a54a1170207044ba828" }, "FilePath": "usr/lib/node_modules/npm/node_modules/diff/package.json", "Digest": "sha1:ee7acad3ce516cc674e0a88afbb6964bb88e355d" }, { "ID": "diff@8.0.3", "Name": "diff", "Identifier": { "PURL": "pkg:npm/diff@8.0.3", "UID": "731dbad351a39800", "BOMRef": "80fdce7a-26ef-456b-acd0-f1bbf1fff180" }, "Version": "8.0.3", "Licenses": [ "BSD-3-Clause" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/diff/package.json", "Digest": "sha1:ee7acad3ce516cc674e0a88afbb6964bb88e355d" }, { "ID": "diff@8.0.3", "Name": "diff", "Identifier": { "PURL": "pkg:npm/diff@8.0.3", "UID": "672a790dccbdec82", "BOMRef": "404e7c5a-0dba-49be-8104-b3964af98b58" }, "Version": "8.0.3", "Licenses": [ "BSD-3-Clause" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/diff/package.json", "Digest": "sha1:ee7acad3ce516cc674e0a88afbb6964bb88e355d" }, { "ID": "diff@8.0.3", "Name": "diff", "Identifier": { "PURL": "pkg:npm/diff@8.0.3", "UID": "1d778314fe9f80ac", "BOMRef": "c2496891-6980-4792-ba04-9a26b3628221" }, "Version": "8.0.3", "Licenses": [ "BSD-3-Clause" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/diff/package.json", "Digest": "sha1:ee7acad3ce516cc674e0a88afbb6964bb88e355d" }, { "ID": "emoji-regex@8.0.0", "Name": "emoji-regex", "Identifier": { "PURL": "pkg:npm/emoji-regex@8.0.0", "UID": "4d04a9c730f59b1a", "BOMRef": "pkg:npm/emoji-regex@8.0.0" }, "Version": "8.0.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/emoji-regex/package.json", "Digest": "sha1:c26fe90da5886724a2676b8e3d5890beeacaad20" }, { "ID": "encoding@0.1.13", "Name": "encoding", "Identifier": { "PURL": "pkg:npm/encoding@0.1.13", "UID": "9e8f31708e0d27a9", "BOMRef": "pkg:npm/encoding@0.1.13" }, "Version": "0.1.13", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/encoding/package.json", "Digest": "sha1:52b117f2bc3113970224b9dc97b7fc18f7df30ab" }, { "ID": "env-paths@2.2.1", "Name": "env-paths", "Identifier": { "PURL": "pkg:npm/env-paths@2.2.1", "UID": "57b51db0499e179a", "BOMRef": "73bd3cf0-82b1-4dd4-940f-616315aa7b22" }, "Version": "2.2.1", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/env-paths/package.json", "Digest": "sha1:b5b570f41c1d3e8f251fd06d075cefea4a3449a9" }, { "ID": "env-paths@2.2.1", "Name": "env-paths", "Identifier": { "PURL": "pkg:npm/env-paths@2.2.1", "UID": "7c223258e27c99e9", "BOMRef": "f2afd0f4-298a-41f4-8808-f3191a6eed87" }, "Version": "2.2.1", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/env-paths/package.json", "Digest": "sha1:b5b570f41c1d3e8f251fd06d075cefea4a3449a9" }, { "ID": "err-code@2.0.3", "Name": "err-code", "Identifier": { "PURL": "pkg:npm/err-code@2.0.3", "UID": "79dd5c546aec3210", "BOMRef": "75d4c1c4-ccec-47a6-8cbb-03038a41ff45" }, "Version": "2.0.3", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/err-code/package.json", "Digest": "sha1:5c7bc63340bc312d1563bb2b369e333e1165ab04" }, { "ID": "err-code@2.0.3", "Name": "err-code", "Identifier": { "PURL": "pkg:npm/err-code@2.0.3", "UID": "56f7b36d2b3f40e2", "BOMRef": "95c766ad-3aaf-4f72-a0be-5225fe350ef4" }, "Version": "2.0.3", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/err-code/package.json", "Digest": "sha1:5c7bc63340bc312d1563bb2b369e333e1165ab04" }, { "ID": "exponential-backoff@3.1.3", "Name": "exponential-backoff", "Identifier": { "PURL": "pkg:npm/exponential-backoff@3.1.3", "UID": "63f16d1e6085469b", "BOMRef": "4c02b5f5-9804-444d-a22b-a268adafe95e" }, "Version": "3.1.3", "Licenses": [ "Apache-2.0" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/exponential-backoff/package.json", "Digest": "sha1:ad6dedac96b4754817f15c7f62c6b1d72fa249fe" }, { "ID": "exponential-backoff@3.1.3", "Name": "exponential-backoff", "Identifier": { "PURL": "pkg:npm/exponential-backoff@3.1.3", "UID": "f5c85a0b3bd32d02", "BOMRef": "74de3228-beee-4fa9-ae5f-5f31456275d5" }, "Version": "3.1.3", "Licenses": [ "Apache-2.0" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/exponential-backoff/package.json", "Digest": "sha1:ad6dedac96b4754817f15c7f62c6b1d72fa249fe" }, { "ID": "fastest-levenshtein@1.0.16", "Name": "fastest-levenshtein", "Identifier": { "PURL": "pkg:npm/fastest-levenshtein@1.0.16", "UID": "511b588e6d9d69cc", "BOMRef": "1e749f6a-1f89-4a8a-a7c0-241c0df16958" }, "Version": "1.0.16", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/fastest-levenshtein/package.json", "Digest": "sha1:3aca1160ba8ff112a40cdfd2c860a5d6cd689391" }, { "ID": "fastest-levenshtein@1.0.16", "Name": "fastest-levenshtein", "Identifier": { "PURL": "pkg:npm/fastest-levenshtein@1.0.16", "UID": "91c48e012ea9c872", "BOMRef": "f3b5f129-febc-46f4-8d4b-e685b0f1d98e" }, "Version": "1.0.16", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/fastest-levenshtein/package.json", "Digest": "sha1:3aca1160ba8ff112a40cdfd2c860a5d6cd689391" }, { "ID": "fdir@6.5.0", "Name": "fdir", "Identifier": { "PURL": "pkg:npm/fdir@6.5.0", "UID": "ccb152a34c6da2c4", "BOMRef": "a457589f-6c5f-4011-b5b4-6101498a4b3b" }, "Version": "6.5.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/tinyglobby/node_modules/fdir/package.json", "Digest": "sha1:87c30edff77dd2a0847ac92b0a76837682d64eb2" }, { "ID": "fdir@6.5.0", "Name": "fdir", "Identifier": { "PURL": "pkg:npm/fdir@6.5.0", "UID": "a10e9aa13e737a1a", "BOMRef": "d81fefe6-4bb3-4ca7-9dfe-b9222ac7ff05" }, "Version": "6.5.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/tinyglobby/node_modules/fdir/package.json", "Digest": "sha1:87c30edff77dd2a0847ac92b0a76837682d64eb2" }, { "ID": "foreground-child@3.3.1", "Name": "foreground-child", "Identifier": { "PURL": "pkg:npm/foreground-child@3.3.1", "UID": "3be8f58121b545f3", "BOMRef": "7bea4caf-cdde-4ce9-9b3b-946d4987ca06" }, "Version": "3.3.1", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:e3c43a0726da69846ae4d3ebced108345891586e5a513d46eb2c2e06b844b939", "DiffID": "sha256:06273a1fde1593ea299ad4344636055f68108990f3388a54a1170207044ba828" }, "FilePath": "usr/lib/node_modules/npm/node_modules/glob/node_modules/foreground-child/package.json", "Digest": "sha1:ca2af14071df0e6084e5797f9fbcf179d51f9e5d" }, { "ID": "foreground-child@3.3.1", "Name": "foreground-child", "Identifier": { "PURL": "pkg:npm/foreground-child@3.3.1", "UID": "9148c41d9c837b04", "BOMRef": "94512370-f34e-4785-b9ba-41ae03c147af" }, "Version": "3.3.1", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:e3c43a0726da69846ae4d3ebced108345891586e5a513d46eb2c2e06b844b939", "DiffID": "sha256:06273a1fde1593ea299ad4344636055f68108990f3388a54a1170207044ba828" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/glob/node_modules/foreground-child/package.json", "Digest": "sha1:ca2af14071df0e6084e5797f9fbcf179d51f9e5d" }, { "ID": "foreground-child@3.3.1", "Name": "foreground-child", "Identifier": { "PURL": "pkg:npm/foreground-child@3.3.1", "UID": "80fce4e14879e437", "BOMRef": "e675bb29-633f-482a-b082-19f230ae1ce5" }, "Version": "3.3.1", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/glob/node_modules/foreground-child/package.json", "Digest": "sha1:ca2af14071df0e6084e5797f9fbcf179d51f9e5d" }, { "ID": "foreground-child@3.3.1", "Name": "foreground-child", "Identifier": { "PURL": "pkg:npm/foreground-child@3.3.1", "UID": "52adbd6dd195d57a", "BOMRef": "b97ce42f-50bb-4cf4-9cc7-947117934290" }, "Version": "3.3.1", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/glob/node_modules/foreground-child/package.json", "Digest": "sha1:ca2af14071df0e6084e5797f9fbcf179d51f9e5d" }, { "ID": "fs-minipass@3.0.3", "Name": "fs-minipass", "Identifier": { "PURL": "pkg:npm/fs-minipass@3.0.3", "UID": "72f9c39b22c5fcc9", "BOMRef": "5450f55f-5fb8-43ae-910c-d5e01cb668f9" }, "Version": "3.0.3", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/fs-minipass/package.json", "Digest": "sha1:2e472ead48322dd560133d10f39db20ee5e3fae1" }, { "ID": "fs-minipass@3.0.3", "Name": "fs-minipass", "Identifier": { "PURL": "pkg:npm/fs-minipass@3.0.3", "UID": "751e6d8579f6d8c9", "BOMRef": "f39e07f7-f4cf-495c-be3b-25126ed1bd8f" }, "Version": "3.0.3", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/fs-minipass/package.json", "Digest": "sha1:2e472ead48322dd560133d10f39db20ee5e3fae1" }, { "ID": "glob@11.1.0", "Name": "glob", "Identifier": { "PURL": "pkg:npm/glob@11.1.0", "UID": "95ff6fc3fd1dab7b", "BOMRef": "500fc6ce-067c-4144-9e0e-8b4d063c3f4f" }, "Version": "11.1.0", "Licenses": [ "BlueOak-1.0.0" ], "Layer": { "Digest": "sha256:e3c43a0726da69846ae4d3ebced108345891586e5a513d46eb2c2e06b844b939", "DiffID": "sha256:06273a1fde1593ea299ad4344636055f68108990f3388a54a1170207044ba828" }, "FilePath": "usr/lib/node_modules/npm/node_modules/glob/package.json", "Digest": "sha1:9ce880ebacb6a4fc8ce706b0c4e165a74a4810a6" }, { "ID": "glob@11.1.0", "Name": "glob", "Identifier": { "PURL": "pkg:npm/glob@11.1.0", "UID": "179e78c67499c016", "BOMRef": "255fe54c-6c76-4520-acc4-003c82c19ab3" }, "Version": "11.1.0", "Licenses": [ "BlueOak-1.0.0" ], "Layer": { "Digest": "sha256:e3c43a0726da69846ae4d3ebced108345891586e5a513d46eb2c2e06b844b939", "DiffID": "sha256:06273a1fde1593ea299ad4344636055f68108990f3388a54a1170207044ba828" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/glob/package.json", "Digest": "sha1:9ce880ebacb6a4fc8ce706b0c4e165a74a4810a6" }, { "ID": "glob@11.1.0", "Name": "glob", "Identifier": { "PURL": "pkg:npm/glob@11.1.0", "UID": "bb9182ade3eba09a", "BOMRef": "8543156a-eb5c-48a4-9706-4758ea9b1931" }, "Version": "11.1.0", "Licenses": [ "BlueOak-1.0.0" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/glob/package.json", "Digest": "sha1:9ce880ebacb6a4fc8ce706b0c4e165a74a4810a6" }, { "ID": "glob@11.1.0", "Name": "glob", "Identifier": { "PURL": "pkg:npm/glob@11.1.0", "UID": "fe3acebdb8276cee", "BOMRef": "7a686554-93a2-426f-b365-806c164c8094" }, "Version": "11.1.0", "Licenses": [ "BlueOak-1.0.0" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/glob/package.json", "Digest": "sha1:9ce880ebacb6a4fc8ce706b0c4e165a74a4810a6" }, { "ID": "graceful-fs@4.2.11", "Name": "graceful-fs", "Identifier": { "PURL": "pkg:npm/graceful-fs@4.2.11", "UID": "b907c2a42286d09a", "BOMRef": "0ad4877c-d346-421f-a766-e4bda222bd78" }, "Version": "4.2.11", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/graceful-fs/package.json", "Digest": "sha1:21a733b3f7e2ee153041de90fb03d5596934f346" }, { "ID": "graceful-fs@4.2.11", "Name": "graceful-fs", "Identifier": { "PURL": "pkg:npm/graceful-fs@4.2.11", "UID": "9ba3a50ff2fc2e4", "BOMRef": "e7d6c082-1e02-401e-8c6a-536112e15b0e" }, "Version": "4.2.11", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/graceful-fs/package.json", "Digest": "sha1:21a733b3f7e2ee153041de90fb03d5596934f346" }, { "ID": "hosted-git-info@9.0.2", "Name": "hosted-git-info", "Identifier": { "PURL": "pkg:npm/hosted-git-info@9.0.2", "UID": "20ae5feaf4dbe772", "BOMRef": "35355d55-38f9-43ce-b6f5-29381397ff70" }, "Version": "9.0.2", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/hosted-git-info/package.json", "Digest": "sha1:bd2953244687bfff7fdc74a3798a66119f64428e" }, { "ID": "hosted-git-info@9.0.2", "Name": "hosted-git-info", "Identifier": { "PURL": "pkg:npm/hosted-git-info@9.0.2", "UID": "7ee3bcec36b07904", "BOMRef": "db348de0-8e77-47c6-90da-3ffb574fe0a6" }, "Version": "9.0.2", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/hosted-git-info/package.json", "Digest": "sha1:bd2953244687bfff7fdc74a3798a66119f64428e" }, { "ID": "http-cache-semantics@4.2.0", "Name": "http-cache-semantics", "Identifier": { "PURL": "pkg:npm/http-cache-semantics@4.2.0", "UID": "70bffe87404e75b9", "BOMRef": "b510f084-de3c-4988-bd06-5faa3ba13c66" }, "Version": "4.2.0", "Licenses": [ "BSD-2-Clause" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/http-cache-semantics/package.json", "Digest": "sha1:563b0d8af1a9641083e8f6cefbf4259fa845e7ca" }, { "ID": "http-cache-semantics@4.2.0", "Name": "http-cache-semantics", "Identifier": { "PURL": "pkg:npm/http-cache-semantics@4.2.0", "UID": "81155d399812b89a", "BOMRef": "186a2894-dabf-42c9-9db5-37f09bec2c80" }, "Version": "4.2.0", "Licenses": [ "BSD-2-Clause" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/http-cache-semantics/package.json", "Digest": "sha1:563b0d8af1a9641083e8f6cefbf4259fa845e7ca" }, { "ID": "http-proxy-agent@7.0.2", "Name": "http-proxy-agent", "Identifier": { "PURL": "pkg:npm/http-proxy-agent@7.0.2", "UID": "bdc8c1a7430f2a2e", "BOMRef": "4f6d565b-0b77-4528-94bc-d188a8a03f7f" }, "Version": "7.0.2", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/http-proxy-agent/package.json", "Digest": "sha1:f8b2b2bf2f3e2f8491496f9efe80b96442a803a9" }, { "ID": "http-proxy-agent@7.0.2", "Name": "http-proxy-agent", "Identifier": { "PURL": "pkg:npm/http-proxy-agent@7.0.2", "UID": "2b9d8bb1e8588450", "BOMRef": "fe3f3021-18a6-4ec9-a401-5ddd251d593d" }, "Version": "7.0.2", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/http-proxy-agent/package.json", "Digest": "sha1:f8b2b2bf2f3e2f8491496f9efe80b96442a803a9" }, { "ID": "https-proxy-agent@7.0.6", "Name": "https-proxy-agent", "Identifier": { "PURL": "pkg:npm/https-proxy-agent@7.0.6", "UID": "cb76bca4792fd102", "BOMRef": "2f17e5b7-9961-472b-a937-54e36222ff20" }, "Version": "7.0.6", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/https-proxy-agent/package.json", "Digest": "sha1:17ea193ab8be5c579a2d10e9a13bff389858f7e8" }, { "ID": "https-proxy-agent@7.0.6", "Name": "https-proxy-agent", "Identifier": { "PURL": "pkg:npm/https-proxy-agent@7.0.6", "UID": "cd4ce28281fd9db2", "BOMRef": "8c446066-1128-41b7-a61d-3c0818760e5c" }, "Version": "7.0.6", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/https-proxy-agent/package.json", "Digest": "sha1:17ea193ab8be5c579a2d10e9a13bff389858f7e8" }, { "ID": "iconv-lite@0.6.3", "Name": "iconv-lite", "Identifier": { "PURL": "pkg:npm/iconv-lite@0.6.3", "UID": "4543f8b94d4ecba0", "BOMRef": "pkg:npm/iconv-lite@0.6.3" }, "Version": "0.6.3", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/iconv-lite/package.json", "Digest": "sha1:a3d90badf75db503f5dd3ff3fb76d120d1424978" }, { "ID": "iconv-lite@0.7.2", "Name": "iconv-lite", "Identifier": { "PURL": "pkg:npm/iconv-lite@0.7.2", "UID": "39bd3513e842081", "BOMRef": "pkg:npm/iconv-lite@0.7.2" }, "Version": "0.7.2", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/iconv-lite/package.json", "Digest": "sha1:680ec19cf66d40d6c095009f9ee97807151dccd6" }, { "ID": "ignore-walk@8.0.0", "Name": "ignore-walk", "Identifier": { "PURL": "pkg:npm/ignore-walk@8.0.0", "UID": "b6a84a669580473c", "BOMRef": "4f69dfaf-cf20-4040-8ff6-bd6fae64ddf6" }, "Version": "8.0.0", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/ignore-walk/package.json", "Digest": "sha1:48b090250976a784406de6d243cb8221ac357a08" }, { "ID": "ignore-walk@8.0.0", "Name": "ignore-walk", "Identifier": { "PURL": "pkg:npm/ignore-walk@8.0.0", "UID": "5afd139977235ac6", "BOMRef": "bb675344-2609-42cd-99a8-d5f7adac2484" }, "Version": "8.0.0", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/ignore-walk/package.json", "Digest": "sha1:48b090250976a784406de6d243cb8221ac357a08" }, { "ID": "imurmurhash@0.1.4", "Name": "imurmurhash", "Identifier": { "PURL": "pkg:npm/imurmurhash@0.1.4", "UID": "8f11e42d1f363d4", "BOMRef": "f5a7662f-01fe-41a6-839d-2ce5d51a3d13" }, "Version": "0.1.4", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/imurmurhash/package.json", "Digest": "sha1:a28f2b413385af4188c4fc0ad1e0c38c2cd03cf4" }, { "ID": "imurmurhash@0.1.4", "Name": "imurmurhash", "Identifier": { "PURL": "pkg:npm/imurmurhash@0.1.4", "UID": "2a0b1d77b9c27bbe", "BOMRef": "4518caf9-051b-4af1-9ab8-31fd4fa02fa2" }, "Version": "0.1.4", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/imurmurhash/package.json", "Digest": "sha1:a28f2b413385af4188c4fc0ad1e0c38c2cd03cf4" }, { "ID": "ini@6.0.0", "Name": "ini", "Identifier": { "PURL": "pkg:npm/ini@6.0.0", "UID": "4b36f08d286469ea", "BOMRef": "295c13d6-50b3-4849-84fb-a96922cf64a9" }, "Version": "6.0.0", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/ini/package.json", "Digest": "sha1:5edfb581604a00537da0213d0168236a05a49bf5" }, { "ID": "ini@6.0.0", "Name": "ini", "Identifier": { "PURL": "pkg:npm/ini@6.0.0", "UID": "40cdff9820cd52df", "BOMRef": "04a73bcc-63e7-4542-923b-c37b46604eb1" }, "Version": "6.0.0", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/ini/package.json", "Digest": "sha1:5edfb581604a00537da0213d0168236a05a49bf5" }, { "ID": "init-package-json@8.2.4", "Name": "init-package-json", "Identifier": { "PURL": "pkg:npm/init-package-json@8.2.4", "UID": "bfb2bd26944c6e8d", "BOMRef": "pkg:npm/init-package-json@8.2.4" }, "Version": "8.2.4", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/init-package-json/package.json", "Digest": "sha1:5112f0d23125bc0d7e4c7980385806e8bfeb15ce" }, { "ID": "init-package-json@8.2.5", "Name": "init-package-json", "Identifier": { "PURL": "pkg:npm/init-package-json@8.2.5", "UID": "2e5d6a595db1886b", "BOMRef": "pkg:npm/init-package-json@8.2.5" }, "Version": "8.2.5", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/init-package-json/package.json", "Digest": "sha1:135bdc6d9e7c3b4f96681fa03c2de7f644275cae" }, { "ID": "ip-address@10.1.0", "Name": "ip-address", "Identifier": { "PURL": "pkg:npm/ip-address@10.1.0", "UID": "2a0fe4919c942d62", "BOMRef": "c35e54f1-916f-4c17-911e-7591ba27732b" }, "Version": "10.1.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/ip-address/package.json", "Digest": "sha1:191d8a246dac65b7bb2707c1b08770812e9024e6" }, { "ID": "ip-address@10.1.0", "Name": "ip-address", "Identifier": { "PURL": "pkg:npm/ip-address@10.1.0", "UID": "6b14b715e4b5bd0", "BOMRef": "5ebce54b-e8db-4478-8107-b8642a10c7b2" }, "Version": "10.1.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/ip-address/package.json", "Digest": "sha1:191d8a246dac65b7bb2707c1b08770812e9024e6" }, { "ID": "ip-regex@5.0.0", "Name": "ip-regex", "Identifier": { "PURL": "pkg:npm/ip-regex@5.0.0", "UID": "ad360fde4b3ba4a6", "BOMRef": "pkg:npm/ip-regex@5.0.0" }, "Version": "5.0.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/ip-regex/package.json", "Digest": "sha1:e3ebe61a5855188e86da90f29b0ea8c44793b9f0" }, { "ID": "is-cidr@6.0.1", "Name": "is-cidr", "Identifier": { "PURL": "pkg:npm/is-cidr@6.0.1", "UID": "77df115c41e18f0a", "BOMRef": "pkg:npm/is-cidr@6.0.1" }, "Version": "6.0.1", "Licenses": [ "BSD-2-Clause" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/is-cidr/package.json", "Digest": "sha1:7ae4aacf966b4f49bd609909796a7700fd8e877d" }, { "ID": "is-cidr@6.0.3", "Name": "is-cidr", "Identifier": { "PURL": "pkg:npm/is-cidr@6.0.3", "UID": "fea0d605ca8f32d5", "BOMRef": "pkg:npm/is-cidr@6.0.3" }, "Version": "6.0.3", "Licenses": [ "BSD-2-Clause" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/is-cidr/package.json", "Digest": "sha1:1542d8b025df8f5b8246fdc01f4fe37c5a065a31" }, { "ID": "is-fullwidth-code-point@3.0.0", "Name": "is-fullwidth-code-point", "Identifier": { "PURL": "pkg:npm/is-fullwidth-code-point@3.0.0", "UID": "fb5496d3db98ee4e", "BOMRef": "pkg:npm/is-fullwidth-code-point@3.0.0" }, "Version": "3.0.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/is-fullwidth-code-point/package.json", "Digest": "sha1:49dbcba3eb3e3cba5b97bce28eb6194775d23c88" }, { "ID": "isexe@2.0.0", "Name": "isexe", "Identifier": { "PURL": "pkg:npm/isexe@2.0.0", "UID": "dfb4d72ccf70589b", "BOMRef": "7b1a7383-315c-49c6-8a82-63336c5853f3" }, "Version": "2.0.0", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:e3c43a0726da69846ae4d3ebced108345891586e5a513d46eb2c2e06b844b939", "DiffID": "sha256:06273a1fde1593ea299ad4344636055f68108990f3388a54a1170207044ba828" }, "FilePath": "usr/lib/node_modules/npm/node_modules/glob/node_modules/isexe/package.json", "Digest": "sha1:3b3eab80c4ffd08eef6b3381b98de7be3649d06b" }, { "ID": "isexe@2.0.0", "Name": "isexe", "Identifier": { "PURL": "pkg:npm/isexe@2.0.0", "UID": "b3eda066f2fe342a", "BOMRef": "d8819fdd-6f6e-47f6-a907-758cf5d8fb58" }, "Version": "2.0.0", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:e3c43a0726da69846ae4d3ebced108345891586e5a513d46eb2c2e06b844b939", "DiffID": "sha256:06273a1fde1593ea299ad4344636055f68108990f3388a54a1170207044ba828" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/glob/node_modules/isexe/package.json", "Digest": "sha1:3b3eab80c4ffd08eef6b3381b98de7be3649d06b" }, { "ID": "isexe@2.0.0", "Name": "isexe", "Identifier": { "PURL": "pkg:npm/isexe@2.0.0", "UID": "5a21a0acb37bb798", "BOMRef": "b39480fd-8678-4ddc-a13a-0485a0ac089c" }, "Version": "2.0.0", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/glob/node_modules/isexe/package.json", "Digest": "sha1:3b3eab80c4ffd08eef6b3381b98de7be3649d06b" }, { "ID": "isexe@2.0.0", "Name": "isexe", "Identifier": { "PURL": "pkg:npm/isexe@2.0.0", "UID": "1641f1f777081eca", "BOMRef": "b4740bd5-b35b-44fc-aac8-c3d6d6dfb566" }, "Version": "2.0.0", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/glob/node_modules/isexe/package.json", "Digest": "sha1:3b3eab80c4ffd08eef6b3381b98de7be3649d06b" }, { "ID": "isexe@3.1.1", "Name": "isexe", "Identifier": { "PURL": "pkg:npm/isexe@3.1.1", "UID": "68e56cd34be9f075", "BOMRef": "pkg:npm/isexe@3.1.1" }, "Version": "3.1.1", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/isexe/package.json", "Digest": "sha1:33fc88b1f05370bb6518291c601cf96cfcafdc3b" }, { "ID": "isexe@4.0.0", "Name": "isexe", "Identifier": { "PURL": "pkg:npm/isexe@4.0.0", "UID": "539da7d9d33e8f28", "BOMRef": "pkg:npm/isexe@4.0.0" }, "Version": "4.0.0", "Licenses": [ "BlueOak-1.0.0" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/isexe/package.json", "Digest": "sha1:66620ebb413146985b58e32e2fb7007a46903867" }, { "ID": "jackspeak@4.2.3", "Name": "jackspeak", "Identifier": { "PURL": "pkg:npm/jackspeak@4.2.3", "UID": "929d9a732d074de1", "BOMRef": "1fc6b5ad-f6a7-4ef3-ad4b-931d4cc972f4" }, "Version": "4.2.3", "Licenses": [ "BlueOak-1.0.0" ], "Layer": { "Digest": "sha256:e3c43a0726da69846ae4d3ebced108345891586e5a513d46eb2c2e06b844b939", "DiffID": "sha256:06273a1fde1593ea299ad4344636055f68108990f3388a54a1170207044ba828" }, "FilePath": "usr/lib/node_modules/npm/node_modules/glob/node_modules/jackspeak/package.json", "Digest": "sha1:45d9816050ff7a6de553a418f4a0038a406fe991" }, { "ID": "jackspeak@4.2.3", "Name": "jackspeak", "Identifier": { "PURL": "pkg:npm/jackspeak@4.2.3", "UID": "65993d936b72395b", "BOMRef": "b0dc1839-6b4b-4785-8d56-1ca42c7b2ab7" }, "Version": "4.2.3", "Licenses": [ "BlueOak-1.0.0" ], "Layer": { "Digest": "sha256:e3c43a0726da69846ae4d3ebced108345891586e5a513d46eb2c2e06b844b939", "DiffID": "sha256:06273a1fde1593ea299ad4344636055f68108990f3388a54a1170207044ba828" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/glob/node_modules/jackspeak/package.json", "Digest": "sha1:45d9816050ff7a6de553a418f4a0038a406fe991" }, { "ID": "jackspeak@4.2.3", "Name": "jackspeak", "Identifier": { "PURL": "pkg:npm/jackspeak@4.2.3", "UID": "1729aa7768902d3d", "BOMRef": "ad6b694f-9687-4ef6-b05d-841b735cb313" }, "Version": "4.2.3", "Licenses": [ "BlueOak-1.0.0" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/glob/node_modules/jackspeak/package.json", "Digest": "sha1:45d9816050ff7a6de553a418f4a0038a406fe991" }, { "ID": "jackspeak@4.2.3", "Name": "jackspeak", "Identifier": { "PURL": "pkg:npm/jackspeak@4.2.3", "UID": "2176a009adaccb10", "BOMRef": "013ab75a-6c43-4049-9400-30fb5d311b37" }, "Version": "4.2.3", "Licenses": [ "BlueOak-1.0.0" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/glob/node_modules/jackspeak/package.json", "Digest": "sha1:45d9816050ff7a6de553a418f4a0038a406fe991" }, { "ID": "json-parse-even-better-errors@5.0.0", "Name": "json-parse-even-better-errors", "Identifier": { "PURL": "pkg:npm/json-parse-even-better-errors@5.0.0", "UID": "8d32be746656e63e", "BOMRef": "d76fd958-e1e6-4c94-810c-fb6323af7bf7" }, "Version": "5.0.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/json-parse-even-better-errors/package.json", "Digest": "sha1:27231975ccc2498cb184ae3e74122f2427ba1a5a" }, { "ID": "json-parse-even-better-errors@5.0.0", "Name": "json-parse-even-better-errors", "Identifier": { "PURL": "pkg:npm/json-parse-even-better-errors@5.0.0", "UID": "98c9096edc0dc63", "BOMRef": "69ee09a5-47fd-44e4-87b9-1e2d50eda4ad" }, "Version": "5.0.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/json-parse-even-better-errors/package.json", "Digest": "sha1:27231975ccc2498cb184ae3e74122f2427ba1a5a" }, { "ID": "json-stringify-nice@1.1.4", "Name": "json-stringify-nice", "Identifier": { "PURL": "pkg:npm/json-stringify-nice@1.1.4", "UID": "7f97c5e06055d5cd", "BOMRef": "90714ef1-25c0-4efe-a2be-5a74199c44f4" }, "Version": "1.1.4", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/json-stringify-nice/package.json", "Digest": "sha1:adef02a4345a493535ccb990b09f850508ae516f" }, { "ID": "json-stringify-nice@1.1.4", "Name": "json-stringify-nice", "Identifier": { "PURL": "pkg:npm/json-stringify-nice@1.1.4", "UID": "7533bf33b4928b66", "BOMRef": "40b8941c-35e6-427a-a7fc-abec867a22c2" }, "Version": "1.1.4", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/json-stringify-nice/package.json", "Digest": "sha1:adef02a4345a493535ccb990b09f850508ae516f" }, { "ID": "jsonparse@1.3.1", "Name": "jsonparse", "Identifier": { "PURL": "pkg:npm/jsonparse@1.3.1", "UID": "337f274655258ebe", "BOMRef": "6a868532-4193-4a9e-8b95-f65515f52b7a" }, "Version": "1.3.1", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/jsonparse/package.json", "Digest": "sha1:ec0bb766bf32ebd53d835393da006bb834a663fd" }, { "ID": "jsonparse@1.3.1", "Name": "jsonparse", "Identifier": { "PURL": "pkg:npm/jsonparse@1.3.1", "UID": "802454a2e941fa1c", "BOMRef": "bb7b7455-dd4b-4567-b00a-e299ee4b7fde" }, "Version": "1.3.1", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/jsonparse/package.json", "Digest": "sha1:ec0bb766bf32ebd53d835393da006bb834a663fd" }, { "ID": "just-diff@6.0.2", "Name": "just-diff", "Identifier": { "PURL": "pkg:npm/just-diff@6.0.2", "UID": "af3724bfedbcb0bf", "BOMRef": "54d25715-b22b-496f-8463-1be2eea17826" }, "Version": "6.0.2", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/just-diff/package.json", "Digest": "sha1:396a274e87b3ad6a3704a76cf18fbb2a9dd45ada" }, { "ID": "just-diff@6.0.2", "Name": "just-diff", "Identifier": { "PURL": "pkg:npm/just-diff@6.0.2", "UID": "fac18349b47f7150", "BOMRef": "8adf0235-cf81-47aa-ab23-6cfc03f1a267" }, "Version": "6.0.2", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/just-diff/package.json", "Digest": "sha1:396a274e87b3ad6a3704a76cf18fbb2a9dd45ada" }, { "ID": "just-diff-apply@5.5.0", "Name": "just-diff-apply", "Identifier": { "PURL": "pkg:npm/just-diff-apply@5.5.0", "UID": "e4c592fe3342b904", "BOMRef": "a62ddd39-b990-4700-a593-fbdd32e7df78" }, "Version": "5.5.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/just-diff-apply/package.json", "Digest": "sha1:26d39d00f0fc1ddfe4974dbe69691f9c09ad9036" }, { "ID": "just-diff-apply@5.5.0", "Name": "just-diff-apply", "Identifier": { "PURL": "pkg:npm/just-diff-apply@5.5.0", "UID": "c78134605ecd624f", "BOMRef": "e069eeaf-f352-470c-ba67-f389465e2746" }, "Version": "5.5.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/just-diff-apply/package.json", "Digest": "sha1:26d39d00f0fc1ddfe4974dbe69691f9c09ad9036" }, { "ID": "libnpmaccess@10.0.3", "Name": "libnpmaccess", "Identifier": { "PURL": "pkg:npm/libnpmaccess@10.0.3", "UID": "370c87c02bf7eeb2", "BOMRef": "b5cfd84b-922f-4bcf-a452-707c47bdb510" }, "Version": "10.0.3", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/libnpmaccess/package.json", "Digest": "sha1:c1d01036aa963e18b715c0bf3ec1bdad5d39d0be" }, { "ID": "libnpmaccess@10.0.3", "Name": "libnpmaccess", "Identifier": { "PURL": "pkg:npm/libnpmaccess@10.0.3", "UID": "5da39bdad35e8f44", "BOMRef": "4ea0ba35-6cb7-453b-b897-b26fbe6afe45" }, "Version": "10.0.3", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/libnpmaccess/package.json", "Digest": "sha1:88716dc0d2d84c458e7f30e99f7e99188bef59b2" }, { "ID": "libnpmdiff@8.0.13", "Name": "libnpmdiff", "Identifier": { "PURL": "pkg:npm/libnpmdiff@8.0.13", "UID": "f1aa9e591c4c9126", "BOMRef": "pkg:npm/libnpmdiff@8.0.13" }, "Version": "8.0.13", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/libnpmdiff/package.json", "Digest": "sha1:8620167de2c70aed2967dd19f20eb221ce942857" }, { "ID": "libnpmdiff@8.1.3", "Name": "libnpmdiff", "Identifier": { "PURL": "pkg:npm/libnpmdiff@8.1.3", "UID": "4a13e3891389e459", "BOMRef": "pkg:npm/libnpmdiff@8.1.3" }, "Version": "8.1.3", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/libnpmdiff/package.json", "Digest": "sha1:7bb2a4470ada74db8b19cff060f9893144dd4fc3" }, { "ID": "libnpmexec@10.1.12", "Name": "libnpmexec", "Identifier": { "PURL": "pkg:npm/libnpmexec@10.1.12", "UID": "972206949e2177b2", "BOMRef": "pkg:npm/libnpmexec@10.1.12" }, "Version": "10.1.12", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/libnpmexec/package.json", "Digest": "sha1:e5309d547a9265c367489cce048a4be7e40cd185" }, { "ID": "libnpmexec@10.2.3", "Name": "libnpmexec", "Identifier": { "PURL": "pkg:npm/libnpmexec@10.2.3", "UID": "c336d32e58377d33", "BOMRef": "pkg:npm/libnpmexec@10.2.3" }, "Version": "10.2.3", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/libnpmexec/package.json", "Digest": "sha1:94cef92f6c01a16c2de53b84080083404d010727" }, { "ID": "libnpmfund@7.0.13", "Name": "libnpmfund", "Identifier": { "PURL": "pkg:npm/libnpmfund@7.0.13", "UID": "9af472dfa9e263e3", "BOMRef": "pkg:npm/libnpmfund@7.0.13" }, "Version": "7.0.13", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/libnpmfund/package.json", "Digest": "sha1:fcf920f9c673a9dfbeb93483b651e6743d7d2d8d" }, { "ID": "libnpmfund@7.0.17", "Name": "libnpmfund", "Identifier": { "PURL": "pkg:npm/libnpmfund@7.0.17", "UID": "29f2b75db1888d22", "BOMRef": "pkg:npm/libnpmfund@7.0.17" }, "Version": "7.0.17", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/libnpmfund/package.json", "Digest": "sha1:b749fd9bed4a653c4757e73672035120b09c8c4d" }, { "ID": "libnpmorg@8.0.1", "Name": "libnpmorg", "Identifier": { "PURL": "pkg:npm/libnpmorg@8.0.1", "UID": "7f4b410ced92b35c", "BOMRef": "b0f1b8b4-218a-413a-8529-bd521a5dbfae" }, "Version": "8.0.1", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/libnpmorg/package.json", "Digest": "sha1:bb751a1dee75e700037086efe488eaadcf29345f" }, { "ID": "libnpmorg@8.0.1", "Name": "libnpmorg", "Identifier": { "PURL": "pkg:npm/libnpmorg@8.0.1", "UID": "57094af79c709423", "BOMRef": "cb961f19-896a-4721-ba93-a2b561b702ec" }, "Version": "8.0.1", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/libnpmorg/package.json", "Digest": "sha1:71644ece4c1f7182783fe2ea542ab4a851465845" }, { "ID": "libnpmpack@9.0.13", "Name": "libnpmpack", "Identifier": { "PURL": "pkg:npm/libnpmpack@9.0.13", "UID": "70377289285c0002", "BOMRef": "pkg:npm/libnpmpack@9.0.13" }, "Version": "9.0.13", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/libnpmpack/package.json", "Digest": "sha1:221ad8b73551e34d90b0d66be97942cd0e705f50" }, { "ID": "libnpmpack@9.1.3", "Name": "libnpmpack", "Identifier": { "PURL": "pkg:npm/libnpmpack@9.1.3", "UID": "db9169a466651e1c", "BOMRef": "pkg:npm/libnpmpack@9.1.3" }, "Version": "9.1.3", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/libnpmpack/package.json", "Digest": "sha1:990291b088743442fc68f01e7867991d37cd527a" }, { "ID": "libnpmpublish@11.1.3", "Name": "libnpmpublish", "Identifier": { "PURL": "pkg:npm/libnpmpublish@11.1.3", "UID": "eaf1d2fb27a0ff8f", "BOMRef": "abb4072a-39bb-4bbf-9498-838c5e47483e" }, "Version": "11.1.3", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/libnpmpublish/package.json", "Digest": "sha1:ff82ddefb69c8d63b5a4be420961ed9bc267923d" }, { "ID": "libnpmpublish@11.1.3", "Name": "libnpmpublish", "Identifier": { "PURL": "pkg:npm/libnpmpublish@11.1.3", "UID": "175795a53979f2e1", "BOMRef": "414a8006-c074-4328-ba2f-50c50e1330e5" }, "Version": "11.1.3", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/libnpmpublish/package.json", "Digest": "sha1:f79157562e8ad15b97e33362c5e104f49358c209" }, { "ID": "libnpmsearch@9.0.1", "Name": "libnpmsearch", "Identifier": { "PURL": "pkg:npm/libnpmsearch@9.0.1", "UID": "dea1433c4acca40c", "BOMRef": "306a972e-a0cc-4959-8d76-2e6a073da4f6" }, "Version": "9.0.1", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/libnpmsearch/package.json", "Digest": "sha1:839c733ea34fee24f8639d9514b827f20634aa47" }, { "ID": "libnpmsearch@9.0.1", "Name": "libnpmsearch", "Identifier": { "PURL": "pkg:npm/libnpmsearch@9.0.1", "UID": "7f260ee5989dea08", "BOMRef": "04a9e185-3863-47b9-b40e-8bec378cd97f" }, "Version": "9.0.1", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/libnpmsearch/package.json", "Digest": "sha1:51c93baa72fc8c35a3195194d066536a133e26d5" }, { "ID": "libnpmteam@8.0.2", "Name": "libnpmteam", "Identifier": { "PURL": "pkg:npm/libnpmteam@8.0.2", "UID": "4db6a622647a4bee", "BOMRef": "0082fcd0-a18d-4714-8b51-001ae45ab956" }, "Version": "8.0.2", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/libnpmteam/package.json", "Digest": "sha1:4638228278157df58223fce221f2b21e99a43351" }, { "ID": "libnpmteam@8.0.2", "Name": "libnpmteam", "Identifier": { "PURL": "pkg:npm/libnpmteam@8.0.2", "UID": "4feb3d2404a1bedc", "BOMRef": "53d71144-e414-4fcf-8e9f-a6482ad96a1d" }, "Version": "8.0.2", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/libnpmteam/package.json", "Digest": "sha1:c57610dfde38cf9e325c1cb64f6dcced3ee8af6d" }, { "ID": "libnpmversion@8.0.3", "Name": "libnpmversion", "Identifier": { "PURL": "pkg:npm/libnpmversion@8.0.3", "UID": "17a7b0268bd99c58", "BOMRef": "4f1ed0f6-a03b-4f96-b598-94947ed39810" }, "Version": "8.0.3", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/libnpmversion/package.json", "Digest": "sha1:26c9215135593d18d97e7124f32d5644aa62edac" }, { "ID": "libnpmversion@8.0.3", "Name": "libnpmversion", "Identifier": { "PURL": "pkg:npm/libnpmversion@8.0.3", "UID": "3f888e01e9dc19fa", "BOMRef": "7dabd223-4618-4463-9cb1-6b36c432bcf9" }, "Version": "8.0.3", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/libnpmversion/package.json", "Digest": "sha1:0526d61c11a1dc3cfdf3014dd303e35be0df0907" }, { "ID": "litellm-dashboard@0.1.0", "Name": "litellm-dashboard", "Identifier": { "PURL": "pkg:npm/litellm-dashboard@0.1.0", "UID": "91f42e1329b2b3c6", "BOMRef": "pkg:npm/litellm-dashboard@0.1.0" }, "Version": "0.1.0", "Layer": { "Digest": "sha256:e87ae357eb09782f189fff9d3669c2a6032b8e27665307620c10b9b878618626", "DiffID": "sha256:5d852388f24aa75b24f24f7e85bc2062faa0ac61ac9e530a87ab9d97ad80d9b4" }, "FilePath": "app/ui/litellm-dashboard/package.json", "Digest": "sha1:1a0b5a58c0cc2aa5b38b8ac2ae691c356a19d6dc" }, { "ID": "lru-cache@11.2.4", "Name": "lru-cache", "Identifier": { "PURL": "pkg:npm/lru-cache@11.2.4", "UID": "2a2d8405ba49f4f9", "BOMRef": "pkg:npm/lru-cache@11.2.4" }, "Version": "11.2.4", "Licenses": [ "BlueOak-1.0.0" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/lru-cache/package.json", "Digest": "sha1:0d206de7c8ee6fa3afe883a6caf24750ef4b6a56" }, { "ID": "lru-cache@11.2.6", "Name": "lru-cache", "Identifier": { "PURL": "pkg:npm/lru-cache@11.2.6", "UID": "4454f12989cae18", "BOMRef": "73457f30-2484-4ae3-8553-9287e9648f7e" }, "Version": "11.2.6", "Licenses": [ "BlueOak-1.0.0" ], "Layer": { "Digest": "sha256:e3c43a0726da69846ae4d3ebced108345891586e5a513d46eb2c2e06b844b939", "DiffID": "sha256:06273a1fde1593ea299ad4344636055f68108990f3388a54a1170207044ba828" }, "FilePath": "usr/lib/node_modules/npm/node_modules/glob/node_modules/lru-cache/package.json", "Digest": "sha1:d27773298a20e2414297de880c090a1a8a626c97" }, { "ID": "lru-cache@11.2.6", "Name": "lru-cache", "Identifier": { "PURL": "pkg:npm/lru-cache@11.2.6", "UID": "c95fbbd77cbb775f", "BOMRef": "ff247f3f-70ba-4c2b-9360-2432f3f4cfe5" }, "Version": "11.2.6", "Licenses": [ "BlueOak-1.0.0" ], "Layer": { "Digest": "sha256:e3c43a0726da69846ae4d3ebced108345891586e5a513d46eb2c2e06b844b939", "DiffID": "sha256:06273a1fde1593ea299ad4344636055f68108990f3388a54a1170207044ba828" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/glob/node_modules/lru-cache/package.json", "Digest": "sha1:d27773298a20e2414297de880c090a1a8a626c97" }, { "ID": "lru-cache@11.2.6", "Name": "lru-cache", "Identifier": { "PURL": "pkg:npm/lru-cache@11.2.6", "UID": "880d82a8a3e9cd34", "BOMRef": "1d40750d-f2cb-49ea-bf68-ef92f2d55b51" }, "Version": "11.2.6", "Licenses": [ "BlueOak-1.0.0" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/glob/node_modules/lru-cache/package.json", "Digest": "sha1:d27773298a20e2414297de880c090a1a8a626c97" }, { "ID": "lru-cache@11.2.6", "Name": "lru-cache", "Identifier": { "PURL": "pkg:npm/lru-cache@11.2.6", "UID": "86cb521a19daabe1", "BOMRef": "4607ff15-f3fa-4305-b941-f17e794d6350" }, "Version": "11.2.6", "Licenses": [ "BlueOak-1.0.0" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/glob/node_modules/lru-cache/package.json", "Digest": "sha1:d27773298a20e2414297de880c090a1a8a626c97" }, { "ID": "lru-cache@11.2.6", "Name": "lru-cache", "Identifier": { "PURL": "pkg:npm/lru-cache@11.2.6", "UID": "7d2a77a6003f1d04", "BOMRef": "c6d43799-0c65-495d-b887-03094c564270" }, "Version": "11.2.6", "Licenses": [ "BlueOak-1.0.0" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/lru-cache/package.json", "Digest": "sha1:d27773298a20e2414297de880c090a1a8a626c97" }, { "ID": "make-fetch-happen@15.0.3", "Name": "make-fetch-happen", "Identifier": { "PURL": "pkg:npm/make-fetch-happen@15.0.3", "UID": "3aff48cfb26f9f9b", "BOMRef": "pkg:npm/make-fetch-happen@15.0.3" }, "Version": "15.0.3", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/make-fetch-happen/package.json", "Digest": "sha1:06b8dc0e17bf93a970739a0ac6845fa168884e8a" }, { "ID": "make-fetch-happen@15.0.4", "Name": "make-fetch-happen", "Identifier": { "PURL": "pkg:npm/make-fetch-happen@15.0.4", "UID": "bc80c97a0f3f1ea2", "BOMRef": "pkg:npm/make-fetch-happen@15.0.4" }, "Version": "15.0.4", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/make-fetch-happen/package.json", "Digest": "sha1:13079ab7db3997b25ca07cbd6e0a6056676eeee1" }, { "ID": "minimatch@10.2.1", "Name": "minimatch", "Identifier": { "PURL": "pkg:npm/minimatch@10.2.1", "UID": "6e79647cbeee8f9c", "BOMRef": "6f4a29b4-0e40-4960-b4a0-8d5be450d1c5" }, "Version": "10.2.1", "Licenses": [ "BlueOak-1.0.0" ], "Layer": { "Digest": "sha256:e3c43a0726da69846ae4d3ebced108345891586e5a513d46eb2c2e06b844b939", "DiffID": "sha256:06273a1fde1593ea299ad4344636055f68108990f3388a54a1170207044ba828" }, "FilePath": "usr/lib/node_modules/npm/node_modules/minimatch/package.json", "Digest": "sha1:51f9e760bf99990f544c2aa399bf816a30aaaf9e" }, { "ID": "minimatch@10.2.1", "Name": "minimatch", "Identifier": { "PURL": "pkg:npm/minimatch@10.2.1", "UID": "4847008c699feb5d", "BOMRef": "74b72b43-9290-4449-b1e9-5e2068c13deb" }, "Version": "10.2.1", "Licenses": [ "BlueOak-1.0.0" ], "Layer": { "Digest": "sha256:e3c43a0726da69846ae4d3ebced108345891586e5a513d46eb2c2e06b844b939", "DiffID": "sha256:06273a1fde1593ea299ad4344636055f68108990f3388a54a1170207044ba828" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/minimatch/package.json", "Digest": "sha1:51f9e760bf99990f544c2aa399bf816a30aaaf9e" }, { "ID": "minimatch@10.2.1", "Name": "minimatch", "Identifier": { "PURL": "pkg:npm/minimatch@10.2.1", "UID": "efc68c36130925ab", "BOMRef": "51846e42-d2a6-4cc0-8740-a325e21fa757" }, "Version": "10.2.1", "Licenses": [ "BlueOak-1.0.0" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/minimatch/package.json", "Digest": "sha1:51f9e760bf99990f544c2aa399bf816a30aaaf9e" }, { "ID": "minimatch@10.2.1", "Name": "minimatch", "Identifier": { "PURL": "pkg:npm/minimatch@10.2.1", "UID": "2009743d22084c71", "BOMRef": "73f52de8-7227-4ac2-a42c-d17b59e69579" }, "Version": "10.2.1", "Licenses": [ "BlueOak-1.0.0" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/minimatch/package.json", "Digest": "sha1:51f9e760bf99990f544c2aa399bf816a30aaaf9e" }, { "ID": "minipass@3.3.6", "Name": "minipass", "Identifier": { "PURL": "pkg:npm/minipass@3.3.6", "UID": "2f6011d83d3fc751", "BOMRef": "c946af86-9742-4b07-9885-31e7e8c7dbfb" }, "Version": "3.3.6", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/minipass-flush/node_modules/minipass/package.json", "Digest": "sha1:fc79b496665e2cdfc4bdaac9c7d7c4b2f4645f2c" }, { "ID": "minipass@3.3.6", "Name": "minipass", "Identifier": { "PURL": "pkg:npm/minipass@3.3.6", "UID": "3648ab56bb75f30b", "BOMRef": "f541bedc-7155-403a-a42b-de90135d4145" }, "Version": "3.3.6", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/minipass-pipeline/node_modules/minipass/package.json", "Digest": "sha1:fc79b496665e2cdfc4bdaac9c7d7c4b2f4645f2c" }, { "ID": "minipass@3.3.6", "Name": "minipass", "Identifier": { "PURL": "pkg:npm/minipass@3.3.6", "UID": "6e6669ae3b5eaa4f", "BOMRef": "997cef07-da14-49f6-84f7-49a4450e4328" }, "Version": "3.3.6", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/minipass-sized/node_modules/minipass/package.json", "Digest": "sha1:fc79b496665e2cdfc4bdaac9c7d7c4b2f4645f2c" }, { "ID": "minipass@3.3.6", "Name": "minipass", "Identifier": { "PURL": "pkg:npm/minipass@3.3.6", "UID": "fa50532a9d03146e", "BOMRef": "bb2ca498-6556-4508-8e18-08ba73173a82" }, "Version": "3.3.6", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/minipass-flush/node_modules/minipass/package.json", "Digest": "sha1:fc79b496665e2cdfc4bdaac9c7d7c4b2f4645f2c" }, { "ID": "minipass@3.3.6", "Name": "minipass", "Identifier": { "PURL": "pkg:npm/minipass@3.3.6", "UID": "4e36bf42192c4693", "BOMRef": "4195aadf-3468-436f-88b6-e3e4351a2e04" }, "Version": "3.3.6", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/minipass-pipeline/node_modules/minipass/package.json", "Digest": "sha1:fc79b496665e2cdfc4bdaac9c7d7c4b2f4645f2c" }, { "ID": "minipass@7.1.2", "Name": "minipass", "Identifier": { "PURL": "pkg:npm/minipass@7.1.2", "UID": "3b63288cbe037777", "BOMRef": "pkg:npm/minipass@7.1.2" }, "Version": "7.1.2", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/minipass/package.json", "Digest": "sha1:798df22ae1185484c372b4da30c4d75a0e7ea572" }, { "ID": "minipass@7.1.3", "Name": "minipass", "Identifier": { "PURL": "pkg:npm/minipass@7.1.3", "UID": "9da37f886add1757", "BOMRef": "bd2c71e9-6052-4fde-8f84-305a4c39f444" }, "Version": "7.1.3", "Licenses": [ "BlueOak-1.0.0" ], "Layer": { "Digest": "sha256:e3c43a0726da69846ae4d3ebced108345891586e5a513d46eb2c2e06b844b939", "DiffID": "sha256:06273a1fde1593ea299ad4344636055f68108990f3388a54a1170207044ba828" }, "FilePath": "usr/lib/node_modules/npm/node_modules/glob/node_modules/minipass/package.json", "Digest": "sha1:61235e7e9cfd09deb1ed8a00c522c6bbbcdef750" }, { "ID": "minipass@7.1.3", "Name": "minipass", "Identifier": { "PURL": "pkg:npm/minipass@7.1.3", "UID": "c7fa451936529fc9", "BOMRef": "45828fdc-57cf-4357-b9f4-e5bfa8b5a8f6" }, "Version": "7.1.3", "Licenses": [ "BlueOak-1.0.0" ], "Layer": { "Digest": "sha256:e3c43a0726da69846ae4d3ebced108345891586e5a513d46eb2c2e06b844b939", "DiffID": "sha256:06273a1fde1593ea299ad4344636055f68108990f3388a54a1170207044ba828" }, "FilePath": "usr/lib/node_modules/npm/node_modules/tar/node_modules/minipass/package.json", "Digest": "sha1:61235e7e9cfd09deb1ed8a00c522c6bbbcdef750" }, { "ID": "minipass@7.1.3", "Name": "minipass", "Identifier": { "PURL": "pkg:npm/minipass@7.1.3", "UID": "6e6d80042876963e", "BOMRef": "c316b50e-9533-46ad-bbef-4caa7fa4801d" }, "Version": "7.1.3", "Licenses": [ "BlueOak-1.0.0" ], "Layer": { "Digest": "sha256:e3c43a0726da69846ae4d3ebced108345891586e5a513d46eb2c2e06b844b939", "DiffID": "sha256:06273a1fde1593ea299ad4344636055f68108990f3388a54a1170207044ba828" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/glob/node_modules/minipass/package.json", "Digest": "sha1:61235e7e9cfd09deb1ed8a00c522c6bbbcdef750" }, { "ID": "minipass@7.1.3", "Name": "minipass", "Identifier": { "PURL": "pkg:npm/minipass@7.1.3", "UID": "3e204aa300910f7b", "BOMRef": "d2b3cc0c-aa1a-4915-b49c-f95390391461" }, "Version": "7.1.3", "Licenses": [ "BlueOak-1.0.0" ], "Layer": { "Digest": "sha256:e3c43a0726da69846ae4d3ebced108345891586e5a513d46eb2c2e06b844b939", "DiffID": "sha256:06273a1fde1593ea299ad4344636055f68108990f3388a54a1170207044ba828" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/tar/node_modules/minipass/package.json", "Digest": "sha1:61235e7e9cfd09deb1ed8a00c522c6bbbcdef750" }, { "ID": "minipass@7.1.3", "Name": "minipass", "Identifier": { "PURL": "pkg:npm/minipass@7.1.3", "UID": "d0a755151a6a52", "BOMRef": "6a36236c-4c03-4067-ab80-a4e730425175" }, "Version": "7.1.3", "Licenses": [ "BlueOak-1.0.0" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/glob/node_modules/minipass/package.json", "Digest": "sha1:61235e7e9cfd09deb1ed8a00c522c6bbbcdef750" }, { "ID": "minipass@7.1.3", "Name": "minipass", "Identifier": { "PURL": "pkg:npm/minipass@7.1.3", "UID": "5b6f65bc740c3883", "BOMRef": "8e421a0d-e99f-43c1-a62b-4cd1cfe4c3bd" }, "Version": "7.1.3", "Licenses": [ "BlueOak-1.0.0" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/glob/node_modules/minipass/package.json", "Digest": "sha1:61235e7e9cfd09deb1ed8a00c522c6bbbcdef750" }, { "ID": "minipass@7.1.3", "Name": "minipass", "Identifier": { "PURL": "pkg:npm/minipass@7.1.3", "UID": "21ea214b8f7c81e", "BOMRef": "e4d191a6-2972-4cb2-884e-67c39a8bb950" }, "Version": "7.1.3", "Licenses": [ "BlueOak-1.0.0" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/minipass/package.json", "Digest": "sha1:61235e7e9cfd09deb1ed8a00c522c6bbbcdef750" }, { "ID": "minipass@7.1.3", "Name": "minipass", "Identifier": { "PURL": "pkg:npm/minipass@7.1.3", "UID": "831fa4d8ca0a1b24", "BOMRef": "5142afe0-036a-4cc9-81a9-884408f6dbfc" }, "Version": "7.1.3", "Licenses": [ "BlueOak-1.0.0" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/tar/node_modules/minipass/package.json", "Digest": "sha1:61235e7e9cfd09deb1ed8a00c522c6bbbcdef750" }, { "ID": "minipass@7.1.3", "Name": "minipass", "Identifier": { "PURL": "pkg:npm/minipass@7.1.3", "UID": "a1f60743d215cdce", "BOMRef": "3dc9b820-f732-4938-9dd0-c2481ddb2f35" }, "Version": "7.1.3", "Licenses": [ "BlueOak-1.0.0" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/tar/node_modules/minipass/package.json", "Digest": "sha1:61235e7e9cfd09deb1ed8a00c522c6bbbcdef750" }, { "ID": "minipass-collect@2.0.1", "Name": "minipass-collect", "Identifier": { "PURL": "pkg:npm/minipass-collect@2.0.1", "UID": "15988567c3522db5", "BOMRef": "9d847154-da61-4290-b4e1-01b0000b0a21" }, "Version": "2.0.1", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/minipass-collect/package.json", "Digest": "sha1:7ca3a77ca7b795148ecee5d9ebbe96e968dddb15" }, { "ID": "minipass-collect@2.0.1", "Name": "minipass-collect", "Identifier": { "PURL": "pkg:npm/minipass-collect@2.0.1", "UID": "a3f97ffa6bdc1059", "BOMRef": "b3d89d21-c3fe-45c3-aa3f-8fab5cc3e1e1" }, "Version": "2.0.1", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/minipass-collect/package.json", "Digest": "sha1:7ca3a77ca7b795148ecee5d9ebbe96e968dddb15" }, { "ID": "minipass-fetch@5.0.0", "Name": "minipass-fetch", "Identifier": { "PURL": "pkg:npm/minipass-fetch@5.0.0", "UID": "f89611a11ac5a07c", "BOMRef": "pkg:npm/minipass-fetch@5.0.0" }, "Version": "5.0.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/minipass-fetch/package.json", "Digest": "sha1:de070b816133f9f9134563f7c6096a4cc99cd139" }, { "ID": "minipass-fetch@5.0.2", "Name": "minipass-fetch", "Identifier": { "PURL": "pkg:npm/minipass-fetch@5.0.2", "UID": "c6f8b68626681347", "BOMRef": "pkg:npm/minipass-fetch@5.0.2" }, "Version": "5.0.2", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/minipass-fetch/package.json", "Digest": "sha1:3d9f30e4705201e45528f7bd4d7886f8a98a5ebe" }, { "ID": "minipass-flush@1.0.5", "Name": "minipass-flush", "Identifier": { "PURL": "pkg:npm/minipass-flush@1.0.5", "UID": "fb1b10bd653f7a87", "BOMRef": "c9dd30c4-b86f-417e-b85a-6924abb51258" }, "Version": "1.0.5", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/minipass-flush/package.json", "Digest": "sha1:c89612a2a9c68141b8271bbc94bcc88067c29790" }, { "ID": "minipass-flush@1.0.5", "Name": "minipass-flush", "Identifier": { "PURL": "pkg:npm/minipass-flush@1.0.5", "UID": "dd123e0d3b60812b", "BOMRef": "0776681d-4d78-49cd-8050-0e502ed0626f" }, "Version": "1.0.5", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/minipass-flush/package.json", "Digest": "sha1:c89612a2a9c68141b8271bbc94bcc88067c29790" }, { "ID": "minipass-pipeline@1.2.4", "Name": "minipass-pipeline", "Identifier": { "PURL": "pkg:npm/minipass-pipeline@1.2.4", "UID": "b3ddb712289dbbe4", "BOMRef": "f3bad3db-64de-48c1-9861-6033cd8fbdd6" }, "Version": "1.2.4", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/minipass-pipeline/package.json", "Digest": "sha1:e30c58465801deaceb4b81898e531c75679563b1" }, { "ID": "minipass-pipeline@1.2.4", "Name": "minipass-pipeline", "Identifier": { "PURL": "pkg:npm/minipass-pipeline@1.2.4", "UID": "791fab62a9712388", "BOMRef": "c0346ac4-d2bd-44dd-ba33-0aeb93778ddf" }, "Version": "1.2.4", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/minipass-pipeline/package.json", "Digest": "sha1:e30c58465801deaceb4b81898e531c75679563b1" }, { "ID": "minipass-sized@1.0.3", "Name": "minipass-sized", "Identifier": { "PURL": "pkg:npm/minipass-sized@1.0.3", "UID": "410c31f844e64078", "BOMRef": "pkg:npm/minipass-sized@1.0.3" }, "Version": "1.0.3", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/minipass-sized/package.json", "Digest": "sha1:615e0e93dfdbc65b217029380591abc9e9b64136" }, { "ID": "minipass-sized@2.0.0", "Name": "minipass-sized", "Identifier": { "PURL": "pkg:npm/minipass-sized@2.0.0", "UID": "a85ebe3b6fde7c8e", "BOMRef": "pkg:npm/minipass-sized@2.0.0" }, "Version": "2.0.0", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/minipass-sized/package.json", "Digest": "sha1:c0e70d0d99106c4391afde2f25524f3cb876a1dd" }, { "ID": "minizlib@3.1.0", "Name": "minizlib", "Identifier": { "PURL": "pkg:npm/minizlib@3.1.0", "UID": "dca9f714bf14a8d3", "BOMRef": "2d3abebd-f8a9-4772-a94a-b0bcc968b25f" }, "Version": "3.1.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:e3c43a0726da69846ae4d3ebced108345891586e5a513d46eb2c2e06b844b939", "DiffID": "sha256:06273a1fde1593ea299ad4344636055f68108990f3388a54a1170207044ba828" }, "FilePath": "usr/lib/node_modules/npm/node_modules/tar/node_modules/minizlib/package.json", "Digest": "sha1:ecda8f42a2256be6ae9bba8a268ae3964683fe09" }, { "ID": "minizlib@3.1.0", "Name": "minizlib", "Identifier": { "PURL": "pkg:npm/minizlib@3.1.0", "UID": "1b0a9175f630668c", "BOMRef": "fa13c262-496d-479c-9f90-ab38e2316099" }, "Version": "3.1.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/minizlib/package.json", "Digest": "sha1:ecda8f42a2256be6ae9bba8a268ae3964683fe09" }, { "ID": "minizlib@3.1.0", "Name": "minizlib", "Identifier": { "PURL": "pkg:npm/minizlib@3.1.0", "UID": "340c90d732dd429f", "BOMRef": "83593cd6-a56e-4bee-8406-8e08b99ba640" }, "Version": "3.1.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:e3c43a0726da69846ae4d3ebced108345891586e5a513d46eb2c2e06b844b939", "DiffID": "sha256:06273a1fde1593ea299ad4344636055f68108990f3388a54a1170207044ba828" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/tar/node_modules/minizlib/package.json", "Digest": "sha1:ecda8f42a2256be6ae9bba8a268ae3964683fe09" }, { "ID": "minizlib@3.1.0", "Name": "minizlib", "Identifier": { "PURL": "pkg:npm/minizlib@3.1.0", "UID": "ed126db35b7f803d", "BOMRef": "cebaf9cf-116b-4ce9-b606-b416a8574d37" }, "Version": "3.1.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/minizlib/package.json", "Digest": "sha1:ecda8f42a2256be6ae9bba8a268ae3964683fe09" }, { "ID": "minizlib@3.1.0", "Name": "minizlib", "Identifier": { "PURL": "pkg:npm/minizlib@3.1.0", "UID": "2ae0346c9663de58", "BOMRef": "8128f0f6-98ad-4853-be01-59303be46c4b" }, "Version": "3.1.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/tar/node_modules/minizlib/package.json", "Digest": "sha1:ecda8f42a2256be6ae9bba8a268ae3964683fe09" }, { "ID": "minizlib@3.1.0", "Name": "minizlib", "Identifier": { "PURL": "pkg:npm/minizlib@3.1.0", "UID": "686e18cf0d037070", "BOMRef": "079712c4-3686-4289-9327-27efe9411fcf" }, "Version": "3.1.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/tar/node_modules/minizlib/package.json", "Digest": "sha1:ecda8f42a2256be6ae9bba8a268ae3964683fe09" }, { "ID": "ms@2.1.3", "Name": "ms", "Identifier": { "PURL": "pkg:npm/ms@2.1.3", "UID": "961eb6407ec148a4", "BOMRef": "f83abe5d-2302-4c51-9f8e-36baa5dcecff" }, "Version": "2.1.3", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/ms/package.json", "Digest": "sha1:c290eb97736177176d071da4ac855ab995685c97" }, { "ID": "ms@2.1.3", "Name": "ms", "Identifier": { "PURL": "pkg:npm/ms@2.1.3", "UID": "5acc3f23aa638675", "BOMRef": "847de723-9540-4e01-8cad-ada1d22f97c6" }, "Version": "2.1.3", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/ms/package.json", "Digest": "sha1:c290eb97736177176d071da4ac855ab995685c97" }, { "ID": "mute-stream@3.0.0", "Name": "mute-stream", "Identifier": { "PURL": "pkg:npm/mute-stream@3.0.0", "UID": "410702733ba73f5f", "BOMRef": "5025836e-5f9b-4dca-9cbe-2aad2216ef3a" }, "Version": "3.0.0", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/mute-stream/package.json", "Digest": "sha1:170b20aad820bb2d67cdb50fe6714c3030eb6961" }, { "ID": "mute-stream@3.0.0", "Name": "mute-stream", "Identifier": { "PURL": "pkg:npm/mute-stream@3.0.0", "UID": "c89f9c8dcda520f", "BOMRef": "f1ee5aa4-a4ac-4e61-ab91-8b9c9bf5bfe4" }, "Version": "3.0.0", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/mute-stream/package.json", "Digest": "sha1:170b20aad820bb2d67cdb50fe6714c3030eb6961" }, { "ID": "negotiator@1.0.0", "Name": "negotiator", "Identifier": { "PURL": "pkg:npm/negotiator@1.0.0", "UID": "9070396d02a4a851", "BOMRef": "b8240efe-e13e-4d35-aaed-faccb004d4a7" }, "Version": "1.0.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/negotiator/package.json", "Digest": "sha1:046524b23a7aefb2b0cfd3ebbd0fd84c0f7df3f6" }, { "ID": "negotiator@1.0.0", "Name": "negotiator", "Identifier": { "PURL": "pkg:npm/negotiator@1.0.0", "UID": "6c3a1cef0c543b0c", "BOMRef": "61ac5c53-cc1d-440f-908c-a26eda6cbd99" }, "Version": "1.0.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/negotiator/package.json", "Digest": "sha1:046524b23a7aefb2b0cfd3ebbd0fd84c0f7df3f6" }, { "ID": "node-gyp@12.1.0", "Name": "node-gyp", "Identifier": { "PURL": "pkg:npm/node-gyp@12.1.0", "UID": "e3cd79dbedcedb5d", "BOMRef": "pkg:npm/node-gyp@12.1.0" }, "Version": "12.1.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/node-gyp/package.json", "Digest": "sha1:9ad149cce8b65467fd308c678c38e460e6e61051" }, { "ID": "node-gyp@12.2.0", "Name": "node-gyp", "Identifier": { "PURL": "pkg:npm/node-gyp@12.2.0", "UID": "4219407f62887474", "BOMRef": "pkg:npm/node-gyp@12.2.0" }, "Version": "12.2.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/node-gyp/package.json", "Digest": "sha1:94024c2f80031bfd4736e8cfc7b7e32b6b83e2d3" }, { "ID": "nopt@9.0.0", "Name": "nopt", "Identifier": { "PURL": "pkg:npm/nopt@9.0.0", "UID": "bb454b63118515e6", "BOMRef": "015953fc-d041-401a-a31e-824b24ee1d80" }, "Version": "9.0.0", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/nopt/package.json", "Digest": "sha1:44fa7f32a18abb1dde67088e347d8f7c2bfed87f" }, { "ID": "nopt@9.0.0", "Name": "nopt", "Identifier": { "PURL": "pkg:npm/nopt@9.0.0", "UID": "fe90b5057e06747a", "BOMRef": "1eab7aa4-fe27-406e-b637-4cb198149fe8" }, "Version": "9.0.0", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/nopt/package.json", "Digest": "sha1:44fa7f32a18abb1dde67088e347d8f7c2bfed87f" }, { "ID": "npm@11.11.0", "Name": "npm", "Identifier": { "PURL": "pkg:npm/npm@11.11.0", "UID": "466efc78d63ce4de", "BOMRef": "pkg:npm/npm@11.11.0" }, "Version": "11.11.0", "Licenses": [ "Artistic-2.0" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/package.json", "Digest": "sha1:1c4f1b3d9abe22e75b8a6a0af889363b22895c10" }, { "ID": "npm@11.8.0", "Name": "npm", "Identifier": { "PURL": "pkg:npm/npm@11.8.0", "UID": "bb5a9a1414491f50", "BOMRef": "pkg:npm/npm@11.8.0" }, "Version": "11.8.0", "Licenses": [ "Artistic-2.0" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/package.json", "Digest": "sha1:90aee03cea02616588cafa36cd3630d1c1fa8302" }, { "ID": "npm-audit-report@7.0.0", "Name": "npm-audit-report", "Identifier": { "PURL": "pkg:npm/npm-audit-report@7.0.0", "UID": "7649e5e84ae8bd6e", "BOMRef": "505bc0c1-552f-434e-8fce-7df6964e28f4" }, "Version": "7.0.0", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/npm-audit-report/package.json", "Digest": "sha1:040167501ae6b37c24bfdfbbd67fcf467d37bdc0" }, { "ID": "npm-audit-report@7.0.0", "Name": "npm-audit-report", "Identifier": { "PURL": "pkg:npm/npm-audit-report@7.0.0", "UID": "c84feb313d1e93ca", "BOMRef": "04d16e9f-2b3e-42ae-9fe6-f4805f0fcc06" }, "Version": "7.0.0", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/npm-audit-report/package.json", "Digest": "sha1:040167501ae6b37c24bfdfbbd67fcf467d37bdc0" }, { "ID": "npm-bundled@5.0.0", "Name": "npm-bundled", "Identifier": { "PURL": "pkg:npm/npm-bundled@5.0.0", "UID": "453a7a72b12afe88", "BOMRef": "020dd4be-dc86-4851-b420-6d5f904d5f10" }, "Version": "5.0.0", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/npm-bundled/package.json", "Digest": "sha1:9dfb03e07a30a5e91c2d051690fec605e0cad435" }, { "ID": "npm-bundled@5.0.0", "Name": "npm-bundled", "Identifier": { "PURL": "pkg:npm/npm-bundled@5.0.0", "UID": "bd11141ec1d7ae1b", "BOMRef": "c63876d3-219e-46c0-b445-0e31c5c25b92" }, "Version": "5.0.0", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/npm-bundled/package.json", "Digest": "sha1:9dfb03e07a30a5e91c2d051690fec605e0cad435" }, { "ID": "npm-install-checks@8.0.0", "Name": "npm-install-checks", "Identifier": { "PURL": "pkg:npm/npm-install-checks@8.0.0", "UID": "e583a38e7bebc0d2", "BOMRef": "f4f78a3a-8f53-4193-8544-3565f319f2dd" }, "Version": "8.0.0", "Licenses": [ "BSD-2-Clause" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/npm-install-checks/package.json", "Digest": "sha1:407654a587e45ad83b936081f22670ebcaec1bc9" }, { "ID": "npm-install-checks@8.0.0", "Name": "npm-install-checks", "Identifier": { "PURL": "pkg:npm/npm-install-checks@8.0.0", "UID": "20fb7addb50b8834", "BOMRef": "ddbc273e-604f-4082-9e55-b33db970a589" }, "Version": "8.0.0", "Licenses": [ "BSD-2-Clause" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/npm-install-checks/package.json", "Digest": "sha1:407654a587e45ad83b936081f22670ebcaec1bc9" }, { "ID": "npm-normalize-package-bin@5.0.0", "Name": "npm-normalize-package-bin", "Identifier": { "PURL": "pkg:npm/npm-normalize-package-bin@5.0.0", "UID": "ff0e6b3ebd0a7bd7", "BOMRef": "b683fedc-f546-472e-9d60-84f3f8de00fc" }, "Version": "5.0.0", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/npm-normalize-package-bin/package.json", "Digest": "sha1:e525037807bb400a135f7e1be77c8dc97d78bb96" }, { "ID": "npm-normalize-package-bin@5.0.0", "Name": "npm-normalize-package-bin", "Identifier": { "PURL": "pkg:npm/npm-normalize-package-bin@5.0.0", "UID": "e51346ba738d5577", "BOMRef": "f88c9673-cc7b-4b09-8e2f-ff1b054d8ea8" }, "Version": "5.0.0", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/npm-normalize-package-bin/package.json", "Digest": "sha1:e525037807bb400a135f7e1be77c8dc97d78bb96" }, { "ID": "npm-package-arg@13.0.2", "Name": "npm-package-arg", "Identifier": { "PURL": "pkg:npm/npm-package-arg@13.0.2", "UID": "d0f649d38293dca5", "BOMRef": "b0a6e8ff-4a43-4d04-b4a0-4c30bcda2d6b" }, "Version": "13.0.2", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/npm-package-arg/package.json", "Digest": "sha1:68938fd68043d217f6ca9b6fb63c8a5470a3a589" }, { "ID": "npm-package-arg@13.0.2", "Name": "npm-package-arg", "Identifier": { "PURL": "pkg:npm/npm-package-arg@13.0.2", "UID": "973c8b72ab8cfa3f", "BOMRef": "36f79d12-47f0-4196-b86c-fb021763906f" }, "Version": "13.0.2", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/npm-package-arg/package.json", "Digest": "sha1:68938fd68043d217f6ca9b6fb63c8a5470a3a589" }, { "ID": "npm-packlist@10.0.3", "Name": "npm-packlist", "Identifier": { "PURL": "pkg:npm/npm-packlist@10.0.3", "UID": "23ef02553f5654fa", "BOMRef": "pkg:npm/npm-packlist@10.0.3" }, "Version": "10.0.3", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/npm-packlist/package.json", "Digest": "sha1:6a3cdda6728c40e4b1b1173cb1d0a53a222807f0" }, { "ID": "npm-packlist@10.0.4", "Name": "npm-packlist", "Identifier": { "PURL": "pkg:npm/npm-packlist@10.0.4", "UID": "b732737453c026ba", "BOMRef": "pkg:npm/npm-packlist@10.0.4" }, "Version": "10.0.4", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/npm-packlist/package.json", "Digest": "sha1:cb96034f926a932fb94df071a7165f1fc25ef98d" }, { "ID": "npm-pick-manifest@11.0.3", "Name": "npm-pick-manifest", "Identifier": { "PURL": "pkg:npm/npm-pick-manifest@11.0.3", "UID": "f597de1c32f531d0", "BOMRef": "34d07a93-e03e-4939-8023-615a976e3103" }, "Version": "11.0.3", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/npm-pick-manifest/package.json", "Digest": "sha1:da8b96c28cd5be842555739920b3574061b88b89" }, { "ID": "npm-pick-manifest@11.0.3", "Name": "npm-pick-manifest", "Identifier": { "PURL": "pkg:npm/npm-pick-manifest@11.0.3", "UID": "8d5d3e696bb8a401", "BOMRef": "0ee26795-26a3-4dae-92f3-bd45d1740934" }, "Version": "11.0.3", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/npm-pick-manifest/package.json", "Digest": "sha1:da8b96c28cd5be842555739920b3574061b88b89" }, { "ID": "npm-profile@12.0.1", "Name": "npm-profile", "Identifier": { "PURL": "pkg:npm/npm-profile@12.0.1", "UID": "e207476166e3ef5c", "BOMRef": "84fabbd1-7f3a-482c-9849-3f2c04ef2100" }, "Version": "12.0.1", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/npm-profile/package.json", "Digest": "sha1:5097ede462b66fae69c6420d7f1812d9ecc24d93" }, { "ID": "npm-profile@12.0.1", "Name": "npm-profile", "Identifier": { "PURL": "pkg:npm/npm-profile@12.0.1", "UID": "7eaf99e1289a4c99", "BOMRef": "92955cc2-ba60-42ec-bf14-3fecfea0ac66" }, "Version": "12.0.1", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/npm-profile/package.json", "Digest": "sha1:5097ede462b66fae69c6420d7f1812d9ecc24d93" }, { "ID": "npm-registry-fetch@19.1.1", "Name": "npm-registry-fetch", "Identifier": { "PURL": "pkg:npm/npm-registry-fetch@19.1.1", "UID": "2f1b732389c6ca5d", "BOMRef": "b1152ed4-436a-4287-bbbf-b4ff1af5d4a2" }, "Version": "19.1.1", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/npm-registry-fetch/package.json", "Digest": "sha1:26d6a380dc0d9bf4e36329d53b453d4258834999" }, { "ID": "npm-registry-fetch@19.1.1", "Name": "npm-registry-fetch", "Identifier": { "PURL": "pkg:npm/npm-registry-fetch@19.1.1", "UID": "70e18ac92d8bc4df", "BOMRef": "48ef30f3-fff6-4780-9f5e-eebacf5ba234" }, "Version": "19.1.1", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/npm-registry-fetch/package.json", "Digest": "sha1:26d6a380dc0d9bf4e36329d53b453d4258834999" }, { "ID": "npm-user-validate@4.0.0", "Name": "npm-user-validate", "Identifier": { "PURL": "pkg:npm/npm-user-validate@4.0.0", "UID": "17504a89c5efb80c", "BOMRef": "de04edf8-1774-4d60-99de-6b2faccc85e5" }, "Version": "4.0.0", "Licenses": [ "BSD-2-Clause" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/npm-user-validate/package.json", "Digest": "sha1:55bda8b4785869e477f5f02d1e9b0134bd86267f" }, { "ID": "npm-user-validate@4.0.0", "Name": "npm-user-validate", "Identifier": { "PURL": "pkg:npm/npm-user-validate@4.0.0", "UID": "cebdf6b8dbe3334d", "BOMRef": "e1a4de35-dada-4760-86a5-4919bccd27ac" }, "Version": "4.0.0", "Licenses": [ "BSD-2-Clause" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/npm-user-validate/package.json", "Digest": "sha1:55bda8b4785869e477f5f02d1e9b0134bd86267f" }, { "ID": "p-map@7.0.4", "Name": "p-map", "Identifier": { "PURL": "pkg:npm/p-map@7.0.4", "UID": "4aec1839c6db6308", "BOMRef": "b9610cc9-2f95-4ad1-acc2-e469892e4986" }, "Version": "7.0.4", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/p-map/package.json", "Digest": "sha1:f7afd4bd0f710b2b0c099a22a646cda6fb927688" }, { "ID": "p-map@7.0.4", "Name": "p-map", "Identifier": { "PURL": "pkg:npm/p-map@7.0.4", "UID": "68b9b6106cdc58c3", "BOMRef": "6c19da04-3e86-4912-b62f-31b44fc9657d" }, "Version": "7.0.4", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/p-map/package.json", "Digest": "sha1:f7afd4bd0f710b2b0c099a22a646cda6fb927688" }, { "ID": "package-json-from-dist@1.0.1", "Name": "package-json-from-dist", "Identifier": { "PURL": "pkg:npm/package-json-from-dist@1.0.1", "UID": "60af86c34fe3aff7", "BOMRef": "a23b4ae3-3443-45cc-b159-91eb94b6a37e" }, "Version": "1.0.1", "Licenses": [ "BlueOak-1.0.0" ], "Layer": { "Digest": "sha256:e3c43a0726da69846ae4d3ebced108345891586e5a513d46eb2c2e06b844b939", "DiffID": "sha256:06273a1fde1593ea299ad4344636055f68108990f3388a54a1170207044ba828" }, "FilePath": "usr/lib/node_modules/npm/node_modules/glob/node_modules/package-json-from-dist/package.json", "Digest": "sha1:d93947bd52021bb5f785613249e0e198a3b48025" }, { "ID": "package-json-from-dist@1.0.1", "Name": "package-json-from-dist", "Identifier": { "PURL": "pkg:npm/package-json-from-dist@1.0.1", "UID": "1a3e8c51d5613a0", "BOMRef": "350447e6-6ed6-4a05-a2c9-d17377efb3a5" }, "Version": "1.0.1", "Licenses": [ "BlueOak-1.0.0" ], "Layer": { "Digest": "sha256:e3c43a0726da69846ae4d3ebced108345891586e5a513d46eb2c2e06b844b939", "DiffID": "sha256:06273a1fde1593ea299ad4344636055f68108990f3388a54a1170207044ba828" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/glob/node_modules/package-json-from-dist/package.json", "Digest": "sha1:d93947bd52021bb5f785613249e0e198a3b48025" }, { "ID": "package-json-from-dist@1.0.1", "Name": "package-json-from-dist", "Identifier": { "PURL": "pkg:npm/package-json-from-dist@1.0.1", "UID": "4eb0d2eeea261671", "BOMRef": "f4804c01-ce35-4fa1-a215-9a9a30e8ff83" }, "Version": "1.0.1", "Licenses": [ "BlueOak-1.0.0" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/glob/node_modules/package-json-from-dist/package.json", "Digest": "sha1:d93947bd52021bb5f785613249e0e198a3b48025" }, { "ID": "package-json-from-dist@1.0.1", "Name": "package-json-from-dist", "Identifier": { "PURL": "pkg:npm/package-json-from-dist@1.0.1", "UID": "f6688055fb8525a0", "BOMRef": "c1ccd7ba-6603-4d72-8b58-d33d726b20a3" }, "Version": "1.0.1", "Licenses": [ "BlueOak-1.0.0" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/glob/node_modules/package-json-from-dist/package.json", "Digest": "sha1:d93947bd52021bb5f785613249e0e198a3b48025" }, { "ID": "pacote@21.0.4", "Name": "pacote", "Identifier": { "PURL": "pkg:npm/pacote@21.0.4", "UID": "65b8cb2c64444c22", "BOMRef": "pkg:npm/pacote@21.0.4" }, "Version": "21.0.4", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/pacote/package.json", "Digest": "sha1:50daecc71eeca347e0ed1b031bd1ce69eebd22b0" }, { "ID": "pacote@21.4.0", "Name": "pacote", "Identifier": { "PURL": "pkg:npm/pacote@21.4.0", "UID": "81e757308314d21", "BOMRef": "pkg:npm/pacote@21.4.0" }, "Version": "21.4.0", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/pacote/package.json", "Digest": "sha1:c83c4e5a82376a1bd201f893b24e09897ba0817a" }, { "ID": "parse-conflict-json@5.0.1", "Name": "parse-conflict-json", "Identifier": { "PURL": "pkg:npm/parse-conflict-json@5.0.1", "UID": "5fad6bd7d27f6618", "BOMRef": "1cef3b60-df8a-4979-a82f-e38dea419ae2" }, "Version": "5.0.1", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/parse-conflict-json/package.json", "Digest": "sha1:9665d46107a1ad4846912f83ee204314dfe18f6a" }, { "ID": "parse-conflict-json@5.0.1", "Name": "parse-conflict-json", "Identifier": { "PURL": "pkg:npm/parse-conflict-json@5.0.1", "UID": "cc0e4a3b286e0f07", "BOMRef": "1d676e7b-a8e0-49ef-9384-811c49bc2013" }, "Version": "5.0.1", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/parse-conflict-json/package.json", "Digest": "sha1:9665d46107a1ad4846912f83ee204314dfe18f6a" }, { "ID": "path-key@3.1.1", "Name": "path-key", "Identifier": { "PURL": "pkg:npm/path-key@3.1.1", "UID": "c6d1f3f7b8bbc2d3", "BOMRef": "50cf7685-9b20-417d-bebe-2ebdd85a7756" }, "Version": "3.1.1", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:e3c43a0726da69846ae4d3ebced108345891586e5a513d46eb2c2e06b844b939", "DiffID": "sha256:06273a1fde1593ea299ad4344636055f68108990f3388a54a1170207044ba828" }, "FilePath": "usr/lib/node_modules/npm/node_modules/glob/node_modules/path-key/package.json", "Digest": "sha1:f330c46f59dbdd92dddf8a2cfc2c1569b469bdd2" }, { "ID": "path-key@3.1.1", "Name": "path-key", "Identifier": { "PURL": "pkg:npm/path-key@3.1.1", "UID": "5d7f43b5c7a5d29f", "BOMRef": "602feb9e-ce9a-43d7-9a86-2b8ec7d49185" }, "Version": "3.1.1", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:e3c43a0726da69846ae4d3ebced108345891586e5a513d46eb2c2e06b844b939", "DiffID": "sha256:06273a1fde1593ea299ad4344636055f68108990f3388a54a1170207044ba828" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/glob/node_modules/path-key/package.json", "Digest": "sha1:f330c46f59dbdd92dddf8a2cfc2c1569b469bdd2" }, { "ID": "path-key@3.1.1", "Name": "path-key", "Identifier": { "PURL": "pkg:npm/path-key@3.1.1", "UID": "9f6508111ace567c", "BOMRef": "d9c3eb7a-a67a-4917-b675-56a8046faa53" }, "Version": "3.1.1", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/glob/node_modules/path-key/package.json", "Digest": "sha1:f330c46f59dbdd92dddf8a2cfc2c1569b469bdd2" }, { "ID": "path-key@3.1.1", "Name": "path-key", "Identifier": { "PURL": "pkg:npm/path-key@3.1.1", "UID": "ce052ecd29265b1e", "BOMRef": "a55e127a-d1b3-4822-a954-038d078a9011" }, "Version": "3.1.1", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/glob/node_modules/path-key/package.json", "Digest": "sha1:f330c46f59dbdd92dddf8a2cfc2c1569b469bdd2" }, { "ID": "path-scurry@2.0.1", "Name": "path-scurry", "Identifier": { "PURL": "pkg:npm/path-scurry@2.0.1", "UID": "68b9e6d3518be13f", "BOMRef": "pkg:npm/path-scurry@2.0.1" }, "Version": "2.0.1", "Licenses": [ "BlueOak-1.0.0" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/path-scurry/package.json", "Digest": "sha1:e76f88f36b2a9decd23e2a1635afba30de8f1809" }, { "ID": "path-scurry@2.0.2", "Name": "path-scurry", "Identifier": { "PURL": "pkg:npm/path-scurry@2.0.2", "UID": "8c9f7fa542a2cf41", "BOMRef": "3529523e-3b5d-49b7-8e07-cb89a5127e1f" }, "Version": "2.0.2", "Licenses": [ "BlueOak-1.0.0" ], "Layer": { "Digest": "sha256:e3c43a0726da69846ae4d3ebced108345891586e5a513d46eb2c2e06b844b939", "DiffID": "sha256:06273a1fde1593ea299ad4344636055f68108990f3388a54a1170207044ba828" }, "FilePath": "usr/lib/node_modules/npm/node_modules/glob/node_modules/path-scurry/package.json", "Digest": "sha1:6799d0755e607ad667faf000d9ff843270fb9fce" }, { "ID": "path-scurry@2.0.2", "Name": "path-scurry", "Identifier": { "PURL": "pkg:npm/path-scurry@2.0.2", "UID": "ffb8c9cfd611ee2e", "BOMRef": "6b59fa5c-1eb9-422f-a70a-6e18b018588e" }, "Version": "2.0.2", "Licenses": [ "BlueOak-1.0.0" ], "Layer": { "Digest": "sha256:e3c43a0726da69846ae4d3ebced108345891586e5a513d46eb2c2e06b844b939", "DiffID": "sha256:06273a1fde1593ea299ad4344636055f68108990f3388a54a1170207044ba828" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/glob/node_modules/path-scurry/package.json", "Digest": "sha1:6799d0755e607ad667faf000d9ff843270fb9fce" }, { "ID": "path-scurry@2.0.2", "Name": "path-scurry", "Identifier": { "PURL": "pkg:npm/path-scurry@2.0.2", "UID": "3a5487df3038374e", "BOMRef": "6c710240-5194-4358-a904-7cb53a91a0f4" }, "Version": "2.0.2", "Licenses": [ "BlueOak-1.0.0" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/glob/node_modules/path-scurry/package.json", "Digest": "sha1:6799d0755e607ad667faf000d9ff843270fb9fce" }, { "ID": "path-scurry@2.0.2", "Name": "path-scurry", "Identifier": { "PURL": "pkg:npm/path-scurry@2.0.2", "UID": "5589bdd8a0ce1897", "BOMRef": "c731ad6b-244f-41bf-83ff-6bea9220572b" }, "Version": "2.0.2", "Licenses": [ "BlueOak-1.0.0" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/glob/node_modules/path-scurry/package.json", "Digest": "sha1:6799d0755e607ad667faf000d9ff843270fb9fce" }, { "ID": "path-scurry@2.0.2", "Name": "path-scurry", "Identifier": { "PURL": "pkg:npm/path-scurry@2.0.2", "UID": "d733f34fc547a142", "BOMRef": "c6d767a0-a992-4b46-bf3b-9ba2dc5789c0" }, "Version": "2.0.2", "Licenses": [ "BlueOak-1.0.0" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/path-scurry/package.json", "Digest": "sha1:6799d0755e607ad667faf000d9ff843270fb9fce" }, { "ID": "picomatch@4.0.3", "Name": "picomatch", "Identifier": { "PURL": "pkg:npm/picomatch@4.0.3", "UID": "69b8d552be812295", "BOMRef": "c2deea32-1f8f-4e16-aa51-829b24a8c5f3" }, "Version": "4.0.3", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/tinyglobby/node_modules/picomatch/package.json", "Digest": "sha1:d5b57c1efc38eb0545dbf3eaffe857ba94597f07" }, { "ID": "picomatch@4.0.3", "Name": "picomatch", "Identifier": { "PURL": "pkg:npm/picomatch@4.0.3", "UID": "cc98f4fe78e00081", "BOMRef": "c883c0f1-b9f2-4783-a6e3-ec96b4233c60" }, "Version": "4.0.3", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/tinyglobby/node_modules/picomatch/package.json", "Digest": "sha1:d5b57c1efc38eb0545dbf3eaffe857ba94597f07" }, { "ID": "postcss-selector-parser@7.1.1", "Name": "postcss-selector-parser", "Identifier": { "PURL": "pkg:npm/postcss-selector-parser@7.1.1", "UID": "fb59c47b13e61833", "BOMRef": "8eda6986-cfea-45d0-8ed6-49d93bb9eba7" }, "Version": "7.1.1", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/postcss-selector-parser/package.json", "Digest": "sha1:97ad05d49550a0c52b32de253cc8fe8e6241b987" }, { "ID": "postcss-selector-parser@7.1.1", "Name": "postcss-selector-parser", "Identifier": { "PURL": "pkg:npm/postcss-selector-parser@7.1.1", "UID": "70a6b312b327d3e6", "BOMRef": "8d088672-5b79-4a83-aedc-c91308f17490" }, "Version": "7.1.1", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/postcss-selector-parser/package.json", "Digest": "sha1:97ad05d49550a0c52b32de253cc8fe8e6241b987" }, { "ID": "prisma@5.4.2", "Name": "prisma", "Identifier": { "PURL": "pkg:npm/prisma@5.4.2", "UID": "a1f2f49f250c9602", "BOMRef": "pkg:npm/prisma@5.4.2" }, "Version": "5.4.2", "Licenses": [ "Apache-2.0" ], "Layer": { "Digest": "sha256:2bc49981820194127004629d5292bede860adc2d7915817fb2a662ee9dea516a", "DiffID": "sha256:304c62322cfddb3f96584d17a45e75f892b78d142a299c9351029c250a2e57ec" }, "FilePath": "root/.cache/prisma-python/binaries/5.4.2/ac9d7041ed77bcc8a8dbd2ab6616b39013829574/node_modules/prisma/package.json", "Digest": "sha1:233149234d81830aa27b624c884739e1f8c7498b" }, { "ID": "prisma-binaries@1.0.0", "Name": "prisma-binaries", "Identifier": { "PURL": "pkg:npm/prisma-binaries@1.0.0", "UID": "45a086f13e24fdea", "BOMRef": "pkg:npm/prisma-binaries@1.0.0" }, "Version": "1.0.0", "Licenses": [ "Apache-2.0" ], "Layer": { "Digest": "sha256:2bc49981820194127004629d5292bede860adc2d7915817fb2a662ee9dea516a", "DiffID": "sha256:304c62322cfddb3f96584d17a45e75f892b78d142a299c9351029c250a2e57ec" }, "FilePath": "root/.cache/prisma-python/binaries/5.4.2/ac9d7041ed77bcc8a8dbd2ab6616b39013829574/package.json", "Digest": "sha1:13da9e1561789f778831c4ebefed1268d740601d" }, { "ID": "proc-log@6.1.0", "Name": "proc-log", "Identifier": { "PURL": "pkg:npm/proc-log@6.1.0", "UID": "8fda215e4bea69f4", "BOMRef": "8b8911e8-0c32-44b6-983e-22a689e343d9" }, "Version": "6.1.0", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/proc-log/package.json", "Digest": "sha1:1be791ec94791bad88368bd320e09768d19af950" }, { "ID": "proc-log@6.1.0", "Name": "proc-log", "Identifier": { "PURL": "pkg:npm/proc-log@6.1.0", "UID": "2d3102be4916b069", "BOMRef": "f41db998-46e2-435d-b555-7f76f048db61" }, "Version": "6.1.0", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/proc-log/package.json", "Digest": "sha1:1be791ec94791bad88368bd320e09768d19af950" }, { "ID": "proggy@4.0.0", "Name": "proggy", "Identifier": { "PURL": "pkg:npm/proggy@4.0.0", "UID": "b2ecd100a762c7fc", "BOMRef": "ac381a85-3c48-441d-ba30-6966d77b8eba" }, "Version": "4.0.0", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/proggy/package.json", "Digest": "sha1:6561cfc6f2b76082d0bd2e5d7c63b4ef20fe8578" }, { "ID": "proggy@4.0.0", "Name": "proggy", "Identifier": { "PURL": "pkg:npm/proggy@4.0.0", "UID": "43040edb7d55b0f2", "BOMRef": "693ab7f0-9069-41f4-88a7-776a82d844cc" }, "Version": "4.0.0", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/proggy/package.json", "Digest": "sha1:6561cfc6f2b76082d0bd2e5d7c63b4ef20fe8578" }, { "ID": "promise-all-reject-late@1.0.1", "Name": "promise-all-reject-late", "Identifier": { "PURL": "pkg:npm/promise-all-reject-late@1.0.1", "UID": "2f8719ccfb16b7e0", "BOMRef": "e5300add-2cd2-4b36-ab67-37e4c653cf97" }, "Version": "1.0.1", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/promise-all-reject-late/package.json", "Digest": "sha1:c88aa929d83fb2bbf326f7c62103da6b8c48c4df" }, { "ID": "promise-all-reject-late@1.0.1", "Name": "promise-all-reject-late", "Identifier": { "PURL": "pkg:npm/promise-all-reject-late@1.0.1", "UID": "7dcc342921ba5bc9", "BOMRef": "6feea5ce-3547-4f23-99b7-0f3f7efade47" }, "Version": "1.0.1", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/promise-all-reject-late/package.json", "Digest": "sha1:c88aa929d83fb2bbf326f7c62103da6b8c48c4df" }, { "ID": "promise-call-limit@3.0.2", "Name": "promise-call-limit", "Identifier": { "PURL": "pkg:npm/promise-call-limit@3.0.2", "UID": "41c91bd9759806b", "BOMRef": "1c59097f-b543-42ff-9d7c-847070a469fb" }, "Version": "3.0.2", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/promise-call-limit/package.json", "Digest": "sha1:27f3261a15e6ace571c3ad192e878cec1d9358c9" }, { "ID": "promise-call-limit@3.0.2", "Name": "promise-call-limit", "Identifier": { "PURL": "pkg:npm/promise-call-limit@3.0.2", "UID": "4f5606c5ec117eb4", "BOMRef": "30192705-b892-4bb4-a839-3c6c762400a0" }, "Version": "3.0.2", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/promise-call-limit/package.json", "Digest": "sha1:27f3261a15e6ace571c3ad192e878cec1d9358c9" }, { "ID": "promise-retry@2.0.1", "Name": "promise-retry", "Identifier": { "PURL": "pkg:npm/promise-retry@2.0.1", "UID": "1b01ed215fc2fad6", "BOMRef": "bbff327f-2845-4f33-bc0b-1b57140d2297" }, "Version": "2.0.1", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/promise-retry/package.json", "Digest": "sha1:fc649cbedea73287db37a431e5761e9c0b4abca9" }, { "ID": "promise-retry@2.0.1", "Name": "promise-retry", "Identifier": { "PURL": "pkg:npm/promise-retry@2.0.1", "UID": "d898fc823b41ccda", "BOMRef": "ab6f71d1-a6a5-40ab-a306-6d64211f32ad" }, "Version": "2.0.1", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/promise-retry/package.json", "Digest": "sha1:fc649cbedea73287db37a431e5761e9c0b4abca9" }, { "ID": "promzard@3.0.1", "Name": "promzard", "Identifier": { "PURL": "pkg:npm/promzard@3.0.1", "UID": "5584655f29e16b31", "BOMRef": "a1f244ca-6732-4b5b-9b26-1590730f6ef0" }, "Version": "3.0.1", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/promzard/package.json", "Digest": "sha1:cf40b5b5f6e3f70b866ca5d7fe08e00aae1bc33c" }, { "ID": "promzard@3.0.1", "Name": "promzard", "Identifier": { "PURL": "pkg:npm/promzard@3.0.1", "UID": "e0c652f2c1867b74", "BOMRef": "02e69719-fd0a-4e91-bfc4-3cf007823666" }, "Version": "3.0.1", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/promzard/package.json", "Digest": "sha1:cf40b5b5f6e3f70b866ca5d7fe08e00aae1bc33c" }, { "ID": "qrcode-terminal@0.12.0", "Name": "qrcode-terminal", "Identifier": { "PURL": "pkg:npm/qrcode-terminal@0.12.0", "UID": "99fe429409c4fbf2", "BOMRef": "b5d6735c-51b6-4e88-8ca7-569944482ccf" }, "Version": "0.12.0", "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/qrcode-terminal/package.json", "Digest": "sha1:4a84ac3decfe9f31da851b98dedd698f935b83bc" }, { "ID": "qrcode-terminal@0.12.0", "Name": "qrcode-terminal", "Identifier": { "PURL": "pkg:npm/qrcode-terminal@0.12.0", "UID": "5c6749e0c647b83c", "BOMRef": "07b93bb8-ac16-49c7-8669-9cf021926671" }, "Version": "0.12.0", "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/qrcode-terminal/package.json", "Digest": "sha1:4a84ac3decfe9f31da851b98dedd698f935b83bc" }, { "ID": "read@5.0.1", "Name": "read", "Identifier": { "PURL": "pkg:npm/read@5.0.1", "UID": "66dc20bb7a538628", "BOMRef": "cc8831cd-8b45-45cd-a0a3-056458da0652" }, "Version": "5.0.1", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/read/package.json", "Digest": "sha1:202675a6008d164feb9732ab21970a1977d40693" }, { "ID": "read@5.0.1", "Name": "read", "Identifier": { "PURL": "pkg:npm/read@5.0.1", "UID": "635c64e4f29a4cbb", "BOMRef": "c6a15d86-afb5-4aad-a210-a5f9bce86e94" }, "Version": "5.0.1", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/read/package.json", "Digest": "sha1:202675a6008d164feb9732ab21970a1977d40693" }, { "ID": "read-cmd-shim@6.0.0", "Name": "read-cmd-shim", "Identifier": { "PURL": "pkg:npm/read-cmd-shim@6.0.0", "UID": "d08fb4b8c9626fbd", "BOMRef": "f822f867-aee0-4d70-92e5-740236ad979a" }, "Version": "6.0.0", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/read-cmd-shim/package.json", "Digest": "sha1:bb22c7694960e98b244d220ac92c31f556b9a454" }, { "ID": "read-cmd-shim@6.0.0", "Name": "read-cmd-shim", "Identifier": { "PURL": "pkg:npm/read-cmd-shim@6.0.0", "UID": "4345ce2f336d4c37", "BOMRef": "68e3f846-ee5b-4a7e-b8ab-3ca2b844eba2" }, "Version": "6.0.0", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/read-cmd-shim/package.json", "Digest": "sha1:bb22c7694960e98b244d220ac92c31f556b9a454" }, { "ID": "retry@0.12.0", "Name": "retry", "Identifier": { "PURL": "pkg:npm/retry@0.12.0", "UID": "3361421ec91b975d", "BOMRef": "66d0bac1-cdba-42ce-afcd-e682f6a3c28e" }, "Version": "0.12.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/retry/package.json", "Digest": "sha1:10dd0941e4e65c436c4f7111efdb1679c966c478" }, { "ID": "retry@0.12.0", "Name": "retry", "Identifier": { "PURL": "pkg:npm/retry@0.12.0", "UID": "2648cb0b66a563fc", "BOMRef": "d4e27f88-0453-4866-afbc-0abc8ea95cb3" }, "Version": "0.12.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/retry/package.json", "Digest": "sha1:10dd0941e4e65c436c4f7111efdb1679c966c478" }, { "ID": "retry@0.13.1", "Name": "retry", "Identifier": { "PURL": "pkg:npm/retry@0.13.1", "UID": "52ca15672baabdf5", "BOMRef": "pkg:npm/retry@0.13.1" }, "Version": "0.13.1", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/@gar/promise-retry/node_modules/retry/package.json", "Digest": "sha1:59938dbd56e639fc8e328046d447a7f1e50d2603" }, { "ID": "safer-buffer@2.1.2", "Name": "safer-buffer", "Identifier": { "PURL": "pkg:npm/safer-buffer@2.1.2", "UID": "4b011bcfa2aef183", "BOMRef": "47cd4603-6a1f-4c47-86a6-bb1ec9cd6466" }, "Version": "2.1.2", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/safer-buffer/package.json", "Digest": "sha1:5ed0fab8e5cac53e4d072acbd82fca9be08f5e67" }, { "ID": "safer-buffer@2.1.2", "Name": "safer-buffer", "Identifier": { "PURL": "pkg:npm/safer-buffer@2.1.2", "UID": "a965f71db6b8570f", "BOMRef": "47d2a7d9-7aa4-47d0-9522-eaa2325ea861" }, "Version": "2.1.2", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/safer-buffer/package.json", "Digest": "sha1:5ed0fab8e5cac53e4d072acbd82fca9be08f5e67" }, { "ID": "semver@7.7.3", "Name": "semver", "Identifier": { "PURL": "pkg:npm/semver@7.7.3", "UID": "5a0f77b8a9275d59", "BOMRef": "pkg:npm/semver@7.7.3" }, "Version": "7.7.3", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/semver/package.json", "Digest": "sha1:8b79d46abe6fc320567c34edb59ab3f88ed2f581" }, { "ID": "semver@7.7.4", "Name": "semver", "Identifier": { "PURL": "pkg:npm/semver@7.7.4", "UID": "f0084b80beed9a55", "BOMRef": "pkg:npm/semver@7.7.4" }, "Version": "7.7.4", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/semver/package.json", "Digest": "sha1:d9596b0dfd52092ec49e20d3e586feaeb5d47ffb" }, { "ID": "shebang-command@2.0.0", "Name": "shebang-command", "Identifier": { "PURL": "pkg:npm/shebang-command@2.0.0", "UID": "5e01b13f19923f5d", "BOMRef": "1c5be5a6-3b3e-4db4-a09d-60a4e8c511f9" }, "Version": "2.0.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:e3c43a0726da69846ae4d3ebced108345891586e5a513d46eb2c2e06b844b939", "DiffID": "sha256:06273a1fde1593ea299ad4344636055f68108990f3388a54a1170207044ba828" }, "FilePath": "usr/lib/node_modules/npm/node_modules/glob/node_modules/shebang-command/package.json", "Digest": "sha1:2e2395a2e489846382e5cefdf011dcd7cacb82a5" }, { "ID": "shebang-command@2.0.0", "Name": "shebang-command", "Identifier": { "PURL": "pkg:npm/shebang-command@2.0.0", "UID": "58f34b31fd102e22", "BOMRef": "5e65488b-1376-4ebf-8f54-e791d56cafb1" }, "Version": "2.0.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:e3c43a0726da69846ae4d3ebced108345891586e5a513d46eb2c2e06b844b939", "DiffID": "sha256:06273a1fde1593ea299ad4344636055f68108990f3388a54a1170207044ba828" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/glob/node_modules/shebang-command/package.json", "Digest": "sha1:2e2395a2e489846382e5cefdf011dcd7cacb82a5" }, { "ID": "shebang-command@2.0.0", "Name": "shebang-command", "Identifier": { "PURL": "pkg:npm/shebang-command@2.0.0", "UID": "1f3371a36408c6a9", "BOMRef": "6314eb3a-7199-4796-bd6a-521a3e2e2eeb" }, "Version": "2.0.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/glob/node_modules/shebang-command/package.json", "Digest": "sha1:2e2395a2e489846382e5cefdf011dcd7cacb82a5" }, { "ID": "shebang-command@2.0.0", "Name": "shebang-command", "Identifier": { "PURL": "pkg:npm/shebang-command@2.0.0", "UID": "cf7119c5ac864459", "BOMRef": "f166af65-b8f4-4a77-855f-a9661240317c" }, "Version": "2.0.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/glob/node_modules/shebang-command/package.json", "Digest": "sha1:2e2395a2e489846382e5cefdf011dcd7cacb82a5" }, { "ID": "shebang-regex@3.0.0", "Name": "shebang-regex", "Identifier": { "PURL": "pkg:npm/shebang-regex@3.0.0", "UID": "2a4b9b710d730a9f", "BOMRef": "8a21c887-7a4d-4f67-b689-5619bb451634" }, "Version": "3.0.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:e3c43a0726da69846ae4d3ebced108345891586e5a513d46eb2c2e06b844b939", "DiffID": "sha256:06273a1fde1593ea299ad4344636055f68108990f3388a54a1170207044ba828" }, "FilePath": "usr/lib/node_modules/npm/node_modules/glob/node_modules/shebang-regex/package.json", "Digest": "sha1:4c10640951d12ad418aa40c29b550fdfe3d2567a" }, { "ID": "shebang-regex@3.0.0", "Name": "shebang-regex", "Identifier": { "PURL": "pkg:npm/shebang-regex@3.0.0", "UID": "f7073a7cf1cc3073", "BOMRef": "e7d230f2-8aec-489f-9c44-b975c28454c0" }, "Version": "3.0.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:e3c43a0726da69846ae4d3ebced108345891586e5a513d46eb2c2e06b844b939", "DiffID": "sha256:06273a1fde1593ea299ad4344636055f68108990f3388a54a1170207044ba828" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/glob/node_modules/shebang-regex/package.json", "Digest": "sha1:4c10640951d12ad418aa40c29b550fdfe3d2567a" }, { "ID": "shebang-regex@3.0.0", "Name": "shebang-regex", "Identifier": { "PURL": "pkg:npm/shebang-regex@3.0.0", "UID": "1654287401029d49", "BOMRef": "1c34c78d-aeb8-4741-b343-10bef75c2245" }, "Version": "3.0.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/glob/node_modules/shebang-regex/package.json", "Digest": "sha1:4c10640951d12ad418aa40c29b550fdfe3d2567a" }, { "ID": "shebang-regex@3.0.0", "Name": "shebang-regex", "Identifier": { "PURL": "pkg:npm/shebang-regex@3.0.0", "UID": "e6ad1066d79345f", "BOMRef": "c03f79be-7570-4bd0-8c9c-cfa6ae019b91" }, "Version": "3.0.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/glob/node_modules/shebang-regex/package.json", "Digest": "sha1:4c10640951d12ad418aa40c29b550fdfe3d2567a" }, { "ID": "signal-exit@4.1.0", "Name": "signal-exit", "Identifier": { "PURL": "pkg:npm/signal-exit@4.1.0", "UID": "5c86e0afb9c7b7f7", "BOMRef": "3f40da2a-e767-4263-87ee-72f1ee6d4531" }, "Version": "4.1.0", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:e3c43a0726da69846ae4d3ebced108345891586e5a513d46eb2c2e06b844b939", "DiffID": "sha256:06273a1fde1593ea299ad4344636055f68108990f3388a54a1170207044ba828" }, "FilePath": "usr/lib/node_modules/npm/node_modules/glob/node_modules/signal-exit/package.json", "Digest": "sha1:7ed47a76d7f1a65c0920cbf3d9f09c4adb9cc961" }, { "ID": "signal-exit@4.1.0", "Name": "signal-exit", "Identifier": { "PURL": "pkg:npm/signal-exit@4.1.0", "UID": "e3ec15e746b7c0e1", "BOMRef": "f5cef308-cfb6-4c55-89db-553783da1ed4" }, "Version": "4.1.0", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:e3c43a0726da69846ae4d3ebced108345891586e5a513d46eb2c2e06b844b939", "DiffID": "sha256:06273a1fde1593ea299ad4344636055f68108990f3388a54a1170207044ba828" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/glob/node_modules/signal-exit/package.json", "Digest": "sha1:7ed47a76d7f1a65c0920cbf3d9f09c4adb9cc961" }, { "ID": "signal-exit@4.1.0", "Name": "signal-exit", "Identifier": { "PURL": "pkg:npm/signal-exit@4.1.0", "UID": "d40f59745e92f163", "BOMRef": "5a086e11-b23c-4b26-b7ab-7aba7c003f87" }, "Version": "4.1.0", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/signal-exit/package.json", "Digest": "sha1:7ed47a76d7f1a65c0920cbf3d9f09c4adb9cc961" }, { "ID": "signal-exit@4.1.0", "Name": "signal-exit", "Identifier": { "PURL": "pkg:npm/signal-exit@4.1.0", "UID": "4f2a932656cb0aa8", "BOMRef": "637bd51f-0609-4b06-b708-b78bdff59d80" }, "Version": "4.1.0", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/glob/node_modules/signal-exit/package.json", "Digest": "sha1:7ed47a76d7f1a65c0920cbf3d9f09c4adb9cc961" }, { "ID": "signal-exit@4.1.0", "Name": "signal-exit", "Identifier": { "PURL": "pkg:npm/signal-exit@4.1.0", "UID": "355fdc1594bbb683", "BOMRef": "e6a162de-c48e-4b30-b61a-84b42dbdc53e" }, "Version": "4.1.0", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/glob/node_modules/signal-exit/package.json", "Digest": "sha1:7ed47a76d7f1a65c0920cbf3d9f09c4adb9cc961" }, { "ID": "signal-exit@4.1.0", "Name": "signal-exit", "Identifier": { "PURL": "pkg:npm/signal-exit@4.1.0", "UID": "54bad7edbce02936", "BOMRef": "29904f5b-29e3-459c-bffb-87cfc5b996d7" }, "Version": "4.1.0", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/signal-exit/package.json", "Digest": "sha1:7ed47a76d7f1a65c0920cbf3d9f09c4adb9cc961" }, { "ID": "sigstore@4.1.0", "Name": "sigstore", "Identifier": { "PURL": "pkg:npm/sigstore@4.1.0", "UID": "96f11a3f4d459faf", "BOMRef": "cb62abd0-051e-486f-9b2f-1260444a3389" }, "Version": "4.1.0", "Licenses": [ "Apache-2.0" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/sigstore/package.json", "Digest": "sha1:a0a695a5c6df89e050ae2802dad080b0dd66e986" }, { "ID": "sigstore@4.1.0", "Name": "sigstore", "Identifier": { "PURL": "pkg:npm/sigstore@4.1.0", "UID": "4df9ae29c07b2ffe", "BOMRef": "b809ebae-a5e6-4079-a0d0-9a6b9bbf4114" }, "Version": "4.1.0", "Licenses": [ "Apache-2.0" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/sigstore/package.json", "Digest": "sha1:a0a695a5c6df89e050ae2802dad080b0dd66e986" }, { "ID": "smart-buffer@4.2.0", "Name": "smart-buffer", "Identifier": { "PURL": "pkg:npm/smart-buffer@4.2.0", "UID": "c09be36e5ecd9e9e", "BOMRef": "85ab8b29-9346-4dc9-a589-80a17e2b98fe" }, "Version": "4.2.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/smart-buffer/package.json", "Digest": "sha1:a9db89be9421029bd73baf8199042a08253a0b59" }, { "ID": "smart-buffer@4.2.0", "Name": "smart-buffer", "Identifier": { "PURL": "pkg:npm/smart-buffer@4.2.0", "UID": "934b22c2c3322c44", "BOMRef": "15ae4852-09a9-45c8-bfdd-b5c35eafe646" }, "Version": "4.2.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/smart-buffer/package.json", "Digest": "sha1:a9db89be9421029bd73baf8199042a08253a0b59" }, { "ID": "socks@2.8.7", "Name": "socks", "Identifier": { "PURL": "pkg:npm/socks@2.8.7", "UID": "5dfb962ce8c84985", "BOMRef": "5c1cc164-dd18-4ea9-86dc-dc891c75b69a" }, "Version": "2.8.7", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/socks/package.json", "Digest": "sha1:c92d113f3614e8c725fc4de50c3312bdcde18258" }, { "ID": "socks@2.8.7", "Name": "socks", "Identifier": { "PURL": "pkg:npm/socks@2.8.7", "UID": "8e6ed6fd70ac40b8", "BOMRef": "d8273b38-ea85-41d7-9040-9871a11c6af0" }, "Version": "2.8.7", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/socks/package.json", "Digest": "sha1:c92d113f3614e8c725fc4de50c3312bdcde18258" }, { "ID": "socks-proxy-agent@8.0.5", "Name": "socks-proxy-agent", "Identifier": { "PURL": "pkg:npm/socks-proxy-agent@8.0.5", "UID": "e982ad43d65bd1f0", "BOMRef": "c7eb66e7-ef5a-4880-bb9e-4d163734959c" }, "Version": "8.0.5", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/socks-proxy-agent/package.json", "Digest": "sha1:a52f0cff949fd82f9e42d4214d2917964d7a9bdb" }, { "ID": "socks-proxy-agent@8.0.5", "Name": "socks-proxy-agent", "Identifier": { "PURL": "pkg:npm/socks-proxy-agent@8.0.5", "UID": "9a150eb6ddc72fce", "BOMRef": "b019297d-9c77-4b95-967f-7668e157a1f9" }, "Version": "8.0.5", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/socks-proxy-agent/package.json", "Digest": "sha1:a52f0cff949fd82f9e42d4214d2917964d7a9bdb" }, { "ID": "spdx-correct@3.2.0", "Name": "spdx-correct", "Identifier": { "PURL": "pkg:npm/spdx-correct@3.2.0", "UID": "db71a05a96a0a476", "BOMRef": "pkg:npm/spdx-correct@3.2.0" }, "Version": "3.2.0", "Licenses": [ "Apache-2.0" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/spdx-correct/package.json", "Digest": "sha1:a7a8f7467469c676a88934b972d08c03c9a4b7b4" }, { "ID": "spdx-exceptions@2.5.0", "Name": "spdx-exceptions", "Identifier": { "PURL": "pkg:npm/spdx-exceptions@2.5.0", "UID": "9a0211f8dabf31dd", "BOMRef": "0ade098e-385e-4bde-976f-791f6a7ffd70" }, "Version": "2.5.0", "Licenses": [ "CC-BY-3.0" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/spdx-exceptions/package.json", "Digest": "sha1:0f731ec5551fde840e6213e20cd9fbdc53468290" }, { "ID": "spdx-exceptions@2.5.0", "Name": "spdx-exceptions", "Identifier": { "PURL": "pkg:npm/spdx-exceptions@2.5.0", "UID": "6570cb435c61fe43", "BOMRef": "ba8c3ad0-e35d-485f-8c0a-5741f6ae1067" }, "Version": "2.5.0", "Licenses": [ "CC-BY-3.0" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/spdx-exceptions/package.json", "Digest": "sha1:0f731ec5551fde840e6213e20cd9fbdc53468290" }, { "ID": "spdx-expression-parse@3.0.1", "Name": "spdx-expression-parse", "Identifier": { "PURL": "pkg:npm/spdx-expression-parse@3.0.1", "UID": "74baad61fc26fb7e", "BOMRef": "57eb28f4-3547-4f9a-9e34-d3e2bf340c84" }, "Version": "3.0.1", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/spdx-correct/node_modules/spdx-expression-parse/package.json", "Digest": "sha1:72082a3e9d4efe5a06c914b7ffa738f35b550ffb" }, { "ID": "spdx-expression-parse@3.0.1", "Name": "spdx-expression-parse", "Identifier": { "PURL": "pkg:npm/spdx-expression-parse@3.0.1", "UID": "cf62e2f37c988ea5", "BOMRef": "a61b7c24-8451-40b4-8c7e-d51e484fc1ce" }, "Version": "3.0.1", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/validate-npm-package-license/node_modules/spdx-expression-parse/package.json", "Digest": "sha1:72082a3e9d4efe5a06c914b7ffa738f35b550ffb" }, { "ID": "spdx-expression-parse@4.0.0", "Name": "spdx-expression-parse", "Identifier": { "PURL": "pkg:npm/spdx-expression-parse@4.0.0", "UID": "158d93683a67f5b5", "BOMRef": "ba238925-da26-4901-b49c-b802f056db0d" }, "Version": "4.0.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/spdx-expression-parse/package.json", "Digest": "sha1:3f1b1059652d04327b6b0513080e242935399c30" }, { "ID": "spdx-expression-parse@4.0.0", "Name": "spdx-expression-parse", "Identifier": { "PURL": "pkg:npm/spdx-expression-parse@4.0.0", "UID": "a651ca16f7df3afb", "BOMRef": "ac306497-3e7b-4c27-b954-c2379c505bf1" }, "Version": "4.0.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/spdx-expression-parse/package.json", "Digest": "sha1:3f1b1059652d04327b6b0513080e242935399c30" }, { "ID": "spdx-license-ids@3.0.22", "Name": "spdx-license-ids", "Identifier": { "PURL": "pkg:npm/spdx-license-ids@3.0.22", "UID": "1bd1555a898a9099", "BOMRef": "pkg:npm/spdx-license-ids@3.0.22" }, "Version": "3.0.22", "Licenses": [ "CC0-1.0" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/spdx-license-ids/package.json", "Digest": "sha1:0c921a3dffa4e1c2bcfdf3559a7c1713090b08f2" }, { "ID": "spdx-license-ids@3.0.23", "Name": "spdx-license-ids", "Identifier": { "PURL": "pkg:npm/spdx-license-ids@3.0.23", "UID": "2f45afee4f6aeb7f", "BOMRef": "pkg:npm/spdx-license-ids@3.0.23" }, "Version": "3.0.23", "Licenses": [ "CC0-1.0" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/spdx-license-ids/package.json", "Digest": "sha1:e804161e6108792db7c0d626338f51b2dcf9bf7f" }, { "ID": "ssri@13.0.0", "Name": "ssri", "Identifier": { "PURL": "pkg:npm/ssri@13.0.0", "UID": "5054610ece044990", "BOMRef": "pkg:npm/ssri@13.0.0" }, "Version": "13.0.0", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/ssri/package.json", "Digest": "sha1:8abdcfa076c039e1f09d3b4554b0bad0c8d31d3e" }, { "ID": "ssri@13.0.1", "Name": "ssri", "Identifier": { "PURL": "pkg:npm/ssri@13.0.1", "UID": "f6869db477d28e55", "BOMRef": "pkg:npm/ssri@13.0.1" }, "Version": "13.0.1", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/ssri/package.json", "Digest": "sha1:c91b5cd4329cb25896064409cb45f2428e32f239" }, { "ID": "string-width@4.2.3", "Name": "string-width", "Identifier": { "PURL": "pkg:npm/string-width@4.2.3", "UID": "4d8bec3182deaee", "BOMRef": "pkg:npm/string-width@4.2.3" }, "Version": "4.2.3", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/string-width/package.json", "Digest": "sha1:a5306c15bba6cb123d9f061ca85eb56576c6638f" }, { "ID": "strip-ansi@6.0.1", "Name": "strip-ansi", "Identifier": { "PURL": "pkg:npm/strip-ansi@6.0.1", "UID": "da3b6ac3855ca9d", "BOMRef": "pkg:npm/strip-ansi@6.0.1" }, "Version": "6.0.1", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/strip-ansi/package.json", "Digest": "sha1:892d549c672831716abe655f087946d2644f2852" }, { "ID": "supports-color@10.2.2", "Name": "supports-color", "Identifier": { "PURL": "pkg:npm/supports-color@10.2.2", "UID": "fb0bd8bcaf05cdf0", "BOMRef": "4ca3d172-5963-4d06-8167-30313bdeb574" }, "Version": "10.2.2", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/supports-color/package.json", "Digest": "sha1:ba4fdcabc29b4cd931da15c51981f96731bd1b1e" }, { "ID": "supports-color@10.2.2", "Name": "supports-color", "Identifier": { "PURL": "pkg:npm/supports-color@10.2.2", "UID": "65fbb7017a6d4481", "BOMRef": "f971fcf7-f7de-43f8-b996-3e47af6be1b3" }, "Version": "10.2.2", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/supports-color/package.json", "Digest": "sha1:ba4fdcabc29b4cd931da15c51981f96731bd1b1e" }, { "ID": "tar@7.5.8", "Name": "tar", "Identifier": { "PURL": "pkg:npm/tar@7.5.8", "UID": "f963d815b8269a7a", "BOMRef": "b610741b-d039-44a6-991c-d29efe3f4578" }, "Version": "7.5.8", "Licenses": [ "BlueOak-1.0.0" ], "Layer": { "Digest": "sha256:e3c43a0726da69846ae4d3ebced108345891586e5a513d46eb2c2e06b844b939", "DiffID": "sha256:06273a1fde1593ea299ad4344636055f68108990f3388a54a1170207044ba828" }, "FilePath": "usr/lib/node_modules/npm/node_modules/tar/package.json", "Digest": "sha1:bb602d72821b219f56ca9ded25a2899712ec7b75" }, { "ID": "tar@7.5.8", "Name": "tar", "Identifier": { "PURL": "pkg:npm/tar@7.5.8", "UID": "7e56596523c4ac9", "BOMRef": "b10ab187-4143-4c81-9a4f-3b6dec0986ac" }, "Version": "7.5.8", "Licenses": [ "BlueOak-1.0.0" ], "Layer": { "Digest": "sha256:e3c43a0726da69846ae4d3ebced108345891586e5a513d46eb2c2e06b844b939", "DiffID": "sha256:06273a1fde1593ea299ad4344636055f68108990f3388a54a1170207044ba828" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/tar/package.json", "Digest": "sha1:bb602d72821b219f56ca9ded25a2899712ec7b75" }, { "ID": "tar@7.5.8", "Name": "tar", "Identifier": { "PURL": "pkg:npm/tar@7.5.8", "UID": "6c290958e6c30760", "BOMRef": "513d7e51-09ad-4f69-a3c8-2f28185d1cb6" }, "Version": "7.5.8", "Licenses": [ "BlueOak-1.0.0" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/tar/package.json", "Digest": "sha1:bb602d72821b219f56ca9ded25a2899712ec7b75" }, { "ID": "tar@7.5.8", "Name": "tar", "Identifier": { "PURL": "pkg:npm/tar@7.5.8", "UID": "43ece1639b8802c1", "BOMRef": "da252a74-5b55-4484-b5cf-96a81d9b49a2" }, "Version": "7.5.8", "Licenses": [ "BlueOak-1.0.0" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/tar/package.json", "Digest": "sha1:bb602d72821b219f56ca9ded25a2899712ec7b75" }, { "ID": "text-table@0.2.0", "Name": "text-table", "Identifier": { "PURL": "pkg:npm/text-table@0.2.0", "UID": "3817f6bd3a7e5925", "BOMRef": "1c9e89c4-f644-4493-8a91-3bf1772355cc" }, "Version": "0.2.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/text-table/package.json", "Digest": "sha1:f63faee888ad065881dff49fc3e3de8ac57b2ae2" }, { "ID": "text-table@0.2.0", "Name": "text-table", "Identifier": { "PURL": "pkg:npm/text-table@0.2.0", "UID": "23f5a021e1170366", "BOMRef": "65883fcd-ed88-4c5b-9bbf-a03c54137629" }, "Version": "0.2.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/text-table/package.json", "Digest": "sha1:f63faee888ad065881dff49fc3e3de8ac57b2ae2" }, { "ID": "tiny-relative-date@2.0.2", "Name": "tiny-relative-date", "Identifier": { "PURL": "pkg:npm/tiny-relative-date@2.0.2", "UID": "be734d1134438472", "BOMRef": "c3a4b871-651d-4236-8204-fe011309fc0e" }, "Version": "2.0.2", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/tiny-relative-date/package.json", "Digest": "sha1:120561f313d4901b1dc03b2594ecc45cfe2ad550" }, { "ID": "tiny-relative-date@2.0.2", "Name": "tiny-relative-date", "Identifier": { "PURL": "pkg:npm/tiny-relative-date@2.0.2", "UID": "33e15bd228b0c387", "BOMRef": "7d284eae-fa71-4f43-98bf-8ece8fb21721" }, "Version": "2.0.2", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/tiny-relative-date/package.json", "Digest": "sha1:120561f313d4901b1dc03b2594ecc45cfe2ad550" }, { "ID": "tinyglobby@0.2.15", "Name": "tinyglobby", "Identifier": { "PURL": "pkg:npm/tinyglobby@0.2.15", "UID": "b5e9c51672e4f04", "BOMRef": "de39e836-d0ac-4862-bcac-4e49beaacd3f" }, "Version": "0.2.15", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/tinyglobby/package.json", "Digest": "sha1:811354c5cc4a6c4f64899ed3fcd9f91a7a36e857" }, { "ID": "tinyglobby@0.2.15", "Name": "tinyglobby", "Identifier": { "PURL": "pkg:npm/tinyglobby@0.2.15", "UID": "1bd6dde8c4246d38", "BOMRef": "2891620f-f473-49f8-aa5f-9c1eeb346e1b" }, "Version": "0.2.15", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/tinyglobby/package.json", "Digest": "sha1:811354c5cc4a6c4f64899ed3fcd9f91a7a36e857" }, { "ID": "treeverse@3.0.0", "Name": "treeverse", "Identifier": { "PURL": "pkg:npm/treeverse@3.0.0", "UID": "a85e4ce31128f136", "BOMRef": "a958dc83-fcb7-41aa-bcb7-5dac502ad3f3" }, "Version": "3.0.0", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/treeverse/package.json", "Digest": "sha1:83653dcf5b0c581f485febcbeb9152176632bed0" }, { "ID": "treeverse@3.0.0", "Name": "treeverse", "Identifier": { "PURL": "pkg:npm/treeverse@3.0.0", "UID": "555f297ff0851bee", "BOMRef": "1a07942a-96b7-464d-8f38-6eaf378bd81d" }, "Version": "3.0.0", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/treeverse/package.json", "Digest": "sha1:83653dcf5b0c581f485febcbeb9152176632bed0" }, { "ID": "tuf-js@4.1.0", "Name": "tuf-js", "Identifier": { "PURL": "pkg:npm/tuf-js@4.1.0", "UID": "f28f26b042a7187d", "BOMRef": "de399d67-a815-4663-a979-ce8f5ece8194" }, "Version": "4.1.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/tuf-js/package.json", "Digest": "sha1:43aa062b744de4a123e714337d05adaa483ceed1" }, { "ID": "tuf-js@4.1.0", "Name": "tuf-js", "Identifier": { "PURL": "pkg:npm/tuf-js@4.1.0", "UID": "125e06a648a042f1", "BOMRef": "15dd5c86-964b-48ee-b335-ead8a390cc45" }, "Version": "4.1.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/tuf-js/package.json", "Digest": "sha1:43aa062b744de4a123e714337d05adaa483ceed1" }, { "ID": "unique-filename@5.0.0", "Name": "unique-filename", "Identifier": { "PURL": "pkg:npm/unique-filename@5.0.0", "UID": "40cbf200aa6a55b0", "BOMRef": "1fc7b167-cffe-4ccc-aeab-217d8fcdec29" }, "Version": "5.0.0", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/unique-filename/package.json", "Digest": "sha1:6450c655c66643d252cdc98fc3c413fda26dfeee" }, { "ID": "unique-filename@5.0.0", "Name": "unique-filename", "Identifier": { "PURL": "pkg:npm/unique-filename@5.0.0", "UID": "71b33790012acd9", "BOMRef": "6b3ccc7a-8f6f-49d5-ba3b-f131c8539a64" }, "Version": "5.0.0", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/unique-filename/package.json", "Digest": "sha1:6450c655c66643d252cdc98fc3c413fda26dfeee" }, { "ID": "unique-slug@6.0.0", "Name": "unique-slug", "Identifier": { "PURL": "pkg:npm/unique-slug@6.0.0", "UID": "f9ad1bef60c7df1f", "BOMRef": "5f8713d9-a21d-4520-92e2-d340d938622a" }, "Version": "6.0.0", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/unique-slug/package.json", "Digest": "sha1:8e5c78d6e2c33153024c55a1d4d1730592e3915c" }, { "ID": "unique-slug@6.0.0", "Name": "unique-slug", "Identifier": { "PURL": "pkg:npm/unique-slug@6.0.0", "UID": "83e7c1a43ef3ee4", "BOMRef": "19cd6393-3140-4613-84ec-e6ebddb631d2" }, "Version": "6.0.0", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/unique-slug/package.json", "Digest": "sha1:8e5c78d6e2c33153024c55a1d4d1730592e3915c" }, { "ID": "util-deprecate@1.0.2", "Name": "util-deprecate", "Identifier": { "PURL": "pkg:npm/util-deprecate@1.0.2", "UID": "ce74126f003e8aa2", "BOMRef": "e36243f5-0870-423f-861a-15673d38f135" }, "Version": "1.0.2", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/util-deprecate/package.json", "Digest": "sha1:2e69081e7bab6e09d3dcfd680716fdeea577431d" }, { "ID": "util-deprecate@1.0.2", "Name": "util-deprecate", "Identifier": { "PURL": "pkg:npm/util-deprecate@1.0.2", "UID": "80412115c7281436", "BOMRef": "84b10019-8892-4390-a425-5d12e0a5bdda" }, "Version": "1.0.2", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/util-deprecate/package.json", "Digest": "sha1:2e69081e7bab6e09d3dcfd680716fdeea577431d" }, { "ID": "validate-npm-package-license@3.0.4", "Name": "validate-npm-package-license", "Identifier": { "PURL": "pkg:npm/validate-npm-package-license@3.0.4", "UID": "7b620797c3c06b91", "BOMRef": "pkg:npm/validate-npm-package-license@3.0.4" }, "Version": "3.0.4", "Licenses": [ "Apache-2.0" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/validate-npm-package-license/package.json", "Digest": "sha1:a938b65349aed1eb3852d98dc1a8431209faf99f" }, { "ID": "validate-npm-package-name@7.0.2", "Name": "validate-npm-package-name", "Identifier": { "PURL": "pkg:npm/validate-npm-package-name@7.0.2", "UID": "55ffdf3da23e5eeb", "BOMRef": "b1f426f7-e6da-4f52-979c-4523c4cd4f48" }, "Version": "7.0.2", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/validate-npm-package-name/package.json", "Digest": "sha1:38514b39ec296f38677d2be6f15d799756de778e" }, { "ID": "validate-npm-package-name@7.0.2", "Name": "validate-npm-package-name", "Identifier": { "PURL": "pkg:npm/validate-npm-package-name@7.0.2", "UID": "da280d9af703d3e9", "BOMRef": "03bb12d8-a4b6-4a72-a56b-ec5eebfbe80e" }, "Version": "7.0.2", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/validate-npm-package-name/package.json", "Digest": "sha1:38514b39ec296f38677d2be6f15d799756de778e" }, { "ID": "walk-up-path@4.0.0", "Name": "walk-up-path", "Identifier": { "PURL": "pkg:npm/walk-up-path@4.0.0", "UID": "b34c87bb8326edab", "BOMRef": "e101fed3-084a-4ccb-b359-4829417a2197" }, "Version": "4.0.0", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/walk-up-path/package.json", "Digest": "sha1:5d1d771c0f7a60316cd0d039f38a9e6ce3b08b44" }, { "ID": "walk-up-path@4.0.0", "Name": "walk-up-path", "Identifier": { "PURL": "pkg:npm/walk-up-path@4.0.0", "UID": "11eeca83409ccf2b", "BOMRef": "a2c7567b-cc4d-4c1c-b931-72b4badc73bf" }, "Version": "4.0.0", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/walk-up-path/package.json", "Digest": "sha1:5d1d771c0f7a60316cd0d039f38a9e6ce3b08b44" }, { "ID": "which@2.0.2", "Name": "which", "Identifier": { "PURL": "pkg:npm/which@2.0.2", "UID": "4317f992eda3999", "BOMRef": "163964a3-8a27-4029-95fa-58f75d5270e5" }, "Version": "2.0.2", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:e3c43a0726da69846ae4d3ebced108345891586e5a513d46eb2c2e06b844b939", "DiffID": "sha256:06273a1fde1593ea299ad4344636055f68108990f3388a54a1170207044ba828" }, "FilePath": "usr/lib/node_modules/npm/node_modules/glob/node_modules/which/package.json", "Digest": "sha1:402837c5ba60f95b309957adc4657b8fe4fb1f05" }, { "ID": "which@2.0.2", "Name": "which", "Identifier": { "PURL": "pkg:npm/which@2.0.2", "UID": "1eda54996a203c2f", "BOMRef": "27d35311-7969-4d10-807c-1a48191bf5ce" }, "Version": "2.0.2", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:e3c43a0726da69846ae4d3ebced108345891586e5a513d46eb2c2e06b844b939", "DiffID": "sha256:06273a1fde1593ea299ad4344636055f68108990f3388a54a1170207044ba828" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/glob/node_modules/which/package.json", "Digest": "sha1:402837c5ba60f95b309957adc4657b8fe4fb1f05" }, { "ID": "which@2.0.2", "Name": "which", "Identifier": { "PURL": "pkg:npm/which@2.0.2", "UID": "ec555c255de13326", "BOMRef": "a97a6b03-c7a6-4508-9bbf-341eae89fde5" }, "Version": "2.0.2", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/glob/node_modules/which/package.json", "Digest": "sha1:402837c5ba60f95b309957adc4657b8fe4fb1f05" }, { "ID": "which@2.0.2", "Name": "which", "Identifier": { "PURL": "pkg:npm/which@2.0.2", "UID": "846add80b272781a", "BOMRef": "0688ed1d-c3f9-4fd8-84b9-55892ada1a18" }, "Version": "2.0.2", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/glob/node_modules/which/package.json", "Digest": "sha1:402837c5ba60f95b309957adc4657b8fe4fb1f05" }, { "ID": "which@6.0.0", "Name": "which", "Identifier": { "PURL": "pkg:npm/which@6.0.0", "UID": "5f3b32e2eadf1aa9", "BOMRef": "pkg:npm/which@6.0.0" }, "Version": "6.0.0", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/which/package.json", "Digest": "sha1:cb8b0157735e34c3257f5f246186bc73c4541924" }, { "ID": "which@6.0.1", "Name": "which", "Identifier": { "PURL": "pkg:npm/which@6.0.1", "UID": "7dffa0f48dd065f3", "BOMRef": "pkg:npm/which@6.0.1" }, "Version": "6.0.1", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/which/package.json", "Digest": "sha1:a4c4ac6aa9af226fc930104916a5f7cfd26f230c" }, { "ID": "write-file-atomic@7.0.0", "Name": "write-file-atomic", "Identifier": { "PURL": "pkg:npm/write-file-atomic@7.0.0", "UID": "163e0f635b555f16", "BOMRef": "01e0182b-275c-4ff3-8f3a-f433e5b506ef" }, "Version": "7.0.0", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/write-file-atomic/package.json", "Digest": "sha1:a38060379c27d419714e1e0d4f9397aa3ca9a238" }, { "ID": "write-file-atomic@7.0.0", "Name": "write-file-atomic", "Identifier": { "PURL": "pkg:npm/write-file-atomic@7.0.0", "UID": "279f3d86af4c419c", "BOMRef": "1516b230-314d-4101-92ca-b1ebc3c5cf9f" }, "Version": "7.0.0", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/write-file-atomic/package.json", "Digest": "sha1:a38060379c27d419714e1e0d4f9397aa3ca9a238" }, { "ID": "yallist@4.0.0", "Name": "yallist", "Identifier": { "PURL": "pkg:npm/yallist@4.0.0", "UID": "733286b8500c595d", "BOMRef": "f97a3a1d-c655-4e4b-a5a1-e932a8f84f2c" }, "Version": "4.0.0", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/yallist/package.json", "Digest": "sha1:d6a16b480cbd582f969b3d0ed89a157316268d10" }, { "ID": "yallist@4.0.0", "Name": "yallist", "Identifier": { "PURL": "pkg:npm/yallist@4.0.0", "UID": "96a2d00114c072fc", "BOMRef": "915e9eac-163b-44bc-a5b7-12df80edb21f" }, "Version": "4.0.0", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/minipass-flush/node_modules/yallist/package.json", "Digest": "sha1:d6a16b480cbd582f969b3d0ed89a157316268d10" }, { "ID": "yallist@4.0.0", "Name": "yallist", "Identifier": { "PURL": "pkg:npm/yallist@4.0.0", "UID": "53c215f919cf63f4", "BOMRef": "fa3d1692-d150-406c-8e8a-aeed94a6f2c3" }, "Version": "4.0.0", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/minipass-pipeline/node_modules/yallist/package.json", "Digest": "sha1:d6a16b480cbd582f969b3d0ed89a157316268d10" }, { "ID": "yallist@5.0.0", "Name": "yallist", "Identifier": { "PURL": "pkg:npm/yallist@5.0.0", "UID": "416535fe7ae18a2f", "BOMRef": "93f70118-29a4-40a0-81e5-ef1fee5a6768" }, "Version": "5.0.0", "Licenses": [ "BlueOak-1.0.0" ], "Layer": { "Digest": "sha256:e3c43a0726da69846ae4d3ebced108345891586e5a513d46eb2c2e06b844b939", "DiffID": "sha256:06273a1fde1593ea299ad4344636055f68108990f3388a54a1170207044ba828" }, "FilePath": "usr/lib/node_modules/npm/node_modules/tar/node_modules/yallist/package.json", "Digest": "sha1:4eaebb818148fd3bcc27e1aef2d88497999f675e" }, { "ID": "yallist@5.0.0", "Name": "yallist", "Identifier": { "PURL": "pkg:npm/yallist@5.0.0", "UID": "a703986cd6a00e20", "BOMRef": "6f289ceb-b789-4c73-ba7d-92edbf6e2919" }, "Version": "5.0.0", "Licenses": [ "BlueOak-1.0.0" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/tar/node_modules/yallist/package.json", "Digest": "sha1:4eaebb818148fd3bcc27e1aef2d88497999f675e" }, { "ID": "yallist@5.0.0", "Name": "yallist", "Identifier": { "PURL": "pkg:npm/yallist@5.0.0", "UID": "15c84b32e20bec04", "BOMRef": "7785f34a-ced2-4bbf-aeed-b26fa9a71782" }, "Version": "5.0.0", "Licenses": [ "BlueOak-1.0.0" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/tar/node_modules/yallist/package.json", "Digest": "sha1:4eaebb818148fd3bcc27e1aef2d88497999f675e" }, { "ID": "yallist@5.0.0", "Name": "yallist", "Identifier": { "PURL": "pkg:npm/yallist@5.0.0", "UID": "a2c2824892173ee0", "BOMRef": "c7c5a2cf-8197-4e49-8684-b6654bd5fbcc" }, "Version": "5.0.0", "Licenses": [ "BlueOak-1.0.0" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/yallist/package.json", "Digest": "sha1:4eaebb818148fd3bcc27e1aef2d88497999f675e" }, { "ID": "yallist@5.0.0", "Name": "yallist", "Identifier": { "PURL": "pkg:npm/yallist@5.0.0", "UID": "599e98e6aa0a9cb9", "BOMRef": "6a10c59c-eeee-4219-89ec-7d5e6bc6ad49" }, "Version": "5.0.0", "Licenses": [ "BlueOak-1.0.0" ], "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "FilePath": "usr/local/lib/node_modules/tar/node_modules/yallist/package.json", "Digest": "sha1:4eaebb818148fd3bcc27e1aef2d88497999f675e" } ], "Vulnerabilities": [ { "VulnerabilityID": "CVE-2026-33750", "VendorIDs": [ "GHSA-f886-m6hf-6m8v" ], "PkgID": "brace-expansion@5.0.3", "PkgName": "brace-expansion", "PkgPath": "usr/local/lib/node_modules/npm/node_modules/brace-expansion/package.json", "PkgIdentifier": { "PURL": "pkg:npm/brace-expansion@5.0.3", "UID": "1c10f79fd443c50d", "BOMRef": "pkg:npm/brace-expansion@5.0.3" }, "InstalledVersion": "5.0.3", "FixedVersion": "5.0.5, 3.0.2, 2.0.3, 1.1.13", "Status": "fixed", "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "SeveritySource": "ghsa", "PrimaryURL": "https://avd.aquasec.com/nvd/cve-2026-33750", "DataSource": { "ID": "ghsa", "Name": "GitHub Security Advisory npm", "URL": "https://github.com/advisories?query=type%3Areviewed+ecosystem%3Anpm" }, "Fingerprint": "sha256:bc6d74f3fd2c8de8e8b4486c9731a02fb6737bcbc1f511db5d8216f75d4c91a9", "Title": "brace-expansion: brace-expansion: Denial of Service via zero step value in brace pattern", "Description": "The brace-expansion library generates arbitrary strings containing a common prefix and suffix. Prior to versions 5.0.5, 3.0.2, 2.0.3, and 1.1.13, a brace pattern with a zero step value (e.g., `{1..2..0}`) causes the sequence generation loop to run indefinitely, making the process hang for seconds and allocate heaps of memory. Versions 5.0.5, 3.0.2, 2.0.3, and 1.1.13 fix the issue. As a workaround, sanitize strings passed to `expand()` to ensure a step value of `0` is not used.", "Severity": "MEDIUM", "CweIDs": [ "CWE-400" ], "VendorSeverity": { "ghsa": 2, "redhat": 2 }, "CVSS": { "ghsa": { "V3Vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H", "V3Score": 6.5 }, "redhat": { "V3Vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H", "V3Score": 6.5 } }, "References": [ "https://access.redhat.com/security/cve/CVE-2026-33750", "https://github.com/juliangruber/brace-expansion", "https://github.com/juliangruber/brace-expansion/blob/daa71bcb4a30a2df9bcb7f7b8daaf2ab30e5794a/src/index.ts#L107-L113", "https://github.com/juliangruber/brace-expansion/blob/daa71bcb4a30a2df9bcb7f7b8daaf2ab30e5794a/src/index.ts#L184", "https://github.com/juliangruber/brace-expansion/commit/311ac0d54994158c0a384e286a7d6cbb17ee8ed5", "https://github.com/juliangruber/brace-expansion/commit/7fd684f89fdde3549563d0a6522226a9189472a2", "https://github.com/juliangruber/brace-expansion/commit/b9cacd9e55e7a1fa588fe4b7bb1159d52f1d902a", "https://github.com/juliangruber/brace-expansion/issues/98", "https://github.com/juliangruber/brace-expansion/pull/95", "https://github.com/juliangruber/brace-expansion/pull/96", "https://github.com/juliangruber/brace-expansion/pull/97", "https://github.com/juliangruber/brace-expansion/security/advisories/GHSA-f886-m6hf-6m8v", "https://nvd.nist.gov/vuln/detail/CVE-2026-33750", "https://www.cve.org/CVERecord?id=CVE-2026-33750" ], "PublishedDate": "2026-03-27T15:16:57.297Z", "LastModifiedDate": "2026-03-30T13:26:29.793Z" }, { "VulnerabilityID": "CVE-2026-33750", "VendorIDs": [ "GHSA-f886-m6hf-6m8v" ], "PkgID": "brace-expansion@5.0.4", "PkgName": "brace-expansion", "PkgPath": "usr/lib/node_modules/npm/node_modules/minimatch/node_modules/brace-expansion/package.json", "PkgIdentifier": { "PURL": "pkg:npm/brace-expansion@5.0.4", "UID": "217020a92b896f62", "BOMRef": "074d9db7-df58-45e0-a89e-f111c2645881" }, "InstalledVersion": "5.0.4", "FixedVersion": "5.0.5, 3.0.2, 2.0.3, 1.1.13", "Status": "fixed", "Layer": { "Digest": "sha256:e3c43a0726da69846ae4d3ebced108345891586e5a513d46eb2c2e06b844b939", "DiffID": "sha256:06273a1fde1593ea299ad4344636055f68108990f3388a54a1170207044ba828" }, "SeveritySource": "ghsa", "PrimaryURL": "https://avd.aquasec.com/nvd/cve-2026-33750", "DataSource": { "ID": "ghsa", "Name": "GitHub Security Advisory npm", "URL": "https://github.com/advisories?query=type%3Areviewed+ecosystem%3Anpm" }, "Fingerprint": "sha256:55fd2fdb7c7d826531e231ed2db59c3b6ca96f74023b40ab08333f9a9eb6faf9", "Title": "brace-expansion: brace-expansion: Denial of Service via zero step value in brace pattern", "Description": "The brace-expansion library generates arbitrary strings containing a common prefix and suffix. Prior to versions 5.0.5, 3.0.2, 2.0.3, and 1.1.13, a brace pattern with a zero step value (e.g., `{1..2..0}`) causes the sequence generation loop to run indefinitely, making the process hang for seconds and allocate heaps of memory. Versions 5.0.5, 3.0.2, 2.0.3, and 1.1.13 fix the issue. As a workaround, sanitize strings passed to `expand()` to ensure a step value of `0` is not used.", "Severity": "MEDIUM", "CweIDs": [ "CWE-400" ], "VendorSeverity": { "ghsa": 2, "redhat": 2 }, "CVSS": { "ghsa": { "V3Vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H", "V3Score": 6.5 }, "redhat": { "V3Vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H", "V3Score": 6.5 } }, "References": [ "https://access.redhat.com/security/cve/CVE-2026-33750", "https://github.com/juliangruber/brace-expansion", "https://github.com/juliangruber/brace-expansion/blob/daa71bcb4a30a2df9bcb7f7b8daaf2ab30e5794a/src/index.ts#L107-L113", "https://github.com/juliangruber/brace-expansion/blob/daa71bcb4a30a2df9bcb7f7b8daaf2ab30e5794a/src/index.ts#L184", "https://github.com/juliangruber/brace-expansion/commit/311ac0d54994158c0a384e286a7d6cbb17ee8ed5", "https://github.com/juliangruber/brace-expansion/commit/7fd684f89fdde3549563d0a6522226a9189472a2", "https://github.com/juliangruber/brace-expansion/commit/b9cacd9e55e7a1fa588fe4b7bb1159d52f1d902a", "https://github.com/juliangruber/brace-expansion/issues/98", "https://github.com/juliangruber/brace-expansion/pull/95", "https://github.com/juliangruber/brace-expansion/pull/96", "https://github.com/juliangruber/brace-expansion/pull/97", "https://github.com/juliangruber/brace-expansion/security/advisories/GHSA-f886-m6hf-6m8v", "https://nvd.nist.gov/vuln/detail/CVE-2026-33750", "https://www.cve.org/CVERecord?id=CVE-2026-33750" ], "PublishedDate": "2026-03-27T15:16:57.297Z", "LastModifiedDate": "2026-03-30T13:26:29.793Z" }, { "VulnerabilityID": "CVE-2026-33750", "VendorIDs": [ "GHSA-f886-m6hf-6m8v" ], "PkgID": "brace-expansion@5.0.4", "PkgName": "brace-expansion", "PkgPath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/minimatch/node_modules/brace-expansion/package.json", "PkgIdentifier": { "PURL": "pkg:npm/brace-expansion@5.0.4", "UID": "90620db9623dd104", "BOMRef": "a1338ec4-75e9-4a29-8faa-359d37505901" }, "InstalledVersion": "5.0.4", "FixedVersion": "5.0.5, 3.0.2, 2.0.3, 1.1.13", "Status": "fixed", "Layer": { "Digest": "sha256:e3c43a0726da69846ae4d3ebced108345891586e5a513d46eb2c2e06b844b939", "DiffID": "sha256:06273a1fde1593ea299ad4344636055f68108990f3388a54a1170207044ba828" }, "SeveritySource": "ghsa", "PrimaryURL": "https://avd.aquasec.com/nvd/cve-2026-33750", "DataSource": { "ID": "ghsa", "Name": "GitHub Security Advisory npm", "URL": "https://github.com/advisories?query=type%3Areviewed+ecosystem%3Anpm" }, "Fingerprint": "sha256:55fd2fdb7c7d826531e231ed2db59c3b6ca96f74023b40ab08333f9a9eb6faf9", "Title": "brace-expansion: brace-expansion: Denial of Service via zero step value in brace pattern", "Description": "The brace-expansion library generates arbitrary strings containing a common prefix and suffix. Prior to versions 5.0.5, 3.0.2, 2.0.3, and 1.1.13, a brace pattern with a zero step value (e.g., `{1..2..0}`) causes the sequence generation loop to run indefinitely, making the process hang for seconds and allocate heaps of memory. Versions 5.0.5, 3.0.2, 2.0.3, and 1.1.13 fix the issue. As a workaround, sanitize strings passed to `expand()` to ensure a step value of `0` is not used.", "Severity": "MEDIUM", "CweIDs": [ "CWE-400" ], "VendorSeverity": { "ghsa": 2, "redhat": 2 }, "CVSS": { "ghsa": { "V3Vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H", "V3Score": 6.5 }, "redhat": { "V3Vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H", "V3Score": 6.5 } }, "References": [ "https://access.redhat.com/security/cve/CVE-2026-33750", "https://github.com/juliangruber/brace-expansion", "https://github.com/juliangruber/brace-expansion/blob/daa71bcb4a30a2df9bcb7f7b8daaf2ab30e5794a/src/index.ts#L107-L113", "https://github.com/juliangruber/brace-expansion/blob/daa71bcb4a30a2df9bcb7f7b8daaf2ab30e5794a/src/index.ts#L184", "https://github.com/juliangruber/brace-expansion/commit/311ac0d54994158c0a384e286a7d6cbb17ee8ed5", "https://github.com/juliangruber/brace-expansion/commit/7fd684f89fdde3549563d0a6522226a9189472a2", "https://github.com/juliangruber/brace-expansion/commit/b9cacd9e55e7a1fa588fe4b7bb1159d52f1d902a", "https://github.com/juliangruber/brace-expansion/issues/98", "https://github.com/juliangruber/brace-expansion/pull/95", "https://github.com/juliangruber/brace-expansion/pull/96", "https://github.com/juliangruber/brace-expansion/pull/97", "https://github.com/juliangruber/brace-expansion/security/advisories/GHSA-f886-m6hf-6m8v", "https://nvd.nist.gov/vuln/detail/CVE-2026-33750", "https://www.cve.org/CVERecord?id=CVE-2026-33750" ], "PublishedDate": "2026-03-27T15:16:57.297Z", "LastModifiedDate": "2026-03-30T13:26:29.793Z" }, { "VulnerabilityID": "CVE-2026-33750", "VendorIDs": [ "GHSA-f886-m6hf-6m8v" ], "PkgID": "brace-expansion@5.0.4", "PkgName": "brace-expansion", "PkgPath": "usr/local/lib/node_modules/minimatch/node_modules/brace-expansion/package.json", "PkgIdentifier": { "PURL": "pkg:npm/brace-expansion@5.0.4", "UID": "23ee16608ebcb7ef", "BOMRef": "9e3120a4-c591-4f0f-bbfb-2d2f55072ad9" }, "InstalledVersion": "5.0.4", "FixedVersion": "5.0.5, 3.0.2, 2.0.3, 1.1.13", "Status": "fixed", "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "SeveritySource": "ghsa", "PrimaryURL": "https://avd.aquasec.com/nvd/cve-2026-33750", "DataSource": { "ID": "ghsa", "Name": "GitHub Security Advisory npm", "URL": "https://github.com/advisories?query=type%3Areviewed+ecosystem%3Anpm" }, "Fingerprint": "sha256:55fd2fdb7c7d826531e231ed2db59c3b6ca96f74023b40ab08333f9a9eb6faf9", "Title": "brace-expansion: brace-expansion: Denial of Service via zero step value in brace pattern", "Description": "The brace-expansion library generates arbitrary strings containing a common prefix and suffix. Prior to versions 5.0.5, 3.0.2, 2.0.3, and 1.1.13, a brace pattern with a zero step value (e.g., `{1..2..0}`) causes the sequence generation loop to run indefinitely, making the process hang for seconds and allocate heaps of memory. Versions 5.0.5, 3.0.2, 2.0.3, and 1.1.13 fix the issue. As a workaround, sanitize strings passed to `expand()` to ensure a step value of `0` is not used.", "Severity": "MEDIUM", "CweIDs": [ "CWE-400" ], "VendorSeverity": { "ghsa": 2, "redhat": 2 }, "CVSS": { "ghsa": { "V3Vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H", "V3Score": 6.5 }, "redhat": { "V3Vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H", "V3Score": 6.5 } }, "References": [ "https://access.redhat.com/security/cve/CVE-2026-33750", "https://github.com/juliangruber/brace-expansion", "https://github.com/juliangruber/brace-expansion/blob/daa71bcb4a30a2df9bcb7f7b8daaf2ab30e5794a/src/index.ts#L107-L113", "https://github.com/juliangruber/brace-expansion/blob/daa71bcb4a30a2df9bcb7f7b8daaf2ab30e5794a/src/index.ts#L184", "https://github.com/juliangruber/brace-expansion/commit/311ac0d54994158c0a384e286a7d6cbb17ee8ed5", "https://github.com/juliangruber/brace-expansion/commit/7fd684f89fdde3549563d0a6522226a9189472a2", "https://github.com/juliangruber/brace-expansion/commit/b9cacd9e55e7a1fa588fe4b7bb1159d52f1d902a", "https://github.com/juliangruber/brace-expansion/issues/98", "https://github.com/juliangruber/brace-expansion/pull/95", "https://github.com/juliangruber/brace-expansion/pull/96", "https://github.com/juliangruber/brace-expansion/pull/97", "https://github.com/juliangruber/brace-expansion/security/advisories/GHSA-f886-m6hf-6m8v", "https://nvd.nist.gov/vuln/detail/CVE-2026-33750", "https://www.cve.org/CVERecord?id=CVE-2026-33750" ], "PublishedDate": "2026-03-27T15:16:57.297Z", "LastModifiedDate": "2026-03-30T13:26:29.793Z" }, { "VulnerabilityID": "CVE-2026-33750", "VendorIDs": [ "GHSA-f886-m6hf-6m8v" ], "PkgID": "brace-expansion@5.0.4", "PkgName": "brace-expansion", "PkgPath": "usr/local/lib/node_modules/npm/node_modules/minimatch/node_modules/brace-expansion/package.json", "PkgIdentifier": { "PURL": "pkg:npm/brace-expansion@5.0.4", "UID": "60ba9e90de38493e", "BOMRef": "4d3d3ea8-981d-428f-b6a3-7e16320ecd67" }, "InstalledVersion": "5.0.4", "FixedVersion": "5.0.5, 3.0.2, 2.0.3, 1.1.13", "Status": "fixed", "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "SeveritySource": "ghsa", "PrimaryURL": "https://avd.aquasec.com/nvd/cve-2026-33750", "DataSource": { "ID": "ghsa", "Name": "GitHub Security Advisory npm", "URL": "https://github.com/advisories?query=type%3Areviewed+ecosystem%3Anpm" }, "Fingerprint": "sha256:55fd2fdb7c7d826531e231ed2db59c3b6ca96f74023b40ab08333f9a9eb6faf9", "Title": "brace-expansion: brace-expansion: Denial of Service via zero step value in brace pattern", "Description": "The brace-expansion library generates arbitrary strings containing a common prefix and suffix. Prior to versions 5.0.5, 3.0.2, 2.0.3, and 1.1.13, a brace pattern with a zero step value (e.g., `{1..2..0}`) causes the sequence generation loop to run indefinitely, making the process hang for seconds and allocate heaps of memory. Versions 5.0.5, 3.0.2, 2.0.3, and 1.1.13 fix the issue. As a workaround, sanitize strings passed to `expand()` to ensure a step value of `0` is not used.", "Severity": "MEDIUM", "CweIDs": [ "CWE-400" ], "VendorSeverity": { "ghsa": 2, "redhat": 2 }, "CVSS": { "ghsa": { "V3Vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H", "V3Score": 6.5 }, "redhat": { "V3Vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H", "V3Score": 6.5 } }, "References": [ "https://access.redhat.com/security/cve/CVE-2026-33750", "https://github.com/juliangruber/brace-expansion", "https://github.com/juliangruber/brace-expansion/blob/daa71bcb4a30a2df9bcb7f7b8daaf2ab30e5794a/src/index.ts#L107-L113", "https://github.com/juliangruber/brace-expansion/blob/daa71bcb4a30a2df9bcb7f7b8daaf2ab30e5794a/src/index.ts#L184", "https://github.com/juliangruber/brace-expansion/commit/311ac0d54994158c0a384e286a7d6cbb17ee8ed5", "https://github.com/juliangruber/brace-expansion/commit/7fd684f89fdde3549563d0a6522226a9189472a2", "https://github.com/juliangruber/brace-expansion/commit/b9cacd9e55e7a1fa588fe4b7bb1159d52f1d902a", "https://github.com/juliangruber/brace-expansion/issues/98", "https://github.com/juliangruber/brace-expansion/pull/95", "https://github.com/juliangruber/brace-expansion/pull/96", "https://github.com/juliangruber/brace-expansion/pull/97", "https://github.com/juliangruber/brace-expansion/security/advisories/GHSA-f886-m6hf-6m8v", "https://nvd.nist.gov/vuln/detail/CVE-2026-33750", "https://www.cve.org/CVERecord?id=CVE-2026-33750" ], "PublishedDate": "2026-03-27T15:16:57.297Z", "LastModifiedDate": "2026-03-30T13:26:29.793Z" }, { "VulnerabilityID": "CVE-2026-27903", "VendorIDs": [ "GHSA-7r86-cg39-jmmj" ], "PkgID": "minimatch@10.2.1", "PkgName": "minimatch", "PkgPath": "usr/lib/node_modules/npm/node_modules/minimatch/package.json", "PkgIdentifier": { "PURL": "pkg:npm/minimatch@10.2.1", "UID": "6e79647cbeee8f9c", "BOMRef": "6f4a29b4-0e40-4960-b4a0-8d5be450d1c5" }, "InstalledVersion": "10.2.1", "FixedVersion": "10.2.3, 9.0.7, 8.0.6, 7.4.8, 6.2.2, 5.1.8, 4.2.5, 3.1.3", "Status": "fixed", "Layer": { "Digest": "sha256:e3c43a0726da69846ae4d3ebced108345891586e5a513d46eb2c2e06b844b939", "DiffID": "sha256:06273a1fde1593ea299ad4344636055f68108990f3388a54a1170207044ba828" }, "SeveritySource": "ghsa", "PrimaryURL": "https://avd.aquasec.com/nvd/cve-2026-27903", "DataSource": { "ID": "ghsa", "Name": "GitHub Security Advisory npm", "URL": "https://github.com/advisories?query=type%3Areviewed+ecosystem%3Anpm" }, "Fingerprint": "sha256:7f09c0ffa451c17234005611833eb09752dbbf4c2eaf9e4fd3db9d2e90423b66", "Title": "minimatch: minimatch: Denial of Service due to unbounded recursive backtracking via crafted glob patterns", "Description": "minimatch is a minimal matching utility for converting glob expressions into JavaScript RegExp objects. Prior to version 10.2.3, 9.0.7, 8.0.6, 7.4.8, 6.2.2, 5.1.8, 4.2.5, and 3.1.3, `matchOne()` performs unbounded recursive backtracking when a glob pattern contains multiple non-adjacent `**` (GLOBSTAR) segments and the input path does not match. The time complexity is O(C(n, k)) -- binomial -- where `n` is the number of path segments and `k` is the number of globstars. With k=11 and n=30, a call to the default `minimatch()` API stalls for roughly 5 seconds. With k=13, it exceeds 15 seconds. No memoization or call budget exists to bound this behavior. Any application where an attacker can influence the glob pattern passed to `minimatch()` is vulnerable. The realistic attack surface includes build tools and task runners that accept user-supplied glob arguments (ESLint, Webpack, Rollup config), multi-tenant systems where one tenant configures glob-based rules that run in a shared process, admin or developer interfaces that accept ignore-rule or filter configuration as globs, and CI/CD pipelines that evaluate user-submitted config files containing glob patterns. An attacker who can place a crafted pattern into any of these paths can stall the Node.js event loop for tens of seconds per invocation. The pattern is 56 bytes for a 5-second stall and does not require authentication in contexts where pattern input is part of the feature. Versions 10.2.3, 9.0.7, 8.0.6, 7.4.8, 6.2.2, 5.1.8, 4.2.5, and 3.1.3 fix the issue.", "Severity": "HIGH", "CweIDs": [ "CWE-407" ], "VendorSeverity": { "ghsa": 3, "redhat": 2 }, "CVSS": { "ghsa": { "V3Vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "V3Score": 7.5 }, "redhat": { "V3Vector": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H", "V3Score": 5.9 } }, "References": [ "https://access.redhat.com/security/cve/CVE-2026-27903", "https://github.com/isaacs/minimatch", "https://github.com/isaacs/minimatch/commit/0bf499aa45f5059b56809cc3b75ff3eafeb8d748", "https://github.com/isaacs/minimatch/security/advisories/GHSA-7r86-cg39-jmmj", "https://nvd.nist.gov/vuln/detail/CVE-2026-27903", "https://www.cve.org/CVERecord?id=CVE-2026-27903" ], "PublishedDate": "2026-02-26T02:16:21.353Z", "LastModifiedDate": "2026-02-27T17:21:22.37Z" }, { "VulnerabilityID": "CVE-2026-27903", "VendorIDs": [ "GHSA-7r86-cg39-jmmj" ], "PkgID": "minimatch@10.2.1", "PkgName": "minimatch", "PkgPath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/minimatch/package.json", "PkgIdentifier": { "PURL": "pkg:npm/minimatch@10.2.1", "UID": "4847008c699feb5d", "BOMRef": "74b72b43-9290-4449-b1e9-5e2068c13deb" }, "InstalledVersion": "10.2.1", "FixedVersion": "10.2.3, 9.0.7, 8.0.6, 7.4.8, 6.2.2, 5.1.8, 4.2.5, 3.1.3", "Status": "fixed", "Layer": { "Digest": "sha256:e3c43a0726da69846ae4d3ebced108345891586e5a513d46eb2c2e06b844b939", "DiffID": "sha256:06273a1fde1593ea299ad4344636055f68108990f3388a54a1170207044ba828" }, "SeveritySource": "ghsa", "PrimaryURL": "https://avd.aquasec.com/nvd/cve-2026-27903", "DataSource": { "ID": "ghsa", "Name": "GitHub Security Advisory npm", "URL": "https://github.com/advisories?query=type%3Areviewed+ecosystem%3Anpm" }, "Fingerprint": "sha256:7f09c0ffa451c17234005611833eb09752dbbf4c2eaf9e4fd3db9d2e90423b66", "Title": "minimatch: minimatch: Denial of Service due to unbounded recursive backtracking via crafted glob patterns", "Description": "minimatch is a minimal matching utility for converting glob expressions into JavaScript RegExp objects. Prior to version 10.2.3, 9.0.7, 8.0.6, 7.4.8, 6.2.2, 5.1.8, 4.2.5, and 3.1.3, `matchOne()` performs unbounded recursive backtracking when a glob pattern contains multiple non-adjacent `**` (GLOBSTAR) segments and the input path does not match. The time complexity is O(C(n, k)) -- binomial -- where `n` is the number of path segments and `k` is the number of globstars. With k=11 and n=30, a call to the default `minimatch()` API stalls for roughly 5 seconds. With k=13, it exceeds 15 seconds. No memoization or call budget exists to bound this behavior. Any application where an attacker can influence the glob pattern passed to `minimatch()` is vulnerable. The realistic attack surface includes build tools and task runners that accept user-supplied glob arguments (ESLint, Webpack, Rollup config), multi-tenant systems where one tenant configures glob-based rules that run in a shared process, admin or developer interfaces that accept ignore-rule or filter configuration as globs, and CI/CD pipelines that evaluate user-submitted config files containing glob patterns. An attacker who can place a crafted pattern into any of these paths can stall the Node.js event loop for tens of seconds per invocation. The pattern is 56 bytes for a 5-second stall and does not require authentication in contexts where pattern input is part of the feature. Versions 10.2.3, 9.0.7, 8.0.6, 7.4.8, 6.2.2, 5.1.8, 4.2.5, and 3.1.3 fix the issue.", "Severity": "HIGH", "CweIDs": [ "CWE-407" ], "VendorSeverity": { "ghsa": 3, "redhat": 2 }, "CVSS": { "ghsa": { "V3Vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "V3Score": 7.5 }, "redhat": { "V3Vector": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H", "V3Score": 5.9 } }, "References": [ "https://access.redhat.com/security/cve/CVE-2026-27903", "https://github.com/isaacs/minimatch", "https://github.com/isaacs/minimatch/commit/0bf499aa45f5059b56809cc3b75ff3eafeb8d748", "https://github.com/isaacs/minimatch/security/advisories/GHSA-7r86-cg39-jmmj", "https://nvd.nist.gov/vuln/detail/CVE-2026-27903", "https://www.cve.org/CVERecord?id=CVE-2026-27903" ], "PublishedDate": "2026-02-26T02:16:21.353Z", "LastModifiedDate": "2026-02-27T17:21:22.37Z" }, { "VulnerabilityID": "CVE-2026-27903", "VendorIDs": [ "GHSA-7r86-cg39-jmmj" ], "PkgID": "minimatch@10.2.1", "PkgName": "minimatch", "PkgPath": "usr/local/lib/node_modules/minimatch/package.json", "PkgIdentifier": { "PURL": "pkg:npm/minimatch@10.2.1", "UID": "efc68c36130925ab", "BOMRef": "51846e42-d2a6-4cc0-8740-a325e21fa757" }, "InstalledVersion": "10.2.1", "FixedVersion": "10.2.3, 9.0.7, 8.0.6, 7.4.8, 6.2.2, 5.1.8, 4.2.5, 3.1.3", "Status": "fixed", "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "SeveritySource": "ghsa", "PrimaryURL": "https://avd.aquasec.com/nvd/cve-2026-27903", "DataSource": { "ID": "ghsa", "Name": "GitHub Security Advisory npm", "URL": "https://github.com/advisories?query=type%3Areviewed+ecosystem%3Anpm" }, "Fingerprint": "sha256:7f09c0ffa451c17234005611833eb09752dbbf4c2eaf9e4fd3db9d2e90423b66", "Title": "minimatch: minimatch: Denial of Service due to unbounded recursive backtracking via crafted glob patterns", "Description": "minimatch is a minimal matching utility for converting glob expressions into JavaScript RegExp objects. Prior to version 10.2.3, 9.0.7, 8.0.6, 7.4.8, 6.2.2, 5.1.8, 4.2.5, and 3.1.3, `matchOne()` performs unbounded recursive backtracking when a glob pattern contains multiple non-adjacent `**` (GLOBSTAR) segments and the input path does not match. The time complexity is O(C(n, k)) -- binomial -- where `n` is the number of path segments and `k` is the number of globstars. With k=11 and n=30, a call to the default `minimatch()` API stalls for roughly 5 seconds. With k=13, it exceeds 15 seconds. No memoization or call budget exists to bound this behavior. Any application where an attacker can influence the glob pattern passed to `minimatch()` is vulnerable. The realistic attack surface includes build tools and task runners that accept user-supplied glob arguments (ESLint, Webpack, Rollup config), multi-tenant systems where one tenant configures glob-based rules that run in a shared process, admin or developer interfaces that accept ignore-rule or filter configuration as globs, and CI/CD pipelines that evaluate user-submitted config files containing glob patterns. An attacker who can place a crafted pattern into any of these paths can stall the Node.js event loop for tens of seconds per invocation. The pattern is 56 bytes for a 5-second stall and does not require authentication in contexts where pattern input is part of the feature. Versions 10.2.3, 9.0.7, 8.0.6, 7.4.8, 6.2.2, 5.1.8, 4.2.5, and 3.1.3 fix the issue.", "Severity": "HIGH", "CweIDs": [ "CWE-407" ], "VendorSeverity": { "ghsa": 3, "redhat": 2 }, "CVSS": { "ghsa": { "V3Vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "V3Score": 7.5 }, "redhat": { "V3Vector": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H", "V3Score": 5.9 } }, "References": [ "https://access.redhat.com/security/cve/CVE-2026-27903", "https://github.com/isaacs/minimatch", "https://github.com/isaacs/minimatch/commit/0bf499aa45f5059b56809cc3b75ff3eafeb8d748", "https://github.com/isaacs/minimatch/security/advisories/GHSA-7r86-cg39-jmmj", "https://nvd.nist.gov/vuln/detail/CVE-2026-27903", "https://www.cve.org/CVERecord?id=CVE-2026-27903" ], "PublishedDate": "2026-02-26T02:16:21.353Z", "LastModifiedDate": "2026-02-27T17:21:22.37Z" }, { "VulnerabilityID": "CVE-2026-27903", "VendorIDs": [ "GHSA-7r86-cg39-jmmj" ], "PkgID": "minimatch@10.2.1", "PkgName": "minimatch", "PkgPath": "usr/local/lib/node_modules/npm/node_modules/minimatch/package.json", "PkgIdentifier": { "PURL": "pkg:npm/minimatch@10.2.1", "UID": "2009743d22084c71", "BOMRef": "73f52de8-7227-4ac2-a42c-d17b59e69579" }, "InstalledVersion": "10.2.1", "FixedVersion": "10.2.3, 9.0.7, 8.0.6, 7.4.8, 6.2.2, 5.1.8, 4.2.5, 3.1.3", "Status": "fixed", "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "SeveritySource": "ghsa", "PrimaryURL": "https://avd.aquasec.com/nvd/cve-2026-27903", "DataSource": { "ID": "ghsa", "Name": "GitHub Security Advisory npm", "URL": "https://github.com/advisories?query=type%3Areviewed+ecosystem%3Anpm" }, "Fingerprint": "sha256:7f09c0ffa451c17234005611833eb09752dbbf4c2eaf9e4fd3db9d2e90423b66", "Title": "minimatch: minimatch: Denial of Service due to unbounded recursive backtracking via crafted glob patterns", "Description": "minimatch is a minimal matching utility for converting glob expressions into JavaScript RegExp objects. Prior to version 10.2.3, 9.0.7, 8.0.6, 7.4.8, 6.2.2, 5.1.8, 4.2.5, and 3.1.3, `matchOne()` performs unbounded recursive backtracking when a glob pattern contains multiple non-adjacent `**` (GLOBSTAR) segments and the input path does not match. The time complexity is O(C(n, k)) -- binomial -- where `n` is the number of path segments and `k` is the number of globstars. With k=11 and n=30, a call to the default `minimatch()` API stalls for roughly 5 seconds. With k=13, it exceeds 15 seconds. No memoization or call budget exists to bound this behavior. Any application where an attacker can influence the glob pattern passed to `minimatch()` is vulnerable. The realistic attack surface includes build tools and task runners that accept user-supplied glob arguments (ESLint, Webpack, Rollup config), multi-tenant systems where one tenant configures glob-based rules that run in a shared process, admin or developer interfaces that accept ignore-rule or filter configuration as globs, and CI/CD pipelines that evaluate user-submitted config files containing glob patterns. An attacker who can place a crafted pattern into any of these paths can stall the Node.js event loop for tens of seconds per invocation. The pattern is 56 bytes for a 5-second stall and does not require authentication in contexts where pattern input is part of the feature. Versions 10.2.3, 9.0.7, 8.0.6, 7.4.8, 6.2.2, 5.1.8, 4.2.5, and 3.1.3 fix the issue.", "Severity": "HIGH", "CweIDs": [ "CWE-407" ], "VendorSeverity": { "ghsa": 3, "redhat": 2 }, "CVSS": { "ghsa": { "V3Vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "V3Score": 7.5 }, "redhat": { "V3Vector": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H", "V3Score": 5.9 } }, "References": [ "https://access.redhat.com/security/cve/CVE-2026-27903", "https://github.com/isaacs/minimatch", "https://github.com/isaacs/minimatch/commit/0bf499aa45f5059b56809cc3b75ff3eafeb8d748", "https://github.com/isaacs/minimatch/security/advisories/GHSA-7r86-cg39-jmmj", "https://nvd.nist.gov/vuln/detail/CVE-2026-27903", "https://www.cve.org/CVERecord?id=CVE-2026-27903" ], "PublishedDate": "2026-02-26T02:16:21.353Z", "LastModifiedDate": "2026-02-27T17:21:22.37Z" }, { "VulnerabilityID": "CVE-2026-27904", "VendorIDs": [ "GHSA-23c5-xmqv-rm74" ], "PkgID": "minimatch@10.2.1", "PkgName": "minimatch", "PkgPath": "usr/lib/node_modules/npm/node_modules/minimatch/package.json", "PkgIdentifier": { "PURL": "pkg:npm/minimatch@10.2.1", "UID": "6e79647cbeee8f9c", "BOMRef": "6f4a29b4-0e40-4960-b4a0-8d5be450d1c5" }, "InstalledVersion": "10.2.1", "FixedVersion": "10.2.3, 9.0.7, 8.0.6, 7.4.8, 6.2.2, 5.1.8, 4.2.5, 3.1.4", "Status": "fixed", "Layer": { "Digest": "sha256:e3c43a0726da69846ae4d3ebced108345891586e5a513d46eb2c2e06b844b939", "DiffID": "sha256:06273a1fde1593ea299ad4344636055f68108990f3388a54a1170207044ba828" }, "SeveritySource": "ghsa", "PrimaryURL": "https://avd.aquasec.com/nvd/cve-2026-27904", "DataSource": { "ID": "ghsa", "Name": "GitHub Security Advisory npm", "URL": "https://github.com/advisories?query=type%3Areviewed+ecosystem%3Anpm" }, "Fingerprint": "sha256:ca62c33b81d14a226b0916a70eb28284f62ec819be3ef938d37f750d0112d6de", "Title": "minimatch: Minimatch: Denial of Service via catastrophic backtracking in glob expressions", "Description": "minimatch is a minimal matching utility for converting glob expressions into JavaScript RegExp objects. Prior to version 10.2.3, 9.0.7, 8.0.6, 7.4.8, 6.2.2, 5.1.8, 4.2.5, and 3.1.4, nested `*()` extglobs produce regexps with nested unbounded quantifiers (e.g. `(?:(?:a|b)*)*`), which exhibit catastrophic backtracking in V8. With a 12-byte pattern `*(*(*(a|b)))` and an 18-byte non-matching input, `minimatch()` stalls for over 7 seconds. Adding a single nesting level or a few input characters pushes this to minutes. This is the most severe finding: it is triggered by the default `minimatch()` API with no special options, and the minimum viable pattern is only 12 bytes. The same issue affects `+()` extglobs equally. Versions 10.2.3, 9.0.7, 8.0.6, 7.4.8, 6.2.2, 5.1.8, 4.2.5, and 3.1.4 fix the issue.", "Severity": "HIGH", "CweIDs": [ "CWE-1333" ], "VendorSeverity": { "ghsa": 3, "redhat": 2 }, "CVSS": { "ghsa": { "V3Vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "V3Score": 7.5 }, "redhat": { "V3Vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H", "V3Score": 6.5 } }, "References": [ "https://access.redhat.com/security/cve/CVE-2026-27904", "https://github.com/isaacs/minimatch", "https://github.com/isaacs/minimatch/commit/11d0df6165d15a955462316b26d52e5efae06fce", "https://github.com/isaacs/minimatch/security/advisories/GHSA-23c5-xmqv-rm74", "https://nvd.nist.gov/vuln/detail/CVE-2026-27904", "https://www.cve.org/CVERecord?id=CVE-2026-27904" ], "PublishedDate": "2026-02-26T02:16:21.76Z", "LastModifiedDate": "2026-02-27T17:16:23.773Z" }, { "VulnerabilityID": "CVE-2026-27904", "VendorIDs": [ "GHSA-23c5-xmqv-rm74" ], "PkgID": "minimatch@10.2.1", "PkgName": "minimatch", "PkgPath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/minimatch/package.json", "PkgIdentifier": { "PURL": "pkg:npm/minimatch@10.2.1", "UID": "4847008c699feb5d", "BOMRef": "74b72b43-9290-4449-b1e9-5e2068c13deb" }, "InstalledVersion": "10.2.1", "FixedVersion": "10.2.3, 9.0.7, 8.0.6, 7.4.8, 6.2.2, 5.1.8, 4.2.5, 3.1.4", "Status": "fixed", "Layer": { "Digest": "sha256:e3c43a0726da69846ae4d3ebced108345891586e5a513d46eb2c2e06b844b939", "DiffID": "sha256:06273a1fde1593ea299ad4344636055f68108990f3388a54a1170207044ba828" }, "SeveritySource": "ghsa", "PrimaryURL": "https://avd.aquasec.com/nvd/cve-2026-27904", "DataSource": { "ID": "ghsa", "Name": "GitHub Security Advisory npm", "URL": "https://github.com/advisories?query=type%3Areviewed+ecosystem%3Anpm" }, "Fingerprint": "sha256:ca62c33b81d14a226b0916a70eb28284f62ec819be3ef938d37f750d0112d6de", "Title": "minimatch: Minimatch: Denial of Service via catastrophic backtracking in glob expressions", "Description": "minimatch is a minimal matching utility for converting glob expressions into JavaScript RegExp objects. Prior to version 10.2.3, 9.0.7, 8.0.6, 7.4.8, 6.2.2, 5.1.8, 4.2.5, and 3.1.4, nested `*()` extglobs produce regexps with nested unbounded quantifiers (e.g. `(?:(?:a|b)*)*`), which exhibit catastrophic backtracking in V8. With a 12-byte pattern `*(*(*(a|b)))` and an 18-byte non-matching input, `minimatch()` stalls for over 7 seconds. Adding a single nesting level or a few input characters pushes this to minutes. This is the most severe finding: it is triggered by the default `minimatch()` API with no special options, and the minimum viable pattern is only 12 bytes. The same issue affects `+()` extglobs equally. Versions 10.2.3, 9.0.7, 8.0.6, 7.4.8, 6.2.2, 5.1.8, 4.2.5, and 3.1.4 fix the issue.", "Severity": "HIGH", "CweIDs": [ "CWE-1333" ], "VendorSeverity": { "ghsa": 3, "redhat": 2 }, "CVSS": { "ghsa": { "V3Vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "V3Score": 7.5 }, "redhat": { "V3Vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H", "V3Score": 6.5 } }, "References": [ "https://access.redhat.com/security/cve/CVE-2026-27904", "https://github.com/isaacs/minimatch", "https://github.com/isaacs/minimatch/commit/11d0df6165d15a955462316b26d52e5efae06fce", "https://github.com/isaacs/minimatch/security/advisories/GHSA-23c5-xmqv-rm74", "https://nvd.nist.gov/vuln/detail/CVE-2026-27904", "https://www.cve.org/CVERecord?id=CVE-2026-27904" ], "PublishedDate": "2026-02-26T02:16:21.76Z", "LastModifiedDate": "2026-02-27T17:16:23.773Z" }, { "VulnerabilityID": "CVE-2026-27904", "VendorIDs": [ "GHSA-23c5-xmqv-rm74" ], "PkgID": "minimatch@10.2.1", "PkgName": "minimatch", "PkgPath": "usr/local/lib/node_modules/minimatch/package.json", "PkgIdentifier": { "PURL": "pkg:npm/minimatch@10.2.1", "UID": "efc68c36130925ab", "BOMRef": "51846e42-d2a6-4cc0-8740-a325e21fa757" }, "InstalledVersion": "10.2.1", "FixedVersion": "10.2.3, 9.0.7, 8.0.6, 7.4.8, 6.2.2, 5.1.8, 4.2.5, 3.1.4", "Status": "fixed", "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "SeveritySource": "ghsa", "PrimaryURL": "https://avd.aquasec.com/nvd/cve-2026-27904", "DataSource": { "ID": "ghsa", "Name": "GitHub Security Advisory npm", "URL": "https://github.com/advisories?query=type%3Areviewed+ecosystem%3Anpm" }, "Fingerprint": "sha256:ca62c33b81d14a226b0916a70eb28284f62ec819be3ef938d37f750d0112d6de", "Title": "minimatch: Minimatch: Denial of Service via catastrophic backtracking in glob expressions", "Description": "minimatch is a minimal matching utility for converting glob expressions into JavaScript RegExp objects. Prior to version 10.2.3, 9.0.7, 8.0.6, 7.4.8, 6.2.2, 5.1.8, 4.2.5, and 3.1.4, nested `*()` extglobs produce regexps with nested unbounded quantifiers (e.g. `(?:(?:a|b)*)*`), which exhibit catastrophic backtracking in V8. With a 12-byte pattern `*(*(*(a|b)))` and an 18-byte non-matching input, `minimatch()` stalls for over 7 seconds. Adding a single nesting level or a few input characters pushes this to minutes. This is the most severe finding: it is triggered by the default `minimatch()` API with no special options, and the minimum viable pattern is only 12 bytes. The same issue affects `+()` extglobs equally. Versions 10.2.3, 9.0.7, 8.0.6, 7.4.8, 6.2.2, 5.1.8, 4.2.5, and 3.1.4 fix the issue.", "Severity": "HIGH", "CweIDs": [ "CWE-1333" ], "VendorSeverity": { "ghsa": 3, "redhat": 2 }, "CVSS": { "ghsa": { "V3Vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "V3Score": 7.5 }, "redhat": { "V3Vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H", "V3Score": 6.5 } }, "References": [ "https://access.redhat.com/security/cve/CVE-2026-27904", "https://github.com/isaacs/minimatch", "https://github.com/isaacs/minimatch/commit/11d0df6165d15a955462316b26d52e5efae06fce", "https://github.com/isaacs/minimatch/security/advisories/GHSA-23c5-xmqv-rm74", "https://nvd.nist.gov/vuln/detail/CVE-2026-27904", "https://www.cve.org/CVERecord?id=CVE-2026-27904" ], "PublishedDate": "2026-02-26T02:16:21.76Z", "LastModifiedDate": "2026-02-27T17:16:23.773Z" }, { "VulnerabilityID": "CVE-2026-27904", "VendorIDs": [ "GHSA-23c5-xmqv-rm74" ], "PkgID": "minimatch@10.2.1", "PkgName": "minimatch", "PkgPath": "usr/local/lib/node_modules/npm/node_modules/minimatch/package.json", "PkgIdentifier": { "PURL": "pkg:npm/minimatch@10.2.1", "UID": "2009743d22084c71", "BOMRef": "73f52de8-7227-4ac2-a42c-d17b59e69579" }, "InstalledVersion": "10.2.1", "FixedVersion": "10.2.3, 9.0.7, 8.0.6, 7.4.8, 6.2.2, 5.1.8, 4.2.5, 3.1.4", "Status": "fixed", "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "SeveritySource": "ghsa", "PrimaryURL": "https://avd.aquasec.com/nvd/cve-2026-27904", "DataSource": { "ID": "ghsa", "Name": "GitHub Security Advisory npm", "URL": "https://github.com/advisories?query=type%3Areviewed+ecosystem%3Anpm" }, "Fingerprint": "sha256:ca62c33b81d14a226b0916a70eb28284f62ec819be3ef938d37f750d0112d6de", "Title": "minimatch: Minimatch: Denial of Service via catastrophic backtracking in glob expressions", "Description": "minimatch is a minimal matching utility for converting glob expressions into JavaScript RegExp objects. Prior to version 10.2.3, 9.0.7, 8.0.6, 7.4.8, 6.2.2, 5.1.8, 4.2.5, and 3.1.4, nested `*()` extglobs produce regexps with nested unbounded quantifiers (e.g. `(?:(?:a|b)*)*`), which exhibit catastrophic backtracking in V8. With a 12-byte pattern `*(*(*(a|b)))` and an 18-byte non-matching input, `minimatch()` stalls for over 7 seconds. Adding a single nesting level or a few input characters pushes this to minutes. This is the most severe finding: it is triggered by the default `minimatch()` API with no special options, and the minimum viable pattern is only 12 bytes. The same issue affects `+()` extglobs equally. Versions 10.2.3, 9.0.7, 8.0.6, 7.4.8, 6.2.2, 5.1.8, 4.2.5, and 3.1.4 fix the issue.", "Severity": "HIGH", "CweIDs": [ "CWE-1333" ], "VendorSeverity": { "ghsa": 3, "redhat": 2 }, "CVSS": { "ghsa": { "V3Vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "V3Score": 7.5 }, "redhat": { "V3Vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H", "V3Score": 6.5 } }, "References": [ "https://access.redhat.com/security/cve/CVE-2026-27904", "https://github.com/isaacs/minimatch", "https://github.com/isaacs/minimatch/commit/11d0df6165d15a955462316b26d52e5efae06fce", "https://github.com/isaacs/minimatch/security/advisories/GHSA-23c5-xmqv-rm74", "https://nvd.nist.gov/vuln/detail/CVE-2026-27904", "https://www.cve.org/CVERecord?id=CVE-2026-27904" ], "PublishedDate": "2026-02-26T02:16:21.76Z", "LastModifiedDate": "2026-02-27T17:16:23.773Z" }, { "VulnerabilityID": "CVE-2026-33671", "VendorIDs": [ "GHSA-c2c7-rcm5-vvqj" ], "PkgID": "picomatch@4.0.3", "PkgName": "picomatch", "PkgPath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/tinyglobby/node_modules/picomatch/package.json", "PkgIdentifier": { "PURL": "pkg:npm/picomatch@4.0.3", "UID": "69b8d552be812295", "BOMRef": "c2deea32-1f8f-4e16-aa51-829b24a8c5f3" }, "InstalledVersion": "4.0.3", "FixedVersion": "4.0.4, 3.0.2, 2.3.2", "Status": "fixed", "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "SeveritySource": "ghsa", "PrimaryURL": "https://avd.aquasec.com/nvd/cve-2026-33671", "DataSource": { "ID": "ghsa", "Name": "GitHub Security Advisory npm", "URL": "https://github.com/advisories?query=type%3Areviewed+ecosystem%3Anpm" }, "Fingerprint": "sha256:207ad269915973ca2f23d010cda47be6c0642612083c33e920cc47d603f2821d", "Title": "picomatch: Picomatch: Regular Expression Denial of Service via crafted extglob patterns", "Description": "Picomatch is a glob matcher written JavaScript. Versions prior to 4.0.4, 3.0.2, and 2.3.2 are vulnerable to Regular Expression Denial of Service (ReDoS) when processing crafted extglob patterns. Certain patterns using extglob quantifiers such as `+()` and `*()`, especially when combined with overlapping alternatives or nested extglobs, are compiled into regular expressions that can exhibit catastrophic backtracking on non-matching input. Applications are impacted when they allow untrusted users to supply glob patterns that are passed to `picomatch` for compilation or matching. In those cases, an attacker can cause excessive CPU consumption and block the Node.js event loop, resulting in a denial of service. Applications that only use trusted, developer-controlled glob patterns are much less likely to be exposed in a security-relevant way. This issue is fixed in picomatch 4.0.4, 3.0.2 and 2.3.2. Users should upgrade to one of these versions or later, depending on their supported release line. If upgrading is not immediately possible, avoid passing untrusted glob patterns to `picomatch`. Possible mitigations include disabling extglob support for untrusted patterns by using `noextglob: true`, rejecting or sanitizing patterns containing nested extglobs or extglob quantifiers such as `+()` and `*()`, enforcing strict allowlists for accepted pattern syntax, running matching in an isolated worker or separate process with time and resource limits, and applying application-level request throttling and input validation for any endpoint that accepts glob patterns.", "Severity": "HIGH", "CweIDs": [ "CWE-1333" ], "VendorSeverity": { "ghsa": 3, "redhat": 2 }, "CVSS": { "ghsa": { "V3Vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "V3Score": 7.5 }, "redhat": { "V3Vector": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", "V3Score": 6.5 } }, "References": [ "https://access.redhat.com/security/cve/CVE-2026-33671", "https://github.com/micromatch/picomatch", "https://github.com/micromatch/picomatch/commit/5eceecd27543b8e056b9307d69e105ea03618a7d", "https://github.com/micromatch/picomatch/security/advisories/GHSA-c2c7-rcm5-vvqj", "https://nvd.nist.gov/vuln/detail/CVE-2026-33671", "https://www.cve.org/CVERecord?id=CVE-2026-33671" ], "PublishedDate": "2026-03-26T22:16:30.21Z", "LastModifiedDate": "2026-04-01T13:45:11.687Z" }, { "VulnerabilityID": "CVE-2026-33671", "VendorIDs": [ "GHSA-c2c7-rcm5-vvqj" ], "PkgID": "picomatch@4.0.3", "PkgName": "picomatch", "PkgPath": "usr/local/lib/node_modules/npm/node_modules/tinyglobby/node_modules/picomatch/package.json", "PkgIdentifier": { "PURL": "pkg:npm/picomatch@4.0.3", "UID": "cc98f4fe78e00081", "BOMRef": "c883c0f1-b9f2-4783-a6e3-ec96b4233c60" }, "InstalledVersion": "4.0.3", "FixedVersion": "4.0.4, 3.0.2, 2.3.2", "Status": "fixed", "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "SeveritySource": "ghsa", "PrimaryURL": "https://avd.aquasec.com/nvd/cve-2026-33671", "DataSource": { "ID": "ghsa", "Name": "GitHub Security Advisory npm", "URL": "https://github.com/advisories?query=type%3Areviewed+ecosystem%3Anpm" }, "Fingerprint": "sha256:207ad269915973ca2f23d010cda47be6c0642612083c33e920cc47d603f2821d", "Title": "picomatch: Picomatch: Regular Expression Denial of Service via crafted extglob patterns", "Description": "Picomatch is a glob matcher written JavaScript. Versions prior to 4.0.4, 3.0.2, and 2.3.2 are vulnerable to Regular Expression Denial of Service (ReDoS) when processing crafted extglob patterns. Certain patterns using extglob quantifiers such as `+()` and `*()`, especially when combined with overlapping alternatives or nested extglobs, are compiled into regular expressions that can exhibit catastrophic backtracking on non-matching input. Applications are impacted when they allow untrusted users to supply glob patterns that are passed to `picomatch` for compilation or matching. In those cases, an attacker can cause excessive CPU consumption and block the Node.js event loop, resulting in a denial of service. Applications that only use trusted, developer-controlled glob patterns are much less likely to be exposed in a security-relevant way. This issue is fixed in picomatch 4.0.4, 3.0.2 and 2.3.2. Users should upgrade to one of these versions or later, depending on their supported release line. If upgrading is not immediately possible, avoid passing untrusted glob patterns to `picomatch`. Possible mitigations include disabling extglob support for untrusted patterns by using `noextglob: true`, rejecting or sanitizing patterns containing nested extglobs or extglob quantifiers such as `+()` and `*()`, enforcing strict allowlists for accepted pattern syntax, running matching in an isolated worker or separate process with time and resource limits, and applying application-level request throttling and input validation for any endpoint that accepts glob patterns.", "Severity": "HIGH", "CweIDs": [ "CWE-1333" ], "VendorSeverity": { "ghsa": 3, "redhat": 2 }, "CVSS": { "ghsa": { "V3Vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "V3Score": 7.5 }, "redhat": { "V3Vector": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", "V3Score": 6.5 } }, "References": [ "https://access.redhat.com/security/cve/CVE-2026-33671", "https://github.com/micromatch/picomatch", "https://github.com/micromatch/picomatch/commit/5eceecd27543b8e056b9307d69e105ea03618a7d", "https://github.com/micromatch/picomatch/security/advisories/GHSA-c2c7-rcm5-vvqj", "https://nvd.nist.gov/vuln/detail/CVE-2026-33671", "https://www.cve.org/CVERecord?id=CVE-2026-33671" ], "PublishedDate": "2026-03-26T22:16:30.21Z", "LastModifiedDate": "2026-04-01T13:45:11.687Z" }, { "VulnerabilityID": "CVE-2026-33672", "VendorIDs": [ "GHSA-3v7f-55p6-f55p" ], "PkgID": "picomatch@4.0.3", "PkgName": "picomatch", "PkgPath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/tinyglobby/node_modules/picomatch/package.json", "PkgIdentifier": { "PURL": "pkg:npm/picomatch@4.0.3", "UID": "69b8d552be812295", "BOMRef": "c2deea32-1f8f-4e16-aa51-829b24a8c5f3" }, "InstalledVersion": "4.0.3", "FixedVersion": "4.0.4, 3.0.2, 2.3.2", "Status": "fixed", "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "SeveritySource": "ghsa", "PrimaryURL": "https://avd.aquasec.com/nvd/cve-2026-33672", "DataSource": { "ID": "ghsa", "Name": "GitHub Security Advisory npm", "URL": "https://github.com/advisories?query=type%3Areviewed+ecosystem%3Anpm" }, "Fingerprint": "sha256:2f6677f54143717bdb7617fbb22baa2470965a5f811541d2db8e4696d970e0cc", "Title": "picomatch: Picomatch: Data integrity compromised via method injection with crafted POSIX bracket expressions", "Description": "Picomatch is a glob matcher written JavaScript. Versions prior to 4.0.4, 3.0.2, and 2.3.2 are vulnerable to a method injection vulnerability affecting the `POSIX_REGEX_SOURCE` object. Because the object inherits from `Object.prototype`, specially crafted POSIX bracket expressions (e.g., `[[:constructor:]]`) can reference inherited method names. These methods are implicitly converted to strings and injected into the generated regular expression. This leads to incorrect glob matching behavior (integrity impact), where patterns may match unintended filenames. The issue does not enable remote code execution, but it can cause security-relevant logic errors in applications that rely on glob matching for filtering, validation, or access control. All users of affected `picomatch` versions that process untrusted or user-controlled glob patterns are potentially impacted. This issue is fixed in picomatch 4.0.4, 3.0.2 and 2.3.2. Users should upgrade to one of these versions or later, depending on their supported release line. If upgrading is not immediately possible, avoid passing untrusted glob patterns to picomatch. Possible mitigations include sanitizing or rejecting untrusted glob patterns, especially those containing POSIX character classes like `[[:...:]]`; avoiding the use of POSIX bracket expressions if user input is involved; and manually patching the library by modifying `POSIX_REGEX_SOURCE` to use a null prototype.", "Severity": "MEDIUM", "CweIDs": [ "CWE-1321" ], "VendorSeverity": { "ghsa": 2, "redhat": 2 }, "CVSS": { "ghsa": { "V3Vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N", "V3Score": 5.3 }, "redhat": { "V3Vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N", "V3Score": 5.3 } }, "References": [ "https://access.redhat.com/security/cve/CVE-2026-33672", "https://github.com/micromatch/picomatch", "https://github.com/micromatch/picomatch/commit/4516eb521f13a46b2fe1a1d2c9ef6b20ddc0e903", "https://github.com/micromatch/picomatch/security/advisories/GHSA-3v7f-55p6-f55p", "https://nvd.nist.gov/vuln/detail/CVE-2026-33672", "https://www.cve.org/CVERecord?id=CVE-2026-33672" ], "PublishedDate": "2026-03-26T22:16:30.387Z", "LastModifiedDate": "2026-04-01T13:44:53.397Z" }, { "VulnerabilityID": "CVE-2026-33672", "VendorIDs": [ "GHSA-3v7f-55p6-f55p" ], "PkgID": "picomatch@4.0.3", "PkgName": "picomatch", "PkgPath": "usr/local/lib/node_modules/npm/node_modules/tinyglobby/node_modules/picomatch/package.json", "PkgIdentifier": { "PURL": "pkg:npm/picomatch@4.0.3", "UID": "cc98f4fe78e00081", "BOMRef": "c883c0f1-b9f2-4783-a6e3-ec96b4233c60" }, "InstalledVersion": "4.0.3", "FixedVersion": "4.0.4, 3.0.2, 2.3.2", "Status": "fixed", "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "SeveritySource": "ghsa", "PrimaryURL": "https://avd.aquasec.com/nvd/cve-2026-33672", "DataSource": { "ID": "ghsa", "Name": "GitHub Security Advisory npm", "URL": "https://github.com/advisories?query=type%3Areviewed+ecosystem%3Anpm" }, "Fingerprint": "sha256:2f6677f54143717bdb7617fbb22baa2470965a5f811541d2db8e4696d970e0cc", "Title": "picomatch: Picomatch: Data integrity compromised via method injection with crafted POSIX bracket expressions", "Description": "Picomatch is a glob matcher written JavaScript. Versions prior to 4.0.4, 3.0.2, and 2.3.2 are vulnerable to a method injection vulnerability affecting the `POSIX_REGEX_SOURCE` object. Because the object inherits from `Object.prototype`, specially crafted POSIX bracket expressions (e.g., `[[:constructor:]]`) can reference inherited method names. These methods are implicitly converted to strings and injected into the generated regular expression. This leads to incorrect glob matching behavior (integrity impact), where patterns may match unintended filenames. The issue does not enable remote code execution, but it can cause security-relevant logic errors in applications that rely on glob matching for filtering, validation, or access control. All users of affected `picomatch` versions that process untrusted or user-controlled glob patterns are potentially impacted. This issue is fixed in picomatch 4.0.4, 3.0.2 and 2.3.2. Users should upgrade to one of these versions or later, depending on their supported release line. If upgrading is not immediately possible, avoid passing untrusted glob patterns to picomatch. Possible mitigations include sanitizing or rejecting untrusted glob patterns, especially those containing POSIX character classes like `[[:...:]]`; avoiding the use of POSIX bracket expressions if user input is involved; and manually patching the library by modifying `POSIX_REGEX_SOURCE` to use a null prototype.", "Severity": "MEDIUM", "CweIDs": [ "CWE-1321" ], "VendorSeverity": { "ghsa": 2, "redhat": 2 }, "CVSS": { "ghsa": { "V3Vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N", "V3Score": 5.3 }, "redhat": { "V3Vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N", "V3Score": 5.3 } }, "References": [ "https://access.redhat.com/security/cve/CVE-2026-33672", "https://github.com/micromatch/picomatch", "https://github.com/micromatch/picomatch/commit/4516eb521f13a46b2fe1a1d2c9ef6b20ddc0e903", "https://github.com/micromatch/picomatch/security/advisories/GHSA-3v7f-55p6-f55p", "https://nvd.nist.gov/vuln/detail/CVE-2026-33672", "https://www.cve.org/CVERecord?id=CVE-2026-33672" ], "PublishedDate": "2026-03-26T22:16:30.387Z", "LastModifiedDate": "2026-04-01T13:44:53.397Z" }, { "VulnerabilityID": "CVE-2026-29786", "VendorIDs": [ "GHSA-qffp-2rhf-9h96" ], "PkgID": "tar@7.5.8", "PkgName": "tar", "PkgPath": "usr/lib/node_modules/npm/node_modules/tar/package.json", "PkgIdentifier": { "PURL": "pkg:npm/tar@7.5.8", "UID": "f963d815b8269a7a", "BOMRef": "b610741b-d039-44a6-991c-d29efe3f4578" }, "InstalledVersion": "7.5.8", "FixedVersion": "7.5.10", "Status": "fixed", "Layer": { "Digest": "sha256:e3c43a0726da69846ae4d3ebced108345891586e5a513d46eb2c2e06b844b939", "DiffID": "sha256:06273a1fde1593ea299ad4344636055f68108990f3388a54a1170207044ba828" }, "SeveritySource": "ghsa", "PrimaryURL": "https://avd.aquasec.com/nvd/cve-2026-29786", "DataSource": { "ID": "ghsa", "Name": "GitHub Security Advisory npm", "URL": "https://github.com/advisories?query=type%3Areviewed+ecosystem%3Anpm" }, "Fingerprint": "sha256:a32a685b3c99e3c60160512ee033e7114abb1f2aab969320b49f883d4b7b3e70", "Title": "node-tar: hardlink path traversal via drive-relative linkpath", "Description": "node-tar is a full-featured Tar for Node.js. Prior to version 7.5.10, tar can be tricked into creating a hardlink that points outside the extraction directory by using a drive-relative link target such as C:../target.txt, which enables file overwrite outside cwd during normal tar.x() extraction. This issue has been patched in version 7.5.10.", "Severity": "HIGH", "CweIDs": [ "CWE-22", "CWE-59" ], "VendorSeverity": { "amazon": 3, "ghsa": 3, "nvd": 2, "redhat": 3 }, "CVSS": { "ghsa": { "V40Vector": "CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:P/VC:N/VI:H/VA:L/SC:N/SI:H/SA:L", "V40Score": 8.2 }, "nvd": { "V3Vector": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:N/I:H/A:N", "V3Score": 6.3 }, "redhat": { "V3Vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:H/A:N", "V3Score": 8.6 } }, "References": [ "https://access.redhat.com/security/cve/CVE-2026-29786", "https://github.com/isaacs/node-tar", "https://github.com/isaacs/node-tar/commit/7bc755dd85e623c0279e08eb3784909e6d7e4b9f", "https://github.com/isaacs/node-tar/security/advisories/GHSA-qffp-2rhf-9h96", "https://nvd.nist.gov/vuln/detail/CVE-2026-29786", "https://www.cve.org/CVERecord?id=CVE-2026-29786" ], "PublishedDate": "2026-03-07T16:15:55.587Z", "LastModifiedDate": "2026-03-11T21:50:01.91Z" }, { "VulnerabilityID": "CVE-2026-29786", "VendorIDs": [ "GHSA-qffp-2rhf-9h96" ], "PkgID": "tar@7.5.8", "PkgName": "tar", "PkgPath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/tar/package.json", "PkgIdentifier": { "PURL": "pkg:npm/tar@7.5.8", "UID": "7e56596523c4ac9", "BOMRef": "b10ab187-4143-4c81-9a4f-3b6dec0986ac" }, "InstalledVersion": "7.5.8", "FixedVersion": "7.5.10", "Status": "fixed", "Layer": { "Digest": "sha256:e3c43a0726da69846ae4d3ebced108345891586e5a513d46eb2c2e06b844b939", "DiffID": "sha256:06273a1fde1593ea299ad4344636055f68108990f3388a54a1170207044ba828" }, "SeveritySource": "ghsa", "PrimaryURL": "https://avd.aquasec.com/nvd/cve-2026-29786", "DataSource": { "ID": "ghsa", "Name": "GitHub Security Advisory npm", "URL": "https://github.com/advisories?query=type%3Areviewed+ecosystem%3Anpm" }, "Fingerprint": "sha256:a32a685b3c99e3c60160512ee033e7114abb1f2aab969320b49f883d4b7b3e70", "Title": "node-tar: hardlink path traversal via drive-relative linkpath", "Description": "node-tar is a full-featured Tar for Node.js. Prior to version 7.5.10, tar can be tricked into creating a hardlink that points outside the extraction directory by using a drive-relative link target such as C:../target.txt, which enables file overwrite outside cwd during normal tar.x() extraction. This issue has been patched in version 7.5.10.", "Severity": "HIGH", "CweIDs": [ "CWE-22", "CWE-59" ], "VendorSeverity": { "amazon": 3, "ghsa": 3, "nvd": 2, "redhat": 3 }, "CVSS": { "ghsa": { "V40Vector": "CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:P/VC:N/VI:H/VA:L/SC:N/SI:H/SA:L", "V40Score": 8.2 }, "nvd": { "V3Vector": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:N/I:H/A:N", "V3Score": 6.3 }, "redhat": { "V3Vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:H/A:N", "V3Score": 8.6 } }, "References": [ "https://access.redhat.com/security/cve/CVE-2026-29786", "https://github.com/isaacs/node-tar", "https://github.com/isaacs/node-tar/commit/7bc755dd85e623c0279e08eb3784909e6d7e4b9f", "https://github.com/isaacs/node-tar/security/advisories/GHSA-qffp-2rhf-9h96", "https://nvd.nist.gov/vuln/detail/CVE-2026-29786", "https://www.cve.org/CVERecord?id=CVE-2026-29786" ], "PublishedDate": "2026-03-07T16:15:55.587Z", "LastModifiedDate": "2026-03-11T21:50:01.91Z" }, { "VulnerabilityID": "CVE-2026-29786", "VendorIDs": [ "GHSA-qffp-2rhf-9h96" ], "PkgID": "tar@7.5.8", "PkgName": "tar", "PkgPath": "usr/local/lib/node_modules/npm/node_modules/tar/package.json", "PkgIdentifier": { "PURL": "pkg:npm/tar@7.5.8", "UID": "6c290958e6c30760", "BOMRef": "513d7e51-09ad-4f69-a3c8-2f28185d1cb6" }, "InstalledVersion": "7.5.8", "FixedVersion": "7.5.10", "Status": "fixed", "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "SeveritySource": "ghsa", "PrimaryURL": "https://avd.aquasec.com/nvd/cve-2026-29786", "DataSource": { "ID": "ghsa", "Name": "GitHub Security Advisory npm", "URL": "https://github.com/advisories?query=type%3Areviewed+ecosystem%3Anpm" }, "Fingerprint": "sha256:a32a685b3c99e3c60160512ee033e7114abb1f2aab969320b49f883d4b7b3e70", "Title": "node-tar: hardlink path traversal via drive-relative linkpath", "Description": "node-tar is a full-featured Tar for Node.js. Prior to version 7.5.10, tar can be tricked into creating a hardlink that points outside the extraction directory by using a drive-relative link target such as C:../target.txt, which enables file overwrite outside cwd during normal tar.x() extraction. This issue has been patched in version 7.5.10.", "Severity": "HIGH", "CweIDs": [ "CWE-22", "CWE-59" ], "VendorSeverity": { "amazon": 3, "ghsa": 3, "nvd": 2, "redhat": 3 }, "CVSS": { "ghsa": { "V40Vector": "CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:P/VC:N/VI:H/VA:L/SC:N/SI:H/SA:L", "V40Score": 8.2 }, "nvd": { "V3Vector": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:N/I:H/A:N", "V3Score": 6.3 }, "redhat": { "V3Vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:H/A:N", "V3Score": 8.6 } }, "References": [ "https://access.redhat.com/security/cve/CVE-2026-29786", "https://github.com/isaacs/node-tar", "https://github.com/isaacs/node-tar/commit/7bc755dd85e623c0279e08eb3784909e6d7e4b9f", "https://github.com/isaacs/node-tar/security/advisories/GHSA-qffp-2rhf-9h96", "https://nvd.nist.gov/vuln/detail/CVE-2026-29786", "https://www.cve.org/CVERecord?id=CVE-2026-29786" ], "PublishedDate": "2026-03-07T16:15:55.587Z", "LastModifiedDate": "2026-03-11T21:50:01.91Z" }, { "VulnerabilityID": "CVE-2026-29786", "VendorIDs": [ "GHSA-qffp-2rhf-9h96" ], "PkgID": "tar@7.5.8", "PkgName": "tar", "PkgPath": "usr/local/lib/node_modules/tar/package.json", "PkgIdentifier": { "PURL": "pkg:npm/tar@7.5.8", "UID": "43ece1639b8802c1", "BOMRef": "da252a74-5b55-4484-b5cf-96a81d9b49a2" }, "InstalledVersion": "7.5.8", "FixedVersion": "7.5.10", "Status": "fixed", "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "SeveritySource": "ghsa", "PrimaryURL": "https://avd.aquasec.com/nvd/cve-2026-29786", "DataSource": { "ID": "ghsa", "Name": "GitHub Security Advisory npm", "URL": "https://github.com/advisories?query=type%3Areviewed+ecosystem%3Anpm" }, "Fingerprint": "sha256:a32a685b3c99e3c60160512ee033e7114abb1f2aab969320b49f883d4b7b3e70", "Title": "node-tar: hardlink path traversal via drive-relative linkpath", "Description": "node-tar is a full-featured Tar for Node.js. Prior to version 7.5.10, tar can be tricked into creating a hardlink that points outside the extraction directory by using a drive-relative link target such as C:../target.txt, which enables file overwrite outside cwd during normal tar.x() extraction. This issue has been patched in version 7.5.10.", "Severity": "HIGH", "CweIDs": [ "CWE-22", "CWE-59" ], "VendorSeverity": { "amazon": 3, "ghsa": 3, "nvd": 2, "redhat": 3 }, "CVSS": { "ghsa": { "V40Vector": "CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:P/VC:N/VI:H/VA:L/SC:N/SI:H/SA:L", "V40Score": 8.2 }, "nvd": { "V3Vector": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:N/I:H/A:N", "V3Score": 6.3 }, "redhat": { "V3Vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:H/A:N", "V3Score": 8.6 } }, "References": [ "https://access.redhat.com/security/cve/CVE-2026-29786", "https://github.com/isaacs/node-tar", "https://github.com/isaacs/node-tar/commit/7bc755dd85e623c0279e08eb3784909e6d7e4b9f", "https://github.com/isaacs/node-tar/security/advisories/GHSA-qffp-2rhf-9h96", "https://nvd.nist.gov/vuln/detail/CVE-2026-29786", "https://www.cve.org/CVERecord?id=CVE-2026-29786" ], "PublishedDate": "2026-03-07T16:15:55.587Z", "LastModifiedDate": "2026-03-11T21:50:01.91Z" }, { "VulnerabilityID": "CVE-2026-31802", "VendorIDs": [ "GHSA-9ppj-qmqm-q256" ], "PkgID": "tar@7.5.8", "PkgName": "tar", "PkgPath": "usr/lib/node_modules/npm/node_modules/tar/package.json", "PkgIdentifier": { "PURL": "pkg:npm/tar@7.5.8", "UID": "f963d815b8269a7a", "BOMRef": "b610741b-d039-44a6-991c-d29efe3f4578" }, "InstalledVersion": "7.5.8", "FixedVersion": "7.5.11", "Status": "fixed", "Layer": { "Digest": "sha256:e3c43a0726da69846ae4d3ebced108345891586e5a513d46eb2c2e06b844b939", "DiffID": "sha256:06273a1fde1593ea299ad4344636055f68108990f3388a54a1170207044ba828" }, "SeveritySource": "ghsa", "PrimaryURL": "https://avd.aquasec.com/nvd/cve-2026-31802", "DataSource": { "ID": "ghsa", "Name": "GitHub Security Advisory npm", "URL": "https://github.com/advisories?query=type%3Areviewed+ecosystem%3Anpm" }, "Fingerprint": "sha256:443250536aea707f26425b77c60bb9440b39b1d77b29d3d972bcc576ef35e860", "Title": "tar: tar: File overwrite via drive-relative symlink traversal", "Description": "node-tar is a full-featured Tar for Node.js. Prior to version 7.5.11, tar (npm) can be tricked into creating a symlink that points outside the extraction directory by using a drive-relative symlink target such as C:../../../target.txt, which enables file overwrite outside cwd during normal tar.x() extraction. This vulnerability is fixed in 7.5.11.", "Severity": "HIGH", "CweIDs": [ "CWE-22" ], "VendorSeverity": { "ghsa": 3, "nvd": 2, "redhat": 2 }, "CVSS": { "ghsa": { "V40Vector": "CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:N/SC:N/SI:H/SA:N", "V40Score": 8.2 }, "nvd": { "V3Vector": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N", "V3Score": 5.5 }, "redhat": { "V3Vector": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N", "V3Score": 6.2 } }, "References": [ "https://access.redhat.com/security/cve/CVE-2026-31802", "https://github.com/isaacs/node-tar", "https://github.com/isaacs/node-tar/commit/f48b5fa3b7985ddab96dc0f2125a4ffc9911b6ad", "https://github.com/isaacs/node-tar/security/advisories/GHSA-9ppj-qmqm-q256", "https://nvd.nist.gov/vuln/detail/CVE-2026-31802", "https://www.cve.org/CVERecord?id=CVE-2026-31802" ], "PublishedDate": "2026-03-10T07:44:58.02Z", "LastModifiedDate": "2026-03-18T18:13:34.703Z" }, { "VulnerabilityID": "CVE-2026-31802", "VendorIDs": [ "GHSA-9ppj-qmqm-q256" ], "PkgID": "tar@7.5.8", "PkgName": "tar", "PkgPath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/tar/package.json", "PkgIdentifier": { "PURL": "pkg:npm/tar@7.5.8", "UID": "7e56596523c4ac9", "BOMRef": "b10ab187-4143-4c81-9a4f-3b6dec0986ac" }, "InstalledVersion": "7.5.8", "FixedVersion": "7.5.11", "Status": "fixed", "Layer": { "Digest": "sha256:e3c43a0726da69846ae4d3ebced108345891586e5a513d46eb2c2e06b844b939", "DiffID": "sha256:06273a1fde1593ea299ad4344636055f68108990f3388a54a1170207044ba828" }, "SeveritySource": "ghsa", "PrimaryURL": "https://avd.aquasec.com/nvd/cve-2026-31802", "DataSource": { "ID": "ghsa", "Name": "GitHub Security Advisory npm", "URL": "https://github.com/advisories?query=type%3Areviewed+ecosystem%3Anpm" }, "Fingerprint": "sha256:443250536aea707f26425b77c60bb9440b39b1d77b29d3d972bcc576ef35e860", "Title": "tar: tar: File overwrite via drive-relative symlink traversal", "Description": "node-tar is a full-featured Tar for Node.js. Prior to version 7.5.11, tar (npm) can be tricked into creating a symlink that points outside the extraction directory by using a drive-relative symlink target such as C:../../../target.txt, which enables file overwrite outside cwd during normal tar.x() extraction. This vulnerability is fixed in 7.5.11.", "Severity": "HIGH", "CweIDs": [ "CWE-22" ], "VendorSeverity": { "ghsa": 3, "nvd": 2, "redhat": 2 }, "CVSS": { "ghsa": { "V40Vector": "CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:N/SC:N/SI:H/SA:N", "V40Score": 8.2 }, "nvd": { "V3Vector": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N", "V3Score": 5.5 }, "redhat": { "V3Vector": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N", "V3Score": 6.2 } }, "References": [ "https://access.redhat.com/security/cve/CVE-2026-31802", "https://github.com/isaacs/node-tar", "https://github.com/isaacs/node-tar/commit/f48b5fa3b7985ddab96dc0f2125a4ffc9911b6ad", "https://github.com/isaacs/node-tar/security/advisories/GHSA-9ppj-qmqm-q256", "https://nvd.nist.gov/vuln/detail/CVE-2026-31802", "https://www.cve.org/CVERecord?id=CVE-2026-31802" ], "PublishedDate": "2026-03-10T07:44:58.02Z", "LastModifiedDate": "2026-03-18T18:13:34.703Z" }, { "VulnerabilityID": "CVE-2026-31802", "VendorIDs": [ "GHSA-9ppj-qmqm-q256" ], "PkgID": "tar@7.5.8", "PkgName": "tar", "PkgPath": "usr/local/lib/node_modules/npm/node_modules/tar/package.json", "PkgIdentifier": { "PURL": "pkg:npm/tar@7.5.8", "UID": "6c290958e6c30760", "BOMRef": "513d7e51-09ad-4f69-a3c8-2f28185d1cb6" }, "InstalledVersion": "7.5.8", "FixedVersion": "7.5.11", "Status": "fixed", "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "SeveritySource": "ghsa", "PrimaryURL": "https://avd.aquasec.com/nvd/cve-2026-31802", "DataSource": { "ID": "ghsa", "Name": "GitHub Security Advisory npm", "URL": "https://github.com/advisories?query=type%3Areviewed+ecosystem%3Anpm" }, "Fingerprint": "sha256:443250536aea707f26425b77c60bb9440b39b1d77b29d3d972bcc576ef35e860", "Title": "tar: tar: File overwrite via drive-relative symlink traversal", "Description": "node-tar is a full-featured Tar for Node.js. Prior to version 7.5.11, tar (npm) can be tricked into creating a symlink that points outside the extraction directory by using a drive-relative symlink target such as C:../../../target.txt, which enables file overwrite outside cwd during normal tar.x() extraction. This vulnerability is fixed in 7.5.11.", "Severity": "HIGH", "CweIDs": [ "CWE-22" ], "VendorSeverity": { "ghsa": 3, "nvd": 2, "redhat": 2 }, "CVSS": { "ghsa": { "V40Vector": "CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:N/SC:N/SI:H/SA:N", "V40Score": 8.2 }, "nvd": { "V3Vector": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N", "V3Score": 5.5 }, "redhat": { "V3Vector": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N", "V3Score": 6.2 } }, "References": [ "https://access.redhat.com/security/cve/CVE-2026-31802", "https://github.com/isaacs/node-tar", "https://github.com/isaacs/node-tar/commit/f48b5fa3b7985ddab96dc0f2125a4ffc9911b6ad", "https://github.com/isaacs/node-tar/security/advisories/GHSA-9ppj-qmqm-q256", "https://nvd.nist.gov/vuln/detail/CVE-2026-31802", "https://www.cve.org/CVERecord?id=CVE-2026-31802" ], "PublishedDate": "2026-03-10T07:44:58.02Z", "LastModifiedDate": "2026-03-18T18:13:34.703Z" }, { "VulnerabilityID": "CVE-2026-31802", "VendorIDs": [ "GHSA-9ppj-qmqm-q256" ], "PkgID": "tar@7.5.8", "PkgName": "tar", "PkgPath": "usr/local/lib/node_modules/tar/package.json", "PkgIdentifier": { "PURL": "pkg:npm/tar@7.5.8", "UID": "43ece1639b8802c1", "BOMRef": "da252a74-5b55-4484-b5cf-96a81d9b49a2" }, "InstalledVersion": "7.5.8", "FixedVersion": "7.5.11", "Status": "fixed", "Layer": { "Digest": "sha256:91e3b8be419fb50ed15aa1e48c995b5999144d2b72e118b33ab10623fa316bff", "DiffID": "sha256:04368acc8f67c47a1e3eaab9180108159a9994090305aeaee12044a10297d765" }, "SeveritySource": "ghsa", "PrimaryURL": "https://avd.aquasec.com/nvd/cve-2026-31802", "DataSource": { "ID": "ghsa", "Name": "GitHub Security Advisory npm", "URL": "https://github.com/advisories?query=type%3Areviewed+ecosystem%3Anpm" }, "Fingerprint": "sha256:443250536aea707f26425b77c60bb9440b39b1d77b29d3d972bcc576ef35e860", "Title": "tar: tar: File overwrite via drive-relative symlink traversal", "Description": "node-tar is a full-featured Tar for Node.js. Prior to version 7.5.11, tar (npm) can be tricked into creating a symlink that points outside the extraction directory by using a drive-relative symlink target such as C:../../../target.txt, which enables file overwrite outside cwd during normal tar.x() extraction. This vulnerability is fixed in 7.5.11.", "Severity": "HIGH", "CweIDs": [ "CWE-22" ], "VendorSeverity": { "ghsa": 3, "nvd": 2, "redhat": 2 }, "CVSS": { "ghsa": { "V40Vector": "CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:N/SC:N/SI:H/SA:N", "V40Score": 8.2 }, "nvd": { "V3Vector": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N", "V3Score": 5.5 }, "redhat": { "V3Vector": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N", "V3Score": 6.2 } }, "References": [ "https://access.redhat.com/security/cve/CVE-2026-31802", "https://github.com/isaacs/node-tar", "https://github.com/isaacs/node-tar/commit/f48b5fa3b7985ddab96dc0f2125a4ffc9911b6ad", "https://github.com/isaacs/node-tar/security/advisories/GHSA-9ppj-qmqm-q256", "https://nvd.nist.gov/vuln/detail/CVE-2026-31802", "https://www.cve.org/CVERecord?id=CVE-2026-31802" ], "PublishedDate": "2026-03-10T07:44:58.02Z", "LastModifiedDate": "2026-03-18T18:13:34.703Z" } ] }, { "Target": "Python", "Class": "lang-pkgs", "Type": "python-pkg", "Packages": [ { "ID": "APScheduler@3.10.4", "Name": "APScheduler", "Identifier": { "PURL": "pkg:pypi/apscheduler@3.10.4", "UID": "5ad2400c00d010e1", "BOMRef": "pkg:pypi/apscheduler@3.10.4" }, "Version": "3.10.4", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/APScheduler-3.10.4.dist-info/METADATA", "Digest": "sha1:3c645283c329748c21fee30a0a21ea492988d52f" }, { "ID": "Deprecated@1.3.1", "Name": "Deprecated", "Identifier": { "PURL": "pkg:pypi/deprecated@1.3.1", "UID": "f3de2605117b65f9", "BOMRef": "pkg:pypi/deprecated@1.3.1" }, "Version": "1.3.1", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/deprecated-1.3.1.dist-info/METADATA", "Digest": "sha1:109990e0106e9872d6bf3486d1fa574730d1c717" }, { "ID": "Jinja2@3.1.6", "Name": "Jinja2", "Identifier": { "PURL": "pkg:pypi/jinja2@3.1.6", "UID": "51ec9040199df8fe", "BOMRef": "pkg:pypi/jinja2@3.1.6" }, "Version": "3.1.6", "Licenses": [ "BSD-3-Clause" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/jinja2-3.1.6.dist-info/METADATA", "Digest": "sha1:01c4dcfd579104dd8f5b937e1511e9371b4367d3" }, { "ID": "MarkupSafe@3.0.3", "Name": "MarkupSafe", "Identifier": { "PURL": "pkg:pypi/markupsafe@3.0.3", "UID": "2d353037f9ae4b95", "BOMRef": "pkg:pypi/markupsafe@3.0.3" }, "Version": "3.0.3", "Licenses": [ "BSD-3-Clause" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/markupsafe-3.0.3.dist-info/METADATA", "Digest": "sha1:8ada20dd783a9961d87701f2cd25b0880f23993e" }, { "ID": "PyJWT@2.9.0", "Name": "PyJWT", "Identifier": { "PURL": "pkg:pypi/pyjwt@2.9.0", "UID": "2f2ceb3a579dbf21", "BOMRef": "pkg:pypi/pyjwt@2.9.0" }, "Version": "2.9.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:181274bd33665398890522952ae94b466da1cff04af5ada553074675359da311", "DiffID": "sha256:32a6178206b8940b9bedcd623f360580fc2e96976d62e70b700581ea3edd5430" }, "FilePath": "usr/lib/python3.13/site-packages/PyJWT-2.9.0.dist-info/METADATA", "Digest": "sha1:e0c7615c40e2db2aa26d42a9cedcb8ba8b7376a5" }, { "ID": "PyNaCl@1.6.2", "Name": "PyNaCl", "Identifier": { "PURL": "pkg:pypi/pynacl@1.6.2", "UID": "5dcc06c92db13a7b", "BOMRef": "pkg:pypi/pynacl@1.6.2" }, "Version": "1.6.2", "Licenses": [ "Apache-2.0" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/pynacl-1.6.2.dist-info/METADATA", "Digest": "sha1:51eed4f0f5e4d39bc532c4157c5a3982308b842c" }, { "ID": "PyYAML@6.0.2", "Name": "PyYAML", "Identifier": { "PURL": "pkg:pypi/pyyaml@6.0.2", "UID": "bdbe155d26909896", "BOMRef": "pkg:pypi/pyyaml@6.0.2" }, "Version": "6.0.2", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/PyYAML-6.0.2.dist-info/METADATA", "Digest": "sha1:019874e22eba3861f59a9ab72f17f58e8b504cf4" }, { "ID": "Pygments@2.19.2", "Name": "Pygments", "Identifier": { "PURL": "pkg:pypi/pygments@2.19.2", "UID": "88aec98ece975412", "BOMRef": "pkg:pypi/pygments@2.19.2" }, "Version": "2.19.2", "Licenses": [ "BSD-3-Clause" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/pygments-2.19.2.dist-info/METADATA", "Digest": "sha1:afee6b8cae57db32719d0559389750d7923f0605" }, { "ID": "Werkzeug@3.1.6", "Name": "Werkzeug", "Identifier": { "PURL": "pkg:pypi/werkzeug@3.1.6", "UID": "a8f8907048a355cd", "BOMRef": "pkg:pypi/werkzeug@3.1.6" }, "Version": "3.1.6", "Licenses": [ "BSD-3-Clause" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/werkzeug-3.1.6.dist-info/METADATA", "Digest": "sha1:009a319320a3a8823025adcbb66babf581a30e3e" }, { "ID": "a2a-sdk@0.3.24", "Name": "a2a-sdk", "Identifier": { "PURL": "pkg:pypi/a2a-sdk@0.3.24", "UID": "a0dc0bf875df8c80", "BOMRef": "pkg:pypi/a2a-sdk@0.3.24" }, "Version": "0.3.24", "Licenses": [ "Apache-2.0" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/a2a_sdk-0.3.24.dist-info/METADATA", "Digest": "sha1:84b66f1657f33e3448649e936ca3d127225232bf" }, { "ID": "aioboto3@15.5.0", "Name": "aioboto3", "Identifier": { "PURL": "pkg:pypi/aioboto3@15.5.0", "UID": "ae9d766ee56a3b2f", "BOMRef": "pkg:pypi/aioboto3@15.5.0" }, "Version": "15.5.0", "Licenses": [ "Apache-2.0" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/aioboto3-15.5.0.dist-info/METADATA", "Digest": "sha1:ffd08838a16b51a1cb1807dde93c8b0f990244f5" }, { "ID": "aiobotocore@2.25.1", "Name": "aiobotocore", "Identifier": { "PURL": "pkg:pypi/aiobotocore@2.25.1", "UID": "9c0087f5170419d2", "BOMRef": "pkg:pypi/aiobotocore@2.25.1" }, "Version": "2.25.1", "Licenses": [ "Apache-2.0" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/aiobotocore-2.25.1.dist-info/METADATA", "Digest": "sha1:ba7a88ae15a977227d960e17f3cbdb740f04fbfe" }, { "ID": "aiofiles@24.1.0", "Name": "aiofiles", "Identifier": { "PURL": "pkg:pypi/aiofiles@24.1.0", "UID": "3efd1a027a4297c4", "BOMRef": "pkg:pypi/aiofiles@24.1.0" }, "Version": "24.1.0", "Licenses": [ "Apache-2.0" ], "Layer": { "Digest": "sha256:de9c2c7bfc730f46a1c6f7ff0452b67341cdb205a56622e9fe2a2b49a3f3ded2", "DiffID": "sha256:6da91fd6d07caf4ad56ae74cd95d5540242e9ae443c71b2f652689cd161eda87" }, "FilePath": "usr/lib/python3.13/site-packages/aiofiles-24.1.0.dist-info/METADATA", "Digest": "sha1:1fee4c4fef706c9737b9ce8e245bbd8dae4e4d16" }, { "ID": "aiohappyeyeballs@2.6.1", "Name": "aiohappyeyeballs", "Identifier": { "PURL": "pkg:pypi/aiohappyeyeballs@2.6.1", "UID": "b2f19d97573ffcf3", "BOMRef": "pkg:pypi/aiohappyeyeballs@2.6.1" }, "Version": "2.6.1", "Licenses": [ "Python-Software-Foundation-License" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/aiohappyeyeballs-2.6.1.dist-info/METADATA", "Digest": "sha1:01343f4e8b1584084c09e049bd83675272d9e757" }, { "ID": "aiohttp@3.13.3", "Name": "aiohttp", "Identifier": { "PURL": "pkg:pypi/aiohttp@3.13.3", "UID": "a30bcd985ed2f38f", "BOMRef": "pkg:pypi/aiohttp@3.13.3" }, "Version": "3.13.3", "Licenses": [ "Apache-2.0 AND MIT" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/aiohttp-3.13.3.dist-info/METADATA", "Digest": "sha1:63d65762ed8ded0c65362a1b04e4245d6ab9f170" }, { "ID": "aioitertools@0.13.0", "Name": "aioitertools", "Identifier": { "PURL": "pkg:pypi/aioitertools@0.13.0", "UID": "1afd2c351abe4121", "BOMRef": "pkg:pypi/aioitertools@0.13.0" }, "Version": "0.13.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/aioitertools-0.13.0.dist-info/METADATA", "Digest": "sha1:110d571c90f132b20fc32b46c28c3c95b1c7aa94" }, { "ID": "aiosignal@1.4.0", "Name": "aiosignal", "Identifier": { "PURL": "pkg:pypi/aiosignal@1.4.0", "UID": "c1cb99840ac5b2fe", "BOMRef": "pkg:pypi/aiosignal@1.4.0" }, "Version": "1.4.0", "Licenses": [ "Apache-2.0" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/aiosignal-1.4.0.dist-info/METADATA", "Digest": "sha1:8752e41cfbbc924405ef6bf9a9ff761cb9a6dbe3" }, { "ID": "annotated-doc@0.0.4", "Name": "annotated-doc", "Identifier": { "PURL": "pkg:pypi/annotated-doc@0.0.4", "UID": "7e8c56f6ecac2982", "BOMRef": "pkg:pypi/annotated-doc@0.0.4" }, "Version": "0.0.4", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/annotated_doc-0.0.4.dist-info/METADATA", "Digest": "sha1:24d32962e4742a901653d9fe5563c40221ddc6fa" }, { "ID": "annotated-types@0.7.0", "Name": "annotated-types", "Identifier": { "PURL": "pkg:pypi/annotated-types@0.7.0", "UID": "5cb575607c54eeff", "BOMRef": "pkg:pypi/annotated-types@0.7.0" }, "Version": "0.7.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/annotated_types-0.7.0.dist-info/METADATA", "Digest": "sha1:b11011181822ac765c9f66c8aa42c26952de6a96" }, { "ID": "anthropic@0.54.0", "Name": "anthropic", "Identifier": { "PURL": "pkg:pypi/anthropic@0.54.0", "UID": "9bf1204a1ff6d9f2", "BOMRef": "pkg:pypi/anthropic@0.54.0" }, "Version": "0.54.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/anthropic-0.54.0.dist-info/METADATA", "Digest": "sha1:7f700d1b4730958f468871fb28a2f4d416f8ed20" }, { "ID": "anyio@4.8.0", "Name": "anyio", "Identifier": { "PURL": "pkg:pypi/anyio@4.8.0", "UID": "430af48be501cead", "BOMRef": "pkg:pypi/anyio@4.8.0" }, "Version": "4.8.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/anyio-4.8.0.dist-info/METADATA", "Digest": "sha1:12b3a6bb5ce68bac1fe5abd01d80d367c0688db2" }, { "ID": "async-generator@1.10", "Name": "async-generator", "Identifier": { "PURL": "pkg:pypi/async-generator@1.10", "UID": "6df62fd87a637d95", "BOMRef": "pkg:pypi/async-generator@1.10" }, "Version": "1.10", "Licenses": [ "MIT", "Apache-2.0" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/async_generator-1.10.dist-info/METADATA", "Digest": "sha1:f4fa19d3f3bef3e3604acc54b00e8b8c50ad31c0" }, { "ID": "attrs@25.4.0", "Name": "attrs", "Identifier": { "PURL": "pkg:pypi/attrs@25.4.0", "UID": "8fd91f7217df98a1", "BOMRef": "pkg:pypi/attrs@25.4.0" }, "Version": "25.4.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/attrs-25.4.0.dist-info/METADATA", "Digest": "sha1:9e593ab8f12d14d819a81ca9c41b9df0b4864a59" }, { "ID": "aurelio-sdk@0.0.19", "Name": "aurelio-sdk", "Identifier": { "PURL": "pkg:pypi/aurelio-sdk@0.0.19", "UID": "dd0390e75e555032", "BOMRef": "pkg:pypi/aurelio-sdk@0.0.19" }, "Version": "0.0.19", "Layer": { "Digest": "sha256:de9c2c7bfc730f46a1c6f7ff0452b67341cdb205a56622e9fe2a2b49a3f3ded2", "DiffID": "sha256:6da91fd6d07caf4ad56ae74cd95d5540242e9ae443c71b2f652689cd161eda87" }, "FilePath": "usr/lib/python3.13/site-packages/aurelio_sdk-0.0.19.dist-info/METADATA", "Digest": "sha1:bfe4c91a1633b0aa53f4fd1c5bd9f0e22eedfb7a" }, { "ID": "azure-ai-contentsafety@1.0.0", "Name": "azure-ai-contentsafety", "Identifier": { "PURL": "pkg:pypi/azure-ai-contentsafety@1.0.0", "UID": "a6828a200ad9797f", "BOMRef": "pkg:pypi/azure-ai-contentsafety@1.0.0" }, "Version": "1.0.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/azure_ai_contentsafety-1.0.0.dist-info/METADATA", "Digest": "sha1:45cc94c9f0a17e313b00a13f7b0f9682654e0feb" }, { "ID": "azure-core@1.38.2", "Name": "azure-core", "Identifier": { "PURL": "pkg:pypi/azure-core@1.38.2", "UID": "22fa9d686ade5205", "BOMRef": "pkg:pypi/azure-core@1.38.2" }, "Version": "1.38.2", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/azure_core-1.38.2.dist-info/METADATA", "Digest": "sha1:ed537c8e4239709c13f2010e79c9e95dfa85046b" }, { "ID": "azure-identity@1.16.1", "Name": "azure-identity", "Identifier": { "PURL": "pkg:pypi/azure-identity@1.16.1", "UID": "117a2fb039b623f4", "BOMRef": "pkg:pypi/azure-identity@1.16.1" }, "Version": "1.16.1", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/azure_identity-1.16.1.dist-info/METADATA", "Digest": "sha1:68fdde1864f6c107e1306f736d9b5fefa2acf3a1" }, { "ID": "azure-keyvault@4.2.0", "Name": "azure-keyvault", "Identifier": { "PURL": "pkg:pypi/azure-keyvault@4.2.0", "UID": "3b8de4844ee4a411", "BOMRef": "pkg:pypi/azure-keyvault@4.2.0" }, "Version": "4.2.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/azure_keyvault-4.2.0.dist-info/METADATA", "Digest": "sha1:5da0d813613844740604dfa0c820222a54853a3a" }, { "ID": "azure-keyvault-certificates@4.10.0", "Name": "azure-keyvault-certificates", "Identifier": { "PURL": "pkg:pypi/azure-keyvault-certificates@4.10.0", "UID": "7ec1351e5857ba11", "BOMRef": "pkg:pypi/azure-keyvault-certificates@4.10.0" }, "Version": "4.10.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/azure_keyvault_certificates-4.10.0.dist-info/METADATA", "Digest": "sha1:8227ff63178e8f5a07e66f234d8c296b189f855b" }, { "ID": "azure-keyvault-keys@4.11.0", "Name": "azure-keyvault-keys", "Identifier": { "PURL": "pkg:pypi/azure-keyvault-keys@4.11.0", "UID": "b1b341b6290a4c42", "BOMRef": "pkg:pypi/azure-keyvault-keys@4.11.0" }, "Version": "4.11.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/azure_keyvault_keys-4.11.0.dist-info/METADATA", "Digest": "sha1:61e25dca1cb98e731337b756f4e1bb129413c496" }, { "ID": "azure-keyvault-secrets@4.10.0", "Name": "azure-keyvault-secrets", "Identifier": { "PURL": "pkg:pypi/azure-keyvault-secrets@4.10.0", "UID": "82445306250c4791", "BOMRef": "pkg:pypi/azure-keyvault-secrets@4.10.0" }, "Version": "4.10.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/azure_keyvault_secrets-4.10.0.dist-info/METADATA", "Digest": "sha1:5a8061494c1c50c49fa47eace47c117fe193a0b4" }, { "ID": "azure-storage-blob@12.28.0", "Name": "azure-storage-blob", "Identifier": { "PURL": "pkg:pypi/azure-storage-blob@12.28.0", "UID": "2587b7864cdd67fd", "BOMRef": "pkg:pypi/azure-storage-blob@12.28.0" }, "Version": "12.28.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/azure_storage_blob-12.28.0.dist-info/METADATA", "Digest": "sha1:20e7abbd2536ed3374cf440f144cf9ca5c0fb098" }, { "ID": "azure-storage-file-datalake@12.20.0", "Name": "azure-storage-file-datalake", "Identifier": { "PURL": "pkg:pypi/azure-storage-file-datalake@12.20.0", "UID": "9157ead069278d51", "BOMRef": "pkg:pypi/azure-storage-file-datalake@12.20.0" }, "Version": "12.20.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/azure_storage_file_datalake-12.20.0.dist-info/METADATA", "Digest": "sha1:cc8ebe204539019788e04a26f2510c35575928c2" }, { "ID": "backoff@2.2.1", "Name": "backoff", "Identifier": { "PURL": "pkg:pypi/backoff@2.2.1", "UID": "dcf6dcc56e5e585f", "BOMRef": "pkg:pypi/backoff@2.2.1" }, "Version": "2.2.1", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/backoff-2.2.1.dist-info/METADATA", "Digest": "sha1:ea8b96e2947c9fed16b9c4075c30113fe09fac98" }, { "ID": "boto3@1.40.53", "Name": "boto3", "Identifier": { "PURL": "pkg:pypi/boto3@1.40.53", "UID": "50d6d15a7aef4543", "BOMRef": "pkg:pypi/boto3@1.40.53" }, "Version": "1.40.53", "Licenses": [ "Apache-2.0" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/boto3-1.40.53.dist-info/METADATA", "Digest": "sha1:c3cd02ceff510cd405a1b3690f7bf4d54939faf8" }, { "ID": "botocore@1.40.61", "Name": "botocore", "Identifier": { "PURL": "pkg:pypi/botocore@1.40.61", "UID": "91e80939472ee7a3", "BOMRef": "pkg:pypi/botocore@1.40.61" }, "Version": "1.40.61", "Licenses": [ "Apache-2.0" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/botocore-1.40.61.dist-info/METADATA", "Digest": "sha1:c384355d82af3168472f016558ed2f2e1c77cb85" }, { "ID": "bytecode@0.17.0", "Name": "bytecode", "Identifier": { "PURL": "pkg:pypi/bytecode@0.17.0", "UID": "e2a6756b252f19be", "BOMRef": "pkg:pypi/bytecode@0.17.0" }, "Version": "0.17.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/bytecode-0.17.0.dist-info/METADATA", "Digest": "sha1:65fc4772a46510a0f6186e951e866f5e306a8122" }, { "ID": "certifi@2026.2.25", "Name": "certifi", "Identifier": { "PURL": "pkg:pypi/certifi@2026.2.25", "UID": "d76f89e16d225487", "BOMRef": "pkg:pypi/certifi@2026.2.25" }, "Version": "2026.2.25", "Licenses": [ "MPL-2.0" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/certifi-2026.2.25.dist-info/METADATA", "Digest": "sha1:3aeccd85ea183a5ce98317741cad21a5c0a440ca" }, { "ID": "cffi@2.0.0", "Name": "cffi", "Identifier": { "PURL": "pkg:pypi/cffi@2.0.0", "UID": "c9ad49ab1eb35b03", "BOMRef": "pkg:pypi/cffi@2.0.0" }, "Version": "2.0.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/cffi-2.0.0.dist-info/METADATA", "Digest": "sha1:87e9c9d276c4f4c31f5a314d6a5472f45655674c" }, { "ID": "charset-normalizer@3.4.4", "Name": "charset-normalizer", "Identifier": { "PURL": "pkg:pypi/charset-normalizer@3.4.4", "UID": "a18a6eb75d3e7d77", "BOMRef": "pkg:pypi/charset-normalizer@3.4.4" }, "Version": "3.4.4", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/charset_normalizer-3.4.4.dist-info/METADATA", "Digest": "sha1:b4512da50486c7909da3992f8d8b67052b9fc03e" }, { "ID": "click@8.1.7", "Name": "click", "Identifier": { "PURL": "pkg:pypi/click@8.1.7", "UID": "7ef396dacc9dc3a1", "BOMRef": "pkg:pypi/click@8.1.7" }, "Version": "8.1.7", "Licenses": [ "BSD-3-Clause" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/click-8.1.7.dist-info/METADATA", "Digest": "sha1:5c33361d71534572b6d2d3edd15ac9bad78b59c6" }, { "ID": "coloredlogs@15.0.1", "Name": "coloredlogs", "Identifier": { "PURL": "pkg:pypi/coloredlogs@15.0.1", "UID": "21f0fcca195984d5", "BOMRef": "pkg:pypi/coloredlogs@15.0.1" }, "Version": "15.0.1", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/coloredlogs-15.0.1.dist-info/METADATA", "Digest": "sha1:79d72bae2e23b677e384dedda06c6e922912aac1" }, { "ID": "colorlog@6.10.1", "Name": "colorlog", "Identifier": { "PURL": "pkg:pypi/colorlog@6.10.1", "UID": "78296bebb832c2b0", "BOMRef": "pkg:pypi/colorlog@6.10.1" }, "Version": "6.10.1", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:de9c2c7bfc730f46a1c6f7ff0452b67341cdb205a56622e9fe2a2b49a3f3ded2", "DiffID": "sha256:6da91fd6d07caf4ad56ae74cd95d5540242e9ae443c71b2f652689cd161eda87" }, "FilePath": "usr/lib/python3.13/site-packages/colorlog-6.10.1.dist-info/METADATA", "Digest": "sha1:1e483d118fd419ad747606c4077726b5c4eb324e" }, { "ID": "cryptography@46.0.5", "Name": "cryptography", "Identifier": { "PURL": "pkg:pypi/cryptography@46.0.5", "UID": "1097125347c1b6a8", "BOMRef": "pkg:pypi/cryptography@46.0.5" }, "Version": "46.0.5", "Licenses": [ "Apache-2.0 OR BSD-3-Clause" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/cryptography-46.0.5.dist-info/METADATA", "Digest": "sha1:bb40494ca8c495e6edf1214d419d44d57ad11f23" }, { "ID": "ddtrace@2.19.0", "Name": "ddtrace", "Identifier": { "PURL": "pkg:pypi/ddtrace@2.19.0", "UID": "498d8ed4e3a830cc", "BOMRef": "pkg:pypi/ddtrace@2.19.0" }, "Version": "2.19.0", "Licenses": [ "LICENSE.BSD3" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/ddtrace-2.19.0.dist-info/METADATA", "Digest": "sha1:2ebcd7579775a117bf5f63f482aaee4629f69fe4" }, { "ID": "detect-secrets@1.5.0", "Name": "detect-secrets", "Identifier": { "PURL": "pkg:pypi/detect-secrets@1.5.0", "UID": "cb03f3fcd8997e55", "BOMRef": "pkg:pypi/detect-secrets@1.5.0" }, "Version": "1.5.0", "Licenses": [ "Apache-2.0" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/detect_secrets-1.5.0.dist-info/METADATA", "Digest": "sha1:7d1969bbb2f0319f127b480fe77211aa27750fe0" }, { "ID": "distro@1.9.0", "Name": "distro", "Identifier": { "PURL": "pkg:pypi/distro@1.9.0", "UID": "df823592f34e9771", "BOMRef": "pkg:pypi/distro@1.9.0" }, "Version": "1.9.0", "Licenses": [ "Apache-2.0" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/distro-1.9.0.dist-info/METADATA", "Digest": "sha1:ce14620cf14e15a64d2ff574796543f99619e7f3" }, { "ID": "dnspython@2.8.0", "Name": "dnspython", "Identifier": { "PURL": "pkg:pypi/dnspython@2.8.0", "UID": "508a790c5e5fd1ea", "BOMRef": "pkg:pypi/dnspython@2.8.0" }, "Version": "2.8.0", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/dnspython-2.8.0.dist-info/METADATA", "Digest": "sha1:360d6b80b919fa0fc9e41d101229c937531c4eae" }, { "ID": "docstring_parser@0.17.0", "Name": "docstring_parser", "Identifier": { "PURL": "pkg:pypi/docstring-parser@0.17.0", "UID": "67048a953ea009e3", "BOMRef": "pkg:pypi/docstring-parser@0.17.0" }, "Version": "0.17.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/docstring_parser-0.17.0.dist-info/METADATA", "Digest": "sha1:323acb9780928a71e223759cfc8be2793bec7072" }, { "ID": "email-validator@2.3.0", "Name": "email-validator", "Identifier": { "PURL": "pkg:pypi/email-validator@2.3.0", "UID": "145bcb89e5a5599f", "BOMRef": "pkg:pypi/email-validator@2.3.0" }, "Version": "2.3.0", "Licenses": [ "Unlicense" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/email_validator-2.3.0.dist-info/METADATA", "Digest": "sha1:8142c15247202bec284e8950c96b7f43b35ca5bc" }, { "ID": "envier@0.6.1", "Name": "envier", "Identifier": { "PURL": "pkg:pypi/envier@0.6.1", "UID": "6a3c3000a6814d98", "BOMRef": "pkg:pypi/envier@0.6.1" }, "Version": "0.6.1", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/envier-0.6.1.dist-info/METADATA", "Digest": "sha1:ecb20fe2699b6e8934bacad17926b535edc4ec40" }, { "ID": "fastapi@0.120.1", "Name": "fastapi", "Identifier": { "PURL": "pkg:pypi/fastapi@0.120.1", "UID": "15a2e256d4cf18dd", "BOMRef": "pkg:pypi/fastapi@0.120.1" }, "Version": "0.120.1", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/fastapi-0.120.1.dist-info/METADATA", "Digest": "sha1:dea486b90696587ab48cbda958327ec048f93eb3" }, { "ID": "fastapi-sso@0.19.0", "Name": "fastapi-sso", "Identifier": { "PURL": "pkg:pypi/fastapi-sso@0.19.0", "UID": "fcce5d1d808994c7", "BOMRef": "pkg:pypi/fastapi-sso@0.19.0" }, "Version": "0.19.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/fastapi_sso-0.19.0.dist-info/METADATA", "Digest": "sha1:f08f145ee8c7c5c113436e3ba3fb8f1081e8a6fc" }, { "ID": "fastuuid@0.13.5", "Name": "fastuuid", "Identifier": { "PURL": "pkg:pypi/fastuuid@0.13.5", "UID": "4e3d14bc5bff2fe3", "BOMRef": "pkg:pypi/fastuuid@0.13.5" }, "Version": "0.13.5", "Licenses": [ "BSD-3-Clause" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/fastuuid-0.13.5.dist-info/METADATA", "Digest": "sha1:589a21152a88244902586741669f828037c88a4f" }, { "ID": "filelock@3.25.0", "Name": "filelock", "Identifier": { "PURL": "pkg:pypi/filelock@3.25.0", "UID": "32a5bf4a2be6113", "BOMRef": "pkg:pypi/filelock@3.25.0" }, "Version": "3.25.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/filelock-3.25.0.dist-info/METADATA", "Digest": "sha1:b780321482633369f23ce0327ecd847dcf2d3d5a" }, { "ID": "frozenlist@1.8.0", "Name": "frozenlist", "Identifier": { "PURL": "pkg:pypi/frozenlist@1.8.0", "UID": "7e29198c5d82021", "BOMRef": "pkg:pypi/frozenlist@1.8.0" }, "Version": "1.8.0", "Licenses": [ "Apache-2.0" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/frozenlist-1.8.0.dist-info/METADATA", "Digest": "sha1:4a37873aab1c5eaffcecd2aa93be12e9e4b2a19c" }, { "ID": "fsspec@2026.2.0", "Name": "fsspec", "Identifier": { "PURL": "pkg:pypi/fsspec@2026.2.0", "UID": "3d94d66d21c8dcc6", "BOMRef": "pkg:pypi/fsspec@2026.2.0" }, "Version": "2026.2.0", "Licenses": [ "BSD-3-Clause" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/fsspec-2026.2.0.dist-info/METADATA", "Digest": "sha1:cd54bba9ec98bc422bda0b342e83ea43099aa174" }, { "ID": "google-api-core@2.30.0", "Name": "google-api-core", "Identifier": { "PURL": "pkg:pypi/google-api-core@2.30.0", "UID": "cc104d2ba0110df0", "BOMRef": "pkg:pypi/google-api-core@2.30.0" }, "Version": "2.30.0", "Licenses": [ "Apache-2.0" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/google_api_core-2.30.0.dist-info/METADATA", "Digest": "sha1:824f9344ce88f9566c9d9173847e9ea97143d293" }, { "ID": "google-auth@2.48.0", "Name": "google-auth", "Identifier": { "PURL": "pkg:pypi/google-auth@2.48.0", "UID": "f3c2fa912955f680", "BOMRef": "pkg:pypi/google-auth@2.48.0" }, "Version": "2.48.0", "Licenses": [ "Apache-2.0" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/google_auth-2.48.0.dist-info/METADATA", "Digest": "sha1:fd3435e29361652b2f4e7fd3e2297c149025e051" }, { "ID": "google-cloud-aiplatform@1.133.0", "Name": "google-cloud-aiplatform", "Identifier": { "PURL": "pkg:pypi/google-cloud-aiplatform@1.133.0", "UID": "4d817e8b094c6fdc", "BOMRef": "pkg:pypi/google-cloud-aiplatform@1.133.0" }, "Version": "1.133.0", "Licenses": [ "Apache-2.0" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/google_cloud_aiplatform-1.133.0.dist-info/METADATA", "Digest": "sha1:23483b425b0649936a17defd0158d0f6c03ca503" }, { "ID": "google-cloud-bigquery@3.40.1", "Name": "google-cloud-bigquery", "Identifier": { "PURL": "pkg:pypi/google-cloud-bigquery@3.40.1", "UID": "aad9599c987605f8", "BOMRef": "pkg:pypi/google-cloud-bigquery@3.40.1" }, "Version": "3.40.1", "Licenses": [ "Apache-2.0" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/google_cloud_bigquery-3.40.1.dist-info/METADATA", "Digest": "sha1:ce2316758a0520c903eb5522d5cf1f39c2c7aa0b" }, { "ID": "google-cloud-core@2.5.0", "Name": "google-cloud-core", "Identifier": { "PURL": "pkg:pypi/google-cloud-core@2.5.0", "UID": "5f0bd87e4adb32e7", "BOMRef": "pkg:pypi/google-cloud-core@2.5.0" }, "Version": "2.5.0", "Licenses": [ "Apache-2.0" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/google_cloud_core-2.5.0.dist-info/METADATA", "Digest": "sha1:2353786cf89c5a50fc3a68db6736b632754e1b76" }, { "ID": "google-cloud-iam@2.19.1", "Name": "google-cloud-iam", "Identifier": { "PURL": "pkg:pypi/google-cloud-iam@2.19.1", "UID": "999b3a5bc48d0fce", "BOMRef": "pkg:pypi/google-cloud-iam@2.19.1" }, "Version": "2.19.1", "Licenses": [ "Apache-2.0" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/google_cloud_iam-2.19.1.dist-info/METADATA", "Digest": "sha1:28391d5c4dd89160b13ec2ef8c597d3164c4c91a" }, { "ID": "google-cloud-resource-manager@1.16.0", "Name": "google-cloud-resource-manager", "Identifier": { "PURL": "pkg:pypi/google-cloud-resource-manager@1.16.0", "UID": "8b518bd2e581fb0b", "BOMRef": "pkg:pypi/google-cloud-resource-manager@1.16.0" }, "Version": "1.16.0", "Licenses": [ "Apache-2.0" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/google_cloud_resource_manager-1.16.0.dist-info/METADATA", "Digest": "sha1:94bdb211cfd6933e89c9e8f1833e3fcb28caae26" }, { "ID": "google-cloud-storage@3.9.0", "Name": "google-cloud-storage", "Identifier": { "PURL": "pkg:pypi/google-cloud-storage@3.9.0", "UID": "7786dc855b983c36", "BOMRef": "pkg:pypi/google-cloud-storage@3.9.0" }, "Version": "3.9.0", "Licenses": [ "Apache-2.0" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/google_cloud_storage-3.9.0.dist-info/METADATA", "Digest": "sha1:08b50a67c834baff46cb246b9b9d9d6c90ad3a65" }, { "ID": "google-crc32c@1.8.0", "Name": "google-crc32c", "Identifier": { "PURL": "pkg:pypi/google-crc32c@1.8.0", "UID": "33850db35d04255", "BOMRef": "pkg:pypi/google-crc32c@1.8.0" }, "Version": "1.8.0", "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/google_crc32c-1.8.0.dist-info/METADATA", "Digest": "sha1:740ce2636255b7035fbcef210995df5b4484e1b3" }, { "ID": "google-genai@1.37.0", "Name": "google-genai", "Identifier": { "PURL": "pkg:pypi/google-genai@1.37.0", "UID": "6e6c14d9deb0dc55", "BOMRef": "pkg:pypi/google-genai@1.37.0" }, "Version": "1.37.0", "Licenses": [ "Apache-2.0" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/google_genai-1.37.0.dist-info/METADATA", "Digest": "sha1:3399706a56fa0d50853cb580a1e032f80a3d4654" }, { "ID": "google-resumable-media@2.8.0", "Name": "google-resumable-media", "Identifier": { "PURL": "pkg:pypi/google-resumable-media@2.8.0", "UID": "194b149bab9a00dc", "BOMRef": "pkg:pypi/google-resumable-media@2.8.0" }, "Version": "2.8.0", "Licenses": [ "Apache-2.0" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/google_resumable_media-2.8.0.dist-info/METADATA", "Digest": "sha1:a0a8dc418f86589aa080bb59708ed5aee38faacc" }, { "ID": "googleapis-common-protos@1.72.0", "Name": "googleapis-common-protos", "Identifier": { "PURL": "pkg:pypi/googleapis-common-protos@1.72.0", "UID": "d2d184fe725e68a6", "BOMRef": "pkg:pypi/googleapis-common-protos@1.72.0" }, "Version": "1.72.0", "Licenses": [ "Apache-2.0" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/googleapis_common_protos-1.72.0.dist-info/METADATA", "Digest": "sha1:78df7b249d5272b19c5adc5c8a9b3b2dee57311c" }, { "ID": "grpc-google-iam-v1@0.14.3", "Name": "grpc-google-iam-v1", "Identifier": { "PURL": "pkg:pypi/grpc-google-iam-v1@0.14.3", "UID": "25e6a533ede28837", "BOMRef": "pkg:pypi/grpc-google-iam-v1@0.14.3" }, "Version": "0.14.3", "Licenses": [ "Apache-2.0" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/grpc_google_iam_v1-0.14.3.dist-info/METADATA", "Digest": "sha1:98adc7e2fe504130f48db8ccb34db6820d396145" }, { "ID": "grpcio@1.78.0", "Name": "grpcio", "Identifier": { "PURL": "pkg:pypi/grpcio@1.78.0", "UID": "6f86d28710a22879", "BOMRef": "pkg:pypi/grpcio@1.78.0" }, "Version": "1.78.0", "Licenses": [ "Apache-2.0" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/grpcio-1.78.0.dist-info/METADATA", "Digest": "sha1:d96608e4adf904c6baba974b5aa102508a8d0839" }, { "ID": "grpcio-status@1.71.2", "Name": "grpcio-status", "Identifier": { "PURL": "pkg:pypi/grpcio-status@1.71.2", "UID": "858b24acabc82e10", "BOMRef": "pkg:pypi/grpcio-status@1.71.2" }, "Version": "1.71.2", "Licenses": [ "Apache-2.0" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/grpcio_status-1.71.2.dist-info/METADATA", "Digest": "sha1:bd80c647a0df7d5b9bda31af73fa704ff4e50c9f" }, { "ID": "gunicorn@23.0.0", "Name": "gunicorn", "Identifier": { "PURL": "pkg:pypi/gunicorn@23.0.0", "UID": "f640a60cf149040a", "BOMRef": "pkg:pypi/gunicorn@23.0.0" }, "Version": "23.0.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/gunicorn-23.0.0.dist-info/METADATA", "Digest": "sha1:8de2f53497d5444853a1df1f44ff417831194283" }, { "ID": "h11@0.16.0", "Name": "h11", "Identifier": { "PURL": "pkg:pypi/h11@0.16.0", "UID": "d0ca462aad519a6", "BOMRef": "pkg:pypi/h11@0.16.0" }, "Version": "0.16.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/h11-0.16.0.dist-info/METADATA", "Digest": "sha1:5d41eddffefef5f6e8ff383a2537e81a38a37807" }, { "ID": "hf-xet@1.3.2", "Name": "hf-xet", "Identifier": { "PURL": "pkg:pypi/hf-xet@1.3.2", "UID": "d8f66c72752f1631", "BOMRef": "pkg:pypi/hf-xet@1.3.2" }, "Version": "1.3.2", "Licenses": [ "Apache-2.0" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/hf_xet-1.3.2.dist-info/METADATA", "Digest": "sha1:754be87df432fc4da3cfd08204a70faeb3e4e19f" }, { "ID": "httpcore@1.0.9", "Name": "httpcore", "Identifier": { "PURL": "pkg:pypi/httpcore@1.0.9", "UID": "8b00674e39d4e73d", "BOMRef": "pkg:pypi/httpcore@1.0.9" }, "Version": "1.0.9", "Licenses": [ "BSD-3-Clause" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/httpcore-1.0.9.dist-info/METADATA", "Digest": "sha1:2981d359ae33f31d339189a9680db85785339a56" }, { "ID": "httpx@0.28.1", "Name": "httpx", "Identifier": { "PURL": "pkg:pypi/httpx@0.28.1", "UID": "c52d23775cc58e6c", "BOMRef": "pkg:pypi/httpx@0.28.1" }, "Version": "0.28.1", "Licenses": [ "BSD-3-Clause" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/httpx-0.28.1.dist-info/METADATA", "Digest": "sha1:537da7e4f29438278e124e10e02d1a500fe33bcc" }, { "ID": "httpx-sse@0.4.3", "Name": "httpx-sse", "Identifier": { "PURL": "pkg:pypi/httpx-sse@0.4.3", "UID": "70b6601b1d850bf3", "BOMRef": "pkg:pypi/httpx-sse@0.4.3" }, "Version": "0.4.3", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/httpx_sse-0.4.3.dist-info/METADATA", "Digest": "sha1:df05446be58f0a3a306e50c7ceebef24bb383a6d" }, { "ID": "huggingface_hub@0.36.2", "Name": "huggingface_hub", "Identifier": { "PURL": "pkg:pypi/huggingface-hub@0.36.2", "UID": "357f602f7ae5a671", "BOMRef": "pkg:pypi/huggingface-hub@0.36.2" }, "Version": "0.36.2", "Licenses": [ "Apache-2.0" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/huggingface_hub-0.36.2.dist-info/METADATA", "Digest": "sha1:c3fb68f58f110a4308ea41f02a48f890697481fe" }, { "ID": "humanfriendly@10.0", "Name": "humanfriendly", "Identifier": { "PURL": "pkg:pypi/humanfriendly@10.0", "UID": "494db49db1c3fbdc", "BOMRef": "pkg:pypi/humanfriendly@10.0" }, "Version": "10.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/humanfriendly-10.0.dist-info/METADATA", "Digest": "sha1:f29e22413e2b6ed83b0bd7935acd2dbb1d830f40" }, { "ID": "idna@3.11", "Name": "idna", "Identifier": { "PURL": "pkg:pypi/idna@3.11", "UID": "9362feca7a522808", "BOMRef": "pkg:pypi/idna@3.11" }, "Version": "3.11", "Licenses": [ "BSD-3-Clause" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/idna-3.11.dist-info/METADATA", "Digest": "sha1:5e73674d19cce0601253436a2e5544abe09b9bc3" }, { "ID": "importlib-metadata@6.8.0", "Name": "importlib-metadata", "Identifier": { "PURL": "pkg:pypi/importlib-metadata@6.8.0", "UID": "d7010c99f5543306", "BOMRef": "pkg:pypi/importlib-metadata@6.8.0" }, "Version": "6.8.0", "Licenses": [ "Apache-2.0" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/importlib_metadata-6.8.0.dist-info/METADATA", "Digest": "sha1:691851957e4c1cce8fa41d0f23cd83355dbb8756" }, { "ID": "isodate@0.7.2", "Name": "isodate", "Identifier": { "PURL": "pkg:pypi/isodate@0.7.2", "UID": "e60df8e3f2b3be73", "BOMRef": "pkg:pypi/isodate@0.7.2" }, "Version": "0.7.2", "Licenses": [ "BSD-3-Clause" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/isodate-0.7.2.dist-info/METADATA", "Digest": "sha1:364399ca9e27df70628e3aff9c8b7b1da601f95d" }, { "ID": "jaraco.context@6.1.0", "Name": "jaraco.context", "Identifier": { "PURL": "pkg:pypi/jaraco.context@6.1.0", "UID": "efc978b0dacb100a", "BOMRef": "pkg:pypi/jaraco.context@6.1.0" }, "Version": "6.1.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/jaraco_context-6.1.0.dist-info/METADATA", "Digest": "sha1:c1ba70653abadb34b0a0e792b9b7025b6a4d7b3e" }, { "ID": "jiter@0.13.0", "Name": "jiter", "Identifier": { "PURL": "pkg:pypi/jiter@0.13.0", "UID": "68887ea3b02bb00c", "BOMRef": "pkg:pypi/jiter@0.13.0" }, "Version": "0.13.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/jiter-0.13.0.dist-info/METADATA", "Digest": "sha1:2a9f923809d4a5bfa70b5c8d13e698904f4eca60" }, { "ID": "jmespath@1.1.0", "Name": "jmespath", "Identifier": { "PURL": "pkg:pypi/jmespath@1.1.0", "UID": "47de92cc34b08d9b", "BOMRef": "pkg:pypi/jmespath@1.1.0" }, "Version": "1.1.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/jmespath-1.1.0.dist-info/METADATA", "Digest": "sha1:d3f297922cf04b0cc127a18994ad6e6b947f0cc7" }, { "ID": "jsonschema@4.26.0", "Name": "jsonschema", "Identifier": { "PURL": "pkg:pypi/jsonschema@4.26.0", "UID": "bbde0488c7475687", "BOMRef": "pkg:pypi/jsonschema@4.26.0" }, "Version": "4.26.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/jsonschema-4.26.0.dist-info/METADATA", "Digest": "sha1:94b3d1a46cf55d74e42c401eaf4a4b71c76cee31" }, { "ID": "jsonschema-path@0.3.4", "Name": "jsonschema-path", "Identifier": { "PURL": "pkg:pypi/jsonschema-path@0.3.4", "UID": "ab3906aa03171258", "BOMRef": "pkg:pypi/jsonschema-path@0.3.4" }, "Version": "0.3.4", "Licenses": [ "Apache-2.0" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/jsonschema_path-0.3.4.dist-info/METADATA", "Digest": "sha1:48b69894bc45f3344dbe1daa7be14933b12db09a" }, { "ID": "jsonschema-specifications@2025.9.1", "Name": "jsonschema-specifications", "Identifier": { "PURL": "pkg:pypi/jsonschema-specifications@2025.9.1", "UID": "3d0bf36d75525095", "BOMRef": "pkg:pypi/jsonschema-specifications@2025.9.1" }, "Version": "2025.9.1", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/jsonschema_specifications-2025.9.1.dist-info/METADATA", "Digest": "sha1:ac33f477be9d3336ae67bc454f68a9ff39c91cf3" }, { "ID": "langfuse@2.59.7", "Name": "langfuse", "Identifier": { "PURL": "pkg:pypi/langfuse@2.59.7", "UID": "16b54bb668b707bd", "BOMRef": "pkg:pypi/langfuse@2.59.7" }, "Version": "2.59.7", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/langfuse-2.59.7.dist-info/METADATA", "Digest": "sha1:64b00766ce586ee8bc229e1d1c519bbbaccf82af" }, { "ID": "lazy-object-proxy@1.12.0", "Name": "lazy-object-proxy", "Identifier": { "PURL": "pkg:pypi/lazy-object-proxy@1.12.0", "UID": "ac6ee91bed1cd5dc", "BOMRef": "pkg:pypi/lazy-object-proxy@1.12.0" }, "Version": "1.12.0", "Licenses": [ "BSD-2-Clause" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/lazy_object_proxy-1.12.0.dist-info/METADATA", "Digest": "sha1:68e349fa87b22a25e3af674e29698bb08d37a074" }, { "ID": "legacy-cgi@2.6.4", "Name": "legacy-cgi", "Identifier": { "PURL": "pkg:pypi/legacy-cgi@2.6.4", "UID": "44f3d95759833591", "BOMRef": "pkg:pypi/legacy-cgi@2.6.4" }, "Version": "2.6.4", "Licenses": [ "PSF-2.0" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/legacy_cgi-2.6.4.dist-info/METADATA", "Digest": "sha1:23159c15d8f7c3223df17c75f23eb2d59ef58128" }, { "ID": "litellm@1.82.1", "Name": "litellm", "Identifier": { "PURL": "pkg:pypi/litellm@1.82.1", "UID": "df238f9423dcee44", "BOMRef": "pkg:pypi/litellm@1.82.1" }, "Version": "1.82.1", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/litellm-1.82.1.dist-info/METADATA", "Digest": "sha1:20830e1c4c36caf2a0c870856c9d060bf9d49ab6" }, { "ID": "litellm-enterprise@0.1.33", "Name": "litellm-enterprise", "Identifier": { "PURL": "pkg:pypi/litellm-enterprise@0.1.33", "UID": "7a94dbcb5805342a", "BOMRef": "pkg:pypi/litellm-enterprise@0.1.33" }, "Version": "0.1.33", "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/litellm_enterprise-0.1.33.dist-info/METADATA", "Digest": "sha1:386294a5b0b5010fcd4937c806da2065bd387ced" }, { "ID": "litellm-proxy-extras@0.4.50", "Name": "litellm-proxy-extras", "Identifier": { "PURL": "pkg:pypi/litellm-proxy-extras@0.4.50", "UID": "7bb412b25670642d", "BOMRef": "pkg:pypi/litellm-proxy-extras@0.4.50" }, "Version": "0.4.50", "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/litellm_proxy_extras-0.4.50.dist-info/METADATA", "Digest": "sha1:a444efdfc7236ef910674fd677ee214f74d7608f" }, { "ID": "llm-sandbox@0.3.31", "Name": "llm-sandbox", "Identifier": { "PURL": "pkg:pypi/llm-sandbox@0.3.31", "UID": "16a4a147b2c43a5e", "BOMRef": "pkg:pypi/llm-sandbox@0.3.31" }, "Version": "0.3.31", "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/llm_sandbox-0.3.31.dist-info/METADATA", "Digest": "sha1:85bb0474aad9559dff054282fdd4b29a4f92a80e" }, { "ID": "mangum@0.17.0", "Name": "mangum", "Identifier": { "PURL": "pkg:pypi/mangum@0.17.0", "UID": "c3b2ead6ec5cc5cc", "BOMRef": "pkg:pypi/mangum@0.17.0" }, "Version": "0.17.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/mangum-0.17.0.dist-info/METADATA", "Digest": "sha1:0957be909988180dffafaf9c6ef2301be9a0739b" }, { "ID": "markdown-it-py@4.0.0", "Name": "markdown-it-py", "Identifier": { "PURL": "pkg:pypi/markdown-it-py@4.0.0", "UID": "7f6726a8ccb43e43", "BOMRef": "pkg:pypi/markdown-it-py@4.0.0" }, "Version": "4.0.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/markdown_it_py-4.0.0.dist-info/METADATA", "Digest": "sha1:0cee543cadd1bdc67e8d1acd6fae8cc419523f4c" }, { "ID": "mcp@1.25.0", "Name": "mcp", "Identifier": { "PURL": "pkg:pypi/mcp@1.25.0", "UID": "50b32975b5a38dc4", "BOMRef": "pkg:pypi/mcp@1.25.0" }, "Version": "1.25.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/mcp-1.25.0.dist-info/METADATA", "Digest": "sha1:c86fd9fb3b07f6b9cb4a3ade6abcc16c1c763399" }, { "ID": "mdurl@0.1.2", "Name": "mdurl", "Identifier": { "PURL": "pkg:pypi/mdurl@0.1.2", "UID": "96556946affdc1c9", "BOMRef": "pkg:pypi/mdurl@0.1.2" }, "Version": "0.1.2", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/mdurl-0.1.2.dist-info/METADATA", "Digest": "sha1:cc9d84bf84be59dd90368ea2f5e3a9fae8f0f1b7" }, { "ID": "ml-dtypes@0.4.1", "Name": "ml-dtypes", "Identifier": { "PURL": "pkg:pypi/ml-dtypes@0.4.1", "UID": "1cd15ea0babd5697", "BOMRef": "pkg:pypi/ml-dtypes@0.4.1" }, "Version": "0.4.1", "Licenses": [ "Apache-2.0" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/ml_dtypes-0.4.1.dist-info/METADATA", "Digest": "sha1:28e53cadb8495b4a770c99d9392b1c79a14f4c8d" }, { "ID": "more-itertools@10.8.0", "Name": "more-itertools", "Identifier": { "PURL": "pkg:pypi/more-itertools@10.8.0", "UID": "af1f4604ba67fef4", "BOMRef": "pkg:pypi/more-itertools@10.8.0" }, "Version": "10.8.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/more_itertools-10.8.0.dist-info/METADATA", "Digest": "sha1:55aef894a0f39f280471306f0c5ecf3730ff5863" }, { "ID": "msal@1.35.1", "Name": "msal", "Identifier": { "PURL": "pkg:pypi/msal@1.35.1", "UID": "7d985027192646a4", "BOMRef": "pkg:pypi/msal@1.35.1" }, "Version": "1.35.1", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/msal-1.35.1.dist-info/METADATA", "Digest": "sha1:48b90ac0280673e12f38ea3aa70286eae548bdb3" }, { "ID": "msal-extensions@1.3.1", "Name": "msal-extensions", "Identifier": { "PURL": "pkg:pypi/msal-extensions@1.3.1", "UID": "ad785fe8853344a", "BOMRef": "pkg:pypi/msal-extensions@1.3.1" }, "Version": "1.3.1", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/msal_extensions-1.3.1.dist-info/METADATA", "Digest": "sha1:41015e491016a80539109491a22adb22f7c7dddd" }, { "ID": "multidict@6.7.1", "Name": "multidict", "Identifier": { "PURL": "pkg:pypi/multidict@6.7.1", "UID": "7e8ba725c5ab4bc", "BOMRef": "pkg:pypi/multidict@6.7.1" }, "Version": "6.7.1", "Licenses": [ "Apache-2.0" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/multidict-6.7.1.dist-info/METADATA", "Digest": "sha1:216b572c03dd786e9e08cb0ed5e833a9ec0fd494" }, { "ID": "nodeenv@1.10.0", "Name": "nodeenv", "Identifier": { "PURL": "pkg:pypi/nodeenv@1.10.0", "UID": "2f54deedae4cf71f", "BOMRef": "pkg:pypi/nodeenv@1.10.0" }, "Version": "1.10.0", "Licenses": [ "BSD-3-Clause" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/nodeenv-1.10.0.dist-info/METADATA", "Digest": "sha1:1b29a746e209117735cc705714358dbf9e858eb4" }, { "ID": "nodejs-wheel-binaries@24.13.1", "Name": "nodejs-wheel-binaries", "Identifier": { "PURL": "pkg:pypi/nodejs-wheel-binaries@24.13.1", "UID": "3a8b1cb2ce012487", "BOMRef": "pkg:pypi/nodejs-wheel-binaries@24.13.1" }, "Version": "24.13.1", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel_binaries-24.13.1.dist-info/METADATA", "Digest": "sha1:9ae91a866196ce7d03c5ecaf3c513503bee6933f" }, { "ID": "numpy@2.4.2", "Name": "numpy", "Identifier": { "PURL": "pkg:pypi/numpy@2.4.2", "UID": "365a2d84ec86097a", "BOMRef": "pkg:pypi/numpy@2.4.2" }, "Version": "2.4.2", "Licenses": [ "BSD-3-Clause AND 0BSD AND MIT AND Zlib AND CC0-1.0" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/numpy-2.4.2.dist-info/METADATA", "Digest": "sha1:f78437e3f7066f0441d6e9a7c34ce6f6a66871a5" }, { "ID": "oauthlib@3.3.1", "Name": "oauthlib", "Identifier": { "PURL": "pkg:pypi/oauthlib@3.3.1", "UID": "676d8996362216ff", "BOMRef": "pkg:pypi/oauthlib@3.3.1" }, "Version": "3.3.1", "Licenses": [ "BSD-3-Clause" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/oauthlib-3.3.1.dist-info/METADATA", "Digest": "sha1:9ba5229bceb66742065501d44c4e07f8b401d4c8" }, { "ID": "openai@2.24.0", "Name": "openai", "Identifier": { "PURL": "pkg:pypi/openai@2.24.0", "UID": "b1cfe5c877e094a", "BOMRef": "pkg:pypi/openai@2.24.0" }, "Version": "2.24.0", "Licenses": [ "Apache-2.0" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/openai-2.24.0.dist-info/METADATA", "Digest": "sha1:a92f17b796b0bbf37c4386262b71ddea703ee0fa" }, { "ID": "openapi-core@0.21.0", "Name": "openapi-core", "Identifier": { "PURL": "pkg:pypi/openapi-core@0.21.0", "UID": "9a4a749d3e270afc", "BOMRef": "pkg:pypi/openapi-core@0.21.0" }, "Version": "0.21.0", "Licenses": [ "BSD-3-Clause" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/openapi_core-0.21.0.dist-info/METADATA", "Digest": "sha1:23d2501e93de078ce5136cd7b4e20a7463c210f4" }, { "ID": "openapi-schema-validator@0.6.3", "Name": "openapi-schema-validator", "Identifier": { "PURL": "pkg:pypi/openapi-schema-validator@0.6.3", "UID": "a213fd65d4b2954c", "BOMRef": "pkg:pypi/openapi-schema-validator@0.6.3" }, "Version": "0.6.3", "Licenses": [ "BSD-3-Clause" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/openapi_schema_validator-0.6.3.dist-info/METADATA", "Digest": "sha1:94ac2dfdccefaac1f8f6efc0ce4e4713274af79f" }, { "ID": "openapi-spec-validator@0.7.2", "Name": "openapi-spec-validator", "Identifier": { "PURL": "pkg:pypi/openapi-spec-validator@0.7.2", "UID": "f261d7305847fa8", "BOMRef": "pkg:pypi/openapi-spec-validator@0.7.2" }, "Version": "0.7.2", "Licenses": [ "Apache-2.0" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/openapi_spec_validator-0.7.2.dist-info/METADATA", "Digest": "sha1:3b8226cdb965b31b940c1bfaba9d0b337cc0c8f8" }, { "ID": "opentelemetry-api@1.28.0", "Name": "opentelemetry-api", "Identifier": { "PURL": "pkg:pypi/opentelemetry-api@1.28.0", "UID": "78676e9859f75cb5", "BOMRef": "pkg:pypi/opentelemetry-api@1.28.0" }, "Version": "1.28.0", "Licenses": [ "Apache-2.0" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/opentelemetry_api-1.28.0.dist-info/METADATA", "Digest": "sha1:fa7a37347c7a77b570878666db0821d85e58a470" }, { "ID": "opentelemetry-exporter-otlp@1.28.0", "Name": "opentelemetry-exporter-otlp", "Identifier": { "PURL": "pkg:pypi/opentelemetry-exporter-otlp@1.28.0", "UID": "7cb192c14e0e34ef", "BOMRef": "pkg:pypi/opentelemetry-exporter-otlp@1.28.0" }, "Version": "1.28.0", "Licenses": [ "Apache-2.0" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/opentelemetry_exporter_otlp-1.28.0.dist-info/METADATA", "Digest": "sha1:02d9d528c93b4a483c217803ff2b5b14dff509ef" }, { "ID": "opentelemetry-exporter-otlp-proto-common@1.28.0", "Name": "opentelemetry-exporter-otlp-proto-common", "Identifier": { "PURL": "pkg:pypi/opentelemetry-exporter-otlp-proto-common@1.28.0", "UID": "17460e07a1b8404f", "BOMRef": "pkg:pypi/opentelemetry-exporter-otlp-proto-common@1.28.0" }, "Version": "1.28.0", "Licenses": [ "Apache-2.0" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/opentelemetry_exporter_otlp_proto_common-1.28.0.dist-info/METADATA", "Digest": "sha1:9b898d5238fd7ac09e303fb6fddbe084603de874" }, { "ID": "opentelemetry-exporter-otlp-proto-grpc@1.28.0", "Name": "opentelemetry-exporter-otlp-proto-grpc", "Identifier": { "PURL": "pkg:pypi/opentelemetry-exporter-otlp-proto-grpc@1.28.0", "UID": "421ef44a9cc12f32", "BOMRef": "pkg:pypi/opentelemetry-exporter-otlp-proto-grpc@1.28.0" }, "Version": "1.28.0", "Licenses": [ "Apache-2.0" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/opentelemetry_exporter_otlp_proto_grpc-1.28.0.dist-info/METADATA", "Digest": "sha1:4d2e1a9be4c683f90b3116732d154d789efb6de5" }, { "ID": "opentelemetry-exporter-otlp-proto-http@1.28.0", "Name": "opentelemetry-exporter-otlp-proto-http", "Identifier": { "PURL": "pkg:pypi/opentelemetry-exporter-otlp-proto-http@1.28.0", "UID": "ee4c29761eb1f3e0", "BOMRef": "pkg:pypi/opentelemetry-exporter-otlp-proto-http@1.28.0" }, "Version": "1.28.0", "Licenses": [ "Apache-2.0" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/opentelemetry_exporter_otlp_proto_http-1.28.0.dist-info/METADATA", "Digest": "sha1:f7029b101ac39ca429c16dfbfbd1f67d7da1e28c" }, { "ID": "opentelemetry-proto@1.28.0", "Name": "opentelemetry-proto", "Identifier": { "PURL": "pkg:pypi/opentelemetry-proto@1.28.0", "UID": "d8c843c995cf4fb4", "BOMRef": "pkg:pypi/opentelemetry-proto@1.28.0" }, "Version": "1.28.0", "Licenses": [ "Apache-2.0" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/opentelemetry_proto-1.28.0.dist-info/METADATA", "Digest": "sha1:2f4cc88e72c49fd14c43d3160427ec7631e420ba" }, { "ID": "opentelemetry-sdk@1.28.0", "Name": "opentelemetry-sdk", "Identifier": { "PURL": "pkg:pypi/opentelemetry-sdk@1.28.0", "UID": "791f4959fa6517fc", "BOMRef": "pkg:pypi/opentelemetry-sdk@1.28.0" }, "Version": "1.28.0", "Licenses": [ "Apache-2.0" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/opentelemetry_sdk-1.28.0.dist-info/METADATA", "Digest": "sha1:ff78308a4de96861a2b9afbecc1745376f09d82b" }, { "ID": "opentelemetry-semantic-conventions@0.49b0", "Name": "opentelemetry-semantic-conventions", "Identifier": { "PURL": "pkg:pypi/opentelemetry-semantic-conventions@0.49b0", "UID": "1bd257f2a233802c", "BOMRef": "pkg:pypi/opentelemetry-semantic-conventions@0.49b0" }, "Version": "0.49b0", "Licenses": [ "Apache-2.0" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/opentelemetry_semantic_conventions-0.49b0.dist-info/METADATA", "Digest": "sha1:2389733e201fd7a0ec508bbc2f1e32a23488c45e" }, { "ID": "orjson@3.11.7", "Name": "orjson", "Identifier": { "PURL": "pkg:pypi/orjson@3.11.7", "UID": "de0c199a60298bdf", "BOMRef": "pkg:pypi/orjson@3.11.7" }, "Version": "3.11.7", "Licenses": [ "MPL-2.0 AND (Apache-2.0 OR MIT)" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/orjson-3.11.7.dist-info/METADATA", "Digest": "sha1:2b55fc97cbe074ef19ee5b25d2ae0613276e259e" }, { "ID": "packaging@24.2", "Name": "packaging", "Identifier": { "PURL": "pkg:pypi/packaging@24.2", "UID": "194ddd2fdd1b9e40", "BOMRef": "pkg:pypi/packaging@24.2" }, "Version": "24.2", "Licenses": [ "Apache-2.0", "BSD-3-Clause" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/packaging-24.2.dist-info/METADATA", "Digest": "sha1:292b8d19cdc308e072817b6407cac3cb5175a060" }, { "ID": "pathable@0.4.4", "Name": "pathable", "Identifier": { "PURL": "pkg:pypi/pathable@0.4.4", "UID": "f3b6ab555eb2101b", "BOMRef": "pkg:pypi/pathable@0.4.4" }, "Version": "0.4.4", "Licenses": [ "Apache-2.0" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/pathable-0.4.4.dist-info/METADATA", "Digest": "sha1:866e61605d29a563f1cdd110899065ddb5f2f482" }, { "ID": "pillow@12.1.1", "Name": "pillow", "Identifier": { "PURL": "pkg:pypi/pillow@12.1.1", "UID": "f58758ab917e61ad", "BOMRef": "pkg:pypi/pillow@12.1.1" }, "Version": "12.1.1", "Licenses": [ "MIT-CMU" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/pillow-12.1.1.dist-info/METADATA", "Digest": "sha1:8ede85617f65f1bcb1404d13c86a40e01897a9b1" }, { "ID": "polars@1.31.0", "Name": "polars", "Identifier": { "PURL": "pkg:pypi/polars@1.31.0", "UID": "8a26107dd7051a3c", "BOMRef": "pkg:pypi/polars@1.31.0" }, "Version": "1.31.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/polars-1.31.0.dist-info/METADATA", "Digest": "sha1:9372c8d51ed35260721b244d0f1432df652171cf" }, { "ID": "prisma@0.11.0", "Name": "prisma", "Identifier": { "PURL": "pkg:pypi/prisma@0.11.0", "UID": "61c0ecc8abd0cbf4", "BOMRef": "pkg:pypi/prisma@0.11.0" }, "Version": "0.11.0", "Licenses": [ "Apache-2.0" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/prisma-0.11.0.dist-info/METADATA", "Digest": "sha1:fad8c94f4fab264e96c18a22151e04c0cdf411b0" }, { "ID": "prometheus_client@0.20.0", "Name": "prometheus_client", "Identifier": { "PURL": "pkg:pypi/prometheus-client@0.20.0", "UID": "6140d9ae68ac07bb", "BOMRef": "pkg:pypi/prometheus-client@0.20.0" }, "Version": "0.20.0", "Licenses": [ "Apache-2.0" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/prometheus_client-0.20.0.dist-info/METADATA", "Digest": "sha1:ca9ab1f552aae8ed12e1084fd9c8347782cb1049" }, { "ID": "propcache@0.4.1", "Name": "propcache", "Identifier": { "PURL": "pkg:pypi/propcache@0.4.1", "UID": "700c66709453b74e", "BOMRef": "pkg:pypi/propcache@0.4.1" }, "Version": "0.4.1", "Licenses": [ "Apache-2.0" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/propcache-0.4.1.dist-info/METADATA", "Digest": "sha1:9b2af7eeab4bcb9bad4ba6d407baa00869b8168c" }, { "ID": "proto-plus@1.27.1", "Name": "proto-plus", "Identifier": { "PURL": "pkg:pypi/proto-plus@1.27.1", "UID": "6b3bd64ad095c950", "BOMRef": "pkg:pypi/proto-plus@1.27.1" }, "Version": "1.27.1", "Licenses": [ "Apache-2.0" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/proto_plus-1.27.1.dist-info/METADATA", "Digest": "sha1:f256867207ef1543010030633cf2f7669c66591c" }, { "ID": "protobuf@5.29.6", "Name": "protobuf", "Identifier": { "PURL": "pkg:pypi/protobuf@5.29.6", "UID": "cbbe0203b159232a", "BOMRef": "pkg:pypi/protobuf@5.29.6" }, "Version": "5.29.6", "Licenses": [ "BSD-3-Clause" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/protobuf-5.29.6.dist-info/METADATA", "Digest": "sha1:f6ba7e2f92bfad0493f3bdc530ecf2398f28d411" }, { "ID": "pyasn1@0.6.2", "Name": "pyasn1", "Identifier": { "PURL": "pkg:pypi/pyasn1@0.6.2", "UID": "d4b33d5aa8474ed0", "BOMRef": "pkg:pypi/pyasn1@0.6.2" }, "Version": "0.6.2", "Licenses": [ "BSD-2-Clause" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/pyasn1-0.6.2.dist-info/METADATA", "Digest": "sha1:9e49d4b851f49962151f61b10a5d9c65e5b8eade" }, { "ID": "pyasn1_modules@0.4.2", "Name": "pyasn1_modules", "Identifier": { "PURL": "pkg:pypi/pyasn1-modules@0.4.2", "UID": "455e9081be9ca972", "BOMRef": "pkg:pypi/pyasn1-modules@0.4.2" }, "Version": "0.4.2", "Licenses": [ "BSD-3-Clause" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/pyasn1_modules-0.4.2.dist-info/METADATA", "Digest": "sha1:ff67c376a06e456e4caa8a256505a2298f5e7141" }, { "ID": "pycparser@3.0", "Name": "pycparser", "Identifier": { "PURL": "pkg:pypi/pycparser@3.0", "UID": "588d468e0f739ba7", "BOMRef": "pkg:pypi/pycparser@3.0" }, "Version": "3.0", "Licenses": [ "BSD-3-Clause" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/pycparser-3.0.dist-info/METADATA", "Digest": "sha1:ec46323dcd4dd2f7742b74b09cc0b030e330e46f" }, { "ID": "pydantic@2.12.5", "Name": "pydantic", "Identifier": { "PURL": "pkg:pypi/pydantic@2.12.5", "UID": "8d4d7add9741e42d", "BOMRef": "pkg:pypi/pydantic@2.12.5" }, "Version": "2.12.5", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/pydantic-2.12.5.dist-info/METADATA", "Digest": "sha1:83683052da3c86191d3ce41d60fa7f9780cf0478" }, { "ID": "pydantic-settings@2.13.1", "Name": "pydantic-settings", "Identifier": { "PURL": "pkg:pypi/pydantic-settings@2.13.1", "UID": "844b9f020e3fc8ba", "BOMRef": "pkg:pypi/pydantic-settings@2.13.1" }, "Version": "2.13.1", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/pydantic_settings-2.13.1.dist-info/METADATA", "Digest": "sha1:b20e7981819ecb354830015a55fa8bcb098c5687" }, { "ID": "pydantic_core@2.41.5", "Name": "pydantic_core", "Identifier": { "PURL": "pkg:pypi/pydantic-core@2.41.5", "UID": "9b3faa6185b58fee", "BOMRef": "pkg:pypi/pydantic-core@2.41.5" }, "Version": "2.41.5", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/pydantic_core-2.41.5.dist-info/METADATA", "Digest": "sha1:07d49fc75e0fd822fcc2719c0bbece0049fba67a" }, { "ID": "pypdf@6.7.5", "Name": "pypdf", "Identifier": { "PURL": "pkg:pypi/pypdf@6.7.5", "UID": "90c2f5cc00b89176", "BOMRef": "pkg:pypi/pypdf@6.7.5" }, "Version": "6.7.5", "Licenses": [ "BSD-3-Clause" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/pypdf-6.7.5.dist-info/METADATA", "Digest": "sha1:51b64fb41d164a7ff976cb9ab8d4d991a0964f60" }, { "ID": "python-dateutil@2.9.0.post0", "Name": "python-dateutil", "Identifier": { "PURL": "pkg:pypi/python-dateutil@2.9.0.post0", "UID": "94fa943890a56b81", "BOMRef": "pkg:pypi/python-dateutil@2.9.0.post0" }, "Version": "2.9.0.post0", "Licenses": [ "BSD-3-Clause", "Apache-2.0" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/python_dateutil-2.9.0.post0.dist-info/METADATA", "Digest": "sha1:7a3c35abd86cd96034d5afb0d4b241dc9e13e6f8" }, { "ID": "python-dotenv@1.0.1", "Name": "python-dotenv", "Identifier": { "PURL": "pkg:pypi/python-dotenv@1.0.1", "UID": "88957258d2113e09", "BOMRef": "pkg:pypi/python-dotenv@1.0.1" }, "Version": "1.0.1", "Licenses": [ "BSD-3-Clause" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/python_dotenv-1.0.1.dist-info/METADATA", "Digest": "sha1:e0a2e23c662b53538eed76a837fb7ecc9327df7e" }, { "ID": "python-multipart@0.0.22", "Name": "python-multipart", "Identifier": { "PURL": "pkg:pypi/python-multipart@0.0.22", "UID": "cfdfdab6105d8e65", "BOMRef": "pkg:pypi/python-multipart@0.0.22" }, "Version": "0.0.22", "Licenses": [ "Apache-2.0" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/python_multipart-0.0.22.dist-info/METADATA", "Digest": "sha1:f8bfd84700d227e7438d2377ff7c8585ac4e11cd" }, { "ID": "python-ulid@3.1.0", "Name": "python-ulid", "Identifier": { "PURL": "pkg:pypi/python-ulid@3.1.0", "UID": "a848ee1b1f43c51", "BOMRef": "pkg:pypi/python-ulid@3.1.0" }, "Version": "3.1.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/python_ulid-3.1.0.dist-info/METADATA", "Digest": "sha1:4c8b8c9ccc57da11803c277c04fd19bccf8bbe4d" }, { "ID": "pytz@2026.1.post1", "Name": "pytz", "Identifier": { "PURL": "pkg:pypi/pytz@2026.1.post1", "UID": "8203e4595d95ffcc", "BOMRef": "pkg:pypi/pytz@2026.1.post1" }, "Version": "2026.1.post1", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/pytz-2026.1.post1.dist-info/METADATA", "Digest": "sha1:df217c097de397f1de53d96dd4b41be7d2a35266" }, { "ID": "redis@5.2.1", "Name": "redis", "Identifier": { "PURL": "pkg:pypi/redis@5.2.1", "UID": "563accf44a5efc1f", "BOMRef": "pkg:pypi/redis@5.2.1" }, "Version": "5.2.1", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/redis-5.2.1.dist-info/METADATA", "Digest": "sha1:27194d5ec4e7a9cda79f44d14513c056aff7d483" }, { "ID": "redisvl@0.4.1", "Name": "redisvl", "Identifier": { "PURL": "pkg:pypi/redisvl@0.4.1", "UID": "32fc01786867983c", "BOMRef": "pkg:pypi/redisvl@0.4.1" }, "Version": "0.4.1", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/redisvl-0.4.1.dist-info/METADATA", "Digest": "sha1:5907c76977fda13f87074bb069abf46d89f26435" }, { "ID": "referencing@0.36.2", "Name": "referencing", "Identifier": { "PURL": "pkg:pypi/referencing@0.36.2", "UID": "a61b4d4960daa87e", "BOMRef": "pkg:pypi/referencing@0.36.2" }, "Version": "0.36.2", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/referencing-0.36.2.dist-info/METADATA", "Digest": "sha1:cf1208e207b8130e0abf63be5c1dac8598fb4049" }, { "ID": "regex@2026.2.28", "Name": "regex", "Identifier": { "PURL": "pkg:pypi/regex@2026.2.28", "UID": "b3e6ee441bf319c7", "BOMRef": "pkg:pypi/regex@2026.2.28" }, "Version": "2026.2.28", "Licenses": [ "Apache-2.0 AND CNRI-Python" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/regex-2026.2.28.dist-info/METADATA", "Digest": "sha1:23e3a496ae8c75af76ca38325bb461c89b6913c6" }, { "ID": "requests@2.32.5", "Name": "requests", "Identifier": { "PURL": "pkg:pypi/requests@2.32.5", "UID": "d2fc36737ad7522d", "BOMRef": "pkg:pypi/requests@2.32.5" }, "Version": "2.32.5", "Licenses": [ "Apache-2.0" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/requests-2.32.5.dist-info/METADATA", "Digest": "sha1:ca17920e69f3c7103322151275139cf487e4da08" }, { "ID": "requests-toolbelt@1.0.0", "Name": "requests-toolbelt", "Identifier": { "PURL": "pkg:pypi/requests-toolbelt@1.0.0", "UID": "66f9901076b88331", "BOMRef": "pkg:pypi/requests-toolbelt@1.0.0" }, "Version": "1.0.0", "Licenses": [ "Apache-2.0" ], "Layer": { "Digest": "sha256:de9c2c7bfc730f46a1c6f7ff0452b67341cdb205a56622e9fe2a2b49a3f3ded2", "DiffID": "sha256:6da91fd6d07caf4ad56ae74cd95d5540242e9ae443c71b2f652689cd161eda87" }, "FilePath": "usr/lib/python3.13/site-packages/requests_toolbelt-1.0.0.dist-info/METADATA", "Digest": "sha1:171fbbc84e8b7216e237b702f3fda539ffb1e487" }, { "ID": "rfc3339-validator@0.1.4", "Name": "rfc3339-validator", "Identifier": { "PURL": "pkg:pypi/rfc3339-validator@0.1.4", "UID": "f1a698a49f09214f", "BOMRef": "pkg:pypi/rfc3339-validator@0.1.4" }, "Version": "0.1.4", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/rfc3339_validator-0.1.4.dist-info/METADATA", "Digest": "sha1:b8cc2c804bf4cb64b4573a802305f3d0dc7e9a91" }, { "ID": "rich@13.7.1", "Name": "rich", "Identifier": { "PURL": "pkg:pypi/rich@13.7.1", "UID": "6e8d6d34f386a198", "BOMRef": "pkg:pypi/rich@13.7.1" }, "Version": "13.7.1", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/rich-13.7.1.dist-info/METADATA", "Digest": "sha1:bf3cca748ddf06213ddb6911d0b2d437f202533b" }, { "ID": "rpds-py@0.30.0", "Name": "rpds-py", "Identifier": { "PURL": "pkg:pypi/rpds-py@0.30.0", "UID": "2023b641e0028534", "BOMRef": "pkg:pypi/rpds-py@0.30.0" }, "Version": "0.30.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/rpds_py-0.30.0.dist-info/METADATA", "Digest": "sha1:9eef46c842a0ca6229680d7bfc1272958efdcc5a" }, { "ID": "rsa@4.9.1", "Name": "rsa", "Identifier": { "PURL": "pkg:pypi/rsa@4.9.1", "UID": "56b3411621133ad0", "BOMRef": "pkg:pypi/rsa@4.9.1" }, "Version": "4.9.1", "Licenses": [ "Apache-2.0" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/rsa-4.9.1.dist-info/METADATA", "Digest": "sha1:a2f68fc042a03952873edfefafda03c04787a56f" }, { "ID": "s3transfer@0.14.0", "Name": "s3transfer", "Identifier": { "PURL": "pkg:pypi/s3transfer@0.14.0", "UID": "530e518ebcbc2bbd", "BOMRef": "pkg:pypi/s3transfer@0.14.0" }, "Version": "0.14.0", "Licenses": [ "Apache-2.0" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/s3transfer-0.14.0.dist-info/METADATA", "Digest": "sha1:dd9c4cd2d179b27942830646a152d8f484ca7800" }, { "ID": "semantic-router@0.1.11", "Name": "semantic-router", "Identifier": { "PURL": "pkg:pypi/semantic-router@0.1.11", "UID": "1453e886b6dd67eb", "BOMRef": "pkg:pypi/semantic-router@0.1.11" }, "Version": "0.1.11", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:de9c2c7bfc730f46a1c6f7ff0452b67341cdb205a56622e9fe2a2b49a3f3ded2", "DiffID": "sha256:6da91fd6d07caf4ad56ae74cd95d5540242e9ae443c71b2f652689cd161eda87" }, "FilePath": "usr/lib/python3.13/site-packages/semantic_router-0.1.11.dist-info/METADATA", "Digest": "sha1:7de93f4f62c6d698a4693fb0c0380fdf2d9456a3" }, { "ID": "sentry-sdk@2.21.0", "Name": "sentry-sdk", "Identifier": { "PURL": "pkg:pypi/sentry-sdk@2.21.0", "UID": "3474c9e808323659", "BOMRef": "pkg:pypi/sentry-sdk@2.21.0" }, "Version": "2.21.0", "Licenses": [ "BSD-3-Clause" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/sentry_sdk-2.21.0.dist-info/METADATA", "Digest": "sha1:5af3250fb5606b6a97f62d83513d6010a0d3954f" }, { "ID": "six@1.17.0", "Name": "six", "Identifier": { "PURL": "pkg:pypi/six@1.17.0", "UID": "189b00c745b700a8", "BOMRef": "pkg:pypi/six@1.17.0" }, "Version": "1.17.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/six-1.17.0.dist-info/METADATA", "Digest": "sha1:483a26554261f6c839703c0e1183f3ef33ff97f1" }, { "ID": "sniffio@1.3.1", "Name": "sniffio", "Identifier": { "PURL": "pkg:pypi/sniffio@1.3.1", "UID": "318ea0a14d7c367e", "BOMRef": "pkg:pypi/sniffio@1.3.1" }, "Version": "1.3.1", "Licenses": [ "MIT", "Apache-2.0" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/sniffio-1.3.1.dist-info/METADATA", "Digest": "sha1:bc1d7aead770fe23c8d22666b84558edb3686da3" }, { "ID": "soundfile@0.12.1", "Name": "soundfile", "Identifier": { "PURL": "pkg:pypi/soundfile@0.12.1", "UID": "5bb154beeb77ff37", "BOMRef": "pkg:pypi/soundfile@0.12.1" }, "Version": "0.12.1", "Licenses": [ "BSD-3-Clause" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/soundfile-0.12.1.dist-info/METADATA", "Digest": "sha1:b5ce3ad2ef849be1c4195d05ca730e0f7905e90b" }, { "ID": "sse-starlette@3.3.2", "Name": "sse-starlette", "Identifier": { "PURL": "pkg:pypi/sse-starlette@3.3.2", "UID": "9a5584b5c8f99774", "BOMRef": "pkg:pypi/sse-starlette@3.3.2" }, "Version": "3.3.2", "Licenses": [ "BSD-3-Clause" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/sse_starlette-3.3.2.dist-info/METADATA", "Digest": "sha1:4befc21825871c63beb1e56c5b63651186c23442" }, { "ID": "starlette@0.49.1", "Name": "starlette", "Identifier": { "PURL": "pkg:pypi/starlette@0.49.1", "UID": "ad79d83281d46a3b", "BOMRef": "pkg:pypi/starlette@0.49.1" }, "Version": "0.49.1", "Licenses": [ "BSD-3-Clause" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/starlette-0.49.1.dist-info/METADATA", "Digest": "sha1:d2dc5927de72d847252d292615f15065928238dc" }, { "ID": "tabulate@0.9.0", "Name": "tabulate", "Identifier": { "PURL": "pkg:pypi/tabulate@0.9.0", "UID": "729d58974981e96f", "BOMRef": "pkg:pypi/tabulate@0.9.0" }, "Version": "0.9.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/tabulate-0.9.0.dist-info/METADATA", "Digest": "sha1:046f2344c8bedde41b94133c1322ae928e80e738" }, { "ID": "tenacity@8.5.0", "Name": "tenacity", "Identifier": { "PURL": "pkg:pypi/tenacity@8.5.0", "UID": "f21503b115d01ae4", "BOMRef": "pkg:pypi/tenacity@8.5.0" }, "Version": "8.5.0", "Licenses": [ "Apache-2.0" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/tenacity-8.5.0.dist-info/METADATA", "Digest": "sha1:67c962294c30afecad8066ac633a11bd658c5148" }, { "ID": "tiktoken@0.8.0", "Name": "tiktoken", "Identifier": { "PURL": "pkg:pypi/tiktoken@0.8.0", "UID": "f1fb89e87e158cc2", "BOMRef": "pkg:pypi/tiktoken@0.8.0" }, "Version": "0.8.0", "Licenses": [ "MIT License Copyright (c) 2022 OpenAI, Shantanu Jain Permission is hereby granted, free of charge, to any person obtaining a copy of this software and associated documentation files (the \"Software\"), to deal in the Software without restriction, including without limitation the rights to use, copy, modify, merge, publish, distribute, sublicense, and/or sell copies of the Software, and to permit persons to whom the Software is furnished to do so, subject to the following conditions: The above copyright notice and this permission notice shall be included in all copies or substantial portions of the Software. THE SOFTWARE IS PROVIDED \"AS IS\", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE." ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/tiktoken-0.8.0.dist-info/METADATA", "Digest": "sha1:9d84201eb7fb511e2757fbd00150263ff31577b8" }, { "ID": "tokenizers@0.20.2", "Name": "tokenizers", "Identifier": { "PURL": "pkg:pypi/tokenizers@0.20.2", "UID": "b1cfd9d20db9abd9", "BOMRef": "pkg:pypi/tokenizers@0.20.2" }, "Version": "0.20.2", "Licenses": [ "Apache-2.0" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/tokenizers-0.20.2.dist-info/METADATA", "Digest": "sha1:86c509fc1d122a9bba1c089e9d38ddd1c56d64cd" }, { "ID": "tomlkit@0.14.0", "Name": "tomlkit", "Identifier": { "PURL": "pkg:pypi/tomlkit@0.14.0", "UID": "8f9033c7f26f2967", "BOMRef": "pkg:pypi/tomlkit@0.14.0" }, "Version": "0.14.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/tomlkit-0.14.0.dist-info/METADATA", "Digest": "sha1:7887d40449d9684788cfb76faacc540c0769cac8" }, { "ID": "tornado@6.5.4", "Name": "tornado", "Identifier": { "PURL": "pkg:pypi/tornado@6.5.4", "UID": "ec5673e3ec07ee52", "BOMRef": "pkg:pypi/tornado@6.5.4" }, "Version": "6.5.4", "Licenses": [ "Apache-2.0" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/tornado-6.5.4.dist-info/METADATA", "Digest": "sha1:a1e2393e5aa6c6bd7c26bfb9b68a31771d14a790" }, { "ID": "tqdm@4.67.3", "Name": "tqdm", "Identifier": { "PURL": "pkg:pypi/tqdm@4.67.3", "UID": "98ec383efec9e23e", "BOMRef": "pkg:pypi/tqdm@4.67.3" }, "Version": "4.67.3", "Licenses": [ "MPL-2.0 AND MIT" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/tqdm-4.67.3.dist-info/METADATA", "Digest": "sha1:0135af1981d2b0f1326020f991192d869693b873" }, { "ID": "typing-inspection@0.4.2", "Name": "typing-inspection", "Identifier": { "PURL": "pkg:pypi/typing-inspection@0.4.2", "UID": "8622212d6677e92e", "BOMRef": "pkg:pypi/typing-inspection@0.4.2" }, "Version": "0.4.2", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/typing_inspection-0.4.2.dist-info/METADATA", "Digest": "sha1:455fdb9c8e246ba02c2a28655287401b62028b60" }, { "ID": "typing_extensions@4.15.0", "Name": "typing_extensions", "Identifier": { "PURL": "pkg:pypi/typing-extensions@4.15.0", "UID": "7b4db62619d186f", "BOMRef": "pkg:pypi/typing-extensions@4.15.0" }, "Version": "4.15.0", "Licenses": [ "PSF-2.0" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/typing_extensions-4.15.0.dist-info/METADATA", "Digest": "sha1:c5c2ce18351f8f2ae0f4a6f7c84c523f342010ee" }, { "ID": "tzdata@2025.1", "Name": "tzdata", "Identifier": { "PURL": "pkg:pypi/tzdata@2025.1", "UID": "5377a90ead162cf6", "BOMRef": "pkg:pypi/tzdata@2025.1" }, "Version": "2025.1", "Licenses": [ "Apache-2.0" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/tzdata-2025.1.dist-info/METADATA", "Digest": "sha1:6e57a2a6ed74712dd41842370b1c12bb8446d4b1" }, { "ID": "tzlocal@5.3.1", "Name": "tzlocal", "Identifier": { "PURL": "pkg:pypi/tzlocal@5.3.1", "UID": "e4f4c8b0ecc946a", "BOMRef": "pkg:pypi/tzlocal@5.3.1" }, "Version": "5.3.1", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/tzlocal-5.3.1.dist-info/METADATA", "Digest": "sha1:fa463c4a745ae9f56544484fb7724eb107786eb4" }, { "ID": "urllib3@2.6.3", "Name": "urllib3", "Identifier": { "PURL": "pkg:pypi/urllib3@2.6.3", "UID": "3705eefd4307754a", "BOMRef": "pkg:pypi/urllib3@2.6.3" }, "Version": "2.6.3", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/urllib3-2.6.3.dist-info/METADATA", "Digest": "sha1:8e2cd7246c7dce09d4590affab6060ec527397c1" }, { "ID": "uvicorn@0.31.1", "Name": "uvicorn", "Identifier": { "PURL": "pkg:pypi/uvicorn@0.31.1", "UID": "b09393fa54d2cb5b", "BOMRef": "pkg:pypi/uvicorn@0.31.1" }, "Version": "0.31.1", "Licenses": [ "BSD-3-Clause" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/uvicorn-0.31.1.dist-info/METADATA", "Digest": "sha1:d229686a1d0f8b25bbb3ca0ab3b5519a37abc2b2" }, { "ID": "uvloop@0.21.0", "Name": "uvloop", "Identifier": { "PURL": "pkg:pypi/uvloop@0.21.0", "UID": "1573ff9029f7af93", "BOMRef": "pkg:pypi/uvloop@0.21.0" }, "Version": "0.21.0", "Licenses": [ "Apache-2.0", "MIT" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/uvloop-0.21.0.dist-info/METADATA", "Digest": "sha1:eecfee7932b6d8397d72414b9a42e8b34c4dcbe7" }, { "ID": "websockets@15.0.1", "Name": "websockets", "Identifier": { "PURL": "pkg:pypi/websockets@15.0.1", "UID": "bc90907160ecc731", "BOMRef": "pkg:pypi/websockets@15.0.1" }, "Version": "15.0.1", "Licenses": [ "BSD-3-Clause" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/websockets-15.0.1.dist-info/METADATA", "Digest": "sha1:7bcef50b72ed117258a503c68d7f5dd194872067" }, { "ID": "wheel@0.46.3", "Name": "wheel", "Identifier": { "PURL": "pkg:pypi/wheel@0.46.3", "UID": "db755ab4f09cde04", "BOMRef": "pkg:pypi/wheel@0.46.3" }, "Version": "0.46.3", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/wheel-0.46.3.dist-info/METADATA", "Digest": "sha1:241e26c983f51b16a8c352de6e874712a4b70e52" }, { "ID": "wrapt@1.17.3", "Name": "wrapt", "Identifier": { "PURL": "pkg:pypi/wrapt@1.17.3", "UID": "34d2b2b739f457d6", "BOMRef": "pkg:pypi/wrapt@1.17.3" }, "Version": "1.17.3", "Licenses": [ "BSD-3-Clause" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/wrapt-1.17.3.dist-info/METADATA", "Digest": "sha1:dbb2682fa0ce1b88bad298721b69b9263a689653" }, { "ID": "xmltodict@1.0.4", "Name": "xmltodict", "Identifier": { "PURL": "pkg:pypi/xmltodict@1.0.4", "UID": "c9dd9f5ddd4bc7c1", "BOMRef": "pkg:pypi/xmltodict@1.0.4" }, "Version": "1.0.4", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/xmltodict-1.0.4.dist-info/METADATA", "Digest": "sha1:bd19f1f027500e9a68b016cf681821a8c03e34ef" }, { "ID": "yarl@1.23.0", "Name": "yarl", "Identifier": { "PURL": "pkg:pypi/yarl@1.23.0", "UID": "6d83fe2bd10601dc", "BOMRef": "pkg:pypi/yarl@1.23.0" }, "Version": "1.23.0", "Licenses": [ "Apache-2.0" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/yarl-1.23.0.dist-info/METADATA", "Digest": "sha1:bfec66d9b0f3fc83a27a41c22208de99cdbd2712" }, { "ID": "zipp@3.23.0", "Name": "zipp", "Identifier": { "PURL": "pkg:pypi/zipp@3.23.0", "UID": "266b6a4a5e25da41", "BOMRef": "pkg:pypi/zipp@3.23.0" }, "Version": "3.23.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "FilePath": "usr/lib/python3.13/site-packages/zipp-3.23.0.dist-info/METADATA", "Digest": "sha1:d7974cc6cd5ace30ae2bf7e89ed458fc7e46a194" } ], "Vulnerabilities": [ { "VulnerabilityID": "CVE-2026-32597", "VendorIDs": [ "GHSA-752w-5fwx-jx9f" ], "PkgID": "PyJWT@2.9.0", "PkgName": "PyJWT", "PkgPath": "usr/lib/python3.13/site-packages/PyJWT-2.9.0.dist-info/METADATA", "PkgIdentifier": { "PURL": "pkg:pypi/pyjwt@2.9.0", "UID": "2f2ceb3a579dbf21", "BOMRef": "pkg:pypi/pyjwt@2.9.0" }, "InstalledVersion": "2.9.0", "FixedVersion": "2.12.0", "Status": "fixed", "Layer": { "Digest": "sha256:181274bd33665398890522952ae94b466da1cff04af5ada553074675359da311", "DiffID": "sha256:32a6178206b8940b9bedcd623f360580fc2e96976d62e70b700581ea3edd5430" }, "SeveritySource": "ghsa", "PrimaryURL": "https://avd.aquasec.com/nvd/cve-2026-32597", "DataSource": { "ID": "ghsa", "Name": "GitHub Security Advisory pip", "URL": "https://github.com/advisories?query=type%3Areviewed+ecosystem%3Apip" }, "Fingerprint": "sha256:d131734b884eb278bfd56b4e76f920a52392dde00f313e9ec778f4578dc2074a", "Title": "pyjwt: PyJWT accepts unknown `crit` header extensions (RFC 7515 §4.1.11 MUST violation)", "Description": "PyJWT is a JSON Web Token implementation in Python. Prior to 2.12.0, PyJWT does not validate the crit (Critical) Header Parameter defined in RFC 7515 §4.1.11. When a JWS token contains a crit array listing extensions that PyJWT does not understand, the library accepts the token instead of rejecting it. This violates the MUST requirement in the RFC. This vulnerability is fixed in 2.12.0.", "Severity": "HIGH", "CweIDs": [ "CWE-345", "CWE-863" ], "VendorSeverity": { "amazon": 2, "ghsa": 3, "redhat": 3, "ubuntu": 2 }, "CVSS": { "ghsa": { "V3Vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N", "V3Score": 7.5 }, "redhat": { "V3Vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N", "V3Score": 7.5 } }, "References": [ "https://access.redhat.com/security/cve/CVE-2026-32597", "https://github.com/jpadilla/pyjwt", "https://github.com/jpadilla/pyjwt/security/advisories/GHSA-752w-5fwx-jx9f", "https://nvd.nist.gov/vuln/detail/CVE-2026-32597", "https://ubuntu.com/security/notices/USN-8133-1", "https://www.cve.org/CVERecord?id=CVE-2026-32597" ], "PublishedDate": "2026-03-13T19:55:09.5Z", "LastModifiedDate": "2026-03-19T13:30:29.217Z" }, { "VulnerabilityID": "CVE-2026-4539", "VendorIDs": [ "GHSA-5239-wwwm-4pmq" ], "PkgID": "Pygments@2.19.2", "PkgName": "Pygments", "PkgPath": "usr/lib/python3.13/site-packages/pygments-2.19.2.dist-info/METADATA", "PkgIdentifier": { "PURL": "pkg:pypi/pygments@2.19.2", "UID": "88aec98ece975412", "BOMRef": "pkg:pypi/pygments@2.19.2" }, "InstalledVersion": "2.19.2", "FixedVersion": "2.20.0", "Status": "fixed", "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "SeveritySource": "ghsa", "PrimaryURL": "https://avd.aquasec.com/nvd/cve-2026-4539", "DataSource": { "ID": "ghsa", "Name": "GitHub Security Advisory pip", "URL": "https://github.com/advisories?query=type%3Areviewed+ecosystem%3Apip" }, "Fingerprint": "sha256:ebde05e4d8dcd73a17075046f3361dd78663645fafd33c8dceda93495fbf43d3", "Title": "pygments: Pygments: Denial of Service via inefficient regular expression processing in AdlLexer", "Description": "A security flaw has been discovered in pygments up to 2.19.2. The impacted element is the function AdlLexer of the file pygments/lexers/archetype.py. The manipulation results in inefficient regular expression complexity. The attack is only possible with local access. The exploit has been released to the public and may be used for attacks. The project was informed of the problem early through an issue report but has not responded yet.", "Severity": "LOW", "CweIDs": [ "CWE-400", "CWE-1333" ], "VendorSeverity": { "ghsa": 1, "redhat": 1 }, "CVSS": { "ghsa": { "V3Vector": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L", "V40Vector": "CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:P", "V3Score": 3.3, "V40Score": 1.9 }, "redhat": { "V3Vector": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L", "V3Score": 3.3 } }, "References": [ "https://access.redhat.com/security/cve/CVE-2026-4539", "https://github.com/pygments/pygments", "https://github.com/pygments/pygments/", "https://github.com/pygments/pygments/commit/24b8aa76c6cd6d70f39c6dd605cce319c98e2ccc", "https://github.com/pygments/pygments/issues/3058", "https://github.com/pygments/pygments/pull/3064", "https://github.com/pygments/pygments/releases/tag/2.20.0", "https://nvd.nist.gov/vuln/detail/CVE-2026-4539", "https://vuldb.com/?ctiid.352327", "https://vuldb.com/?id.352327", "https://vuldb.com/?submit.774685", "https://www.cve.org/CVERecord?id=CVE-2026-4539" ], "PublishedDate": "2026-03-22T06:16:20.913Z", "LastModifiedDate": "2026-03-23T14:31:37.267Z" }, { "VulnerabilityID": "CVE-2026-22815", "VendorIDs": [ "GHSA-w2fm-2cpv-w7v5" ], "PkgID": "aiohttp@3.13.3", "PkgName": "aiohttp", "PkgPath": "usr/lib/python3.13/site-packages/aiohttp-3.13.3.dist-info/METADATA", "PkgIdentifier": { "PURL": "pkg:pypi/aiohttp@3.13.3", "UID": "a30bcd985ed2f38f", "BOMRef": "pkg:pypi/aiohttp@3.13.3" }, "InstalledVersion": "3.13.3", "FixedVersion": "3.13.4", "Status": "fixed", "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "SeveritySource": "ghsa", "PrimaryURL": "https://avd.aquasec.com/nvd/cve-2026-22815", "DataSource": { "ID": "ghsa", "Name": "GitHub Security Advisory pip", "URL": "https://github.com/advisories?query=type%3Areviewed+ecosystem%3Apip" }, "Fingerprint": "sha256:e297cb5a8fd78db1e9ad3bb29c1a40a1df63eabccc96ee4b5deb56e6c856a4ab", "Title": "aiohttp: AIOHTTP: Denial of Service via insufficient header/trailer handling", "Description": "AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. Prior to version 3.13.4, insufficient restrictions in header/trailer handling could cause uncapped memory usage. This issue has been patched in version 3.13.4.", "Severity": "MEDIUM", "CweIDs": [ "CWE-400", "CWE-770" ], "VendorSeverity": { "ghsa": 2, "redhat": 2 }, "CVSS": { "ghsa": { "V40Vector": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N", "V40Score": 6.9 }, "redhat": { "V3Vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L", "V3Score": 5.3 } }, "References": [ "https://access.redhat.com/security/cve/CVE-2026-22815", "https://github.com/aio-libs/aiohttp", "https://github.com/aio-libs/aiohttp/commit/0c2e9da51126238a421568eb7c5b53e5b5d17b36", "https://github.com/aio-libs/aiohttp/releases/tag/v3.13.4", "https://github.com/aio-libs/aiohttp/security/advisories/GHSA-w2fm-2cpv-w7v5", "https://nvd.nist.gov/vuln/detail/CVE-2026-22815", "https://www.cve.org/CVERecord?id=CVE-2026-22815" ], "PublishedDate": "2026-04-01T21:16:58.513Z", "LastModifiedDate": "2026-04-04T04:17:11.5Z" }, { "VulnerabilityID": "CVE-2026-34515", "VendorIDs": [ "GHSA-p998-jp59-783m" ], "PkgID": "aiohttp@3.13.3", "PkgName": "aiohttp", "PkgPath": "usr/lib/python3.13/site-packages/aiohttp-3.13.3.dist-info/METADATA", "PkgIdentifier": { "PURL": "pkg:pypi/aiohttp@3.13.3", "UID": "a30bcd985ed2f38f", "BOMRef": "pkg:pypi/aiohttp@3.13.3" }, "InstalledVersion": "3.13.3", "FixedVersion": "3.13.4", "Status": "fixed", "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "SeveritySource": "ghsa", "PrimaryURL": "https://avd.aquasec.com/nvd/cve-2026-34515", "DataSource": { "ID": "ghsa", "Name": "GitHub Security Advisory pip", "URL": "https://github.com/advisories?query=type%3Areviewed+ecosystem%3Apip" }, "Fingerprint": "sha256:aa0ff32af4423f451a9b5ca9ffda6e685d476c23cfcad9f23218d016963c6ee4", "Title": "aiohttp: AIOHTTP: Information disclosure via static resource handler on Windows", "Description": "AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. Prior to version 3.13.4, on Windows the static resource handler may expose information about a NTLMv2 remote path. This issue has been patched in version 3.13.4.", "Severity": "MEDIUM", "CweIDs": [ "CWE-36", "CWE-918" ], "VendorSeverity": { "ghsa": 2, "redhat": 2 }, "CVSS": { "ghsa": { "V40Vector": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:U", "V40Score": 6.6 }, "redhat": { "V3Vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N", "V3Score": 5.3 } }, "References": [ "https://access.redhat.com/security/cve/CVE-2026-34515", "https://github.com/aio-libs/aiohttp", "https://github.com/aio-libs/aiohttp/commit/0ae2aa076c84573df83fc1fdc39eec0f5862fe3d", "https://github.com/aio-libs/aiohttp/releases/tag/v3.13.4", "https://github.com/aio-libs/aiohttp/security/advisories/GHSA-p998-jp59-783m", "https://nvd.nist.gov/vuln/detail/CVE-2026-34515", "https://www.cve.org/CVERecord?id=CVE-2026-34515" ], "PublishedDate": "2026-04-01T21:16:59.57Z", "LastModifiedDate": "2026-04-03T16:10:52.68Z" }, { "VulnerabilityID": "CVE-2026-34516", "VendorIDs": [ "GHSA-m5qp-6w8w-w647" ], "PkgID": "aiohttp@3.13.3", "PkgName": "aiohttp", "PkgPath": "usr/lib/python3.13/site-packages/aiohttp-3.13.3.dist-info/METADATA", "PkgIdentifier": { "PURL": "pkg:pypi/aiohttp@3.13.3", "UID": "a30bcd985ed2f38f", "BOMRef": "pkg:pypi/aiohttp@3.13.3" }, "InstalledVersion": "3.13.3", "FixedVersion": "3.13.4", "Status": "fixed", "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "SeveritySource": "ghsa", "PrimaryURL": "https://avd.aquasec.com/nvd/cve-2026-34516", "DataSource": { "ID": "ghsa", "Name": "GitHub Security Advisory pip", "URL": "https://github.com/advisories?query=type%3Areviewed+ecosystem%3Apip" }, "Fingerprint": "sha256:866e8a4d5186c80beaf50090938ccce515a3aaa37fd8a0f3288f6eb882018131", "Title": "aiohttp: AIOHTTP: Denial of Service via excessive multipart headers", "Description": "AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. Prior to version 3.13.4, a response with an excessive number of multipart headers may be allowed to use more memory than intended, potentially allowing a DoS vulnerability. This issue has been patched in version 3.13.4.", "Severity": "MEDIUM", "CweIDs": [ "CWE-770" ], "VendorSeverity": { "ghsa": 2, "redhat": 2 }, "CVSS": { "ghsa": { "V40Vector": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U", "V40Score": 6.6 }, "redhat": { "V3Vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L", "V3Score": 5.3 } }, "References": [ "https://access.redhat.com/security/cve/CVE-2026-34516", "https://github.com/aio-libs/aiohttp", "https://github.com/aio-libs/aiohttp/commit/8a74257b3804c9aac0bf644af93070f68f6c5a6f", "https://github.com/aio-libs/aiohttp/releases/tag/v3.13.4", "https://github.com/aio-libs/aiohttp/security/advisories/GHSA-m5qp-6w8w-w647", "https://nvd.nist.gov/vuln/detail/CVE-2026-34516", "https://www.cve.org/CVERecord?id=CVE-2026-34516" ], "PublishedDate": "2026-04-01T21:16:59.723Z", "LastModifiedDate": "2026-04-04T04:17:20.147Z" }, { "VulnerabilityID": "CVE-2026-34525", "VendorIDs": [ "GHSA-c427-h43c-vf67" ], "PkgID": "aiohttp@3.13.3", "PkgName": "aiohttp", "PkgPath": "usr/lib/python3.13/site-packages/aiohttp-3.13.3.dist-info/METADATA", "PkgIdentifier": { "PURL": "pkg:pypi/aiohttp@3.13.3", "UID": "a30bcd985ed2f38f", "BOMRef": "pkg:pypi/aiohttp@3.13.3" }, "InstalledVersion": "3.13.3", "FixedVersion": "3.13.4", "Status": "fixed", "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "SeveritySource": "ghsa", "PrimaryURL": "https://avd.aquasec.com/nvd/cve-2026-34525", "DataSource": { "ID": "ghsa", "Name": "GitHub Security Advisory pip", "URL": "https://github.com/advisories?query=type%3Areviewed+ecosystem%3Apip" }, "Fingerprint": "sha256:e84f570f991af8f81da0073310141adbbe376c44e2bb855e226ffeb8826b2695", "Title": "aiohttp: aiohttp: Security bypass via multiple Host headers", "Description": "AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. Prior to version 3.13.4, multiple Host headers were allowed in aiohttp. This issue has been patched in version 3.13.4.", "Severity": "MEDIUM", "CweIDs": [ "CWE-20", "CWE-444" ], "VendorSeverity": { "ghsa": 2, "redhat": 2 }, "CVSS": { "ghsa": { "V40Vector": "CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:L/SI:L/SA:N", "V40Score": 6.3 }, "redhat": { "V3Vector": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:L/I:L/A:N", "V3Score": 5.4 } }, "References": [ "https://access.redhat.com/security/cve/CVE-2026-34525", "https://github.com/aio-libs/aiohttp", "https://github.com/aio-libs/aiohttp/commit/53e2e6fc58b89c6185be7820bd2c9f40216b3000", "https://github.com/aio-libs/aiohttp/commit/e00ca3cca92c465c7913c4beb763a72da9ed8349", "https://github.com/aio-libs/aiohttp/releases/tag/v3.13.4", "https://github.com/aio-libs/aiohttp/security/advisories/GHSA-c427-h43c-vf67", "https://nvd.nist.gov/vuln/detail/CVE-2026-34525", "https://www.cve.org/CVERecord?id=CVE-2026-34525" ], "PublishedDate": "2026-04-01T21:17:00.49Z", "LastModifiedDate": "2026-04-03T16:10:52.68Z" }, { "VulnerabilityID": "CVE-2026-34513", "VendorIDs": [ "GHSA-hcc4-c3v8-rx92" ], "PkgID": "aiohttp@3.13.3", "PkgName": "aiohttp", "PkgPath": "usr/lib/python3.13/site-packages/aiohttp-3.13.3.dist-info/METADATA", "PkgIdentifier": { "PURL": "pkg:pypi/aiohttp@3.13.3", "UID": "a30bcd985ed2f38f", "BOMRef": "pkg:pypi/aiohttp@3.13.3" }, "InstalledVersion": "3.13.3", "FixedVersion": "3.13.4", "Status": "fixed", "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "SeveritySource": "ghsa", "PrimaryURL": "https://avd.aquasec.com/nvd/cve-2026-34513", "DataSource": { "ID": "ghsa", "Name": "GitHub Security Advisory pip", "URL": "https://github.com/advisories?query=type%3Areviewed+ecosystem%3Apip" }, "Fingerprint": "sha256:96526097b9e565fbcbf5ef8c916c84641b20edb5fca07d11d43577d13d9175e1", "Title": "aiohttp: AIOHTTP: Denial of Service due to unbounded DNS cache", "Description": "AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. Prior to version 3.13.4, an unbounded DNS cache could result in excessive memory usage possibly resulting in a DoS situation. This issue has been patched in version 3.13.4.", "Severity": "LOW", "CweIDs": [ "CWE-770" ], "VendorSeverity": { "ghsa": 1, "redhat": 1 }, "CVSS": { "ghsa": { "V40Vector": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:U", "V40Score": 2.7 }, "redhat": { "V3Vector": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L", "V3Score": 3.7 } }, "References": [ "https://access.redhat.com/security/cve/CVE-2026-34513", "https://github.com/aio-libs/aiohttp", "https://github.com/aio-libs/aiohttp/commit/c4d77c3533122be353b8afca8e8675e3b4cbda98", "https://github.com/aio-libs/aiohttp/releases/tag/v3.13.4", "https://github.com/aio-libs/aiohttp/security/advisories/GHSA-hcc4-c3v8-rx92", "https://nvd.nist.gov/vuln/detail/CVE-2026-34513", "https://www.cve.org/CVERecord?id=CVE-2026-34513" ], "PublishedDate": "2026-04-01T21:16:59.267Z", "LastModifiedDate": "2026-04-03T16:10:52.68Z" }, { "VulnerabilityID": "CVE-2026-34514", "VendorIDs": [ "GHSA-2vrm-gr82-f7m5" ], "PkgID": "aiohttp@3.13.3", "PkgName": "aiohttp", "PkgPath": "usr/lib/python3.13/site-packages/aiohttp-3.13.3.dist-info/METADATA", "PkgIdentifier": { "PURL": "pkg:pypi/aiohttp@3.13.3", "UID": "a30bcd985ed2f38f", "BOMRef": "pkg:pypi/aiohttp@3.13.3" }, "InstalledVersion": "3.13.3", "FixedVersion": "3.13.4", "Status": "fixed", "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "SeveritySource": "ghsa", "PrimaryURL": "https://avd.aquasec.com/nvd/cve-2026-34514", "DataSource": { "ID": "ghsa", "Name": "GitHub Security Advisory pip", "URL": "https://github.com/advisories?query=type%3Areviewed+ecosystem%3Apip" }, "Fingerprint": "sha256:e702c6a7f468a334f650f8b9550cb73a6231ea5b2f4a9cfd8d21e0428e1a106a", "Title": "aiohttp: AIOHTTP: Header Injection via content_type parameter manipulation", "Description": "AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. Prior to version 3.13.4, an attacker who controls the content_type parameter in aiohttp could use this to inject extra headers or similar exploits. This issue has been patched in version 3.13.4.", "Severity": "LOW", "CweIDs": [ "CWE-113" ], "VendorSeverity": { "ghsa": 1, "redhat": 2 }, "CVSS": { "ghsa": { "V40Vector": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:U", "V40Score": 2.7 }, "redhat": { "V3Vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N", "V3Score": 5.3 } }, "References": [ "https://access.redhat.com/security/cve/CVE-2026-34514", "https://github.com/aio-libs/aiohttp", "https://github.com/aio-libs/aiohttp/commit/9a6ada97e2c6cf1ce31727c6c9fcea17c21f6f06", "https://github.com/aio-libs/aiohttp/releases/tag/v3.13.4", "https://github.com/aio-libs/aiohttp/security/advisories/GHSA-2vrm-gr82-f7m5", "https://nvd.nist.gov/vuln/detail/CVE-2026-34514", "https://www.cve.org/CVERecord?id=CVE-2026-34514" ], "PublishedDate": "2026-04-01T21:16:59.417Z", "LastModifiedDate": "2026-04-03T16:10:52.68Z" }, { "VulnerabilityID": "CVE-2026-34517", "VendorIDs": [ "GHSA-3wq7-rqq7-wx6j" ], "PkgID": "aiohttp@3.13.3", "PkgName": "aiohttp", "PkgPath": "usr/lib/python3.13/site-packages/aiohttp-3.13.3.dist-info/METADATA", "PkgIdentifier": { "PURL": "pkg:pypi/aiohttp@3.13.3", "UID": "a30bcd985ed2f38f", "BOMRef": "pkg:pypi/aiohttp@3.13.3" }, "InstalledVersion": "3.13.3", "FixedVersion": "3.13.4", "Status": "fixed", "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "SeveritySource": "ghsa", "PrimaryURL": "https://avd.aquasec.com/nvd/cve-2026-34517", "DataSource": { "ID": "ghsa", "Name": "GitHub Security Advisory pip", "URL": "https://github.com/advisories?query=type%3Areviewed+ecosystem%3Apip" }, "Fingerprint": "sha256:a54f789989605bca58808a5eb74e695bddcaf31106f6193215b12e8ab415dc30", "Title": "aiohttp: AIOHTTP: Denial of Service via large multipart form fields", "Description": "AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. Prior to version 3.13.4, for some multipart form fields, aiohttp read the entire field into memory before checking client_max_size. This issue has been patched in version 3.13.4.", "Severity": "LOW", "CweIDs": [ "CWE-770" ], "VendorSeverity": { "ghsa": 1, "redhat": 1 }, "CVSS": { "ghsa": { "V40Vector": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:U", "V40Score": 2.7 }, "redhat": { "V3Vector": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L", "V3Score": 3.7 } }, "References": [ "https://access.redhat.com/security/cve/CVE-2026-34517", "https://github.com/aio-libs/aiohttp", "https://github.com/aio-libs/aiohttp/commit/cbb774f38330563422ca0c413a71021d7b944145", "https://github.com/aio-libs/aiohttp/releases/tag/v3.13.4", "https://github.com/aio-libs/aiohttp/security/advisories/GHSA-3wq7-rqq7-wx6j", "https://nvd.nist.gov/vuln/detail/CVE-2026-34517", "https://www.cve.org/CVERecord?id=CVE-2026-34517" ], "PublishedDate": "2026-04-01T21:16:59.87Z", "LastModifiedDate": "2026-04-03T16:10:52.68Z" }, { "VulnerabilityID": "CVE-2026-34518", "VendorIDs": [ "GHSA-966j-vmvw-g2g9" ], "PkgID": "aiohttp@3.13.3", "PkgName": "aiohttp", "PkgPath": "usr/lib/python3.13/site-packages/aiohttp-3.13.3.dist-info/METADATA", "PkgIdentifier": { "PURL": "pkg:pypi/aiohttp@3.13.3", "UID": "a30bcd985ed2f38f", "BOMRef": "pkg:pypi/aiohttp@3.13.3" }, "InstalledVersion": "3.13.3", "FixedVersion": "3.13.4", "Status": "fixed", "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "SeveritySource": "ghsa", "PrimaryURL": "https://avd.aquasec.com/nvd/cve-2026-34518", "DataSource": { "ID": "ghsa", "Name": "GitHub Security Advisory pip", "URL": "https://github.com/advisories?query=type%3Areviewed+ecosystem%3Apip" }, "Fingerprint": "sha256:17f8068b71428244ee87fc4bd501180d108baf2d9105f003b3bb86d35173ad70", "Title": "aiohttp: AIOHTTP: Information disclosure via retained Cookie and Proxy-Authorization headers during redirects", "Description": "AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. Prior to version 3.13.4, when following redirects to a different origin, aiohttp drops the Authorization header, but retains the Cookie and Proxy-Authorization headers. This issue has been patched in version 3.13.4.", "Severity": "LOW", "CweIDs": [ "CWE-200" ], "VendorSeverity": { "ghsa": 1, "redhat": 1 }, "CVSS": { "ghsa": { "V40Vector": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U", "V40Score": 2.7 }, "redhat": { "V3Vector": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N", "V3Score": 3.7 } }, "References": [ "https://access.redhat.com/security/cve/CVE-2026-34518", "https://github.com/aio-libs/aiohttp", "https://github.com/aio-libs/aiohttp/commit/5351c980dcec7ad385730efdf4e1f4338b24fdb6", "https://github.com/aio-libs/aiohttp/releases/tag/v3.13.4", "https://github.com/aio-libs/aiohttp/security/advisories/GHSA-966j-vmvw-g2g9", "https://nvd.nist.gov/vuln/detail/CVE-2026-34518", "https://www.cve.org/CVERecord?id=CVE-2026-34518" ], "PublishedDate": "2026-04-01T21:17:00.02Z", "LastModifiedDate": "2026-04-03T16:10:52.68Z" }, { "VulnerabilityID": "CVE-2026-34519", "VendorIDs": [ "GHSA-mwh4-6h8g-pg8w" ], "PkgID": "aiohttp@3.13.3", "PkgName": "aiohttp", "PkgPath": "usr/lib/python3.13/site-packages/aiohttp-3.13.3.dist-info/METADATA", "PkgIdentifier": { "PURL": "pkg:pypi/aiohttp@3.13.3", "UID": "a30bcd985ed2f38f", "BOMRef": "pkg:pypi/aiohttp@3.13.3" }, "InstalledVersion": "3.13.3", "FixedVersion": "3.13.4", "Status": "fixed", "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "SeveritySource": "ghsa", "PrimaryURL": "https://avd.aquasec.com/nvd/cve-2026-34519", "DataSource": { "ID": "ghsa", "Name": "GitHub Security Advisory pip", "URL": "https://github.com/advisories?query=type%3Areviewed+ecosystem%3Apip" }, "Fingerprint": "sha256:c677ff157a1bb25fab314b79823db49eca07785b4ab4ea1dd8c7d70fb78e8fe3", "Title": "aiohttp: aiohttp: Header injection vulnerability via reason parameter", "Description": "AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. Prior to version 3.13.4, an attacker who controls the reason parameter when creating a Response may be able to inject extra headers or similar exploits. This issue has been patched in version 3.13.4.", "Severity": "LOW", "CweIDs": [ "CWE-113" ], "VendorSeverity": { "ghsa": 1, "redhat": 2 }, "CVSS": { "ghsa": { "V40Vector": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:U", "V40Score": 2.7 }, "redhat": { "V3Vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N", "V3Score": 5.3 } }, "References": [ "https://access.redhat.com/security/cve/CVE-2026-34519", "https://github.com/aio-libs/aiohttp", "https://github.com/aio-libs/aiohttp/commit/53b35a2f8869c37a133e60bf1a82a1c01642ba2b", "https://github.com/aio-libs/aiohttp/releases/tag/v3.13.4", "https://github.com/aio-libs/aiohttp/security/advisories/GHSA-mwh4-6h8g-pg8w", "https://nvd.nist.gov/vuln/detail/CVE-2026-34519", "https://www.cve.org/CVERecord?id=CVE-2026-34519" ], "PublishedDate": "2026-04-01T21:17:00.17Z", "LastModifiedDate": "2026-04-03T16:10:52.68Z" }, { "VulnerabilityID": "CVE-2026-34520", "VendorIDs": [ "GHSA-63hf-3vf5-4wqf" ], "PkgID": "aiohttp@3.13.3", "PkgName": "aiohttp", "PkgPath": "usr/lib/python3.13/site-packages/aiohttp-3.13.3.dist-info/METADATA", "PkgIdentifier": { "PURL": "pkg:pypi/aiohttp@3.13.3", "UID": "a30bcd985ed2f38f", "BOMRef": "pkg:pypi/aiohttp@3.13.3" }, "InstalledVersion": "3.13.3", "FixedVersion": "3.13.4", "Status": "fixed", "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "SeveritySource": "ghsa", "PrimaryURL": "https://avd.aquasec.com/nvd/cve-2026-34520", "DataSource": { "ID": "ghsa", "Name": "GitHub Security Advisory pip", "URL": "https://github.com/advisories?query=type%3Areviewed+ecosystem%3Apip" }, "Fingerprint": "sha256:0770c420fed18efd646b9b1025c31ad6b249ef4b7310b4e44012f102049b74b9", "Title": "aiohttp: AIOHTTP: Header injection vulnerability due to improper character handling", "Description": "AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. Prior to version 3.13.4, the C parser (the default for most installs) accepted null bytes and control characters in response headers. This issue has been patched in version 3.13.4.", "Severity": "LOW", "CweIDs": [ "CWE-113" ], "VendorSeverity": { "ghsa": 1, "redhat": 1 }, "CVSS": { "ghsa": { "V40Vector": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:U", "V40Score": 2.7 }, "redhat": { "V3Vector": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N", "V3Score": 3.7 } }, "References": [ "https://access.redhat.com/security/cve/CVE-2026-34520", "https://github.com/aio-libs/aiohttp", "https://github.com/aio-libs/aiohttp/commit/9370b9714a7a56003cacd31a9b4ae16eab109ba4", "https://github.com/aio-libs/aiohttp/releases/tag/v3.13.4", "https://github.com/aio-libs/aiohttp/security/advisories/GHSA-63hf-3vf5-4wqf", "https://nvd.nist.gov/vuln/detail/CVE-2026-34520", "https://www.cve.org/CVERecord?id=CVE-2026-34520" ], "PublishedDate": "2026-04-01T21:17:00.333Z", "LastModifiedDate": "2026-04-04T04:17:20.773Z" }, { "VulnerabilityID": "CVE-2026-34073", "VendorIDs": [ "GHSA-m959-cc7f-wv43" ], "PkgID": "cryptography@46.0.5", "PkgName": "cryptography", "PkgPath": "usr/lib/python3.13/site-packages/cryptography-46.0.5.dist-info/METADATA", "PkgIdentifier": { "PURL": "pkg:pypi/cryptography@46.0.5", "UID": "1097125347c1b6a8", "BOMRef": "pkg:pypi/cryptography@46.0.5" }, "InstalledVersion": "46.0.5", "FixedVersion": "46.0.6", "Status": "fixed", "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "SeveritySource": "ghsa", "PrimaryURL": "https://avd.aquasec.com/nvd/cve-2026-34073", "DataSource": { "ID": "ghsa", "Name": "GitHub Security Advisory pip", "URL": "https://github.com/advisories?query=type%3Areviewed+ecosystem%3Apip" }, "Fingerprint": "sha256:a0a15bf12f7993f9515806d984f1ae6b5269b33fee66ade32b33b7c56ca46249", "Title": "cryptography: python: Cryptography: Security bypass due to improper DNS name constraint validation", "Description": "cryptography is a package designed to expose cryptographic primitives and recipes to Python developers. Prior to version 46.0.6, DNS name constraints were only validated against SANs within child certificates, and not the \"peer name\" presented during each validation. Consequently, cryptography would allow a peer named bar.example.com to validate against a wildcard leaf certificate for *.example.com, even if the leaf's parent certificate (or upwards) contained an excluded subtree constraint for bar.example.com. This issue has been patched in version 46.0.6.", "Severity": "LOW", "CweIDs": [ "CWE-295" ], "VendorSeverity": { "ghsa": 1, "redhat": 1 }, "CVSS": { "ghsa": { "V40Vector": "CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:U", "V40Score": 1.7 }, "redhat": { "V3Vector": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N", "V3Score": 3.7 } }, "References": [ "https://access.redhat.com/security/cve/CVE-2026-34073", "https://github.com/pyca/cryptography", "https://github.com/pyca/cryptography/security/advisories/GHSA-m959-cc7f-wv43", "https://nvd.nist.gov/vuln/detail/CVE-2026-34073", "https://www.cve.org/CVERecord?id=CVE-2026-34073" ], "PublishedDate": "2026-03-31T03:15:59.123Z", "LastModifiedDate": "2026-04-01T14:24:02.583Z" }, { "VulnerabilityID": "CVE-2026-35030", "VendorIDs": [ "GHSA-jjhc-v7c2-5hh6" ], "PkgID": "litellm@1.82.1", "PkgName": "litellm", "PkgPath": "usr/lib/python3.13/site-packages/litellm-1.82.1.dist-info/METADATA", "PkgIdentifier": { "PURL": "pkg:pypi/litellm@1.82.1", "UID": "df238f9423dcee44", "BOMRef": "pkg:pypi/litellm@1.82.1" }, "InstalledVersion": "1.82.1", "FixedVersion": "1.83.0", "Status": "fixed", "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "SeveritySource": "ghsa", "PrimaryURL": "https://avd.aquasec.com/nvd/cve-2026-35030", "DataSource": { "ID": "ghsa", "Name": "GitHub Security Advisory pip", "URL": "https://github.com/advisories?query=type%3Areviewed+ecosystem%3Apip" }, "Fingerprint": "sha256:5f598a1619a82093b58d201950bc4898a11c4af31b264d6a1311f6ef9fc28add", "Title": "LiteLLM: Authentication bypass via OIDC userinfo cache key collision", "Description": "### Impact\n\nWhen JWT authentication is enabled (`enable_jwt_auth: true`), the OIDC userinfo cache uses `token[:20]` as the cache key. JWT headers produced by the same signing algorithm generate identical first 20 characters.\n\nThis configuration option is not enabled by default. **Most instances are not affected.**\n\nAn unauthenticated attacker can craft a token whose first 20 characters match a legitimate user's cached token. On cache hit, the attacker inherits the legitimate user's identity and permissions. This affects deployments with JWT/OIDC authentication enabled.\n\n### Patches\n\nFixed in v1.83.0. The cache key now uses the full hash of the JWT token.\n\n### Workarounds\n\nDisable OIDC userinfo caching by setting the cache TTL to 0, or disable JWT authentication entirely.", "Severity": "CRITICAL", "VendorSeverity": { "ghsa": 4 }, "CVSS": { "ghsa": { "V40Vector": "CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:N/SC:H/SI:H/SA:N", "V40Score": 9.4 } }, "References": [ "https://github.com/BerriAI/litellm", "https://github.com/BerriAI/litellm/security/advisories/GHSA-jjhc-v7c2-5hh6" ] }, { "VulnerabilityID": "CVE-2026-35029", "VendorIDs": [ "GHSA-53mr-6c8q-9789" ], "PkgID": "litellm@1.82.1", "PkgName": "litellm", "PkgPath": "usr/lib/python3.13/site-packages/litellm-1.82.1.dist-info/METADATA", "PkgIdentifier": { "PURL": "pkg:pypi/litellm@1.82.1", "UID": "df238f9423dcee44", "BOMRef": "pkg:pypi/litellm@1.82.1" }, "InstalledVersion": "1.82.1", "FixedVersion": "1.83.0", "Status": "fixed", "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "SeveritySource": "ghsa", "PrimaryURL": "https://avd.aquasec.com/nvd/cve-2026-35029", "DataSource": { "ID": "ghsa", "Name": "GitHub Security Advisory pip", "URL": "https://github.com/advisories?query=type%3Areviewed+ecosystem%3Apip" }, "Fingerprint": "sha256:838123ef81a2addd88de04d74cd14af63cd9542fb8e11e69885345b52bf5ab40", "Title": "LiteLLM: Privilege escalation via unrestricted proxy configuration endpoint", "Description": "### Impact\n\nThe `/config/update endpoint` does not enforce admin role authorization. A user who is already authenticated into the platform can then use this endpoint to do the following:\n\n - Modify proxy configuration and environment variables\n - Register custom pass-through endpoint handlers pointing to attacker-controlled Python code, achieving remote code execution\n - Read arbitrary server files by setting UI_LOGO_PATH and fetching via /get_image\n - Take over other priveleged accounts by overwriting UI_USERNAME and UI_PASSWORD environment variables\n\n### Patches\n\nFixed in v1.83.0. The endpoint now requires `proxy_admin` role.\n\n### Workarounds\n\nRestrict API key distribution. There is no configuration-level workaround.", "Severity": "HIGH", "VendorSeverity": { "ghsa": 3 }, "CVSS": { "ghsa": { "V40Vector": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:L/SI:L/SA:N", "V40Score": 8.7 } }, "References": [ "https://github.com/BerriAI/litellm", "https://github.com/BerriAI/litellm/security/advisories/GHSA-53mr-6c8q-9789" ] }, { "VulnerabilityID": "CVE-2026-30922", "VendorIDs": [ "GHSA-jr27-m4p2-rc6r" ], "PkgID": "pyasn1@0.6.2", "PkgName": "pyasn1", "PkgPath": "usr/lib/python3.13/site-packages/pyasn1-0.6.2.dist-info/METADATA", "PkgIdentifier": { "PURL": "pkg:pypi/pyasn1@0.6.2", "UID": "d4b33d5aa8474ed0", "BOMRef": "pkg:pypi/pyasn1@0.6.2" }, "InstalledVersion": "0.6.2", "FixedVersion": "0.6.3", "Status": "fixed", "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "SeveritySource": "ghsa", "PrimaryURL": "https://avd.aquasec.com/nvd/cve-2026-30922", "DataSource": { "ID": "ghsa", "Name": "GitHub Security Advisory pip", "URL": "https://github.com/advisories?query=type%3Areviewed+ecosystem%3Apip" }, "Fingerprint": "sha256:c8b01b67777a21a211fe112adb623397adbfa193f38a4aca319365ee454edac6", "Title": "pyasn1: pyasn1 Vulnerable to Denial of Service via Unbounded Recursion", "Description": "pyasn1 is a generic ASN.1 library for Python. Prior to 0.6.3, the `pyasn1` library is vulnerable to a Denial of Service (DoS) attack caused by uncontrolled recursion when decoding ASN.1 data with deeply nested structures. An attacker can supply a crafted payload containing thousands of nested `SEQUENCE` (`0x30`) or `SET` (`0x31`) tags with \"Indefinite Length\" (`0x80`) markers. This forces the decoder to recursively call itself until the Python interpreter crashes with a `RecursionError` or consumes all available memory (OOM), crashing the host application. This is a distinct vulnerability from CVE-2026-23490 (which addressed integer overflows in OID decoding). The fix for CVE-2026-23490 (`MAX_OID_ARC_CONTINUATION_OCTETS`) does not mitigate this recursion issue. Version 0.6.3 fixes this specific issue.", "Severity": "HIGH", "CweIDs": [ "CWE-674" ], "VendorSeverity": { "amazon": 2, "cbl-mariner": 3, "ghsa": 3, "redhat": 3, "ubuntu": 2 }, "CVSS": { "ghsa": { "V3Vector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "V3Score": 7.5 }, "redhat": { "V3Vector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "V3Score": 7.5 } }, "References": [ "http://www.openwall.com/lists/oss-security/2026/03/20/4", "https://access.redhat.com/security/cve/CVE-2026-30922", "https://github.com/pyasn1/pyasn1", "https://github.com/pyasn1/pyasn1/commit/25ad481c19fdb006e20485ef3fc2e5b3eff30ef0", "https://github.com/pyasn1/pyasn1/commit/5a49bd1fe93b5b866a1210f6bf0a3924f21572c8", "https://github.com/pyasn1/pyasn1/releases/tag/v0.6.3", "https://github.com/pyasn1/pyasn1/security/advisories/GHSA-jr27-m4p2-rc6r", "https://nvd.nist.gov/vuln/detail/CVE-2026-30922", "https://ubuntu.com/security/notices/USN-8129-1", "https://ubuntu.com/security/notices/USN-8134-1", "https://www.cve.org/CVERecord?id=CVE-2026-30922" ], "PublishedDate": "2026-03-18T04:17:18.397Z", "LastModifiedDate": "2026-03-21T01:17:06.36Z" }, { "VulnerabilityID": "CVE-2026-31826", "VendorIDs": [ "GHSA-hqmh-ppp3-xvm7" ], "PkgID": "pypdf@6.7.5", "PkgName": "pypdf", "PkgPath": "usr/lib/python3.13/site-packages/pypdf-6.7.5.dist-info/METADATA", "PkgIdentifier": { "PURL": "pkg:pypi/pypdf@6.7.5", "UID": "90c2f5cc00b89176", "BOMRef": "pkg:pypi/pypdf@6.7.5" }, "InstalledVersion": "6.7.5", "FixedVersion": "6.8.0", "Status": "fixed", "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "SeveritySource": "ghsa", "PrimaryURL": "https://avd.aquasec.com/nvd/cve-2026-31826", "DataSource": { "ID": "ghsa", "Name": "GitHub Security Advisory pip", "URL": "https://github.com/advisories?query=type%3Areviewed+ecosystem%3Apip" }, "Fingerprint": "sha256:83acccb9fe832cea5acd5848b243f57d9c8531998b3a0f43ede2dcc81bbd9d2b", "Title": "pypdf: pypdf: Denial of Service due to excessive memory consumption via crafted PDF", "Description": "pypdf is a free and open-source pure-python PDF library. Prior to 6.8.0, an attacker who uses this vulnerability can craft a PDF which leads to large memory usage. This requires parsing a content stream with a rather large /Length value, regardless of the actual data length inside the stream. This vulnerability is fixed in 6.8.0.", "Severity": "MEDIUM", "CweIDs": [ "CWE-770" ], "VendorSeverity": { "ghsa": 2, "nvd": 2, "redhat": 2 }, "CVSS": { "ghsa": { "V40Vector": "CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N", "V40Score": 6.8 }, "nvd": { "V3Vector": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H", "V3Score": 5.5 }, "redhat": { "V3Vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H", "V3Score": 6.5 } }, "References": [ "https://access.redhat.com/security/cve/CVE-2026-31826", "https://github.com/py-pdf/pypdf", "https://github.com/py-pdf/pypdf/commit/3c550b3196adeba1506a26e57c09c09fac75e9aa", "https://github.com/py-pdf/pypdf/pull/3675", "https://github.com/py-pdf/pypdf/releases/tag/6.8.0", "https://github.com/py-pdf/pypdf/security/advisories/GHSA-hqmh-ppp3-xvm7", "https://nvd.nist.gov/vuln/detail/CVE-2026-31826", "https://www.cve.org/CVERecord?id=CVE-2026-31826" ], "PublishedDate": "2026-03-10T22:16:20.483Z", "LastModifiedDate": "2026-03-17T20:52:08.673Z" }, { "VulnerabilityID": "CVE-2026-33123", "VendorIDs": [ "GHSA-qpxp-75px-xjcp" ], "PkgID": "pypdf@6.7.5", "PkgName": "pypdf", "PkgPath": "usr/lib/python3.13/site-packages/pypdf-6.7.5.dist-info/METADATA", "PkgIdentifier": { "PURL": "pkg:pypi/pypdf@6.7.5", "UID": "90c2f5cc00b89176", "BOMRef": "pkg:pypi/pypdf@6.7.5" }, "InstalledVersion": "6.7.5", "FixedVersion": "6.9.1", "Status": "fixed", "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "SeveritySource": "ghsa", "PrimaryURL": "https://avd.aquasec.com/nvd/cve-2026-33123", "DataSource": { "ID": "ghsa", "Name": "GitHub Security Advisory pip", "URL": "https://github.com/advisories?query=type%3Areviewed+ecosystem%3Apip" }, "Fingerprint": "sha256:f695aa4fcccad70a9e58cf194417264f9f3d6cb3b23e99c3be0dfe2106a78ef2", "Title": "pypdf: pypdf: Denial of Service due to excessive resource consumption from crafted PDF", "Description": "pypdf is a free and open-source pure-python PDF library. Versions prior to 6.9.1 allow an attacker to craft a malicious PDF which leads to long runtimes and/or large memory usage. Exploitation requires accessing an array-based stream with many entries. This issue has been fixed in version 6.9.1.", "Severity": "MEDIUM", "CweIDs": [ "CWE-400", "CWE-407" ], "VendorSeverity": { "ghsa": 2, "nvd": 2, "redhat": 2 }, "CVSS": { "ghsa": { "V40Vector": "CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N", "V40Score": 5.1 }, "nvd": { "V3Vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H", "V3Score": 6.5 }, "redhat": { "V3Vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L", "V3Score": 4.3 } }, "References": [ "https://access.redhat.com/security/cve/CVE-2026-33123", "https://github.com/py-pdf/pypdf", "https://github.com/py-pdf/pypdf/pull/3686", "https://github.com/py-pdf/pypdf/releases/tag/6.9.1", "https://github.com/py-pdf/pypdf/security/advisories/GHSA-qpxp-75px-xjcp", "https://nvd.nist.gov/vuln/detail/CVE-2026-33123", "https://www.cve.org/CVERecord?id=CVE-2026-33123" ], "PublishedDate": "2026-03-20T10:16:18.717Z", "LastModifiedDate": "2026-03-23T15:48:01.007Z" }, { "VulnerabilityID": "CVE-2026-33699", "VendorIDs": [ "GHSA-87mj-5ggw-8qc3" ], "PkgID": "pypdf@6.7.5", "PkgName": "pypdf", "PkgPath": "usr/lib/python3.13/site-packages/pypdf-6.7.5.dist-info/METADATA", "PkgIdentifier": { "PURL": "pkg:pypi/pypdf@6.7.5", "UID": "90c2f5cc00b89176", "BOMRef": "pkg:pypi/pypdf@6.7.5" }, "InstalledVersion": "6.7.5", "FixedVersion": "6.9.2", "Status": "fixed", "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "SeveritySource": "ghsa", "PrimaryURL": "https://avd.aquasec.com/nvd/cve-2026-33699", "DataSource": { "ID": "ghsa", "Name": "GitHub Security Advisory pip", "URL": "https://github.com/advisories?query=type%3Areviewed+ecosystem%3Apip" }, "Fingerprint": "sha256:c1666b89c933728c6fdbc88c38b7c71d750b30b00f7c638cfd28d02971a99aa3", "Title": "pypdf: pypdf: Denial of Service via crafted PDF in non-strict mode", "Description": "pypdf is a free and open-source pure-python PDF library. Versions prior to 6.9.2 have a vulnerability in which an attacker can craft a PDF which leads to an infinite loop. This requires reading a file in non-strict mode. This has been fixed in pypdf 6.9.2. If users cannot upgrade yet, consider applying the changes from the patch manually.", "Severity": "MEDIUM", "CweIDs": [ "CWE-835" ], "VendorSeverity": { "ghsa": 2, "nvd": 3, "redhat": 2 }, "CVSS": { "ghsa": { "V40Vector": "CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U", "V40Score": 4.6 }, "nvd": { "V3Vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "V3Score": 7.5 }, "redhat": { "V3Vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H", "V3Score": 6.5 } }, "References": [ "https://access.redhat.com/security/cve/CVE-2026-33699", "https://github.com/py-pdf/pypdf", "https://github.com/py-pdf/pypdf/pull/3693", "https://github.com/py-pdf/pypdf/releases/tag/6.9.2", "https://github.com/py-pdf/pypdf/security/advisories/GHSA-87mj-5ggw-8qc3", "https://nvd.nist.gov/vuln/detail/CVE-2026-33699", "https://www.cve.org/CVERecord?id=CVE-2026-33699" ], "PublishedDate": "2026-03-27T01:16:19.147Z", "LastModifiedDate": "2026-04-01T16:01:35.88Z" }, { "VulnerabilityID": "CVE-2026-25645", "VendorIDs": [ "GHSA-gc5v-m9x4-r6x2" ], "PkgID": "requests@2.32.5", "PkgName": "requests", "PkgPath": "usr/lib/python3.13/site-packages/requests-2.32.5.dist-info/METADATA", "PkgIdentifier": { "PURL": "pkg:pypi/requests@2.32.5", "UID": "d2fc36737ad7522d", "BOMRef": "pkg:pypi/requests@2.32.5" }, "InstalledVersion": "2.32.5", "FixedVersion": "2.33.0", "Status": "fixed", "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "SeveritySource": "ghsa", "PrimaryURL": "https://avd.aquasec.com/nvd/cve-2026-25645", "DataSource": { "ID": "ghsa", "Name": "GitHub Security Advisory pip", "URL": "https://github.com/advisories?query=type%3Areviewed+ecosystem%3Apip" }, "Fingerprint": "sha256:2b3005b07dc5a6b7e5412ddcf35545abddc5483e79b217a7af964879fbbeb4d4", "Title": "requests: Requests: Security bypass due to predictable temporary file creation", "Description": "Requests is a HTTP library. Prior to version 2.33.0, the `requests.utils.extract_zipped_paths()` utility function uses a predictable filename when extracting files from zip archives into the system temporary directory. If the target file already exists, it is reused without validation. A local attacker with write access to the temp directory could pre-create a malicious file that would be loaded in place of the legitimate one. Standard usage of the Requests library is not affected by this vulnerability. Only applications that call `extract_zipped_paths()` directly are impacted. Starting in version 2.33.0, the library extracts files to a non-deterministic location. If developers are unable to upgrade, they can set `TMPDIR` in their environment to a directory with restricted write access.", "Severity": "MEDIUM", "CweIDs": [ "CWE-377" ], "VendorSeverity": { "ghsa": 2, "nvd": 2, "redhat": 2 }, "CVSS": { "ghsa": { "V3Vector": "CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:N/I:H/A:N", "V3Score": 4.4 }, "nvd": { "V3Vector": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N", "V3Score": 5.5 }, "redhat": { "V3Vector": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:N", "V3Score": 4.7 } }, "References": [ "https://access.redhat.com/security/cve/CVE-2026-25645", "https://github.com/psf/requests", "https://github.com/psf/requests/commit/66d21cb07bd6255b1280291c4fafb71803cdb3b7", "https://github.com/psf/requests/releases/tag/v2.33.0", "https://github.com/psf/requests/security/advisories/GHSA-gc5v-m9x4-r6x2", "https://nvd.nist.gov/vuln/detail/CVE-2026-25645", "https://www.cve.org/CVERecord?id=CVE-2026-25645" ], "PublishedDate": "2026-03-25T17:16:52.97Z", "LastModifiedDate": "2026-03-30T14:23:16.127Z" }, { "VulnerabilityID": "CVE-2026-31958", "VendorIDs": [ "GHSA-qjxf-f2mg-c6mc" ], "PkgID": "tornado@6.5.4", "PkgName": "tornado", "PkgPath": "usr/lib/python3.13/site-packages/tornado-6.5.4.dist-info/METADATA", "PkgIdentifier": { "PURL": "pkg:pypi/tornado@6.5.4", "UID": "ec5673e3ec07ee52", "BOMRef": "pkg:pypi/tornado@6.5.4" }, "InstalledVersion": "6.5.4", "FixedVersion": "6.5.5", "Status": "fixed", "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "SeveritySource": "ghsa", "PrimaryURL": "https://avd.aquasec.com/nvd/cve-2026-31958", "DataSource": { "ID": "ghsa", "Name": "GitHub Security Advisory pip", "URL": "https://github.com/advisories?query=type%3Areviewed+ecosystem%3Apip" }, "Fingerprint": "sha256:10b5831ac0a0f1c5feae09fe9ece4ce967a81416be39c47bd967452119025f77", "Title": "tornado-python: Tornado: Denial of Service via large multipart bodies", "Description": "Tornado is a Python web framework and asynchronous networking library. In versions of Tornado prior to 6.5.5, the only limit on the number of parts in multipart/form-data is the max_body_size setting (default 100MB). Since parsing occurs synchronously on the main thread, this creates the possibility of denial-of-service due to the cost of parsing very large multipart bodies with many parts. This vulnerability is fixed in 6.5.5.", "Severity": "HIGH", "CweIDs": [ "CWE-400" ], "VendorSeverity": { "amazon": 3, "ghsa": 3, "nvd": 3, "redhat": 2 }, "CVSS": { "ghsa": { "V40Vector": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N", "V40Score": 8.7 }, "nvd": { "V3Vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "V3Score": 7.5 }, "redhat": { "V3Vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L", "V3Score": 5.3 } }, "References": [ "https://access.redhat.com/security/cve/CVE-2026-31958", "https://github.com/tornadoweb/tornado", "https://github.com/tornadoweb/tornado/commit/119a195e290c43ad2d63a2cf012c29d43d6ed839", "https://github.com/tornadoweb/tornado/releases/tag/v6.5.5", "https://github.com/tornadoweb/tornado/security/advisories/GHSA-qjxf-f2mg-c6mc", "https://lists.debian.org/debian-lts-announce/2026/04/msg00000.html", "https://nvd.nist.gov/vuln/detail/CVE-2026-31958", "https://www.cve.org/CVERecord?id=CVE-2026-31958" ], "PublishedDate": "2026-03-11T20:16:16.617Z", "LastModifiedDate": "2026-04-01T15:23:00.217Z" }, { "VulnerabilityID": "GHSA-78cv-mqj4-43f7", "PkgID": "tornado@6.5.4", "PkgName": "tornado", "PkgPath": "usr/lib/python3.13/site-packages/tornado-6.5.4.dist-info/METADATA", "PkgIdentifier": { "PURL": "pkg:pypi/tornado@6.5.4", "UID": "ec5673e3ec07ee52", "BOMRef": "pkg:pypi/tornado@6.5.4" }, "InstalledVersion": "6.5.4", "FixedVersion": "6.5.5", "Status": "fixed", "Layer": { "Digest": "sha256:37b648ed11690f7cd5c84b7e453eaf2a9ce063b15950adc9ffe473d59be6a6a9", "DiffID": "sha256:b7cb5eb2d9ac6b1f06901f21fd4aeb037728c399aab4565ac6c2b15cf9aae805" }, "SeveritySource": "ghsa", "PrimaryURL": "https://github.com/advisories/GHSA-78cv-mqj4-43f7", "DataSource": { "ID": "ghsa", "Name": "GitHub Security Advisory pip", "URL": "https://github.com/advisories?query=type%3Areviewed+ecosystem%3Apip" }, "Fingerprint": "sha256:f1ac92fd089dcd90594868f05741f3d0f04d06b7805421f130ef6c9c03c5ab43", "Title": "Tornado has incomplete validation of cookie attributes", "Description": "Values passed to the `domain`, `path`, and `samesite` arguments of `RequestHandler.set_cookie` were not completely validated in versions of Tornado prior to 6.5.5. In particular, semicolons would be allowed, which could be used to inject attacker-controlled values for other cookie attributes.", "Severity": "MEDIUM", "VendorSeverity": { "ghsa": 2 }, "CVSS": { "ghsa": { "V3Vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N", "V3Score": 5.4 } }, "References": [ "https://github.com/tornadoweb/tornado", "https://github.com/tornadoweb/tornado/commit/24a2d96ea115f663b223887deb0060f13974c104", "https://github.com/tornadoweb/tornado/releases/tag/v6.5.5", "https://github.com/tornadoweb/tornado/security/advisories/GHSA-78cv-mqj4-43f7" ], "PublishedDate": "2026-03-11T22:17:00Z", "LastModifiedDate": "2026-03-11T22:17:00Z" } ] } ] }