{ "SchemaVersion": 2, "Trivy": { "Version": "0.69.3" }, "ReportID": "019d57b3-4e2e-7836-a7ea-5a181c2296c7", "CreatedAt": "2026-04-04T08:54:21.998539382Z", "ArtifactName": "sboms/ai-containers-litellm-database-v1.82.0-stable-cyclonedx.json", "ArtifactType": "cyclonedx", "Metadata": { "OS": { "Family": "wolfi", "Name": "20230201" }, "ImageID": "sha256:f74177bdceb6d89b935b8ae612d287b5151d64651f9dfffcff9f61b3944628d2", "DiffIDs": [ "sha256:0ca5b90390ffc2b81530c1e54e9f05da14daa76392db8e5458f413ccdf3e0e50", "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19", "sha256:1c2de32430e076ddbd78f498eefcf1678f1d584007214b2ad1cf42a06d005fb7", "sha256:1f7b804e2e3b2ce78f108ce6ea8e3c5c42309860a59a5342e101ba77669d8a92", "sha256:20ca8f2ade98548df7b9a0182bfced0032d7d9f9243fa8e450e155f6d775f343", "sha256:262943d207160d4b6ffd7fe53e09785fb644543aa8c36322a557505b34a70f8a", "sha256:298bacf2e4ef81e719540c35d6f5d69de916d42407dd597c2cc217fa3fed9ea5", "sha256:2c145404ffda4666ef88a1a0fac1fbfc337d9041b636a43c9b49ce2f21fd17e5", "sha256:32c2c5317cc0de9e8b16331a58c07ce45247b922843db9f1c8051235e8546db8", "sha256:3c4c0ce74b878ea405f85f153d6eb899522b463188491a3300520b1ec8bcf4c2", "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed", "sha256:5f70bf18a086007016e948b04aed3b82103a36bea41755b6cddfaf10ace3c6ef", "sha256:5f70bf18a086007016e948b04aed3b82103a36bea41755b6cddfaf10ace3c6ef", "sha256:6562679d109c939489d457fcbd6d961c9d5f592f316cefcb2e62fa595199797a", "sha256:70991d5976e247cb33ca1923edd3f609e6c23f527dbe62b838d6a03c0bca6453", "sha256:776af0cc4b9c37096ab58be7bdedb3e305944cea188ffdf333ea367d251c16f4", "sha256:7cef67a962a4445f04654f4c8db7497ff769698c460075e6756bb447759fb176", "sha256:96555d3e3ceac8f92f07b6b4043087d35b64b8941622e391e8b2a0cfd2314523", "sha256:a78ae94e757ae1e2a38a023cd7c68218e0942da1e143576725a69ae9a7848959", "sha256:a80c931912f720d92ecc3b4d4bb757b5604caddb3a69914463a7f41e257ccbf5", "sha256:ad86429df4ed7d915aa92a1383286e4eb50a04cfd5d8bef75864e3da11c2f440", "sha256:b6720ddd1f3469ba96b630aad02a64792f72caa3861c1b6634ad948f78329e4a", "sha256:b8195249dcd92d2c0519946f0a9f9d9ec7b88e9a19b5f83bc156103a39d5ab50", "sha256:c7026b5cc891045e66209e27b66b9b9ea4bdb8d1af9089327834862b634a42a3", "sha256:cae7bc74f48337ce5362ef3a381bc6781d6f5003e357aaff2316c8c31f8648fe", "sha256:e05b0b293682faac8a65109c652c8aaeb101ceeb74342690da19a05cc503c828", "sha256:f07f5825514b80a51e230f22f755f6fae37190314bc4e2fa6f341e54e4a76563", "sha256:f090c2a35af33ca049060ef37127ca198cc5368703173dce6c070586e8554103", "sha256:f6a5d20debd3cc3322c8b1e7aab8c8a675e8a2f8b0be1fa3662913bbc080322e" ], "RepoDigests": [ "registry.suse.com/ai/containers/litellm-database@sha256:46c6cb20b1eda18a30a03b9a02b5e73a84926a952039f3e89fee2b364da01262" ], "Reference": "registry.suse.com/ai/containers/litellm-database@sha256:46c6cb20b1eda18a30a03b9a02b5e73a84926a952039f3e89fee2b364da01262" }, "Results": [ { "Target": "sboms/ai-containers-litellm-database-v1.82.0-stable-cyclonedx.json (wolfi 20230201)", "Class": "os-pkgs", "Type": "wolfi", "Packages": [ { "ID": "alsa-lib@1.2.15.3-r2", "Name": "alsa-lib", "Identifier": { "PURL": "pkg:apk/wolfi/alsa-lib@1.2.15.3-r2?arch=x86_64\u0026distro=20230201", "UID": "ea5fe3a16a1f5242", "BOMRef": "pkg:apk/wolfi/alsa-lib@1.2.15.3-r2?arch=x86_64\u0026distro=20230201" }, "Version": "1.2.15.3-r2", "Arch": "x86_64", "SrcName": "alsa-lib", "SrcVersion": "1.2.15.3-r2", "Licenses": [ "LGPL-2.1-or-later" ], "DependsOn": [ "glibc@2.43-r2", "ld-linux@2.43-r2" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "Digest": "sha1:deef1826e26a478c09375db55027303dd7cf108c" }, { "ID": "apk-tools@2.14.10-r10", "Name": "apk-tools", "Identifier": { "PURL": "pkg:apk/wolfi/apk-tools@2.14.10-r10?arch=x86_64\u0026distro=20230201", "UID": "4fa428ac4ab63aad", "BOMRef": "pkg:apk/wolfi/apk-tools@2.14.10-r10?arch=x86_64\u0026distro=20230201" }, "Version": "2.14.10-r10", "Arch": "x86_64", "SrcName": "apk-tools", "SrcVersion": "2.14.10-r10", "Licenses": [ "GPL-2.0-only" ], "DependsOn": [ "ca-certificates-bundle@20251003-r4", "glibc@2.43-r2", "ld-linux@2.43-r2", "libcrypto3@3.6.1-r2", "libssl3@3.6.1-r2", "wolfi-baselayout@20230201-r28", "zlib@1.3.2-r2" ], "Layer": { "Digest": "sha256:1d53393b78f00c417dbc484afee224f386ba037746127e62a4bc86b6ad11daa1", "DiffID": "sha256:6562679d109c939489d457fcbd6d961c9d5f592f316cefcb2e62fa595199797a" }, "Digest": "sha1:360094f42540d8f16177f251916e29619be762fe" }, { "ID": "bash@5.3-r5", "Name": "bash", "Identifier": { "PURL": "pkg:apk/wolfi/bash@5.3-r5?arch=x86_64\u0026distro=20230201", "UID": "97d691d66d1a939d", "BOMRef": "pkg:apk/wolfi/bash@5.3-r5?arch=x86_64\u0026distro=20230201" }, "Version": "5.3-r5", "Arch": "x86_64", "SrcName": "bash", "SrcVersion": "5.3-r5", "Licenses": [ "GPL-3.0-or-later" ], "DependsOn": [ "glibc@2.43-r2", "ld-linux@2.43-r2", "ncurses@6.6_p20251230-r6", "wolfi-baselayout@20230201-r28" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "Digest": "sha1:9dd00dcd7654147d2998f5b11213adb52cae5ad2" }, { "ID": "busybox@1.37.0-r54", "Name": "busybox", "Identifier": { "PURL": "pkg:apk/wolfi/busybox@1.37.0-r54?arch=x86_64\u0026distro=20230201", "UID": "3e07ee38d52bf54a", "BOMRef": "pkg:apk/wolfi/busybox@1.37.0-r54?arch=x86_64\u0026distro=20230201" }, "Version": "1.37.0-r54", "Arch": "x86_64", "SrcName": "busybox", "SrcVersion": "1.37.0-r54", "Licenses": [ "GPL-2.0-only" ], "DependsOn": [ "glibc@2.43-r2", "ld-linux@2.43-r2", "libcrypt1@2.43-r2", "wolfi-baselayout@20230201-r28" ], "Layer": { "Digest": "sha256:3f02fc482423f53d1d5bfdf6094776ebe0b7eba4617489f96d32e6c61ac92d92", "DiffID": "sha256:1f7b804e2e3b2ce78f108ce6ea8e3c5c42309860a59a5342e101ba77669d8a92" }, "Digest": "sha1:dfbfdd4815b2ce870ce5a428f10f6ad21a1f549a" }, { "ID": "c-ares@1.34.6-r1", "Name": "c-ares", "Identifier": { "PURL": "pkg:apk/wolfi/c-ares@1.34.6-r1?arch=x86_64\u0026distro=20230201", "UID": "c7844c2d1d807e26", "BOMRef": "pkg:apk/wolfi/c-ares@1.34.6-r1?arch=x86_64\u0026distro=20230201" }, "Version": "1.34.6-r1", "Arch": "x86_64", "SrcName": "c-ares", "SrcVersion": "1.34.6-r1", "Licenses": [ "MIT" ], "DependsOn": [ "glibc@2.43-r2" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "Digest": "sha1:17cd991000c04dddb6056ab57579e856ac9b7b19" }, { "ID": "ca-certificates-bundle@20251003-r4", "Name": "ca-certificates-bundle", "Identifier": { "PURL": "pkg:apk/wolfi/ca-certificates-bundle@20251003-r4?arch=x86_64\u0026distro=20230201", "UID": "a90cf71361c4b566", "BOMRef": "pkg:apk/wolfi/ca-certificates-bundle@20251003-r4?arch=x86_64\u0026distro=20230201" }, "Version": "20251003-r4", "Arch": "x86_64", "SrcName": "ca-certificates", "SrcVersion": "20251003-r4", "Licenses": [ "MPL-2.0", "MIT" ], "DependsOn": [ "wolfi-baselayout@20230201-r28" ], "Layer": { "Digest": "sha256:eb24aa11caec19241353d008733c3356f6786c2db8e9cd7e360181b29317b9cc", "DiffID": "sha256:f07f5825514b80a51e230f22f755f6fae37190314bc4e2fa6f341e54e4a76563" }, "Digest": "sha1:09777f5d1f5b06973aafd1acd261a3c900d4fc7f" }, { "ID": "gdbm@1.26-r2", "Name": "gdbm", "Identifier": { "PURL": "pkg:apk/wolfi/gdbm@1.26-r2?arch=x86_64\u0026distro=20230201", "UID": "fd242b376fb2ba0f", "BOMRef": "pkg:apk/wolfi/gdbm@1.26-r2?arch=x86_64\u0026distro=20230201" }, "Version": "1.26-r2", "Arch": "x86_64", "SrcName": "gdbm", "SrcVersion": "1.26-r2", "Licenses": [ "GPL-3.0-or-later" ], "DependsOn": [ "glibc@2.43-r2", "ld-linux@2.43-r2" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "Digest": "sha1:375d22e56a0c032b92b8f3bd9eb4112e7864fb25" }, { "ID": "glibc@2.43-r2", "Name": "glibc", "Identifier": { "PURL": "pkg:apk/wolfi/glibc@2.43-r2?arch=x86_64\u0026distro=20230201", "UID": "f0830c968d2f8860", "BOMRef": "pkg:apk/wolfi/glibc@2.43-r2?arch=x86_64\u0026distro=20230201" }, "Version": "2.43-r2", "Arch": "x86_64", "SrcName": "glibc", "SrcVersion": "2.43-r2", "Licenses": [ "LGPL-2.1-or-later" ], "DependsOn": [ "glibc-locale-posix@2.43-r2", "ld-linux@2.43-r2", "libgcc@15.2.0-r11", "wolfi-baselayout@20230201-r28" ], "Layer": { "Digest": "sha256:ffdea549da14a0907a605f520d5d7d74c27b4113af015d68d9bb498f02602701", "DiffID": "sha256:1c2de32430e076ddbd78f498eefcf1678f1d584007214b2ad1cf42a06d005fb7" }, "Digest": "sha1:0a86f790ec5a4d3441a3883604e4a6903ac3d155" }, { "ID": "glibc-locale-posix@2.43-r2", "Name": "glibc-locale-posix", "Identifier": { "PURL": "pkg:apk/wolfi/glibc-locale-posix@2.43-r2?arch=x86_64\u0026distro=20230201", "UID": "de4bfc79c18bed05", "BOMRef": "pkg:apk/wolfi/glibc-locale-posix@2.43-r2?arch=x86_64\u0026distro=20230201" }, "Version": "2.43-r2", "Arch": "x86_64", "SrcName": "glibc", "SrcVersion": "2.43-r2", "Licenses": [ "LGPL-2.1-or-later" ], "DependsOn": [ "wolfi-baselayout@20230201-r28" ], "Layer": { "Digest": "sha256:ffdea549da14a0907a605f520d5d7d74c27b4113af015d68d9bb498f02602701", "DiffID": "sha256:1c2de32430e076ddbd78f498eefcf1678f1d584007214b2ad1cf42a06d005fb7" }, "Digest": "sha1:c189d222e529ba871b25d81b5bb5c83db53a24ac" }, { "ID": "icu78-data-full@78.2-r1", "Name": "icu78-data-full", "Identifier": { "PURL": "pkg:apk/wolfi/icu78-data-full@78.2-r1?arch=x86_64\u0026distro=20230201", "UID": "7c9775fd9532363a", "BOMRef": "pkg:apk/wolfi/icu78-data-full@78.2-r1?arch=x86_64\u0026distro=20230201" }, "Version": "78.2-r1", "Arch": "x86_64", "SrcName": "icu", "SrcVersion": "78.2-r1", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "Digest": "sha1:c848dc2d4a4f9bacdb53aec25fb4e76f70859b61" }, { "ID": "ld-linux@2.43-r2", "Name": "ld-linux", "Identifier": { "PURL": "pkg:apk/wolfi/ld-linux@2.43-r2?arch=x86_64\u0026distro=20230201", "UID": "5d95e150843b6e9b", "BOMRef": "pkg:apk/wolfi/ld-linux@2.43-r2?arch=x86_64\u0026distro=20230201" }, "Version": "2.43-r2", "Arch": "x86_64", "SrcName": "glibc", "SrcVersion": "2.43-r2", "Licenses": [ "LGPL-2.1-or-later" ], "DependsOn": [ "glibc@2.43-r2", "wolfi-baselayout@20230201-r28" ], "Layer": { "Digest": "sha256:ffdea549da14a0907a605f520d5d7d74c27b4113af015d68d9bb498f02602701", "DiffID": "sha256:1c2de32430e076ddbd78f498eefcf1678f1d584007214b2ad1cf42a06d005fb7" }, "Digest": "sha1:11808daa25be322e3b534fe454b184d4553168c6" }, { "ID": "libbrotlicommon1@1.2.0-r2", "Name": "libbrotlicommon1", "Identifier": { "PURL": "pkg:apk/wolfi/libbrotlicommon1@1.2.0-r2?arch=x86_64\u0026distro=20230201", "UID": "e1e798899a938f23", "BOMRef": "pkg:apk/wolfi/libbrotlicommon1@1.2.0-r2?arch=x86_64\u0026distro=20230201" }, "Version": "1.2.0-r2", "Arch": "x86_64", "SrcName": "brotli", "SrcVersion": "1.2.0-r2", "Licenses": [ "MIT" ], "DependsOn": [ "glibc@2.43-r2" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "Digest": "sha1:48e7c83635558d69d01ec95d18a5bd8314531a57" }, { "ID": "libbrotlidec1@1.2.0-r2", "Name": "libbrotlidec1", "Identifier": { "PURL": "pkg:apk/wolfi/libbrotlidec1@1.2.0-r2?arch=x86_64\u0026distro=20230201", "UID": "2adaef548a9e3611", "BOMRef": "pkg:apk/wolfi/libbrotlidec1@1.2.0-r2?arch=x86_64\u0026distro=20230201" }, "Version": "1.2.0-r2", "Arch": "x86_64", "SrcName": "brotli", "SrcVersion": "1.2.0-r2", "Licenses": [ "MIT" ], "DependsOn": [ "glibc@2.43-r2", "libbrotlicommon1@1.2.0-r2" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "Digest": "sha1:92b67ffd8fbe216fdd069346ad59dc57ecaf60eb" }, { "ID": "libbrotlienc1@1.2.0-r2", "Name": "libbrotlienc1", "Identifier": { "PURL": "pkg:apk/wolfi/libbrotlienc1@1.2.0-r2?arch=x86_64\u0026distro=20230201", "UID": "3bce70dd045e3ac9", "BOMRef": "pkg:apk/wolfi/libbrotlienc1@1.2.0-r2?arch=x86_64\u0026distro=20230201" }, "Version": "1.2.0-r2", "Arch": "x86_64", "SrcName": "brotli", "SrcVersion": "1.2.0-r2", "Licenses": [ "MIT" ], "DependsOn": [ "glibc@2.43-r2", "libbrotlicommon1@1.2.0-r2" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "Digest": "sha1:0370c0c32d1f0a55bf9a85150d122e052598e46d" }, { "ID": "libbz2-1@1.0.8-r23", "Name": "libbz2-1", "Identifier": { "PURL": "pkg:apk/wolfi/libbz2-1@1.0.8-r23?arch=x86_64\u0026distro=20230201", "UID": "4659f871f5af9b2f", "BOMRef": "pkg:apk/wolfi/libbz2-1@1.0.8-r23?arch=x86_64\u0026distro=20230201" }, "Version": "1.0.8-r23", "Arch": "x86_64", "SrcName": "bzip2", "SrcVersion": "1.0.8-r23", "Licenses": [ "MPL-2.0", "MIT" ], "DependsOn": [ "glibc@2.43-r2" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "Digest": "sha1:7fc1bbc3ec68d43ae5212efbc33827d139624ada" }, { "ID": "libcrypt1@2.43-r2", "Name": "libcrypt1", "Identifier": { "PURL": "pkg:apk/wolfi/libcrypt1@2.43-r2?arch=x86_64\u0026distro=20230201", "UID": "af184fa48a83ce11", "BOMRef": "pkg:apk/wolfi/libcrypt1@2.43-r2?arch=x86_64\u0026distro=20230201" }, "Version": "2.43-r2", "Arch": "x86_64", "SrcName": "glibc", "SrcVersion": "2.43-r2", "Licenses": [ "LGPL-2.1-or-later" ], "DependsOn": [ "glibc@2.43-r2", "libxcrypt@4.5.2-r2", "wolfi-baselayout@20230201-r28" ], "Layer": { "Digest": "sha256:ffdea549da14a0907a605f520d5d7d74c27b4113af015d68d9bb498f02602701", "DiffID": "sha256:1c2de32430e076ddbd78f498eefcf1678f1d584007214b2ad1cf42a06d005fb7" }, "Digest": "sha1:adc48890987f5afe7eebce11da5ccba30f21feb1" }, { "ID": "libcrypto3@3.6.1-r2", "Name": "libcrypto3", "Identifier": { "PURL": "pkg:apk/wolfi/libcrypto3@3.6.1-r2?arch=x86_64\u0026distro=20230201", "UID": "885ab4fa55c14236", "BOMRef": "pkg:apk/wolfi/libcrypto3@3.6.1-r2?arch=x86_64\u0026distro=20230201" }, "Version": "3.6.1-r2", "Arch": "x86_64", "SrcName": "openssl", "SrcVersion": "3.6.1-r2", "Licenses": [ "Apache-2.0" ], "DependsOn": [ "glibc@2.43-r2" ], "Layer": { "Digest": "sha256:8b7b5281edc4c60abdd5b11639fc31a70145a71e9159adfb065613716727dcf9", "DiffID": "sha256:a80c931912f720d92ecc3b4d4bb757b5604caddb3a69914463a7f41e257ccbf5" }, "Digest": "sha1:fae7c32c54054adcdeb4ce2c4f7b767dd662a5c3" }, { "ID": "libexpat1@2.7.4-r4", "Name": "libexpat1", "Identifier": { "PURL": "pkg:apk/wolfi/libexpat1@2.7.4-r4?arch=x86_64\u0026distro=20230201", "UID": "7af95a46ccc83d", "BOMRef": "pkg:apk/wolfi/libexpat1@2.7.4-r4?arch=x86_64\u0026distro=20230201" }, "Version": "2.7.4-r4", "Arch": "x86_64", "SrcName": "expat", "SrcVersion": "2.7.4-r4", "Licenses": [ "MIT" ], "DependsOn": [ "glibc@2.43-r2" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "Digest": "sha1:7ae4627bc44239ed904d89545e2c6c7f718384f7" }, { "ID": "libffi@3.5.2-r1", "Name": "libffi", "Identifier": { "PURL": "pkg:apk/wolfi/libffi@3.5.2-r1?arch=x86_64\u0026distro=20230201", "UID": "4a449a7701afc03e", "BOMRef": "pkg:apk/wolfi/libffi@3.5.2-r1?arch=x86_64\u0026distro=20230201" }, "Version": "3.5.2-r1", "Arch": "x86_64", "SrcName": "libffi", "SrcVersion": "3.5.2-r1", "Licenses": [ "MIT" ], "DependsOn": [ "glibc@2.43-r2" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "Digest": "sha1:ce40e7d1f8951ac77983c4e263e2d7b04b194c17" }, { "ID": "libflac@1.4.3-r5", "Name": "libflac", "Identifier": { "PURL": "pkg:apk/wolfi/libflac@1.4.3-r5?arch=x86_64\u0026distro=20230201", "UID": "1d035f50ef0e3d85", "BOMRef": "pkg:apk/wolfi/libflac@1.4.3-r5?arch=x86_64\u0026distro=20230201" }, "Version": "1.4.3-r5", "Arch": "x86_64", "SrcName": "flac", "SrcVersion": "1.4.3-r5", "Licenses": [ "BSD-3-Clause", "GPL-2.0-or-later" ], "DependsOn": [ "glibc@2.43-r2", "libogg@1.3.6-r5" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "Digest": "sha1:9f85a0f6948efb6edb5a9108403306d5c5eefe79" }, { "ID": "libgcc@15.2.0-r11", "Name": "libgcc", "Identifier": { "PURL": "pkg:apk/wolfi/libgcc@15.2.0-r11?arch=x86_64\u0026distro=20230201", "UID": "1ce2ecea161d94ec", "BOMRef": "pkg:apk/wolfi/libgcc@15.2.0-r11?arch=x86_64\u0026distro=20230201" }, "Version": "15.2.0-r11", "Arch": "x86_64", "SrcName": "gcc", "SrcVersion": "15.2.0-r11", "Licenses": [ "GPL-3.0-or-later WITH GCC-exception-3.1" ], "DependsOn": [ "glibc@2.43-r2", "ld-linux@2.43-r2" ], "Layer": { "Digest": "sha256:b7f1816b5f236acfb30211376d2d7c9dd153c13c62552bfed9e05c90a9327c5d", "DiffID": "sha256:298bacf2e4ef81e719540c35d6f5d69de916d42407dd597c2cc217fa3fed9ea5" }, "Digest": "sha1:4fa93095cd3434a2fac19dc1b730b36788cce9c2" }, { "ID": "libicu78@78.2-r1", "Name": "libicu78", "Identifier": { "PURL": "pkg:apk/wolfi/libicu78@78.2-r1?arch=x86_64\u0026distro=20230201", "UID": "b73bbe349236e149", "BOMRef": "pkg:apk/wolfi/libicu78@78.2-r1?arch=x86_64\u0026distro=20230201" }, "Version": "78.2-r1", "Arch": "x86_64", "SrcName": "icu", "SrcVersion": "78.2-r1", "Licenses": [ "MIT" ], "DependsOn": [ "glibc@2.43-r2", "icu78-data-full@78.2-r1", "ld-linux@2.43-r2", "libgcc@15.2.0-r11", "libstdc++@15.2.0-r11" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "Digest": "sha1:95797bfe7214ad198687934d3929134286655046" }, { "ID": "libnghttp2-14@1.68.0-r1", "Name": "libnghttp2-14", "Identifier": { "PURL": "pkg:apk/wolfi/libnghttp2-14@1.68.0-r1?arch=x86_64\u0026distro=20230201", "UID": "7968728c9025d1cc", "BOMRef": "pkg:apk/wolfi/libnghttp2-14@1.68.0-r1?arch=x86_64\u0026distro=20230201" }, "Version": "1.68.0-r1", "Arch": "x86_64", "SrcName": "nghttp2", "SrcVersion": "1.68.0-r1", "Licenses": [ "MIT" ], "DependsOn": [ "glibc@2.43-r2" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "Digest": "sha1:51db5560582e98f33ac7d85cce1255191c92a3f3" }, { "ID": "libogg@1.3.6-r5", "Name": "libogg", "Identifier": { "PURL": "pkg:apk/wolfi/libogg@1.3.6-r5?arch=x86_64\u0026distro=20230201", "UID": "4474798f854a6249", "BOMRef": "pkg:apk/wolfi/libogg@1.3.6-r5?arch=x86_64\u0026distro=20230201" }, "Version": "1.3.6-r5", "Arch": "x86_64", "SrcName": "libogg", "SrcVersion": "1.3.6-r5", "Licenses": [ "BSD-3-Clause" ], "DependsOn": [ "glibc@2.43-r2" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "Digest": "sha1:aeda85d2bd794348446ec0cb63acf3f53ae8890c" }, { "ID": "libsndfile@1.2.2-r2", "Name": "libsndfile", "Identifier": { "PURL": "pkg:apk/wolfi/libsndfile@1.2.2-r2?arch=x86_64\u0026distro=20230201", "UID": "40fa3ccc7bb9a147", "BOMRef": "pkg:apk/wolfi/libsndfile@1.2.2-r2?arch=x86_64\u0026distro=20230201" }, "Version": "1.2.2-r2", "Arch": "x86_64", "SrcName": "libsndfile", "SrcVersion": "1.2.2-r2", "Licenses": [ "LGPL-2.1-or-later" ], "DependsOn": [ "alsa-lib@1.2.15.3-r2", "glibc@2.43-r2", "ld-linux@2.43-r2", "libflac@1.4.3-r5", "libogg@1.3.6-r5", "libvorbis@1.3.7-r8", "opus@1.6.1-r3" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "Digest": "sha1:222cf6c756b25d6aaf54884c124f7291afbb16ad" }, { "ID": "libssl3@3.6.1-r2", "Name": "libssl3", "Identifier": { "PURL": "pkg:apk/wolfi/libssl3@3.6.1-r2?arch=x86_64\u0026distro=20230201", "UID": "74f6bd603c6e0818", "BOMRef": "pkg:apk/wolfi/libssl3@3.6.1-r2?arch=x86_64\u0026distro=20230201" }, "Version": "3.6.1-r2", "Arch": "x86_64", "SrcName": "openssl", "SrcVersion": "3.6.1-r2", "Licenses": [ "Apache-2.0" ], "DependsOn": [ "glibc@2.43-r2", "libcrypto3@3.6.1-r2" ], "Layer": { "Digest": "sha256:8b7b5281edc4c60abdd5b11639fc31a70145a71e9159adfb065613716727dcf9", "DiffID": "sha256:a80c931912f720d92ecc3b4d4bb757b5604caddb3a69914463a7f41e257ccbf5" }, "Digest": "sha1:13c4a5220abf531fa3fc402f09f5eab38af79f17" }, { "ID": "libstdc++@15.2.0-r11", "Name": "libstdc++", "Identifier": { "PURL": "pkg:apk/wolfi/libstdc%2B%2B@15.2.0-r11?arch=x86_64\u0026distro=20230201", "UID": "911ac5091b89a0b2", "BOMRef": "pkg:apk/wolfi/libstdc%2B%2B@15.2.0-r11?arch=x86_64\u0026distro=20230201" }, "Version": "15.2.0-r11", "Arch": "x86_64", "SrcName": "gcc", "SrcVersion": "15.2.0-r11", "Licenses": [ "GPL-3.0-or-later WITH GCC-exception-3.1" ], "DependsOn": [ "glibc@2.43-r2", "ld-linux@2.43-r2", "libgcc@15.2.0-r11" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "Digest": "sha1:b22452d0234c696e58c40c181e2eb7689fb2f98a" }, { "ID": "libuuid@2.41.3-r6", "Name": "libuuid", "Identifier": { "PURL": "pkg:apk/wolfi/libuuid@2.41.3-r6?arch=x86_64\u0026distro=20230201", "UID": "1c6a2455e98c2cf6", "BOMRef": "pkg:apk/wolfi/libuuid@2.41.3-r6?arch=x86_64\u0026distro=20230201" }, "Version": "2.41.3-r6", "Arch": "x86_64", "SrcName": "util-linux", "SrcVersion": "2.41.3-r6", "Licenses": [ "GPL-3.0-or-later", "GPL-2.0-or-later", "GPL-2.0-only", "GPL-1.0-only", "LGPL-2.1-or-later", "BSD-1-Clause", "BSD-2-Clause", "BSD-3-Clause", "BSD-4-Clause-UC", "MIT", "CC-PDDC" ], "DependsOn": [ "glibc@2.43-r2", "wolfi-baselayout@20230201-r28" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "Digest": "sha1:e04519f9010cdf4b39fc97bb0d8cb55c64b7a5e5" }, { "ID": "libuv@1.52.1-r1", "Name": "libuv", "Identifier": { "PURL": "pkg:apk/wolfi/libuv@1.52.1-r1?arch=x86_64\u0026distro=20230201", "UID": "176dc3f9069d6892", "BOMRef": "pkg:apk/wolfi/libuv@1.52.1-r1?arch=x86_64\u0026distro=20230201" }, "Version": "1.52.1-r1", "Arch": "x86_64", "SrcName": "libuv", "SrcVersion": "1.52.1-r1", "Licenses": [ "MIT", "ISC" ], "DependsOn": [ "glibc@2.43-r2" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "Digest": "sha1:665107072eeeed27b5260c144687d0d9cba9a67d" }, { "ID": "libvorbis@1.3.7-r8", "Name": "libvorbis", "Identifier": { "PURL": "pkg:apk/wolfi/libvorbis@1.3.7-r8?arch=x86_64\u0026distro=20230201", "UID": "b4b14e6d3b1a7de5", "BOMRef": "pkg:apk/wolfi/libvorbis@1.3.7-r8?arch=x86_64\u0026distro=20230201" }, "Version": "1.3.7-r8", "Arch": "x86_64", "SrcName": "libvorbis", "SrcVersion": "1.3.7-r8", "Licenses": [ "BSD-3-Clause" ], "DependsOn": [ "glibc@2.43-r2", "libogg@1.3.6-r5" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "Digest": "sha1:d17dab1d553d174365351b91f109a1a8a7f993a7" }, { "ID": "libxcrypt@4.5.2-r2", "Name": "libxcrypt", "Identifier": { "PURL": "pkg:apk/wolfi/libxcrypt@4.5.2-r2?arch=x86_64\u0026distro=20230201", "UID": "fc1ad85f26b1fd3b", "BOMRef": "pkg:apk/wolfi/libxcrypt@4.5.2-r2?arch=x86_64\u0026distro=20230201" }, "Version": "4.5.2-r2", "Arch": "x86_64", "SrcName": "libxcrypt", "SrcVersion": "4.5.2-r2", "Licenses": [ "GPL-2.0-or-later", "LGPL-2.1-or-later" ], "Layer": { "Digest": "sha256:7c6e71c1fdfdf429844e25aad86441920641c0ba46466bc1d043556bfb81b24e", "DiffID": "sha256:70991d5976e247cb33ca1923edd3f609e6c23f527dbe62b838d6a03c0bca6453" }, "Digest": "sha1:1dde219a6ba81f29f519398066c7924a90e34598" }, { "ID": "mpdecimal@4.0.1-r3", "Name": "mpdecimal", "Identifier": { "PURL": "pkg:apk/wolfi/mpdecimal@4.0.1-r3?arch=x86_64\u0026distro=20230201", "UID": "2c3da7192aefb6d9", "BOMRef": "pkg:apk/wolfi/mpdecimal@4.0.1-r3?arch=x86_64\u0026distro=20230201" }, "Version": "4.0.1-r3", "Arch": "x86_64", "SrcName": "mpdecimal", "SrcVersion": "4.0.1-r3", "Licenses": [ "BSD-2-Clause" ], "DependsOn": [ "glibc@2.43-r2", "ld-linux@2.43-r2", "libgcc@15.2.0-r11", "libstdc++@15.2.0-r11" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "Digest": "sha1:12885674e7ba1c71ee370a6876aedfd8c4f02ce4" }, { "ID": "ncurses@6.6_p20251230-r6", "Name": "ncurses", "Identifier": { "PURL": "pkg:apk/wolfi/ncurses@6.6_p20251230-r6?arch=x86_64\u0026distro=20230201", "UID": "f9ee482179fbbd48", "BOMRef": "pkg:apk/wolfi/ncurses@6.6_p20251230-r6?arch=x86_64\u0026distro=20230201" }, "Version": "6.6_p20251230-r6", "Arch": "x86_64", "SrcName": "ncurses", "SrcVersion": "6.6_p20251230-r6", "Licenses": [ "MIT" ], "DependsOn": [ "glibc@2.43-r2", "ld-linux@2.43-r2", "ncurses-terminfo-base@6.6_p20251230-r6" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "Digest": "sha1:98a708b75487b75b1c66db9c5f1f0a1904311e0a" }, { "ID": "ncurses-terminfo-base@6.6_p20251230-r6", "Name": "ncurses-terminfo-base", "Identifier": { "PURL": "pkg:apk/wolfi/ncurses-terminfo-base@6.6_p20251230-r6?arch=x86_64\u0026distro=20230201", "UID": "efb56062630bb9b4", "BOMRef": "pkg:apk/wolfi/ncurses-terminfo-base@6.6_p20251230-r6?arch=x86_64\u0026distro=20230201" }, "Version": "6.6_p20251230-r6", "Arch": "x86_64", "SrcName": "ncurses", "SrcVersion": "6.6_p20251230-r6", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "Digest": "sha1:018cdf8c9840904ba3ec8c647bd566486539d323" }, { "ID": "nodejs-25@25.8.1-r0", "Name": "nodejs-25", "Identifier": { "PURL": "pkg:apk/wolfi/nodejs-25@25.8.1-r0?arch=x86_64\u0026distro=20230201", "UID": "a57f5cbefb0eefa8", "BOMRef": "pkg:apk/wolfi/nodejs-25@25.8.1-r0?arch=x86_64\u0026distro=20230201" }, "Version": "25.8.1-r0", "Arch": "x86_64", "SrcName": "nodejs-25", "SrcVersion": "25.8.1-r0", "Licenses": [ "MIT" ], "DependsOn": [ "c-ares@1.34.6-r1", "glibc@2.43-r2", "ld-linux@2.43-r2", "libbrotlidec1@1.2.0-r2", "libbrotlienc1@1.2.0-r2", "libcrypto3@3.6.1-r2", "libgcc@15.2.0-r11", "libicu78@78.2-r1", "libnghttp2-14@1.68.0-r1", "libssl3@3.6.1-r2", "libstdc++@15.2.0-r11", "libuv@1.52.1-r1", "zlib@1.3.2-r2" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "Digest": "sha1:4fe4a608c82c47755575ab33e6ef095d7dd50b8b" }, { "ID": "npm@11.11.1-r0", "Name": "npm", "Identifier": { "PURL": "pkg:apk/wolfi/npm@11.11.1-r0?arch=x86_64\u0026distro=20230201", "UID": "3749f003305fdde3", "BOMRef": "pkg:apk/wolfi/npm@11.11.1-r0?arch=x86_64\u0026distro=20230201" }, "Version": "11.11.1-r0", "Arch": "x86_64", "SrcName": "npm", "SrcVersion": "11.11.1-r0", "Licenses": [ "Artistic-2.0" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "Digest": "sha1:6dc46d79ce2404c494d2b97d897ba9fb567374b6" }, { "ID": "openssl@3.6.1-r2", "Name": "openssl", "Identifier": { "PURL": "pkg:apk/wolfi/openssl@3.6.1-r2?arch=x86_64\u0026distro=20230201", "UID": "debbb22d66d827e7", "BOMRef": "pkg:apk/wolfi/openssl@3.6.1-r2?arch=x86_64\u0026distro=20230201" }, "Version": "3.6.1-r2", "Arch": "x86_64", "SrcName": "openssl", "SrcVersion": "3.6.1-r2", "Licenses": [ "Apache-2.0" ], "DependsOn": [ "glibc@2.43-r2", "ld-linux@2.43-r2", "libcrypto3@3.6.1-r2", "libssl3@3.6.1-r2" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "Digest": "sha1:c170cc7d5670e89a454b6a2b96263fd6b1891160" }, { "ID": "opus@1.6.1-r3", "Name": "opus", "Identifier": { "PURL": "pkg:apk/wolfi/opus@1.6.1-r3?arch=x86_64\u0026distro=20230201", "UID": "95dbf1b5af703eec", "BOMRef": "pkg:apk/wolfi/opus@1.6.1-r3?arch=x86_64\u0026distro=20230201" }, "Version": "1.6.1-r3", "Arch": "x86_64", "SrcName": "opus", "SrcVersion": "1.6.1-r3", "Licenses": [ "BSD-3-Clause" ], "DependsOn": [ "glibc@2.43-r2" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "Digest": "sha1:cf85f6fa85b602a6cfc615e126d5134d53186078" }, { "ID": "py3-pip-wheel@26.0.1-r1", "Name": "py3-pip-wheel", "Identifier": { "PURL": "pkg:apk/wolfi/py3-pip-wheel@26.0.1-r1?arch=x86_64\u0026distro=20230201", "UID": "5adc3de07f492aba", "BOMRef": "pkg:apk/wolfi/py3-pip-wheel@26.0.1-r1?arch=x86_64\u0026distro=20230201" }, "Version": "26.0.1-r1", "Arch": "x86_64", "SrcName": "py3-pip", "SrcVersion": "26.0.1-r1", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "Digest": "sha1:fbfdeab3dd1ad8b3e5d16df7716d10870f3c8ec9" }, { "ID": "py3.13-pip@26.0.1-r1", "Name": "py3.13-pip", "Identifier": { "PURL": "pkg:apk/wolfi/py3.13-pip@26.0.1-r1?arch=x86_64\u0026distro=20230201", "UID": "9830515cc374721e", "BOMRef": "pkg:apk/wolfi/py3.13-pip@26.0.1-r1?arch=x86_64\u0026distro=20230201" }, "Version": "26.0.1-r1", "Arch": "x86_64", "SrcName": "py3-pip", "SrcVersion": "26.0.1-r1", "Licenses": [ "MIT" ], "DependsOn": [ "py3.13-pip-base@26.0.1-r1", "python-3.13-base@3.13.12-r2" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "Digest": "sha1:61443d427de3418ccb77b5972b1b807617221297" }, { "ID": "py3.13-pip-base@26.0.1-r1", "Name": "py3.13-pip-base", "Identifier": { "PURL": "pkg:apk/wolfi/py3.13-pip-base@26.0.1-r1?arch=x86_64\u0026distro=20230201", "UID": "a5e7baedcd516f4e", "BOMRef": "pkg:apk/wolfi/py3.13-pip-base@26.0.1-r1?arch=x86_64\u0026distro=20230201" }, "Version": "26.0.1-r1", "Arch": "x86_64", "SrcName": "py3-pip", "SrcVersion": "26.0.1-r1", "Licenses": [ "MIT" ], "DependsOn": [ "py3.13-setuptools@82.0.1-r0", "python-3.13-base@3.13.12-r2" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "Digest": "sha1:7c987010127797c7cb69fd7d9ffd5864682e6c6f" }, { "ID": "py3.13-setuptools@82.0.1-r0", "Name": "py3.13-setuptools", "Identifier": { "PURL": "pkg:apk/wolfi/py3.13-setuptools@82.0.1-r0?arch=x86_64\u0026distro=20230201", "UID": "e5581ede33d5fdd0", "BOMRef": "pkg:apk/wolfi/py3.13-setuptools@82.0.1-r0?arch=x86_64\u0026distro=20230201" }, "Version": "82.0.1-r0", "Arch": "x86_64", "SrcName": "py3-setuptools", "SrcVersion": "82.0.1-r0", "Licenses": [ "MIT" ], "DependsOn": [ "python-3.13-base@3.13.12-r2" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "Digest": "sha1:c9fdca57a7ed493a656f498ff12a7dda324032c7" }, { "ID": "python-3.13@3.13.12-r2", "Name": "python-3.13", "Identifier": { "PURL": "pkg:apk/wolfi/python-3.13@3.13.12-r2?arch=x86_64\u0026distro=20230201", "UID": "5eefeaf57e40e9ca", "BOMRef": "pkg:apk/wolfi/python-3.13@3.13.12-r2?arch=x86_64\u0026distro=20230201" }, "Version": "3.13.12-r2", "Arch": "x86_64", "SrcName": "python-3.13", "SrcVersion": "3.13.12-r2", "Licenses": [ "PSF-2.0" ], "DependsOn": [ "python-3.13-base@3.13.12-r2" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "Digest": "sha1:bd8c345b6ff8679113f29d032fec2c79acd2048e" }, { "ID": "python-3.13-base@3.13.12-r2", "Name": "python-3.13-base", "Identifier": { "PURL": "pkg:apk/wolfi/python-3.13-base@3.13.12-r2?arch=x86_64\u0026distro=20230201", "UID": "db8eca39b752ce7d", "BOMRef": "pkg:apk/wolfi/python-3.13-base@3.13.12-r2?arch=x86_64\u0026distro=20230201" }, "Version": "3.13.12-r2", "Arch": "x86_64", "SrcName": "python-3.13", "SrcVersion": "3.13.12-r2", "Licenses": [ "PSF-2.0" ], "DependsOn": [ "gdbm@1.26-r2", "glibc@2.43-r2", "ld-linux@2.43-r2", "libbz2-1@1.0.8-r23", "libcrypto3@3.6.1-r2", "libexpat1@2.7.4-r4", "libffi@3.5.2-r1", "libssl3@3.6.1-r2", "libuuid@2.41.3-r6", "mpdecimal@4.0.1-r3", "ncurses@6.6_p20251230-r6", "py3-pip-wheel@26.0.1-r1", "readline@8.3-r1", "sqlite-libs@3.51.1-r0", "xz@5.8.2-r2", "zlib@1.3.2-r2" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "Digest": "sha1:55de8bf1ab68768c7caa1a9b5d2c82075ebba736" }, { "ID": "readline@8.3-r1", "Name": "readline", "Identifier": { "PURL": "pkg:apk/wolfi/readline@8.3-r1?arch=x86_64\u0026distro=20230201", "UID": "83788a036146ebce", "BOMRef": "pkg:apk/wolfi/readline@8.3-r1?arch=x86_64\u0026distro=20230201" }, "Version": "8.3-r1", "Arch": "x86_64", "SrcName": "readline", "SrcVersion": "8.3-r1", "Licenses": [ "GPL-3.0-or-later" ], "DependsOn": [ "glibc@2.43-r2", "ncurses@6.6_p20251230-r6" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "Digest": "sha1:bcbe178d5b1edd94ce7b1cb8465e1cda8964a3db" }, { "ID": "sqlite-libs@3.51.1-r0", "Name": "sqlite-libs", "Identifier": { "PURL": "pkg:apk/wolfi/sqlite-libs@3.51.1-r0?arch=x86_64\u0026distro=20230201", "UID": "50a3684f196e02ed", "BOMRef": "pkg:apk/wolfi/sqlite-libs@3.51.1-r0?arch=x86_64\u0026distro=20230201" }, "Version": "3.51.1-r0", "Arch": "x86_64", "SrcName": "sqlite", "SrcVersion": "3.51.1-r0", "Licenses": [ "blessing" ], "DependsOn": [ "glibc@2.43-r2" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "Digest": "sha1:d0361a0bc6717f9262dbf71e350da24cd1987755" }, { "ID": "supervisor@4.3.0-r3", "Name": "supervisor", "Identifier": { "PURL": "pkg:apk/wolfi/supervisor@4.3.0-r3?arch=x86_64\u0026distro=20230201", "UID": "2e21e87f1185b317", "BOMRef": "pkg:apk/wolfi/supervisor@4.3.0-r3?arch=x86_64\u0026distro=20230201" }, "Version": "4.3.0-r3", "Arch": "x86_64", "SrcName": "supervisor", "SrcVersion": "4.3.0-r3", "Licenses": [ "BSD-3-Clause" ], "DependsOn": [ "py3.13-setuptools@82.0.1-r0", "python-3.13-base@3.13.12-r2", "supervisor-config@4.3.0-r3" ], "Layer": { "Digest": "sha256:0888b17bb3c02951fdea69bd3c7ba76d0df5680297ecba18697166a7876546ed", "DiffID": "sha256:96555d3e3ceac8f92f07b6b4043087d35b64b8941622e391e8b2a0cfd2314523" }, "Digest": "sha1:06f921a990424084af778d966fcf328d7ed3b7c0" }, { "ID": "supervisor-config@4.3.0-r3", "Name": "supervisor-config", "Identifier": { "PURL": "pkg:apk/wolfi/supervisor-config@4.3.0-r3?arch=x86_64\u0026distro=20230201", "UID": "c7261d783df177a3", "BOMRef": "pkg:apk/wolfi/supervisor-config@4.3.0-r3?arch=x86_64\u0026distro=20230201" }, "Version": "4.3.0-r3", "Arch": "x86_64", "SrcName": "supervisor", "SrcVersion": "4.3.0-r3", "Licenses": [ "BSD-3-Clause" ], "Layer": { "Digest": "sha256:0888b17bb3c02951fdea69bd3c7ba76d0df5680297ecba18697166a7876546ed", "DiffID": "sha256:96555d3e3ceac8f92f07b6b4043087d35b64b8941622e391e8b2a0cfd2314523" }, "Digest": "sha1:82a374594443e72efca5b8429cd4b065f3caae87" }, { "ID": "tzdata@2026a-r0", "Name": "tzdata", "Identifier": { "PURL": "pkg:apk/wolfi/tzdata@2026a-r0?arch=x86_64\u0026distro=20230201", "UID": "7c361d5b4718a3e4", "BOMRef": "pkg:apk/wolfi/tzdata@2026a-r0?arch=x86_64\u0026distro=20230201" }, "Version": "2026a-r0", "Arch": "x86_64", "SrcName": "tzdata", "SrcVersion": "2026a-r0", "Licenses": [ "CC-PDDC" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "Digest": "sha1:e56ed3f59330127259cece2ae5c11363744592be" }, { "ID": "wolfi-base@1-r7", "Name": "wolfi-base", "Identifier": { "PURL": "pkg:apk/wolfi/wolfi-base@1-r7?arch=x86_64\u0026distro=20230201", "UID": "6f8cf0f66597c990", "BOMRef": "pkg:apk/wolfi/wolfi-base@1-r7?arch=x86_64\u0026distro=20230201" }, "Version": "1-r7", "Arch": "x86_64", "SrcName": "wolfi-base", "SrcVersion": "1-r7", "Licenses": [ "MIT" ], "DependsOn": [ "apk-tools@2.14.10-r10", "busybox@1.37.0-r54", "wolfi-keys@1-r13" ], "Layer": { "Digest": "sha256:cdea145aa11554331de7d95b1834fd4f2a784fa573086475ff0d7c86d3abd020", "DiffID": "sha256:b8195249dcd92d2c0519946f0a9f9d9ec7b88e9a19b5f83bc156103a39d5ab50" }, "Digest": "sha1:e82b5ced3be890350f3a2fb44e41c27929abca1d" }, { "ID": "wolfi-baselayout@20230201-r28", "Name": "wolfi-baselayout", "Identifier": { "PURL": "pkg:apk/wolfi/wolfi-baselayout@20230201-r28?arch=x86_64\u0026distro=20230201", "UID": "dfd589af8b6c6976", "BOMRef": "pkg:apk/wolfi/wolfi-baselayout@20230201-r28?arch=x86_64\u0026distro=20230201" }, "Version": "20230201-r28", "Arch": "x86_64", "SrcName": "wolfi-baselayout", "SrcVersion": "20230201-r28", "Licenses": [ "MIT" ], "DependsOn": [ "ca-certificates-bundle@20251003-r4" ], "Layer": { "Digest": "sha256:54bfed0539e5fed0528c4a701b804fc053fa1e08d40f64d8ad3e8e3fa11b2545", "DiffID": "sha256:32c2c5317cc0de9e8b16331a58c07ce45247b922843db9f1c8051235e8546db8" }, "Digest": "sha1:9b015b9b45116670d84ae23c43608e3eee9120a3" }, { "ID": "wolfi-keys@1-r13", "Name": "wolfi-keys", "Identifier": { "PURL": "pkg:apk/wolfi/wolfi-keys@1-r13?arch=x86_64\u0026distro=20230201", "UID": "6d83bacbf2f192de", "BOMRef": "pkg:apk/wolfi/wolfi-keys@1-r13?arch=x86_64\u0026distro=20230201" }, "Version": "1-r13", "Arch": "x86_64", "SrcName": "wolfi-keys", "SrcVersion": "1-r13", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:cdea145aa11554331de7d95b1834fd4f2a784fa573086475ff0d7c86d3abd020", "DiffID": "sha256:b8195249dcd92d2c0519946f0a9f9d9ec7b88e9a19b5f83bc156103a39d5ab50" }, "Digest": "sha1:c9e9f5b4a87785ae4aae9539e439d85b22c7390d" }, { "ID": "xz@5.8.2-r2", "Name": "xz", "Identifier": { "PURL": "pkg:apk/wolfi/xz@5.8.2-r2?arch=x86_64\u0026distro=20230201", "UID": "37d787401a44482", "BOMRef": "pkg:apk/wolfi/xz@5.8.2-r2?arch=x86_64\u0026distro=20230201" }, "Version": "5.8.2-r2", "Arch": "x86_64", "SrcName": "xz", "SrcVersion": "5.8.2-r2", "Licenses": [ "GPL-3.0-or-later" ], "DependsOn": [ "glibc@2.43-r2", "ld-linux@2.43-r2" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "Digest": "sha1:c40124921cd6260ff3642bc1b1647627efece130" }, { "ID": "zlib@1.3.2-r2", "Name": "zlib", "Identifier": { "PURL": "pkg:apk/wolfi/zlib@1.3.2-r2?arch=x86_64\u0026distro=20230201", "UID": "6766a8416663aa21", "BOMRef": "pkg:apk/wolfi/zlib@1.3.2-r2?arch=x86_64\u0026distro=20230201" }, "Version": "1.3.2-r2", "Arch": "x86_64", "SrcName": "zlib", "SrcVersion": "1.3.2-r2", "Licenses": [ "MPL-2.0", "MIT" ], "DependsOn": [ "glibc@2.43-r2", "wolfi-baselayout@20230201-r28" ], "Layer": { "Digest": "sha256:e3e6b87d346eab63f52accb0375498d94dbe56487890b1cd5951d48adcd1ac8e", "DiffID": "sha256:3c4c0ce74b878ea405f85f153d6eb899522b463188491a3300520b1ec8bcf4c2" }, "Digest": "sha1:2b11cb87d00de50185d5a5dc67662d5442199694" } ], "Vulnerabilities": [ { "VulnerabilityID": "CVE-2026-4437", "PkgID": "glibc@2.43-r2", "PkgName": "glibc", "PkgIdentifier": { "PURL": "pkg:apk/wolfi/glibc@2.43-r2?arch=x86_64\u0026distro=20230201", "UID": "f0830c968d2f8860", "BOMRef": "pkg:apk/wolfi/glibc@2.43-r2?arch=x86_64\u0026distro=20230201" }, "InstalledVersion": "2.43-r2", "FixedVersion": "2.43-r4", "Status": "fixed", "Layer": { "Digest": "sha256:ffdea549da14a0907a605f520d5d7d74c27b4113af015d68d9bb498f02602701", "DiffID": "sha256:1c2de32430e076ddbd78f498eefcf1678f1d584007214b2ad1cf42a06d005fb7" }, "PrimaryURL": "https://avd.aquasec.com/nvd/cve-2026-4437", "DataSource": { "ID": "wolfi", "Name": "Wolfi Secdb", "URL": "https://packages.wolfi.dev/os/security.json" }, "Fingerprint": "sha256:fcae06afa65c77c8720374eff4f14fe76b1a76c61b14156ad86f70dd5e075d4f", "Title": "glibc: glibc: Incorrect DNS response parsing via crafted DNS server response", "Description": "Calling gethostbyaddr or gethostbyaddr_r with a configured nsswitch.conf that specifies the library's DNS backend in the GNU C Library version 2.34 to version 2.43 could, with a crafted response from the configured DNS server, result in a violation of the DNS specification that causes the application to treat a non-answer section of the DNS response as a valid answer.", "Severity": "MEDIUM", "CweIDs": [ "CWE-125" ], "VendorSeverity": { "redhat": 2 }, "CVSS": { "redhat": { "V3Vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L", "V3Score": 6.5 } }, "References": [ "https://access.redhat.com/security/cve/CVE-2026-4437", "https://nvd.nist.gov/vuln/detail/CVE-2026-4437", "https://sourceware.org/bugzilla/show_bug.cgi?id=34014", "https://www.cve.org/CVERecord?id=CVE-2026-4437" ], "PublishedDate": "2026-03-20T20:16:49.477Z", "LastModifiedDate": "2026-03-23T16:16:51.537Z" }, { "VulnerabilityID": "CVE-2026-4438", "PkgID": "glibc@2.43-r2", "PkgName": "glibc", "PkgIdentifier": { "PURL": "pkg:apk/wolfi/glibc@2.43-r2?arch=x86_64\u0026distro=20230201", "UID": "f0830c968d2f8860", "BOMRef": "pkg:apk/wolfi/glibc@2.43-r2?arch=x86_64\u0026distro=20230201" }, "InstalledVersion": "2.43-r2", "FixedVersion": "2.43-r4", "Status": "fixed", "Layer": { "Digest": "sha256:ffdea549da14a0907a605f520d5d7d74c27b4113af015d68d9bb498f02602701", "DiffID": "sha256:1c2de32430e076ddbd78f498eefcf1678f1d584007214b2ad1cf42a06d005fb7" }, "PrimaryURL": "https://avd.aquasec.com/nvd/cve-2026-4438", "DataSource": { "ID": "wolfi", "Name": "Wolfi Secdb", "URL": "https://packages.wolfi.dev/os/security.json" }, "Fingerprint": "sha256:aad14b51392d56230a8f3c154da2cd7ebc9d97b97dd6965b89710d7f849fde26", "Title": "glibc: glibc: Invalid DNS hostname returned via gethostbyaddr functions", "Description": "Calling gethostbyaddr or gethostbyaddr_r with a configured nsswitch.conf that specifies the library's DNS backend in the GNU C library version 2.34 to version 2.43 could result in an invalid DNS hostname being returned to the caller in violation of the DNS specification.", "Severity": "MEDIUM", "CweIDs": [ "CWE-20", "CWE-88" ], "VendorSeverity": { "redhat": 1 }, "CVSS": { "redhat": { "V3Vector": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N", "V3Score": 4 } }, "References": [ "https://access.redhat.com/security/cve/CVE-2026-4438", "https://nvd.nist.gov/vuln/detail/CVE-2026-4438", "https://sourceware.org/bugzilla/show_bug.cgi?id=34015", "https://www.cve.org/CVERecord?id=CVE-2026-4438" ], "PublishedDate": "2026-03-20T20:16:49.623Z", "LastModifiedDate": "2026-03-23T15:16:35.68Z" }, { "VulnerabilityID": "CVE-2026-4437", "PkgID": "glibc-locale-posix@2.43-r2", "PkgName": "glibc-locale-posix", "PkgIdentifier": { "PURL": "pkg:apk/wolfi/glibc-locale-posix@2.43-r2?arch=x86_64\u0026distro=20230201", "UID": "de4bfc79c18bed05", "BOMRef": "pkg:apk/wolfi/glibc-locale-posix@2.43-r2?arch=x86_64\u0026distro=20230201" }, "InstalledVersion": "2.43-r2", "FixedVersion": "2.43-r4", "Status": "fixed", "Layer": { "Digest": "sha256:ffdea549da14a0907a605f520d5d7d74c27b4113af015d68d9bb498f02602701", "DiffID": "sha256:1c2de32430e076ddbd78f498eefcf1678f1d584007214b2ad1cf42a06d005fb7" }, "PrimaryURL": "https://avd.aquasec.com/nvd/cve-2026-4437", "DataSource": { "ID": "wolfi", "Name": "Wolfi Secdb", "URL": "https://packages.wolfi.dev/os/security.json" }, "Fingerprint": "sha256:1f912a38c5bc1a22d20e1890594f8f7de8930415711a818533fe7b0e330c5225", "Title": "glibc: glibc: Incorrect DNS response parsing via crafted DNS server response", "Description": "Calling gethostbyaddr or gethostbyaddr_r with a configured nsswitch.conf that specifies the library's DNS backend in the GNU C Library version 2.34 to version 2.43 could, with a crafted response from the configured DNS server, result in a violation of the DNS specification that causes the application to treat a non-answer section of the DNS response as a valid answer.", "Severity": "MEDIUM", "CweIDs": [ "CWE-125" ], "VendorSeverity": { "redhat": 2 }, "CVSS": { "redhat": { "V3Vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L", "V3Score": 6.5 } }, "References": [ "https://access.redhat.com/security/cve/CVE-2026-4437", "https://nvd.nist.gov/vuln/detail/CVE-2026-4437", "https://sourceware.org/bugzilla/show_bug.cgi?id=34014", "https://www.cve.org/CVERecord?id=CVE-2026-4437" ], "PublishedDate": "2026-03-20T20:16:49.477Z", "LastModifiedDate": "2026-03-23T16:16:51.537Z" }, { "VulnerabilityID": "CVE-2026-4438", "PkgID": "glibc-locale-posix@2.43-r2", "PkgName": "glibc-locale-posix", "PkgIdentifier": { "PURL": "pkg:apk/wolfi/glibc-locale-posix@2.43-r2?arch=x86_64\u0026distro=20230201", "UID": "de4bfc79c18bed05", "BOMRef": "pkg:apk/wolfi/glibc-locale-posix@2.43-r2?arch=x86_64\u0026distro=20230201" }, "InstalledVersion": "2.43-r2", "FixedVersion": "2.43-r4", "Status": "fixed", "Layer": { "Digest": "sha256:ffdea549da14a0907a605f520d5d7d74c27b4113af015d68d9bb498f02602701", "DiffID": "sha256:1c2de32430e076ddbd78f498eefcf1678f1d584007214b2ad1cf42a06d005fb7" }, "PrimaryURL": "https://avd.aquasec.com/nvd/cve-2026-4438", "DataSource": { "ID": "wolfi", "Name": "Wolfi Secdb", "URL": "https://packages.wolfi.dev/os/security.json" }, "Fingerprint": "sha256:6598442566eff6d8ed9dc67f758159d8967dcdde64cafcdefbe524441e00eb5e", "Title": "glibc: glibc: Invalid DNS hostname returned via gethostbyaddr functions", "Description": "Calling gethostbyaddr or gethostbyaddr_r with a configured nsswitch.conf that specifies the library's DNS backend in the GNU C library version 2.34 to version 2.43 could result in an invalid DNS hostname being returned to the caller in violation of the DNS specification.", "Severity": "MEDIUM", "CweIDs": [ "CWE-20", "CWE-88" ], "VendorSeverity": { "redhat": 1 }, "CVSS": { "redhat": { "V3Vector": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N", "V3Score": 4 } }, "References": [ "https://access.redhat.com/security/cve/CVE-2026-4438", "https://nvd.nist.gov/vuln/detail/CVE-2026-4438", "https://sourceware.org/bugzilla/show_bug.cgi?id=34015", "https://www.cve.org/CVERecord?id=CVE-2026-4438" ], "PublishedDate": "2026-03-20T20:16:49.623Z", "LastModifiedDate": "2026-03-23T15:16:35.68Z" }, { "VulnerabilityID": "CVE-2026-4437", "PkgID": "ld-linux@2.43-r2", "PkgName": "ld-linux", "PkgIdentifier": { "PURL": "pkg:apk/wolfi/ld-linux@2.43-r2?arch=x86_64\u0026distro=20230201", "UID": "5d95e150843b6e9b", "BOMRef": "pkg:apk/wolfi/ld-linux@2.43-r2?arch=x86_64\u0026distro=20230201" }, "InstalledVersion": "2.43-r2", "FixedVersion": "2.43-r4", "Status": "fixed", "Layer": { "Digest": "sha256:ffdea549da14a0907a605f520d5d7d74c27b4113af015d68d9bb498f02602701", "DiffID": "sha256:1c2de32430e076ddbd78f498eefcf1678f1d584007214b2ad1cf42a06d005fb7" }, "PrimaryURL": "https://avd.aquasec.com/nvd/cve-2026-4437", "DataSource": { "ID": "wolfi", "Name": "Wolfi Secdb", "URL": "https://packages.wolfi.dev/os/security.json" }, "Fingerprint": "sha256:46d3e760d9ddd9373d03b2c585cf928da42ca87cb735f2cbd976654a24c0c2a8", "Title": "glibc: glibc: Incorrect DNS response parsing via crafted DNS server response", "Description": "Calling gethostbyaddr or gethostbyaddr_r with a configured nsswitch.conf that specifies the library's DNS backend in the GNU C Library version 2.34 to version 2.43 could, with a crafted response from the configured DNS server, result in a violation of the DNS specification that causes the application to treat a non-answer section of the DNS response as a valid answer.", "Severity": "MEDIUM", "CweIDs": [ "CWE-125" ], "VendorSeverity": { "redhat": 2 }, "CVSS": { "redhat": { "V3Vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L", "V3Score": 6.5 } }, "References": [ "https://access.redhat.com/security/cve/CVE-2026-4437", "https://nvd.nist.gov/vuln/detail/CVE-2026-4437", "https://sourceware.org/bugzilla/show_bug.cgi?id=34014", "https://www.cve.org/CVERecord?id=CVE-2026-4437" ], "PublishedDate": "2026-03-20T20:16:49.477Z", "LastModifiedDate": "2026-03-23T16:16:51.537Z" }, { "VulnerabilityID": "CVE-2026-4438", "PkgID": "ld-linux@2.43-r2", "PkgName": "ld-linux", "PkgIdentifier": { "PURL": "pkg:apk/wolfi/ld-linux@2.43-r2?arch=x86_64\u0026distro=20230201", "UID": "5d95e150843b6e9b", "BOMRef": "pkg:apk/wolfi/ld-linux@2.43-r2?arch=x86_64\u0026distro=20230201" }, "InstalledVersion": "2.43-r2", "FixedVersion": "2.43-r4", "Status": "fixed", "Layer": { "Digest": "sha256:ffdea549da14a0907a605f520d5d7d74c27b4113af015d68d9bb498f02602701", "DiffID": "sha256:1c2de32430e076ddbd78f498eefcf1678f1d584007214b2ad1cf42a06d005fb7" }, "PrimaryURL": "https://avd.aquasec.com/nvd/cve-2026-4438", "DataSource": { "ID": "wolfi", "Name": "Wolfi Secdb", "URL": "https://packages.wolfi.dev/os/security.json" }, "Fingerprint": "sha256:a2b13c447723c7d56cbaba73343ef7d2c9cd7c74b6398272020b519121ad7b3d", "Title": "glibc: glibc: Invalid DNS hostname returned via gethostbyaddr functions", "Description": "Calling gethostbyaddr or gethostbyaddr_r with a configured nsswitch.conf that specifies the library's DNS backend in the GNU C library version 2.34 to version 2.43 could result in an invalid DNS hostname being returned to the caller in violation of the DNS specification.", "Severity": "MEDIUM", "CweIDs": [ "CWE-20", "CWE-88" ], "VendorSeverity": { "redhat": 1 }, "CVSS": { "redhat": { "V3Vector": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N", "V3Score": 4 } }, "References": [ "https://access.redhat.com/security/cve/CVE-2026-4438", "https://nvd.nist.gov/vuln/detail/CVE-2026-4438", "https://sourceware.org/bugzilla/show_bug.cgi?id=34015", "https://www.cve.org/CVERecord?id=CVE-2026-4438" ], "PublishedDate": "2026-03-20T20:16:49.623Z", "LastModifiedDate": "2026-03-23T15:16:35.68Z" }, { "VulnerabilityID": "CVE-2026-4437", "PkgID": "libcrypt1@2.43-r2", "PkgName": "libcrypt1", "PkgIdentifier": { "PURL": "pkg:apk/wolfi/libcrypt1@2.43-r2?arch=x86_64\u0026distro=20230201", "UID": "af184fa48a83ce11", "BOMRef": "pkg:apk/wolfi/libcrypt1@2.43-r2?arch=x86_64\u0026distro=20230201" }, "InstalledVersion": "2.43-r2", "FixedVersion": "2.43-r4", "Status": "fixed", "Layer": { "Digest": "sha256:ffdea549da14a0907a605f520d5d7d74c27b4113af015d68d9bb498f02602701", "DiffID": "sha256:1c2de32430e076ddbd78f498eefcf1678f1d584007214b2ad1cf42a06d005fb7" }, "PrimaryURL": "https://avd.aquasec.com/nvd/cve-2026-4437", "DataSource": { "ID": "wolfi", "Name": "Wolfi Secdb", "URL": "https://packages.wolfi.dev/os/security.json" }, "Fingerprint": "sha256:4d86428949a9bb2db444eecaaf88fe34de1afe6d5b8a7d30491bd410b03dd96c", "Title": "glibc: glibc: Incorrect DNS response parsing via crafted DNS server response", "Description": "Calling gethostbyaddr or gethostbyaddr_r with a configured nsswitch.conf that specifies the library's DNS backend in the GNU C Library version 2.34 to version 2.43 could, with a crafted response from the configured DNS server, result in a violation of the DNS specification that causes the application to treat a non-answer section of the DNS response as a valid answer.", "Severity": "MEDIUM", "CweIDs": [ "CWE-125" ], "VendorSeverity": { "redhat": 2 }, "CVSS": { "redhat": { "V3Vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L", "V3Score": 6.5 } }, "References": [ "https://access.redhat.com/security/cve/CVE-2026-4437", "https://nvd.nist.gov/vuln/detail/CVE-2026-4437", "https://sourceware.org/bugzilla/show_bug.cgi?id=34014", "https://www.cve.org/CVERecord?id=CVE-2026-4437" ], "PublishedDate": "2026-03-20T20:16:49.477Z", "LastModifiedDate": "2026-03-23T16:16:51.537Z" }, { "VulnerabilityID": "CVE-2026-4438", "PkgID": "libcrypt1@2.43-r2", "PkgName": "libcrypt1", "PkgIdentifier": { "PURL": "pkg:apk/wolfi/libcrypt1@2.43-r2?arch=x86_64\u0026distro=20230201", "UID": "af184fa48a83ce11", "BOMRef": "pkg:apk/wolfi/libcrypt1@2.43-r2?arch=x86_64\u0026distro=20230201" }, "InstalledVersion": "2.43-r2", "FixedVersion": "2.43-r4", "Status": "fixed", "Layer": { "Digest": "sha256:ffdea549da14a0907a605f520d5d7d74c27b4113af015d68d9bb498f02602701", "DiffID": "sha256:1c2de32430e076ddbd78f498eefcf1678f1d584007214b2ad1cf42a06d005fb7" }, "PrimaryURL": "https://avd.aquasec.com/nvd/cve-2026-4438", "DataSource": { "ID": "wolfi", "Name": "Wolfi Secdb", "URL": "https://packages.wolfi.dev/os/security.json" }, "Fingerprint": "sha256:9b76e780728db19e1f5d15b0fbd90ba545055c18e521e98f00421df6006d2c6d", "Title": "glibc: glibc: Invalid DNS hostname returned via gethostbyaddr functions", "Description": "Calling gethostbyaddr or gethostbyaddr_r with a configured nsswitch.conf that specifies the library's DNS backend in the GNU C library version 2.34 to version 2.43 could result in an invalid DNS hostname being returned to the caller in violation of the DNS specification.", "Severity": "MEDIUM", "CweIDs": [ "CWE-20", "CWE-88" ], "VendorSeverity": { "redhat": 1 }, "CVSS": { "redhat": { "V3Vector": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N", "V3Score": 4 } }, "References": [ "https://access.redhat.com/security/cve/CVE-2026-4438", "https://nvd.nist.gov/vuln/detail/CVE-2026-4438", "https://sourceware.org/bugzilla/show_bug.cgi?id=34015", "https://www.cve.org/CVERecord?id=CVE-2026-4438" ], "PublishedDate": "2026-03-20T20:16:49.623Z", "LastModifiedDate": "2026-03-23T15:16:35.68Z" }, { "VulnerabilityID": "CVE-2026-2673", "PkgID": "libcrypto3@3.6.1-r2", "PkgName": "libcrypto3", "PkgIdentifier": { "PURL": "pkg:apk/wolfi/libcrypto3@3.6.1-r2?arch=x86_64\u0026distro=20230201", "UID": "885ab4fa55c14236", "BOMRef": "pkg:apk/wolfi/libcrypto3@3.6.1-r2?arch=x86_64\u0026distro=20230201" }, "InstalledVersion": "3.6.1-r2", "FixedVersion": "3.6.1-r3", "Status": "fixed", "Layer": { "Digest": "sha256:8b7b5281edc4c60abdd5b11639fc31a70145a71e9159adfb065613716727dcf9", "DiffID": "sha256:a80c931912f720d92ecc3b4d4bb757b5604caddb3a69914463a7f41e257ccbf5" }, "PrimaryURL": "https://avd.aquasec.com/nvd/cve-2026-2673", "DataSource": { "ID": "wolfi", "Name": "Wolfi Secdb", "URL": "https://packages.wolfi.dev/os/security.json" }, "Fingerprint": "sha256:0616b6420fd19da0bd32e3bed1f39cbeea0948caf6179a027b31452b2c058c8b", "Title": "openssl: OpenSSL TLS 1.3 server may choose unexpected key agreement group", "Description": "Issue summary: An OpenSSL TLS 1.3 server may fail to negotiate the expected\npreferred key exchange group when its key exchange group configuration includes\nthe default by using the 'DEFAULT' keyword.\n\nImpact summary: A less preferred key exchange may be used even when a more\npreferred group is supported by both client and server, if the group\nwas not included among the client's initial predicated keyshares.\nThis will sometimes be the case with the new hybrid post-quantum groups,\nif the client chooses to defer their use until specifically requested by\nthe server.\n\nIf an OpenSSL TLS 1.3 server's configuration uses the 'DEFAULT' keyword to\ninterpolate the built-in default group list into its own configuration, perhaps\nadding or removing specific elements, then an implementation defect causes the\n'DEFAULT' list to lose its 'tuple' structure, and all server-supported groups\nwere treated as a single sufficiently secure 'tuple', with the server not\nsending a Hello Retry Request (HRR) even when a group in a more preferred tuple\nwas mutually supported.\n\nAs a result, the client and server might fail to negotiate a mutually supported\npost-quantum key agreement group, such as 'X25519MLKEM768', if the client's\nconfiguration results in only 'classical' groups (such as 'X25519' being the\nonly ones in the client's initial keyshare prediction).\n\nOpenSSL 3.5 and later support a new syntax for selecting the most preferred TLS\n1.3 key agreement group on TLS servers. The old syntax had a single 'flat'\nlist of groups, and treated all the supported groups as sufficiently secure.\nIf any of the keyshares predicted by the client were supported by the server\nthe most preferred among these was selected, even if other groups supported by\nthe client, but not included in the list of predicted keyshares would have been\nmore preferred, if included.\n\nThe new syntax partitions the groups into distinct 'tuples' of roughly\nequivalent security. Within each tuple the most preferred group included among\nthe client's predicted keyshares is chosen, but if the client supports a group\nfrom a more preferred tuple, but did not predict any corresponding keyshares,\nthe server will ask the client to retry the ClientHello (by issuing a Hello\nRetry Request or HRR) with the most preferred mutually supported group.\n\nThe above works as expected when the server's configuration uses the built-in\ndefault group list, or explicitly defines its own list by directly defining the\nvarious desired groups and group 'tuples'.\n\nNo OpenSSL FIPS modules are affected by this issue, the code in question lies\noutside the FIPS boundary.\n\nOpenSSL 3.6 and 3.5 are vulnerable to this issue.\n\nOpenSSL 3.6 users should upgrade to OpenSSL 3.6.2 once it is released.\nOpenSSL 3.5 users should upgrade to OpenSSL 3.5.6 once it is released.\n\nOpenSSL 3.4, 3.3, 3.0, 1.0.2 and 1.1.1 are not affected by this issue.", "Severity": "LOW", "CweIDs": [ "CWE-757" ], "VendorSeverity": { "amazon": 1, "redhat": 1, "ubuntu": 1 }, "CVSS": { "redhat": { "V3Vector": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:N", "V3Score": 3.1 } }, "References": [ "http://www.openwall.com/lists/oss-security/2026/03/13/3", "https://access.redhat.com/security/cve/CVE-2026-2673", "https://github.com/openssl/openssl/commit/2157c9d81f7b0bd7dfa25b960e928ec28e8dd63f", "https://github.com/openssl/openssl/commit/85977e013f32ceb96aa034c0e741adddc1a05e34", "https://nvd.nist.gov/vuln/detail/CVE-2026-2673", "https://openssl-library.org/news/secadv/20260313.txt", "https://www.cve.org/CVERecord?id=CVE-2026-2673" ], "PublishedDate": "2026-03-13T19:54:34.033Z", "LastModifiedDate": "2026-03-17T18:16:15.6Z" }, { "VulnerabilityID": "CVE-2026-2673", "PkgID": "libssl3@3.6.1-r2", "PkgName": "libssl3", "PkgIdentifier": { "PURL": "pkg:apk/wolfi/libssl3@3.6.1-r2?arch=x86_64\u0026distro=20230201", "UID": "74f6bd603c6e0818", "BOMRef": "pkg:apk/wolfi/libssl3@3.6.1-r2?arch=x86_64\u0026distro=20230201" }, "InstalledVersion": "3.6.1-r2", "FixedVersion": "3.6.1-r3", "Status": "fixed", "Layer": { "Digest": "sha256:8b7b5281edc4c60abdd5b11639fc31a70145a71e9159adfb065613716727dcf9", "DiffID": "sha256:a80c931912f720d92ecc3b4d4bb757b5604caddb3a69914463a7f41e257ccbf5" }, "PrimaryURL": "https://avd.aquasec.com/nvd/cve-2026-2673", "DataSource": { "ID": "wolfi", "Name": "Wolfi Secdb", "URL": "https://packages.wolfi.dev/os/security.json" }, "Fingerprint": "sha256:a55407221a05d666e65de82f7af7811b84cb60d636f1fd52c390f26897ce2e69", "Title": "openssl: OpenSSL TLS 1.3 server may choose unexpected key agreement group", "Description": "Issue summary: An OpenSSL TLS 1.3 server may fail to negotiate the expected\npreferred key exchange group when its key exchange group configuration includes\nthe default by using the 'DEFAULT' keyword.\n\nImpact summary: A less preferred key exchange may be used even when a more\npreferred group is supported by both client and server, if the group\nwas not included among the client's initial predicated keyshares.\nThis will sometimes be the case with the new hybrid post-quantum groups,\nif the client chooses to defer their use until specifically requested by\nthe server.\n\nIf an OpenSSL TLS 1.3 server's configuration uses the 'DEFAULT' keyword to\ninterpolate the built-in default group list into its own configuration, perhaps\nadding or removing specific elements, then an implementation defect causes the\n'DEFAULT' list to lose its 'tuple' structure, and all server-supported groups\nwere treated as a single sufficiently secure 'tuple', with the server not\nsending a Hello Retry Request (HRR) even when a group in a more preferred tuple\nwas mutually supported.\n\nAs a result, the client and server might fail to negotiate a mutually supported\npost-quantum key agreement group, such as 'X25519MLKEM768', if the client's\nconfiguration results in only 'classical' groups (such as 'X25519' being the\nonly ones in the client's initial keyshare prediction).\n\nOpenSSL 3.5 and later support a new syntax for selecting the most preferred TLS\n1.3 key agreement group on TLS servers. The old syntax had a single 'flat'\nlist of groups, and treated all the supported groups as sufficiently secure.\nIf any of the keyshares predicted by the client were supported by the server\nthe most preferred among these was selected, even if other groups supported by\nthe client, but not included in the list of predicted keyshares would have been\nmore preferred, if included.\n\nThe new syntax partitions the groups into distinct 'tuples' of roughly\nequivalent security. Within each tuple the most preferred group included among\nthe client's predicted keyshares is chosen, but if the client supports a group\nfrom a more preferred tuple, but did not predict any corresponding keyshares,\nthe server will ask the client to retry the ClientHello (by issuing a Hello\nRetry Request or HRR) with the most preferred mutually supported group.\n\nThe above works as expected when the server's configuration uses the built-in\ndefault group list, or explicitly defines its own list by directly defining the\nvarious desired groups and group 'tuples'.\n\nNo OpenSSL FIPS modules are affected by this issue, the code in question lies\noutside the FIPS boundary.\n\nOpenSSL 3.6 and 3.5 are vulnerable to this issue.\n\nOpenSSL 3.6 users should upgrade to OpenSSL 3.6.2 once it is released.\nOpenSSL 3.5 users should upgrade to OpenSSL 3.5.6 once it is released.\n\nOpenSSL 3.4, 3.3, 3.0, 1.0.2 and 1.1.1 are not affected by this issue.", "Severity": "LOW", "CweIDs": [ "CWE-757" ], "VendorSeverity": { "amazon": 1, "redhat": 1, "ubuntu": 1 }, "CVSS": { "redhat": { "V3Vector": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:N", "V3Score": 3.1 } }, "References": [ "http://www.openwall.com/lists/oss-security/2026/03/13/3", "https://access.redhat.com/security/cve/CVE-2026-2673", "https://github.com/openssl/openssl/commit/2157c9d81f7b0bd7dfa25b960e928ec28e8dd63f", "https://github.com/openssl/openssl/commit/85977e013f32ceb96aa034c0e741adddc1a05e34", "https://nvd.nist.gov/vuln/detail/CVE-2026-2673", "https://openssl-library.org/news/secadv/20260313.txt", "https://www.cve.org/CVERecord?id=CVE-2026-2673" ], "PublishedDate": "2026-03-13T19:54:34.033Z", "LastModifiedDate": "2026-03-17T18:16:15.6Z" }, { "VulnerabilityID": "CVE-2026-33671", "PkgID": "npm@11.11.1-r0", "PkgName": "npm", "PkgIdentifier": { "PURL": "pkg:apk/wolfi/npm@11.11.1-r0?arch=x86_64\u0026distro=20230201", "UID": "3749f003305fdde3", "BOMRef": "pkg:apk/wolfi/npm@11.11.1-r0?arch=x86_64\u0026distro=20230201" }, "InstalledVersion": "11.11.1-r0", "FixedVersion": "11.12.1-r0", "Status": "fixed", "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "PrimaryURL": "https://avd.aquasec.com/nvd/cve-2026-33671", "DataSource": { "ID": "wolfi", "Name": "Wolfi Secdb", "URL": "https://packages.wolfi.dev/os/security.json" }, "Fingerprint": "sha256:d5c17157a69de2ed3e025fcd6fb9374c99143092e29ea79d4f1afee8edfd05c4", "Title": "picomatch: Picomatch: Regular Expression Denial of Service via crafted extglob patterns", "Description": "Picomatch is a glob matcher written JavaScript. Versions prior to 4.0.4, 3.0.2, and 2.3.2 are vulnerable to Regular Expression Denial of Service (ReDoS) when processing crafted extglob patterns. Certain patterns using extglob quantifiers such as `+()` and `*()`, especially when combined with overlapping alternatives or nested extglobs, are compiled into regular expressions that can exhibit catastrophic backtracking on non-matching input. Applications are impacted when they allow untrusted users to supply glob patterns that are passed to `picomatch` for compilation or matching. In those cases, an attacker can cause excessive CPU consumption and block the Node.js event loop, resulting in a denial of service. Applications that only use trusted, developer-controlled glob patterns are much less likely to be exposed in a security-relevant way. This issue is fixed in picomatch 4.0.4, 3.0.2 and 2.3.2. Users should upgrade to one of these versions or later, depending on their supported release line. If upgrading is not immediately possible, avoid passing untrusted glob patterns to `picomatch`. Possible mitigations include disabling extglob support for untrusted patterns by using `noextglob: true`, rejecting or sanitizing patterns containing nested extglobs or extglob quantifiers such as `+()` and `*()`, enforcing strict allowlists for accepted pattern syntax, running matching in an isolated worker or separate process with time and resource limits, and applying application-level request throttling and input validation for any endpoint that accepts glob patterns.", "Severity": "MEDIUM", "CweIDs": [ "CWE-1333" ], "VendorSeverity": { "ghsa": 3, "redhat": 2 }, "CVSS": { "ghsa": { "V3Vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "V3Score": 7.5 }, "redhat": { "V3Vector": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", "V3Score": 6.5 } }, "References": [ "https://access.redhat.com/security/cve/CVE-2026-33671", "https://github.com/micromatch/picomatch", "https://github.com/micromatch/picomatch/commit/5eceecd27543b8e056b9307d69e105ea03618a7d", "https://github.com/micromatch/picomatch/security/advisories/GHSA-c2c7-rcm5-vvqj", "https://nvd.nist.gov/vuln/detail/CVE-2026-33671", "https://www.cve.org/CVERecord?id=CVE-2026-33671" ], "PublishedDate": "2026-03-26T22:16:30.21Z", "LastModifiedDate": "2026-04-01T13:45:11.687Z" }, { "VulnerabilityID": "CVE-2026-33672", "PkgID": "npm@11.11.1-r0", "PkgName": "npm", "PkgIdentifier": { "PURL": "pkg:apk/wolfi/npm@11.11.1-r0?arch=x86_64\u0026distro=20230201", "UID": "3749f003305fdde3", "BOMRef": "pkg:apk/wolfi/npm@11.11.1-r0?arch=x86_64\u0026distro=20230201" }, "InstalledVersion": "11.11.1-r0", "FixedVersion": "11.12.1-r0", "Status": "fixed", "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "PrimaryURL": "https://avd.aquasec.com/nvd/cve-2026-33672", "DataSource": { "ID": "wolfi", "Name": "Wolfi Secdb", "URL": "https://packages.wolfi.dev/os/security.json" }, "Fingerprint": "sha256:48204e3e1e64d9106d121d0b19a1bf5e70ce2490ce1772cd207f8009ff67c2d4", "Title": "picomatch: Picomatch: Data integrity compromised via method injection with crafted POSIX bracket expressions", "Description": "Picomatch is a glob matcher written JavaScript. Versions prior to 4.0.4, 3.0.2, and 2.3.2 are vulnerable to a method injection vulnerability affecting the `POSIX_REGEX_SOURCE` object. Because the object inherits from `Object.prototype`, specially crafted POSIX bracket expressions (e.g., `[[:constructor:]]`) can reference inherited method names. These methods are implicitly converted to strings and injected into the generated regular expression. This leads to incorrect glob matching behavior (integrity impact), where patterns may match unintended filenames. The issue does not enable remote code execution, but it can cause security-relevant logic errors in applications that rely on glob matching for filtering, validation, or access control. All users of affected `picomatch` versions that process untrusted or user-controlled glob patterns are potentially impacted. This issue is fixed in picomatch 4.0.4, 3.0.2 and 2.3.2. Users should upgrade to one of these versions or later, depending on their supported release line. If upgrading is not immediately possible, avoid passing untrusted glob patterns to picomatch. Possible mitigations include sanitizing or rejecting untrusted glob patterns, especially those containing POSIX character classes like `[[:...:]]`; avoiding the use of POSIX bracket expressions if user input is involved; and manually patching the library by modifying `POSIX_REGEX_SOURCE` to use a null prototype.", "Severity": "MEDIUM", "CweIDs": [ "CWE-1321" ], "VendorSeverity": { "ghsa": 2, "redhat": 2 }, "CVSS": { "ghsa": { "V3Vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N", "V3Score": 5.3 }, "redhat": { "V3Vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N", "V3Score": 5.3 } }, "References": [ "https://access.redhat.com/security/cve/CVE-2026-33672", "https://github.com/micromatch/picomatch", "https://github.com/micromatch/picomatch/commit/4516eb521f13a46b2fe1a1d2c9ef6b20ddc0e903", "https://github.com/micromatch/picomatch/security/advisories/GHSA-3v7f-55p6-f55p", "https://nvd.nist.gov/vuln/detail/CVE-2026-33672", "https://www.cve.org/CVERecord?id=CVE-2026-33672" ], "PublishedDate": "2026-03-26T22:16:30.387Z", "LastModifiedDate": "2026-04-01T13:44:53.397Z" }, { "VulnerabilityID": "CVE-2026-33750", "PkgID": "npm@11.11.1-r0", "PkgName": "npm", "PkgIdentifier": { "PURL": "pkg:apk/wolfi/npm@11.11.1-r0?arch=x86_64\u0026distro=20230201", "UID": "3749f003305fdde3", "BOMRef": "pkg:apk/wolfi/npm@11.11.1-r0?arch=x86_64\u0026distro=20230201" }, "InstalledVersion": "11.11.1-r0", "FixedVersion": "11.12.1-r0", "Status": "fixed", "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "PrimaryURL": "https://avd.aquasec.com/nvd/cve-2026-33750", "DataSource": { "ID": "wolfi", "Name": "Wolfi Secdb", "URL": "https://packages.wolfi.dev/os/security.json" }, "Fingerprint": "sha256:4aebeb53682941bdd9e150738f7f6a42cac68bb6cf784545ffbb8551c99e869f", "Title": "brace-expansion: brace-expansion: Denial of Service via zero step value in brace pattern", "Description": "The brace-expansion library generates arbitrary strings containing a common prefix and suffix. Prior to versions 5.0.5, 3.0.2, 2.0.3, and 1.1.13, a brace pattern with a zero step value (e.g., `{1..2..0}`) causes the sequence generation loop to run indefinitely, making the process hang for seconds and allocate heaps of memory. Versions 5.0.5, 3.0.2, 2.0.3, and 1.1.13 fix the issue. As a workaround, sanitize strings passed to `expand()` to ensure a step value of `0` is not used.", "Severity": "MEDIUM", "CweIDs": [ "CWE-400" ], "VendorSeverity": { "ghsa": 2, "redhat": 2 }, "CVSS": { "ghsa": { "V3Vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H", "V3Score": 6.5 }, "redhat": { "V3Vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H", "V3Score": 6.5 } }, "References": [ "https://access.redhat.com/security/cve/CVE-2026-33750", "https://github.com/juliangruber/brace-expansion", "https://github.com/juliangruber/brace-expansion/blob/daa71bcb4a30a2df9bcb7f7b8daaf2ab30e5794a/src/index.ts#L107-L113", "https://github.com/juliangruber/brace-expansion/blob/daa71bcb4a30a2df9bcb7f7b8daaf2ab30e5794a/src/index.ts#L184", "https://github.com/juliangruber/brace-expansion/commit/311ac0d54994158c0a384e286a7d6cbb17ee8ed5", "https://github.com/juliangruber/brace-expansion/commit/7fd684f89fdde3549563d0a6522226a9189472a2", "https://github.com/juliangruber/brace-expansion/commit/b9cacd9e55e7a1fa588fe4b7bb1159d52f1d902a", "https://github.com/juliangruber/brace-expansion/issues/98", "https://github.com/juliangruber/brace-expansion/pull/95", "https://github.com/juliangruber/brace-expansion/pull/96", "https://github.com/juliangruber/brace-expansion/pull/97", "https://github.com/juliangruber/brace-expansion/security/advisories/GHSA-f886-m6hf-6m8v", "https://nvd.nist.gov/vuln/detail/CVE-2026-33750", "https://www.cve.org/CVERecord?id=CVE-2026-33750" ], "PublishedDate": "2026-03-27T15:16:57.297Z", "LastModifiedDate": "2026-03-30T13:26:29.793Z" }, { "VulnerabilityID": "CVE-2026-2673", "PkgID": "openssl@3.6.1-r2", "PkgName": "openssl", "PkgIdentifier": { "PURL": "pkg:apk/wolfi/openssl@3.6.1-r2?arch=x86_64\u0026distro=20230201", "UID": "debbb22d66d827e7", "BOMRef": "pkg:apk/wolfi/openssl@3.6.1-r2?arch=x86_64\u0026distro=20230201" }, "InstalledVersion": "3.6.1-r2", "FixedVersion": "3.6.1-r3", "Status": "fixed", "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "PrimaryURL": "https://avd.aquasec.com/nvd/cve-2026-2673", "DataSource": { "ID": "wolfi", "Name": "Wolfi Secdb", "URL": "https://packages.wolfi.dev/os/security.json" }, "Fingerprint": "sha256:2576b829dcb0a5fd4b94832ea851d9d46be3a9bd279eeea5c6f7b5c1264a1cbe", "Title": "openssl: OpenSSL TLS 1.3 server may choose unexpected key agreement group", "Description": "Issue summary: An OpenSSL TLS 1.3 server may fail to negotiate the expected\npreferred key exchange group when its key exchange group configuration includes\nthe default by using the 'DEFAULT' keyword.\n\nImpact summary: A less preferred key exchange may be used even when a more\npreferred group is supported by both client and server, if the group\nwas not included among the client's initial predicated keyshares.\nThis will sometimes be the case with the new hybrid post-quantum groups,\nif the client chooses to defer their use until specifically requested by\nthe server.\n\nIf an OpenSSL TLS 1.3 server's configuration uses the 'DEFAULT' keyword to\ninterpolate the built-in default group list into its own configuration, perhaps\nadding or removing specific elements, then an implementation defect causes the\n'DEFAULT' list to lose its 'tuple' structure, and all server-supported groups\nwere treated as a single sufficiently secure 'tuple', with the server not\nsending a Hello Retry Request (HRR) even when a group in a more preferred tuple\nwas mutually supported.\n\nAs a result, the client and server might fail to negotiate a mutually supported\npost-quantum key agreement group, such as 'X25519MLKEM768', if the client's\nconfiguration results in only 'classical' groups (such as 'X25519' being the\nonly ones in the client's initial keyshare prediction).\n\nOpenSSL 3.5 and later support a new syntax for selecting the most preferred TLS\n1.3 key agreement group on TLS servers. The old syntax had a single 'flat'\nlist of groups, and treated all the supported groups as sufficiently secure.\nIf any of the keyshares predicted by the client were supported by the server\nthe most preferred among these was selected, even if other groups supported by\nthe client, but not included in the list of predicted keyshares would have been\nmore preferred, if included.\n\nThe new syntax partitions the groups into distinct 'tuples' of roughly\nequivalent security. Within each tuple the most preferred group included among\nthe client's predicted keyshares is chosen, but if the client supports a group\nfrom a more preferred tuple, but did not predict any corresponding keyshares,\nthe server will ask the client to retry the ClientHello (by issuing a Hello\nRetry Request or HRR) with the most preferred mutually supported group.\n\nThe above works as expected when the server's configuration uses the built-in\ndefault group list, or explicitly defines its own list by directly defining the\nvarious desired groups and group 'tuples'.\n\nNo OpenSSL FIPS modules are affected by this issue, the code in question lies\noutside the FIPS boundary.\n\nOpenSSL 3.6 and 3.5 are vulnerable to this issue.\n\nOpenSSL 3.6 users should upgrade to OpenSSL 3.6.2 once it is released.\nOpenSSL 3.5 users should upgrade to OpenSSL 3.5.6 once it is released.\n\nOpenSSL 3.4, 3.3, 3.0, 1.0.2 and 1.1.1 are not affected by this issue.", "Severity": "LOW", "CweIDs": [ "CWE-757" ], "VendorSeverity": { "amazon": 1, "redhat": 1, "ubuntu": 1 }, "CVSS": { "redhat": { "V3Vector": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:N", "V3Score": 3.1 } }, "References": [ "http://www.openwall.com/lists/oss-security/2026/03/13/3", "https://access.redhat.com/security/cve/CVE-2026-2673", "https://github.com/openssl/openssl/commit/2157c9d81f7b0bd7dfa25b960e928ec28e8dd63f", "https://github.com/openssl/openssl/commit/85977e013f32ceb96aa034c0e741adddc1a05e34", "https://nvd.nist.gov/vuln/detail/CVE-2026-2673", "https://openssl-library.org/news/secadv/20260313.txt", "https://www.cve.org/CVERecord?id=CVE-2026-2673" ], "PublishedDate": "2026-03-13T19:54:34.033Z", "LastModifiedDate": "2026-03-17T18:16:15.6Z" }, { "VulnerabilityID": "CVE-2026-4519", "PkgID": "python-3.13@3.13.12-r2", "PkgName": "python-3.13", "PkgIdentifier": { "PURL": "pkg:apk/wolfi/python-3.13@3.13.12-r2?arch=x86_64\u0026distro=20230201", "UID": "5eefeaf57e40e9ca", "BOMRef": "pkg:apk/wolfi/python-3.13@3.13.12-r2?arch=x86_64\u0026distro=20230201" }, "InstalledVersion": "3.13.12-r2", "FixedVersion": "3.13.12-r5", "Status": "fixed", "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "PrimaryURL": "https://avd.aquasec.com/nvd/cve-2026-4519", "DataSource": { "ID": "wolfi", "Name": "Wolfi Secdb", "URL": "https://packages.wolfi.dev/os/security.json" }, "Fingerprint": "sha256:6202936c8b7116fbebffc380abfe504829b779622870add2da47deb9e9bfc11f", "Title": "python: Python: Command-line option injection in webbrowser.open() via crafted URLs", "Description": "The webbrowser.open() API would accept leading dashes in the URL which \ncould be handled as command line options for certain web browsers. New \nbehavior rejects leading dashes. Users are recommended to sanitize URLs \nprior to passing to webbrowser.open().", "Severity": "HIGH", "CweIDs": [ "CWE-20" ], "VendorSeverity": { "alma": 3, "azure": 3, "cbl-mariner": 3, "oracle-oval": 3, "photon": 3, "redhat": 3 }, "CVSS": { "redhat": { "V3Vector": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:L", "V3Score": 7.1 } }, "References": [ "http://www.openwall.com/lists/oss-security/2026/03/20/1", "https://access.redhat.com/errata/RHSA-2026:6286", "https://access.redhat.com/security/cve/CVE-2026-4519", "https://bugzilla.redhat.com/2449649", "https://errata.almalinux.org/9/ALSA-2026-6286.html", "https://github.com/python/cpython/commit/43fe06b96f6a6cf5cfd5bdab20b8649374956866", "https://github.com/python/cpython/commit/82a24a4442312bdcfc4c799885e8b3e00990f02b", "https://github.com/python/cpython/commit/9669a912a0e329c094e992204d6bdb8787024d76", "https://github.com/python/cpython/commit/ad4d5ba32af4d80b0dfa2ba9d8203bfb219e60a5", "https://github.com/python/cpython/commit/cbba6119391112aba9c5aebf7b94aea447922c48", "https://github.com/python/cpython/commit/ceac1efc66516ac387eef2c9a0ce671895b44f03", "https://github.com/python/cpython/issues/143930", "https://github.com/python/cpython/pull/143931", "https://linux.oracle.com/cve/CVE-2026-4519.html", "https://linux.oracle.com/errata/ELSA-2026-6473.html", "https://mail.python.org/archives/list/security-announce@python.org/thread/AY5NDSS433JK56Q7Q5IS7B37QFZVVOUS/", "https://nvd.nist.gov/vuln/detail/CVE-2026-4519", "https://www.cve.org/CVERecord?id=CVE-2026-4519" ], "PublishedDate": "2026-03-20T15:16:24.057Z", "LastModifiedDate": "2026-03-25T18:16:33.073Z" }, { "VulnerabilityID": "CVE-2026-3644", "PkgID": "python-3.13@3.13.12-r2", "PkgName": "python-3.13", "PkgIdentifier": { "PURL": "pkg:apk/wolfi/python-3.13@3.13.12-r2?arch=x86_64\u0026distro=20230201", "UID": "5eefeaf57e40e9ca", "BOMRef": "pkg:apk/wolfi/python-3.13@3.13.12-r2?arch=x86_64\u0026distro=20230201" }, "InstalledVersion": "3.13.12-r2", "FixedVersion": "3.13.12-r7", "Status": "fixed", "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "PrimaryURL": "https://avd.aquasec.com/nvd/cve-2026-3644", "DataSource": { "ID": "wolfi", "Name": "Wolfi Secdb", "URL": "https://packages.wolfi.dev/os/security.json" }, "Fingerprint": "sha256:c6f2070e121b64e618e41f91a0a36d0d8da90cb0a96c80022676e6dfb3958011", "Title": "cpython: Incomplete control character validation in http.cookies", "Description": "The fix for CVE-2026-0672, which rejected control characters in http.cookies.Morsel, was incomplete. The Morsel.update(), |= operator, and unpickling paths were not patched, allowing control characters to bypass input validation. Additionally, BaseCookie.js_output() lacked the output validation applied to BaseCookie.output().", "Severity": "MEDIUM", "CweIDs": [ "CWE-20", "CWE-116" ], "VendorSeverity": { "amazon": 2, "redhat": 2 }, "CVSS": { "redhat": { "V3Vector": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N", "V3Score": 5.4 } }, "References": [ "https://access.redhat.com/security/cve/CVE-2026-3644", "https://github.com/python/cpython/commit/57e88c1cf95e1481b94ae57abe1010469d47a6b4", "https://github.com/python/cpython/commit/62ceb396fcbe69da1ded3702de586f4072b590dd", "https://github.com/python/cpython/commit/d16ecc6c3626f0e2cc8f08c309c83934e8a979dd", "https://github.com/python/cpython/issues/145599", "https://github.com/python/cpython/pull/145600", "https://mail.python.org/archives/list/security-announce@python.org/thread/H6CADMBCDRFGWCMOXWUIHFJNV43GABJ7/", "https://nvd.nist.gov/vuln/detail/CVE-2026-3644", "https://www.cve.org/CVERecord?id=CVE-2026-3644" ], "PublishedDate": "2026-03-16T18:16:09.907Z", "LastModifiedDate": "2026-03-17T14:20:01.67Z" }, { "VulnerabilityID": "CVE-2026-4224", "PkgID": "python-3.13@3.13.12-r2", "PkgName": "python-3.13", "PkgIdentifier": { "PURL": "pkg:apk/wolfi/python-3.13@3.13.12-r2?arch=x86_64\u0026distro=20230201", "UID": "5eefeaf57e40e9ca", "BOMRef": "pkg:apk/wolfi/python-3.13@3.13.12-r2?arch=x86_64\u0026distro=20230201" }, "InstalledVersion": "3.13.12-r2", "FixedVersion": "3.13.12-r7", "Status": "fixed", "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "PrimaryURL": "https://avd.aquasec.com/nvd/cve-2026-4224", "DataSource": { "ID": "wolfi", "Name": "Wolfi Secdb", "URL": "https://packages.wolfi.dev/os/security.json" }, "Fingerprint": "sha256:55070293a837fd96f4e3ecc530712d941716943af7a7e7a987e5c86bac8b2faf", "Title": "cpython: Stack overflow parsing XML with deeply nested DTD content models", "Description": "When an Expat parser with a registered ElementDeclHandler parses an inline\ndocument type definition containing a deeply nested content model a C stack\noverflow occurs.", "Severity": "MEDIUM", "CweIDs": [ "CWE-674" ], "VendorSeverity": { "amazon": 2, "redhat": 2 }, "CVSS": { "redhat": { "V3Vector": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H", "V3Score": 5.9 } }, "References": [ "http://www.openwall.com/lists/oss-security/2026/03/16/4", "https://access.redhat.com/security/cve/CVE-2026-4224", "https://github.com/python/cpython/commit/196edfb06a7458377d4d0f4b3cd41724c1f3bd4a", "https://github.com/python/cpython/commit/e0a8a6da90597a924b300debe045cdb4628ee1f3", "https://github.com/python/cpython/commit/eb0e8be3a7e11b87d198a2c3af1ed0eccf532768", "https://github.com/python/cpython/issues/145986", "https://github.com/python/cpython/pull/145987", "https://mail.python.org/archives/list/security-announce@python.org/thread/5M7CGUW3XBRY7II4DK43KF7NQQ3TPZ6R/", "https://nvd.nist.gov/vuln/detail/CVE-2026-4224", "https://www.cve.org/CVERecord?id=CVE-2026-4224" ], "PublishedDate": "2026-03-16T18:16:10.07Z", "LastModifiedDate": "2026-03-17T14:20:01.67Z" }, { "VulnerabilityID": "CVE-2026-2297", "PkgID": "python-3.13@3.13.12-r2", "PkgName": "python-3.13", "PkgIdentifier": { "PURL": "pkg:apk/wolfi/python-3.13@3.13.12-r2?arch=x86_64\u0026distro=20230201", "UID": "5eefeaf57e40e9ca", "BOMRef": "pkg:apk/wolfi/python-3.13@3.13.12-r2?arch=x86_64\u0026distro=20230201" }, "InstalledVersion": "3.13.12-r2", "FixedVersion": "3.13.12-r3", "Status": "fixed", "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "PrimaryURL": "https://avd.aquasec.com/nvd/cve-2026-2297", "DataSource": { "ID": "wolfi", "Name": "Wolfi Secdb", "URL": "https://packages.wolfi.dev/os/security.json" }, "Fingerprint": "sha256:9981049236c048fa17fc48f28047aeb14013893f61ceaa3ca8d6090c6f9bebc9", "Title": "cpython: CPython: Logging Bypass in Legacy .pyc File Handling", "Description": "The import hook in CPython that handles legacy *.pyc files (SourcelessFileLoader) is incorrectly handled in FileLoader (a base class) and so does not use io.open_code() to read the .pyc files. sys.audit handlers for this audit event therefore do not fire.", "Severity": "LOW", "CweIDs": [ "CWE-668" ], "VendorSeverity": { "redhat": 1 }, "CVSS": { "redhat": { "V3Vector": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N", "V3Score": 3.3 } }, "References": [ "http://www.openwall.com/lists/oss-security/2026/03/05/6", "https://access.redhat.com/security/cve/CVE-2026-2297", "https://github.com/python/cpython/commit/482d6f8bdba9da3725d272e8bb4a2d25fb6a603e", "https://github.com/python/cpython/commit/a51b1b512de1d56b3714b65628a2eae2b07e535e", "https://github.com/python/cpython/commit/e58e9802b9bec5cdbf48fc9bf1da5f4fda482e86", "https://github.com/python/cpython/issues/145506", "https://github.com/python/cpython/pull/145507", "https://nvd.nist.gov/vuln/detail/CVE-2026-2297", "https://www.cve.org/CVERecord?id=CVE-2026-2297" ], "PublishedDate": "2026-03-04T23:16:10.757Z", "LastModifiedDate": "2026-03-12T15:16:27.957Z" }, { "VulnerabilityID": "CVE-2026-4519", "PkgID": "python-3.13-base@3.13.12-r2", "PkgName": "python-3.13-base", "PkgIdentifier": { "PURL": "pkg:apk/wolfi/python-3.13-base@3.13.12-r2?arch=x86_64\u0026distro=20230201", "UID": "db8eca39b752ce7d", "BOMRef": "pkg:apk/wolfi/python-3.13-base@3.13.12-r2?arch=x86_64\u0026distro=20230201" }, "InstalledVersion": "3.13.12-r2", "FixedVersion": "3.13.12-r5", "Status": "fixed", "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "PrimaryURL": "https://avd.aquasec.com/nvd/cve-2026-4519", "DataSource": { "ID": "wolfi", "Name": "Wolfi Secdb", "URL": "https://packages.wolfi.dev/os/security.json" }, "Fingerprint": "sha256:cb6986c7282fd976ff3c7375d9cc989e7cf61398e630c5ba1545f13f0c37a046", "Title": "python: Python: Command-line option injection in webbrowser.open() via crafted URLs", "Description": "The webbrowser.open() API would accept leading dashes in the URL which \ncould be handled as command line options for certain web browsers. New \nbehavior rejects leading dashes. Users are recommended to sanitize URLs \nprior to passing to webbrowser.open().", "Severity": "HIGH", "CweIDs": [ "CWE-20" ], "VendorSeverity": { "alma": 3, "azure": 3, "cbl-mariner": 3, "oracle-oval": 3, "photon": 3, "redhat": 3 }, "CVSS": { "redhat": { "V3Vector": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:L", "V3Score": 7.1 } }, "References": [ "http://www.openwall.com/lists/oss-security/2026/03/20/1", "https://access.redhat.com/errata/RHSA-2026:6286", "https://access.redhat.com/security/cve/CVE-2026-4519", "https://bugzilla.redhat.com/2449649", "https://errata.almalinux.org/9/ALSA-2026-6286.html", "https://github.com/python/cpython/commit/43fe06b96f6a6cf5cfd5bdab20b8649374956866", "https://github.com/python/cpython/commit/82a24a4442312bdcfc4c799885e8b3e00990f02b", "https://github.com/python/cpython/commit/9669a912a0e329c094e992204d6bdb8787024d76", "https://github.com/python/cpython/commit/ad4d5ba32af4d80b0dfa2ba9d8203bfb219e60a5", "https://github.com/python/cpython/commit/cbba6119391112aba9c5aebf7b94aea447922c48", "https://github.com/python/cpython/commit/ceac1efc66516ac387eef2c9a0ce671895b44f03", "https://github.com/python/cpython/issues/143930", "https://github.com/python/cpython/pull/143931", "https://linux.oracle.com/cve/CVE-2026-4519.html", "https://linux.oracle.com/errata/ELSA-2026-6473.html", "https://mail.python.org/archives/list/security-announce@python.org/thread/AY5NDSS433JK56Q7Q5IS7B37QFZVVOUS/", "https://nvd.nist.gov/vuln/detail/CVE-2026-4519", "https://www.cve.org/CVERecord?id=CVE-2026-4519" ], "PublishedDate": "2026-03-20T15:16:24.057Z", "LastModifiedDate": "2026-03-25T18:16:33.073Z" }, { "VulnerabilityID": "CVE-2026-3644", "PkgID": "python-3.13-base@3.13.12-r2", "PkgName": "python-3.13-base", "PkgIdentifier": { "PURL": "pkg:apk/wolfi/python-3.13-base@3.13.12-r2?arch=x86_64\u0026distro=20230201", "UID": "db8eca39b752ce7d", "BOMRef": "pkg:apk/wolfi/python-3.13-base@3.13.12-r2?arch=x86_64\u0026distro=20230201" }, "InstalledVersion": "3.13.12-r2", "FixedVersion": "3.13.12-r7", "Status": "fixed", "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "PrimaryURL": "https://avd.aquasec.com/nvd/cve-2026-3644", "DataSource": { "ID": "wolfi", "Name": "Wolfi Secdb", "URL": "https://packages.wolfi.dev/os/security.json" }, "Fingerprint": "sha256:e4107e6ec017ff69ddf8d86fc5ae5e641d35f653ee6965acf72549dd492ee62f", "Title": "cpython: Incomplete control character validation in http.cookies", "Description": "The fix for CVE-2026-0672, which rejected control characters in http.cookies.Morsel, was incomplete. The Morsel.update(), |= operator, and unpickling paths were not patched, allowing control characters to bypass input validation. Additionally, BaseCookie.js_output() lacked the output validation applied to BaseCookie.output().", "Severity": "MEDIUM", "CweIDs": [ "CWE-20", "CWE-116" ], "VendorSeverity": { "amazon": 2, "redhat": 2 }, "CVSS": { "redhat": { "V3Vector": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N", "V3Score": 5.4 } }, "References": [ "https://access.redhat.com/security/cve/CVE-2026-3644", "https://github.com/python/cpython/commit/57e88c1cf95e1481b94ae57abe1010469d47a6b4", "https://github.com/python/cpython/commit/62ceb396fcbe69da1ded3702de586f4072b590dd", "https://github.com/python/cpython/commit/d16ecc6c3626f0e2cc8f08c309c83934e8a979dd", "https://github.com/python/cpython/issues/145599", "https://github.com/python/cpython/pull/145600", "https://mail.python.org/archives/list/security-announce@python.org/thread/H6CADMBCDRFGWCMOXWUIHFJNV43GABJ7/", "https://nvd.nist.gov/vuln/detail/CVE-2026-3644", "https://www.cve.org/CVERecord?id=CVE-2026-3644" ], "PublishedDate": "2026-03-16T18:16:09.907Z", "LastModifiedDate": "2026-03-17T14:20:01.67Z" }, { "VulnerabilityID": "CVE-2026-4224", "PkgID": "python-3.13-base@3.13.12-r2", "PkgName": "python-3.13-base", "PkgIdentifier": { "PURL": "pkg:apk/wolfi/python-3.13-base@3.13.12-r2?arch=x86_64\u0026distro=20230201", "UID": "db8eca39b752ce7d", "BOMRef": "pkg:apk/wolfi/python-3.13-base@3.13.12-r2?arch=x86_64\u0026distro=20230201" }, "InstalledVersion": "3.13.12-r2", "FixedVersion": "3.13.12-r7", "Status": "fixed", "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "PrimaryURL": "https://avd.aquasec.com/nvd/cve-2026-4224", "DataSource": { "ID": "wolfi", "Name": "Wolfi Secdb", "URL": "https://packages.wolfi.dev/os/security.json" }, "Fingerprint": "sha256:693c93e7be0e214b60adccfc7abfcd10288d449b0463515bb27351d528a3d9dc", "Title": "cpython: Stack overflow parsing XML with deeply nested DTD content models", "Description": "When an Expat parser with a registered ElementDeclHandler parses an inline\ndocument type definition containing a deeply nested content model a C stack\noverflow occurs.", "Severity": "MEDIUM", "CweIDs": [ "CWE-674" ], "VendorSeverity": { "amazon": 2, "redhat": 2 }, "CVSS": { "redhat": { "V3Vector": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H", "V3Score": 5.9 } }, "References": [ "http://www.openwall.com/lists/oss-security/2026/03/16/4", "https://access.redhat.com/security/cve/CVE-2026-4224", "https://github.com/python/cpython/commit/196edfb06a7458377d4d0f4b3cd41724c1f3bd4a", "https://github.com/python/cpython/commit/e0a8a6da90597a924b300debe045cdb4628ee1f3", "https://github.com/python/cpython/commit/eb0e8be3a7e11b87d198a2c3af1ed0eccf532768", "https://github.com/python/cpython/issues/145986", "https://github.com/python/cpython/pull/145987", "https://mail.python.org/archives/list/security-announce@python.org/thread/5M7CGUW3XBRY7II4DK43KF7NQQ3TPZ6R/", "https://nvd.nist.gov/vuln/detail/CVE-2026-4224", "https://www.cve.org/CVERecord?id=CVE-2026-4224" ], "PublishedDate": "2026-03-16T18:16:10.07Z", "LastModifiedDate": "2026-03-17T14:20:01.67Z" }, { "VulnerabilityID": "CVE-2026-2297", "PkgID": "python-3.13-base@3.13.12-r2", "PkgName": "python-3.13-base", "PkgIdentifier": { "PURL": "pkg:apk/wolfi/python-3.13-base@3.13.12-r2?arch=x86_64\u0026distro=20230201", "UID": "db8eca39b752ce7d", "BOMRef": "pkg:apk/wolfi/python-3.13-base@3.13.12-r2?arch=x86_64\u0026distro=20230201" }, "InstalledVersion": "3.13.12-r2", "FixedVersion": "3.13.12-r3", "Status": "fixed", "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "PrimaryURL": "https://avd.aquasec.com/nvd/cve-2026-2297", "DataSource": { "ID": "wolfi", "Name": "Wolfi Secdb", "URL": "https://packages.wolfi.dev/os/security.json" }, "Fingerprint": "sha256:6bd1f15382fc7d3cfa3ea32267c75adf5d4e69da6f202f12628595602cd5badb", "Title": "cpython: CPython: Logging Bypass in Legacy .pyc File Handling", "Description": "The import hook in CPython that handles legacy *.pyc files (SourcelessFileLoader) is incorrectly handled in FileLoader (a base class) and so does not use io.open_code() to read the .pyc files. sys.audit handlers for this audit event therefore do not fire.", "Severity": "LOW", "CweIDs": [ "CWE-668" ], "VendorSeverity": { "redhat": 1 }, "CVSS": { "redhat": { "V3Vector": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N", "V3Score": 3.3 } }, "References": [ "http://www.openwall.com/lists/oss-security/2026/03/05/6", "https://access.redhat.com/security/cve/CVE-2026-2297", "https://github.com/python/cpython/commit/482d6f8bdba9da3725d272e8bb4a2d25fb6a603e", "https://github.com/python/cpython/commit/a51b1b512de1d56b3714b65628a2eae2b07e535e", "https://github.com/python/cpython/commit/e58e9802b9bec5cdbf48fc9bf1da5f4fda482e86", "https://github.com/python/cpython/issues/145506", "https://github.com/python/cpython/pull/145507", "https://nvd.nist.gov/vuln/detail/CVE-2026-2297", "https://www.cve.org/CVERecord?id=CVE-2026-2297" ], "PublishedDate": "2026-03-04T23:16:10.757Z", "LastModifiedDate": "2026-03-12T15:16:27.957Z" } ] }, { "Target": "Node.js", "Class": "lang-pkgs", "Type": "node-pkg", "Packages": [ { "ID": "@gar/promise-retry@1.0.2", "Name": "@gar/promise-retry", "Identifier": { "PURL": "pkg:npm/%40gar/promise-retry@1.0.2", "UID": "cfabd786d91a9847", "BOMRef": "pkg:npm/%40gar/promise-retry@1.0.2" }, "Version": "1.0.2", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/@gar/promise-retry/package.json", "Digest": "sha1:85c1a6717187a21b3cb7799f0a83c288145dfef2" }, { "ID": "@isaacs/balanced-match@4.0.1", "Name": "@isaacs/balanced-match", "Identifier": { "PURL": "pkg:npm/%40isaacs/balanced-match@4.0.1", "UID": "2c37b9240a084f3a", "BOMRef": "087587cc-6190-42c9-a36e-9450958470a0" }, "Version": "4.0.1", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/@isaacs/balanced-match/package.json", "Digest": "sha1:17c25730c5cb82e1d4ee1c212f2b2588dd5a3781" }, { "ID": "@isaacs/balanced-match@4.0.1", "Name": "@isaacs/balanced-match", "Identifier": { "PURL": "pkg:npm/%40isaacs/balanced-match@4.0.1", "UID": "c30a57dfe7ed438a", "BOMRef": "6b909ccd-9dcd-4c15-bc6c-9c5914875fe0" }, "Version": "4.0.1", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:b72305f951665b304d407e1dec69e0ec73b230360e8a4a17365b58d22946e37a", "DiffID": "sha256:20ca8f2ade98548df7b9a0182bfced0032d7d9f9243fa8e450e155f6d775f343" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/@isaacs/brace-expansion/node_modules/@isaacs/balanced-match/package.json", "Digest": "sha1:17c25730c5cb82e1d4ee1c212f2b2588dd5a3781" }, { "ID": "@isaacs/balanced-match@4.0.1", "Name": "@isaacs/balanced-match", "Identifier": { "PURL": "pkg:npm/%40isaacs/balanced-match@4.0.1", "UID": "8998de483005671a", "BOMRef": "3a620e53-ded4-419a-bd10-7cf2f256e5c4" }, "Version": "4.0.1", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/@isaacs/brace-expansion/node_modules/@isaacs/balanced-match/package.json", "Digest": "sha1:17c25730c5cb82e1d4ee1c212f2b2588dd5a3781" }, { "ID": "@isaacs/brace-expansion@5.0.1", "Name": "@isaacs/brace-expansion", "Identifier": { "PURL": "pkg:npm/%40isaacs/brace-expansion@5.0.1", "UID": "ac9a1b3d304a1107", "BOMRef": "2f31ffdd-e541-48ce-b5f9-f808bfe24c7b" }, "Version": "5.0.1", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:b72305f951665b304d407e1dec69e0ec73b230360e8a4a17365b58d22946e37a", "DiffID": "sha256:20ca8f2ade98548df7b9a0182bfced0032d7d9f9243fa8e450e155f6d775f343" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/@isaacs/brace-expansion/package.json", "Digest": "sha1:582e89e8912ed72319d3768c79b15781164e5594" }, { "ID": "@isaacs/brace-expansion@5.0.1", "Name": "@isaacs/brace-expansion", "Identifier": { "PURL": "pkg:npm/%40isaacs/brace-expansion@5.0.1", "UID": "cf4e2e819f43d940", "BOMRef": "c4d41ff3-4f4d-4103-be67-77499dd924a6" }, "Version": "5.0.1", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/@isaacs/brace-expansion/package.json", "Digest": "sha1:582e89e8912ed72319d3768c79b15781164e5594" }, { "ID": "@isaacs/cliui@9.0.0", "Name": "@isaacs/cliui", "Identifier": { "PURL": "pkg:npm/%40isaacs/cliui@9.0.0", "UID": "33aee2eec1c235c2", "BOMRef": "2aaac1f2-54d5-485f-a055-ec88c53623d7" }, "Version": "9.0.0", "Licenses": [ "BlueOak-1.0.0" ], "Layer": { "Digest": "sha256:b72305f951665b304d407e1dec69e0ec73b230360e8a4a17365b58d22946e37a", "DiffID": "sha256:20ca8f2ade98548df7b9a0182bfced0032d7d9f9243fa8e450e155f6d775f343" }, "FilePath": "usr/lib/node_modules/npm/node_modules/glob/node_modules/@isaacs/cliui/package.json", "Digest": "sha1:1ce0188abd4792f8dbcd6fede4f6bfc508a2e3fe" }, { "ID": "@isaacs/cliui@9.0.0", "Name": "@isaacs/cliui", "Identifier": { "PURL": "pkg:npm/%40isaacs/cliui@9.0.0", "UID": "83f153515e692d5c", "BOMRef": "dafea168-9aa4-4c60-9e78-31cb6a1ebdf7" }, "Version": "9.0.0", "Licenses": [ "BlueOak-1.0.0" ], "Layer": { "Digest": "sha256:b72305f951665b304d407e1dec69e0ec73b230360e8a4a17365b58d22946e37a", "DiffID": "sha256:20ca8f2ade98548df7b9a0182bfced0032d7d9f9243fa8e450e155f6d775f343" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/glob/node_modules/@isaacs/cliui/package.json", "Digest": "sha1:1ce0188abd4792f8dbcd6fede4f6bfc508a2e3fe" }, { "ID": "@isaacs/cliui@9.0.0", "Name": "@isaacs/cliui", "Identifier": { "PURL": "pkg:npm/%40isaacs/cliui@9.0.0", "UID": "22c4a497aadbb53d", "BOMRef": "0047ee3d-b7cb-4a71-b727-c5b59e2f6bde" }, "Version": "9.0.0", "Licenses": [ "BlueOak-1.0.0" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/glob/node_modules/@isaacs/cliui/package.json", "Digest": "sha1:1ce0188abd4792f8dbcd6fede4f6bfc508a2e3fe" }, { "ID": "@isaacs/cliui@9.0.0", "Name": "@isaacs/cliui", "Identifier": { "PURL": "pkg:npm/%40isaacs/cliui@9.0.0", "UID": "354385c987a34c2f", "BOMRef": "3e61bb65-6204-457d-8d38-3e2c799e1153" }, "Version": "9.0.0", "Licenses": [ "BlueOak-1.0.0" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/glob/node_modules/@isaacs/cliui/package.json", "Digest": "sha1:1ce0188abd4792f8dbcd6fede4f6bfc508a2e3fe" }, { "ID": "@isaacs/fs-minipass@4.0.1", "Name": "@isaacs/fs-minipass", "Identifier": { "PURL": "pkg:npm/%40isaacs/fs-minipass@4.0.1", "UID": "aee455594c4f7b08", "BOMRef": "63ef868c-8550-4892-a950-bc4b5fdbcef4" }, "Version": "4.0.1", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:b72305f951665b304d407e1dec69e0ec73b230360e8a4a17365b58d22946e37a", "DiffID": "sha256:20ca8f2ade98548df7b9a0182bfced0032d7d9f9243fa8e450e155f6d775f343" }, "FilePath": "usr/lib/node_modules/npm/node_modules/tar/node_modules/@isaacs/fs-minipass/package.json", "Digest": "sha1:504edba0a95630e08edf150335c2fe914825fc5a" }, { "ID": "@isaacs/fs-minipass@4.0.1", "Name": "@isaacs/fs-minipass", "Identifier": { "PURL": "pkg:npm/%40isaacs/fs-minipass@4.0.1", "UID": "4348dc68270aa0d0", "BOMRef": "e4ecf3a7-679a-4c5b-879e-583d22d65aee" }, "Version": "4.0.1", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/@isaacs/fs-minipass/package.json", "Digest": "sha1:504edba0a95630e08edf150335c2fe914825fc5a" }, { "ID": "@isaacs/fs-minipass@4.0.1", "Name": "@isaacs/fs-minipass", "Identifier": { "PURL": "pkg:npm/%40isaacs/fs-minipass@4.0.1", "UID": "8a31b2b0bbd625c1", "BOMRef": "894c01ec-6bda-4e68-b59b-90de910ef20f" }, "Version": "4.0.1", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:b72305f951665b304d407e1dec69e0ec73b230360e8a4a17365b58d22946e37a", "DiffID": "sha256:20ca8f2ade98548df7b9a0182bfced0032d7d9f9243fa8e450e155f6d775f343" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/tar/node_modules/@isaacs/fs-minipass/package.json", "Digest": "sha1:504edba0a95630e08edf150335c2fe914825fc5a" }, { "ID": "@isaacs/fs-minipass@4.0.1", "Name": "@isaacs/fs-minipass", "Identifier": { "PURL": "pkg:npm/%40isaacs/fs-minipass@4.0.1", "UID": "95724e023ec52b2f", "BOMRef": "33321e81-8a1c-4a38-8bc3-56b88062ff66" }, "Version": "4.0.1", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/@isaacs/fs-minipass/package.json", "Digest": "sha1:504edba0a95630e08edf150335c2fe914825fc5a" }, { "ID": "@isaacs/fs-minipass@4.0.1", "Name": "@isaacs/fs-minipass", "Identifier": { "PURL": "pkg:npm/%40isaacs/fs-minipass@4.0.1", "UID": "39b12049593f84dc", "BOMRef": "83438323-59a4-4175-87ae-b51683bed8de" }, "Version": "4.0.1", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/tar/node_modules/@isaacs/fs-minipass/package.json", "Digest": "sha1:504edba0a95630e08edf150335c2fe914825fc5a" }, { "ID": "@isaacs/fs-minipass@4.0.1", "Name": "@isaacs/fs-minipass", "Identifier": { "PURL": "pkg:npm/%40isaacs/fs-minipass@4.0.1", "UID": "32638cf25a51e144", "BOMRef": "3b69b02e-cb52-4309-9923-53dcac10d900" }, "Version": "4.0.1", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/tar/node_modules/@isaacs/fs-minipass/package.json", "Digest": "sha1:504edba0a95630e08edf150335c2fe914825fc5a" }, { "ID": "@isaacs/string-locale-compare@1.1.0", "Name": "@isaacs/string-locale-compare", "Identifier": { "PURL": "pkg:npm/%40isaacs/string-locale-compare@1.1.0", "UID": "ca44ed10ad2b2b2c", "BOMRef": "a1649f7d-97ff-424a-8ebf-fc4032898a56" }, "Version": "1.1.0", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/@isaacs/string-locale-compare/package.json", "Digest": "sha1:9dc38644ea6f125e3b06825ff04df5ea22f56094" }, { "ID": "@isaacs/string-locale-compare@1.1.0", "Name": "@isaacs/string-locale-compare", "Identifier": { "PURL": "pkg:npm/%40isaacs/string-locale-compare@1.1.0", "UID": "4d7b336d8bc9c55", "BOMRef": "7681a9ed-feb2-411d-94df-f15a76b90c62" }, "Version": "1.1.0", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/@isaacs/string-locale-compare/package.json", "Digest": "sha1:9dc38644ea6f125e3b06825ff04df5ea22f56094" }, { "ID": "@npmcli/agent@4.0.0", "Name": "@npmcli/agent", "Identifier": { "PURL": "pkg:npm/%40npmcli/agent@4.0.0", "UID": "29bec6e9ec89f4d8", "BOMRef": "a498d8e5-b0d7-4691-81ed-6c11ed08f26e" }, "Version": "4.0.0", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/@npmcli/agent/package.json", "Digest": "sha1:48e34f21103faf00d9c60756e62dee09494be465" }, { "ID": "@npmcli/agent@4.0.0", "Name": "@npmcli/agent", "Identifier": { "PURL": "pkg:npm/%40npmcli/agent@4.0.0", "UID": "69d95a515bce9781", "BOMRef": "4c9e547f-8c2e-4d76-828a-89eb2bffa31d" }, "Version": "4.0.0", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/@npmcli/agent/package.json", "Digest": "sha1:48e34f21103faf00d9c60756e62dee09494be465" }, { "ID": "@npmcli/arborist@9.1.10", "Name": "@npmcli/arborist", "Identifier": { "PURL": "pkg:npm/%40npmcli/arborist@9.1.10", "UID": "62c6772e8c32b02d", "BOMRef": "pkg:npm/%40npmcli/arborist@9.1.10" }, "Version": "9.1.10", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/@npmcli/arborist/package.json", "Digest": "sha1:8e4589e96293dc11053236ce210a3e55de99e7b9" }, { "ID": "@npmcli/arborist@9.4.1", "Name": "@npmcli/arborist", "Identifier": { "PURL": "pkg:npm/%40npmcli/arborist@9.4.1", "UID": "7e4ef80792011980", "BOMRef": "pkg:npm/%40npmcli/arborist@9.4.1" }, "Version": "9.4.1", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/@npmcli/arborist/package.json", "Digest": "sha1:5309d72c5cee0bed75e72e6900b332d417d05ae2" }, { "ID": "@npmcli/config@10.5.0", "Name": "@npmcli/config", "Identifier": { "PURL": "pkg:npm/%40npmcli/config@10.5.0", "UID": "15e4de384fc05a32", "BOMRef": "pkg:npm/%40npmcli/config@10.5.0" }, "Version": "10.5.0", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/@npmcli/config/package.json", "Digest": "sha1:3ff7c610ec3542ff18bc54df984f23a2c29f06aa" }, { "ID": "@npmcli/config@10.7.1", "Name": "@npmcli/config", "Identifier": { "PURL": "pkg:npm/%40npmcli/config@10.7.1", "UID": "4dea9d5026eddeac", "BOMRef": "pkg:npm/%40npmcli/config@10.7.1" }, "Version": "10.7.1", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/@npmcli/config/package.json", "Digest": "sha1:779af7712d5765f5b69dc3f99ae8dfb2d6600e1c" }, { "ID": "@npmcli/fs@5.0.0", "Name": "@npmcli/fs", "Identifier": { "PURL": "pkg:npm/%40npmcli/fs@5.0.0", "UID": "ba10dc48d10f8ac8", "BOMRef": "aaffff27-ad9a-4504-8783-c3de0b519daf" }, "Version": "5.0.0", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/@npmcli/fs/package.json", "Digest": "sha1:3a4053128a62fd9581012b83ef531b95397167e3" }, { "ID": "@npmcli/fs@5.0.0", "Name": "@npmcli/fs", "Identifier": { "PURL": "pkg:npm/%40npmcli/fs@5.0.0", "UID": "ec30a7066d2b8ec1", "BOMRef": "8d70ad7a-4f3e-49b4-b3a2-9abdf1b385a9" }, "Version": "5.0.0", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/@npmcli/fs/package.json", "Digest": "sha1:3a4053128a62fd9581012b83ef531b95397167e3" }, { "ID": "@npmcli/git@7.0.1", "Name": "@npmcli/git", "Identifier": { "PURL": "pkg:npm/%40npmcli/git@7.0.1", "UID": "86b9571af68ce8a3", "BOMRef": "pkg:npm/%40npmcli/git@7.0.1" }, "Version": "7.0.1", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/@npmcli/git/package.json", "Digest": "sha1:d74915bdb0a742b4c720d33fff12917072da12ab" }, { "ID": "@npmcli/git@7.0.2", "Name": "@npmcli/git", "Identifier": { "PURL": "pkg:npm/%40npmcli/git@7.0.2", "UID": "da2fdb77cccbae40", "BOMRef": "pkg:npm/%40npmcli/git@7.0.2" }, "Version": "7.0.2", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/@npmcli/git/package.json", "Digest": "sha1:3ef6957cc9f0604d0b1b9c368be2d9d562f0a2ca" }, { "ID": "@npmcli/installed-package-contents@4.0.0", "Name": "@npmcli/installed-package-contents", "Identifier": { "PURL": "pkg:npm/%40npmcli/installed-package-contents@4.0.0", "UID": "a069c51c95793093", "BOMRef": "c8afcbd5-dcf4-41d4-9f9e-e0a10f75de04" }, "Version": "4.0.0", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/@npmcli/installed-package-contents/package.json", "Digest": "sha1:189051543dd09896a1c31f80390afe0b5306d4c0" }, { "ID": "@npmcli/installed-package-contents@4.0.0", "Name": "@npmcli/installed-package-contents", "Identifier": { "PURL": "pkg:npm/%40npmcli/installed-package-contents@4.0.0", "UID": "c79d85ad0404f974", "BOMRef": "827ccf3b-844e-409b-8c53-c7784ad27de2" }, "Version": "4.0.0", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/@npmcli/installed-package-contents/package.json", "Digest": "sha1:189051543dd09896a1c31f80390afe0b5306d4c0" }, { "ID": "@npmcli/map-workspaces@5.0.3", "Name": "@npmcli/map-workspaces", "Identifier": { "PURL": "pkg:npm/%40npmcli/map-workspaces@5.0.3", "UID": "c927e0d89ff16bb1", "BOMRef": "432f8138-5f0a-41bf-a154-ab09a58bed8f" }, "Version": "5.0.3", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/@npmcli/map-workspaces/package.json", "Digest": "sha1:9b2b024266bb8c342ed0bfbefb1c48a7d9b0c015" }, { "ID": "@npmcli/map-workspaces@5.0.3", "Name": "@npmcli/map-workspaces", "Identifier": { "PURL": "pkg:npm/%40npmcli/map-workspaces@5.0.3", "UID": "fceffc866aa4919f", "BOMRef": "d134957c-40f3-4fad-947c-77bb0be9a972" }, "Version": "5.0.3", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/@npmcli/map-workspaces/package.json", "Digest": "sha1:9b2b024266bb8c342ed0bfbefb1c48a7d9b0c015" }, { "ID": "@npmcli/metavuln-calculator@9.0.3", "Name": "@npmcli/metavuln-calculator", "Identifier": { "PURL": "pkg:npm/%40npmcli/metavuln-calculator@9.0.3", "UID": "c38402729ef2e272", "BOMRef": "4b5072a2-9c2a-4e0d-b773-c4d373a06b12" }, "Version": "9.0.3", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/@npmcli/metavuln-calculator/package.json", "Digest": "sha1:ef331816f66b624d692f45b26c2e6a910767656c" }, { "ID": "@npmcli/metavuln-calculator@9.0.3", "Name": "@npmcli/metavuln-calculator", "Identifier": { "PURL": "pkg:npm/%40npmcli/metavuln-calculator@9.0.3", "UID": "ac4b6a078574d925", "BOMRef": "68f0695e-924e-439b-90f8-f8769f3351f5" }, "Version": "9.0.3", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/@npmcli/metavuln-calculator/package.json", "Digest": "sha1:ef331816f66b624d692f45b26c2e6a910767656c" }, { "ID": "@npmcli/name-from-folder@4.0.0", "Name": "@npmcli/name-from-folder", "Identifier": { "PURL": "pkg:npm/%40npmcli/name-from-folder@4.0.0", "UID": "1700af1a8dd9bb80", "BOMRef": "53eaa34b-9e46-4d26-a1b3-ff222d577ebe" }, "Version": "4.0.0", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/@npmcli/name-from-folder/package.json", "Digest": "sha1:4d3174b80cc1b257fa96b098c95e27ffaff5b659" }, { "ID": "@npmcli/name-from-folder@4.0.0", "Name": "@npmcli/name-from-folder", "Identifier": { "PURL": "pkg:npm/%40npmcli/name-from-folder@4.0.0", "UID": "c46dcc59cafbabca", "BOMRef": "41a95cb1-0554-49bb-bd53-e79eff553d6c" }, "Version": "4.0.0", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/@npmcli/name-from-folder/package.json", "Digest": "sha1:4d3174b80cc1b257fa96b098c95e27ffaff5b659" }, { "ID": "@npmcli/node-gyp@5.0.0", "Name": "@npmcli/node-gyp", "Identifier": { "PURL": "pkg:npm/%40npmcli/node-gyp@5.0.0", "UID": "eacbe04ff1089c03", "BOMRef": "3a0377a5-3929-4745-8ddd-9f1f2352c3fa" }, "Version": "5.0.0", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/@npmcli/node-gyp/package.json", "Digest": "sha1:c2549c9809a38abb866596530702d0de2c0cdc44" }, { "ID": "@npmcli/node-gyp@5.0.0", "Name": "@npmcli/node-gyp", "Identifier": { "PURL": "pkg:npm/%40npmcli/node-gyp@5.0.0", "UID": "d6f684792b98a42a", "BOMRef": "b91bda71-6c94-427d-bd38-2a5531a608d1" }, "Version": "5.0.0", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/@npmcli/node-gyp/package.json", "Digest": "sha1:c2549c9809a38abb866596530702d0de2c0cdc44" }, { "ID": "@npmcli/package-json@7.0.4", "Name": "@npmcli/package-json", "Identifier": { "PURL": "pkg:npm/%40npmcli/package-json@7.0.4", "UID": "8846e449886c6bde", "BOMRef": "pkg:npm/%40npmcli/package-json@7.0.4" }, "Version": "7.0.4", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/@npmcli/package-json/package.json", "Digest": "sha1:765d7c3731b2abc0d33fd2c548968251527de7a4" }, { "ID": "@npmcli/package-json@7.0.5", "Name": "@npmcli/package-json", "Identifier": { "PURL": "pkg:npm/%40npmcli/package-json@7.0.5", "UID": "388890199303f678", "BOMRef": "pkg:npm/%40npmcli/package-json@7.0.5" }, "Version": "7.0.5", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/@npmcli/package-json/package.json", "Digest": "sha1:6f10f890a1dd14676d61faee4d379c06ec93502e" }, { "ID": "@npmcli/promise-spawn@9.0.1", "Name": "@npmcli/promise-spawn", "Identifier": { "PURL": "pkg:npm/%40npmcli/promise-spawn@9.0.1", "UID": "1ca465604c2872aa", "BOMRef": "94108126-fcc3-40a2-a2b7-285334b74999" }, "Version": "9.0.1", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/@npmcli/promise-spawn/package.json", "Digest": "sha1:8cc9163ac59ee91de9240a11723d8701fa80317e" }, { "ID": "@npmcli/promise-spawn@9.0.1", "Name": "@npmcli/promise-spawn", "Identifier": { "PURL": "pkg:npm/%40npmcli/promise-spawn@9.0.1", "UID": "e1df4679aad5b459", "BOMRef": "a457c46d-22a4-4b73-ba4f-bec060a37f72" }, "Version": "9.0.1", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/@npmcli/promise-spawn/package.json", "Digest": "sha1:8cc9163ac59ee91de9240a11723d8701fa80317e" }, { "ID": "@npmcli/query@5.0.0", "Name": "@npmcli/query", "Identifier": { "PURL": "pkg:npm/%40npmcli/query@5.0.0", "UID": "9064c1c70950a368", "BOMRef": "ff943ef0-1b07-4f2d-b20b-751352e6d127" }, "Version": "5.0.0", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/@npmcli/query/package.json", "Digest": "sha1:f56866b082e0015fbbe60b12d303c71b778af0e1" }, { "ID": "@npmcli/query@5.0.0", "Name": "@npmcli/query", "Identifier": { "PURL": "pkg:npm/%40npmcli/query@5.0.0", "UID": "6b863a097d7af729", "BOMRef": "bd7524fe-9da4-42f3-96a6-74ad13e714dd" }, "Version": "5.0.0", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/@npmcli/query/package.json", "Digest": "sha1:f56866b082e0015fbbe60b12d303c71b778af0e1" }, { "ID": "@npmcli/redact@4.0.0", "Name": "@npmcli/redact", "Identifier": { "PURL": "pkg:npm/%40npmcli/redact@4.0.0", "UID": "ece1fec843419493", "BOMRef": "b2cc7b3c-0f6b-4116-af07-92eeab9022ec" }, "Version": "4.0.0", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/@npmcli/redact/package.json", "Digest": "sha1:e81d178ea5aac085222f1c853a9b42fb0cc96a46" }, { "ID": "@npmcli/redact@4.0.0", "Name": "@npmcli/redact", "Identifier": { "PURL": "pkg:npm/%40npmcli/redact@4.0.0", "UID": "be92c4a5e8041435", "BOMRef": "8125c3f9-ae65-4d93-ab19-eb1895ab7060" }, "Version": "4.0.0", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/@npmcli/redact/package.json", "Digest": "sha1:e81d178ea5aac085222f1c853a9b42fb0cc96a46" }, { "ID": "@npmcli/run-script@10.0.3", "Name": "@npmcli/run-script", "Identifier": { "PURL": "pkg:npm/%40npmcli/run-script@10.0.3", "UID": "bd67ae714406e95a", "BOMRef": "pkg:npm/%40npmcli/run-script@10.0.3" }, "Version": "10.0.3", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/@npmcli/run-script/package.json", "Digest": "sha1:d9a49385f1a06449642c48bcb52f9600898eb65f" }, { "ID": "@npmcli/run-script@10.0.4", "Name": "@npmcli/run-script", "Identifier": { "PURL": "pkg:npm/%40npmcli/run-script@10.0.4", "UID": "1b58e7c7a130eb3f", "BOMRef": "pkg:npm/%40npmcli/run-script@10.0.4" }, "Version": "10.0.4", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/@npmcli/run-script/package.json", "Digest": "sha1:855c8b65be9be5d022bbb32a7a80637e6df5e1a2" }, { "ID": "@prisma/client@5.4.2", "Name": "@prisma/client", "Identifier": { "PURL": "pkg:npm/%40prisma/client@5.4.2", "UID": "ccae54f6fdd98592", "BOMRef": "pkg:npm/%40prisma/client@5.4.2" }, "Version": "5.4.2", "Licenses": [ "Apache-2.0" ], "Layer": { "Digest": "sha256:798f8163a9f99b0b63ea5ee2493c845081542316e03793800db8ed2ea45cd4c4", "DiffID": "sha256:cae7bc74f48337ce5362ef3a381bc6781d6f5003e357aaff2316c8c31f8648fe" }, "FilePath": "root/.cache/prisma-python/binaries/5.4.2/ac9d7041ed77bcc8a8dbd2ab6616b39013829574/node_modules/prisma/prisma-client/package.json", "Digest": "sha1:067a3cf4b08bb66df88691a278bd21a778474e60" }, { "ID": "@prisma/engines@5.4.2", "Name": "@prisma/engines", "Identifier": { "PURL": "pkg:npm/%40prisma/engines@5.4.2", "UID": "d104cadd023022c2", "BOMRef": "pkg:npm/%40prisma/engines@5.4.2" }, "Version": "5.4.2", "Licenses": [ "Apache-2.0" ], "Layer": { "Digest": "sha256:798f8163a9f99b0b63ea5ee2493c845081542316e03793800db8ed2ea45cd4c4", "DiffID": "sha256:cae7bc74f48337ce5362ef3a381bc6781d6f5003e357aaff2316c8c31f8648fe" }, "FilePath": "root/.cache/prisma-python/binaries/5.4.2/ac9d7041ed77bcc8a8dbd2ab6616b39013829574/node_modules/@prisma/engines/package.json", "Digest": "sha1:27f640d9b356e0726de8c28f78eb8ad1c8bf1dd9" }, { "ID": "@sigstore/bundle@4.0.0", "Name": "@sigstore/bundle", "Identifier": { "PURL": "pkg:npm/%40sigstore/bundle@4.0.0", "UID": "4459e7a3fe27acb5", "BOMRef": "e3c80401-c881-4759-b82e-41954750e269" }, "Version": "4.0.0", "Licenses": [ "Apache-2.0" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/@sigstore/bundle/package.json", "Digest": "sha1:1d6ca2f018ec884e6df5424d8d7fc6818d64c3b4" }, { "ID": "@sigstore/bundle@4.0.0", "Name": "@sigstore/bundle", "Identifier": { "PURL": "pkg:npm/%40sigstore/bundle@4.0.0", "UID": "e64c66fce43a115b", "BOMRef": "3ab53cc4-45b0-4713-ac12-90708e154dac" }, "Version": "4.0.0", "Licenses": [ "Apache-2.0" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/@sigstore/bundle/package.json", "Digest": "sha1:1d6ca2f018ec884e6df5424d8d7fc6818d64c3b4" }, { "ID": "@sigstore/core@3.1.0", "Name": "@sigstore/core", "Identifier": { "PURL": "pkg:npm/%40sigstore/core@3.1.0", "UID": "b3c4f1d6aa050116", "BOMRef": "9bdefa60-79f6-4eb0-901e-81ca6c1c34b3" }, "Version": "3.1.0", "Licenses": [ "Apache-2.0" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/@sigstore/core/package.json", "Digest": "sha1:1b171001ef4ffeaaab9d24334adcb37c669acb60" }, { "ID": "@sigstore/core@3.1.0", "Name": "@sigstore/core", "Identifier": { "PURL": "pkg:npm/%40sigstore/core@3.1.0", "UID": "d3f017f15d1b1b7e", "BOMRef": "6ab3f3a9-849b-473e-9589-973c5823046f" }, "Version": "3.1.0", "Licenses": [ "Apache-2.0" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/@sigstore/core/package.json", "Digest": "sha1:1b171001ef4ffeaaab9d24334adcb37c669acb60" }, { "ID": "@sigstore/protobuf-specs@0.5.0", "Name": "@sigstore/protobuf-specs", "Identifier": { "PURL": "pkg:npm/%40sigstore/protobuf-specs@0.5.0", "UID": "b42382b665ce1946", "BOMRef": "a96ab7cb-02c2-42d7-9ba2-5e03437b31fc" }, "Version": "0.5.0", "Licenses": [ "Apache-2.0" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/@sigstore/protobuf-specs/package.json", "Digest": "sha1:883da1dcb03a5b8e4ba41bd5e8db239c9c17392b" }, { "ID": "@sigstore/protobuf-specs@0.5.0", "Name": "@sigstore/protobuf-specs", "Identifier": { "PURL": "pkg:npm/%40sigstore/protobuf-specs@0.5.0", "UID": "60c43deb529992db", "BOMRef": "c886200e-103b-47cc-a267-b648e542a8e0" }, "Version": "0.5.0", "Licenses": [ "Apache-2.0" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/@sigstore/protobuf-specs/package.json", "Digest": "sha1:883da1dcb03a5b8e4ba41bd5e8db239c9c17392b" }, { "ID": "@sigstore/sign@4.1.0", "Name": "@sigstore/sign", "Identifier": { "PURL": "pkg:npm/%40sigstore/sign@4.1.0", "UID": "c640dafef82e6264", "BOMRef": "51d5b88b-eed8-4506-9344-31ee14a2d9f7" }, "Version": "4.1.0", "Licenses": [ "Apache-2.0" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/@sigstore/sign/package.json", "Digest": "sha1:191dce764e0717fa6f8ae2e214e69421c6fd5797" }, { "ID": "@sigstore/sign@4.1.0", "Name": "@sigstore/sign", "Identifier": { "PURL": "pkg:npm/%40sigstore/sign@4.1.0", "UID": "1ea155c1fa14b94c", "BOMRef": "ddf3b252-d12c-4fe0-8e83-fd11c0d0a9b9" }, "Version": "4.1.0", "Licenses": [ "Apache-2.0" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/@sigstore/sign/package.json", "Digest": "sha1:191dce764e0717fa6f8ae2e214e69421c6fd5797" }, { "ID": "@sigstore/tuf@4.0.1", "Name": "@sigstore/tuf", "Identifier": { "PURL": "pkg:npm/%40sigstore/tuf@4.0.1", "UID": "9c6703496d0d536c", "BOMRef": "8b465d2a-b90e-43d1-ad8c-1a34f504df67" }, "Version": "4.0.1", "Licenses": [ "Apache-2.0" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/@sigstore/tuf/package.json", "Digest": "sha1:6e166263107e702af9d17595f800a6e6498a7726" }, { "ID": "@sigstore/tuf@4.0.1", "Name": "@sigstore/tuf", "Identifier": { "PURL": "pkg:npm/%40sigstore/tuf@4.0.1", "UID": "fff343175c069de6", "BOMRef": "fbeba5f2-3589-4cb4-b1d8-eefb1ce38153" }, "Version": "4.0.1", "Licenses": [ "Apache-2.0" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/@sigstore/tuf/package.json", "Digest": "sha1:6e166263107e702af9d17595f800a6e6498a7726" }, { "ID": "@sigstore/verify@3.1.0", "Name": "@sigstore/verify", "Identifier": { "PURL": "pkg:npm/%40sigstore/verify@3.1.0", "UID": "4a6b753f1a4fd011", "BOMRef": "738c7121-2294-4ed0-b4b6-122599680289" }, "Version": "3.1.0", "Licenses": [ "Apache-2.0" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/@sigstore/verify/package.json", "Digest": "sha1:4523305db384269754d0fab04bacf31ca05ad1be" }, { "ID": "@sigstore/verify@3.1.0", "Name": "@sigstore/verify", "Identifier": { "PURL": "pkg:npm/%40sigstore/verify@3.1.0", "UID": "cebae2208fd83904", "BOMRef": "7ba2de1b-326a-4b5a-a85d-cf8280af5b95" }, "Version": "3.1.0", "Licenses": [ "Apache-2.0" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/@sigstore/verify/package.json", "Digest": "sha1:4523305db384269754d0fab04bacf31ca05ad1be" }, { "ID": "@tufjs/canonical-json@2.0.0", "Name": "@tufjs/canonical-json", "Identifier": { "PURL": "pkg:npm/%40tufjs/canonical-json@2.0.0", "UID": "2db8839397d2a42", "BOMRef": "0dde8f5e-9871-4c13-a49a-26fb6e11f5ea" }, "Version": "2.0.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/@tufjs/canonical-json/package.json", "Digest": "sha1:5af11d14b15be3f1dc8a1195100ea60de40325c9" }, { "ID": "@tufjs/canonical-json@2.0.0", "Name": "@tufjs/canonical-json", "Identifier": { "PURL": "pkg:npm/%40tufjs/canonical-json@2.0.0", "UID": "9d7086e482816a8", "BOMRef": "7771fc21-5dec-4732-887a-699e99be9963" }, "Version": "2.0.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/@tufjs/canonical-json/package.json", "Digest": "sha1:5af11d14b15be3f1dc8a1195100ea60de40325c9" }, { "ID": "@tufjs/models@4.1.0", "Name": "@tufjs/models", "Identifier": { "PURL": "pkg:npm/%40tufjs/models@4.1.0", "UID": "9a3849e67f4573b6", "BOMRef": "384d8c2b-b1e2-443d-94dc-4fd5250acb39" }, "Version": "4.1.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/@tufjs/models/package.json", "Digest": "sha1:2ac6b88622c667e4c6582d32bbb21276b6781c61" }, { "ID": "@tufjs/models@4.1.0", "Name": "@tufjs/models", "Identifier": { "PURL": "pkg:npm/%40tufjs/models@4.1.0", "UID": "6c96d36e09aa0e4c", "BOMRef": "78f5a740-32ae-480a-97af-d181d159ba46" }, "Version": "4.1.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/@tufjs/models/package.json", "Digest": "sha1:2ac6b88622c667e4c6582d32bbb21276b6781c61" }, { "ID": "abbrev@4.0.0", "Name": "abbrev", "Identifier": { "PURL": "pkg:npm/abbrev@4.0.0", "UID": "886e5e01f5beb741", "BOMRef": "34c96981-81d2-48af-8347-12c6fc67e526" }, "Version": "4.0.0", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/abbrev/package.json", "Digest": "sha1:6869bc2da89cbb7aba0c148aefa7e8fc43456128" }, { "ID": "abbrev@4.0.0", "Name": "abbrev", "Identifier": { "PURL": "pkg:npm/abbrev@4.0.0", "UID": "20249769487d190b", "BOMRef": "61f57ce4-1c52-4ff1-b4d9-7c80b381605e" }, "Version": "4.0.0", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/abbrev/package.json", "Digest": "sha1:6869bc2da89cbb7aba0c148aefa7e8fc43456128" }, { "ID": "agent-base@7.1.4", "Name": "agent-base", "Identifier": { "PURL": "pkg:npm/agent-base@7.1.4", "UID": "e5014f5f315cddf8", "BOMRef": "7ef9a240-5781-49c9-9d91-60da5b6e5fd3" }, "Version": "7.1.4", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/agent-base/package.json", "Digest": "sha1:126adbedcff6faa6826eca63c75e9193237ab10b" }, { "ID": "agent-base@7.1.4", "Name": "agent-base", "Identifier": { "PURL": "pkg:npm/agent-base@7.1.4", "UID": "392a349f26591939", "BOMRef": "c67227aa-84c1-47dc-aa21-fb8e1c98f27f" }, "Version": "7.1.4", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/agent-base/package.json", "Digest": "sha1:126adbedcff6faa6826eca63c75e9193237ab10b" }, { "ID": "ansi-regex@5.0.1", "Name": "ansi-regex", "Identifier": { "PURL": "pkg:npm/ansi-regex@5.0.1", "UID": "6c04950c53682e54", "BOMRef": "pkg:npm/ansi-regex@5.0.1" }, "Version": "5.0.1", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/ansi-regex/package.json", "Digest": "sha1:f1b78e043012e1ab5689d57377093e88f1400677" }, { "ID": "aproba@2.1.0", "Name": "aproba", "Identifier": { "PURL": "pkg:npm/aproba@2.1.0", "UID": "c58fa5f63794cf1d", "BOMRef": "607433df-178c-4465-881d-cb90dc9f0efe" }, "Version": "2.1.0", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/aproba/package.json", "Digest": "sha1:1cc57d456b29f580ef93bb2fee5566d3e3285009" }, { "ID": "aproba@2.1.0", "Name": "aproba", "Identifier": { "PURL": "pkg:npm/aproba@2.1.0", "UID": "cc928e9554ddfbfe", "BOMRef": "40d58e66-0ff6-4198-9ecd-ad7223d68c3b" }, "Version": "2.1.0", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/aproba/package.json", "Digest": "sha1:1cc57d456b29f580ef93bb2fee5566d3e3285009" }, { "ID": "archy@1.0.0", "Name": "archy", "Identifier": { "PURL": "pkg:npm/archy@1.0.0", "UID": "478bd955810a878d", "BOMRef": "b72c70c5-8ddc-4958-99b4-84c5ccb16c3a" }, "Version": "1.0.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/archy/package.json", "Digest": "sha1:3bd81e8f9d8e79057497b7473c6eac4f3d519149" }, { "ID": "archy@1.0.0", "Name": "archy", "Identifier": { "PURL": "pkg:npm/archy@1.0.0", "UID": "5187a89b8acfbe5c", "BOMRef": "8405410c-6130-40dc-8765-6a78ee5e0701" }, "Version": "1.0.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/archy/package.json", "Digest": "sha1:3bd81e8f9d8e79057497b7473c6eac4f3d519149" }, { "ID": "balanced-match@4.0.4", "Name": "balanced-match", "Identifier": { "PURL": "pkg:npm/balanced-match@4.0.4", "UID": "63feb7e1c63d7d55", "BOMRef": "8f5c628c-5dc6-4f0f-8081-9d32ceaebbee" }, "Version": "4.0.4", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:b72305f951665b304d407e1dec69e0ec73b230360e8a4a17365b58d22946e37a", "DiffID": "sha256:20ca8f2ade98548df7b9a0182bfced0032d7d9f9243fa8e450e155f6d775f343" }, "FilePath": "usr/lib/node_modules/npm/node_modules/minimatch/node_modules/balanced-match/package.json", "Digest": "sha1:a878f68f14569d5eeca00fc49803d192f24163cb" }, { "ID": "balanced-match@4.0.4", "Name": "balanced-match", "Identifier": { "PURL": "pkg:npm/balanced-match@4.0.4", "UID": "612ba756327ac6cf", "BOMRef": "9e166450-a284-4872-b922-c2b38ba0d2eb" }, "Version": "4.0.4", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:b72305f951665b304d407e1dec69e0ec73b230360e8a4a17365b58d22946e37a", "DiffID": "sha256:20ca8f2ade98548df7b9a0182bfced0032d7d9f9243fa8e450e155f6d775f343" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/minimatch/node_modules/balanced-match/package.json", "Digest": "sha1:a878f68f14569d5eeca00fc49803d192f24163cb" }, { "ID": "balanced-match@4.0.4", "Name": "balanced-match", "Identifier": { "PURL": "pkg:npm/balanced-match@4.0.4", "UID": "4a2d96d0327632ce", "BOMRef": "f6970f1e-d930-4a9d-af65-be6c0f6fc0f9" }, "Version": "4.0.4", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/minimatch/node_modules/balanced-match/package.json", "Digest": "sha1:a878f68f14569d5eeca00fc49803d192f24163cb" }, { "ID": "balanced-match@4.0.4", "Name": "balanced-match", "Identifier": { "PURL": "pkg:npm/balanced-match@4.0.4", "UID": "bd6d6a7ddabfbbba", "BOMRef": "dc118f22-87ab-4d6b-b5d6-3fbdf5611852" }, "Version": "4.0.4", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/balanced-match/package.json", "Digest": "sha1:a878f68f14569d5eeca00fc49803d192f24163cb" }, { "ID": "balanced-match@4.0.4", "Name": "balanced-match", "Identifier": { "PURL": "pkg:npm/balanced-match@4.0.4", "UID": "5d2e97f04d82bd31", "BOMRef": "ff5a5d32-27c3-47ee-812e-e6262ee36b30" }, "Version": "4.0.4", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/minimatch/node_modules/balanced-match/package.json", "Digest": "sha1:a878f68f14569d5eeca00fc49803d192f24163cb" }, { "ID": "bin-links@6.0.0", "Name": "bin-links", "Identifier": { "PURL": "pkg:npm/bin-links@6.0.0", "UID": "ce855d63e8b92b25", "BOMRef": "4a791cde-9d41-4cc2-9710-de0f85fc5df7" }, "Version": "6.0.0", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/bin-links/package.json", "Digest": "sha1:93d3777b34117955d6d5e16ab5342b65b8a21d46" }, { "ID": "bin-links@6.0.0", "Name": "bin-links", "Identifier": { "PURL": "pkg:npm/bin-links@6.0.0", "UID": "29c0d2e1f9f1a2e3", "BOMRef": "a485f70d-9e74-4a93-8aca-278969622a3b" }, "Version": "6.0.0", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/bin-links/package.json", "Digest": "sha1:93d3777b34117955d6d5e16ab5342b65b8a21d46" }, { "ID": "binary-extensions@3.1.0", "Name": "binary-extensions", "Identifier": { "PURL": "pkg:npm/binary-extensions@3.1.0", "UID": "82ebbe35d2fee658", "BOMRef": "597c7376-ab09-4685-8a7b-a57636f920c3" }, "Version": "3.1.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/binary-extensions/package.json", "Digest": "sha1:fd41784d905c4769ecd7a2045234bf3336b20240" }, { "ID": "binary-extensions@3.1.0", "Name": "binary-extensions", "Identifier": { "PURL": "pkg:npm/binary-extensions@3.1.0", "UID": "939b06083d5ad921", "BOMRef": "6f9294cc-f4e2-47e3-9723-2183434edfb6" }, "Version": "3.1.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/binary-extensions/package.json", "Digest": "sha1:fd41784d905c4769ecd7a2045234bf3336b20240" }, { "ID": "brace-expansion@5.0.4", "Name": "brace-expansion", "Identifier": { "PURL": "pkg:npm/brace-expansion@5.0.4", "UID": "80f194588511d55d", "BOMRef": "dfde8592-0671-49d5-9c6c-ca8fc09c4bab" }, "Version": "5.0.4", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:b72305f951665b304d407e1dec69e0ec73b230360e8a4a17365b58d22946e37a", "DiffID": "sha256:20ca8f2ade98548df7b9a0182bfced0032d7d9f9243fa8e450e155f6d775f343" }, "FilePath": "usr/lib/node_modules/npm/node_modules/minimatch/node_modules/brace-expansion/package.json", "Digest": "sha1:294f6804b500fb266c02e73c294c165f31d56b76" }, { "ID": "brace-expansion@5.0.4", "Name": "brace-expansion", "Identifier": { "PURL": "pkg:npm/brace-expansion@5.0.4", "UID": "cd43c9912597f5d7", "BOMRef": "4d0a6cf6-ba27-4e58-961b-c34bca9780d0" }, "Version": "5.0.4", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:b72305f951665b304d407e1dec69e0ec73b230360e8a4a17365b58d22946e37a", "DiffID": "sha256:20ca8f2ade98548df7b9a0182bfced0032d7d9f9243fa8e450e155f6d775f343" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/minimatch/node_modules/brace-expansion/package.json", "Digest": "sha1:294f6804b500fb266c02e73c294c165f31d56b76" }, { "ID": "brace-expansion@5.0.4", "Name": "brace-expansion", "Identifier": { "PURL": "pkg:npm/brace-expansion@5.0.4", "UID": "f7639de87948dad7", "BOMRef": "c24f5125-c164-44a9-b5d4-ad8227423ae5" }, "Version": "5.0.4", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/minimatch/node_modules/brace-expansion/package.json", "Digest": "sha1:294f6804b500fb266c02e73c294c165f31d56b76" }, { "ID": "brace-expansion@5.0.4", "Name": "brace-expansion", "Identifier": { "PURL": "pkg:npm/brace-expansion@5.0.4", "UID": "451f2fe91ba9558c", "BOMRef": "a41f40d7-e09f-448e-a97e-18bd70bd626f" }, "Version": "5.0.4", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/brace-expansion/package.json", "Digest": "sha1:294f6804b500fb266c02e73c294c165f31d56b76" }, { "ID": "brace-expansion@5.0.4", "Name": "brace-expansion", "Identifier": { "PURL": "pkg:npm/brace-expansion@5.0.4", "UID": "1d722765525aa851", "BOMRef": "902170a2-f525-41b4-9a2c-2ce105110374" }, "Version": "5.0.4", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/minimatch/node_modules/brace-expansion/package.json", "Digest": "sha1:294f6804b500fb266c02e73c294c165f31d56b76" }, { "ID": "cacache@20.0.3", "Name": "cacache", "Identifier": { "PURL": "pkg:npm/cacache@20.0.3", "UID": "25d440e0bbc544ca", "BOMRef": "a8b51b2c-bb89-4971-9eb8-d3f4fa680d6c" }, "Version": "20.0.3", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/cacache/package.json", "Digest": "sha1:794ddf6857b8e0a3ab5e8b853a874fedd196d468" }, { "ID": "cacache@20.0.3", "Name": "cacache", "Identifier": { "PURL": "pkg:npm/cacache@20.0.3", "UID": "2c82ed3111b5fd16", "BOMRef": "9a7d0052-8d66-4a1b-8333-415ab4e72127" }, "Version": "20.0.3", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/cacache/package.json", "Digest": "sha1:794ddf6857b8e0a3ab5e8b853a874fedd196d468" }, { "ID": "chalk@5.6.2", "Name": "chalk", "Identifier": { "PURL": "pkg:npm/chalk@5.6.2", "UID": "6797d58b02065813", "BOMRef": "6b8f97b0-5b09-4193-9359-07b904614219" }, "Version": "5.6.2", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/chalk/package.json", "Digest": "sha1:468d2997b68c367664e82a1d1b8bc344c65a52f6" }, { "ID": "chalk@5.6.2", "Name": "chalk", "Identifier": { "PURL": "pkg:npm/chalk@5.6.2", "UID": "42b4771230755a61", "BOMRef": "388a1302-f3f4-4bdd-be19-648c0a91fcb1" }, "Version": "5.6.2", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/chalk/package.json", "Digest": "sha1:468d2997b68c367664e82a1d1b8bc344c65a52f6" }, { "ID": "chownr@3.0.0", "Name": "chownr", "Identifier": { "PURL": "pkg:npm/chownr@3.0.0", "UID": "627684ff1ee5932", "BOMRef": "1847d1e4-e6cb-4bfe-8c65-5b9591e0108b" }, "Version": "3.0.0", "Licenses": [ "BlueOak-1.0.0" ], "Layer": { "Digest": "sha256:b72305f951665b304d407e1dec69e0ec73b230360e8a4a17365b58d22946e37a", "DiffID": "sha256:20ca8f2ade98548df7b9a0182bfced0032d7d9f9243fa8e450e155f6d775f343" }, "FilePath": "usr/lib/node_modules/npm/node_modules/tar/node_modules/chownr/package.json", "Digest": "sha1:fc7d452c2e7e9b57f311b04f8b5826656ccc8e1b" }, { "ID": "chownr@3.0.0", "Name": "chownr", "Identifier": { "PURL": "pkg:npm/chownr@3.0.0", "UID": "7d8da510c8920393", "BOMRef": "bc4a65e9-524a-4193-a043-e08a7ed97e4a" }, "Version": "3.0.0", "Licenses": [ "BlueOak-1.0.0" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/chownr/package.json", "Digest": "sha1:fc7d452c2e7e9b57f311b04f8b5826656ccc8e1b" }, { "ID": "chownr@3.0.0", "Name": "chownr", "Identifier": { "PURL": "pkg:npm/chownr@3.0.0", "UID": "f9017abb757db450", "BOMRef": "ba0c4c24-96c6-429a-83b1-f0301dcb7508" }, "Version": "3.0.0", "Licenses": [ "BlueOak-1.0.0" ], "Layer": { "Digest": "sha256:b72305f951665b304d407e1dec69e0ec73b230360e8a4a17365b58d22946e37a", "DiffID": "sha256:20ca8f2ade98548df7b9a0182bfced0032d7d9f9243fa8e450e155f6d775f343" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/tar/node_modules/chownr/package.json", "Digest": "sha1:fc7d452c2e7e9b57f311b04f8b5826656ccc8e1b" }, { "ID": "chownr@3.0.0", "Name": "chownr", "Identifier": { "PURL": "pkg:npm/chownr@3.0.0", "UID": "ad201b01593e79f2", "BOMRef": "e20d236e-a97e-4e2b-af8d-263130e8ac52" }, "Version": "3.0.0", "Licenses": [ "BlueOak-1.0.0" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/chownr/package.json", "Digest": "sha1:fc7d452c2e7e9b57f311b04f8b5826656ccc8e1b" }, { "ID": "chownr@3.0.0", "Name": "chownr", "Identifier": { "PURL": "pkg:npm/chownr@3.0.0", "UID": "5a752e97ec1f497d", "BOMRef": "7acae6cb-e764-48bc-8dfb-6e19d6402aa3" }, "Version": "3.0.0", "Licenses": [ "BlueOak-1.0.0" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/tar/node_modules/chownr/package.json", "Digest": "sha1:fc7d452c2e7e9b57f311b04f8b5826656ccc8e1b" }, { "ID": "chownr@3.0.0", "Name": "chownr", "Identifier": { "PURL": "pkg:npm/chownr@3.0.0", "UID": "c56005b784e02f18", "BOMRef": "05667c8e-bfd4-4a66-afa7-f6ffb79bf140" }, "Version": "3.0.0", "Licenses": [ "BlueOak-1.0.0" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/tar/node_modules/chownr/package.json", "Digest": "sha1:fc7d452c2e7e9b57f311b04f8b5826656ccc8e1b" }, { "ID": "ci-info@4.3.1", "Name": "ci-info", "Identifier": { "PURL": "pkg:npm/ci-info@4.3.1", "UID": "ce6214f67af4e5e5", "BOMRef": "pkg:npm/ci-info@4.3.1" }, "Version": "4.3.1", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/ci-info/package.json", "Digest": "sha1:6b3b12a5534f6e76cb13a851250efc1bb7e5ff21" }, { "ID": "ci-info@4.4.0", "Name": "ci-info", "Identifier": { "PURL": "pkg:npm/ci-info@4.4.0", "UID": "54d9530821e2ceac", "BOMRef": "pkg:npm/ci-info@4.4.0" }, "Version": "4.4.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/ci-info/package.json", "Digest": "sha1:e2623b66b993dca3177e444bd44a85376724c11d" }, { "ID": "cidr-regex@5.0.1", "Name": "cidr-regex", "Identifier": { "PURL": "pkg:npm/cidr-regex@5.0.1", "UID": "45e34d12489e38be", "BOMRef": "pkg:npm/cidr-regex@5.0.1" }, "Version": "5.0.1", "Licenses": [ "BSD-2-Clause" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/cidr-regex/package.json", "Digest": "sha1:472161dcb9eaebd9f280a0b36172ba21f93a9b86" }, { "ID": "cidr-regex@5.0.3", "Name": "cidr-regex", "Identifier": { "PURL": "pkg:npm/cidr-regex@5.0.3", "UID": "64420a2ec548d2d4", "BOMRef": "pkg:npm/cidr-regex@5.0.3" }, "Version": "5.0.3", "Licenses": [ "BSD-2-Clause" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/cidr-regex/package.json", "Digest": "sha1:e6f201f195a92eda4aa01dca4b73641ac79e1d89" }, { "ID": "cli-columns@4.0.0", "Name": "cli-columns", "Identifier": { "PURL": "pkg:npm/cli-columns@4.0.0", "UID": "a662089fe2754406", "BOMRef": "pkg:npm/cli-columns@4.0.0" }, "Version": "4.0.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/cli-columns/package.json", "Digest": "sha1:06c7ce3d82ba512eafa34bab2566bcce77d4beb9" }, { "ID": "cmd-shim@8.0.0", "Name": "cmd-shim", "Identifier": { "PURL": "pkg:npm/cmd-shim@8.0.0", "UID": "eab764fe352946eb", "BOMRef": "b147e4fd-ecfa-4d51-8774-ddca9ebcef4e" }, "Version": "8.0.0", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/cmd-shim/package.json", "Digest": "sha1:bd1a460fd1e14f3dd73e03a0b21fc6e8bb60bfff" }, { "ID": "cmd-shim@8.0.0", "Name": "cmd-shim", "Identifier": { "PURL": "pkg:npm/cmd-shim@8.0.0", "UID": "787fbadb966984c1", "BOMRef": "07fb0397-37f8-4e8b-96f3-9d3bf46e7b85" }, "Version": "8.0.0", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/cmd-shim/package.json", "Digest": "sha1:bd1a460fd1e14f3dd73e03a0b21fc6e8bb60bfff" }, { "ID": "common-ancestor-path@2.0.0", "Name": "common-ancestor-path", "Identifier": { "PURL": "pkg:npm/common-ancestor-path@2.0.0", "UID": "4b235b1ee736d3b5", "BOMRef": "809c878c-0973-4663-be9a-11feab66d28c" }, "Version": "2.0.0", "Licenses": [ "BlueOak-1.0.0" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/common-ancestor-path/package.json", "Digest": "sha1:8036c99c2d18b8840dc4aa274be9fbe844e9e16f" }, { "ID": "common-ancestor-path@2.0.0", "Name": "common-ancestor-path", "Identifier": { "PURL": "pkg:npm/common-ancestor-path@2.0.0", "UID": "d136d8bc99794ae1", "BOMRef": "d52aa144-7bdb-4074-a100-03f691d39690" }, "Version": "2.0.0", "Licenses": [ "BlueOak-1.0.0" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/common-ancestor-path/package.json", "Digest": "sha1:8036c99c2d18b8840dc4aa274be9fbe844e9e16f" }, { "ID": "corepack@0.34.6", "Name": "corepack", "Identifier": { "PURL": "pkg:npm/corepack@0.34.6", "UID": "1b4aca60670079c6", "BOMRef": "pkg:npm/corepack@0.34.6" }, "Version": "0.34.6", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/corepack/package.json", "Digest": "sha1:5c7c6859a36c05736c52ecdc731bfa3499ff31fb" }, { "ID": "cross-spawn@7.0.6", "Name": "cross-spawn", "Identifier": { "PURL": "pkg:npm/cross-spawn@7.0.6", "UID": "44210595f1ddd2df", "BOMRef": "758e43d4-f46b-4f19-a685-26593c8c925d" }, "Version": "7.0.6", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:b72305f951665b304d407e1dec69e0ec73b230360e8a4a17365b58d22946e37a", "DiffID": "sha256:20ca8f2ade98548df7b9a0182bfced0032d7d9f9243fa8e450e155f6d775f343" }, "FilePath": "usr/lib/node_modules/npm/node_modules/glob/node_modules/cross-spawn/package.json", "Digest": "sha1:9becaa8ecb51ad9b303dd62369423cb9f287163a" }, { "ID": "cross-spawn@7.0.6", "Name": "cross-spawn", "Identifier": { "PURL": "pkg:npm/cross-spawn@7.0.6", "UID": "1488cbba72feb45f", "BOMRef": "8bb053a7-08c4-4eeb-a523-612f3df50d28" }, "Version": "7.0.6", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:b72305f951665b304d407e1dec69e0ec73b230360e8a4a17365b58d22946e37a", "DiffID": "sha256:20ca8f2ade98548df7b9a0182bfced0032d7d9f9243fa8e450e155f6d775f343" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/glob/node_modules/cross-spawn/package.json", "Digest": "sha1:9becaa8ecb51ad9b303dd62369423cb9f287163a" }, { "ID": "cross-spawn@7.0.6", "Name": "cross-spawn", "Identifier": { "PURL": "pkg:npm/cross-spawn@7.0.6", "UID": "3795cb039844e487", "BOMRef": "0c0e6075-6059-4d7a-8b53-599ff1b95443" }, "Version": "7.0.6", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/glob/node_modules/cross-spawn/package.json", "Digest": "sha1:9becaa8ecb51ad9b303dd62369423cb9f287163a" }, { "ID": "cross-spawn@7.0.6", "Name": "cross-spawn", "Identifier": { "PURL": "pkg:npm/cross-spawn@7.0.6", "UID": "752e5095102c1aca", "BOMRef": "4dda1a19-a22e-473f-8fe7-1539a4203d5f" }, "Version": "7.0.6", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/glob/node_modules/cross-spawn/package.json", "Digest": "sha1:9becaa8ecb51ad9b303dd62369423cb9f287163a" }, { "ID": "cssesc@3.0.0", "Name": "cssesc", "Identifier": { "PURL": "pkg:npm/cssesc@3.0.0", "UID": "12a0cdad211979a2", "BOMRef": "9fa861a5-8761-441d-8373-fc44968bab71" }, "Version": "3.0.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/cssesc/package.json", "Digest": "sha1:3a37cece4f715e91ef0aed027baea0039bb20087" }, { "ID": "cssesc@3.0.0", "Name": "cssesc", "Identifier": { "PURL": "pkg:npm/cssesc@3.0.0", "UID": "6843833ac2ffd8e4", "BOMRef": "eed1a4ba-7000-44d2-bd30-9adc3b54515a" }, "Version": "3.0.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/cssesc/package.json", "Digest": "sha1:3a37cece4f715e91ef0aed027baea0039bb20087" }, { "ID": "debug@4.4.3", "Name": "debug", "Identifier": { "PURL": "pkg:npm/debug@4.4.3", "UID": "ee6a01a934369429", "BOMRef": "13f499bd-02bc-46ec-83ff-3d4b71bad0fc" }, "Version": "4.4.3", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/debug/package.json", "Digest": "sha1:f1c3de400f61581ce6d6d43f9ec4c456cb8017f7" }, { "ID": "debug@4.4.3", "Name": "debug", "Identifier": { "PURL": "pkg:npm/debug@4.4.3", "UID": "10894662d9b810b3", "BOMRef": "9ccd0fb6-0bc1-4209-bb4f-253c6be8547f" }, "Version": "4.4.3", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/debug/package.json", "Digest": "sha1:f1c3de400f61581ce6d6d43f9ec4c456cb8017f7" }, { "ID": "diff@8.0.3", "Name": "diff", "Identifier": { "PURL": "pkg:npm/diff@8.0.3", "UID": "4d35f7c20598bc75", "BOMRef": "d4e12153-cf04-4a64-821b-5ee5f643e03a" }, "Version": "8.0.3", "Licenses": [ "BSD-3-Clause" ], "Layer": { "Digest": "sha256:b72305f951665b304d407e1dec69e0ec73b230360e8a4a17365b58d22946e37a", "DiffID": "sha256:20ca8f2ade98548df7b9a0182bfced0032d7d9f9243fa8e450e155f6d775f343" }, "FilePath": "usr/lib/node_modules/npm/node_modules/diff/package.json", "Digest": "sha1:ee7acad3ce516cc674e0a88afbb6964bb88e355d" }, { "ID": "diff@8.0.3", "Name": "diff", "Identifier": { "PURL": "pkg:npm/diff@8.0.3", "UID": "3b9cc374dc82fd73", "BOMRef": "4822e831-0353-4bb2-a9a6-deb0b7a17c0d" }, "Version": "8.0.3", "Licenses": [ "BSD-3-Clause" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/diff/package.json", "Digest": "sha1:ee7acad3ce516cc674e0a88afbb6964bb88e355d" }, { "ID": "diff@8.0.3", "Name": "diff", "Identifier": { "PURL": "pkg:npm/diff@8.0.3", "UID": "cdf32d0f1ee39e75", "BOMRef": "88af26a0-c6f8-4e6b-8156-0aa20e2cb583" }, "Version": "8.0.3", "Licenses": [ "BSD-3-Clause" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/diff/package.json", "Digest": "sha1:ee7acad3ce516cc674e0a88afbb6964bb88e355d" }, { "ID": "diff@8.0.3", "Name": "diff", "Identifier": { "PURL": "pkg:npm/diff@8.0.3", "UID": "95961edac26802a1", "BOMRef": "50b44d04-87ff-406c-b71e-c33afbb63b68" }, "Version": "8.0.3", "Licenses": [ "BSD-3-Clause" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/diff/package.json", "Digest": "sha1:ee7acad3ce516cc674e0a88afbb6964bb88e355d" }, { "ID": "emoji-regex@8.0.0", "Name": "emoji-regex", "Identifier": { "PURL": "pkg:npm/emoji-regex@8.0.0", "UID": "3f45647ed87bcee0", "BOMRef": "pkg:npm/emoji-regex@8.0.0" }, "Version": "8.0.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/emoji-regex/package.json", "Digest": "sha1:c26fe90da5886724a2676b8e3d5890beeacaad20" }, { "ID": "encoding@0.1.13", "Name": "encoding", "Identifier": { "PURL": "pkg:npm/encoding@0.1.13", "UID": "9d08d7cc79653a5", "BOMRef": "pkg:npm/encoding@0.1.13" }, "Version": "0.1.13", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/encoding/package.json", "Digest": "sha1:52b117f2bc3113970224b9dc97b7fc18f7df30ab" }, { "ID": "env-paths@2.2.1", "Name": "env-paths", "Identifier": { "PURL": "pkg:npm/env-paths@2.2.1", "UID": "648fdeb4da1be4ba", "BOMRef": "d345e1b9-07ff-47d1-b352-b348946df20f" }, "Version": "2.2.1", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/env-paths/package.json", "Digest": "sha1:b5b570f41c1d3e8f251fd06d075cefea4a3449a9" }, { "ID": "env-paths@2.2.1", "Name": "env-paths", "Identifier": { "PURL": "pkg:npm/env-paths@2.2.1", "UID": "62fa85d10ac3b6e8", "BOMRef": "c4ad1a01-13ff-45a2-a880-6ca853995618" }, "Version": "2.2.1", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/env-paths/package.json", "Digest": "sha1:b5b570f41c1d3e8f251fd06d075cefea4a3449a9" }, { "ID": "err-code@2.0.3", "Name": "err-code", "Identifier": { "PURL": "pkg:npm/err-code@2.0.3", "UID": "e3c35ace1395b440", "BOMRef": "c56b179b-240d-46c4-b33b-df59b05576a0" }, "Version": "2.0.3", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/err-code/package.json", "Digest": "sha1:5c7bc63340bc312d1563bb2b369e333e1165ab04" }, { "ID": "err-code@2.0.3", "Name": "err-code", "Identifier": { "PURL": "pkg:npm/err-code@2.0.3", "UID": "3b41fd947464615d", "BOMRef": "f045238d-c5b5-4060-864a-6557fc6dc452" }, "Version": "2.0.3", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/err-code/package.json", "Digest": "sha1:5c7bc63340bc312d1563bb2b369e333e1165ab04" }, { "ID": "exponential-backoff@3.1.3", "Name": "exponential-backoff", "Identifier": { "PURL": "pkg:npm/exponential-backoff@3.1.3", "UID": "1a1637335f694003", "BOMRef": "34d185f6-78f9-4dfa-9aa0-28fbdbb120dd" }, "Version": "3.1.3", "Licenses": [ "Apache-2.0" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/exponential-backoff/package.json", "Digest": "sha1:ad6dedac96b4754817f15c7f62c6b1d72fa249fe" }, { "ID": "exponential-backoff@3.1.3", "Name": "exponential-backoff", "Identifier": { "PURL": "pkg:npm/exponential-backoff@3.1.3", "UID": "d26c94414ab540ae", "BOMRef": "19455525-c050-419b-bc49-e93470b123f0" }, "Version": "3.1.3", "Licenses": [ "Apache-2.0" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/exponential-backoff/package.json", "Digest": "sha1:ad6dedac96b4754817f15c7f62c6b1d72fa249fe" }, { "ID": "fastest-levenshtein@1.0.16", "Name": "fastest-levenshtein", "Identifier": { "PURL": "pkg:npm/fastest-levenshtein@1.0.16", "UID": "9dbe3fbbc1b7dcbb", "BOMRef": "bcefee44-eca9-4ede-888f-545081e9c00f" }, "Version": "1.0.16", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/fastest-levenshtein/package.json", "Digest": "sha1:3aca1160ba8ff112a40cdfd2c860a5d6cd689391" }, { "ID": "fastest-levenshtein@1.0.16", "Name": "fastest-levenshtein", "Identifier": { "PURL": "pkg:npm/fastest-levenshtein@1.0.16", "UID": "24188b685a4bd0fd", "BOMRef": "65fea09f-4bcb-4d41-a431-c2bd82eaf19e" }, "Version": "1.0.16", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/fastest-levenshtein/package.json", "Digest": "sha1:3aca1160ba8ff112a40cdfd2c860a5d6cd689391" }, { "ID": "fdir@6.5.0", "Name": "fdir", "Identifier": { "PURL": "pkg:npm/fdir@6.5.0", "UID": "e5d274ef31b0fe3e", "BOMRef": "09ea6e0a-437c-4b43-89d1-2e38aa3473df" }, "Version": "6.5.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/tinyglobby/node_modules/fdir/package.json", "Digest": "sha1:87c30edff77dd2a0847ac92b0a76837682d64eb2" }, { "ID": "fdir@6.5.0", "Name": "fdir", "Identifier": { "PURL": "pkg:npm/fdir@6.5.0", "UID": "84cf9100585b9ef2", "BOMRef": "1b4283ae-7cda-47c3-84d1-0546c9f8ddb6" }, "Version": "6.5.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/tinyglobby/node_modules/fdir/package.json", "Digest": "sha1:87c30edff77dd2a0847ac92b0a76837682d64eb2" }, { "ID": "foreground-child@3.3.1", "Name": "foreground-child", "Identifier": { "PURL": "pkg:npm/foreground-child@3.3.1", "UID": "eed8ccb0cfa6e54e", "BOMRef": "7763f4ef-66cb-4411-900e-c87932c0eddf" }, "Version": "3.3.1", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:b72305f951665b304d407e1dec69e0ec73b230360e8a4a17365b58d22946e37a", "DiffID": "sha256:20ca8f2ade98548df7b9a0182bfced0032d7d9f9243fa8e450e155f6d775f343" }, "FilePath": "usr/lib/node_modules/npm/node_modules/glob/node_modules/foreground-child/package.json", "Digest": "sha1:ca2af14071df0e6084e5797f9fbcf179d51f9e5d" }, { "ID": "foreground-child@3.3.1", "Name": "foreground-child", "Identifier": { "PURL": "pkg:npm/foreground-child@3.3.1", "UID": "1070de12fb595fb1", "BOMRef": "0fd48001-96ea-498b-8a65-6e40324a59d3" }, "Version": "3.3.1", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:b72305f951665b304d407e1dec69e0ec73b230360e8a4a17365b58d22946e37a", "DiffID": "sha256:20ca8f2ade98548df7b9a0182bfced0032d7d9f9243fa8e450e155f6d775f343" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/glob/node_modules/foreground-child/package.json", "Digest": "sha1:ca2af14071df0e6084e5797f9fbcf179d51f9e5d" }, { "ID": "foreground-child@3.3.1", "Name": "foreground-child", "Identifier": { "PURL": "pkg:npm/foreground-child@3.3.1", "UID": "2c90c6b31b91d15d", "BOMRef": "899592d3-1245-4658-bf4d-695dbd6de4ff" }, "Version": "3.3.1", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/glob/node_modules/foreground-child/package.json", "Digest": "sha1:ca2af14071df0e6084e5797f9fbcf179d51f9e5d" }, { "ID": "foreground-child@3.3.1", "Name": "foreground-child", "Identifier": { "PURL": "pkg:npm/foreground-child@3.3.1", "UID": "1b8b0861e506467e", "BOMRef": "3611acce-6524-48ec-9152-78d020aa7b92" }, "Version": "3.3.1", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/glob/node_modules/foreground-child/package.json", "Digest": "sha1:ca2af14071df0e6084e5797f9fbcf179d51f9e5d" }, { "ID": "fs-minipass@3.0.3", "Name": "fs-minipass", "Identifier": { "PURL": "pkg:npm/fs-minipass@3.0.3", "UID": "5993f2ca4d8800c5", "BOMRef": "e8f83c48-5273-4ca1-b9e2-80bfcc96eeae" }, "Version": "3.0.3", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/fs-minipass/package.json", "Digest": "sha1:2e472ead48322dd560133d10f39db20ee5e3fae1" }, { "ID": "fs-minipass@3.0.3", "Name": "fs-minipass", "Identifier": { "PURL": "pkg:npm/fs-minipass@3.0.3", "UID": "baeb8b1785fd1055", "BOMRef": "81b846b1-5a52-4295-ae36-ef0549ad5742" }, "Version": "3.0.3", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/fs-minipass/package.json", "Digest": "sha1:2e472ead48322dd560133d10f39db20ee5e3fae1" }, { "ID": "glob@11.1.0", "Name": "glob", "Identifier": { "PURL": "pkg:npm/glob@11.1.0", "UID": "f008ce06c267ba90", "BOMRef": "d457be1a-6b29-413f-8e99-b00c5fd1c29a" }, "Version": "11.1.0", "Licenses": [ "BlueOak-1.0.0" ], "Layer": { "Digest": "sha256:b72305f951665b304d407e1dec69e0ec73b230360e8a4a17365b58d22946e37a", "DiffID": "sha256:20ca8f2ade98548df7b9a0182bfced0032d7d9f9243fa8e450e155f6d775f343" }, "FilePath": "usr/lib/node_modules/npm/node_modules/glob/package.json", "Digest": "sha1:9ce880ebacb6a4fc8ce706b0c4e165a74a4810a6" }, { "ID": "glob@11.1.0", "Name": "glob", "Identifier": { "PURL": "pkg:npm/glob@11.1.0", "UID": "38e6b01b4d02e2c9", "BOMRef": "e5104bfd-4fa5-4f7d-8427-7787cb29db55" }, "Version": "11.1.0", "Licenses": [ "BlueOak-1.0.0" ], "Layer": { "Digest": "sha256:b72305f951665b304d407e1dec69e0ec73b230360e8a4a17365b58d22946e37a", "DiffID": "sha256:20ca8f2ade98548df7b9a0182bfced0032d7d9f9243fa8e450e155f6d775f343" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/glob/package.json", "Digest": "sha1:9ce880ebacb6a4fc8ce706b0c4e165a74a4810a6" }, { "ID": "glob@11.1.0", "Name": "glob", "Identifier": { "PURL": "pkg:npm/glob@11.1.0", "UID": "b4f0e2b7a1ba38d3", "BOMRef": "9b0bcf7c-ea0d-44e8-8d73-4b84ec3c2929" }, "Version": "11.1.0", "Licenses": [ "BlueOak-1.0.0" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/glob/package.json", "Digest": "sha1:9ce880ebacb6a4fc8ce706b0c4e165a74a4810a6" }, { "ID": "glob@11.1.0", "Name": "glob", "Identifier": { "PURL": "pkg:npm/glob@11.1.0", "UID": "e21aec33c597bc1d", "BOMRef": "1776b535-2059-41fc-81d9-26c9c7d73a62" }, "Version": "11.1.0", "Licenses": [ "BlueOak-1.0.0" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/glob/package.json", "Digest": "sha1:9ce880ebacb6a4fc8ce706b0c4e165a74a4810a6" }, { "ID": "graceful-fs@4.2.11", "Name": "graceful-fs", "Identifier": { "PURL": "pkg:npm/graceful-fs@4.2.11", "UID": "904d66a7b879c74", "BOMRef": "0e814f39-eafd-40d1-9fcc-1ca78e5c51d4" }, "Version": "4.2.11", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/graceful-fs/package.json", "Digest": "sha1:21a733b3f7e2ee153041de90fb03d5596934f346" }, { "ID": "graceful-fs@4.2.11", "Name": "graceful-fs", "Identifier": { "PURL": "pkg:npm/graceful-fs@4.2.11", "UID": "2836a47f0bb2af16", "BOMRef": "7a2ce9b9-cdcd-4ab8-94c1-1b04f31071b5" }, "Version": "4.2.11", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/graceful-fs/package.json", "Digest": "sha1:21a733b3f7e2ee153041de90fb03d5596934f346" }, { "ID": "hosted-git-info@9.0.2", "Name": "hosted-git-info", "Identifier": { "PURL": "pkg:npm/hosted-git-info@9.0.2", "UID": "c9d0246a9af925f2", "BOMRef": "4fa1371e-31f2-45b4-9281-399c1b1edcf9" }, "Version": "9.0.2", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/hosted-git-info/package.json", "Digest": "sha1:bd2953244687bfff7fdc74a3798a66119f64428e" }, { "ID": "hosted-git-info@9.0.2", "Name": "hosted-git-info", "Identifier": { "PURL": "pkg:npm/hosted-git-info@9.0.2", "UID": "a34f54aaf8691df6", "BOMRef": "412f57ea-da26-43ff-810e-e5741278fb03" }, "Version": "9.0.2", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/hosted-git-info/package.json", "Digest": "sha1:bd2953244687bfff7fdc74a3798a66119f64428e" }, { "ID": "http-cache-semantics@4.2.0", "Name": "http-cache-semantics", "Identifier": { "PURL": "pkg:npm/http-cache-semantics@4.2.0", "UID": "98d6e632179dd853", "BOMRef": "1e111d79-ac44-474b-a6ea-3c93db35e665" }, "Version": "4.2.0", "Licenses": [ "BSD-2-Clause" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/http-cache-semantics/package.json", "Digest": "sha1:563b0d8af1a9641083e8f6cefbf4259fa845e7ca" }, { "ID": "http-cache-semantics@4.2.0", "Name": "http-cache-semantics", "Identifier": { "PURL": "pkg:npm/http-cache-semantics@4.2.0", "UID": "9c2314c1736ac578", "BOMRef": "00aa9187-28c8-4865-93d2-584ac5f71325" }, "Version": "4.2.0", "Licenses": [ "BSD-2-Clause" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/http-cache-semantics/package.json", "Digest": "sha1:563b0d8af1a9641083e8f6cefbf4259fa845e7ca" }, { "ID": "http-proxy-agent@7.0.2", "Name": "http-proxy-agent", "Identifier": { "PURL": "pkg:npm/http-proxy-agent@7.0.2", "UID": "15da80f32772035b", "BOMRef": "77d25ee0-6584-47ce-a84f-4ec85cb09546" }, "Version": "7.0.2", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/http-proxy-agent/package.json", "Digest": "sha1:f8b2b2bf2f3e2f8491496f9efe80b96442a803a9" }, { "ID": "http-proxy-agent@7.0.2", "Name": "http-proxy-agent", "Identifier": { "PURL": "pkg:npm/http-proxy-agent@7.0.2", "UID": "d2476f8a8703f74f", "BOMRef": "2b1bf12e-3673-407d-ac34-29ea00060fe0" }, "Version": "7.0.2", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/http-proxy-agent/package.json", "Digest": "sha1:f8b2b2bf2f3e2f8491496f9efe80b96442a803a9" }, { "ID": "https-proxy-agent@7.0.6", "Name": "https-proxy-agent", "Identifier": { "PURL": "pkg:npm/https-proxy-agent@7.0.6", "UID": "4a63cf7fce21031c", "BOMRef": "41342082-2445-42d4-b919-b5ab8723716d" }, "Version": "7.0.6", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/https-proxy-agent/package.json", "Digest": "sha1:17ea193ab8be5c579a2d10e9a13bff389858f7e8" }, { "ID": "https-proxy-agent@7.0.6", "Name": "https-proxy-agent", "Identifier": { "PURL": "pkg:npm/https-proxy-agent@7.0.6", "UID": "22cff1ca671a346f", "BOMRef": "b2217e5d-1b8d-4156-ac73-9353a8385888" }, "Version": "7.0.6", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/https-proxy-agent/package.json", "Digest": "sha1:17ea193ab8be5c579a2d10e9a13bff389858f7e8" }, { "ID": "iconv-lite@0.6.3", "Name": "iconv-lite", "Identifier": { "PURL": "pkg:npm/iconv-lite@0.6.3", "UID": "5e751c047f439d98", "BOMRef": "pkg:npm/iconv-lite@0.6.3" }, "Version": "0.6.3", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/iconv-lite/package.json", "Digest": "sha1:a3d90badf75db503f5dd3ff3fb76d120d1424978" }, { "ID": "iconv-lite@0.7.2", "Name": "iconv-lite", "Identifier": { "PURL": "pkg:npm/iconv-lite@0.7.2", "UID": "5ccbb2376732b4d7", "BOMRef": "pkg:npm/iconv-lite@0.7.2" }, "Version": "0.7.2", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/iconv-lite/package.json", "Digest": "sha1:680ec19cf66d40d6c095009f9ee97807151dccd6" }, { "ID": "ignore-walk@8.0.0", "Name": "ignore-walk", "Identifier": { "PURL": "pkg:npm/ignore-walk@8.0.0", "UID": "c8812a4d0e672a86", "BOMRef": "27087a52-a700-4f5f-b7bb-b7e159b77bd9" }, "Version": "8.0.0", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/ignore-walk/package.json", "Digest": "sha1:48b090250976a784406de6d243cb8221ac357a08" }, { "ID": "ignore-walk@8.0.0", "Name": "ignore-walk", "Identifier": { "PURL": "pkg:npm/ignore-walk@8.0.0", "UID": "83dab7b26217f3d2", "BOMRef": "d0b9ff50-812b-4f92-996b-402ef1ff1f65" }, "Version": "8.0.0", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/ignore-walk/package.json", "Digest": "sha1:48b090250976a784406de6d243cb8221ac357a08" }, { "ID": "imurmurhash@0.1.4", "Name": "imurmurhash", "Identifier": { "PURL": "pkg:npm/imurmurhash@0.1.4", "UID": "f87f911b76b1f41d", "BOMRef": "c4191166-21c9-4a08-b7b3-1d7162924969" }, "Version": "0.1.4", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/imurmurhash/package.json", "Digest": "sha1:a28f2b413385af4188c4fc0ad1e0c38c2cd03cf4" }, { "ID": "imurmurhash@0.1.4", "Name": "imurmurhash", "Identifier": { "PURL": "pkg:npm/imurmurhash@0.1.4", "UID": "a2aabae9150d18c5", "BOMRef": "bcabc880-590d-47e5-89ea-fea89484ebb6" }, "Version": "0.1.4", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/imurmurhash/package.json", "Digest": "sha1:a28f2b413385af4188c4fc0ad1e0c38c2cd03cf4" }, { "ID": "ini@6.0.0", "Name": "ini", "Identifier": { "PURL": "pkg:npm/ini@6.0.0", "UID": "8be6586bf334fe2b", "BOMRef": "1b995767-34a1-453c-8bf2-ca9eee031047" }, "Version": "6.0.0", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/ini/package.json", "Digest": "sha1:5edfb581604a00537da0213d0168236a05a49bf5" }, { "ID": "ini@6.0.0", "Name": "ini", "Identifier": { "PURL": "pkg:npm/ini@6.0.0", "UID": "6ddadb0a1bef7023", "BOMRef": "92e93d71-3b89-4728-8646-573251a74978" }, "Version": "6.0.0", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/ini/package.json", "Digest": "sha1:5edfb581604a00537da0213d0168236a05a49bf5" }, { "ID": "init-package-json@8.2.4", "Name": "init-package-json", "Identifier": { "PURL": "pkg:npm/init-package-json@8.2.4", "UID": "637fbe024de7ab58", "BOMRef": "pkg:npm/init-package-json@8.2.4" }, "Version": "8.2.4", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/init-package-json/package.json", "Digest": "sha1:5112f0d23125bc0d7e4c7980385806e8bfeb15ce" }, { "ID": "init-package-json@8.2.5", "Name": "init-package-json", "Identifier": { "PURL": "pkg:npm/init-package-json@8.2.5", "UID": "ccb1c81d4e9e3ae7", "BOMRef": "pkg:npm/init-package-json@8.2.5" }, "Version": "8.2.5", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/init-package-json/package.json", "Digest": "sha1:135bdc6d9e7c3b4f96681fa03c2de7f644275cae" }, { "ID": "ip-address@10.1.0", "Name": "ip-address", "Identifier": { "PURL": "pkg:npm/ip-address@10.1.0", "UID": "1f318065d3948c1f", "BOMRef": "fccba7b7-18c5-42f6-bb3a-94e41533fc84" }, "Version": "10.1.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/ip-address/package.json", "Digest": "sha1:191d8a246dac65b7bb2707c1b08770812e9024e6" }, { "ID": "ip-address@10.1.0", "Name": "ip-address", "Identifier": { "PURL": "pkg:npm/ip-address@10.1.0", "UID": "78c72b0546edf95b", "BOMRef": "53e6cf1e-20bc-4457-aef8-b79d6203848d" }, "Version": "10.1.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/ip-address/package.json", "Digest": "sha1:191d8a246dac65b7bb2707c1b08770812e9024e6" }, { "ID": "ip-regex@5.0.0", "Name": "ip-regex", "Identifier": { "PURL": "pkg:npm/ip-regex@5.0.0", "UID": "c5bedbc6e5379e48", "BOMRef": "pkg:npm/ip-regex@5.0.0" }, "Version": "5.0.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/ip-regex/package.json", "Digest": "sha1:e3ebe61a5855188e86da90f29b0ea8c44793b9f0" }, { "ID": "is-cidr@6.0.1", "Name": "is-cidr", "Identifier": { "PURL": "pkg:npm/is-cidr@6.0.1", "UID": "2497a0dc4b8ad0a6", "BOMRef": "pkg:npm/is-cidr@6.0.1" }, "Version": "6.0.1", "Licenses": [ "BSD-2-Clause" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/is-cidr/package.json", "Digest": "sha1:7ae4aacf966b4f49bd609909796a7700fd8e877d" }, { "ID": "is-cidr@6.0.3", "Name": "is-cidr", "Identifier": { "PURL": "pkg:npm/is-cidr@6.0.3", "UID": "a0352a6162e938eb", "BOMRef": "pkg:npm/is-cidr@6.0.3" }, "Version": "6.0.3", "Licenses": [ "BSD-2-Clause" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/is-cidr/package.json", "Digest": "sha1:1542d8b025df8f5b8246fdc01f4fe37c5a065a31" }, { "ID": "is-fullwidth-code-point@3.0.0", "Name": "is-fullwidth-code-point", "Identifier": { "PURL": "pkg:npm/is-fullwidth-code-point@3.0.0", "UID": "17764b320de701d6", "BOMRef": "pkg:npm/is-fullwidth-code-point@3.0.0" }, "Version": "3.0.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/is-fullwidth-code-point/package.json", "Digest": "sha1:49dbcba3eb3e3cba5b97bce28eb6194775d23c88" }, { "ID": "isexe@2.0.0", "Name": "isexe", "Identifier": { "PURL": "pkg:npm/isexe@2.0.0", "UID": "a51187952f23d2d3", "BOMRef": "3432f652-f2b9-430a-b937-b11b81983dfc" }, "Version": "2.0.0", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:b72305f951665b304d407e1dec69e0ec73b230360e8a4a17365b58d22946e37a", "DiffID": "sha256:20ca8f2ade98548df7b9a0182bfced0032d7d9f9243fa8e450e155f6d775f343" }, "FilePath": "usr/lib/node_modules/npm/node_modules/glob/node_modules/isexe/package.json", "Digest": "sha1:3b3eab80c4ffd08eef6b3381b98de7be3649d06b" }, { "ID": "isexe@2.0.0", "Name": "isexe", "Identifier": { "PURL": "pkg:npm/isexe@2.0.0", "UID": "19011147f7f63dbf", "BOMRef": "b502acdd-7870-4841-a462-f6f47d1dc6a4" }, "Version": "2.0.0", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:b72305f951665b304d407e1dec69e0ec73b230360e8a4a17365b58d22946e37a", "DiffID": "sha256:20ca8f2ade98548df7b9a0182bfced0032d7d9f9243fa8e450e155f6d775f343" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/glob/node_modules/isexe/package.json", "Digest": "sha1:3b3eab80c4ffd08eef6b3381b98de7be3649d06b" }, { "ID": "isexe@2.0.0", "Name": "isexe", "Identifier": { "PURL": "pkg:npm/isexe@2.0.0", "UID": "7e8cf0cb8fa4c202", "BOMRef": "d830cd95-e190-4321-b262-08a492aacd84" }, "Version": "2.0.0", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/glob/node_modules/isexe/package.json", "Digest": "sha1:3b3eab80c4ffd08eef6b3381b98de7be3649d06b" }, { "ID": "isexe@2.0.0", "Name": "isexe", "Identifier": { "PURL": "pkg:npm/isexe@2.0.0", "UID": "4a4ee3df3e861a06", "BOMRef": "fb0d2a8e-cbb7-4827-be75-df37e5cf2770" }, "Version": "2.0.0", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/glob/node_modules/isexe/package.json", "Digest": "sha1:3b3eab80c4ffd08eef6b3381b98de7be3649d06b" }, { "ID": "isexe@3.1.1", "Name": "isexe", "Identifier": { "PURL": "pkg:npm/isexe@3.1.1", "UID": "263851419a6b357c", "BOMRef": "pkg:npm/isexe@3.1.1" }, "Version": "3.1.1", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/isexe/package.json", "Digest": "sha1:33fc88b1f05370bb6518291c601cf96cfcafdc3b" }, { "ID": "isexe@4.0.0", "Name": "isexe", "Identifier": { "PURL": "pkg:npm/isexe@4.0.0", "UID": "ee909a50ad7ac416", "BOMRef": "pkg:npm/isexe@4.0.0" }, "Version": "4.0.0", "Licenses": [ "BlueOak-1.0.0" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/isexe/package.json", "Digest": "sha1:66620ebb413146985b58e32e2fb7007a46903867" }, { "ID": "jackspeak@4.2.3", "Name": "jackspeak", "Identifier": { "PURL": "pkg:npm/jackspeak@4.2.3", "UID": "fc499bf4d8571ee", "BOMRef": "1baaf98d-ad44-431d-b302-0aff483bed44" }, "Version": "4.2.3", "Licenses": [ "BlueOak-1.0.0" ], "Layer": { "Digest": "sha256:b72305f951665b304d407e1dec69e0ec73b230360e8a4a17365b58d22946e37a", "DiffID": "sha256:20ca8f2ade98548df7b9a0182bfced0032d7d9f9243fa8e450e155f6d775f343" }, "FilePath": "usr/lib/node_modules/npm/node_modules/glob/node_modules/jackspeak/package.json", "Digest": "sha1:45d9816050ff7a6de553a418f4a0038a406fe991" }, { "ID": "jackspeak@4.2.3", "Name": "jackspeak", "Identifier": { "PURL": "pkg:npm/jackspeak@4.2.3", "UID": "595ab925884c22f8", "BOMRef": "aeffeed2-bdad-4fe0-b0e1-c370108e437c" }, "Version": "4.2.3", "Licenses": [ "BlueOak-1.0.0" ], "Layer": { "Digest": "sha256:b72305f951665b304d407e1dec69e0ec73b230360e8a4a17365b58d22946e37a", "DiffID": "sha256:20ca8f2ade98548df7b9a0182bfced0032d7d9f9243fa8e450e155f6d775f343" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/glob/node_modules/jackspeak/package.json", "Digest": "sha1:45d9816050ff7a6de553a418f4a0038a406fe991" }, { "ID": "jackspeak@4.2.3", "Name": "jackspeak", "Identifier": { "PURL": "pkg:npm/jackspeak@4.2.3", "UID": "dbb2d9abe3213f16", "BOMRef": "60d69e43-3ba9-4d09-aa4d-a48ee8a83c46" }, "Version": "4.2.3", "Licenses": [ "BlueOak-1.0.0" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/glob/node_modules/jackspeak/package.json", "Digest": "sha1:45d9816050ff7a6de553a418f4a0038a406fe991" }, { "ID": "jackspeak@4.2.3", "Name": "jackspeak", "Identifier": { "PURL": "pkg:npm/jackspeak@4.2.3", "UID": "553ea26ee8e30b8c", "BOMRef": "d3d8b8da-25ad-4c40-9763-e5adfe6a5659" }, "Version": "4.2.3", "Licenses": [ "BlueOak-1.0.0" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/glob/node_modules/jackspeak/package.json", "Digest": "sha1:45d9816050ff7a6de553a418f4a0038a406fe991" }, { "ID": "json-parse-even-better-errors@5.0.0", "Name": "json-parse-even-better-errors", "Identifier": { "PURL": "pkg:npm/json-parse-even-better-errors@5.0.0", "UID": "a44c39ef1088fcd2", "BOMRef": "7c7de815-4a6d-4eac-b3ac-8247e62b8808" }, "Version": "5.0.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/json-parse-even-better-errors/package.json", "Digest": "sha1:27231975ccc2498cb184ae3e74122f2427ba1a5a" }, { "ID": "json-parse-even-better-errors@5.0.0", "Name": "json-parse-even-better-errors", "Identifier": { "PURL": "pkg:npm/json-parse-even-better-errors@5.0.0", "UID": "c330a3c9f39f91b4", "BOMRef": "332c4b6b-9f36-4f63-91e4-ed62d459ae58" }, "Version": "5.0.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/json-parse-even-better-errors/package.json", "Digest": "sha1:27231975ccc2498cb184ae3e74122f2427ba1a5a" }, { "ID": "json-stringify-nice@1.1.4", "Name": "json-stringify-nice", "Identifier": { "PURL": "pkg:npm/json-stringify-nice@1.1.4", "UID": "f9763981a0622b73", "BOMRef": "8a26ced9-31d8-42bd-a344-e8f99858d7b1" }, "Version": "1.1.4", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/json-stringify-nice/package.json", "Digest": "sha1:adef02a4345a493535ccb990b09f850508ae516f" }, { "ID": "json-stringify-nice@1.1.4", "Name": "json-stringify-nice", "Identifier": { "PURL": "pkg:npm/json-stringify-nice@1.1.4", "UID": "cda6f5f19e10970b", "BOMRef": "7df6b7f1-34bc-46c6-a63d-74070aa8d6ba" }, "Version": "1.1.4", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/json-stringify-nice/package.json", "Digest": "sha1:adef02a4345a493535ccb990b09f850508ae516f" }, { "ID": "jsonparse@1.3.1", "Name": "jsonparse", "Identifier": { "PURL": "pkg:npm/jsonparse@1.3.1", "UID": "348a202122ebc8f1", "BOMRef": "90600c4d-c3da-4f8a-97b4-f01289e3984a" }, "Version": "1.3.1", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/jsonparse/package.json", "Digest": "sha1:ec0bb766bf32ebd53d835393da006bb834a663fd" }, { "ID": "jsonparse@1.3.1", "Name": "jsonparse", "Identifier": { "PURL": "pkg:npm/jsonparse@1.3.1", "UID": "730e22858258898f", "BOMRef": "caa6c613-d20c-4bcc-a70b-7e30a465f553" }, "Version": "1.3.1", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/jsonparse/package.json", "Digest": "sha1:ec0bb766bf32ebd53d835393da006bb834a663fd" }, { "ID": "just-diff@6.0.2", "Name": "just-diff", "Identifier": { "PURL": "pkg:npm/just-diff@6.0.2", "UID": "26e38b86cb7ca053", "BOMRef": "522cde9f-6fdd-4633-8ed4-34ec0e9b8e0a" }, "Version": "6.0.2", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/just-diff/package.json", "Digest": "sha1:396a274e87b3ad6a3704a76cf18fbb2a9dd45ada" }, { "ID": "just-diff@6.0.2", "Name": "just-diff", "Identifier": { "PURL": "pkg:npm/just-diff@6.0.2", "UID": "3fec1343610f3b46", "BOMRef": "c352e516-47ce-4585-9508-f80932ae00f7" }, "Version": "6.0.2", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/just-diff/package.json", "Digest": "sha1:396a274e87b3ad6a3704a76cf18fbb2a9dd45ada" }, { "ID": "just-diff-apply@5.5.0", "Name": "just-diff-apply", "Identifier": { "PURL": "pkg:npm/just-diff-apply@5.5.0", "UID": "dfac662dd568b370", "BOMRef": "74cee1ee-b62d-4c35-a724-7ec365bdf9f2" }, "Version": "5.5.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/just-diff-apply/package.json", "Digest": "sha1:26d39d00f0fc1ddfe4974dbe69691f9c09ad9036" }, { "ID": "just-diff-apply@5.5.0", "Name": "just-diff-apply", "Identifier": { "PURL": "pkg:npm/just-diff-apply@5.5.0", "UID": "4dbd11a91fefdb9e", "BOMRef": "95a46f83-1a78-4930-9205-7b0b39daa3b3" }, "Version": "5.5.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/just-diff-apply/package.json", "Digest": "sha1:26d39d00f0fc1ddfe4974dbe69691f9c09ad9036" }, { "ID": "libnpmaccess@10.0.3", "Name": "libnpmaccess", "Identifier": { "PURL": "pkg:npm/libnpmaccess@10.0.3", "UID": "98692e1bfa86bfa3", "BOMRef": "bfc60140-beab-4448-b3dc-4ef18760732c" }, "Version": "10.0.3", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/libnpmaccess/package.json", "Digest": "sha1:c1d01036aa963e18b715c0bf3ec1bdad5d39d0be" }, { "ID": "libnpmaccess@10.0.3", "Name": "libnpmaccess", "Identifier": { "PURL": "pkg:npm/libnpmaccess@10.0.3", "UID": "c458234f76f29df9", "BOMRef": "450c1520-0355-4991-8cc6-f5482924cbb8" }, "Version": "10.0.3", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/libnpmaccess/package.json", "Digest": "sha1:88716dc0d2d84c458e7f30e99f7e99188bef59b2" }, { "ID": "libnpmdiff@8.0.13", "Name": "libnpmdiff", "Identifier": { "PURL": "pkg:npm/libnpmdiff@8.0.13", "UID": "b8bcc15fb85628a0", "BOMRef": "pkg:npm/libnpmdiff@8.0.13" }, "Version": "8.0.13", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/libnpmdiff/package.json", "Digest": "sha1:8620167de2c70aed2967dd19f20eb221ce942857" }, { "ID": "libnpmdiff@8.1.4", "Name": "libnpmdiff", "Identifier": { "PURL": "pkg:npm/libnpmdiff@8.1.4", "UID": "4ec3b9a33bad8f9d", "BOMRef": "pkg:npm/libnpmdiff@8.1.4" }, "Version": "8.1.4", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/libnpmdiff/package.json", "Digest": "sha1:aeadda3573d43b41bd2e22980ac65530b9005234" }, { "ID": "libnpmexec@10.1.12", "Name": "libnpmexec", "Identifier": { "PURL": "pkg:npm/libnpmexec@10.1.12", "UID": "f9b62e1c9ef888a5", "BOMRef": "pkg:npm/libnpmexec@10.1.12" }, "Version": "10.1.12", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/libnpmexec/package.json", "Digest": "sha1:e5309d547a9265c367489cce048a4be7e40cd185" }, { "ID": "libnpmexec@10.2.4", "Name": "libnpmexec", "Identifier": { "PURL": "pkg:npm/libnpmexec@10.2.4", "UID": "a6b4b2a372bb8fa", "BOMRef": "pkg:npm/libnpmexec@10.2.4" }, "Version": "10.2.4", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/libnpmexec/package.json", "Digest": "sha1:510f98f0142b3a91b0781327b7db1e9f3a27c1bb" }, { "ID": "libnpmfund@7.0.13", "Name": "libnpmfund", "Identifier": { "PURL": "pkg:npm/libnpmfund@7.0.13", "UID": "8b2c3cc4d979dbd2", "BOMRef": "pkg:npm/libnpmfund@7.0.13" }, "Version": "7.0.13", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/libnpmfund/package.json", "Digest": "sha1:fcf920f9c673a9dfbeb93483b651e6743d7d2d8d" }, { "ID": "libnpmfund@7.0.18", "Name": "libnpmfund", "Identifier": { "PURL": "pkg:npm/libnpmfund@7.0.18", "UID": "985b27750c781928", "BOMRef": "pkg:npm/libnpmfund@7.0.18" }, "Version": "7.0.18", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/libnpmfund/package.json", "Digest": "sha1:81fcd76fe14032f4052e9ec407c40898b327f847" }, { "ID": "libnpmorg@8.0.1", "Name": "libnpmorg", "Identifier": { "PURL": "pkg:npm/libnpmorg@8.0.1", "UID": "383f52eb54332f31", "BOMRef": "f3a9c971-db62-4b23-a7d7-51a0bee01b0f" }, "Version": "8.0.1", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/libnpmorg/package.json", "Digest": "sha1:bb751a1dee75e700037086efe488eaadcf29345f" }, { "ID": "libnpmorg@8.0.1", "Name": "libnpmorg", "Identifier": { "PURL": "pkg:npm/libnpmorg@8.0.1", "UID": "576f75238c5e74c9", "BOMRef": "b3568437-e323-45d9-b77c-93c5a7476173" }, "Version": "8.0.1", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/libnpmorg/package.json", "Digest": "sha1:71644ece4c1f7182783fe2ea542ab4a851465845" }, { "ID": "libnpmpack@9.0.13", "Name": "libnpmpack", "Identifier": { "PURL": "pkg:npm/libnpmpack@9.0.13", "UID": "e9e8a15eabc29672", "BOMRef": "pkg:npm/libnpmpack@9.0.13" }, "Version": "9.0.13", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/libnpmpack/package.json", "Digest": "sha1:221ad8b73551e34d90b0d66be97942cd0e705f50" }, { "ID": "libnpmpack@9.1.4", "Name": "libnpmpack", "Identifier": { "PURL": "pkg:npm/libnpmpack@9.1.4", "UID": "55c1265b3d9d1c24", "BOMRef": "pkg:npm/libnpmpack@9.1.4" }, "Version": "9.1.4", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/libnpmpack/package.json", "Digest": "sha1:a8f21c81cbb9d164f20644cc42bc34b4f8330683" }, { "ID": "libnpmpublish@11.1.3", "Name": "libnpmpublish", "Identifier": { "PURL": "pkg:npm/libnpmpublish@11.1.3", "UID": "a108708b04fcfe46", "BOMRef": "7a1b4aeb-c807-4def-b3c3-9f87173c51ac" }, "Version": "11.1.3", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/libnpmpublish/package.json", "Digest": "sha1:ff82ddefb69c8d63b5a4be420961ed9bc267923d" }, { "ID": "libnpmpublish@11.1.3", "Name": "libnpmpublish", "Identifier": { "PURL": "pkg:npm/libnpmpublish@11.1.3", "UID": "fcf36ce14d355ec1", "BOMRef": "92a879eb-2d33-4f68-8242-c2e8aa954381" }, "Version": "11.1.3", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/libnpmpublish/package.json", "Digest": "sha1:f79157562e8ad15b97e33362c5e104f49358c209" }, { "ID": "libnpmsearch@9.0.1", "Name": "libnpmsearch", "Identifier": { "PURL": "pkg:npm/libnpmsearch@9.0.1", "UID": "78fa46e8d3f27c4f", "BOMRef": "781eb392-9548-48f5-8423-65edd7e273c0" }, "Version": "9.0.1", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/libnpmsearch/package.json", "Digest": "sha1:839c733ea34fee24f8639d9514b827f20634aa47" }, { "ID": "libnpmsearch@9.0.1", "Name": "libnpmsearch", "Identifier": { "PURL": "pkg:npm/libnpmsearch@9.0.1", "UID": "4b5c9899bcef8148", "BOMRef": "5078a5d4-6e98-4555-a981-c10d3fc2b0db" }, "Version": "9.0.1", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/libnpmsearch/package.json", "Digest": "sha1:51c93baa72fc8c35a3195194d066536a133e26d5" }, { "ID": "libnpmteam@8.0.2", "Name": "libnpmteam", "Identifier": { "PURL": "pkg:npm/libnpmteam@8.0.2", "UID": "31761979eab8f925", "BOMRef": "85f46bb1-1124-4e16-b539-5e0a865d9f43" }, "Version": "8.0.2", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/libnpmteam/package.json", "Digest": "sha1:4638228278157df58223fce221f2b21e99a43351" }, { "ID": "libnpmteam@8.0.2", "Name": "libnpmteam", "Identifier": { "PURL": "pkg:npm/libnpmteam@8.0.2", "UID": "d83d8d767f4cc074", "BOMRef": "f1e341c3-479e-4ee2-945b-49f5e0f2abef" }, "Version": "8.0.2", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/libnpmteam/package.json", "Digest": "sha1:c57610dfde38cf9e325c1cb64f6dcced3ee8af6d" }, { "ID": "libnpmversion@8.0.3", "Name": "libnpmversion", "Identifier": { "PURL": "pkg:npm/libnpmversion@8.0.3", "UID": "a68f6da2539a21e1", "BOMRef": "eaca0440-f90b-489c-b2fe-765a521df649" }, "Version": "8.0.3", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/libnpmversion/package.json", "Digest": "sha1:26c9215135593d18d97e7124f32d5644aa62edac" }, { "ID": "libnpmversion@8.0.3", "Name": "libnpmversion", "Identifier": { "PURL": "pkg:npm/libnpmversion@8.0.3", "UID": "4b3dcbc6489a1976", "BOMRef": "1c435e71-6a87-4d5b-8654-73d31fb72815" }, "Version": "8.0.3", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/libnpmversion/package.json", "Digest": "sha1:0526d61c11a1dc3cfdf3014dd303e35be0df0907" }, { "ID": "litellm-dashboard@0.1.0", "Name": "litellm-dashboard", "Identifier": { "PURL": "pkg:npm/litellm-dashboard@0.1.0", "UID": "46fce50de2a71c66", "BOMRef": "pkg:npm/litellm-dashboard@0.1.0" }, "Version": "0.1.0", "Layer": { "Digest": "sha256:d35cf57356cccc973167e70a4c4095f8ccdf49f9fd2ebb1d28b3c826dd230aa6", "DiffID": "sha256:2c145404ffda4666ef88a1a0fac1fbfc337d9041b636a43c9b49ce2f21fd17e5" }, "FilePath": "app/ui/litellm-dashboard/package.json", "Digest": "sha1:1a0b5a58c0cc2aa5b38b8ac2ae691c356a19d6dc" }, { "ID": "lru-cache@11.2.4", "Name": "lru-cache", "Identifier": { "PURL": "pkg:npm/lru-cache@11.2.4", "UID": "66f826ffb7bc32d6", "BOMRef": "pkg:npm/lru-cache@11.2.4" }, "Version": "11.2.4", "Licenses": [ "BlueOak-1.0.0" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/lru-cache/package.json", "Digest": "sha1:0d206de7c8ee6fa3afe883a6caf24750ef4b6a56" }, { "ID": "lru-cache@11.2.6", "Name": "lru-cache", "Identifier": { "PURL": "pkg:npm/lru-cache@11.2.6", "UID": "c294ed89d610f654", "BOMRef": "a45e1db8-8899-4211-b2c9-9fe092b9294d" }, "Version": "11.2.6", "Licenses": [ "BlueOak-1.0.0" ], "Layer": { "Digest": "sha256:b72305f951665b304d407e1dec69e0ec73b230360e8a4a17365b58d22946e37a", "DiffID": "sha256:20ca8f2ade98548df7b9a0182bfced0032d7d9f9243fa8e450e155f6d775f343" }, "FilePath": "usr/lib/node_modules/npm/node_modules/glob/node_modules/lru-cache/package.json", "Digest": "sha1:d27773298a20e2414297de880c090a1a8a626c97" }, { "ID": "lru-cache@11.2.6", "Name": "lru-cache", "Identifier": { "PURL": "pkg:npm/lru-cache@11.2.6", "UID": "f25ca4ce2fc46e20", "BOMRef": "211bb29d-855b-4ead-8b32-f3a71a6afb50" }, "Version": "11.2.6", "Licenses": [ "BlueOak-1.0.0" ], "Layer": { "Digest": "sha256:b72305f951665b304d407e1dec69e0ec73b230360e8a4a17365b58d22946e37a", "DiffID": "sha256:20ca8f2ade98548df7b9a0182bfced0032d7d9f9243fa8e450e155f6d775f343" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/glob/node_modules/lru-cache/package.json", "Digest": "sha1:d27773298a20e2414297de880c090a1a8a626c97" }, { "ID": "lru-cache@11.2.6", "Name": "lru-cache", "Identifier": { "PURL": "pkg:npm/lru-cache@11.2.6", "UID": "e262064cf1dfa38b", "BOMRef": "52961204-0ca7-49f7-ae4e-0641c6b2e43b" }, "Version": "11.2.6", "Licenses": [ "BlueOak-1.0.0" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/glob/node_modules/lru-cache/package.json", "Digest": "sha1:d27773298a20e2414297de880c090a1a8a626c97" }, { "ID": "lru-cache@11.2.6", "Name": "lru-cache", "Identifier": { "PURL": "pkg:npm/lru-cache@11.2.6", "UID": "51dbe5bc6c967e2a", "BOMRef": "7daa290c-a440-44a5-bd1a-79407fd0e4a7" }, "Version": "11.2.6", "Licenses": [ "BlueOak-1.0.0" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/glob/node_modules/lru-cache/package.json", "Digest": "sha1:d27773298a20e2414297de880c090a1a8a626c97" }, { "ID": "lru-cache@11.2.6", "Name": "lru-cache", "Identifier": { "PURL": "pkg:npm/lru-cache@11.2.6", "UID": "e94e2e6f8eef58fe", "BOMRef": "0b16b1b0-a443-41e8-b7cd-a37d23708ccd" }, "Version": "11.2.6", "Licenses": [ "BlueOak-1.0.0" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/lru-cache/package.json", "Digest": "sha1:d27773298a20e2414297de880c090a1a8a626c97" }, { "ID": "make-fetch-happen@15.0.3", "Name": "make-fetch-happen", "Identifier": { "PURL": "pkg:npm/make-fetch-happen@15.0.3", "UID": "b9c32986b16e6dd7", "BOMRef": "pkg:npm/make-fetch-happen@15.0.3" }, "Version": "15.0.3", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/make-fetch-happen/package.json", "Digest": "sha1:06b8dc0e17bf93a970739a0ac6845fa168884e8a" }, { "ID": "make-fetch-happen@15.0.4", "Name": "make-fetch-happen", "Identifier": { "PURL": "pkg:npm/make-fetch-happen@15.0.4", "UID": "db42b58b881f362e", "BOMRef": "pkg:npm/make-fetch-happen@15.0.4" }, "Version": "15.0.4", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/make-fetch-happen/package.json", "Digest": "sha1:13079ab7db3997b25ca07cbd6e0a6056676eeee1" }, { "ID": "minimatch@10.2.1", "Name": "minimatch", "Identifier": { "PURL": "pkg:npm/minimatch@10.2.1", "UID": "8f13268548fddc07", "BOMRef": "f3ee09dc-944f-4d9d-95bc-78d65da32a97" }, "Version": "10.2.1", "Licenses": [ "BlueOak-1.0.0" ], "Layer": { "Digest": "sha256:b72305f951665b304d407e1dec69e0ec73b230360e8a4a17365b58d22946e37a", "DiffID": "sha256:20ca8f2ade98548df7b9a0182bfced0032d7d9f9243fa8e450e155f6d775f343" }, "FilePath": "usr/lib/node_modules/npm/node_modules/minimatch/package.json", "Digest": "sha1:51f9e760bf99990f544c2aa399bf816a30aaaf9e" }, { "ID": "minimatch@10.2.1", "Name": "minimatch", "Identifier": { "PURL": "pkg:npm/minimatch@10.2.1", "UID": "d7de0b672f8bd3d5", "BOMRef": "61500196-037a-4449-bf55-9f024277534e" }, "Version": "10.2.1", "Licenses": [ "BlueOak-1.0.0" ], "Layer": { "Digest": "sha256:b72305f951665b304d407e1dec69e0ec73b230360e8a4a17365b58d22946e37a", "DiffID": "sha256:20ca8f2ade98548df7b9a0182bfced0032d7d9f9243fa8e450e155f6d775f343" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/minimatch/package.json", "Digest": "sha1:51f9e760bf99990f544c2aa399bf816a30aaaf9e" }, { "ID": "minimatch@10.2.1", "Name": "minimatch", "Identifier": { "PURL": "pkg:npm/minimatch@10.2.1", "UID": "95734cd53baab9c1", "BOMRef": "a7fc626b-c9a9-4b88-ad3b-15aedc5fdfd4" }, "Version": "10.2.1", "Licenses": [ "BlueOak-1.0.0" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/minimatch/package.json", "Digest": "sha1:51f9e760bf99990f544c2aa399bf816a30aaaf9e" }, { "ID": "minimatch@10.2.1", "Name": "minimatch", "Identifier": { "PURL": "pkg:npm/minimatch@10.2.1", "UID": "36d44f9609a952c5", "BOMRef": "294f48e8-420c-4f05-b020-6c66f7bd92bc" }, "Version": "10.2.1", "Licenses": [ "BlueOak-1.0.0" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/minimatch/package.json", "Digest": "sha1:51f9e760bf99990f544c2aa399bf816a30aaaf9e" }, { "ID": "minipass@3.3.6", "Name": "minipass", "Identifier": { "PURL": "pkg:npm/minipass@3.3.6", "UID": "37a1fd77b305b078", "BOMRef": "7f873350-e3b1-475d-8a6b-ae65d7caceb5" }, "Version": "3.3.6", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/minipass-flush/node_modules/minipass/package.json", "Digest": "sha1:fc79b496665e2cdfc4bdaac9c7d7c4b2f4645f2c" }, { "ID": "minipass@3.3.6", "Name": "minipass", "Identifier": { "PURL": "pkg:npm/minipass@3.3.6", "UID": "cbd7cb3910114148", "BOMRef": "768e2dc6-7701-44bb-b707-b05e89c2a861" }, "Version": "3.3.6", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/minipass-pipeline/node_modules/minipass/package.json", "Digest": "sha1:fc79b496665e2cdfc4bdaac9c7d7c4b2f4645f2c" }, { "ID": "minipass@3.3.6", "Name": "minipass", "Identifier": { "PURL": "pkg:npm/minipass@3.3.6", "UID": "ddfb4e9a0589804e", "BOMRef": "4a07e2b3-a8b5-4855-a0fa-afe597218ea8" }, "Version": "3.3.6", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/minipass-sized/node_modules/minipass/package.json", "Digest": "sha1:fc79b496665e2cdfc4bdaac9c7d7c4b2f4645f2c" }, { "ID": "minipass@3.3.6", "Name": "minipass", "Identifier": { "PURL": "pkg:npm/minipass@3.3.6", "UID": "45c0d0994e8c1056", "BOMRef": "2133a991-be14-4b5b-ae3c-7a70e25708e1" }, "Version": "3.3.6", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/minipass-flush/node_modules/minipass/package.json", "Digest": "sha1:fc79b496665e2cdfc4bdaac9c7d7c4b2f4645f2c" }, { "ID": "minipass@3.3.6", "Name": "minipass", "Identifier": { "PURL": "pkg:npm/minipass@3.3.6", "UID": "5e774e15cf4552b0", "BOMRef": "8e50ca99-d78a-4b1e-9d43-ec968f470f63" }, "Version": "3.3.6", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/minipass-pipeline/node_modules/minipass/package.json", "Digest": "sha1:fc79b496665e2cdfc4bdaac9c7d7c4b2f4645f2c" }, { "ID": "minipass@7.1.2", "Name": "minipass", "Identifier": { "PURL": "pkg:npm/minipass@7.1.2", "UID": "633efa0810fcb71e", "BOMRef": "pkg:npm/minipass@7.1.2" }, "Version": "7.1.2", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/minipass/package.json", "Digest": "sha1:798df22ae1185484c372b4da30c4d75a0e7ea572" }, { "ID": "minipass@7.1.3", "Name": "minipass", "Identifier": { "PURL": "pkg:npm/minipass@7.1.3", "UID": "b650fba951944a87", "BOMRef": "20790047-2eaf-4b45-a9f6-adb1db4acf75" }, "Version": "7.1.3", "Licenses": [ "BlueOak-1.0.0" ], "Layer": { "Digest": "sha256:b72305f951665b304d407e1dec69e0ec73b230360e8a4a17365b58d22946e37a", "DiffID": "sha256:20ca8f2ade98548df7b9a0182bfced0032d7d9f9243fa8e450e155f6d775f343" }, "FilePath": "usr/lib/node_modules/npm/node_modules/glob/node_modules/minipass/package.json", "Digest": "sha1:61235e7e9cfd09deb1ed8a00c522c6bbbcdef750" }, { "ID": "minipass@7.1.3", "Name": "minipass", "Identifier": { "PURL": "pkg:npm/minipass@7.1.3", "UID": "69e81f770918a75d", "BOMRef": "ba7505a6-d5ff-4afd-a435-903f27d9b4b5" }, "Version": "7.1.3", "Licenses": [ "BlueOak-1.0.0" ], "Layer": { "Digest": "sha256:b72305f951665b304d407e1dec69e0ec73b230360e8a4a17365b58d22946e37a", "DiffID": "sha256:20ca8f2ade98548df7b9a0182bfced0032d7d9f9243fa8e450e155f6d775f343" }, "FilePath": "usr/lib/node_modules/npm/node_modules/tar/node_modules/minipass/package.json", "Digest": "sha1:61235e7e9cfd09deb1ed8a00c522c6bbbcdef750" }, { "ID": "minipass@7.1.3", "Name": "minipass", "Identifier": { "PURL": "pkg:npm/minipass@7.1.3", "UID": "416182eb94633822", "BOMRef": "56df0bbd-ac91-4ff4-a8e1-f8c537e8013a" }, "Version": "7.1.3", "Licenses": [ "BlueOak-1.0.0" ], "Layer": { "Digest": "sha256:b72305f951665b304d407e1dec69e0ec73b230360e8a4a17365b58d22946e37a", "DiffID": "sha256:20ca8f2ade98548df7b9a0182bfced0032d7d9f9243fa8e450e155f6d775f343" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/glob/node_modules/minipass/package.json", "Digest": "sha1:61235e7e9cfd09deb1ed8a00c522c6bbbcdef750" }, { "ID": "minipass@7.1.3", "Name": "minipass", "Identifier": { "PURL": "pkg:npm/minipass@7.1.3", "UID": "f19fbd758ff21f42", "BOMRef": "dc0717c6-f3c8-4e70-b588-5968da360e01" }, "Version": "7.1.3", "Licenses": [ "BlueOak-1.0.0" ], "Layer": { "Digest": "sha256:b72305f951665b304d407e1dec69e0ec73b230360e8a4a17365b58d22946e37a", "DiffID": "sha256:20ca8f2ade98548df7b9a0182bfced0032d7d9f9243fa8e450e155f6d775f343" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/tar/node_modules/minipass/package.json", "Digest": "sha1:61235e7e9cfd09deb1ed8a00c522c6bbbcdef750" }, { "ID": "minipass@7.1.3", "Name": "minipass", "Identifier": { "PURL": "pkg:npm/minipass@7.1.3", "UID": "5f5d40ca0ec1c99a", "BOMRef": "7e9097d5-a17b-4ef3-abed-9b00dba9181f" }, "Version": "7.1.3", "Licenses": [ "BlueOak-1.0.0" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/glob/node_modules/minipass/package.json", "Digest": "sha1:61235e7e9cfd09deb1ed8a00c522c6bbbcdef750" }, { "ID": "minipass@7.1.3", "Name": "minipass", "Identifier": { "PURL": "pkg:npm/minipass@7.1.3", "UID": "30db2e05cafddbcb", "BOMRef": "38fc23c6-f761-4ab0-b8aa-a1ae439efd27" }, "Version": "7.1.3", "Licenses": [ "BlueOak-1.0.0" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/glob/node_modules/minipass/package.json", "Digest": "sha1:61235e7e9cfd09deb1ed8a00c522c6bbbcdef750" }, { "ID": "minipass@7.1.3", "Name": "minipass", "Identifier": { "PURL": "pkg:npm/minipass@7.1.3", "UID": "fd57b47184fb627c", "BOMRef": "2ba3b2f4-db78-4001-9bbe-ef349d0ea4c0" }, "Version": "7.1.3", "Licenses": [ "BlueOak-1.0.0" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/minipass/package.json", "Digest": "sha1:61235e7e9cfd09deb1ed8a00c522c6bbbcdef750" }, { "ID": "minipass@7.1.3", "Name": "minipass", "Identifier": { "PURL": "pkg:npm/minipass@7.1.3", "UID": "d85037050bedb066", "BOMRef": "d579d4af-893d-498b-8d18-7d73abdd2ef6" }, "Version": "7.1.3", "Licenses": [ "BlueOak-1.0.0" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/tar/node_modules/minipass/package.json", "Digest": "sha1:61235e7e9cfd09deb1ed8a00c522c6bbbcdef750" }, { "ID": "minipass@7.1.3", "Name": "minipass", "Identifier": { "PURL": "pkg:npm/minipass@7.1.3", "UID": "db2a5ae61012e8f6", "BOMRef": "8e93057c-3541-468d-ba7f-04cfd4c160c7" }, "Version": "7.1.3", "Licenses": [ "BlueOak-1.0.0" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/tar/node_modules/minipass/package.json", "Digest": "sha1:61235e7e9cfd09deb1ed8a00c522c6bbbcdef750" }, { "ID": "minipass-collect@2.0.1", "Name": "minipass-collect", "Identifier": { "PURL": "pkg:npm/minipass-collect@2.0.1", "UID": "d101a759da789483", "BOMRef": "0a9a932f-fff4-4276-b21b-62bb5f8a9b7a" }, "Version": "2.0.1", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/minipass-collect/package.json", "Digest": "sha1:7ca3a77ca7b795148ecee5d9ebbe96e968dddb15" }, { "ID": "minipass-collect@2.0.1", "Name": "minipass-collect", "Identifier": { "PURL": "pkg:npm/minipass-collect@2.0.1", "UID": "766819e46a6ffee4", "BOMRef": "1ac20054-1f0d-4014-855b-7980ecbd26b0" }, "Version": "2.0.1", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/minipass-collect/package.json", "Digest": "sha1:7ca3a77ca7b795148ecee5d9ebbe96e968dddb15" }, { "ID": "minipass-fetch@5.0.0", "Name": "minipass-fetch", "Identifier": { "PURL": "pkg:npm/minipass-fetch@5.0.0", "UID": "65a63b7029555f7", "BOMRef": "pkg:npm/minipass-fetch@5.0.0" }, "Version": "5.0.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/minipass-fetch/package.json", "Digest": "sha1:de070b816133f9f9134563f7c6096a4cc99cd139" }, { "ID": "minipass-fetch@5.0.2", "Name": "minipass-fetch", "Identifier": { "PURL": "pkg:npm/minipass-fetch@5.0.2", "UID": "4367b8c8f61f778c", "BOMRef": "pkg:npm/minipass-fetch@5.0.2" }, "Version": "5.0.2", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/minipass-fetch/package.json", "Digest": "sha1:3d9f30e4705201e45528f7bd4d7886f8a98a5ebe" }, { "ID": "minipass-flush@1.0.5", "Name": "minipass-flush", "Identifier": { "PURL": "pkg:npm/minipass-flush@1.0.5", "UID": "3a2cf348b00d8737", "BOMRef": "69e43902-3e63-476b-976d-7f9dee551174" }, "Version": "1.0.5", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/minipass-flush/package.json", "Digest": "sha1:c89612a2a9c68141b8271bbc94bcc88067c29790" }, { "ID": "minipass-flush@1.0.5", "Name": "minipass-flush", "Identifier": { "PURL": "pkg:npm/minipass-flush@1.0.5", "UID": "5d5303f0b437b172", "BOMRef": "7c0e2b79-ab64-44a2-b14c-0f01bcd22a1f" }, "Version": "1.0.5", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/minipass-flush/package.json", "Digest": "sha1:c89612a2a9c68141b8271bbc94bcc88067c29790" }, { "ID": "minipass-pipeline@1.2.4", "Name": "minipass-pipeline", "Identifier": { "PURL": "pkg:npm/minipass-pipeline@1.2.4", "UID": "70516686fa9dea29", "BOMRef": "76d47dc8-27a5-4ca4-95d5-00310fa179a4" }, "Version": "1.2.4", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/minipass-pipeline/package.json", "Digest": "sha1:e30c58465801deaceb4b81898e531c75679563b1" }, { "ID": "minipass-pipeline@1.2.4", "Name": "minipass-pipeline", "Identifier": { "PURL": "pkg:npm/minipass-pipeline@1.2.4", "UID": "cb71daf79e71468f", "BOMRef": "85fec11a-2fe8-4f05-8187-87ba13b00082" }, "Version": "1.2.4", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/minipass-pipeline/package.json", "Digest": "sha1:e30c58465801deaceb4b81898e531c75679563b1" }, { "ID": "minipass-sized@1.0.3", "Name": "minipass-sized", "Identifier": { "PURL": "pkg:npm/minipass-sized@1.0.3", "UID": "dccf09b657d6ed0c", "BOMRef": "pkg:npm/minipass-sized@1.0.3" }, "Version": "1.0.3", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/minipass-sized/package.json", "Digest": "sha1:615e0e93dfdbc65b217029380591abc9e9b64136" }, { "ID": "minipass-sized@2.0.0", "Name": "minipass-sized", "Identifier": { "PURL": "pkg:npm/minipass-sized@2.0.0", "UID": "19a47a6519612782", "BOMRef": "pkg:npm/minipass-sized@2.0.0" }, "Version": "2.0.0", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/minipass-sized/package.json", "Digest": "sha1:c0e70d0d99106c4391afde2f25524f3cb876a1dd" }, { "ID": "minizlib@3.1.0", "Name": "minizlib", "Identifier": { "PURL": "pkg:npm/minizlib@3.1.0", "UID": "301aaed629cc328c", "BOMRef": "3a516ffd-a4e4-43a7-bb63-ae7dd8e8a4dd" }, "Version": "3.1.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:b72305f951665b304d407e1dec69e0ec73b230360e8a4a17365b58d22946e37a", "DiffID": "sha256:20ca8f2ade98548df7b9a0182bfced0032d7d9f9243fa8e450e155f6d775f343" }, "FilePath": "usr/lib/node_modules/npm/node_modules/tar/node_modules/minizlib/package.json", "Digest": "sha1:ecda8f42a2256be6ae9bba8a268ae3964683fe09" }, { "ID": "minizlib@3.1.0", "Name": "minizlib", "Identifier": { "PURL": "pkg:npm/minizlib@3.1.0", "UID": "b32b2c1a3596b23c", "BOMRef": "1079909b-1400-4f12-b637-5396556bd1b6" }, "Version": "3.1.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/minizlib/package.json", "Digest": "sha1:ecda8f42a2256be6ae9bba8a268ae3964683fe09" }, { "ID": "minizlib@3.1.0", "Name": "minizlib", "Identifier": { "PURL": "pkg:npm/minizlib@3.1.0", "UID": "b1350a5d5fcb7b31", "BOMRef": "8ec45b3d-8f8f-4795-8808-7a025371f2b4" }, "Version": "3.1.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:b72305f951665b304d407e1dec69e0ec73b230360e8a4a17365b58d22946e37a", "DiffID": "sha256:20ca8f2ade98548df7b9a0182bfced0032d7d9f9243fa8e450e155f6d775f343" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/tar/node_modules/minizlib/package.json", "Digest": "sha1:ecda8f42a2256be6ae9bba8a268ae3964683fe09" }, { "ID": "minizlib@3.1.0", "Name": "minizlib", "Identifier": { "PURL": "pkg:npm/minizlib@3.1.0", "UID": "748c159f66ef44de", "BOMRef": "50fc028e-f24a-4c98-ae8f-bfa137c99f6f" }, "Version": "3.1.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/minizlib/package.json", "Digest": "sha1:ecda8f42a2256be6ae9bba8a268ae3964683fe09" }, { "ID": "minizlib@3.1.0", "Name": "minizlib", "Identifier": { "PURL": "pkg:npm/minizlib@3.1.0", "UID": "dbcbaffc96fa39af", "BOMRef": "29f9ec2a-e4e2-4cf9-bedb-7668c2a5c018" }, "Version": "3.1.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/tar/node_modules/minizlib/package.json", "Digest": "sha1:ecda8f42a2256be6ae9bba8a268ae3964683fe09" }, { "ID": "minizlib@3.1.0", "Name": "minizlib", "Identifier": { "PURL": "pkg:npm/minizlib@3.1.0", "UID": "3b266aa0c601fcd8", "BOMRef": "a60c4dc4-2745-48da-9d40-259e435611c7" }, "Version": "3.1.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/tar/node_modules/minizlib/package.json", "Digest": "sha1:ecda8f42a2256be6ae9bba8a268ae3964683fe09" }, { "ID": "ms@2.1.3", "Name": "ms", "Identifier": { "PURL": "pkg:npm/ms@2.1.3", "UID": "237b0e7ca84e33b9", "BOMRef": "528ed3d0-15dd-4166-a6cc-c4c6315c8c03" }, "Version": "2.1.3", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/ms/package.json", "Digest": "sha1:c290eb97736177176d071da4ac855ab995685c97" }, { "ID": "ms@2.1.3", "Name": "ms", "Identifier": { "PURL": "pkg:npm/ms@2.1.3", "UID": "90c62284f6b4d498", "BOMRef": "bf78c208-4223-4332-9f53-97a0a3360756" }, "Version": "2.1.3", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/ms/package.json", "Digest": "sha1:c290eb97736177176d071da4ac855ab995685c97" }, { "ID": "mute-stream@3.0.0", "Name": "mute-stream", "Identifier": { "PURL": "pkg:npm/mute-stream@3.0.0", "UID": "762646576e7149a1", "BOMRef": "0a762664-9e2b-41fa-a7c5-ab006e2d77b7" }, "Version": "3.0.0", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/mute-stream/package.json", "Digest": "sha1:170b20aad820bb2d67cdb50fe6714c3030eb6961" }, { "ID": "mute-stream@3.0.0", "Name": "mute-stream", "Identifier": { "PURL": "pkg:npm/mute-stream@3.0.0", "UID": "35162dc416c38702", "BOMRef": "418b69e1-6e6b-4f11-bd1c-8f7cc44f8a93" }, "Version": "3.0.0", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/mute-stream/package.json", "Digest": "sha1:170b20aad820bb2d67cdb50fe6714c3030eb6961" }, { "ID": "negotiator@1.0.0", "Name": "negotiator", "Identifier": { "PURL": "pkg:npm/negotiator@1.0.0", "UID": "d8eaed54115083f6", "BOMRef": "66e8e793-656b-4a3b-b784-e72300758500" }, "Version": "1.0.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/negotiator/package.json", "Digest": "sha1:046524b23a7aefb2b0cfd3ebbd0fd84c0f7df3f6" }, { "ID": "negotiator@1.0.0", "Name": "negotiator", "Identifier": { "PURL": "pkg:npm/negotiator@1.0.0", "UID": "eaf10ad751cae461", "BOMRef": "e98117f0-c137-4770-8f69-d27287de5070" }, "Version": "1.0.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/negotiator/package.json", "Digest": "sha1:046524b23a7aefb2b0cfd3ebbd0fd84c0f7df3f6" }, { "ID": "node-gyp@12.1.0", "Name": "node-gyp", "Identifier": { "PURL": "pkg:npm/node-gyp@12.1.0", "UID": "1f357fe6bdf3ea3c", "BOMRef": "pkg:npm/node-gyp@12.1.0" }, "Version": "12.1.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/node-gyp/package.json", "Digest": "sha1:9ad149cce8b65467fd308c678c38e460e6e61051" }, { "ID": "node-gyp@12.2.0", "Name": "node-gyp", "Identifier": { "PURL": "pkg:npm/node-gyp@12.2.0", "UID": "f03c8ac60d703698", "BOMRef": "pkg:npm/node-gyp@12.2.0" }, "Version": "12.2.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/node-gyp/package.json", "Digest": "sha1:94024c2f80031bfd4736e8cfc7b7e32b6b83e2d3" }, { "ID": "nopt@9.0.0", "Name": "nopt", "Identifier": { "PURL": "pkg:npm/nopt@9.0.0", "UID": "b728642140dc465", "BOMRef": "dabdc435-ef7b-41e8-901d-c0a59b23a65a" }, "Version": "9.0.0", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/nopt/package.json", "Digest": "sha1:44fa7f32a18abb1dde67088e347d8f7c2bfed87f" }, { "ID": "nopt@9.0.0", "Name": "nopt", "Identifier": { "PURL": "pkg:npm/nopt@9.0.0", "UID": "484465c96b64bb4f", "BOMRef": "af7bf2f6-391c-4435-9cd2-d530eedc6160" }, "Version": "9.0.0", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/nopt/package.json", "Digest": "sha1:44fa7f32a18abb1dde67088e347d8f7c2bfed87f" }, { "ID": "npm@11.11.1", "Name": "npm", "Identifier": { "PURL": "pkg:npm/npm@11.11.1", "UID": "91ab717162f8f3bc", "BOMRef": "pkg:npm/npm@11.11.1" }, "Version": "11.11.1", "Licenses": [ "Artistic-2.0" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/package.json", "Digest": "sha1:77847641a3c7988618e97382abb1a7226e8f4c82" }, { "ID": "npm@11.8.0", "Name": "npm", "Identifier": { "PURL": "pkg:npm/npm@11.8.0", "UID": "31a5884b4bcc622f", "BOMRef": "pkg:npm/npm@11.8.0" }, "Version": "11.8.0", "Licenses": [ "Artistic-2.0" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/package.json", "Digest": "sha1:90aee03cea02616588cafa36cd3630d1c1fa8302" }, { "ID": "npm-audit-report@7.0.0", "Name": "npm-audit-report", "Identifier": { "PURL": "pkg:npm/npm-audit-report@7.0.0", "UID": "ceae6a128409e8b3", "BOMRef": "c1216ecf-a960-4dd2-b075-03be7ec5a79c" }, "Version": "7.0.0", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/npm-audit-report/package.json", "Digest": "sha1:040167501ae6b37c24bfdfbbd67fcf467d37bdc0" }, { "ID": "npm-audit-report@7.0.0", "Name": "npm-audit-report", "Identifier": { "PURL": "pkg:npm/npm-audit-report@7.0.0", "UID": "fefe3edbcef7ac32", "BOMRef": "058218b7-749f-4781-8ea2-7e3cfd8eca55" }, "Version": "7.0.0", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/npm-audit-report/package.json", "Digest": "sha1:040167501ae6b37c24bfdfbbd67fcf467d37bdc0" }, { "ID": "npm-bundled@5.0.0", "Name": "npm-bundled", "Identifier": { "PURL": "pkg:npm/npm-bundled@5.0.0", "UID": "647a1f49b754458b", "BOMRef": "934cecc0-c3e0-427c-a812-df69f5bafb00" }, "Version": "5.0.0", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/npm-bundled/package.json", "Digest": "sha1:9dfb03e07a30a5e91c2d051690fec605e0cad435" }, { "ID": "npm-bundled@5.0.0", "Name": "npm-bundled", "Identifier": { "PURL": "pkg:npm/npm-bundled@5.0.0", "UID": "380176cd5f117155", "BOMRef": "3b5533a2-a5df-4401-aa56-d93c9a954263" }, "Version": "5.0.0", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/npm-bundled/package.json", "Digest": "sha1:9dfb03e07a30a5e91c2d051690fec605e0cad435" }, { "ID": "npm-install-checks@8.0.0", "Name": "npm-install-checks", "Identifier": { "PURL": "pkg:npm/npm-install-checks@8.0.0", "UID": "2137c2306e45c5f7", "BOMRef": "28f6c01d-496d-4069-896f-22c98ef9515e" }, "Version": "8.0.0", "Licenses": [ "BSD-2-Clause" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/npm-install-checks/package.json", "Digest": "sha1:407654a587e45ad83b936081f22670ebcaec1bc9" }, { "ID": "npm-install-checks@8.0.0", "Name": "npm-install-checks", "Identifier": { "PURL": "pkg:npm/npm-install-checks@8.0.0", "UID": "b02e5cd2bc3b4ab8", "BOMRef": "05ffe817-5b02-4462-b037-b2b08523667b" }, "Version": "8.0.0", "Licenses": [ "BSD-2-Clause" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/npm-install-checks/package.json", "Digest": "sha1:407654a587e45ad83b936081f22670ebcaec1bc9" }, { "ID": "npm-normalize-package-bin@5.0.0", "Name": "npm-normalize-package-bin", "Identifier": { "PURL": "pkg:npm/npm-normalize-package-bin@5.0.0", "UID": "589c24c3b536826d", "BOMRef": "56829423-76e5-433a-aad0-b56dc262591f" }, "Version": "5.0.0", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/npm-normalize-package-bin/package.json", "Digest": "sha1:e525037807bb400a135f7e1be77c8dc97d78bb96" }, { "ID": "npm-normalize-package-bin@5.0.0", "Name": "npm-normalize-package-bin", "Identifier": { "PURL": "pkg:npm/npm-normalize-package-bin@5.0.0", "UID": "2b06d59e56787f55", "BOMRef": "914d1800-b099-4ab0-987c-801464b8e486" }, "Version": "5.0.0", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/npm-normalize-package-bin/package.json", "Digest": "sha1:e525037807bb400a135f7e1be77c8dc97d78bb96" }, { "ID": "npm-package-arg@13.0.2", "Name": "npm-package-arg", "Identifier": { "PURL": "pkg:npm/npm-package-arg@13.0.2", "UID": "1d661f443e48a51e", "BOMRef": "a3a3691a-a9de-432a-900b-5e6f138e0d2e" }, "Version": "13.0.2", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/npm-package-arg/package.json", "Digest": "sha1:68938fd68043d217f6ca9b6fb63c8a5470a3a589" }, { "ID": "npm-package-arg@13.0.2", "Name": "npm-package-arg", "Identifier": { "PURL": "pkg:npm/npm-package-arg@13.0.2", "UID": "f8629a31ff363f70", "BOMRef": "6a5890b4-9966-4051-a56f-bcf2bb1feb04" }, "Version": "13.0.2", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/npm-package-arg/package.json", "Digest": "sha1:68938fd68043d217f6ca9b6fb63c8a5470a3a589" }, { "ID": "npm-packlist@10.0.3", "Name": "npm-packlist", "Identifier": { "PURL": "pkg:npm/npm-packlist@10.0.3", "UID": "6996006592f2bef8", "BOMRef": "pkg:npm/npm-packlist@10.0.3" }, "Version": "10.0.3", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/npm-packlist/package.json", "Digest": "sha1:6a3cdda6728c40e4b1b1173cb1d0a53a222807f0" }, { "ID": "npm-packlist@10.0.4", "Name": "npm-packlist", "Identifier": { "PURL": "pkg:npm/npm-packlist@10.0.4", "UID": "73afe7effe3c4ea", "BOMRef": "pkg:npm/npm-packlist@10.0.4" }, "Version": "10.0.4", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/npm-packlist/package.json", "Digest": "sha1:cb96034f926a932fb94df071a7165f1fc25ef98d" }, { "ID": "npm-pick-manifest@11.0.3", "Name": "npm-pick-manifest", "Identifier": { "PURL": "pkg:npm/npm-pick-manifest@11.0.3", "UID": "9a92d471cd2f4316", "BOMRef": "b8a73baa-f023-4848-8f95-ac6f3c52b70f" }, "Version": "11.0.3", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/npm-pick-manifest/package.json", "Digest": "sha1:da8b96c28cd5be842555739920b3574061b88b89" }, { "ID": "npm-pick-manifest@11.0.3", "Name": "npm-pick-manifest", "Identifier": { "PURL": "pkg:npm/npm-pick-manifest@11.0.3", "UID": "ca33e2a370a41bd", "BOMRef": "eea70844-e215-4367-aa8a-3e4f1b5ea03c" }, "Version": "11.0.3", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/npm-pick-manifest/package.json", "Digest": "sha1:da8b96c28cd5be842555739920b3574061b88b89" }, { "ID": "npm-profile@12.0.1", "Name": "npm-profile", "Identifier": { "PURL": "pkg:npm/npm-profile@12.0.1", "UID": "11f3a8855a750938", "BOMRef": "a0ef4846-de2d-4943-bd89-00a886333da3" }, "Version": "12.0.1", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/npm-profile/package.json", "Digest": "sha1:5097ede462b66fae69c6420d7f1812d9ecc24d93" }, { "ID": "npm-profile@12.0.1", "Name": "npm-profile", "Identifier": { "PURL": "pkg:npm/npm-profile@12.0.1", "UID": "4d0fdf4f22dcb3ef", "BOMRef": "72bf567a-8eca-4c64-aa8f-d844b185e9e0" }, "Version": "12.0.1", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/npm-profile/package.json", "Digest": "sha1:5097ede462b66fae69c6420d7f1812d9ecc24d93" }, { "ID": "npm-registry-fetch@19.1.1", "Name": "npm-registry-fetch", "Identifier": { "PURL": "pkg:npm/npm-registry-fetch@19.1.1", "UID": "976b4bdac3eb2b8f", "BOMRef": "ca1d1a44-1070-412b-a21e-1db93e4e6a9b" }, "Version": "19.1.1", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/npm-registry-fetch/package.json", "Digest": "sha1:26d6a380dc0d9bf4e36329d53b453d4258834999" }, { "ID": "npm-registry-fetch@19.1.1", "Name": "npm-registry-fetch", "Identifier": { "PURL": "pkg:npm/npm-registry-fetch@19.1.1", "UID": "a5212eaf5653d5d1", "BOMRef": "d5bbb86d-d9c5-4283-852e-4e54b6960e50" }, "Version": "19.1.1", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/npm-registry-fetch/package.json", "Digest": "sha1:26d6a380dc0d9bf4e36329d53b453d4258834999" }, { "ID": "npm-user-validate@4.0.0", "Name": "npm-user-validate", "Identifier": { "PURL": "pkg:npm/npm-user-validate@4.0.0", "UID": "7f9c12e60fbd7143", "BOMRef": "fdea3251-3f76-4be1-896e-42fe97f06dd3" }, "Version": "4.0.0", "Licenses": [ "BSD-2-Clause" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/npm-user-validate/package.json", "Digest": "sha1:55bda8b4785869e477f5f02d1e9b0134bd86267f" }, { "ID": "npm-user-validate@4.0.0", "Name": "npm-user-validate", "Identifier": { "PURL": "pkg:npm/npm-user-validate@4.0.0", "UID": "d5d15660e3fea820", "BOMRef": "7140891e-ee84-40e4-96d3-55a88095975f" }, "Version": "4.0.0", "Licenses": [ "BSD-2-Clause" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/npm-user-validate/package.json", "Digest": "sha1:55bda8b4785869e477f5f02d1e9b0134bd86267f" }, { "ID": "p-map@7.0.4", "Name": "p-map", "Identifier": { "PURL": "pkg:npm/p-map@7.0.4", "UID": "fd1a61498bfb7c51", "BOMRef": "a465b2b8-b514-4589-9906-783c52d20000" }, "Version": "7.0.4", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/p-map/package.json", "Digest": "sha1:f7afd4bd0f710b2b0c099a22a646cda6fb927688" }, { "ID": "p-map@7.0.4", "Name": "p-map", "Identifier": { "PURL": "pkg:npm/p-map@7.0.4", "UID": "4722534fb6cb51cf", "BOMRef": "06cf9ecc-e4cd-491e-9f91-e08d4d549ae1" }, "Version": "7.0.4", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/p-map/package.json", "Digest": "sha1:f7afd4bd0f710b2b0c099a22a646cda6fb927688" }, { "ID": "package-json-from-dist@1.0.1", "Name": "package-json-from-dist", "Identifier": { "PURL": "pkg:npm/package-json-from-dist@1.0.1", "UID": "9d340bff18da7b82", "BOMRef": "f697d32c-e126-4f0e-a511-10b992e74c40" }, "Version": "1.0.1", "Licenses": [ "BlueOak-1.0.0" ], "Layer": { "Digest": "sha256:b72305f951665b304d407e1dec69e0ec73b230360e8a4a17365b58d22946e37a", "DiffID": "sha256:20ca8f2ade98548df7b9a0182bfced0032d7d9f9243fa8e450e155f6d775f343" }, "FilePath": "usr/lib/node_modules/npm/node_modules/glob/node_modules/package-json-from-dist/package.json", "Digest": "sha1:d93947bd52021bb5f785613249e0e198a3b48025" }, { "ID": "package-json-from-dist@1.0.1", "Name": "package-json-from-dist", "Identifier": { "PURL": "pkg:npm/package-json-from-dist@1.0.1", "UID": "cc5455b0f93569d9", "BOMRef": "638237de-f7ff-4e65-b1dc-77b3de40ad5e" }, "Version": "1.0.1", "Licenses": [ "BlueOak-1.0.0" ], "Layer": { "Digest": "sha256:b72305f951665b304d407e1dec69e0ec73b230360e8a4a17365b58d22946e37a", "DiffID": "sha256:20ca8f2ade98548df7b9a0182bfced0032d7d9f9243fa8e450e155f6d775f343" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/glob/node_modules/package-json-from-dist/package.json", "Digest": "sha1:d93947bd52021bb5f785613249e0e198a3b48025" }, { "ID": "package-json-from-dist@1.0.1", "Name": "package-json-from-dist", "Identifier": { "PURL": "pkg:npm/package-json-from-dist@1.0.1", "UID": "59018c02204702a4", "BOMRef": "c7b7b51e-1972-4e2b-9ed5-84a7d4924ea0" }, "Version": "1.0.1", "Licenses": [ "BlueOak-1.0.0" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/glob/node_modules/package-json-from-dist/package.json", "Digest": "sha1:d93947bd52021bb5f785613249e0e198a3b48025" }, { "ID": "package-json-from-dist@1.0.1", "Name": "package-json-from-dist", "Identifier": { "PURL": "pkg:npm/package-json-from-dist@1.0.1", "UID": "765cf19892774739", "BOMRef": "b33a2c53-898c-416e-9f31-6cd9603038c7" }, "Version": "1.0.1", "Licenses": [ "BlueOak-1.0.0" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/glob/node_modules/package-json-from-dist/package.json", "Digest": "sha1:d93947bd52021bb5f785613249e0e198a3b48025" }, { "ID": "pacote@21.0.4", "Name": "pacote", "Identifier": { "PURL": "pkg:npm/pacote@21.0.4", "UID": "7b2e3be35ce890b3", "BOMRef": "pkg:npm/pacote@21.0.4" }, "Version": "21.0.4", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/pacote/package.json", "Digest": "sha1:50daecc71eeca347e0ed1b031bd1ce69eebd22b0" }, { "ID": "pacote@21.5.0", "Name": "pacote", "Identifier": { "PURL": "pkg:npm/pacote@21.5.0", "UID": "d5ef03d964e2995d", "BOMRef": "pkg:npm/pacote@21.5.0" }, "Version": "21.5.0", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/pacote/package.json", "Digest": "sha1:0135ff4f94849e08e8a79fab8f9b7079c883b2e0" }, { "ID": "parse-conflict-json@5.0.1", "Name": "parse-conflict-json", "Identifier": { "PURL": "pkg:npm/parse-conflict-json@5.0.1", "UID": "cb61d668d3dddfa", "BOMRef": "480a7f00-4a32-4654-a1b3-7618605e1493" }, "Version": "5.0.1", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/parse-conflict-json/package.json", "Digest": "sha1:9665d46107a1ad4846912f83ee204314dfe18f6a" }, { "ID": "parse-conflict-json@5.0.1", "Name": "parse-conflict-json", "Identifier": { "PURL": "pkg:npm/parse-conflict-json@5.0.1", "UID": "87ba5680cbafc70a", "BOMRef": "0214321c-c6b8-40f8-bd90-dde19dee4562" }, "Version": "5.0.1", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/parse-conflict-json/package.json", "Digest": "sha1:9665d46107a1ad4846912f83ee204314dfe18f6a" }, { "ID": "path-key@3.1.1", "Name": "path-key", "Identifier": { "PURL": "pkg:npm/path-key@3.1.1", "UID": "b71be6cdeebd020f", "BOMRef": "56c9d659-0450-41e4-a61b-598ff85f42a1" }, "Version": "3.1.1", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:b72305f951665b304d407e1dec69e0ec73b230360e8a4a17365b58d22946e37a", "DiffID": "sha256:20ca8f2ade98548df7b9a0182bfced0032d7d9f9243fa8e450e155f6d775f343" }, "FilePath": "usr/lib/node_modules/npm/node_modules/glob/node_modules/path-key/package.json", "Digest": "sha1:f330c46f59dbdd92dddf8a2cfc2c1569b469bdd2" }, { "ID": "path-key@3.1.1", "Name": "path-key", "Identifier": { "PURL": "pkg:npm/path-key@3.1.1", "UID": "3df09e1f25a36854", "BOMRef": "be6a7df5-edbe-4a4b-b090-2b38e2eaed2c" }, "Version": "3.1.1", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:b72305f951665b304d407e1dec69e0ec73b230360e8a4a17365b58d22946e37a", "DiffID": "sha256:20ca8f2ade98548df7b9a0182bfced0032d7d9f9243fa8e450e155f6d775f343" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/glob/node_modules/path-key/package.json", "Digest": "sha1:f330c46f59dbdd92dddf8a2cfc2c1569b469bdd2" }, { "ID": "path-key@3.1.1", "Name": "path-key", "Identifier": { "PURL": "pkg:npm/path-key@3.1.1", "UID": "1cc1f6ddf11205d0", "BOMRef": "c6704743-ecbd-4c0c-b865-c67c569bac11" }, "Version": "3.1.1", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/glob/node_modules/path-key/package.json", "Digest": "sha1:f330c46f59dbdd92dddf8a2cfc2c1569b469bdd2" }, { "ID": "path-key@3.1.1", "Name": "path-key", "Identifier": { "PURL": "pkg:npm/path-key@3.1.1", "UID": "dfd3b0947c174f54", "BOMRef": "51a79b65-0859-40fe-a2a1-e3959d076191" }, "Version": "3.1.1", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/glob/node_modules/path-key/package.json", "Digest": "sha1:f330c46f59dbdd92dddf8a2cfc2c1569b469bdd2" }, { "ID": "path-scurry@2.0.1", "Name": "path-scurry", "Identifier": { "PURL": "pkg:npm/path-scurry@2.0.1", "UID": "a2a23528d3ad98ef", "BOMRef": "pkg:npm/path-scurry@2.0.1" }, "Version": "2.0.1", "Licenses": [ "BlueOak-1.0.0" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/path-scurry/package.json", "Digest": "sha1:e76f88f36b2a9decd23e2a1635afba30de8f1809" }, { "ID": "path-scurry@2.0.2", "Name": "path-scurry", "Identifier": { "PURL": "pkg:npm/path-scurry@2.0.2", "UID": "c80ccc00453e1c74", "BOMRef": "16919d6d-41ed-4861-8d96-1cb91751281c" }, "Version": "2.0.2", "Licenses": [ "BlueOak-1.0.0" ], "Layer": { "Digest": "sha256:b72305f951665b304d407e1dec69e0ec73b230360e8a4a17365b58d22946e37a", "DiffID": "sha256:20ca8f2ade98548df7b9a0182bfced0032d7d9f9243fa8e450e155f6d775f343" }, "FilePath": "usr/lib/node_modules/npm/node_modules/glob/node_modules/path-scurry/package.json", "Digest": "sha1:6799d0755e607ad667faf000d9ff843270fb9fce" }, { "ID": "path-scurry@2.0.2", "Name": "path-scurry", "Identifier": { "PURL": "pkg:npm/path-scurry@2.0.2", "UID": "63284f0c4fd56b2c", "BOMRef": "48f3c0dc-5acc-4d0b-a92f-391cc2852804" }, "Version": "2.0.2", "Licenses": [ "BlueOak-1.0.0" ], "Layer": { "Digest": "sha256:b72305f951665b304d407e1dec69e0ec73b230360e8a4a17365b58d22946e37a", "DiffID": "sha256:20ca8f2ade98548df7b9a0182bfced0032d7d9f9243fa8e450e155f6d775f343" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/glob/node_modules/path-scurry/package.json", "Digest": "sha1:6799d0755e607ad667faf000d9ff843270fb9fce" }, { "ID": "path-scurry@2.0.2", "Name": "path-scurry", "Identifier": { "PURL": "pkg:npm/path-scurry@2.0.2", "UID": "138727be90da3d4d", "BOMRef": "e06c1203-2678-4533-947a-919420d5ec59" }, "Version": "2.0.2", "Licenses": [ "BlueOak-1.0.0" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/glob/node_modules/path-scurry/package.json", "Digest": "sha1:6799d0755e607ad667faf000d9ff843270fb9fce" }, { "ID": "path-scurry@2.0.2", "Name": "path-scurry", "Identifier": { "PURL": "pkg:npm/path-scurry@2.0.2", "UID": "ea17d29af2ca13c3", "BOMRef": "e30a67b4-550e-47b9-962b-aebc8c5a088a" }, "Version": "2.0.2", "Licenses": [ "BlueOak-1.0.0" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/glob/node_modules/path-scurry/package.json", "Digest": "sha1:6799d0755e607ad667faf000d9ff843270fb9fce" }, { "ID": "path-scurry@2.0.2", "Name": "path-scurry", "Identifier": { "PURL": "pkg:npm/path-scurry@2.0.2", "UID": "e0b50ec217a3c158", "BOMRef": "c97cb524-9805-4e3e-ad67-865036bec4fe" }, "Version": "2.0.2", "Licenses": [ "BlueOak-1.0.0" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/path-scurry/package.json", "Digest": "sha1:6799d0755e607ad667faf000d9ff843270fb9fce" }, { "ID": "picomatch@4.0.3", "Name": "picomatch", "Identifier": { "PURL": "pkg:npm/picomatch@4.0.3", "UID": "aa4fba5234321ea", "BOMRef": "5ab948da-8592-4bb8-89fd-29b74e448980" }, "Version": "4.0.3", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/tinyglobby/node_modules/picomatch/package.json", "Digest": "sha1:d5b57c1efc38eb0545dbf3eaffe857ba94597f07" }, { "ID": "picomatch@4.0.3", "Name": "picomatch", "Identifier": { "PURL": "pkg:npm/picomatch@4.0.3", "UID": "270fd6014b5a4faa", "BOMRef": "a7c7da33-bd41-4ceb-955f-f8bb6480ee58" }, "Version": "4.0.3", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/tinyglobby/node_modules/picomatch/package.json", "Digest": "sha1:d5b57c1efc38eb0545dbf3eaffe857ba94597f07" }, { "ID": "postcss-selector-parser@7.1.1", "Name": "postcss-selector-parser", "Identifier": { "PURL": "pkg:npm/postcss-selector-parser@7.1.1", "UID": "70f10140b3d8b968", "BOMRef": "367221b2-bcd0-4928-90e7-ea3813833dd3" }, "Version": "7.1.1", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/postcss-selector-parser/package.json", "Digest": "sha1:97ad05d49550a0c52b32de253cc8fe8e6241b987" }, { "ID": "postcss-selector-parser@7.1.1", "Name": "postcss-selector-parser", "Identifier": { "PURL": "pkg:npm/postcss-selector-parser@7.1.1", "UID": "3401a8b3b5890c0", "BOMRef": "9c6cc99f-4034-47b8-8900-7c31481a1f97" }, "Version": "7.1.1", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/postcss-selector-parser/package.json", "Digest": "sha1:97ad05d49550a0c52b32de253cc8fe8e6241b987" }, { "ID": "prisma@5.4.2", "Name": "prisma", "Identifier": { "PURL": "pkg:npm/prisma@5.4.2", "UID": "8bc2b655a74a0bd9", "BOMRef": "pkg:npm/prisma@5.4.2" }, "Version": "5.4.2", "Licenses": [ "Apache-2.0" ], "Layer": { "Digest": "sha256:798f8163a9f99b0b63ea5ee2493c845081542316e03793800db8ed2ea45cd4c4", "DiffID": "sha256:cae7bc74f48337ce5362ef3a381bc6781d6f5003e357aaff2316c8c31f8648fe" }, "FilePath": "root/.cache/prisma-python/binaries/5.4.2/ac9d7041ed77bcc8a8dbd2ab6616b39013829574/node_modules/prisma/package.json", "Digest": "sha1:233149234d81830aa27b624c884739e1f8c7498b" }, { "ID": "prisma-binaries@1.0.0", "Name": "prisma-binaries", "Identifier": { "PURL": "pkg:npm/prisma-binaries@1.0.0", "UID": "17825b605612754", "BOMRef": "pkg:npm/prisma-binaries@1.0.0" }, "Version": "1.0.0", "Licenses": [ "Apache-2.0" ], "Layer": { "Digest": "sha256:798f8163a9f99b0b63ea5ee2493c845081542316e03793800db8ed2ea45cd4c4", "DiffID": "sha256:cae7bc74f48337ce5362ef3a381bc6781d6f5003e357aaff2316c8c31f8648fe" }, "FilePath": "root/.cache/prisma-python/binaries/5.4.2/ac9d7041ed77bcc8a8dbd2ab6616b39013829574/package.json", "Digest": "sha1:13da9e1561789f778831c4ebefed1268d740601d" }, { "ID": "proc-log@6.1.0", "Name": "proc-log", "Identifier": { "PURL": "pkg:npm/proc-log@6.1.0", "UID": "1e5d396d618bb99a", "BOMRef": "f77aa685-1485-4350-84a0-76aedd2c4748" }, "Version": "6.1.0", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/proc-log/package.json", "Digest": "sha1:1be791ec94791bad88368bd320e09768d19af950" }, { "ID": "proc-log@6.1.0", "Name": "proc-log", "Identifier": { "PURL": "pkg:npm/proc-log@6.1.0", "UID": "3682a5b6c42cd495", "BOMRef": "a64213bb-06a1-4d24-a5e6-1e6b7f8feb41" }, "Version": "6.1.0", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/proc-log/package.json", "Digest": "sha1:1be791ec94791bad88368bd320e09768d19af950" }, { "ID": "proggy@4.0.0", "Name": "proggy", "Identifier": { "PURL": "pkg:npm/proggy@4.0.0", "UID": "ae4ed90e7eaa4912", "BOMRef": "0730ae7e-0ecc-4bf1-9d71-b9b5a8ab9dd0" }, "Version": "4.0.0", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/proggy/package.json", "Digest": "sha1:6561cfc6f2b76082d0bd2e5d7c63b4ef20fe8578" }, { "ID": "proggy@4.0.0", "Name": "proggy", "Identifier": { "PURL": "pkg:npm/proggy@4.0.0", "UID": "36abed6b977e7fa0", "BOMRef": "2bacbd8b-3390-44f8-9a94-5c141e63ffc9" }, "Version": "4.0.0", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/proggy/package.json", "Digest": "sha1:6561cfc6f2b76082d0bd2e5d7c63b4ef20fe8578" }, { "ID": "promise-all-reject-late@1.0.1", "Name": "promise-all-reject-late", "Identifier": { "PURL": "pkg:npm/promise-all-reject-late@1.0.1", "UID": "767d359880838013", "BOMRef": "7e2e8177-3e5e-4426-9a74-e3f578f41ffc" }, "Version": "1.0.1", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/promise-all-reject-late/package.json", "Digest": "sha1:c88aa929d83fb2bbf326f7c62103da6b8c48c4df" }, { "ID": "promise-all-reject-late@1.0.1", "Name": "promise-all-reject-late", "Identifier": { "PURL": "pkg:npm/promise-all-reject-late@1.0.1", "UID": "e21c2fcf02d9c4cc", "BOMRef": "571155d6-d342-434f-b634-d77bca99e9dd" }, "Version": "1.0.1", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/promise-all-reject-late/package.json", "Digest": "sha1:c88aa929d83fb2bbf326f7c62103da6b8c48c4df" }, { "ID": "promise-call-limit@3.0.2", "Name": "promise-call-limit", "Identifier": { "PURL": "pkg:npm/promise-call-limit@3.0.2", "UID": "6fc597350d13a1de", "BOMRef": "a9a18963-c116-46d1-b40c-e4ede1258459" }, "Version": "3.0.2", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/promise-call-limit/package.json", "Digest": "sha1:27f3261a15e6ace571c3ad192e878cec1d9358c9" }, { "ID": "promise-call-limit@3.0.2", "Name": "promise-call-limit", "Identifier": { "PURL": "pkg:npm/promise-call-limit@3.0.2", "UID": "1e342cf4181181b", "BOMRef": "59cca3b7-8679-49fb-b57d-96f129e206b0" }, "Version": "3.0.2", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/promise-call-limit/package.json", "Digest": "sha1:27f3261a15e6ace571c3ad192e878cec1d9358c9" }, { "ID": "promise-retry@2.0.1", "Name": "promise-retry", "Identifier": { "PURL": "pkg:npm/promise-retry@2.0.1", "UID": "9d95bd0e0b65d3e1", "BOMRef": "1ef25156-d130-4101-8af3-89d1b6426576" }, "Version": "2.0.1", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/promise-retry/package.json", "Digest": "sha1:fc649cbedea73287db37a431e5761e9c0b4abca9" }, { "ID": "promise-retry@2.0.1", "Name": "promise-retry", "Identifier": { "PURL": "pkg:npm/promise-retry@2.0.1", "UID": "3d0e034e27bcd1d6", "BOMRef": "aadc716d-49fa-48dc-a257-d9d1706850bb" }, "Version": "2.0.1", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/promise-retry/package.json", "Digest": "sha1:fc649cbedea73287db37a431e5761e9c0b4abca9" }, { "ID": "promzard@3.0.1", "Name": "promzard", "Identifier": { "PURL": "pkg:npm/promzard@3.0.1", "UID": "2a440cac14534b9", "BOMRef": "9f2a2fee-4649-41bd-bb2f-121a12fe1038" }, "Version": "3.0.1", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/promzard/package.json", "Digest": "sha1:cf40b5b5f6e3f70b866ca5d7fe08e00aae1bc33c" }, { "ID": "promzard@3.0.1", "Name": "promzard", "Identifier": { "PURL": "pkg:npm/promzard@3.0.1", "UID": "d94d25d1d61fe630", "BOMRef": "a69b0b50-7421-4f23-a9e1-32e50a6ef45c" }, "Version": "3.0.1", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/promzard/package.json", "Digest": "sha1:cf40b5b5f6e3f70b866ca5d7fe08e00aae1bc33c" }, { "ID": "qrcode-terminal@0.12.0", "Name": "qrcode-terminal", "Identifier": { "PURL": "pkg:npm/qrcode-terminal@0.12.0", "UID": "a582f5150bac3f7e", "BOMRef": "f54191ca-43c4-4458-8a27-a6eada983813" }, "Version": "0.12.0", "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/qrcode-terminal/package.json", "Digest": "sha1:4a84ac3decfe9f31da851b98dedd698f935b83bc" }, { "ID": "qrcode-terminal@0.12.0", "Name": "qrcode-terminal", "Identifier": { "PURL": "pkg:npm/qrcode-terminal@0.12.0", "UID": "fb6a67f61bde34a4", "BOMRef": "f14f6fc4-db06-42af-aec3-106ed807c6a0" }, "Version": "0.12.0", "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/qrcode-terminal/package.json", "Digest": "sha1:4a84ac3decfe9f31da851b98dedd698f935b83bc" }, { "ID": "read@5.0.1", "Name": "read", "Identifier": { "PURL": "pkg:npm/read@5.0.1", "UID": "3c0566b9db06c748", "BOMRef": "7cbe3131-d64c-4f75-aec2-ecd5f94d6a37" }, "Version": "5.0.1", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/read/package.json", "Digest": "sha1:202675a6008d164feb9732ab21970a1977d40693" }, { "ID": "read@5.0.1", "Name": "read", "Identifier": { "PURL": "pkg:npm/read@5.0.1", "UID": "2062460bd91569b7", "BOMRef": "2adebe47-33f4-499b-976b-94fc03ab4233" }, "Version": "5.0.1", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/read/package.json", "Digest": "sha1:202675a6008d164feb9732ab21970a1977d40693" }, { "ID": "read-cmd-shim@6.0.0", "Name": "read-cmd-shim", "Identifier": { "PURL": "pkg:npm/read-cmd-shim@6.0.0", "UID": "5105146bea9beb1f", "BOMRef": "204e5ce7-54d7-422b-a40c-25ed647b1b43" }, "Version": "6.0.0", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/read-cmd-shim/package.json", "Digest": "sha1:bb22c7694960e98b244d220ac92c31f556b9a454" }, { "ID": "read-cmd-shim@6.0.0", "Name": "read-cmd-shim", "Identifier": { "PURL": "pkg:npm/read-cmd-shim@6.0.0", "UID": "c5f5e17d3a1e08a4", "BOMRef": "4ae901cc-b100-46fb-a0b7-91934dbc3013" }, "Version": "6.0.0", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/read-cmd-shim/package.json", "Digest": "sha1:bb22c7694960e98b244d220ac92c31f556b9a454" }, { "ID": "retry@0.12.0", "Name": "retry", "Identifier": { "PURL": "pkg:npm/retry@0.12.0", "UID": "fc9387bd446d4c7b", "BOMRef": "fbb74d9e-f1f3-40c7-bcc2-32c5cffc444d" }, "Version": "0.12.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/retry/package.json", "Digest": "sha1:10dd0941e4e65c436c4f7111efdb1679c966c478" }, { "ID": "retry@0.12.0", "Name": "retry", "Identifier": { "PURL": "pkg:npm/retry@0.12.0", "UID": "fb1fdf1b26665284", "BOMRef": "ae7e4547-aff3-48f1-84cf-0f5a0acf9799" }, "Version": "0.12.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/retry/package.json", "Digest": "sha1:10dd0941e4e65c436c4f7111efdb1679c966c478" }, { "ID": "retry@0.13.1", "Name": "retry", "Identifier": { "PURL": "pkg:npm/retry@0.13.1", "UID": "49fbdfc7f594af2a", "BOMRef": "pkg:npm/retry@0.13.1" }, "Version": "0.13.1", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/@gar/promise-retry/node_modules/retry/package.json", "Digest": "sha1:59938dbd56e639fc8e328046d447a7f1e50d2603" }, { "ID": "safer-buffer@2.1.2", "Name": "safer-buffer", "Identifier": { "PURL": "pkg:npm/safer-buffer@2.1.2", "UID": "1015997dba111acf", "BOMRef": "4a42e09d-6b1d-4452-8680-e4f692f9061c" }, "Version": "2.1.2", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/safer-buffer/package.json", "Digest": "sha1:5ed0fab8e5cac53e4d072acbd82fca9be08f5e67" }, { "ID": "safer-buffer@2.1.2", "Name": "safer-buffer", "Identifier": { "PURL": "pkg:npm/safer-buffer@2.1.2", "UID": "a30c7d4ab895a8b", "BOMRef": "3c53b7e2-1fa6-4188-a208-91b0d83ebb98" }, "Version": "2.1.2", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/safer-buffer/package.json", "Digest": "sha1:5ed0fab8e5cac53e4d072acbd82fca9be08f5e67" }, { "ID": "semver@7.7.3", "Name": "semver", "Identifier": { "PURL": "pkg:npm/semver@7.7.3", "UID": "7d47ad6e7200fd5a", "BOMRef": "pkg:npm/semver@7.7.3" }, "Version": "7.7.3", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/semver/package.json", "Digest": "sha1:8b79d46abe6fc320567c34edb59ab3f88ed2f581" }, { "ID": "semver@7.7.4", "Name": "semver", "Identifier": { "PURL": "pkg:npm/semver@7.7.4", "UID": "d073bd309645d0f8", "BOMRef": "pkg:npm/semver@7.7.4" }, "Version": "7.7.4", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/semver/package.json", "Digest": "sha1:d9596b0dfd52092ec49e20d3e586feaeb5d47ffb" }, { "ID": "shebang-command@2.0.0", "Name": "shebang-command", "Identifier": { "PURL": "pkg:npm/shebang-command@2.0.0", "UID": "42d092f77625d07c", "BOMRef": "7e4e9cc1-b545-4883-97d5-0072ccfbf378" }, "Version": "2.0.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:b72305f951665b304d407e1dec69e0ec73b230360e8a4a17365b58d22946e37a", "DiffID": "sha256:20ca8f2ade98548df7b9a0182bfced0032d7d9f9243fa8e450e155f6d775f343" }, "FilePath": "usr/lib/node_modules/npm/node_modules/glob/node_modules/shebang-command/package.json", "Digest": "sha1:2e2395a2e489846382e5cefdf011dcd7cacb82a5" }, { "ID": "shebang-command@2.0.0", "Name": "shebang-command", "Identifier": { "PURL": "pkg:npm/shebang-command@2.0.0", "UID": "60c8e1476bedd000", "BOMRef": "09da6180-eec0-478c-bf80-6cde420439c7" }, "Version": "2.0.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:b72305f951665b304d407e1dec69e0ec73b230360e8a4a17365b58d22946e37a", "DiffID": "sha256:20ca8f2ade98548df7b9a0182bfced0032d7d9f9243fa8e450e155f6d775f343" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/glob/node_modules/shebang-command/package.json", "Digest": "sha1:2e2395a2e489846382e5cefdf011dcd7cacb82a5" }, { "ID": "shebang-command@2.0.0", "Name": "shebang-command", "Identifier": { "PURL": "pkg:npm/shebang-command@2.0.0", "UID": "be2c37b7b33b83b3", "BOMRef": "192ccc20-7003-4593-bfbc-ffba0ccff6e1" }, "Version": "2.0.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/glob/node_modules/shebang-command/package.json", "Digest": "sha1:2e2395a2e489846382e5cefdf011dcd7cacb82a5" }, { "ID": "shebang-command@2.0.0", "Name": "shebang-command", "Identifier": { "PURL": "pkg:npm/shebang-command@2.0.0", "UID": "191ac4d9991cf6cd", "BOMRef": "77b96808-d477-4cd2-a692-3f5a6487b004" }, "Version": "2.0.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/glob/node_modules/shebang-command/package.json", "Digest": "sha1:2e2395a2e489846382e5cefdf011dcd7cacb82a5" }, { "ID": "shebang-regex@3.0.0", "Name": "shebang-regex", "Identifier": { "PURL": "pkg:npm/shebang-regex@3.0.0", "UID": "b6120f45b31ce423", "BOMRef": "1beac0ff-2db6-4bda-970a-fff22c1184a7" }, "Version": "3.0.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:b72305f951665b304d407e1dec69e0ec73b230360e8a4a17365b58d22946e37a", "DiffID": "sha256:20ca8f2ade98548df7b9a0182bfced0032d7d9f9243fa8e450e155f6d775f343" }, "FilePath": "usr/lib/node_modules/npm/node_modules/glob/node_modules/shebang-regex/package.json", "Digest": "sha1:4c10640951d12ad418aa40c29b550fdfe3d2567a" }, { "ID": "shebang-regex@3.0.0", "Name": "shebang-regex", "Identifier": { "PURL": "pkg:npm/shebang-regex@3.0.0", "UID": "580b71d58ef10b00", "BOMRef": "54eb2ac6-f8a6-45cf-abf4-74cf3685ed02" }, "Version": "3.0.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:b72305f951665b304d407e1dec69e0ec73b230360e8a4a17365b58d22946e37a", "DiffID": "sha256:20ca8f2ade98548df7b9a0182bfced0032d7d9f9243fa8e450e155f6d775f343" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/glob/node_modules/shebang-regex/package.json", "Digest": "sha1:4c10640951d12ad418aa40c29b550fdfe3d2567a" }, { "ID": "shebang-regex@3.0.0", "Name": "shebang-regex", "Identifier": { "PURL": "pkg:npm/shebang-regex@3.0.0", "UID": "8898747ebd8452c", "BOMRef": "d57a815c-1991-476f-a510-1fedc4de0684" }, "Version": "3.0.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/glob/node_modules/shebang-regex/package.json", "Digest": "sha1:4c10640951d12ad418aa40c29b550fdfe3d2567a" }, { "ID": "shebang-regex@3.0.0", "Name": "shebang-regex", "Identifier": { "PURL": "pkg:npm/shebang-regex@3.0.0", "UID": "94312b676b129c4b", "BOMRef": "8a93b867-ba8f-43fa-bda4-40605946691c" }, "Version": "3.0.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/glob/node_modules/shebang-regex/package.json", "Digest": "sha1:4c10640951d12ad418aa40c29b550fdfe3d2567a" }, { "ID": "signal-exit@4.1.0", "Name": "signal-exit", "Identifier": { "PURL": "pkg:npm/signal-exit@4.1.0", "UID": "cd1ff54666f4e0af", "BOMRef": "6caa3704-483a-4d60-93f3-3ad144c77b24" }, "Version": "4.1.0", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:b72305f951665b304d407e1dec69e0ec73b230360e8a4a17365b58d22946e37a", "DiffID": "sha256:20ca8f2ade98548df7b9a0182bfced0032d7d9f9243fa8e450e155f6d775f343" }, "FilePath": "usr/lib/node_modules/npm/node_modules/glob/node_modules/signal-exit/package.json", "Digest": "sha1:7ed47a76d7f1a65c0920cbf3d9f09c4adb9cc961" }, { "ID": "signal-exit@4.1.0", "Name": "signal-exit", "Identifier": { "PURL": "pkg:npm/signal-exit@4.1.0", "UID": "c73b60d3d9b35573", "BOMRef": "db8f7ad5-a85e-477e-8c43-8dec1f473add" }, "Version": "4.1.0", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:b72305f951665b304d407e1dec69e0ec73b230360e8a4a17365b58d22946e37a", "DiffID": "sha256:20ca8f2ade98548df7b9a0182bfced0032d7d9f9243fa8e450e155f6d775f343" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/glob/node_modules/signal-exit/package.json", "Digest": "sha1:7ed47a76d7f1a65c0920cbf3d9f09c4adb9cc961" }, { "ID": "signal-exit@4.1.0", "Name": "signal-exit", "Identifier": { "PURL": "pkg:npm/signal-exit@4.1.0", "UID": "701cd8d94451b35c", "BOMRef": "7ad60200-1aec-496f-bc23-f77d15e3e4ce" }, "Version": "4.1.0", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/signal-exit/package.json", "Digest": "sha1:7ed47a76d7f1a65c0920cbf3d9f09c4adb9cc961" }, { "ID": "signal-exit@4.1.0", "Name": "signal-exit", "Identifier": { "PURL": "pkg:npm/signal-exit@4.1.0", "UID": "f6440556a052f55", "BOMRef": "f3c2358a-ce8c-4ffa-b122-107f9cf8a283" }, "Version": "4.1.0", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/glob/node_modules/signal-exit/package.json", "Digest": "sha1:7ed47a76d7f1a65c0920cbf3d9f09c4adb9cc961" }, { "ID": "signal-exit@4.1.0", "Name": "signal-exit", "Identifier": { "PURL": "pkg:npm/signal-exit@4.1.0", "UID": "534bbf32d9a67be4", "BOMRef": "68108d63-d8c2-4dae-9bdb-8d4d0f1bb177" }, "Version": "4.1.0", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/glob/node_modules/signal-exit/package.json", "Digest": "sha1:7ed47a76d7f1a65c0920cbf3d9f09c4adb9cc961" }, { "ID": "signal-exit@4.1.0", "Name": "signal-exit", "Identifier": { "PURL": "pkg:npm/signal-exit@4.1.0", "UID": "661edd2cbc767fd3", "BOMRef": "97a800dc-02cd-4ff7-a2af-a08cd25fe9a5" }, "Version": "4.1.0", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/signal-exit/package.json", "Digest": "sha1:7ed47a76d7f1a65c0920cbf3d9f09c4adb9cc961" }, { "ID": "sigstore@4.1.0", "Name": "sigstore", "Identifier": { "PURL": "pkg:npm/sigstore@4.1.0", "UID": "b7be050b18779427", "BOMRef": "0e8f3605-51a0-40ae-9d37-4ea0b8f8b135" }, "Version": "4.1.0", "Licenses": [ "Apache-2.0" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/sigstore/package.json", "Digest": "sha1:a0a695a5c6df89e050ae2802dad080b0dd66e986" }, { "ID": "sigstore@4.1.0", "Name": "sigstore", "Identifier": { "PURL": "pkg:npm/sigstore@4.1.0", "UID": "4f7241db09e17529", "BOMRef": "6f3cf719-b21f-4e6b-a665-8376df25f5aa" }, "Version": "4.1.0", "Licenses": [ "Apache-2.0" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/sigstore/package.json", "Digest": "sha1:a0a695a5c6df89e050ae2802dad080b0dd66e986" }, { "ID": "smart-buffer@4.2.0", "Name": "smart-buffer", "Identifier": { "PURL": "pkg:npm/smart-buffer@4.2.0", "UID": "2cb44f1b10283a59", "BOMRef": "0fe1891c-c0a7-4ef5-999f-80297ecdb821" }, "Version": "4.2.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/smart-buffer/package.json", "Digest": "sha1:a9db89be9421029bd73baf8199042a08253a0b59" }, { "ID": "smart-buffer@4.2.0", "Name": "smart-buffer", "Identifier": { "PURL": "pkg:npm/smart-buffer@4.2.0", "UID": "c144e601407c55ba", "BOMRef": "70c21a0a-7c79-4f49-b743-729207e0b9b5" }, "Version": "4.2.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/smart-buffer/package.json", "Digest": "sha1:a9db89be9421029bd73baf8199042a08253a0b59" }, { "ID": "socks@2.8.7", "Name": "socks", "Identifier": { "PURL": "pkg:npm/socks@2.8.7", "UID": "453579bb1e255db3", "BOMRef": "d51fee7e-16e9-4ba5-8ddd-e90e7089f64e" }, "Version": "2.8.7", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/socks/package.json", "Digest": "sha1:c92d113f3614e8c725fc4de50c3312bdcde18258" }, { "ID": "socks@2.8.7", "Name": "socks", "Identifier": { "PURL": "pkg:npm/socks@2.8.7", "UID": "210b44bb008ea3d7", "BOMRef": "4e4b8f74-aa3d-4d59-8109-9c8855b060ea" }, "Version": "2.8.7", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/socks/package.json", "Digest": "sha1:c92d113f3614e8c725fc4de50c3312bdcde18258" }, { "ID": "socks-proxy-agent@8.0.5", "Name": "socks-proxy-agent", "Identifier": { "PURL": "pkg:npm/socks-proxy-agent@8.0.5", "UID": "ab4565e6e973380b", "BOMRef": "0acac1c7-1a78-4ff5-8986-fba47190f914" }, "Version": "8.0.5", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/socks-proxy-agent/package.json", "Digest": "sha1:a52f0cff949fd82f9e42d4214d2917964d7a9bdb" }, { "ID": "socks-proxy-agent@8.0.5", "Name": "socks-proxy-agent", "Identifier": { "PURL": "pkg:npm/socks-proxy-agent@8.0.5", "UID": "14e6e8fcffa51398", "BOMRef": "aca2d7e5-1a24-4f59-9a36-4ad36bdfaa5b" }, "Version": "8.0.5", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/socks-proxy-agent/package.json", "Digest": "sha1:a52f0cff949fd82f9e42d4214d2917964d7a9bdb" }, { "ID": "spdx-correct@3.2.0", "Name": "spdx-correct", "Identifier": { "PURL": "pkg:npm/spdx-correct@3.2.0", "UID": "ee479584e4774672", "BOMRef": "pkg:npm/spdx-correct@3.2.0" }, "Version": "3.2.0", "Licenses": [ "Apache-2.0" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/spdx-correct/package.json", "Digest": "sha1:a7a8f7467469c676a88934b972d08c03c9a4b7b4" }, { "ID": "spdx-exceptions@2.5.0", "Name": "spdx-exceptions", "Identifier": { "PURL": "pkg:npm/spdx-exceptions@2.5.0", "UID": "2d753baa313152bf", "BOMRef": "a440171b-7d27-4b47-814d-0b7d03e7f4a8" }, "Version": "2.5.0", "Licenses": [ "CC-BY-3.0" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/spdx-exceptions/package.json", "Digest": "sha1:0f731ec5551fde840e6213e20cd9fbdc53468290" }, { "ID": "spdx-exceptions@2.5.0", "Name": "spdx-exceptions", "Identifier": { "PURL": "pkg:npm/spdx-exceptions@2.5.0", "UID": "7fd68586101a4c61", "BOMRef": "d117044c-b6f2-459c-8f70-d68c16b1688f" }, "Version": "2.5.0", "Licenses": [ "CC-BY-3.0" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/spdx-exceptions/package.json", "Digest": "sha1:0f731ec5551fde840e6213e20cd9fbdc53468290" }, { "ID": "spdx-expression-parse@3.0.1", "Name": "spdx-expression-parse", "Identifier": { "PURL": "pkg:npm/spdx-expression-parse@3.0.1", "UID": "f301019706c4f3", "BOMRef": "fdc5868e-6686-4718-9baa-8c99da774682" }, "Version": "3.0.1", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/spdx-correct/node_modules/spdx-expression-parse/package.json", "Digest": "sha1:72082a3e9d4efe5a06c914b7ffa738f35b550ffb" }, { "ID": "spdx-expression-parse@3.0.1", "Name": "spdx-expression-parse", "Identifier": { "PURL": "pkg:npm/spdx-expression-parse@3.0.1", "UID": "bbf0e794f014d72a", "BOMRef": "bd005814-df31-4e89-ab91-87dea47cce6a" }, "Version": "3.0.1", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/validate-npm-package-license/node_modules/spdx-expression-parse/package.json", "Digest": "sha1:72082a3e9d4efe5a06c914b7ffa738f35b550ffb" }, { "ID": "spdx-expression-parse@4.0.0", "Name": "spdx-expression-parse", "Identifier": { "PURL": "pkg:npm/spdx-expression-parse@4.0.0", "UID": "daba4b5a0277a08f", "BOMRef": "18a2ea4d-c4df-4ba4-a0e1-242481977258" }, "Version": "4.0.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/spdx-expression-parse/package.json", "Digest": "sha1:3f1b1059652d04327b6b0513080e242935399c30" }, { "ID": "spdx-expression-parse@4.0.0", "Name": "spdx-expression-parse", "Identifier": { "PURL": "pkg:npm/spdx-expression-parse@4.0.0", "UID": "66b6c86b5dff579", "BOMRef": "0e1535d7-292c-407b-a537-9eb9ede1638b" }, "Version": "4.0.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/spdx-expression-parse/package.json", "Digest": "sha1:3f1b1059652d04327b6b0513080e242935399c30" }, { "ID": "spdx-license-ids@3.0.22", "Name": "spdx-license-ids", "Identifier": { "PURL": "pkg:npm/spdx-license-ids@3.0.22", "UID": "285264396e0bdd28", "BOMRef": "pkg:npm/spdx-license-ids@3.0.22" }, "Version": "3.0.22", "Licenses": [ "CC0-1.0" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/spdx-license-ids/package.json", "Digest": "sha1:0c921a3dffa4e1c2bcfdf3559a7c1713090b08f2" }, { "ID": "spdx-license-ids@3.0.23", "Name": "spdx-license-ids", "Identifier": { "PURL": "pkg:npm/spdx-license-ids@3.0.23", "UID": "ee9b69664b153dba", "BOMRef": "pkg:npm/spdx-license-ids@3.0.23" }, "Version": "3.0.23", "Licenses": [ "CC0-1.0" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/spdx-license-ids/package.json", "Digest": "sha1:e804161e6108792db7c0d626338f51b2dcf9bf7f" }, { "ID": "ssri@13.0.0", "Name": "ssri", "Identifier": { "PURL": "pkg:npm/ssri@13.0.0", "UID": "dac2f6cee5c65706", "BOMRef": "pkg:npm/ssri@13.0.0" }, "Version": "13.0.0", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/ssri/package.json", "Digest": "sha1:8abdcfa076c039e1f09d3b4554b0bad0c8d31d3e" }, { "ID": "ssri@13.0.1", "Name": "ssri", "Identifier": { "PURL": "pkg:npm/ssri@13.0.1", "UID": "53411043eb28b7fd", "BOMRef": "pkg:npm/ssri@13.0.1" }, "Version": "13.0.1", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/ssri/package.json", "Digest": "sha1:c91b5cd4329cb25896064409cb45f2428e32f239" }, { "ID": "string-width@4.2.3", "Name": "string-width", "Identifier": { "PURL": "pkg:npm/string-width@4.2.3", "UID": "6345187c9e4052d9", "BOMRef": "pkg:npm/string-width@4.2.3" }, "Version": "4.2.3", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/string-width/package.json", "Digest": "sha1:a5306c15bba6cb123d9f061ca85eb56576c6638f" }, { "ID": "strip-ansi@6.0.1", "Name": "strip-ansi", "Identifier": { "PURL": "pkg:npm/strip-ansi@6.0.1", "UID": "546178feb7a01ce5", "BOMRef": "pkg:npm/strip-ansi@6.0.1" }, "Version": "6.0.1", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/strip-ansi/package.json", "Digest": "sha1:892d549c672831716abe655f087946d2644f2852" }, { "ID": "supports-color@10.2.2", "Name": "supports-color", "Identifier": { "PURL": "pkg:npm/supports-color@10.2.2", "UID": "9dbcbc8c7ea743ca", "BOMRef": "7f703a35-8289-45f4-880e-3c9faa343361" }, "Version": "10.2.2", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/supports-color/package.json", "Digest": "sha1:ba4fdcabc29b4cd931da15c51981f96731bd1b1e" }, { "ID": "supports-color@10.2.2", "Name": "supports-color", "Identifier": { "PURL": "pkg:npm/supports-color@10.2.2", "UID": "5c5e4ebf2bd3ded9", "BOMRef": "af82d280-9ae0-493d-b3c9-8847063aee55" }, "Version": "10.2.2", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/supports-color/package.json", "Digest": "sha1:ba4fdcabc29b4cd931da15c51981f96731bd1b1e" }, { "ID": "tar@7.5.8", "Name": "tar", "Identifier": { "PURL": "pkg:npm/tar@7.5.8", "UID": "d33ddf8733037ae2", "BOMRef": "a38a8b1b-9db1-49cc-93e2-725995a35c37" }, "Version": "7.5.8", "Licenses": [ "BlueOak-1.0.0" ], "Layer": { "Digest": "sha256:b72305f951665b304d407e1dec69e0ec73b230360e8a4a17365b58d22946e37a", "DiffID": "sha256:20ca8f2ade98548df7b9a0182bfced0032d7d9f9243fa8e450e155f6d775f343" }, "FilePath": "usr/lib/node_modules/npm/node_modules/tar/package.json", "Digest": "sha1:bb602d72821b219f56ca9ded25a2899712ec7b75" }, { "ID": "tar@7.5.8", "Name": "tar", "Identifier": { "PURL": "pkg:npm/tar@7.5.8", "UID": "7239a2552a914b91", "BOMRef": "068ed263-1aec-4c09-a850-41fe5a275ec1" }, "Version": "7.5.8", "Licenses": [ "BlueOak-1.0.0" ], "Layer": { "Digest": "sha256:b72305f951665b304d407e1dec69e0ec73b230360e8a4a17365b58d22946e37a", "DiffID": "sha256:20ca8f2ade98548df7b9a0182bfced0032d7d9f9243fa8e450e155f6d775f343" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/tar/package.json", "Digest": "sha1:bb602d72821b219f56ca9ded25a2899712ec7b75" }, { "ID": "tar@7.5.8", "Name": "tar", "Identifier": { "PURL": "pkg:npm/tar@7.5.8", "UID": "8e6e5d12114a31dd", "BOMRef": "2828e84b-57a8-4d7f-b906-e5af2247f833" }, "Version": "7.5.8", "Licenses": [ "BlueOak-1.0.0" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/tar/package.json", "Digest": "sha1:bb602d72821b219f56ca9ded25a2899712ec7b75" }, { "ID": "tar@7.5.8", "Name": "tar", "Identifier": { "PURL": "pkg:npm/tar@7.5.8", "UID": "eeb01bb0229d4427", "BOMRef": "e3664234-1206-46d7-8d87-a17fe8a3aa4e" }, "Version": "7.5.8", "Licenses": [ "BlueOak-1.0.0" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/tar/package.json", "Digest": "sha1:bb602d72821b219f56ca9ded25a2899712ec7b75" }, { "ID": "text-table@0.2.0", "Name": "text-table", "Identifier": { "PURL": "pkg:npm/text-table@0.2.0", "UID": "121f9c5cfe7224a0", "BOMRef": "a41c8887-4e15-4e4d-a0c1-ca41ef9b992f" }, "Version": "0.2.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/text-table/package.json", "Digest": "sha1:f63faee888ad065881dff49fc3e3de8ac57b2ae2" }, { "ID": "text-table@0.2.0", "Name": "text-table", "Identifier": { "PURL": "pkg:npm/text-table@0.2.0", "UID": "847821e17ecc858b", "BOMRef": "122c922d-b18a-429f-af7d-8f508a913c8d" }, "Version": "0.2.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/text-table/package.json", "Digest": "sha1:f63faee888ad065881dff49fc3e3de8ac57b2ae2" }, { "ID": "tiny-relative-date@2.0.2", "Name": "tiny-relative-date", "Identifier": { "PURL": "pkg:npm/tiny-relative-date@2.0.2", "UID": "813a92a113e0dfd1", "BOMRef": "9087c527-480d-489a-a1fc-8d9d2ae8575b" }, "Version": "2.0.2", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/tiny-relative-date/package.json", "Digest": "sha1:120561f313d4901b1dc03b2594ecc45cfe2ad550" }, { "ID": "tiny-relative-date@2.0.2", "Name": "tiny-relative-date", "Identifier": { "PURL": "pkg:npm/tiny-relative-date@2.0.2", "UID": "bac07c61507f4bb9", "BOMRef": "70672355-503d-4c1a-9ee3-53c028634f1c" }, "Version": "2.0.2", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/tiny-relative-date/package.json", "Digest": "sha1:120561f313d4901b1dc03b2594ecc45cfe2ad550" }, { "ID": "tinyglobby@0.2.15", "Name": "tinyglobby", "Identifier": { "PURL": "pkg:npm/tinyglobby@0.2.15", "UID": "a24488bdca2abc2f", "BOMRef": "831b2f34-3749-4035-9f91-4be488289c8d" }, "Version": "0.2.15", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/tinyglobby/package.json", "Digest": "sha1:811354c5cc4a6c4f64899ed3fcd9f91a7a36e857" }, { "ID": "tinyglobby@0.2.15", "Name": "tinyglobby", "Identifier": { "PURL": "pkg:npm/tinyglobby@0.2.15", "UID": "35308fe9c6a396e9", "BOMRef": "4add8cc5-7e3e-469a-89a8-a65efd572c07" }, "Version": "0.2.15", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/tinyglobby/package.json", "Digest": "sha1:811354c5cc4a6c4f64899ed3fcd9f91a7a36e857" }, { "ID": "treeverse@3.0.0", "Name": "treeverse", "Identifier": { "PURL": "pkg:npm/treeverse@3.0.0", "UID": "3a2b953b7b2eb592", "BOMRef": "8e38157f-9b0f-4c46-99b0-664e0c63d157" }, "Version": "3.0.0", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/treeverse/package.json", "Digest": "sha1:83653dcf5b0c581f485febcbeb9152176632bed0" }, { "ID": "treeverse@3.0.0", "Name": "treeverse", "Identifier": { "PURL": "pkg:npm/treeverse@3.0.0", "UID": "cabdca492b8a42d4", "BOMRef": "04c5b382-fe0c-43c5-bb6c-37b584f9b652" }, "Version": "3.0.0", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/treeverse/package.json", "Digest": "sha1:83653dcf5b0c581f485febcbeb9152176632bed0" }, { "ID": "tuf-js@4.1.0", "Name": "tuf-js", "Identifier": { "PURL": "pkg:npm/tuf-js@4.1.0", "UID": "828d1bccfc8c4f6c", "BOMRef": "436232c1-3d4c-42d4-b6a8-0620885441cb" }, "Version": "4.1.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/tuf-js/package.json", "Digest": "sha1:43aa062b744de4a123e714337d05adaa483ceed1" }, { "ID": "tuf-js@4.1.0", "Name": "tuf-js", "Identifier": { "PURL": "pkg:npm/tuf-js@4.1.0", "UID": "adf1d44c8a7fa23", "BOMRef": "a1b58126-9dac-4af3-b4a8-3eb1dad3eb31" }, "Version": "4.1.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/tuf-js/package.json", "Digest": "sha1:43aa062b744de4a123e714337d05adaa483ceed1" }, { "ID": "unique-filename@5.0.0", "Name": "unique-filename", "Identifier": { "PURL": "pkg:npm/unique-filename@5.0.0", "UID": "57310e783c5a9f77", "BOMRef": "88f8256d-4b96-4cce-9a21-b0b72cbfa7f2" }, "Version": "5.0.0", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/unique-filename/package.json", "Digest": "sha1:6450c655c66643d252cdc98fc3c413fda26dfeee" }, { "ID": "unique-filename@5.0.0", "Name": "unique-filename", "Identifier": { "PURL": "pkg:npm/unique-filename@5.0.0", "UID": "ec9d745a651adb42", "BOMRef": "d5bb6b1f-6f11-4c4d-b0f5-acc2031bd3ef" }, "Version": "5.0.0", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/unique-filename/package.json", "Digest": "sha1:6450c655c66643d252cdc98fc3c413fda26dfeee" }, { "ID": "unique-slug@6.0.0", "Name": "unique-slug", "Identifier": { "PURL": "pkg:npm/unique-slug@6.0.0", "UID": "10e581aa5507729c", "BOMRef": "9db3811e-0ac0-43c9-ac62-ce73aad5508b" }, "Version": "6.0.0", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/unique-slug/package.json", "Digest": "sha1:8e5c78d6e2c33153024c55a1d4d1730592e3915c" }, { "ID": "unique-slug@6.0.0", "Name": "unique-slug", "Identifier": { "PURL": "pkg:npm/unique-slug@6.0.0", "UID": "16f509db7cd33e67", "BOMRef": "dfba11ca-f0ea-49ee-bbc5-43066e386db4" }, "Version": "6.0.0", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/unique-slug/package.json", "Digest": "sha1:8e5c78d6e2c33153024c55a1d4d1730592e3915c" }, { "ID": "util-deprecate@1.0.2", "Name": "util-deprecate", "Identifier": { "PURL": "pkg:npm/util-deprecate@1.0.2", "UID": "d00613513fb8a461", "BOMRef": "e5dad9b3-f200-4782-ab33-b15ceca410e4" }, "Version": "1.0.2", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/util-deprecate/package.json", "Digest": "sha1:2e69081e7bab6e09d3dcfd680716fdeea577431d" }, { "ID": "util-deprecate@1.0.2", "Name": "util-deprecate", "Identifier": { "PURL": "pkg:npm/util-deprecate@1.0.2", "UID": "507ef6c1e055875e", "BOMRef": "61726ec5-2b93-4d57-9f62-414f407c6802" }, "Version": "1.0.2", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/util-deprecate/package.json", "Digest": "sha1:2e69081e7bab6e09d3dcfd680716fdeea577431d" }, { "ID": "validate-npm-package-license@3.0.4", "Name": "validate-npm-package-license", "Identifier": { "PURL": "pkg:npm/validate-npm-package-license@3.0.4", "UID": "9e7aab64c3a54ff", "BOMRef": "pkg:npm/validate-npm-package-license@3.0.4" }, "Version": "3.0.4", "Licenses": [ "Apache-2.0" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/validate-npm-package-license/package.json", "Digest": "sha1:a938b65349aed1eb3852d98dc1a8431209faf99f" }, { "ID": "validate-npm-package-name@7.0.2", "Name": "validate-npm-package-name", "Identifier": { "PURL": "pkg:npm/validate-npm-package-name@7.0.2", "UID": "930cd253d5485fbd", "BOMRef": "2000f2ee-4dce-43bc-8ea2-2684631efb51" }, "Version": "7.0.2", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/validate-npm-package-name/package.json", "Digest": "sha1:38514b39ec296f38677d2be6f15d799756de778e" }, { "ID": "validate-npm-package-name@7.0.2", "Name": "validate-npm-package-name", "Identifier": { "PURL": "pkg:npm/validate-npm-package-name@7.0.2", "UID": "6545743946566c76", "BOMRef": "99cd151b-1858-4544-800d-b363fbf5436b" }, "Version": "7.0.2", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/validate-npm-package-name/package.json", "Digest": "sha1:38514b39ec296f38677d2be6f15d799756de778e" }, { "ID": "walk-up-path@4.0.0", "Name": "walk-up-path", "Identifier": { "PURL": "pkg:npm/walk-up-path@4.0.0", "UID": "9671818ef9ecb5e", "BOMRef": "2c122b05-3f7f-4d90-87b2-068598597d1a" }, "Version": "4.0.0", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/walk-up-path/package.json", "Digest": "sha1:5d1d771c0f7a60316cd0d039f38a9e6ce3b08b44" }, { "ID": "walk-up-path@4.0.0", "Name": "walk-up-path", "Identifier": { "PURL": "pkg:npm/walk-up-path@4.0.0", "UID": "e06dd8c19537f62d", "BOMRef": "b9a08173-d5d9-49cf-a629-1cd5f81baa11" }, "Version": "4.0.0", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/walk-up-path/package.json", "Digest": "sha1:5d1d771c0f7a60316cd0d039f38a9e6ce3b08b44" }, { "ID": "which@2.0.2", "Name": "which", "Identifier": { "PURL": "pkg:npm/which@2.0.2", "UID": "9574f4e02712956a", "BOMRef": "6f17aff7-c691-4483-8bdb-4c2814ce16d5" }, "Version": "2.0.2", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:b72305f951665b304d407e1dec69e0ec73b230360e8a4a17365b58d22946e37a", "DiffID": "sha256:20ca8f2ade98548df7b9a0182bfced0032d7d9f9243fa8e450e155f6d775f343" }, "FilePath": "usr/lib/node_modules/npm/node_modules/glob/node_modules/which/package.json", "Digest": "sha1:402837c5ba60f95b309957adc4657b8fe4fb1f05" }, { "ID": "which@2.0.2", "Name": "which", "Identifier": { "PURL": "pkg:npm/which@2.0.2", "UID": "7c420a150f17974c", "BOMRef": "6377897f-2d36-4588-ac12-24d5a880f664" }, "Version": "2.0.2", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:b72305f951665b304d407e1dec69e0ec73b230360e8a4a17365b58d22946e37a", "DiffID": "sha256:20ca8f2ade98548df7b9a0182bfced0032d7d9f9243fa8e450e155f6d775f343" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/glob/node_modules/which/package.json", "Digest": "sha1:402837c5ba60f95b309957adc4657b8fe4fb1f05" }, { "ID": "which@2.0.2", "Name": "which", "Identifier": { "PURL": "pkg:npm/which@2.0.2", "UID": "4ea5973670dc26b9", "BOMRef": "da5e16f2-cdb6-4f76-8752-fd6a009cee46" }, "Version": "2.0.2", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/glob/node_modules/which/package.json", "Digest": "sha1:402837c5ba60f95b309957adc4657b8fe4fb1f05" }, { "ID": "which@2.0.2", "Name": "which", "Identifier": { "PURL": "pkg:npm/which@2.0.2", "UID": "e8ee4e83a455bf51", "BOMRef": "57795938-894b-468b-afb1-39da34c07847" }, "Version": "2.0.2", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/glob/node_modules/which/package.json", "Digest": "sha1:402837c5ba60f95b309957adc4657b8fe4fb1f05" }, { "ID": "which@6.0.0", "Name": "which", "Identifier": { "PURL": "pkg:npm/which@6.0.0", "UID": "b38c3bbf03088d10", "BOMRef": "pkg:npm/which@6.0.0" }, "Version": "6.0.0", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/which/package.json", "Digest": "sha1:cb8b0157735e34c3257f5f246186bc73c4541924" }, { "ID": "which@6.0.1", "Name": "which", "Identifier": { "PURL": "pkg:npm/which@6.0.1", "UID": "8ef5a91f201e1163", "BOMRef": "pkg:npm/which@6.0.1" }, "Version": "6.0.1", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/which/package.json", "Digest": "sha1:a4c4ac6aa9af226fc930104916a5f7cfd26f230c" }, { "ID": "write-file-atomic@7.0.0", "Name": "write-file-atomic", "Identifier": { "PURL": "pkg:npm/write-file-atomic@7.0.0", "UID": "aae1ab874a56ebf2", "BOMRef": "pkg:npm/write-file-atomic@7.0.0" }, "Version": "7.0.0", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/write-file-atomic/package.json", "Digest": "sha1:a38060379c27d419714e1e0d4f9397aa3ca9a238" }, { "ID": "write-file-atomic@7.0.1", "Name": "write-file-atomic", "Identifier": { "PURL": "pkg:npm/write-file-atomic@7.0.1", "UID": "4ca7f6c3db4a104", "BOMRef": "pkg:npm/write-file-atomic@7.0.1" }, "Version": "7.0.1", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/write-file-atomic/package.json", "Digest": "sha1:b8939acc5aed336b0f26eba2564490889ee93768" }, { "ID": "yallist@4.0.0", "Name": "yallist", "Identifier": { "PURL": "pkg:npm/yallist@4.0.0", "UID": "e430001c45294f5", "BOMRef": "076b50dd-2ae5-420c-857d-e8a29358a5cd" }, "Version": "4.0.0", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/yallist/package.json", "Digest": "sha1:d6a16b480cbd582f969b3d0ed89a157316268d10" }, { "ID": "yallist@4.0.0", "Name": "yallist", "Identifier": { "PURL": "pkg:npm/yallist@4.0.0", "UID": "e7e500b8b9fc18b7", "BOMRef": "0abc526a-0f2e-42e8-9a91-221d486a12fc" }, "Version": "4.0.0", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/minipass-flush/node_modules/yallist/package.json", "Digest": "sha1:d6a16b480cbd582f969b3d0ed89a157316268d10" }, { "ID": "yallist@4.0.0", "Name": "yallist", "Identifier": { "PURL": "pkg:npm/yallist@4.0.0", "UID": "38cf58944294581e", "BOMRef": "2ede95a4-3459-46cc-8cdf-32c4a9be8056" }, "Version": "4.0.0", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/minipass-pipeline/node_modules/yallist/package.json", "Digest": "sha1:d6a16b480cbd582f969b3d0ed89a157316268d10" }, { "ID": "yallist@5.0.0", "Name": "yallist", "Identifier": { "PURL": "pkg:npm/yallist@5.0.0", "UID": "e251def1335d90bb", "BOMRef": "c3ee833d-d1de-43aa-9ec0-de173ed54412" }, "Version": "5.0.0", "Licenses": [ "BlueOak-1.0.0" ], "Layer": { "Digest": "sha256:b72305f951665b304d407e1dec69e0ec73b230360e8a4a17365b58d22946e37a", "DiffID": "sha256:20ca8f2ade98548df7b9a0182bfced0032d7d9f9243fa8e450e155f6d775f343" }, "FilePath": "usr/lib/node_modules/npm/node_modules/tar/node_modules/yallist/package.json", "Digest": "sha1:4eaebb818148fd3bcc27e1aef2d88497999f675e" }, { "ID": "yallist@5.0.0", "Name": "yallist", "Identifier": { "PURL": "pkg:npm/yallist@5.0.0", "UID": "9e8b410ca939896f", "BOMRef": "662e7fed-ec2e-43d6-8830-639ca49143fe" }, "Version": "5.0.0", "Licenses": [ "BlueOak-1.0.0" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/tar/node_modules/yallist/package.json", "Digest": "sha1:4eaebb818148fd3bcc27e1aef2d88497999f675e" }, { "ID": "yallist@5.0.0", "Name": "yallist", "Identifier": { "PURL": "pkg:npm/yallist@5.0.0", "UID": "a321ab0073606e8f", "BOMRef": "6c9ff1fd-5778-44c6-9859-37de83785bab" }, "Version": "5.0.0", "Licenses": [ "BlueOak-1.0.0" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/tar/node_modules/yallist/package.json", "Digest": "sha1:4eaebb818148fd3bcc27e1aef2d88497999f675e" }, { "ID": "yallist@5.0.0", "Name": "yallist", "Identifier": { "PURL": "pkg:npm/yallist@5.0.0", "UID": "f8d32624bacb82df", "BOMRef": "99c8777a-1a49-4823-81ed-56154f6f2822" }, "Version": "5.0.0", "Licenses": [ "BlueOak-1.0.0" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/npm/node_modules/yallist/package.json", "Digest": "sha1:4eaebb818148fd3bcc27e1aef2d88497999f675e" }, { "ID": "yallist@5.0.0", "Name": "yallist", "Identifier": { "PURL": "pkg:npm/yallist@5.0.0", "UID": "a2f8ba43253eb1f3", "BOMRef": "f16a99ea-ec45-4882-b033-d81455eaefb9" }, "Version": "5.0.0", "Licenses": [ "BlueOak-1.0.0" ], "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "FilePath": "usr/local/lib/node_modules/tar/node_modules/yallist/package.json", "Digest": "sha1:4eaebb818148fd3bcc27e1aef2d88497999f675e" } ], "Vulnerabilities": [ { "VulnerabilityID": "CVE-2026-33750", "VendorIDs": [ "GHSA-f886-m6hf-6m8v" ], "PkgID": "brace-expansion@5.0.4", "PkgName": "brace-expansion", "PkgPath": "usr/lib/node_modules/npm/node_modules/minimatch/node_modules/brace-expansion/package.json", "PkgIdentifier": { "PURL": "pkg:npm/brace-expansion@5.0.4", "UID": "80f194588511d55d", "BOMRef": "dfde8592-0671-49d5-9c6c-ca8fc09c4bab" }, "InstalledVersion": "5.0.4", "FixedVersion": "5.0.5, 3.0.2, 2.0.3, 1.1.13", "Status": "fixed", "Layer": { "Digest": "sha256:b72305f951665b304d407e1dec69e0ec73b230360e8a4a17365b58d22946e37a", "DiffID": "sha256:20ca8f2ade98548df7b9a0182bfced0032d7d9f9243fa8e450e155f6d775f343" }, "SeveritySource": "ghsa", "PrimaryURL": "https://avd.aquasec.com/nvd/cve-2026-33750", "DataSource": { "ID": "ghsa", "Name": "GitHub Security Advisory npm", "URL": "https://github.com/advisories?query=type%3Areviewed+ecosystem%3Anpm" }, "Fingerprint": "sha256:55fd2fdb7c7d826531e231ed2db59c3b6ca96f74023b40ab08333f9a9eb6faf9", "Title": "brace-expansion: brace-expansion: Denial of Service via zero step value in brace pattern", "Description": "The brace-expansion library generates arbitrary strings containing a common prefix and suffix. Prior to versions 5.0.5, 3.0.2, 2.0.3, and 1.1.13, a brace pattern with a zero step value (e.g., `{1..2..0}`) causes the sequence generation loop to run indefinitely, making the process hang for seconds and allocate heaps of memory. Versions 5.0.5, 3.0.2, 2.0.3, and 1.1.13 fix the issue. As a workaround, sanitize strings passed to `expand()` to ensure a step value of `0` is not used.", "Severity": "MEDIUM", "CweIDs": [ "CWE-400" ], "VendorSeverity": { "ghsa": 2, "redhat": 2 }, "CVSS": { "ghsa": { "V3Vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H", "V3Score": 6.5 }, "redhat": { "V3Vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H", "V3Score": 6.5 } }, "References": [ "https://access.redhat.com/security/cve/CVE-2026-33750", "https://github.com/juliangruber/brace-expansion", "https://github.com/juliangruber/brace-expansion/blob/daa71bcb4a30a2df9bcb7f7b8daaf2ab30e5794a/src/index.ts#L107-L113", "https://github.com/juliangruber/brace-expansion/blob/daa71bcb4a30a2df9bcb7f7b8daaf2ab30e5794a/src/index.ts#L184", "https://github.com/juliangruber/brace-expansion/commit/311ac0d54994158c0a384e286a7d6cbb17ee8ed5", "https://github.com/juliangruber/brace-expansion/commit/7fd684f89fdde3549563d0a6522226a9189472a2", "https://github.com/juliangruber/brace-expansion/commit/b9cacd9e55e7a1fa588fe4b7bb1159d52f1d902a", "https://github.com/juliangruber/brace-expansion/issues/98", "https://github.com/juliangruber/brace-expansion/pull/95", "https://github.com/juliangruber/brace-expansion/pull/96", "https://github.com/juliangruber/brace-expansion/pull/97", "https://github.com/juliangruber/brace-expansion/security/advisories/GHSA-f886-m6hf-6m8v", "https://nvd.nist.gov/vuln/detail/CVE-2026-33750", "https://www.cve.org/CVERecord?id=CVE-2026-33750" ], "PublishedDate": "2026-03-27T15:16:57.297Z", "LastModifiedDate": "2026-03-30T13:26:29.793Z" }, { "VulnerabilityID": "CVE-2026-33750", "VendorIDs": [ "GHSA-f886-m6hf-6m8v" ], "PkgID": "brace-expansion@5.0.4", "PkgName": "brace-expansion", "PkgPath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/minimatch/node_modules/brace-expansion/package.json", "PkgIdentifier": { "PURL": "pkg:npm/brace-expansion@5.0.4", "UID": "cd43c9912597f5d7", "BOMRef": "4d0a6cf6-ba27-4e58-961b-c34bca9780d0" }, "InstalledVersion": "5.0.4", "FixedVersion": "5.0.5, 3.0.2, 2.0.3, 1.1.13", "Status": "fixed", "Layer": { "Digest": "sha256:b72305f951665b304d407e1dec69e0ec73b230360e8a4a17365b58d22946e37a", "DiffID": "sha256:20ca8f2ade98548df7b9a0182bfced0032d7d9f9243fa8e450e155f6d775f343" }, "SeveritySource": "ghsa", "PrimaryURL": "https://avd.aquasec.com/nvd/cve-2026-33750", "DataSource": { "ID": "ghsa", "Name": "GitHub Security Advisory npm", "URL": "https://github.com/advisories?query=type%3Areviewed+ecosystem%3Anpm" }, "Fingerprint": "sha256:55fd2fdb7c7d826531e231ed2db59c3b6ca96f74023b40ab08333f9a9eb6faf9", "Title": "brace-expansion: brace-expansion: Denial of Service via zero step value in brace pattern", "Description": "The brace-expansion library generates arbitrary strings containing a common prefix and suffix. Prior to versions 5.0.5, 3.0.2, 2.0.3, and 1.1.13, a brace pattern with a zero step value (e.g., `{1..2..0}`) causes the sequence generation loop to run indefinitely, making the process hang for seconds and allocate heaps of memory. Versions 5.0.5, 3.0.2, 2.0.3, and 1.1.13 fix the issue. As a workaround, sanitize strings passed to `expand()` to ensure a step value of `0` is not used.", "Severity": "MEDIUM", "CweIDs": [ "CWE-400" ], "VendorSeverity": { "ghsa": 2, "redhat": 2 }, "CVSS": { "ghsa": { "V3Vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H", "V3Score": 6.5 }, "redhat": { "V3Vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H", "V3Score": 6.5 } }, "References": [ "https://access.redhat.com/security/cve/CVE-2026-33750", "https://github.com/juliangruber/brace-expansion", "https://github.com/juliangruber/brace-expansion/blob/daa71bcb4a30a2df9bcb7f7b8daaf2ab30e5794a/src/index.ts#L107-L113", "https://github.com/juliangruber/brace-expansion/blob/daa71bcb4a30a2df9bcb7f7b8daaf2ab30e5794a/src/index.ts#L184", "https://github.com/juliangruber/brace-expansion/commit/311ac0d54994158c0a384e286a7d6cbb17ee8ed5", "https://github.com/juliangruber/brace-expansion/commit/7fd684f89fdde3549563d0a6522226a9189472a2", "https://github.com/juliangruber/brace-expansion/commit/b9cacd9e55e7a1fa588fe4b7bb1159d52f1d902a", "https://github.com/juliangruber/brace-expansion/issues/98", "https://github.com/juliangruber/brace-expansion/pull/95", "https://github.com/juliangruber/brace-expansion/pull/96", "https://github.com/juliangruber/brace-expansion/pull/97", "https://github.com/juliangruber/brace-expansion/security/advisories/GHSA-f886-m6hf-6m8v", "https://nvd.nist.gov/vuln/detail/CVE-2026-33750", "https://www.cve.org/CVERecord?id=CVE-2026-33750" ], "PublishedDate": "2026-03-27T15:16:57.297Z", "LastModifiedDate": "2026-03-30T13:26:29.793Z" }, { "VulnerabilityID": "CVE-2026-33750", "VendorIDs": [ "GHSA-f886-m6hf-6m8v" ], "PkgID": "brace-expansion@5.0.4", "PkgName": "brace-expansion", "PkgPath": "usr/local/lib/node_modules/minimatch/node_modules/brace-expansion/package.json", "PkgIdentifier": { "PURL": "pkg:npm/brace-expansion@5.0.4", "UID": "f7639de87948dad7", "BOMRef": "c24f5125-c164-44a9-b5d4-ad8227423ae5" }, "InstalledVersion": "5.0.4", "FixedVersion": "5.0.5, 3.0.2, 2.0.3, 1.1.13", "Status": "fixed", "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "SeveritySource": "ghsa", "PrimaryURL": "https://avd.aquasec.com/nvd/cve-2026-33750", "DataSource": { "ID": "ghsa", "Name": "GitHub Security Advisory npm", "URL": "https://github.com/advisories?query=type%3Areviewed+ecosystem%3Anpm" }, "Fingerprint": "sha256:55fd2fdb7c7d826531e231ed2db59c3b6ca96f74023b40ab08333f9a9eb6faf9", "Title": "brace-expansion: brace-expansion: Denial of Service via zero step value in brace pattern", "Description": "The brace-expansion library generates arbitrary strings containing a common prefix and suffix. Prior to versions 5.0.5, 3.0.2, 2.0.3, and 1.1.13, a brace pattern with a zero step value (e.g., `{1..2..0}`) causes the sequence generation loop to run indefinitely, making the process hang for seconds and allocate heaps of memory. Versions 5.0.5, 3.0.2, 2.0.3, and 1.1.13 fix the issue. As a workaround, sanitize strings passed to `expand()` to ensure a step value of `0` is not used.", "Severity": "MEDIUM", "CweIDs": [ "CWE-400" ], "VendorSeverity": { "ghsa": 2, "redhat": 2 }, "CVSS": { "ghsa": { "V3Vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H", "V3Score": 6.5 }, "redhat": { "V3Vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H", "V3Score": 6.5 } }, "References": [ "https://access.redhat.com/security/cve/CVE-2026-33750", "https://github.com/juliangruber/brace-expansion", "https://github.com/juliangruber/brace-expansion/blob/daa71bcb4a30a2df9bcb7f7b8daaf2ab30e5794a/src/index.ts#L107-L113", "https://github.com/juliangruber/brace-expansion/blob/daa71bcb4a30a2df9bcb7f7b8daaf2ab30e5794a/src/index.ts#L184", "https://github.com/juliangruber/brace-expansion/commit/311ac0d54994158c0a384e286a7d6cbb17ee8ed5", "https://github.com/juliangruber/brace-expansion/commit/7fd684f89fdde3549563d0a6522226a9189472a2", "https://github.com/juliangruber/brace-expansion/commit/b9cacd9e55e7a1fa588fe4b7bb1159d52f1d902a", "https://github.com/juliangruber/brace-expansion/issues/98", "https://github.com/juliangruber/brace-expansion/pull/95", "https://github.com/juliangruber/brace-expansion/pull/96", "https://github.com/juliangruber/brace-expansion/pull/97", "https://github.com/juliangruber/brace-expansion/security/advisories/GHSA-f886-m6hf-6m8v", "https://nvd.nist.gov/vuln/detail/CVE-2026-33750", "https://www.cve.org/CVERecord?id=CVE-2026-33750" ], "PublishedDate": "2026-03-27T15:16:57.297Z", "LastModifiedDate": "2026-03-30T13:26:29.793Z" }, { "VulnerabilityID": "CVE-2026-33750", "VendorIDs": [ "GHSA-f886-m6hf-6m8v" ], "PkgID": "brace-expansion@5.0.4", "PkgName": "brace-expansion", "PkgPath": "usr/local/lib/node_modules/npm/node_modules/brace-expansion/package.json", "PkgIdentifier": { "PURL": "pkg:npm/brace-expansion@5.0.4", "UID": "451f2fe91ba9558c", "BOMRef": "a41f40d7-e09f-448e-a97e-18bd70bd626f" }, "InstalledVersion": "5.0.4", "FixedVersion": "5.0.5, 3.0.2, 2.0.3, 1.1.13", "Status": "fixed", "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "SeveritySource": "ghsa", "PrimaryURL": "https://avd.aquasec.com/nvd/cve-2026-33750", "DataSource": { "ID": "ghsa", "Name": "GitHub Security Advisory npm", "URL": "https://github.com/advisories?query=type%3Areviewed+ecosystem%3Anpm" }, "Fingerprint": "sha256:55fd2fdb7c7d826531e231ed2db59c3b6ca96f74023b40ab08333f9a9eb6faf9", "Title": "brace-expansion: brace-expansion: Denial of Service via zero step value in brace pattern", "Description": "The brace-expansion library generates arbitrary strings containing a common prefix and suffix. Prior to versions 5.0.5, 3.0.2, 2.0.3, and 1.1.13, a brace pattern with a zero step value (e.g., `{1..2..0}`) causes the sequence generation loop to run indefinitely, making the process hang for seconds and allocate heaps of memory. Versions 5.0.5, 3.0.2, 2.0.3, and 1.1.13 fix the issue. As a workaround, sanitize strings passed to `expand()` to ensure a step value of `0` is not used.", "Severity": "MEDIUM", "CweIDs": [ "CWE-400" ], "VendorSeverity": { "ghsa": 2, "redhat": 2 }, "CVSS": { "ghsa": { "V3Vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H", "V3Score": 6.5 }, "redhat": { "V3Vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H", "V3Score": 6.5 } }, "References": [ "https://access.redhat.com/security/cve/CVE-2026-33750", "https://github.com/juliangruber/brace-expansion", "https://github.com/juliangruber/brace-expansion/blob/daa71bcb4a30a2df9bcb7f7b8daaf2ab30e5794a/src/index.ts#L107-L113", "https://github.com/juliangruber/brace-expansion/blob/daa71bcb4a30a2df9bcb7f7b8daaf2ab30e5794a/src/index.ts#L184", "https://github.com/juliangruber/brace-expansion/commit/311ac0d54994158c0a384e286a7d6cbb17ee8ed5", "https://github.com/juliangruber/brace-expansion/commit/7fd684f89fdde3549563d0a6522226a9189472a2", "https://github.com/juliangruber/brace-expansion/commit/b9cacd9e55e7a1fa588fe4b7bb1159d52f1d902a", "https://github.com/juliangruber/brace-expansion/issues/98", "https://github.com/juliangruber/brace-expansion/pull/95", "https://github.com/juliangruber/brace-expansion/pull/96", "https://github.com/juliangruber/brace-expansion/pull/97", "https://github.com/juliangruber/brace-expansion/security/advisories/GHSA-f886-m6hf-6m8v", "https://nvd.nist.gov/vuln/detail/CVE-2026-33750", "https://www.cve.org/CVERecord?id=CVE-2026-33750" ], "PublishedDate": "2026-03-27T15:16:57.297Z", "LastModifiedDate": "2026-03-30T13:26:29.793Z" }, { "VulnerabilityID": "CVE-2026-33750", "VendorIDs": [ "GHSA-f886-m6hf-6m8v" ], "PkgID": "brace-expansion@5.0.4", "PkgName": "brace-expansion", "PkgPath": "usr/local/lib/node_modules/npm/node_modules/minimatch/node_modules/brace-expansion/package.json", "PkgIdentifier": { "PURL": "pkg:npm/brace-expansion@5.0.4", "UID": "1d722765525aa851", "BOMRef": "902170a2-f525-41b4-9a2c-2ce105110374" }, "InstalledVersion": "5.0.4", "FixedVersion": "5.0.5, 3.0.2, 2.0.3, 1.1.13", "Status": "fixed", "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "SeveritySource": "ghsa", "PrimaryURL": "https://avd.aquasec.com/nvd/cve-2026-33750", "DataSource": { "ID": "ghsa", "Name": "GitHub Security Advisory npm", "URL": "https://github.com/advisories?query=type%3Areviewed+ecosystem%3Anpm" }, "Fingerprint": "sha256:55fd2fdb7c7d826531e231ed2db59c3b6ca96f74023b40ab08333f9a9eb6faf9", "Title": "brace-expansion: brace-expansion: Denial of Service via zero step value in brace pattern", "Description": "The brace-expansion library generates arbitrary strings containing a common prefix and suffix. Prior to versions 5.0.5, 3.0.2, 2.0.3, and 1.1.13, a brace pattern with a zero step value (e.g., `{1..2..0}`) causes the sequence generation loop to run indefinitely, making the process hang for seconds and allocate heaps of memory. Versions 5.0.5, 3.0.2, 2.0.3, and 1.1.13 fix the issue. As a workaround, sanitize strings passed to `expand()` to ensure a step value of `0` is not used.", "Severity": "MEDIUM", "CweIDs": [ "CWE-400" ], "VendorSeverity": { "ghsa": 2, "redhat": 2 }, "CVSS": { "ghsa": { "V3Vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H", "V3Score": 6.5 }, "redhat": { "V3Vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H", "V3Score": 6.5 } }, "References": [ "https://access.redhat.com/security/cve/CVE-2026-33750", "https://github.com/juliangruber/brace-expansion", "https://github.com/juliangruber/brace-expansion/blob/daa71bcb4a30a2df9bcb7f7b8daaf2ab30e5794a/src/index.ts#L107-L113", "https://github.com/juliangruber/brace-expansion/blob/daa71bcb4a30a2df9bcb7f7b8daaf2ab30e5794a/src/index.ts#L184", "https://github.com/juliangruber/brace-expansion/commit/311ac0d54994158c0a384e286a7d6cbb17ee8ed5", "https://github.com/juliangruber/brace-expansion/commit/7fd684f89fdde3549563d0a6522226a9189472a2", "https://github.com/juliangruber/brace-expansion/commit/b9cacd9e55e7a1fa588fe4b7bb1159d52f1d902a", "https://github.com/juliangruber/brace-expansion/issues/98", "https://github.com/juliangruber/brace-expansion/pull/95", "https://github.com/juliangruber/brace-expansion/pull/96", "https://github.com/juliangruber/brace-expansion/pull/97", "https://github.com/juliangruber/brace-expansion/security/advisories/GHSA-f886-m6hf-6m8v", "https://nvd.nist.gov/vuln/detail/CVE-2026-33750", "https://www.cve.org/CVERecord?id=CVE-2026-33750" ], "PublishedDate": "2026-03-27T15:16:57.297Z", "LastModifiedDate": "2026-03-30T13:26:29.793Z" }, { "VulnerabilityID": "CVE-2026-27903", "VendorIDs": [ "GHSA-7r86-cg39-jmmj" ], "PkgID": "minimatch@10.2.1", "PkgName": "minimatch", "PkgPath": "usr/lib/node_modules/npm/node_modules/minimatch/package.json", "PkgIdentifier": { "PURL": "pkg:npm/minimatch@10.2.1", "UID": "8f13268548fddc07", "BOMRef": "f3ee09dc-944f-4d9d-95bc-78d65da32a97" }, "InstalledVersion": "10.2.1", "FixedVersion": "10.2.3, 9.0.7, 8.0.6, 7.4.8, 6.2.2, 5.1.8, 4.2.5, 3.1.3", "Status": "fixed", "Layer": { "Digest": "sha256:b72305f951665b304d407e1dec69e0ec73b230360e8a4a17365b58d22946e37a", "DiffID": "sha256:20ca8f2ade98548df7b9a0182bfced0032d7d9f9243fa8e450e155f6d775f343" }, "SeveritySource": "ghsa", "PrimaryURL": "https://avd.aquasec.com/nvd/cve-2026-27903", "DataSource": { "ID": "ghsa", "Name": "GitHub Security Advisory npm", "URL": "https://github.com/advisories?query=type%3Areviewed+ecosystem%3Anpm" }, "Fingerprint": "sha256:7f09c0ffa451c17234005611833eb09752dbbf4c2eaf9e4fd3db9d2e90423b66", "Title": "minimatch: minimatch: Denial of Service due to unbounded recursive backtracking via crafted glob patterns", "Description": "minimatch is a minimal matching utility for converting glob expressions into JavaScript RegExp objects. Prior to version 10.2.3, 9.0.7, 8.0.6, 7.4.8, 6.2.2, 5.1.8, 4.2.5, and 3.1.3, `matchOne()` performs unbounded recursive backtracking when a glob pattern contains multiple non-adjacent `**` (GLOBSTAR) segments and the input path does not match. The time complexity is O(C(n, k)) -- binomial -- where `n` is the number of path segments and `k` is the number of globstars. With k=11 and n=30, a call to the default `minimatch()` API stalls for roughly 5 seconds. With k=13, it exceeds 15 seconds. No memoization or call budget exists to bound this behavior. Any application where an attacker can influence the glob pattern passed to `minimatch()` is vulnerable. The realistic attack surface includes build tools and task runners that accept user-supplied glob arguments (ESLint, Webpack, Rollup config), multi-tenant systems where one tenant configures glob-based rules that run in a shared process, admin or developer interfaces that accept ignore-rule or filter configuration as globs, and CI/CD pipelines that evaluate user-submitted config files containing glob patterns. An attacker who can place a crafted pattern into any of these paths can stall the Node.js event loop for tens of seconds per invocation. The pattern is 56 bytes for a 5-second stall and does not require authentication in contexts where pattern input is part of the feature. Versions 10.2.3, 9.0.7, 8.0.6, 7.4.8, 6.2.2, 5.1.8, 4.2.5, and 3.1.3 fix the issue.", "Severity": "HIGH", "CweIDs": [ "CWE-407" ], "VendorSeverity": { "ghsa": 3, "redhat": 2 }, "CVSS": { "ghsa": { "V3Vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "V3Score": 7.5 }, "redhat": { "V3Vector": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H", "V3Score": 5.9 } }, "References": [ "https://access.redhat.com/security/cve/CVE-2026-27903", "https://github.com/isaacs/minimatch", "https://github.com/isaacs/minimatch/commit/0bf499aa45f5059b56809cc3b75ff3eafeb8d748", "https://github.com/isaacs/minimatch/security/advisories/GHSA-7r86-cg39-jmmj", "https://nvd.nist.gov/vuln/detail/CVE-2026-27903", "https://www.cve.org/CVERecord?id=CVE-2026-27903" ], "PublishedDate": "2026-02-26T02:16:21.353Z", "LastModifiedDate": "2026-02-27T17:21:22.37Z" }, { "VulnerabilityID": "CVE-2026-27903", "VendorIDs": [ "GHSA-7r86-cg39-jmmj" ], "PkgID": "minimatch@10.2.1", "PkgName": "minimatch", "PkgPath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/minimatch/package.json", "PkgIdentifier": { "PURL": "pkg:npm/minimatch@10.2.1", "UID": "d7de0b672f8bd3d5", "BOMRef": "61500196-037a-4449-bf55-9f024277534e" }, "InstalledVersion": "10.2.1", "FixedVersion": "10.2.3, 9.0.7, 8.0.6, 7.4.8, 6.2.2, 5.1.8, 4.2.5, 3.1.3", "Status": "fixed", "Layer": { "Digest": "sha256:b72305f951665b304d407e1dec69e0ec73b230360e8a4a17365b58d22946e37a", "DiffID": "sha256:20ca8f2ade98548df7b9a0182bfced0032d7d9f9243fa8e450e155f6d775f343" }, "SeveritySource": "ghsa", "PrimaryURL": "https://avd.aquasec.com/nvd/cve-2026-27903", "DataSource": { "ID": "ghsa", "Name": "GitHub Security Advisory npm", "URL": "https://github.com/advisories?query=type%3Areviewed+ecosystem%3Anpm" }, "Fingerprint": "sha256:7f09c0ffa451c17234005611833eb09752dbbf4c2eaf9e4fd3db9d2e90423b66", "Title": "minimatch: minimatch: Denial of Service due to unbounded recursive backtracking via crafted glob patterns", "Description": "minimatch is a minimal matching utility for converting glob expressions into JavaScript RegExp objects. Prior to version 10.2.3, 9.0.7, 8.0.6, 7.4.8, 6.2.2, 5.1.8, 4.2.5, and 3.1.3, `matchOne()` performs unbounded recursive backtracking when a glob pattern contains multiple non-adjacent `**` (GLOBSTAR) segments and the input path does not match. The time complexity is O(C(n, k)) -- binomial -- where `n` is the number of path segments and `k` is the number of globstars. With k=11 and n=30, a call to the default `minimatch()` API stalls for roughly 5 seconds. With k=13, it exceeds 15 seconds. No memoization or call budget exists to bound this behavior. Any application where an attacker can influence the glob pattern passed to `minimatch()` is vulnerable. The realistic attack surface includes build tools and task runners that accept user-supplied glob arguments (ESLint, Webpack, Rollup config), multi-tenant systems where one tenant configures glob-based rules that run in a shared process, admin or developer interfaces that accept ignore-rule or filter configuration as globs, and CI/CD pipelines that evaluate user-submitted config files containing glob patterns. An attacker who can place a crafted pattern into any of these paths can stall the Node.js event loop for tens of seconds per invocation. The pattern is 56 bytes for a 5-second stall and does not require authentication in contexts where pattern input is part of the feature. Versions 10.2.3, 9.0.7, 8.0.6, 7.4.8, 6.2.2, 5.1.8, 4.2.5, and 3.1.3 fix the issue.", "Severity": "HIGH", "CweIDs": [ "CWE-407" ], "VendorSeverity": { "ghsa": 3, "redhat": 2 }, "CVSS": { "ghsa": { "V3Vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "V3Score": 7.5 }, "redhat": { "V3Vector": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H", "V3Score": 5.9 } }, "References": [ "https://access.redhat.com/security/cve/CVE-2026-27903", "https://github.com/isaacs/minimatch", "https://github.com/isaacs/minimatch/commit/0bf499aa45f5059b56809cc3b75ff3eafeb8d748", "https://github.com/isaacs/minimatch/security/advisories/GHSA-7r86-cg39-jmmj", "https://nvd.nist.gov/vuln/detail/CVE-2026-27903", "https://www.cve.org/CVERecord?id=CVE-2026-27903" ], "PublishedDate": "2026-02-26T02:16:21.353Z", "LastModifiedDate": "2026-02-27T17:21:22.37Z" }, { "VulnerabilityID": "CVE-2026-27903", "VendorIDs": [ "GHSA-7r86-cg39-jmmj" ], "PkgID": "minimatch@10.2.1", "PkgName": "minimatch", "PkgPath": "usr/local/lib/node_modules/minimatch/package.json", "PkgIdentifier": { "PURL": "pkg:npm/minimatch@10.2.1", "UID": "95734cd53baab9c1", "BOMRef": "a7fc626b-c9a9-4b88-ad3b-15aedc5fdfd4" }, "InstalledVersion": "10.2.1", "FixedVersion": "10.2.3, 9.0.7, 8.0.6, 7.4.8, 6.2.2, 5.1.8, 4.2.5, 3.1.3", "Status": "fixed", "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "SeveritySource": "ghsa", "PrimaryURL": "https://avd.aquasec.com/nvd/cve-2026-27903", "DataSource": { "ID": "ghsa", "Name": "GitHub Security Advisory npm", "URL": "https://github.com/advisories?query=type%3Areviewed+ecosystem%3Anpm" }, "Fingerprint": "sha256:7f09c0ffa451c17234005611833eb09752dbbf4c2eaf9e4fd3db9d2e90423b66", "Title": "minimatch: minimatch: Denial of Service due to unbounded recursive backtracking via crafted glob patterns", "Description": "minimatch is a minimal matching utility for converting glob expressions into JavaScript RegExp objects. Prior to version 10.2.3, 9.0.7, 8.0.6, 7.4.8, 6.2.2, 5.1.8, 4.2.5, and 3.1.3, `matchOne()` performs unbounded recursive backtracking when a glob pattern contains multiple non-adjacent `**` (GLOBSTAR) segments and the input path does not match. The time complexity is O(C(n, k)) -- binomial -- where `n` is the number of path segments and `k` is the number of globstars. With k=11 and n=30, a call to the default `minimatch()` API stalls for roughly 5 seconds. With k=13, it exceeds 15 seconds. No memoization or call budget exists to bound this behavior. Any application where an attacker can influence the glob pattern passed to `minimatch()` is vulnerable. The realistic attack surface includes build tools and task runners that accept user-supplied glob arguments (ESLint, Webpack, Rollup config), multi-tenant systems where one tenant configures glob-based rules that run in a shared process, admin or developer interfaces that accept ignore-rule or filter configuration as globs, and CI/CD pipelines that evaluate user-submitted config files containing glob patterns. An attacker who can place a crafted pattern into any of these paths can stall the Node.js event loop for tens of seconds per invocation. The pattern is 56 bytes for a 5-second stall and does not require authentication in contexts where pattern input is part of the feature. Versions 10.2.3, 9.0.7, 8.0.6, 7.4.8, 6.2.2, 5.1.8, 4.2.5, and 3.1.3 fix the issue.", "Severity": "HIGH", "CweIDs": [ "CWE-407" ], "VendorSeverity": { "ghsa": 3, "redhat": 2 }, "CVSS": { "ghsa": { "V3Vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "V3Score": 7.5 }, "redhat": { "V3Vector": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H", "V3Score": 5.9 } }, "References": [ "https://access.redhat.com/security/cve/CVE-2026-27903", "https://github.com/isaacs/minimatch", "https://github.com/isaacs/minimatch/commit/0bf499aa45f5059b56809cc3b75ff3eafeb8d748", "https://github.com/isaacs/minimatch/security/advisories/GHSA-7r86-cg39-jmmj", "https://nvd.nist.gov/vuln/detail/CVE-2026-27903", "https://www.cve.org/CVERecord?id=CVE-2026-27903" ], "PublishedDate": "2026-02-26T02:16:21.353Z", "LastModifiedDate": "2026-02-27T17:21:22.37Z" }, { "VulnerabilityID": "CVE-2026-27903", "VendorIDs": [ "GHSA-7r86-cg39-jmmj" ], "PkgID": "minimatch@10.2.1", "PkgName": "minimatch", "PkgPath": "usr/local/lib/node_modules/npm/node_modules/minimatch/package.json", "PkgIdentifier": { "PURL": "pkg:npm/minimatch@10.2.1", "UID": "36d44f9609a952c5", "BOMRef": "294f48e8-420c-4f05-b020-6c66f7bd92bc" }, "InstalledVersion": "10.2.1", "FixedVersion": "10.2.3, 9.0.7, 8.0.6, 7.4.8, 6.2.2, 5.1.8, 4.2.5, 3.1.3", "Status": "fixed", "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "SeveritySource": "ghsa", "PrimaryURL": "https://avd.aquasec.com/nvd/cve-2026-27903", "DataSource": { "ID": "ghsa", "Name": "GitHub Security Advisory npm", "URL": "https://github.com/advisories?query=type%3Areviewed+ecosystem%3Anpm" }, "Fingerprint": "sha256:7f09c0ffa451c17234005611833eb09752dbbf4c2eaf9e4fd3db9d2e90423b66", "Title": "minimatch: minimatch: Denial of Service due to unbounded recursive backtracking via crafted glob patterns", "Description": "minimatch is a minimal matching utility for converting glob expressions into JavaScript RegExp objects. Prior to version 10.2.3, 9.0.7, 8.0.6, 7.4.8, 6.2.2, 5.1.8, 4.2.5, and 3.1.3, `matchOne()` performs unbounded recursive backtracking when a glob pattern contains multiple non-adjacent `**` (GLOBSTAR) segments and the input path does not match. The time complexity is O(C(n, k)) -- binomial -- where `n` is the number of path segments and `k` is the number of globstars. With k=11 and n=30, a call to the default `minimatch()` API stalls for roughly 5 seconds. With k=13, it exceeds 15 seconds. No memoization or call budget exists to bound this behavior. Any application where an attacker can influence the glob pattern passed to `minimatch()` is vulnerable. The realistic attack surface includes build tools and task runners that accept user-supplied glob arguments (ESLint, Webpack, Rollup config), multi-tenant systems where one tenant configures glob-based rules that run in a shared process, admin or developer interfaces that accept ignore-rule or filter configuration as globs, and CI/CD pipelines that evaluate user-submitted config files containing glob patterns. An attacker who can place a crafted pattern into any of these paths can stall the Node.js event loop for tens of seconds per invocation. The pattern is 56 bytes for a 5-second stall and does not require authentication in contexts where pattern input is part of the feature. Versions 10.2.3, 9.0.7, 8.0.6, 7.4.8, 6.2.2, 5.1.8, 4.2.5, and 3.1.3 fix the issue.", "Severity": "HIGH", "CweIDs": [ "CWE-407" ], "VendorSeverity": { "ghsa": 3, "redhat": 2 }, "CVSS": { "ghsa": { "V3Vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "V3Score": 7.5 }, "redhat": { "V3Vector": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H", "V3Score": 5.9 } }, "References": [ "https://access.redhat.com/security/cve/CVE-2026-27903", "https://github.com/isaacs/minimatch", "https://github.com/isaacs/minimatch/commit/0bf499aa45f5059b56809cc3b75ff3eafeb8d748", "https://github.com/isaacs/minimatch/security/advisories/GHSA-7r86-cg39-jmmj", "https://nvd.nist.gov/vuln/detail/CVE-2026-27903", "https://www.cve.org/CVERecord?id=CVE-2026-27903" ], "PublishedDate": "2026-02-26T02:16:21.353Z", "LastModifiedDate": "2026-02-27T17:21:22.37Z" }, { "VulnerabilityID": "CVE-2026-27904", "VendorIDs": [ "GHSA-23c5-xmqv-rm74" ], "PkgID": "minimatch@10.2.1", "PkgName": "minimatch", "PkgPath": "usr/lib/node_modules/npm/node_modules/minimatch/package.json", "PkgIdentifier": { "PURL": "pkg:npm/minimatch@10.2.1", "UID": "8f13268548fddc07", "BOMRef": "f3ee09dc-944f-4d9d-95bc-78d65da32a97" }, "InstalledVersion": "10.2.1", "FixedVersion": "10.2.3, 9.0.7, 8.0.6, 7.4.8, 6.2.2, 5.1.8, 4.2.5, 3.1.4", "Status": "fixed", "Layer": { "Digest": "sha256:b72305f951665b304d407e1dec69e0ec73b230360e8a4a17365b58d22946e37a", "DiffID": "sha256:20ca8f2ade98548df7b9a0182bfced0032d7d9f9243fa8e450e155f6d775f343" }, "SeveritySource": "ghsa", "PrimaryURL": "https://avd.aquasec.com/nvd/cve-2026-27904", "DataSource": { "ID": "ghsa", "Name": "GitHub Security Advisory npm", "URL": "https://github.com/advisories?query=type%3Areviewed+ecosystem%3Anpm" }, "Fingerprint": "sha256:ca62c33b81d14a226b0916a70eb28284f62ec819be3ef938d37f750d0112d6de", "Title": "minimatch: Minimatch: Denial of Service via catastrophic backtracking in glob expressions", "Description": "minimatch is a minimal matching utility for converting glob expressions into JavaScript RegExp objects. Prior to version 10.2.3, 9.0.7, 8.0.6, 7.4.8, 6.2.2, 5.1.8, 4.2.5, and 3.1.4, nested `*()` extglobs produce regexps with nested unbounded quantifiers (e.g. `(?:(?:a|b)*)*`), which exhibit catastrophic backtracking in V8. With a 12-byte pattern `*(*(*(a|b)))` and an 18-byte non-matching input, `minimatch()` stalls for over 7 seconds. Adding a single nesting level or a few input characters pushes this to minutes. This is the most severe finding: it is triggered by the default `minimatch()` API with no special options, and the minimum viable pattern is only 12 bytes. The same issue affects `+()` extglobs equally. Versions 10.2.3, 9.0.7, 8.0.6, 7.4.8, 6.2.2, 5.1.8, 4.2.5, and 3.1.4 fix the issue.", "Severity": "HIGH", "CweIDs": [ "CWE-1333" ], "VendorSeverity": { "ghsa": 3, "redhat": 2 }, "CVSS": { "ghsa": { "V3Vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "V3Score": 7.5 }, "redhat": { "V3Vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H", "V3Score": 6.5 } }, "References": [ "https://access.redhat.com/security/cve/CVE-2026-27904", "https://github.com/isaacs/minimatch", "https://github.com/isaacs/minimatch/commit/11d0df6165d15a955462316b26d52e5efae06fce", "https://github.com/isaacs/minimatch/security/advisories/GHSA-23c5-xmqv-rm74", "https://nvd.nist.gov/vuln/detail/CVE-2026-27904", "https://www.cve.org/CVERecord?id=CVE-2026-27904" ], "PublishedDate": "2026-02-26T02:16:21.76Z", "LastModifiedDate": "2026-02-27T17:16:23.773Z" }, { "VulnerabilityID": "CVE-2026-27904", "VendorIDs": [ "GHSA-23c5-xmqv-rm74" ], "PkgID": "minimatch@10.2.1", "PkgName": "minimatch", "PkgPath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/minimatch/package.json", "PkgIdentifier": { "PURL": "pkg:npm/minimatch@10.2.1", "UID": "d7de0b672f8bd3d5", "BOMRef": "61500196-037a-4449-bf55-9f024277534e" }, "InstalledVersion": "10.2.1", "FixedVersion": "10.2.3, 9.0.7, 8.0.6, 7.4.8, 6.2.2, 5.1.8, 4.2.5, 3.1.4", "Status": "fixed", "Layer": { "Digest": "sha256:b72305f951665b304d407e1dec69e0ec73b230360e8a4a17365b58d22946e37a", "DiffID": "sha256:20ca8f2ade98548df7b9a0182bfced0032d7d9f9243fa8e450e155f6d775f343" }, "SeveritySource": "ghsa", "PrimaryURL": "https://avd.aquasec.com/nvd/cve-2026-27904", "DataSource": { "ID": "ghsa", "Name": "GitHub Security Advisory npm", "URL": "https://github.com/advisories?query=type%3Areviewed+ecosystem%3Anpm" }, "Fingerprint": "sha256:ca62c33b81d14a226b0916a70eb28284f62ec819be3ef938d37f750d0112d6de", "Title": "minimatch: Minimatch: Denial of Service via catastrophic backtracking in glob expressions", "Description": "minimatch is a minimal matching utility for converting glob expressions into JavaScript RegExp objects. Prior to version 10.2.3, 9.0.7, 8.0.6, 7.4.8, 6.2.2, 5.1.8, 4.2.5, and 3.1.4, nested `*()` extglobs produce regexps with nested unbounded quantifiers (e.g. `(?:(?:a|b)*)*`), which exhibit catastrophic backtracking in V8. With a 12-byte pattern `*(*(*(a|b)))` and an 18-byte non-matching input, `minimatch()` stalls for over 7 seconds. Adding a single nesting level or a few input characters pushes this to minutes. This is the most severe finding: it is triggered by the default `minimatch()` API with no special options, and the minimum viable pattern is only 12 bytes. The same issue affects `+()` extglobs equally. Versions 10.2.3, 9.0.7, 8.0.6, 7.4.8, 6.2.2, 5.1.8, 4.2.5, and 3.1.4 fix the issue.", "Severity": "HIGH", "CweIDs": [ "CWE-1333" ], "VendorSeverity": { "ghsa": 3, "redhat": 2 }, "CVSS": { "ghsa": { "V3Vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "V3Score": 7.5 }, "redhat": { "V3Vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H", "V3Score": 6.5 } }, "References": [ "https://access.redhat.com/security/cve/CVE-2026-27904", "https://github.com/isaacs/minimatch", "https://github.com/isaacs/minimatch/commit/11d0df6165d15a955462316b26d52e5efae06fce", "https://github.com/isaacs/minimatch/security/advisories/GHSA-23c5-xmqv-rm74", "https://nvd.nist.gov/vuln/detail/CVE-2026-27904", "https://www.cve.org/CVERecord?id=CVE-2026-27904" ], "PublishedDate": "2026-02-26T02:16:21.76Z", "LastModifiedDate": "2026-02-27T17:16:23.773Z" }, { "VulnerabilityID": "CVE-2026-27904", "VendorIDs": [ "GHSA-23c5-xmqv-rm74" ], "PkgID": "minimatch@10.2.1", "PkgName": "minimatch", "PkgPath": "usr/local/lib/node_modules/minimatch/package.json", "PkgIdentifier": { "PURL": "pkg:npm/minimatch@10.2.1", "UID": "95734cd53baab9c1", "BOMRef": "a7fc626b-c9a9-4b88-ad3b-15aedc5fdfd4" }, "InstalledVersion": "10.2.1", "FixedVersion": "10.2.3, 9.0.7, 8.0.6, 7.4.8, 6.2.2, 5.1.8, 4.2.5, 3.1.4", "Status": "fixed", "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "SeveritySource": "ghsa", "PrimaryURL": "https://avd.aquasec.com/nvd/cve-2026-27904", "DataSource": { "ID": "ghsa", "Name": "GitHub Security Advisory npm", "URL": "https://github.com/advisories?query=type%3Areviewed+ecosystem%3Anpm" }, "Fingerprint": "sha256:ca62c33b81d14a226b0916a70eb28284f62ec819be3ef938d37f750d0112d6de", "Title": "minimatch: Minimatch: Denial of Service via catastrophic backtracking in glob expressions", "Description": "minimatch is a minimal matching utility for converting glob expressions into JavaScript RegExp objects. Prior to version 10.2.3, 9.0.7, 8.0.6, 7.4.8, 6.2.2, 5.1.8, 4.2.5, and 3.1.4, nested `*()` extglobs produce regexps with nested unbounded quantifiers (e.g. `(?:(?:a|b)*)*`), which exhibit catastrophic backtracking in V8. With a 12-byte pattern `*(*(*(a|b)))` and an 18-byte non-matching input, `minimatch()` stalls for over 7 seconds. Adding a single nesting level or a few input characters pushes this to minutes. This is the most severe finding: it is triggered by the default `minimatch()` API with no special options, and the minimum viable pattern is only 12 bytes. The same issue affects `+()` extglobs equally. Versions 10.2.3, 9.0.7, 8.0.6, 7.4.8, 6.2.2, 5.1.8, 4.2.5, and 3.1.4 fix the issue.", "Severity": "HIGH", "CweIDs": [ "CWE-1333" ], "VendorSeverity": { "ghsa": 3, "redhat": 2 }, "CVSS": { "ghsa": { "V3Vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "V3Score": 7.5 }, "redhat": { "V3Vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H", "V3Score": 6.5 } }, "References": [ "https://access.redhat.com/security/cve/CVE-2026-27904", "https://github.com/isaacs/minimatch", "https://github.com/isaacs/minimatch/commit/11d0df6165d15a955462316b26d52e5efae06fce", "https://github.com/isaacs/minimatch/security/advisories/GHSA-23c5-xmqv-rm74", "https://nvd.nist.gov/vuln/detail/CVE-2026-27904", "https://www.cve.org/CVERecord?id=CVE-2026-27904" ], "PublishedDate": "2026-02-26T02:16:21.76Z", "LastModifiedDate": "2026-02-27T17:16:23.773Z" }, { "VulnerabilityID": "CVE-2026-27904", "VendorIDs": [ "GHSA-23c5-xmqv-rm74" ], "PkgID": "minimatch@10.2.1", "PkgName": "minimatch", "PkgPath": "usr/local/lib/node_modules/npm/node_modules/minimatch/package.json", "PkgIdentifier": { "PURL": "pkg:npm/minimatch@10.2.1", "UID": "36d44f9609a952c5", "BOMRef": "294f48e8-420c-4f05-b020-6c66f7bd92bc" }, "InstalledVersion": "10.2.1", "FixedVersion": "10.2.3, 9.0.7, 8.0.6, 7.4.8, 6.2.2, 5.1.8, 4.2.5, 3.1.4", "Status": "fixed", "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "SeveritySource": "ghsa", "PrimaryURL": "https://avd.aquasec.com/nvd/cve-2026-27904", "DataSource": { "ID": "ghsa", "Name": "GitHub Security Advisory npm", "URL": "https://github.com/advisories?query=type%3Areviewed+ecosystem%3Anpm" }, "Fingerprint": "sha256:ca62c33b81d14a226b0916a70eb28284f62ec819be3ef938d37f750d0112d6de", "Title": "minimatch: Minimatch: Denial of Service via catastrophic backtracking in glob expressions", "Description": "minimatch is a minimal matching utility for converting glob expressions into JavaScript RegExp objects. Prior to version 10.2.3, 9.0.7, 8.0.6, 7.4.8, 6.2.2, 5.1.8, 4.2.5, and 3.1.4, nested `*()` extglobs produce regexps with nested unbounded quantifiers (e.g. `(?:(?:a|b)*)*`), which exhibit catastrophic backtracking in V8. With a 12-byte pattern `*(*(*(a|b)))` and an 18-byte non-matching input, `minimatch()` stalls for over 7 seconds. Adding a single nesting level or a few input characters pushes this to minutes. This is the most severe finding: it is triggered by the default `minimatch()` API with no special options, and the minimum viable pattern is only 12 bytes. The same issue affects `+()` extglobs equally. Versions 10.2.3, 9.0.7, 8.0.6, 7.4.8, 6.2.2, 5.1.8, 4.2.5, and 3.1.4 fix the issue.", "Severity": "HIGH", "CweIDs": [ "CWE-1333" ], "VendorSeverity": { "ghsa": 3, "redhat": 2 }, "CVSS": { "ghsa": { "V3Vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "V3Score": 7.5 }, "redhat": { "V3Vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H", "V3Score": 6.5 } }, "References": [ "https://access.redhat.com/security/cve/CVE-2026-27904", "https://github.com/isaacs/minimatch", "https://github.com/isaacs/minimatch/commit/11d0df6165d15a955462316b26d52e5efae06fce", "https://github.com/isaacs/minimatch/security/advisories/GHSA-23c5-xmqv-rm74", "https://nvd.nist.gov/vuln/detail/CVE-2026-27904", "https://www.cve.org/CVERecord?id=CVE-2026-27904" ], "PublishedDate": "2026-02-26T02:16:21.76Z", "LastModifiedDate": "2026-02-27T17:16:23.773Z" }, { "VulnerabilityID": "CVE-2026-33671", "VendorIDs": [ "GHSA-c2c7-rcm5-vvqj" ], "PkgID": "picomatch@4.0.3", "PkgName": "picomatch", "PkgPath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/tinyglobby/node_modules/picomatch/package.json", "PkgIdentifier": { "PURL": "pkg:npm/picomatch@4.0.3", "UID": "aa4fba5234321ea", "BOMRef": "5ab948da-8592-4bb8-89fd-29b74e448980" }, "InstalledVersion": "4.0.3", "FixedVersion": "4.0.4, 3.0.2, 2.3.2", "Status": "fixed", "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "SeveritySource": "ghsa", "PrimaryURL": "https://avd.aquasec.com/nvd/cve-2026-33671", "DataSource": { "ID": "ghsa", "Name": "GitHub Security Advisory npm", "URL": "https://github.com/advisories?query=type%3Areviewed+ecosystem%3Anpm" }, "Fingerprint": "sha256:207ad269915973ca2f23d010cda47be6c0642612083c33e920cc47d603f2821d", "Title": "picomatch: Picomatch: Regular Expression Denial of Service via crafted extglob patterns", "Description": "Picomatch is a glob matcher written JavaScript. Versions prior to 4.0.4, 3.0.2, and 2.3.2 are vulnerable to Regular Expression Denial of Service (ReDoS) when processing crafted extglob patterns. Certain patterns using extglob quantifiers such as `+()` and `*()`, especially when combined with overlapping alternatives or nested extglobs, are compiled into regular expressions that can exhibit catastrophic backtracking on non-matching input. Applications are impacted when they allow untrusted users to supply glob patterns that are passed to `picomatch` for compilation or matching. In those cases, an attacker can cause excessive CPU consumption and block the Node.js event loop, resulting in a denial of service. Applications that only use trusted, developer-controlled glob patterns are much less likely to be exposed in a security-relevant way. This issue is fixed in picomatch 4.0.4, 3.0.2 and 2.3.2. Users should upgrade to one of these versions or later, depending on their supported release line. If upgrading is not immediately possible, avoid passing untrusted glob patterns to `picomatch`. Possible mitigations include disabling extglob support for untrusted patterns by using `noextglob: true`, rejecting or sanitizing patterns containing nested extglobs or extglob quantifiers such as `+()` and `*()`, enforcing strict allowlists for accepted pattern syntax, running matching in an isolated worker or separate process with time and resource limits, and applying application-level request throttling and input validation for any endpoint that accepts glob patterns.", "Severity": "HIGH", "CweIDs": [ "CWE-1333" ], "VendorSeverity": { "ghsa": 3, "redhat": 2 }, "CVSS": { "ghsa": { "V3Vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "V3Score": 7.5 }, "redhat": { "V3Vector": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", "V3Score": 6.5 } }, "References": [ "https://access.redhat.com/security/cve/CVE-2026-33671", "https://github.com/micromatch/picomatch", "https://github.com/micromatch/picomatch/commit/5eceecd27543b8e056b9307d69e105ea03618a7d", "https://github.com/micromatch/picomatch/security/advisories/GHSA-c2c7-rcm5-vvqj", "https://nvd.nist.gov/vuln/detail/CVE-2026-33671", "https://www.cve.org/CVERecord?id=CVE-2026-33671" ], "PublishedDate": "2026-03-26T22:16:30.21Z", "LastModifiedDate": "2026-04-01T13:45:11.687Z" }, { "VulnerabilityID": "CVE-2026-33671", "VendorIDs": [ "GHSA-c2c7-rcm5-vvqj" ], "PkgID": "picomatch@4.0.3", "PkgName": "picomatch", "PkgPath": "usr/local/lib/node_modules/npm/node_modules/tinyglobby/node_modules/picomatch/package.json", "PkgIdentifier": { "PURL": "pkg:npm/picomatch@4.0.3", "UID": "270fd6014b5a4faa", "BOMRef": "a7c7da33-bd41-4ceb-955f-f8bb6480ee58" }, "InstalledVersion": "4.0.3", "FixedVersion": "4.0.4, 3.0.2, 2.3.2", "Status": "fixed", "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "SeveritySource": "ghsa", "PrimaryURL": "https://avd.aquasec.com/nvd/cve-2026-33671", "DataSource": { "ID": "ghsa", "Name": "GitHub Security Advisory npm", "URL": "https://github.com/advisories?query=type%3Areviewed+ecosystem%3Anpm" }, "Fingerprint": "sha256:207ad269915973ca2f23d010cda47be6c0642612083c33e920cc47d603f2821d", "Title": "picomatch: Picomatch: Regular Expression Denial of Service via crafted extglob patterns", "Description": "Picomatch is a glob matcher written JavaScript. Versions prior to 4.0.4, 3.0.2, and 2.3.2 are vulnerable to Regular Expression Denial of Service (ReDoS) when processing crafted extglob patterns. Certain patterns using extglob quantifiers such as `+()` and `*()`, especially when combined with overlapping alternatives or nested extglobs, are compiled into regular expressions that can exhibit catastrophic backtracking on non-matching input. Applications are impacted when they allow untrusted users to supply glob patterns that are passed to `picomatch` for compilation or matching. In those cases, an attacker can cause excessive CPU consumption and block the Node.js event loop, resulting in a denial of service. Applications that only use trusted, developer-controlled glob patterns are much less likely to be exposed in a security-relevant way. This issue is fixed in picomatch 4.0.4, 3.0.2 and 2.3.2. Users should upgrade to one of these versions or later, depending on their supported release line. If upgrading is not immediately possible, avoid passing untrusted glob patterns to `picomatch`. Possible mitigations include disabling extglob support for untrusted patterns by using `noextglob: true`, rejecting or sanitizing patterns containing nested extglobs or extglob quantifiers such as `+()` and `*()`, enforcing strict allowlists for accepted pattern syntax, running matching in an isolated worker or separate process with time and resource limits, and applying application-level request throttling and input validation for any endpoint that accepts glob patterns.", "Severity": "HIGH", "CweIDs": [ "CWE-1333" ], "VendorSeverity": { "ghsa": 3, "redhat": 2 }, "CVSS": { "ghsa": { "V3Vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "V3Score": 7.5 }, "redhat": { "V3Vector": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", "V3Score": 6.5 } }, "References": [ "https://access.redhat.com/security/cve/CVE-2026-33671", "https://github.com/micromatch/picomatch", "https://github.com/micromatch/picomatch/commit/5eceecd27543b8e056b9307d69e105ea03618a7d", "https://github.com/micromatch/picomatch/security/advisories/GHSA-c2c7-rcm5-vvqj", "https://nvd.nist.gov/vuln/detail/CVE-2026-33671", "https://www.cve.org/CVERecord?id=CVE-2026-33671" ], "PublishedDate": "2026-03-26T22:16:30.21Z", "LastModifiedDate": "2026-04-01T13:45:11.687Z" }, { "VulnerabilityID": "CVE-2026-33672", "VendorIDs": [ "GHSA-3v7f-55p6-f55p" ], "PkgID": "picomatch@4.0.3", "PkgName": "picomatch", "PkgPath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/tinyglobby/node_modules/picomatch/package.json", "PkgIdentifier": { "PURL": "pkg:npm/picomatch@4.0.3", "UID": "aa4fba5234321ea", "BOMRef": "5ab948da-8592-4bb8-89fd-29b74e448980" }, "InstalledVersion": "4.0.3", "FixedVersion": "4.0.4, 3.0.2, 2.3.2", "Status": "fixed", "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "SeveritySource": "ghsa", "PrimaryURL": "https://avd.aquasec.com/nvd/cve-2026-33672", "DataSource": { "ID": "ghsa", "Name": "GitHub Security Advisory npm", "URL": "https://github.com/advisories?query=type%3Areviewed+ecosystem%3Anpm" }, "Fingerprint": "sha256:2f6677f54143717bdb7617fbb22baa2470965a5f811541d2db8e4696d970e0cc", "Title": "picomatch: Picomatch: Data integrity compromised via method injection with crafted POSIX bracket expressions", "Description": "Picomatch is a glob matcher written JavaScript. Versions prior to 4.0.4, 3.0.2, and 2.3.2 are vulnerable to a method injection vulnerability affecting the `POSIX_REGEX_SOURCE` object. Because the object inherits from `Object.prototype`, specially crafted POSIX bracket expressions (e.g., `[[:constructor:]]`) can reference inherited method names. These methods are implicitly converted to strings and injected into the generated regular expression. This leads to incorrect glob matching behavior (integrity impact), where patterns may match unintended filenames. The issue does not enable remote code execution, but it can cause security-relevant logic errors in applications that rely on glob matching for filtering, validation, or access control. All users of affected `picomatch` versions that process untrusted or user-controlled glob patterns are potentially impacted. This issue is fixed in picomatch 4.0.4, 3.0.2 and 2.3.2. Users should upgrade to one of these versions or later, depending on their supported release line. If upgrading is not immediately possible, avoid passing untrusted glob patterns to picomatch. Possible mitigations include sanitizing or rejecting untrusted glob patterns, especially those containing POSIX character classes like `[[:...:]]`; avoiding the use of POSIX bracket expressions if user input is involved; and manually patching the library by modifying `POSIX_REGEX_SOURCE` to use a null prototype.", "Severity": "MEDIUM", "CweIDs": [ "CWE-1321" ], "VendorSeverity": { "ghsa": 2, "redhat": 2 }, "CVSS": { "ghsa": { "V3Vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N", "V3Score": 5.3 }, "redhat": { "V3Vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N", "V3Score": 5.3 } }, "References": [ "https://access.redhat.com/security/cve/CVE-2026-33672", "https://github.com/micromatch/picomatch", "https://github.com/micromatch/picomatch/commit/4516eb521f13a46b2fe1a1d2c9ef6b20ddc0e903", "https://github.com/micromatch/picomatch/security/advisories/GHSA-3v7f-55p6-f55p", "https://nvd.nist.gov/vuln/detail/CVE-2026-33672", "https://www.cve.org/CVERecord?id=CVE-2026-33672" ], "PublishedDate": "2026-03-26T22:16:30.387Z", "LastModifiedDate": "2026-04-01T13:44:53.397Z" }, { "VulnerabilityID": "CVE-2026-33672", "VendorIDs": [ "GHSA-3v7f-55p6-f55p" ], "PkgID": "picomatch@4.0.3", "PkgName": "picomatch", "PkgPath": "usr/local/lib/node_modules/npm/node_modules/tinyglobby/node_modules/picomatch/package.json", "PkgIdentifier": { "PURL": "pkg:npm/picomatch@4.0.3", "UID": "270fd6014b5a4faa", "BOMRef": "a7c7da33-bd41-4ceb-955f-f8bb6480ee58" }, "InstalledVersion": "4.0.3", "FixedVersion": "4.0.4, 3.0.2, 2.3.2", "Status": "fixed", "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "SeveritySource": "ghsa", "PrimaryURL": "https://avd.aquasec.com/nvd/cve-2026-33672", "DataSource": { "ID": "ghsa", "Name": "GitHub Security Advisory npm", "URL": "https://github.com/advisories?query=type%3Areviewed+ecosystem%3Anpm" }, "Fingerprint": "sha256:2f6677f54143717bdb7617fbb22baa2470965a5f811541d2db8e4696d970e0cc", "Title": "picomatch: Picomatch: Data integrity compromised via method injection with crafted POSIX bracket expressions", "Description": "Picomatch is a glob matcher written JavaScript. Versions prior to 4.0.4, 3.0.2, and 2.3.2 are vulnerable to a method injection vulnerability affecting the `POSIX_REGEX_SOURCE` object. Because the object inherits from `Object.prototype`, specially crafted POSIX bracket expressions (e.g., `[[:constructor:]]`) can reference inherited method names. These methods are implicitly converted to strings and injected into the generated regular expression. This leads to incorrect glob matching behavior (integrity impact), where patterns may match unintended filenames. The issue does not enable remote code execution, but it can cause security-relevant logic errors in applications that rely on glob matching for filtering, validation, or access control. All users of affected `picomatch` versions that process untrusted or user-controlled glob patterns are potentially impacted. This issue is fixed in picomatch 4.0.4, 3.0.2 and 2.3.2. Users should upgrade to one of these versions or later, depending on their supported release line. If upgrading is not immediately possible, avoid passing untrusted glob patterns to picomatch. Possible mitigations include sanitizing or rejecting untrusted glob patterns, especially those containing POSIX character classes like `[[:...:]]`; avoiding the use of POSIX bracket expressions if user input is involved; and manually patching the library by modifying `POSIX_REGEX_SOURCE` to use a null prototype.", "Severity": "MEDIUM", "CweIDs": [ "CWE-1321" ], "VendorSeverity": { "ghsa": 2, "redhat": 2 }, "CVSS": { "ghsa": { "V3Vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N", "V3Score": 5.3 }, "redhat": { "V3Vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N", "V3Score": 5.3 } }, "References": [ "https://access.redhat.com/security/cve/CVE-2026-33672", "https://github.com/micromatch/picomatch", "https://github.com/micromatch/picomatch/commit/4516eb521f13a46b2fe1a1d2c9ef6b20ddc0e903", "https://github.com/micromatch/picomatch/security/advisories/GHSA-3v7f-55p6-f55p", "https://nvd.nist.gov/vuln/detail/CVE-2026-33672", "https://www.cve.org/CVERecord?id=CVE-2026-33672" ], "PublishedDate": "2026-03-26T22:16:30.387Z", "LastModifiedDate": "2026-04-01T13:44:53.397Z" }, { "VulnerabilityID": "CVE-2026-29786", "VendorIDs": [ "GHSA-qffp-2rhf-9h96" ], "PkgID": "tar@7.5.8", "PkgName": "tar", "PkgPath": "usr/lib/node_modules/npm/node_modules/tar/package.json", "PkgIdentifier": { "PURL": "pkg:npm/tar@7.5.8", "UID": "d33ddf8733037ae2", "BOMRef": "a38a8b1b-9db1-49cc-93e2-725995a35c37" }, "InstalledVersion": "7.5.8", "FixedVersion": "7.5.10", "Status": "fixed", "Layer": { "Digest": "sha256:b72305f951665b304d407e1dec69e0ec73b230360e8a4a17365b58d22946e37a", "DiffID": "sha256:20ca8f2ade98548df7b9a0182bfced0032d7d9f9243fa8e450e155f6d775f343" }, "SeveritySource": "ghsa", "PrimaryURL": "https://avd.aquasec.com/nvd/cve-2026-29786", "DataSource": { "ID": "ghsa", "Name": "GitHub Security Advisory npm", "URL": "https://github.com/advisories?query=type%3Areviewed+ecosystem%3Anpm" }, "Fingerprint": "sha256:a32a685b3c99e3c60160512ee033e7114abb1f2aab969320b49f883d4b7b3e70", "Title": "node-tar: hardlink path traversal via drive-relative linkpath", "Description": "node-tar is a full-featured Tar for Node.js. Prior to version 7.5.10, tar can be tricked into creating a hardlink that points outside the extraction directory by using a drive-relative link target such as C:../target.txt, which enables file overwrite outside cwd during normal tar.x() extraction. This issue has been patched in version 7.5.10.", "Severity": "HIGH", "CweIDs": [ "CWE-22", "CWE-59" ], "VendorSeverity": { "amazon": 3, "ghsa": 3, "nvd": 2, "redhat": 3 }, "CVSS": { "ghsa": { "V40Vector": "CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:P/VC:N/VI:H/VA:L/SC:N/SI:H/SA:L", "V40Score": 8.2 }, "nvd": { "V3Vector": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:N/I:H/A:N", "V3Score": 6.3 }, "redhat": { "V3Vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:H/A:N", "V3Score": 8.6 } }, "References": [ "https://access.redhat.com/security/cve/CVE-2026-29786", "https://github.com/isaacs/node-tar", "https://github.com/isaacs/node-tar/commit/7bc755dd85e623c0279e08eb3784909e6d7e4b9f", "https://github.com/isaacs/node-tar/security/advisories/GHSA-qffp-2rhf-9h96", "https://nvd.nist.gov/vuln/detail/CVE-2026-29786", "https://www.cve.org/CVERecord?id=CVE-2026-29786" ], "PublishedDate": "2026-03-07T16:15:55.587Z", "LastModifiedDate": "2026-03-11T21:50:01.91Z" }, { "VulnerabilityID": "CVE-2026-29786", "VendorIDs": [ "GHSA-qffp-2rhf-9h96" ], "PkgID": "tar@7.5.8", "PkgName": "tar", "PkgPath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/tar/package.json", "PkgIdentifier": { "PURL": "pkg:npm/tar@7.5.8", "UID": "7239a2552a914b91", "BOMRef": "068ed263-1aec-4c09-a850-41fe5a275ec1" }, "InstalledVersion": "7.5.8", "FixedVersion": "7.5.10", "Status": "fixed", "Layer": { "Digest": "sha256:b72305f951665b304d407e1dec69e0ec73b230360e8a4a17365b58d22946e37a", "DiffID": "sha256:20ca8f2ade98548df7b9a0182bfced0032d7d9f9243fa8e450e155f6d775f343" }, "SeveritySource": "ghsa", "PrimaryURL": "https://avd.aquasec.com/nvd/cve-2026-29786", "DataSource": { "ID": "ghsa", "Name": "GitHub Security Advisory npm", "URL": "https://github.com/advisories?query=type%3Areviewed+ecosystem%3Anpm" }, "Fingerprint": "sha256:a32a685b3c99e3c60160512ee033e7114abb1f2aab969320b49f883d4b7b3e70", "Title": "node-tar: hardlink path traversal via drive-relative linkpath", "Description": "node-tar is a full-featured Tar for Node.js. Prior to version 7.5.10, tar can be tricked into creating a hardlink that points outside the extraction directory by using a drive-relative link target such as C:../target.txt, which enables file overwrite outside cwd during normal tar.x() extraction. This issue has been patched in version 7.5.10.", "Severity": "HIGH", "CweIDs": [ "CWE-22", "CWE-59" ], "VendorSeverity": { "amazon": 3, "ghsa": 3, "nvd": 2, "redhat": 3 }, "CVSS": { "ghsa": { "V40Vector": "CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:P/VC:N/VI:H/VA:L/SC:N/SI:H/SA:L", "V40Score": 8.2 }, "nvd": { "V3Vector": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:N/I:H/A:N", "V3Score": 6.3 }, "redhat": { "V3Vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:H/A:N", "V3Score": 8.6 } }, "References": [ "https://access.redhat.com/security/cve/CVE-2026-29786", "https://github.com/isaacs/node-tar", "https://github.com/isaacs/node-tar/commit/7bc755dd85e623c0279e08eb3784909e6d7e4b9f", "https://github.com/isaacs/node-tar/security/advisories/GHSA-qffp-2rhf-9h96", "https://nvd.nist.gov/vuln/detail/CVE-2026-29786", "https://www.cve.org/CVERecord?id=CVE-2026-29786" ], "PublishedDate": "2026-03-07T16:15:55.587Z", "LastModifiedDate": "2026-03-11T21:50:01.91Z" }, { "VulnerabilityID": "CVE-2026-29786", "VendorIDs": [ "GHSA-qffp-2rhf-9h96" ], "PkgID": "tar@7.5.8", "PkgName": "tar", "PkgPath": "usr/local/lib/node_modules/npm/node_modules/tar/package.json", "PkgIdentifier": { "PURL": "pkg:npm/tar@7.5.8", "UID": "8e6e5d12114a31dd", "BOMRef": "2828e84b-57a8-4d7f-b906-e5af2247f833" }, "InstalledVersion": "7.5.8", "FixedVersion": "7.5.10", "Status": "fixed", "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "SeveritySource": "ghsa", "PrimaryURL": "https://avd.aquasec.com/nvd/cve-2026-29786", "DataSource": { "ID": "ghsa", "Name": "GitHub Security Advisory npm", "URL": "https://github.com/advisories?query=type%3Areviewed+ecosystem%3Anpm" }, "Fingerprint": "sha256:a32a685b3c99e3c60160512ee033e7114abb1f2aab969320b49f883d4b7b3e70", "Title": "node-tar: hardlink path traversal via drive-relative linkpath", "Description": "node-tar is a full-featured Tar for Node.js. Prior to version 7.5.10, tar can be tricked into creating a hardlink that points outside the extraction directory by using a drive-relative link target such as C:../target.txt, which enables file overwrite outside cwd during normal tar.x() extraction. This issue has been patched in version 7.5.10.", "Severity": "HIGH", "CweIDs": [ "CWE-22", "CWE-59" ], "VendorSeverity": { "amazon": 3, "ghsa": 3, "nvd": 2, "redhat": 3 }, "CVSS": { "ghsa": { "V40Vector": "CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:P/VC:N/VI:H/VA:L/SC:N/SI:H/SA:L", "V40Score": 8.2 }, "nvd": { "V3Vector": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:N/I:H/A:N", "V3Score": 6.3 }, "redhat": { "V3Vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:H/A:N", "V3Score": 8.6 } }, "References": [ "https://access.redhat.com/security/cve/CVE-2026-29786", "https://github.com/isaacs/node-tar", "https://github.com/isaacs/node-tar/commit/7bc755dd85e623c0279e08eb3784909e6d7e4b9f", "https://github.com/isaacs/node-tar/security/advisories/GHSA-qffp-2rhf-9h96", "https://nvd.nist.gov/vuln/detail/CVE-2026-29786", "https://www.cve.org/CVERecord?id=CVE-2026-29786" ], "PublishedDate": "2026-03-07T16:15:55.587Z", "LastModifiedDate": "2026-03-11T21:50:01.91Z" }, { "VulnerabilityID": "CVE-2026-29786", "VendorIDs": [ "GHSA-qffp-2rhf-9h96" ], "PkgID": "tar@7.5.8", "PkgName": "tar", "PkgPath": "usr/local/lib/node_modules/tar/package.json", "PkgIdentifier": { "PURL": "pkg:npm/tar@7.5.8", "UID": "eeb01bb0229d4427", "BOMRef": "e3664234-1206-46d7-8d87-a17fe8a3aa4e" }, "InstalledVersion": "7.5.8", "FixedVersion": "7.5.10", "Status": "fixed", "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "SeveritySource": "ghsa", "PrimaryURL": "https://avd.aquasec.com/nvd/cve-2026-29786", "DataSource": { "ID": "ghsa", "Name": "GitHub Security Advisory npm", "URL": "https://github.com/advisories?query=type%3Areviewed+ecosystem%3Anpm" }, "Fingerprint": "sha256:a32a685b3c99e3c60160512ee033e7114abb1f2aab969320b49f883d4b7b3e70", "Title": "node-tar: hardlink path traversal via drive-relative linkpath", "Description": "node-tar is a full-featured Tar for Node.js. Prior to version 7.5.10, tar can be tricked into creating a hardlink that points outside the extraction directory by using a drive-relative link target such as C:../target.txt, which enables file overwrite outside cwd during normal tar.x() extraction. This issue has been patched in version 7.5.10.", "Severity": "HIGH", "CweIDs": [ "CWE-22", "CWE-59" ], "VendorSeverity": { "amazon": 3, "ghsa": 3, "nvd": 2, "redhat": 3 }, "CVSS": { "ghsa": { "V40Vector": "CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:P/VC:N/VI:H/VA:L/SC:N/SI:H/SA:L", "V40Score": 8.2 }, "nvd": { "V3Vector": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:N/I:H/A:N", "V3Score": 6.3 }, "redhat": { "V3Vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:H/A:N", "V3Score": 8.6 } }, "References": [ "https://access.redhat.com/security/cve/CVE-2026-29786", "https://github.com/isaacs/node-tar", "https://github.com/isaacs/node-tar/commit/7bc755dd85e623c0279e08eb3784909e6d7e4b9f", "https://github.com/isaacs/node-tar/security/advisories/GHSA-qffp-2rhf-9h96", "https://nvd.nist.gov/vuln/detail/CVE-2026-29786", "https://www.cve.org/CVERecord?id=CVE-2026-29786" ], "PublishedDate": "2026-03-07T16:15:55.587Z", "LastModifiedDate": "2026-03-11T21:50:01.91Z" }, { "VulnerabilityID": "CVE-2026-31802", "VendorIDs": [ "GHSA-9ppj-qmqm-q256" ], "PkgID": "tar@7.5.8", "PkgName": "tar", "PkgPath": "usr/lib/node_modules/npm/node_modules/tar/package.json", "PkgIdentifier": { "PURL": "pkg:npm/tar@7.5.8", "UID": "d33ddf8733037ae2", "BOMRef": "a38a8b1b-9db1-49cc-93e2-725995a35c37" }, "InstalledVersion": "7.5.8", "FixedVersion": "7.5.11", "Status": "fixed", "Layer": { "Digest": "sha256:b72305f951665b304d407e1dec69e0ec73b230360e8a4a17365b58d22946e37a", "DiffID": "sha256:20ca8f2ade98548df7b9a0182bfced0032d7d9f9243fa8e450e155f6d775f343" }, "SeveritySource": "ghsa", "PrimaryURL": "https://avd.aquasec.com/nvd/cve-2026-31802", "DataSource": { "ID": "ghsa", "Name": "GitHub Security Advisory npm", "URL": "https://github.com/advisories?query=type%3Areviewed+ecosystem%3Anpm" }, "Fingerprint": "sha256:443250536aea707f26425b77c60bb9440b39b1d77b29d3d972bcc576ef35e860", "Title": "tar: tar: File overwrite via drive-relative symlink traversal", "Description": "node-tar is a full-featured Tar for Node.js. Prior to version 7.5.11, tar (npm) can be tricked into creating a symlink that points outside the extraction directory by using a drive-relative symlink target such as C:../../../target.txt, which enables file overwrite outside cwd during normal tar.x() extraction. This vulnerability is fixed in 7.5.11.", "Severity": "HIGH", "CweIDs": [ "CWE-22" ], "VendorSeverity": { "ghsa": 3, "nvd": 2, "redhat": 2 }, "CVSS": { "ghsa": { "V40Vector": "CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:N/SC:N/SI:H/SA:N", "V40Score": 8.2 }, "nvd": { "V3Vector": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N", "V3Score": 5.5 }, "redhat": { "V3Vector": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N", "V3Score": 6.2 } }, "References": [ "https://access.redhat.com/security/cve/CVE-2026-31802", "https://github.com/isaacs/node-tar", "https://github.com/isaacs/node-tar/commit/f48b5fa3b7985ddab96dc0f2125a4ffc9911b6ad", "https://github.com/isaacs/node-tar/security/advisories/GHSA-9ppj-qmqm-q256", "https://nvd.nist.gov/vuln/detail/CVE-2026-31802", "https://www.cve.org/CVERecord?id=CVE-2026-31802" ], "PublishedDate": "2026-03-10T07:44:58.02Z", "LastModifiedDate": "2026-03-18T18:13:34.703Z" }, { "VulnerabilityID": "CVE-2026-31802", "VendorIDs": [ "GHSA-9ppj-qmqm-q256" ], "PkgID": "tar@7.5.8", "PkgName": "tar", "PkgPath": "usr/lib/python3.13/site-packages/nodejs_wheel/lib/node_modules/npm/node_modules/tar/package.json", "PkgIdentifier": { "PURL": "pkg:npm/tar@7.5.8", "UID": "7239a2552a914b91", "BOMRef": "068ed263-1aec-4c09-a850-41fe5a275ec1" }, "InstalledVersion": "7.5.8", "FixedVersion": "7.5.11", "Status": "fixed", "Layer": { "Digest": "sha256:b72305f951665b304d407e1dec69e0ec73b230360e8a4a17365b58d22946e37a", "DiffID": "sha256:20ca8f2ade98548df7b9a0182bfced0032d7d9f9243fa8e450e155f6d775f343" }, "SeveritySource": "ghsa", "PrimaryURL": "https://avd.aquasec.com/nvd/cve-2026-31802", "DataSource": { "ID": "ghsa", "Name": "GitHub Security Advisory npm", "URL": "https://github.com/advisories?query=type%3Areviewed+ecosystem%3Anpm" }, "Fingerprint": "sha256:443250536aea707f26425b77c60bb9440b39b1d77b29d3d972bcc576ef35e860", "Title": "tar: tar: File overwrite via drive-relative symlink traversal", "Description": "node-tar is a full-featured Tar for Node.js. Prior to version 7.5.11, tar (npm) can be tricked into creating a symlink that points outside the extraction directory by using a drive-relative symlink target such as C:../../../target.txt, which enables file overwrite outside cwd during normal tar.x() extraction. This vulnerability is fixed in 7.5.11.", "Severity": "HIGH", "CweIDs": [ "CWE-22" ], "VendorSeverity": { "ghsa": 3, "nvd": 2, "redhat": 2 }, "CVSS": { "ghsa": { "V40Vector": "CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:N/SC:N/SI:H/SA:N", "V40Score": 8.2 }, "nvd": { "V3Vector": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N", "V3Score": 5.5 }, "redhat": { "V3Vector": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N", "V3Score": 6.2 } }, "References": [ "https://access.redhat.com/security/cve/CVE-2026-31802", "https://github.com/isaacs/node-tar", "https://github.com/isaacs/node-tar/commit/f48b5fa3b7985ddab96dc0f2125a4ffc9911b6ad", "https://github.com/isaacs/node-tar/security/advisories/GHSA-9ppj-qmqm-q256", "https://nvd.nist.gov/vuln/detail/CVE-2026-31802", "https://www.cve.org/CVERecord?id=CVE-2026-31802" ], "PublishedDate": "2026-03-10T07:44:58.02Z", "LastModifiedDate": "2026-03-18T18:13:34.703Z" }, { "VulnerabilityID": "CVE-2026-31802", "VendorIDs": [ "GHSA-9ppj-qmqm-q256" ], "PkgID": "tar@7.5.8", "PkgName": "tar", "PkgPath": "usr/local/lib/node_modules/npm/node_modules/tar/package.json", "PkgIdentifier": { "PURL": "pkg:npm/tar@7.5.8", "UID": "8e6e5d12114a31dd", "BOMRef": "2828e84b-57a8-4d7f-b906-e5af2247f833" }, "InstalledVersion": "7.5.8", "FixedVersion": "7.5.11", "Status": "fixed", "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "SeveritySource": "ghsa", "PrimaryURL": "https://avd.aquasec.com/nvd/cve-2026-31802", "DataSource": { "ID": "ghsa", "Name": "GitHub Security Advisory npm", "URL": "https://github.com/advisories?query=type%3Areviewed+ecosystem%3Anpm" }, "Fingerprint": "sha256:443250536aea707f26425b77c60bb9440b39b1d77b29d3d972bcc576ef35e860", "Title": "tar: tar: File overwrite via drive-relative symlink traversal", "Description": "node-tar is a full-featured Tar for Node.js. Prior to version 7.5.11, tar (npm) can be tricked into creating a symlink that points outside the extraction directory by using a drive-relative symlink target such as C:../../../target.txt, which enables file overwrite outside cwd during normal tar.x() extraction. This vulnerability is fixed in 7.5.11.", "Severity": "HIGH", "CweIDs": [ "CWE-22" ], "VendorSeverity": { "ghsa": 3, "nvd": 2, "redhat": 2 }, "CVSS": { "ghsa": { "V40Vector": "CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:N/SC:N/SI:H/SA:N", "V40Score": 8.2 }, "nvd": { "V3Vector": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N", "V3Score": 5.5 }, "redhat": { "V3Vector": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N", "V3Score": 6.2 } }, "References": [ "https://access.redhat.com/security/cve/CVE-2026-31802", "https://github.com/isaacs/node-tar", "https://github.com/isaacs/node-tar/commit/f48b5fa3b7985ddab96dc0f2125a4ffc9911b6ad", "https://github.com/isaacs/node-tar/security/advisories/GHSA-9ppj-qmqm-q256", "https://nvd.nist.gov/vuln/detail/CVE-2026-31802", "https://www.cve.org/CVERecord?id=CVE-2026-31802" ], "PublishedDate": "2026-03-10T07:44:58.02Z", "LastModifiedDate": "2026-03-18T18:13:34.703Z" }, { "VulnerabilityID": "CVE-2026-31802", "VendorIDs": [ "GHSA-9ppj-qmqm-q256" ], "PkgID": "tar@7.5.8", "PkgName": "tar", "PkgPath": "usr/local/lib/node_modules/tar/package.json", "PkgIdentifier": { "PURL": "pkg:npm/tar@7.5.8", "UID": "eeb01bb0229d4427", "BOMRef": "e3664234-1206-46d7-8d87-a17fe8a3aa4e" }, "InstalledVersion": "7.5.8", "FixedVersion": "7.5.11", "Status": "fixed", "Layer": { "Digest": "sha256:ededcf469ea66bf831ea7a3e30ac5ee01516239f0ce9b916e4bae0ae22e2fd12", "DiffID": "sha256:40db514859709a4fb82fa58890380b82a48f79e7a094febbff9436a96a0524ed" }, "SeveritySource": "ghsa", "PrimaryURL": "https://avd.aquasec.com/nvd/cve-2026-31802", "DataSource": { "ID": "ghsa", "Name": "GitHub Security Advisory npm", "URL": "https://github.com/advisories?query=type%3Areviewed+ecosystem%3Anpm" }, "Fingerprint": "sha256:443250536aea707f26425b77c60bb9440b39b1d77b29d3d972bcc576ef35e860", "Title": "tar: tar: File overwrite via drive-relative symlink traversal", "Description": "node-tar is a full-featured Tar for Node.js. Prior to version 7.5.11, tar (npm) can be tricked into creating a symlink that points outside the extraction directory by using a drive-relative symlink target such as C:../../../target.txt, which enables file overwrite outside cwd during normal tar.x() extraction. This vulnerability is fixed in 7.5.11.", "Severity": "HIGH", "CweIDs": [ "CWE-22" ], "VendorSeverity": { "ghsa": 3, "nvd": 2, "redhat": 2 }, "CVSS": { "ghsa": { "V40Vector": "CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:N/SC:N/SI:H/SA:N", "V40Score": 8.2 }, "nvd": { "V3Vector": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N", "V3Score": 5.5 }, "redhat": { "V3Vector": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N", "V3Score": 6.2 } }, "References": [ "https://access.redhat.com/security/cve/CVE-2026-31802", "https://github.com/isaacs/node-tar", "https://github.com/isaacs/node-tar/commit/f48b5fa3b7985ddab96dc0f2125a4ffc9911b6ad", "https://github.com/isaacs/node-tar/security/advisories/GHSA-9ppj-qmqm-q256", "https://nvd.nist.gov/vuln/detail/CVE-2026-31802", "https://www.cve.org/CVERecord?id=CVE-2026-31802" ], "PublishedDate": "2026-03-10T07:44:58.02Z", "LastModifiedDate": "2026-03-18T18:13:34.703Z" } ] }, { "Target": "Python", "Class": "lang-pkgs", "Type": "python-pkg", "Packages": [ { "ID": "APScheduler@3.10.4", "Name": "APScheduler", "Identifier": { "PURL": "pkg:pypi/apscheduler@3.10.4", "UID": "2e2d8973b99ee62b", "BOMRef": "pkg:pypi/apscheduler@3.10.4" }, "Version": "3.10.4", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/APScheduler-3.10.4.dist-info/METADATA", "Digest": "sha1:3c645283c329748c21fee30a0a21ea492988d52f" }, { "ID": "Deprecated@1.3.1", "Name": "Deprecated", "Identifier": { "PURL": "pkg:pypi/deprecated@1.3.1", "UID": "98fffead72efe294", "BOMRef": "pkg:pypi/deprecated@1.3.1" }, "Version": "1.3.1", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/deprecated-1.3.1.dist-info/METADATA", "Digest": "sha1:109990e0106e9872d6bf3486d1fa574730d1c717" }, { "ID": "Jinja2@3.1.6", "Name": "Jinja2", "Identifier": { "PURL": "pkg:pypi/jinja2@3.1.6", "UID": "57bc1f8f96b38709", "BOMRef": "pkg:pypi/jinja2@3.1.6" }, "Version": "3.1.6", "Licenses": [ "BSD-3-Clause" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/jinja2-3.1.6.dist-info/METADATA", "Digest": "sha1:01c4dcfd579104dd8f5b937e1511e9371b4367d3" }, { "ID": "MarkupSafe@3.0.3", "Name": "MarkupSafe", "Identifier": { "PURL": "pkg:pypi/markupsafe@3.0.3", "UID": "d410c8dafd6afc67", "BOMRef": "pkg:pypi/markupsafe@3.0.3" }, "Version": "3.0.3", "Licenses": [ "BSD-3-Clause" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/markupsafe-3.0.3.dist-info/METADATA", "Digest": "sha1:8ada20dd783a9961d87701f2cd25b0880f23993e" }, { "ID": "PyJWT@2.9.0", "Name": "PyJWT", "Identifier": { "PURL": "pkg:pypi/pyjwt@2.9.0", "UID": "24306162fed3d651", "BOMRef": "pkg:pypi/pyjwt@2.9.0" }, "Version": "2.9.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:1cf810ac913a5a33f0d78c73e40b977a1b2aecb34c141e9881a1adc532db7b4f", "DiffID": "sha256:a78ae94e757ae1e2a38a023cd7c68218e0942da1e143576725a69ae9a7848959" }, "FilePath": "usr/lib/python3.13/site-packages/PyJWT-2.9.0.dist-info/METADATA", "Digest": "sha1:e0c7615c40e2db2aa26d42a9cedcb8ba8b7376a5" }, { "ID": "PyNaCl@1.6.2", "Name": "PyNaCl", "Identifier": { "PURL": "pkg:pypi/pynacl@1.6.2", "UID": "6849f09e609d5792", "BOMRef": "pkg:pypi/pynacl@1.6.2" }, "Version": "1.6.2", "Licenses": [ "Apache-2.0" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/pynacl-1.6.2.dist-info/METADATA", "Digest": "sha1:51eed4f0f5e4d39bc532c4157c5a3982308b842c" }, { "ID": "PyYAML@6.0.2", "Name": "PyYAML", "Identifier": { "PURL": "pkg:pypi/pyyaml@6.0.2", "UID": "168c8c6d525ccf3e", "BOMRef": "pkg:pypi/pyyaml@6.0.2" }, "Version": "6.0.2", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/PyYAML-6.0.2.dist-info/METADATA", "Digest": "sha1:019874e22eba3861f59a9ab72f17f58e8b504cf4" }, { "ID": "Pygments@2.19.2", "Name": "Pygments", "Identifier": { "PURL": "pkg:pypi/pygments@2.19.2", "UID": "10eb1e8b354a1f5b", "BOMRef": "pkg:pypi/pygments@2.19.2" }, "Version": "2.19.2", "Licenses": [ "BSD-3-Clause" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/pygments-2.19.2.dist-info/METADATA", "Digest": "sha1:afee6b8cae57db32719d0559389750d7923f0605" }, { "ID": "Werkzeug@3.1.6", "Name": "Werkzeug", "Identifier": { "PURL": "pkg:pypi/werkzeug@3.1.6", "UID": "af6235141c29c1e1", "BOMRef": "pkg:pypi/werkzeug@3.1.6" }, "Version": "3.1.6", "Licenses": [ "BSD-3-Clause" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/werkzeug-3.1.6.dist-info/METADATA", "Digest": "sha1:009a319320a3a8823025adcbb66babf581a30e3e" }, { "ID": "a2a-sdk@0.3.25", "Name": "a2a-sdk", "Identifier": { "PURL": "pkg:pypi/a2a-sdk@0.3.25", "UID": "372f4aa6ecd0c112", "BOMRef": "pkg:pypi/a2a-sdk@0.3.25" }, "Version": "0.3.25", "Licenses": [ "Apache-2.0" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/a2a_sdk-0.3.25.dist-info/METADATA", "Digest": "sha1:5a1db6998878a874b37ca02d2427a77a745f5496" }, { "ID": "aioboto3@15.5.0", "Name": "aioboto3", "Identifier": { "PURL": "pkg:pypi/aioboto3@15.5.0", "UID": "e08b80385684b51c", "BOMRef": "pkg:pypi/aioboto3@15.5.0" }, "Version": "15.5.0", "Licenses": [ "Apache-2.0" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/aioboto3-15.5.0.dist-info/METADATA", "Digest": "sha1:ffd08838a16b51a1cb1807dde93c8b0f990244f5" }, { "ID": "aiobotocore@2.25.1", "Name": "aiobotocore", "Identifier": { "PURL": "pkg:pypi/aiobotocore@2.25.1", "UID": "c399480c1a015789", "BOMRef": "pkg:pypi/aiobotocore@2.25.1" }, "Version": "2.25.1", "Licenses": [ "Apache-2.0" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/aiobotocore-2.25.1.dist-info/METADATA", "Digest": "sha1:ba7a88ae15a977227d960e17f3cbdb740f04fbfe" }, { "ID": "aiofiles@24.1.0", "Name": "aiofiles", "Identifier": { "PURL": "pkg:pypi/aiofiles@24.1.0", "UID": "db46669e67888622", "BOMRef": "pkg:pypi/aiofiles@24.1.0" }, "Version": "24.1.0", "Licenses": [ "Apache-2.0" ], "Layer": { "Digest": "sha256:affa7cb8d33787b4e0f96042bf8c603a0bdfb4ba03d06b48cd82a1705004636b", "DiffID": "sha256:c7026b5cc891045e66209e27b66b9b9ea4bdb8d1af9089327834862b634a42a3" }, "FilePath": "usr/lib/python3.13/site-packages/aiofiles-24.1.0.dist-info/METADATA", "Digest": "sha1:1fee4c4fef706c9737b9ce8e245bbd8dae4e4d16" }, { "ID": "aiohappyeyeballs@2.6.1", "Name": "aiohappyeyeballs", "Identifier": { "PURL": "pkg:pypi/aiohappyeyeballs@2.6.1", "UID": "a9232ae830e4d6a4", "BOMRef": "pkg:pypi/aiohappyeyeballs@2.6.1" }, "Version": "2.6.1", "Licenses": [ "Python-Software-Foundation-License" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/aiohappyeyeballs-2.6.1.dist-info/METADATA", "Digest": "sha1:01343f4e8b1584084c09e049bd83675272d9e757" }, { "ID": "aiohttp@3.13.3", "Name": "aiohttp", "Identifier": { "PURL": "pkg:pypi/aiohttp@3.13.3", "UID": "5b16de695dc5a135", "BOMRef": "pkg:pypi/aiohttp@3.13.3" }, "Version": "3.13.3", "Licenses": [ "Apache-2.0 AND MIT" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/aiohttp-3.13.3.dist-info/METADATA", "Digest": "sha1:63d65762ed8ded0c65362a1b04e4245d6ab9f170" }, { "ID": "aioitertools@0.13.0", "Name": "aioitertools", "Identifier": { "PURL": "pkg:pypi/aioitertools@0.13.0", "UID": "e467fcb21c334de8", "BOMRef": "pkg:pypi/aioitertools@0.13.0" }, "Version": "0.13.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/aioitertools-0.13.0.dist-info/METADATA", "Digest": "sha1:110d571c90f132b20fc32b46c28c3c95b1c7aa94" }, { "ID": "aiosignal@1.4.0", "Name": "aiosignal", "Identifier": { "PURL": "pkg:pypi/aiosignal@1.4.0", "UID": "b9c5822ba8169994", "BOMRef": "pkg:pypi/aiosignal@1.4.0" }, "Version": "1.4.0", "Licenses": [ "Apache-2.0" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/aiosignal-1.4.0.dist-info/METADATA", "Digest": "sha1:8752e41cfbbc924405ef6bf9a9ff761cb9a6dbe3" }, { "ID": "annotated-doc@0.0.4", "Name": "annotated-doc", "Identifier": { "PURL": "pkg:pypi/annotated-doc@0.0.4", "UID": "ba5eccf590efa3c7", "BOMRef": "pkg:pypi/annotated-doc@0.0.4" }, "Version": "0.0.4", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/annotated_doc-0.0.4.dist-info/METADATA", "Digest": "sha1:24d32962e4742a901653d9fe5563c40221ddc6fa" }, { "ID": "annotated-types@0.7.0", "Name": "annotated-types", "Identifier": { "PURL": "pkg:pypi/annotated-types@0.7.0", "UID": "bf773959ecd2662c", "BOMRef": "pkg:pypi/annotated-types@0.7.0" }, "Version": "0.7.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/annotated_types-0.7.0.dist-info/METADATA", "Digest": "sha1:b11011181822ac765c9f66c8aa42c26952de6a96" }, { "ID": "anthropic@0.54.0", "Name": "anthropic", "Identifier": { "PURL": "pkg:pypi/anthropic@0.54.0", "UID": "53d5ea34032a5dba", "BOMRef": "pkg:pypi/anthropic@0.54.0" }, "Version": "0.54.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/anthropic-0.54.0.dist-info/METADATA", "Digest": "sha1:7f700d1b4730958f468871fb28a2f4d416f8ed20" }, { "ID": "anyio@4.8.0", "Name": "anyio", "Identifier": { "PURL": "pkg:pypi/anyio@4.8.0", "UID": "29e26a861a693cd3", "BOMRef": "pkg:pypi/anyio@4.8.0" }, "Version": "4.8.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/anyio-4.8.0.dist-info/METADATA", "Digest": "sha1:12b3a6bb5ce68bac1fe5abd01d80d367c0688db2" }, { "ID": "async-generator@1.10", "Name": "async-generator", "Identifier": { "PURL": "pkg:pypi/async-generator@1.10", "UID": "378e2204b65795a", "BOMRef": "pkg:pypi/async-generator@1.10" }, "Version": "1.10", "Licenses": [ "MIT", "Apache-2.0" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/async_generator-1.10.dist-info/METADATA", "Digest": "sha1:f4fa19d3f3bef3e3604acc54b00e8b8c50ad31c0" }, { "ID": "attrs@25.4.0", "Name": "attrs", "Identifier": { "PURL": "pkg:pypi/attrs@25.4.0", "UID": "73c0a3e3acc05287", "BOMRef": "pkg:pypi/attrs@25.4.0" }, "Version": "25.4.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/attrs-25.4.0.dist-info/METADATA", "Digest": "sha1:9e593ab8f12d14d819a81ca9c41b9df0b4864a59" }, { "ID": "aurelio-sdk@0.0.19", "Name": "aurelio-sdk", "Identifier": { "PURL": "pkg:pypi/aurelio-sdk@0.0.19", "UID": "4ea496e04c4ef49a", "BOMRef": "pkg:pypi/aurelio-sdk@0.0.19" }, "Version": "0.0.19", "Layer": { "Digest": "sha256:affa7cb8d33787b4e0f96042bf8c603a0bdfb4ba03d06b48cd82a1705004636b", "DiffID": "sha256:c7026b5cc891045e66209e27b66b9b9ea4bdb8d1af9089327834862b634a42a3" }, "FilePath": "usr/lib/python3.13/site-packages/aurelio_sdk-0.0.19.dist-info/METADATA", "Digest": "sha1:bfe4c91a1633b0aa53f4fd1c5bd9f0e22eedfb7a" }, { "ID": "azure-ai-contentsafety@1.0.0", "Name": "azure-ai-contentsafety", "Identifier": { "PURL": "pkg:pypi/azure-ai-contentsafety@1.0.0", "UID": "a9f2e50c8d1d04de", "BOMRef": "pkg:pypi/azure-ai-contentsafety@1.0.0" }, "Version": "1.0.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/azure_ai_contentsafety-1.0.0.dist-info/METADATA", "Digest": "sha1:45cc94c9f0a17e313b00a13f7b0f9682654e0feb" }, { "ID": "azure-core@1.38.2", "Name": "azure-core", "Identifier": { "PURL": "pkg:pypi/azure-core@1.38.2", "UID": "cffcaf6cbb875403", "BOMRef": "pkg:pypi/azure-core@1.38.2" }, "Version": "1.38.2", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/azure_core-1.38.2.dist-info/METADATA", "Digest": "sha1:ed537c8e4239709c13f2010e79c9e95dfa85046b" }, { "ID": "azure-identity@1.16.1", "Name": "azure-identity", "Identifier": { "PURL": "pkg:pypi/azure-identity@1.16.1", "UID": "e70cbedafb5a36fa", "BOMRef": "pkg:pypi/azure-identity@1.16.1" }, "Version": "1.16.1", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/azure_identity-1.16.1.dist-info/METADATA", "Digest": "sha1:68fdde1864f6c107e1306f736d9b5fefa2acf3a1" }, { "ID": "azure-keyvault@4.2.0", "Name": "azure-keyvault", "Identifier": { "PURL": "pkg:pypi/azure-keyvault@4.2.0", "UID": "d0581038917b14e4", "BOMRef": "pkg:pypi/azure-keyvault@4.2.0" }, "Version": "4.2.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/azure_keyvault-4.2.0.dist-info/METADATA", "Digest": "sha1:5da0d813613844740604dfa0c820222a54853a3a" }, { "ID": "azure-keyvault-certificates@4.10.0", "Name": "azure-keyvault-certificates", "Identifier": { "PURL": "pkg:pypi/azure-keyvault-certificates@4.10.0", "UID": "8319692968cf2c46", "BOMRef": "pkg:pypi/azure-keyvault-certificates@4.10.0" }, "Version": "4.10.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/azure_keyvault_certificates-4.10.0.dist-info/METADATA", "Digest": "sha1:8227ff63178e8f5a07e66f234d8c296b189f855b" }, { "ID": "azure-keyvault-keys@4.11.0", "Name": "azure-keyvault-keys", "Identifier": { "PURL": "pkg:pypi/azure-keyvault-keys@4.11.0", "UID": "75fd9cd9103d1c29", "BOMRef": "pkg:pypi/azure-keyvault-keys@4.11.0" }, "Version": "4.11.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/azure_keyvault_keys-4.11.0.dist-info/METADATA", "Digest": "sha1:61e25dca1cb98e731337b756f4e1bb129413c496" }, { "ID": "azure-keyvault-secrets@4.10.0", "Name": "azure-keyvault-secrets", "Identifier": { "PURL": "pkg:pypi/azure-keyvault-secrets@4.10.0", "UID": "675ea8384da00009", "BOMRef": "pkg:pypi/azure-keyvault-secrets@4.10.0" }, "Version": "4.10.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/azure_keyvault_secrets-4.10.0.dist-info/METADATA", "Digest": "sha1:5a8061494c1c50c49fa47eace47c117fe193a0b4" }, { "ID": "azure-storage-blob@12.28.0", "Name": "azure-storage-blob", "Identifier": { "PURL": "pkg:pypi/azure-storage-blob@12.28.0", "UID": "24d475d6eabe3e2c", "BOMRef": "pkg:pypi/azure-storage-blob@12.28.0" }, "Version": "12.28.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/azure_storage_blob-12.28.0.dist-info/METADATA", "Digest": "sha1:20e7abbd2536ed3374cf440f144cf9ca5c0fb098" }, { "ID": "azure-storage-file-datalake@12.20.0", "Name": "azure-storage-file-datalake", "Identifier": { "PURL": "pkg:pypi/azure-storage-file-datalake@12.20.0", "UID": "8c976beca7aa897", "BOMRef": "pkg:pypi/azure-storage-file-datalake@12.20.0" }, "Version": "12.20.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/azure_storage_file_datalake-12.20.0.dist-info/METADATA", "Digest": "sha1:cc8ebe204539019788e04a26f2510c35575928c2" }, { "ID": "backoff@2.2.1", "Name": "backoff", "Identifier": { "PURL": "pkg:pypi/backoff@2.2.1", "UID": "2415fded234ec5d0", "BOMRef": "pkg:pypi/backoff@2.2.1" }, "Version": "2.2.1", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/backoff-2.2.1.dist-info/METADATA", "Digest": "sha1:ea8b96e2947c9fed16b9c4075c30113fe09fac98" }, { "ID": "boto3@1.40.53", "Name": "boto3", "Identifier": { "PURL": "pkg:pypi/boto3@1.40.53", "UID": "8a0ab32a8cc2bc4c", "BOMRef": "pkg:pypi/boto3@1.40.53" }, "Version": "1.40.53", "Licenses": [ "Apache-2.0" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/boto3-1.40.53.dist-info/METADATA", "Digest": "sha1:c3cd02ceff510cd405a1b3690f7bf4d54939faf8" }, { "ID": "botocore@1.40.61", "Name": "botocore", "Identifier": { "PURL": "pkg:pypi/botocore@1.40.61", "UID": "5a22a5cb2076e77a", "BOMRef": "pkg:pypi/botocore@1.40.61" }, "Version": "1.40.61", "Licenses": [ "Apache-2.0" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/botocore-1.40.61.dist-info/METADATA", "Digest": "sha1:c384355d82af3168472f016558ed2f2e1c77cb85" }, { "ID": "bytecode@0.17.0", "Name": "bytecode", "Identifier": { "PURL": "pkg:pypi/bytecode@0.17.0", "UID": "eb37679fc28842a0", "BOMRef": "pkg:pypi/bytecode@0.17.0" }, "Version": "0.17.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/bytecode-0.17.0.dist-info/METADATA", "Digest": "sha1:65fc4772a46510a0f6186e951e866f5e306a8122" }, { "ID": "certifi@2026.2.25", "Name": "certifi", "Identifier": { "PURL": "pkg:pypi/certifi@2026.2.25", "UID": "fd3074043d68f0d3", "BOMRef": "pkg:pypi/certifi@2026.2.25" }, "Version": "2026.2.25", "Licenses": [ "MPL-2.0" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/certifi-2026.2.25.dist-info/METADATA", "Digest": "sha1:3aeccd85ea183a5ce98317741cad21a5c0a440ca" }, { "ID": "cffi@2.0.0", "Name": "cffi", "Identifier": { "PURL": "pkg:pypi/cffi@2.0.0", "UID": "32e9ec895fb901e3", "BOMRef": "pkg:pypi/cffi@2.0.0" }, "Version": "2.0.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/cffi-2.0.0.dist-info/METADATA", "Digest": "sha1:87e9c9d276c4f4c31f5a314d6a5472f45655674c" }, { "ID": "charset-normalizer@3.4.5", "Name": "charset-normalizer", "Identifier": { "PURL": "pkg:pypi/charset-normalizer@3.4.5", "UID": "4379f835277843e4", "BOMRef": "pkg:pypi/charset-normalizer@3.4.5" }, "Version": "3.4.5", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/charset_normalizer-3.4.5.dist-info/METADATA", "Digest": "sha1:00e4401fcd33605e71bf364eb8ffa2559cdea43f" }, { "ID": "click@8.1.7", "Name": "click", "Identifier": { "PURL": "pkg:pypi/click@8.1.7", "UID": "bef3691c7d3b6fc7", "BOMRef": "pkg:pypi/click@8.1.7" }, "Version": "8.1.7", "Licenses": [ "BSD-3-Clause" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/click-8.1.7.dist-info/METADATA", "Digest": "sha1:5c33361d71534572b6d2d3edd15ac9bad78b59c6" }, { "ID": "coloredlogs@15.0.1", "Name": "coloredlogs", "Identifier": { "PURL": "pkg:pypi/coloredlogs@15.0.1", "UID": "21447f501c83b2c4", "BOMRef": "pkg:pypi/coloredlogs@15.0.1" }, "Version": "15.0.1", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/coloredlogs-15.0.1.dist-info/METADATA", "Digest": "sha1:79d72bae2e23b677e384dedda06c6e922912aac1" }, { "ID": "colorlog@6.10.1", "Name": "colorlog", "Identifier": { "PURL": "pkg:pypi/colorlog@6.10.1", "UID": "8365670fe5dbad77", "BOMRef": "pkg:pypi/colorlog@6.10.1" }, "Version": "6.10.1", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:affa7cb8d33787b4e0f96042bf8c603a0bdfb4ba03d06b48cd82a1705004636b", "DiffID": "sha256:c7026b5cc891045e66209e27b66b9b9ea4bdb8d1af9089327834862b634a42a3" }, "FilePath": "usr/lib/python3.13/site-packages/colorlog-6.10.1.dist-info/METADATA", "Digest": "sha1:1e483d118fd419ad747606c4077726b5c4eb324e" }, { "ID": "cryptography@46.0.5", "Name": "cryptography", "Identifier": { "PURL": "pkg:pypi/cryptography@46.0.5", "UID": "9c049616e8c5bed4", "BOMRef": "pkg:pypi/cryptography@46.0.5" }, "Version": "46.0.5", "Licenses": [ "Apache-2.0 OR BSD-3-Clause" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/cryptography-46.0.5.dist-info/METADATA", "Digest": "sha1:bb40494ca8c495e6edf1214d419d44d57ad11f23" }, { "ID": "ddtrace@2.19.0", "Name": "ddtrace", "Identifier": { "PURL": "pkg:pypi/ddtrace@2.19.0", "UID": "e2422c1cf1905791", "BOMRef": "pkg:pypi/ddtrace@2.19.0" }, "Version": "2.19.0", "Licenses": [ "LICENSE.BSD3" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/ddtrace-2.19.0.dist-info/METADATA", "Digest": "sha1:2ebcd7579775a117bf5f63f482aaee4629f69fe4" }, { "ID": "detect-secrets@1.5.0", "Name": "detect-secrets", "Identifier": { "PURL": "pkg:pypi/detect-secrets@1.5.0", "UID": "f6b8c49c255a9d77", "BOMRef": "pkg:pypi/detect-secrets@1.5.0" }, "Version": "1.5.0", "Licenses": [ "Apache-2.0" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/detect_secrets-1.5.0.dist-info/METADATA", "Digest": "sha1:7d1969bbb2f0319f127b480fe77211aa27750fe0" }, { "ID": "distro@1.9.0", "Name": "distro", "Identifier": { "PURL": "pkg:pypi/distro@1.9.0", "UID": "2ce3428059786b6b", "BOMRef": "pkg:pypi/distro@1.9.0" }, "Version": "1.9.0", "Licenses": [ "Apache-2.0" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/distro-1.9.0.dist-info/METADATA", "Digest": "sha1:ce14620cf14e15a64d2ff574796543f99619e7f3" }, { "ID": "dnspython@2.8.0", "Name": "dnspython", "Identifier": { "PURL": "pkg:pypi/dnspython@2.8.0", "UID": "c02a457b9491fbb4", "BOMRef": "pkg:pypi/dnspython@2.8.0" }, "Version": "2.8.0", "Licenses": [ "ISC" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/dnspython-2.8.0.dist-info/METADATA", "Digest": "sha1:360d6b80b919fa0fc9e41d101229c937531c4eae" }, { "ID": "docstring_parser@0.17.0", "Name": "docstring_parser", "Identifier": { "PURL": "pkg:pypi/docstring-parser@0.17.0", "UID": "f795fd2976cfc1c6", "BOMRef": "pkg:pypi/docstring-parser@0.17.0" }, "Version": "0.17.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/docstring_parser-0.17.0.dist-info/METADATA", "Digest": "sha1:323acb9780928a71e223759cfc8be2793bec7072" }, { "ID": "email-validator@2.3.0", "Name": "email-validator", "Identifier": { "PURL": "pkg:pypi/email-validator@2.3.0", "UID": "4db523fe24b15dc1", "BOMRef": "pkg:pypi/email-validator@2.3.0" }, "Version": "2.3.0", "Licenses": [ "Unlicense" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/email_validator-2.3.0.dist-info/METADATA", "Digest": "sha1:8142c15247202bec284e8950c96b7f43b35ca5bc" }, { "ID": "envier@0.6.1", "Name": "envier", "Identifier": { "PURL": "pkg:pypi/envier@0.6.1", "UID": "799b527690bd895e", "BOMRef": "pkg:pypi/envier@0.6.1" }, "Version": "0.6.1", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/envier-0.6.1.dist-info/METADATA", "Digest": "sha1:ecb20fe2699b6e8934bacad17926b535edc4ec40" }, { "ID": "fastapi@0.120.1", "Name": "fastapi", "Identifier": { "PURL": "pkg:pypi/fastapi@0.120.1", "UID": "b8975580dd2ccef6", "BOMRef": "pkg:pypi/fastapi@0.120.1" }, "Version": "0.120.1", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/fastapi-0.120.1.dist-info/METADATA", "Digest": "sha1:dea486b90696587ab48cbda958327ec048f93eb3" }, { "ID": "fastapi-sso@0.19.0", "Name": "fastapi-sso", "Identifier": { "PURL": "pkg:pypi/fastapi-sso@0.19.0", "UID": "acda4c19875121c8", "BOMRef": "pkg:pypi/fastapi-sso@0.19.0" }, "Version": "0.19.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/fastapi_sso-0.19.0.dist-info/METADATA", "Digest": "sha1:f08f145ee8c7c5c113436e3ba3fb8f1081e8a6fc" }, { "ID": "fastuuid@0.13.5", "Name": "fastuuid", "Identifier": { "PURL": "pkg:pypi/fastuuid@0.13.5", "UID": "5c79303db70a09b4", "BOMRef": "pkg:pypi/fastuuid@0.13.5" }, "Version": "0.13.5", "Licenses": [ "BSD-3-Clause" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/fastuuid-0.13.5.dist-info/METADATA", "Digest": "sha1:589a21152a88244902586741669f828037c88a4f" }, { "ID": "filelock@3.25.1", "Name": "filelock", "Identifier": { "PURL": "pkg:pypi/filelock@3.25.1", "UID": "1f1e0f94a1aedd16", "BOMRef": "pkg:pypi/filelock@3.25.1" }, "Version": "3.25.1", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/filelock-3.25.1.dist-info/METADATA", "Digest": "sha1:d4df3dcc3621988bd49cd59fc36f6c6d1cbbac6c" }, { "ID": "frozenlist@1.8.0", "Name": "frozenlist", "Identifier": { "PURL": "pkg:pypi/frozenlist@1.8.0", "UID": "7863fa4b0c34c287", "BOMRef": "pkg:pypi/frozenlist@1.8.0" }, "Version": "1.8.0", "Licenses": [ "Apache-2.0" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/frozenlist-1.8.0.dist-info/METADATA", "Digest": "sha1:4a37873aab1c5eaffcecd2aa93be12e9e4b2a19c" }, { "ID": "fsspec@2026.2.0", "Name": "fsspec", "Identifier": { "PURL": "pkg:pypi/fsspec@2026.2.0", "UID": "2711412731574128", "BOMRef": "pkg:pypi/fsspec@2026.2.0" }, "Version": "2026.2.0", "Licenses": [ "BSD-3-Clause" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/fsspec-2026.2.0.dist-info/METADATA", "Digest": "sha1:cd54bba9ec98bc422bda0b342e83ea43099aa174" }, { "ID": "google-api-core@2.30.0", "Name": "google-api-core", "Identifier": { "PURL": "pkg:pypi/google-api-core@2.30.0", "UID": "3c94779683d5a091", "BOMRef": "pkg:pypi/google-api-core@2.30.0" }, "Version": "2.30.0", "Licenses": [ "Apache-2.0" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/google_api_core-2.30.0.dist-info/METADATA", "Digest": "sha1:824f9344ce88f9566c9d9173847e9ea97143d293" }, { "ID": "google-auth@2.49.0", "Name": "google-auth", "Identifier": { "PURL": "pkg:pypi/google-auth@2.49.0", "UID": "da8abaa443363023", "BOMRef": "pkg:pypi/google-auth@2.49.0" }, "Version": "2.49.0", "Licenses": [ "Apache-2.0" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/google_auth-2.49.0.dist-info/METADATA", "Digest": "sha1:f49a1ed738866ce1680d24545b9c5aa0e62c99a9" }, { "ID": "google-cloud-aiplatform@1.133.0", "Name": "google-cloud-aiplatform", "Identifier": { "PURL": "pkg:pypi/google-cloud-aiplatform@1.133.0", "UID": "575b6b761dc0fea1", "BOMRef": "pkg:pypi/google-cloud-aiplatform@1.133.0" }, "Version": "1.133.0", "Licenses": [ "Apache-2.0" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/google_cloud_aiplatform-1.133.0.dist-info/METADATA", "Digest": "sha1:23483b425b0649936a17defd0158d0f6c03ca503" }, { "ID": "google-cloud-bigquery@3.40.1", "Name": "google-cloud-bigquery", "Identifier": { "PURL": "pkg:pypi/google-cloud-bigquery@3.40.1", "UID": "4422f0dec31110a", "BOMRef": "pkg:pypi/google-cloud-bigquery@3.40.1" }, "Version": "3.40.1", "Licenses": [ "Apache-2.0" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/google_cloud_bigquery-3.40.1.dist-info/METADATA", "Digest": "sha1:ce2316758a0520c903eb5522d5cf1f39c2c7aa0b" }, { "ID": "google-cloud-core@2.5.0", "Name": "google-cloud-core", "Identifier": { "PURL": "pkg:pypi/google-cloud-core@2.5.0", "UID": "c4b37d6fad53fe8f", "BOMRef": "pkg:pypi/google-cloud-core@2.5.0" }, "Version": "2.5.0", "Licenses": [ "Apache-2.0" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/google_cloud_core-2.5.0.dist-info/METADATA", "Digest": "sha1:2353786cf89c5a50fc3a68db6736b632754e1b76" }, { "ID": "google-cloud-iam@2.19.1", "Name": "google-cloud-iam", "Identifier": { "PURL": "pkg:pypi/google-cloud-iam@2.19.1", "UID": "d59a625bd708369b", "BOMRef": "pkg:pypi/google-cloud-iam@2.19.1" }, "Version": "2.19.1", "Licenses": [ "Apache-2.0" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/google_cloud_iam-2.19.1.dist-info/METADATA", "Digest": "sha1:28391d5c4dd89160b13ec2ef8c597d3164c4c91a" }, { "ID": "google-cloud-resource-manager@1.16.0", "Name": "google-cloud-resource-manager", "Identifier": { "PURL": "pkg:pypi/google-cloud-resource-manager@1.16.0", "UID": "db3c99db23f99816", "BOMRef": "pkg:pypi/google-cloud-resource-manager@1.16.0" }, "Version": "1.16.0", "Licenses": [ "Apache-2.0" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/google_cloud_resource_manager-1.16.0.dist-info/METADATA", "Digest": "sha1:94bdb211cfd6933e89c9e8f1833e3fcb28caae26" }, { "ID": "google-cloud-storage@3.9.0", "Name": "google-cloud-storage", "Identifier": { "PURL": "pkg:pypi/google-cloud-storage@3.9.0", "UID": "e396dbf430a832f4", "BOMRef": "pkg:pypi/google-cloud-storage@3.9.0" }, "Version": "3.9.0", "Licenses": [ "Apache-2.0" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/google_cloud_storage-3.9.0.dist-info/METADATA", "Digest": "sha1:08b50a67c834baff46cb246b9b9d9d6c90ad3a65" }, { "ID": "google-crc32c@1.8.0", "Name": "google-crc32c", "Identifier": { "PURL": "pkg:pypi/google-crc32c@1.8.0", "UID": "de2ba6cfb8758669", "BOMRef": "pkg:pypi/google-crc32c@1.8.0" }, "Version": "1.8.0", "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/google_crc32c-1.8.0.dist-info/METADATA", "Digest": "sha1:740ce2636255b7035fbcef210995df5b4484e1b3" }, { "ID": "google-genai@1.37.0", "Name": "google-genai", "Identifier": { "PURL": "pkg:pypi/google-genai@1.37.0", "UID": "4bc49924aefb93d2", "BOMRef": "pkg:pypi/google-genai@1.37.0" }, "Version": "1.37.0", "Licenses": [ "Apache-2.0" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/google_genai-1.37.0.dist-info/METADATA", "Digest": "sha1:3399706a56fa0d50853cb580a1e032f80a3d4654" }, { "ID": "google-resumable-media@2.8.0", "Name": "google-resumable-media", "Identifier": { "PURL": "pkg:pypi/google-resumable-media@2.8.0", "UID": "e435c7b78469214d", "BOMRef": "pkg:pypi/google-resumable-media@2.8.0" }, "Version": "2.8.0", "Licenses": [ "Apache-2.0" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/google_resumable_media-2.8.0.dist-info/METADATA", "Digest": "sha1:a0a8dc418f86589aa080bb59708ed5aee38faacc" }, { "ID": "googleapis-common-protos@1.73.0", "Name": "googleapis-common-protos", "Identifier": { "PURL": "pkg:pypi/googleapis-common-protos@1.73.0", "UID": "4225fd4523e177c0", "BOMRef": "pkg:pypi/googleapis-common-protos@1.73.0" }, "Version": "1.73.0", "Licenses": [ "Apache-2.0" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/googleapis_common_protos-1.73.0.dist-info/METADATA", "Digest": "sha1:60e256622206f9c2993a5e710bbeefeb68e4d55b" }, { "ID": "grpc-google-iam-v1@0.14.3", "Name": "grpc-google-iam-v1", "Identifier": { "PURL": "pkg:pypi/grpc-google-iam-v1@0.14.3", "UID": "c0406182db5c24c7", "BOMRef": "pkg:pypi/grpc-google-iam-v1@0.14.3" }, "Version": "0.14.3", "Licenses": [ "Apache-2.0" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/grpc_google_iam_v1-0.14.3.dist-info/METADATA", "Digest": "sha1:98adc7e2fe504130f48db8ccb34db6820d396145" }, { "ID": "grpcio@1.78.0", "Name": "grpcio", "Identifier": { "PURL": "pkg:pypi/grpcio@1.78.0", "UID": "b33321b0234738f1", "BOMRef": "pkg:pypi/grpcio@1.78.0" }, "Version": "1.78.0", "Licenses": [ "Apache-2.0" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/grpcio-1.78.0.dist-info/METADATA", "Digest": "sha1:d96608e4adf904c6baba974b5aa102508a8d0839" }, { "ID": "grpcio-status@1.71.2", "Name": "grpcio-status", "Identifier": { "PURL": "pkg:pypi/grpcio-status@1.71.2", "UID": "22dc28aeab5e72e6", "BOMRef": "pkg:pypi/grpcio-status@1.71.2" }, "Version": "1.71.2", "Licenses": [ "Apache-2.0" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/grpcio_status-1.71.2.dist-info/METADATA", "Digest": "sha1:bd80c647a0df7d5b9bda31af73fa704ff4e50c9f" }, { "ID": "gunicorn@23.0.0", "Name": "gunicorn", "Identifier": { "PURL": "pkg:pypi/gunicorn@23.0.0", "UID": "bc5c7b53e6a93c88", "BOMRef": "pkg:pypi/gunicorn@23.0.0" }, "Version": "23.0.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/gunicorn-23.0.0.dist-info/METADATA", "Digest": "sha1:8de2f53497d5444853a1df1f44ff417831194283" }, { "ID": "h11@0.16.0", "Name": "h11", "Identifier": { "PURL": "pkg:pypi/h11@0.16.0", "UID": "15830fb9203403e8", "BOMRef": "pkg:pypi/h11@0.16.0" }, "Version": "0.16.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/h11-0.16.0.dist-info/METADATA", "Digest": "sha1:5d41eddffefef5f6e8ff383a2537e81a38a37807" }, { "ID": "hf-xet@1.4.0", "Name": "hf-xet", "Identifier": { "PURL": "pkg:pypi/hf-xet@1.4.0", "UID": "95da61f277376b60", "BOMRef": "pkg:pypi/hf-xet@1.4.0" }, "Version": "1.4.0", "Licenses": [ "Apache-2.0" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/hf_xet-1.4.0.dist-info/METADATA", "Digest": "sha1:884df9984d3a0aaf253ce0e1da50f67a67c3079f" }, { "ID": "httpcore@1.0.9", "Name": "httpcore", "Identifier": { "PURL": "pkg:pypi/httpcore@1.0.9", "UID": "ba644e60d1a4a9c0", "BOMRef": "pkg:pypi/httpcore@1.0.9" }, "Version": "1.0.9", "Licenses": [ "BSD-3-Clause" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/httpcore-1.0.9.dist-info/METADATA", "Digest": "sha1:2981d359ae33f31d339189a9680db85785339a56" }, { "ID": "httpx@0.28.1", "Name": "httpx", "Identifier": { "PURL": "pkg:pypi/httpx@0.28.1", "UID": "1dd6103b63b46585", "BOMRef": "pkg:pypi/httpx@0.28.1" }, "Version": "0.28.1", "Licenses": [ "BSD-3-Clause" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/httpx-0.28.1.dist-info/METADATA", "Digest": "sha1:537da7e4f29438278e124e10e02d1a500fe33bcc" }, { "ID": "httpx-sse@0.4.3", "Name": "httpx-sse", "Identifier": { "PURL": "pkg:pypi/httpx-sse@0.4.3", "UID": "5072c47a4d964b58", "BOMRef": "pkg:pypi/httpx-sse@0.4.3" }, "Version": "0.4.3", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/httpx_sse-0.4.3.dist-info/METADATA", "Digest": "sha1:df05446be58f0a3a306e50c7ceebef24bb383a6d" }, { "ID": "huggingface_hub@0.36.2", "Name": "huggingface_hub", "Identifier": { "PURL": "pkg:pypi/huggingface-hub@0.36.2", "UID": "732209877f6d0242", "BOMRef": "pkg:pypi/huggingface-hub@0.36.2" }, "Version": "0.36.2", "Licenses": [ "Apache-2.0" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/huggingface_hub-0.36.2.dist-info/METADATA", "Digest": "sha1:c3fb68f58f110a4308ea41f02a48f890697481fe" }, { "ID": "humanfriendly@10.0", "Name": "humanfriendly", "Identifier": { "PURL": "pkg:pypi/humanfriendly@10.0", "UID": "ffb395d7151e76a1", "BOMRef": "pkg:pypi/humanfriendly@10.0" }, "Version": "10.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/humanfriendly-10.0.dist-info/METADATA", "Digest": "sha1:f29e22413e2b6ed83b0bd7935acd2dbb1d830f40" }, { "ID": "idna@3.11", "Name": "idna", "Identifier": { "PURL": "pkg:pypi/idna@3.11", "UID": "bd7901e382ee2d92", "BOMRef": "pkg:pypi/idna@3.11" }, "Version": "3.11", "Licenses": [ "BSD-3-Clause" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/idna-3.11.dist-info/METADATA", "Digest": "sha1:5e73674d19cce0601253436a2e5544abe09b9bc3" }, { "ID": "importlib-metadata@6.8.0", "Name": "importlib-metadata", "Identifier": { "PURL": "pkg:pypi/importlib-metadata@6.8.0", "UID": "8d6e0864da9257a4", "BOMRef": "pkg:pypi/importlib-metadata@6.8.0" }, "Version": "6.8.0", "Licenses": [ "Apache-2.0" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/importlib_metadata-6.8.0.dist-info/METADATA", "Digest": "sha1:691851957e4c1cce8fa41d0f23cd83355dbb8756" }, { "ID": "isodate@0.7.2", "Name": "isodate", "Identifier": { "PURL": "pkg:pypi/isodate@0.7.2", "UID": "b3e760430f2d2411", "BOMRef": "pkg:pypi/isodate@0.7.2" }, "Version": "0.7.2", "Licenses": [ "BSD-3-Clause" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/isodate-0.7.2.dist-info/METADATA", "Digest": "sha1:364399ca9e27df70628e3aff9c8b7b1da601f95d" }, { "ID": "jaraco.context@6.1.1", "Name": "jaraco.context", "Identifier": { "PURL": "pkg:pypi/jaraco.context@6.1.1", "UID": "8b8d9ade0e9be590", "BOMRef": "pkg:pypi/jaraco.context@6.1.1" }, "Version": "6.1.1", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/jaraco_context-6.1.1.dist-info/METADATA", "Digest": "sha1:b943e9aabc84c88039a5ab59dc27a4ab46960356" }, { "ID": "jiter@0.13.0", "Name": "jiter", "Identifier": { "PURL": "pkg:pypi/jiter@0.13.0", "UID": "b47e6e64b4fac773", "BOMRef": "pkg:pypi/jiter@0.13.0" }, "Version": "0.13.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/jiter-0.13.0.dist-info/METADATA", "Digest": "sha1:2a9f923809d4a5bfa70b5c8d13e698904f4eca60" }, { "ID": "jmespath@1.1.0", "Name": "jmespath", "Identifier": { "PURL": "pkg:pypi/jmespath@1.1.0", "UID": "df950137659412fc", "BOMRef": "pkg:pypi/jmespath@1.1.0" }, "Version": "1.1.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/jmespath-1.1.0.dist-info/METADATA", "Digest": "sha1:d3f297922cf04b0cc127a18994ad6e6b947f0cc7" }, { "ID": "jsonschema@4.26.0", "Name": "jsonschema", "Identifier": { "PURL": "pkg:pypi/jsonschema@4.26.0", "UID": "78e6a644fcdda078", "BOMRef": "pkg:pypi/jsonschema@4.26.0" }, "Version": "4.26.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/jsonschema-4.26.0.dist-info/METADATA", "Digest": "sha1:94b3d1a46cf55d74e42c401eaf4a4b71c76cee31" }, { "ID": "jsonschema-path@0.3.4", "Name": "jsonschema-path", "Identifier": { "PURL": "pkg:pypi/jsonschema-path@0.3.4", "UID": "5231ff80a0b01fde", "BOMRef": "pkg:pypi/jsonschema-path@0.3.4" }, "Version": "0.3.4", "Licenses": [ "Apache-2.0" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/jsonschema_path-0.3.4.dist-info/METADATA", "Digest": "sha1:48b69894bc45f3344dbe1daa7be14933b12db09a" }, { "ID": "jsonschema-specifications@2025.9.1", "Name": "jsonschema-specifications", "Identifier": { "PURL": "pkg:pypi/jsonschema-specifications@2025.9.1", "UID": "74fbca043f3460da", "BOMRef": "pkg:pypi/jsonschema-specifications@2025.9.1" }, "Version": "2025.9.1", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/jsonschema_specifications-2025.9.1.dist-info/METADATA", "Digest": "sha1:ac33f477be9d3336ae67bc454f68a9ff39c91cf3" }, { "ID": "langfuse@2.59.7", "Name": "langfuse", "Identifier": { "PURL": "pkg:pypi/langfuse@2.59.7", "UID": "ce23c6a1a7038cfb", "BOMRef": "pkg:pypi/langfuse@2.59.7" }, "Version": "2.59.7", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/langfuse-2.59.7.dist-info/METADATA", "Digest": "sha1:64b00766ce586ee8bc229e1d1c519bbbaccf82af" }, { "ID": "lazy-object-proxy@1.12.0", "Name": "lazy-object-proxy", "Identifier": { "PURL": "pkg:pypi/lazy-object-proxy@1.12.0", "UID": "3dc9e810b3054eff", "BOMRef": "pkg:pypi/lazy-object-proxy@1.12.0" }, "Version": "1.12.0", "Licenses": [ "BSD-2-Clause" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/lazy_object_proxy-1.12.0.dist-info/METADATA", "Digest": "sha1:68e349fa87b22a25e3af674e29698bb08d37a074" }, { "ID": "legacy-cgi@2.6.4", "Name": "legacy-cgi", "Identifier": { "PURL": "pkg:pypi/legacy-cgi@2.6.4", "UID": "9264f0c7e5a9563f", "BOMRef": "pkg:pypi/legacy-cgi@2.6.4" }, "Version": "2.6.4", "Licenses": [ "PSF-2.0" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/legacy_cgi-2.6.4.dist-info/METADATA", "Digest": "sha1:23159c15d8f7c3223df17c75f23eb2d59ef58128" }, { "ID": "litellm@1.82.0", "Name": "litellm", "Identifier": { "PURL": "pkg:pypi/litellm@1.82.0", "UID": "9501edef23a814fc", "BOMRef": "pkg:pypi/litellm@1.82.0" }, "Version": "1.82.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/litellm-1.82.0.dist-info/METADATA", "Digest": "sha1:93d46cc9b5a82c62554f969ea49eb79cd2338074" }, { "ID": "litellm-enterprise@0.1.33", "Name": "litellm-enterprise", "Identifier": { "PURL": "pkg:pypi/litellm-enterprise@0.1.33", "UID": "4474336fca241ce5", "BOMRef": "pkg:pypi/litellm-enterprise@0.1.33" }, "Version": "0.1.33", "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/litellm_enterprise-0.1.33.dist-info/METADATA", "Digest": "sha1:386294a5b0b5010fcd4937c806da2065bd387ced" }, { "ID": "litellm-proxy-extras@0.4.50", "Name": "litellm-proxy-extras", "Identifier": { "PURL": "pkg:pypi/litellm-proxy-extras@0.4.50", "UID": "12f25d8bbfd8eed0", "BOMRef": "pkg:pypi/litellm-proxy-extras@0.4.50" }, "Version": "0.4.50", "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/litellm_proxy_extras-0.4.50.dist-info/METADATA", "Digest": "sha1:a444efdfc7236ef910674fd677ee214f74d7608f" }, { "ID": "llm-sandbox@0.3.31", "Name": "llm-sandbox", "Identifier": { "PURL": "pkg:pypi/llm-sandbox@0.3.31", "UID": "90fd702205143138", "BOMRef": "pkg:pypi/llm-sandbox@0.3.31" }, "Version": "0.3.31", "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/llm_sandbox-0.3.31.dist-info/METADATA", "Digest": "sha1:85bb0474aad9559dff054282fdd4b29a4f92a80e" }, { "ID": "mangum@0.17.0", "Name": "mangum", "Identifier": { "PURL": "pkg:pypi/mangum@0.17.0", "UID": "98d4d44b6d7ca0fa", "BOMRef": "pkg:pypi/mangum@0.17.0" }, "Version": "0.17.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/mangum-0.17.0.dist-info/METADATA", "Digest": "sha1:0957be909988180dffafaf9c6ef2301be9a0739b" }, { "ID": "markdown-it-py@4.0.0", "Name": "markdown-it-py", "Identifier": { "PURL": "pkg:pypi/markdown-it-py@4.0.0", "UID": "c17032fccb417c07", "BOMRef": "pkg:pypi/markdown-it-py@4.0.0" }, "Version": "4.0.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/markdown_it_py-4.0.0.dist-info/METADATA", "Digest": "sha1:0cee543cadd1bdc67e8d1acd6fae8cc419523f4c" }, { "ID": "mcp@1.25.0", "Name": "mcp", "Identifier": { "PURL": "pkg:pypi/mcp@1.25.0", "UID": "4d00c4fc357a162c", "BOMRef": "pkg:pypi/mcp@1.25.0" }, "Version": "1.25.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/mcp-1.25.0.dist-info/METADATA", "Digest": "sha1:c86fd9fb3b07f6b9cb4a3ade6abcc16c1c763399" }, { "ID": "mdurl@0.1.2", "Name": "mdurl", "Identifier": { "PURL": "pkg:pypi/mdurl@0.1.2", "UID": "64d0ecd8e19a25e7", "BOMRef": "pkg:pypi/mdurl@0.1.2" }, "Version": "0.1.2", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/mdurl-0.1.2.dist-info/METADATA", "Digest": "sha1:cc9d84bf84be59dd90368ea2f5e3a9fae8f0f1b7" }, { "ID": "ml-dtypes@0.4.1", "Name": "ml-dtypes", "Identifier": { "PURL": "pkg:pypi/ml-dtypes@0.4.1", "UID": "7a707051d2fae46", "BOMRef": "pkg:pypi/ml-dtypes@0.4.1" }, "Version": "0.4.1", "Licenses": [ "Apache-2.0" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/ml_dtypes-0.4.1.dist-info/METADATA", "Digest": "sha1:28e53cadb8495b4a770c99d9392b1c79a14f4c8d" }, { "ID": "more-itertools@10.8.0", "Name": "more-itertools", "Identifier": { "PURL": "pkg:pypi/more-itertools@10.8.0", "UID": "6354c203f39848d0", "BOMRef": "pkg:pypi/more-itertools@10.8.0" }, "Version": "10.8.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/more_itertools-10.8.0.dist-info/METADATA", "Digest": "sha1:55aef894a0f39f280471306f0c5ecf3730ff5863" }, { "ID": "msal@1.35.1", "Name": "msal", "Identifier": { "PURL": "pkg:pypi/msal@1.35.1", "UID": "e1d53e43538c1d95", "BOMRef": "pkg:pypi/msal@1.35.1" }, "Version": "1.35.1", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/msal-1.35.1.dist-info/METADATA", "Digest": "sha1:48b90ac0280673e12f38ea3aa70286eae548bdb3" }, { "ID": "msal-extensions@1.3.1", "Name": "msal-extensions", "Identifier": { "PURL": "pkg:pypi/msal-extensions@1.3.1", "UID": "6bb0359914bad7ca", "BOMRef": "pkg:pypi/msal-extensions@1.3.1" }, "Version": "1.3.1", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/msal_extensions-1.3.1.dist-info/METADATA", "Digest": "sha1:41015e491016a80539109491a22adb22f7c7dddd" }, { "ID": "multidict@6.7.1", "Name": "multidict", "Identifier": { "PURL": "pkg:pypi/multidict@6.7.1", "UID": "b17b77730583820d", "BOMRef": "pkg:pypi/multidict@6.7.1" }, "Version": "6.7.1", "Licenses": [ "Apache-2.0" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/multidict-6.7.1.dist-info/METADATA", "Digest": "sha1:216b572c03dd786e9e08cb0ed5e833a9ec0fd494" }, { "ID": "nodeenv@1.10.0", "Name": "nodeenv", "Identifier": { "PURL": "pkg:pypi/nodeenv@1.10.0", "UID": "104777606439443d", "BOMRef": "pkg:pypi/nodeenv@1.10.0" }, "Version": "1.10.0", "Licenses": [ "BSD-3-Clause" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/nodeenv-1.10.0.dist-info/METADATA", "Digest": "sha1:1b29a746e209117735cc705714358dbf9e858eb4" }, { "ID": "nodejs-wheel-binaries@24.13.1", "Name": "nodejs-wheel-binaries", "Identifier": { "PURL": "pkg:pypi/nodejs-wheel-binaries@24.13.1", "UID": "ba3f0a05587e9d9f", "BOMRef": "pkg:pypi/nodejs-wheel-binaries@24.13.1" }, "Version": "24.13.1", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/nodejs_wheel_binaries-24.13.1.dist-info/METADATA", "Digest": "sha1:9ae91a866196ce7d03c5ecaf3c513503bee6933f" }, { "ID": "numpy@2.4.3", "Name": "numpy", "Identifier": { "PURL": "pkg:pypi/numpy@2.4.3", "UID": "a27bdbffbb92adb", "BOMRef": "pkg:pypi/numpy@2.4.3" }, "Version": "2.4.3", "Licenses": [ "BSD-3-Clause AND 0BSD AND MIT AND Zlib AND CC0-1.0" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/numpy-2.4.3.dist-info/METADATA", "Digest": "sha1:c31fa4244522dcbcc30517c431f2d039b4b95b85" }, { "ID": "oauthlib@3.3.1", "Name": "oauthlib", "Identifier": { "PURL": "pkg:pypi/oauthlib@3.3.1", "UID": "e506231a5bd88b32", "BOMRef": "pkg:pypi/oauthlib@3.3.1" }, "Version": "3.3.1", "Licenses": [ "BSD-3-Clause" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/oauthlib-3.3.1.dist-info/METADATA", "Digest": "sha1:9ba5229bceb66742065501d44c4e07f8b401d4c8" }, { "ID": "openai@2.24.0", "Name": "openai", "Identifier": { "PURL": "pkg:pypi/openai@2.24.0", "UID": "5e2aceb89ce9bdf6", "BOMRef": "pkg:pypi/openai@2.24.0" }, "Version": "2.24.0", "Licenses": [ "Apache-2.0" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/openai-2.24.0.dist-info/METADATA", "Digest": "sha1:a92f17b796b0bbf37c4386262b71ddea703ee0fa" }, { "ID": "openapi-core@0.21.0", "Name": "openapi-core", "Identifier": { "PURL": "pkg:pypi/openapi-core@0.21.0", "UID": "11767933a2c00dd7", "BOMRef": "pkg:pypi/openapi-core@0.21.0" }, "Version": "0.21.0", "Licenses": [ "BSD-3-Clause" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/openapi_core-0.21.0.dist-info/METADATA", "Digest": "sha1:23d2501e93de078ce5136cd7b4e20a7463c210f4" }, { "ID": "openapi-schema-validator@0.6.3", "Name": "openapi-schema-validator", "Identifier": { "PURL": "pkg:pypi/openapi-schema-validator@0.6.3", "UID": "a1e3b48cca31c89c", "BOMRef": "pkg:pypi/openapi-schema-validator@0.6.3" }, "Version": "0.6.3", "Licenses": [ "BSD-3-Clause" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/openapi_schema_validator-0.6.3.dist-info/METADATA", "Digest": "sha1:94ac2dfdccefaac1f8f6efc0ce4e4713274af79f" }, { "ID": "openapi-spec-validator@0.7.2", "Name": "openapi-spec-validator", "Identifier": { "PURL": "pkg:pypi/openapi-spec-validator@0.7.2", "UID": "bba1b0784d1fb8c6", "BOMRef": "pkg:pypi/openapi-spec-validator@0.7.2" }, "Version": "0.7.2", "Licenses": [ "Apache-2.0" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/openapi_spec_validator-0.7.2.dist-info/METADATA", "Digest": "sha1:3b8226cdb965b31b940c1bfaba9d0b337cc0c8f8" }, { "ID": "opentelemetry-api@1.28.0", "Name": "opentelemetry-api", "Identifier": { "PURL": "pkg:pypi/opentelemetry-api@1.28.0", "UID": "6409cad2df46ee50", "BOMRef": "pkg:pypi/opentelemetry-api@1.28.0" }, "Version": "1.28.0", "Licenses": [ "Apache-2.0" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/opentelemetry_api-1.28.0.dist-info/METADATA", "Digest": "sha1:fa7a37347c7a77b570878666db0821d85e58a470" }, { "ID": "opentelemetry-exporter-otlp@1.28.0", "Name": "opentelemetry-exporter-otlp", "Identifier": { "PURL": "pkg:pypi/opentelemetry-exporter-otlp@1.28.0", "UID": "c80d95b3b2e6f436", "BOMRef": "pkg:pypi/opentelemetry-exporter-otlp@1.28.0" }, "Version": "1.28.0", "Licenses": [ "Apache-2.0" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/opentelemetry_exporter_otlp-1.28.0.dist-info/METADATA", "Digest": "sha1:02d9d528c93b4a483c217803ff2b5b14dff509ef" }, { "ID": "opentelemetry-exporter-otlp-proto-common@1.28.0", "Name": "opentelemetry-exporter-otlp-proto-common", "Identifier": { "PURL": "pkg:pypi/opentelemetry-exporter-otlp-proto-common@1.28.0", "UID": "ec71859fcdcf12db", "BOMRef": "pkg:pypi/opentelemetry-exporter-otlp-proto-common@1.28.0" }, "Version": "1.28.0", "Licenses": [ "Apache-2.0" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/opentelemetry_exporter_otlp_proto_common-1.28.0.dist-info/METADATA", "Digest": "sha1:9b898d5238fd7ac09e303fb6fddbe084603de874" }, { "ID": "opentelemetry-exporter-otlp-proto-grpc@1.28.0", "Name": "opentelemetry-exporter-otlp-proto-grpc", "Identifier": { "PURL": "pkg:pypi/opentelemetry-exporter-otlp-proto-grpc@1.28.0", "UID": "7faf2d893f10c9a9", "BOMRef": "pkg:pypi/opentelemetry-exporter-otlp-proto-grpc@1.28.0" }, "Version": "1.28.0", "Licenses": [ "Apache-2.0" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/opentelemetry_exporter_otlp_proto_grpc-1.28.0.dist-info/METADATA", "Digest": "sha1:4d2e1a9be4c683f90b3116732d154d789efb6de5" }, { "ID": "opentelemetry-exporter-otlp-proto-http@1.28.0", "Name": "opentelemetry-exporter-otlp-proto-http", "Identifier": { "PURL": "pkg:pypi/opentelemetry-exporter-otlp-proto-http@1.28.0", "UID": "dcd00078e8b548ec", "BOMRef": "pkg:pypi/opentelemetry-exporter-otlp-proto-http@1.28.0" }, "Version": "1.28.0", "Licenses": [ "Apache-2.0" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/opentelemetry_exporter_otlp_proto_http-1.28.0.dist-info/METADATA", "Digest": "sha1:f7029b101ac39ca429c16dfbfbd1f67d7da1e28c" }, { "ID": "opentelemetry-proto@1.28.0", "Name": "opentelemetry-proto", "Identifier": { "PURL": "pkg:pypi/opentelemetry-proto@1.28.0", "UID": "f8207ab0204478fa", "BOMRef": "pkg:pypi/opentelemetry-proto@1.28.0" }, "Version": "1.28.0", "Licenses": [ "Apache-2.0" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/opentelemetry_proto-1.28.0.dist-info/METADATA", "Digest": "sha1:2f4cc88e72c49fd14c43d3160427ec7631e420ba" }, { "ID": "opentelemetry-sdk@1.28.0", "Name": "opentelemetry-sdk", "Identifier": { "PURL": "pkg:pypi/opentelemetry-sdk@1.28.0", "UID": "ef670e18431e966b", "BOMRef": "pkg:pypi/opentelemetry-sdk@1.28.0" }, "Version": "1.28.0", "Licenses": [ "Apache-2.0" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/opentelemetry_sdk-1.28.0.dist-info/METADATA", "Digest": "sha1:ff78308a4de96861a2b9afbecc1745376f09d82b" }, { "ID": "opentelemetry-semantic-conventions@0.49b0", "Name": "opentelemetry-semantic-conventions", "Identifier": { "PURL": "pkg:pypi/opentelemetry-semantic-conventions@0.49b0", "UID": "95dad4695c7c72cf", "BOMRef": "pkg:pypi/opentelemetry-semantic-conventions@0.49b0" }, "Version": "0.49b0", "Licenses": [ "Apache-2.0" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/opentelemetry_semantic_conventions-0.49b0.dist-info/METADATA", "Digest": "sha1:2389733e201fd7a0ec508bbc2f1e32a23488c45e" }, { "ID": "orjson@3.11.7", "Name": "orjson", "Identifier": { "PURL": "pkg:pypi/orjson@3.11.7", "UID": "a6c3c3e9f11c5b7", "BOMRef": "pkg:pypi/orjson@3.11.7" }, "Version": "3.11.7", "Licenses": [ "MPL-2.0 AND (Apache-2.0 OR MIT)" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/orjson-3.11.7.dist-info/METADATA", "Digest": "sha1:2b55fc97cbe074ef19ee5b25d2ae0613276e259e" }, { "ID": "packaging@24.2", "Name": "packaging", "Identifier": { "PURL": "pkg:pypi/packaging@24.2", "UID": "45195145da0c53aa", "BOMRef": "pkg:pypi/packaging@24.2" }, "Version": "24.2", "Licenses": [ "Apache-2.0", "BSD-3-Clause" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/packaging-24.2.dist-info/METADATA", "Digest": "sha1:292b8d19cdc308e072817b6407cac3cb5175a060" }, { "ID": "pathable@0.4.4", "Name": "pathable", "Identifier": { "PURL": "pkg:pypi/pathable@0.4.4", "UID": "4e28de53aa6054cf", "BOMRef": "pkg:pypi/pathable@0.4.4" }, "Version": "0.4.4", "Licenses": [ "Apache-2.0" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/pathable-0.4.4.dist-info/METADATA", "Digest": "sha1:866e61605d29a563f1cdd110899065ddb5f2f482" }, { "ID": "pillow@12.1.1", "Name": "pillow", "Identifier": { "PURL": "pkg:pypi/pillow@12.1.1", "UID": "55e6bdd02fd9a3b2", "BOMRef": "pkg:pypi/pillow@12.1.1" }, "Version": "12.1.1", "Licenses": [ "MIT-CMU" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/pillow-12.1.1.dist-info/METADATA", "Digest": "sha1:8ede85617f65f1bcb1404d13c86a40e01897a9b1" }, { "ID": "polars@1.31.0", "Name": "polars", "Identifier": { "PURL": "pkg:pypi/polars@1.31.0", "UID": "33a17350fa42ded3", "BOMRef": "pkg:pypi/polars@1.31.0" }, "Version": "1.31.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/polars-1.31.0.dist-info/METADATA", "Digest": "sha1:9372c8d51ed35260721b244d0f1432df652171cf" }, { "ID": "prisma@0.11.0", "Name": "prisma", "Identifier": { "PURL": "pkg:pypi/prisma@0.11.0", "UID": "71e0139334757720", "BOMRef": "pkg:pypi/prisma@0.11.0" }, "Version": "0.11.0", "Licenses": [ "Apache-2.0" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/prisma-0.11.0.dist-info/METADATA", "Digest": "sha1:fad8c94f4fab264e96c18a22151e04c0cdf411b0" }, { "ID": "prometheus_client@0.20.0", "Name": "prometheus_client", "Identifier": { "PURL": "pkg:pypi/prometheus-client@0.20.0", "UID": "a6b2dc17846d452d", "BOMRef": "pkg:pypi/prometheus-client@0.20.0" }, "Version": "0.20.0", "Licenses": [ "Apache-2.0" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/prometheus_client-0.20.0.dist-info/METADATA", "Digest": "sha1:ca9ab1f552aae8ed12e1084fd9c8347782cb1049" }, { "ID": "propcache@0.4.1", "Name": "propcache", "Identifier": { "PURL": "pkg:pypi/propcache@0.4.1", "UID": "a79208b375da9288", "BOMRef": "pkg:pypi/propcache@0.4.1" }, "Version": "0.4.1", "Licenses": [ "Apache-2.0" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/propcache-0.4.1.dist-info/METADATA", "Digest": "sha1:9b2af7eeab4bcb9bad4ba6d407baa00869b8168c" }, { "ID": "proto-plus@1.27.1", "Name": "proto-plus", "Identifier": { "PURL": "pkg:pypi/proto-plus@1.27.1", "UID": "ad0797f0e6916472", "BOMRef": "pkg:pypi/proto-plus@1.27.1" }, "Version": "1.27.1", "Licenses": [ "Apache-2.0" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/proto_plus-1.27.1.dist-info/METADATA", "Digest": "sha1:f256867207ef1543010030633cf2f7669c66591c" }, { "ID": "protobuf@5.29.6", "Name": "protobuf", "Identifier": { "PURL": "pkg:pypi/protobuf@5.29.6", "UID": "1dac573aed8cae84", "BOMRef": "pkg:pypi/protobuf@5.29.6" }, "Version": "5.29.6", "Licenses": [ "BSD-3-Clause" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/protobuf-5.29.6.dist-info/METADATA", "Digest": "sha1:f6ba7e2f92bfad0493f3bdc530ecf2398f28d411" }, { "ID": "pyasn1@0.6.2", "Name": "pyasn1", "Identifier": { "PURL": "pkg:pypi/pyasn1@0.6.2", "UID": "dc27fd2fd7b26cd5", "BOMRef": "pkg:pypi/pyasn1@0.6.2" }, "Version": "0.6.2", "Licenses": [ "BSD-2-Clause" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/pyasn1-0.6.2.dist-info/METADATA", "Digest": "sha1:9e49d4b851f49962151f61b10a5d9c65e5b8eade" }, { "ID": "pyasn1_modules@0.4.2", "Name": "pyasn1_modules", "Identifier": { "PURL": "pkg:pypi/pyasn1-modules@0.4.2", "UID": "6788494078b20864", "BOMRef": "pkg:pypi/pyasn1-modules@0.4.2" }, "Version": "0.4.2", "Licenses": [ "BSD-3-Clause" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/pyasn1_modules-0.4.2.dist-info/METADATA", "Digest": "sha1:ff67c376a06e456e4caa8a256505a2298f5e7141" }, { "ID": "pycparser@3.0", "Name": "pycparser", "Identifier": { "PURL": "pkg:pypi/pycparser@3.0", "UID": "d1fda2d4c153148d", "BOMRef": "pkg:pypi/pycparser@3.0" }, "Version": "3.0", "Licenses": [ "BSD-3-Clause" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/pycparser-3.0.dist-info/METADATA", "Digest": "sha1:ec46323dcd4dd2f7742b74b09cc0b030e330e46f" }, { "ID": "pydantic@2.12.5", "Name": "pydantic", "Identifier": { "PURL": "pkg:pypi/pydantic@2.12.5", "UID": "f875ea3c8521cb6", "BOMRef": "pkg:pypi/pydantic@2.12.5" }, "Version": "2.12.5", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/pydantic-2.12.5.dist-info/METADATA", "Digest": "sha1:83683052da3c86191d3ce41d60fa7f9780cf0478" }, { "ID": "pydantic-settings@2.13.1", "Name": "pydantic-settings", "Identifier": { "PURL": "pkg:pypi/pydantic-settings@2.13.1", "UID": "b7f0c883805ddd1c", "BOMRef": "pkg:pypi/pydantic-settings@2.13.1" }, "Version": "2.13.1", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/pydantic_settings-2.13.1.dist-info/METADATA", "Digest": "sha1:b20e7981819ecb354830015a55fa8bcb098c5687" }, { "ID": "pydantic_core@2.41.5", "Name": "pydantic_core", "Identifier": { "PURL": "pkg:pypi/pydantic-core@2.41.5", "UID": "36ec6380dc538032", "BOMRef": "pkg:pypi/pydantic-core@2.41.5" }, "Version": "2.41.5", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/pydantic_core-2.41.5.dist-info/METADATA", "Digest": "sha1:07d49fc75e0fd822fcc2719c0bbece0049fba67a" }, { "ID": "pypdf@6.8.0", "Name": "pypdf", "Identifier": { "PURL": "pkg:pypi/pypdf@6.8.0", "UID": "4f400fceaf6ebb92", "BOMRef": "pkg:pypi/pypdf@6.8.0" }, "Version": "6.8.0", "Licenses": [ "BSD-3-Clause" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/pypdf-6.8.0.dist-info/METADATA", "Digest": "sha1:1a34889af3e0d6531f0b1c247d130e7ecf1f59b9" }, { "ID": "python-dateutil@2.9.0.post0", "Name": "python-dateutil", "Identifier": { "PURL": "pkg:pypi/python-dateutil@2.9.0.post0", "UID": "a3e0de1c3f2dea7c", "BOMRef": "pkg:pypi/python-dateutil@2.9.0.post0" }, "Version": "2.9.0.post0", "Licenses": [ "BSD-3-Clause", "Apache-2.0" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/python_dateutil-2.9.0.post0.dist-info/METADATA", "Digest": "sha1:7a3c35abd86cd96034d5afb0d4b241dc9e13e6f8" }, { "ID": "python-dotenv@1.0.1", "Name": "python-dotenv", "Identifier": { "PURL": "pkg:pypi/python-dotenv@1.0.1", "UID": "a45a68348b77cda6", "BOMRef": "pkg:pypi/python-dotenv@1.0.1" }, "Version": "1.0.1", "Licenses": [ "BSD-3-Clause" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/python_dotenv-1.0.1.dist-info/METADATA", "Digest": "sha1:e0a2e23c662b53538eed76a837fb7ecc9327df7e" }, { "ID": "python-multipart@0.0.22", "Name": "python-multipart", "Identifier": { "PURL": "pkg:pypi/python-multipart@0.0.22", "UID": "49c1fbe55f93b156", "BOMRef": "pkg:pypi/python-multipart@0.0.22" }, "Version": "0.0.22", "Licenses": [ "Apache-2.0" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/python_multipart-0.0.22.dist-info/METADATA", "Digest": "sha1:f8bfd84700d227e7438d2377ff7c8585ac4e11cd" }, { "ID": "python-ulid@3.1.0", "Name": "python-ulid", "Identifier": { "PURL": "pkg:pypi/python-ulid@3.1.0", "UID": "acd8da82c3d56858", "BOMRef": "pkg:pypi/python-ulid@3.1.0" }, "Version": "3.1.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/python_ulid-3.1.0.dist-info/METADATA", "Digest": "sha1:4c8b8c9ccc57da11803c277c04fd19bccf8bbe4d" }, { "ID": "pytz@2026.1.post1", "Name": "pytz", "Identifier": { "PURL": "pkg:pypi/pytz@2026.1.post1", "UID": "cd79c33d8636a7f0", "BOMRef": "pkg:pypi/pytz@2026.1.post1" }, "Version": "2026.1.post1", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/pytz-2026.1.post1.dist-info/METADATA", "Digest": "sha1:df217c097de397f1de53d96dd4b41be7d2a35266" }, { "ID": "redis@5.2.1", "Name": "redis", "Identifier": { "PURL": "pkg:pypi/redis@5.2.1", "UID": "5793446ad80bae8d", "BOMRef": "pkg:pypi/redis@5.2.1" }, "Version": "5.2.1", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/redis-5.2.1.dist-info/METADATA", "Digest": "sha1:27194d5ec4e7a9cda79f44d14513c056aff7d483" }, { "ID": "redisvl@0.4.1", "Name": "redisvl", "Identifier": { "PURL": "pkg:pypi/redisvl@0.4.1", "UID": "c7ba3b62acf6fe7d", "BOMRef": "pkg:pypi/redisvl@0.4.1" }, "Version": "0.4.1", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/redisvl-0.4.1.dist-info/METADATA", "Digest": "sha1:5907c76977fda13f87074bb069abf46d89f26435" }, { "ID": "referencing@0.36.2", "Name": "referencing", "Identifier": { "PURL": "pkg:pypi/referencing@0.36.2", "UID": "9958f44fcac6156d", "BOMRef": "pkg:pypi/referencing@0.36.2" }, "Version": "0.36.2", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/referencing-0.36.2.dist-info/METADATA", "Digest": "sha1:cf1208e207b8130e0abf63be5c1dac8598fb4049" }, { "ID": "regex@2026.2.28", "Name": "regex", "Identifier": { "PURL": "pkg:pypi/regex@2026.2.28", "UID": "7a694fc50121a31a", "BOMRef": "pkg:pypi/regex@2026.2.28" }, "Version": "2026.2.28", "Licenses": [ "Apache-2.0 AND CNRI-Python" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/regex-2026.2.28.dist-info/METADATA", "Digest": "sha1:23e3a496ae8c75af76ca38325bb461c89b6913c6" }, { "ID": "requests@2.32.5", "Name": "requests", "Identifier": { "PURL": "pkg:pypi/requests@2.32.5", "UID": "f1721927ee3ff26f", "BOMRef": "pkg:pypi/requests@2.32.5" }, "Version": "2.32.5", "Licenses": [ "Apache-2.0" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/requests-2.32.5.dist-info/METADATA", "Digest": "sha1:ca17920e69f3c7103322151275139cf487e4da08" }, { "ID": "requests-toolbelt@1.0.0", "Name": "requests-toolbelt", "Identifier": { "PURL": "pkg:pypi/requests-toolbelt@1.0.0", "UID": "37cb25b1864734b1", "BOMRef": "pkg:pypi/requests-toolbelt@1.0.0" }, "Version": "1.0.0", "Licenses": [ "Apache-2.0" ], "Layer": { "Digest": "sha256:affa7cb8d33787b4e0f96042bf8c603a0bdfb4ba03d06b48cd82a1705004636b", "DiffID": "sha256:c7026b5cc891045e66209e27b66b9b9ea4bdb8d1af9089327834862b634a42a3" }, "FilePath": "usr/lib/python3.13/site-packages/requests_toolbelt-1.0.0.dist-info/METADATA", "Digest": "sha1:171fbbc84e8b7216e237b702f3fda539ffb1e487" }, { "ID": "rfc3339-validator@0.1.4", "Name": "rfc3339-validator", "Identifier": { "PURL": "pkg:pypi/rfc3339-validator@0.1.4", "UID": "19336afb0a72a844", "BOMRef": "pkg:pypi/rfc3339-validator@0.1.4" }, "Version": "0.1.4", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/rfc3339_validator-0.1.4.dist-info/METADATA", "Digest": "sha1:b8cc2c804bf4cb64b4573a802305f3d0dc7e9a91" }, { "ID": "rich@13.7.1", "Name": "rich", "Identifier": { "PURL": "pkg:pypi/rich@13.7.1", "UID": "22bb32e832da8275", "BOMRef": "pkg:pypi/rich@13.7.1" }, "Version": "13.7.1", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/rich-13.7.1.dist-info/METADATA", "Digest": "sha1:bf3cca748ddf06213ddb6911d0b2d437f202533b" }, { "ID": "rpds-py@0.30.0", "Name": "rpds-py", "Identifier": { "PURL": "pkg:pypi/rpds-py@0.30.0", "UID": "9fef3104c67ce78e", "BOMRef": "pkg:pypi/rpds-py@0.30.0" }, "Version": "0.30.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/rpds_py-0.30.0.dist-info/METADATA", "Digest": "sha1:9eef46c842a0ca6229680d7bfc1272958efdcc5a" }, { "ID": "rsa@4.9.1", "Name": "rsa", "Identifier": { "PURL": "pkg:pypi/rsa@4.9.1", "UID": "b37e032aa64e9236", "BOMRef": "pkg:pypi/rsa@4.9.1" }, "Version": "4.9.1", "Licenses": [ "Apache-2.0" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/rsa-4.9.1.dist-info/METADATA", "Digest": "sha1:a2f68fc042a03952873edfefafda03c04787a56f" }, { "ID": "s3transfer@0.14.0", "Name": "s3transfer", "Identifier": { "PURL": "pkg:pypi/s3transfer@0.14.0", "UID": "e8aa8bbf85e5d8f2", "BOMRef": "pkg:pypi/s3transfer@0.14.0" }, "Version": "0.14.0", "Licenses": [ "Apache-2.0" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/s3transfer-0.14.0.dist-info/METADATA", "Digest": "sha1:dd9c4cd2d179b27942830646a152d8f484ca7800" }, { "ID": "semantic-router@0.1.11", "Name": "semantic-router", "Identifier": { "PURL": "pkg:pypi/semantic-router@0.1.11", "UID": "b381d84b6ec67f13", "BOMRef": "pkg:pypi/semantic-router@0.1.11" }, "Version": "0.1.11", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:affa7cb8d33787b4e0f96042bf8c603a0bdfb4ba03d06b48cd82a1705004636b", "DiffID": "sha256:c7026b5cc891045e66209e27b66b9b9ea4bdb8d1af9089327834862b634a42a3" }, "FilePath": "usr/lib/python3.13/site-packages/semantic_router-0.1.11.dist-info/METADATA", "Digest": "sha1:7de93f4f62c6d698a4693fb0c0380fdf2d9456a3" }, { "ID": "sentry-sdk@2.21.0", "Name": "sentry-sdk", "Identifier": { "PURL": "pkg:pypi/sentry-sdk@2.21.0", "UID": "6d9ca2fc90e36929", "BOMRef": "pkg:pypi/sentry-sdk@2.21.0" }, "Version": "2.21.0", "Licenses": [ "BSD-3-Clause" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/sentry_sdk-2.21.0.dist-info/METADATA", "Digest": "sha1:5af3250fb5606b6a97f62d83513d6010a0d3954f" }, { "ID": "six@1.17.0", "Name": "six", "Identifier": { "PURL": "pkg:pypi/six@1.17.0", "UID": "4ffa8250031d5a4e", "BOMRef": "pkg:pypi/six@1.17.0" }, "Version": "1.17.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/six-1.17.0.dist-info/METADATA", "Digest": "sha1:483a26554261f6c839703c0e1183f3ef33ff97f1" }, { "ID": "sniffio@1.3.1", "Name": "sniffio", "Identifier": { "PURL": "pkg:pypi/sniffio@1.3.1", "UID": "3ed6bb6f0a006efe", "BOMRef": "pkg:pypi/sniffio@1.3.1" }, "Version": "1.3.1", "Licenses": [ "MIT", "Apache-2.0" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/sniffio-1.3.1.dist-info/METADATA", "Digest": "sha1:bc1d7aead770fe23c8d22666b84558edb3686da3" }, { "ID": "soundfile@0.12.1", "Name": "soundfile", "Identifier": { "PURL": "pkg:pypi/soundfile@0.12.1", "UID": "7b5718b38edba0bb", "BOMRef": "pkg:pypi/soundfile@0.12.1" }, "Version": "0.12.1", "Licenses": [ "BSD-3-Clause" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/soundfile-0.12.1.dist-info/METADATA", "Digest": "sha1:b5ce3ad2ef849be1c4195d05ca730e0f7905e90b" }, { "ID": "sse-starlette@3.3.2", "Name": "sse-starlette", "Identifier": { "PURL": "pkg:pypi/sse-starlette@3.3.2", "UID": "4390cd6b6ba98f70", "BOMRef": "pkg:pypi/sse-starlette@3.3.2" }, "Version": "3.3.2", "Licenses": [ "BSD-3-Clause" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/sse_starlette-3.3.2.dist-info/METADATA", "Digest": "sha1:4befc21825871c63beb1e56c5b63651186c23442" }, { "ID": "starlette@0.49.1", "Name": "starlette", "Identifier": { "PURL": "pkg:pypi/starlette@0.49.1", "UID": "3ab08ae799da5732", "BOMRef": "pkg:pypi/starlette@0.49.1" }, "Version": "0.49.1", "Licenses": [ "BSD-3-Clause" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/starlette-0.49.1.dist-info/METADATA", "Digest": "sha1:d2dc5927de72d847252d292615f15065928238dc" }, { "ID": "tabulate@0.9.0", "Name": "tabulate", "Identifier": { "PURL": "pkg:pypi/tabulate@0.9.0", "UID": "39080365b2d2449d", "BOMRef": "pkg:pypi/tabulate@0.9.0" }, "Version": "0.9.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/tabulate-0.9.0.dist-info/METADATA", "Digest": "sha1:046f2344c8bedde41b94133c1322ae928e80e738" }, { "ID": "tenacity@8.5.0", "Name": "tenacity", "Identifier": { "PURL": "pkg:pypi/tenacity@8.5.0", "UID": "8f750b20e094f56a", "BOMRef": "pkg:pypi/tenacity@8.5.0" }, "Version": "8.5.0", "Licenses": [ "Apache-2.0" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/tenacity-8.5.0.dist-info/METADATA", "Digest": "sha1:67c962294c30afecad8066ac633a11bd658c5148" }, { "ID": "tiktoken@0.8.0", "Name": "tiktoken", "Identifier": { "PURL": "pkg:pypi/tiktoken@0.8.0", "UID": "ceb9efba7e7d8204", "BOMRef": "pkg:pypi/tiktoken@0.8.0" }, "Version": "0.8.0", "Licenses": [ "MIT License Copyright (c) 2022 OpenAI, Shantanu Jain Permission is hereby granted, free of charge, to any person obtaining a copy of this software and associated documentation files (the \"Software\"), to deal in the Software without restriction, including without limitation the rights to use, copy, modify, merge, publish, distribute, sublicense, and/or sell copies of the Software, and to permit persons to whom the Software is furnished to do so, subject to the following conditions: The above copyright notice and this permission notice shall be included in all copies or substantial portions of the Software. THE SOFTWARE IS PROVIDED \"AS IS\", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE." ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/tiktoken-0.8.0.dist-info/METADATA", "Digest": "sha1:9d84201eb7fb511e2757fbd00150263ff31577b8" }, { "ID": "tokenizers@0.20.2", "Name": "tokenizers", "Identifier": { "PURL": "pkg:pypi/tokenizers@0.20.2", "UID": "5316b8ced2d18168", "BOMRef": "pkg:pypi/tokenizers@0.20.2" }, "Version": "0.20.2", "Licenses": [ "Apache-2.0" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/tokenizers-0.20.2.dist-info/METADATA", "Digest": "sha1:86c509fc1d122a9bba1c089e9d38ddd1c56d64cd" }, { "ID": "tomlkit@0.14.0", "Name": "tomlkit", "Identifier": { "PURL": "pkg:pypi/tomlkit@0.14.0", "UID": "6966445811b721bc", "BOMRef": "pkg:pypi/tomlkit@0.14.0" }, "Version": "0.14.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/tomlkit-0.14.0.dist-info/METADATA", "Digest": "sha1:7887d40449d9684788cfb76faacc540c0769cac8" }, { "ID": "tornado@6.5.5", "Name": "tornado", "Identifier": { "PURL": "pkg:pypi/tornado@6.5.5", "UID": "825ffa89ff8eecc3", "BOMRef": "pkg:pypi/tornado@6.5.5" }, "Version": "6.5.5", "Licenses": [ "Apache-2.0" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/tornado-6.5.5.dist-info/METADATA", "Digest": "sha1:5c1cb857b7feea44fdf8b46a15479b1454efed2d" }, { "ID": "tqdm@4.67.3", "Name": "tqdm", "Identifier": { "PURL": "pkg:pypi/tqdm@4.67.3", "UID": "f4009fe3922a6fdb", "BOMRef": "pkg:pypi/tqdm@4.67.3" }, "Version": "4.67.3", "Licenses": [ "MPL-2.0 AND MIT" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/tqdm-4.67.3.dist-info/METADATA", "Digest": "sha1:0135af1981d2b0f1326020f991192d869693b873" }, { "ID": "typing-inspection@0.4.2", "Name": "typing-inspection", "Identifier": { "PURL": "pkg:pypi/typing-inspection@0.4.2", "UID": "7f7732e63ae0d4cf", "BOMRef": "pkg:pypi/typing-inspection@0.4.2" }, "Version": "0.4.2", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/typing_inspection-0.4.2.dist-info/METADATA", "Digest": "sha1:455fdb9c8e246ba02c2a28655287401b62028b60" }, { "ID": "typing_extensions@4.15.0", "Name": "typing_extensions", "Identifier": { "PURL": "pkg:pypi/typing-extensions@4.15.0", "UID": "3f345c062957b62e", "BOMRef": "pkg:pypi/typing-extensions@4.15.0" }, "Version": "4.15.0", "Licenses": [ "PSF-2.0" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/typing_extensions-4.15.0.dist-info/METADATA", "Digest": "sha1:c5c2ce18351f8f2ae0f4a6f7c84c523f342010ee" }, { "ID": "tzdata@2025.1", "Name": "tzdata", "Identifier": { "PURL": "pkg:pypi/tzdata@2025.1", "UID": "8de76c33f58efdab", "BOMRef": "pkg:pypi/tzdata@2025.1" }, "Version": "2025.1", "Licenses": [ "Apache-2.0" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/tzdata-2025.1.dist-info/METADATA", "Digest": "sha1:6e57a2a6ed74712dd41842370b1c12bb8446d4b1" }, { "ID": "tzlocal@5.3.1", "Name": "tzlocal", "Identifier": { "PURL": "pkg:pypi/tzlocal@5.3.1", "UID": "e9f79e81ea8b5c5b", "BOMRef": "pkg:pypi/tzlocal@5.3.1" }, "Version": "5.3.1", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/tzlocal-5.3.1.dist-info/METADATA", "Digest": "sha1:fa463c4a745ae9f56544484fb7724eb107786eb4" }, { "ID": "urllib3@2.6.3", "Name": "urllib3", "Identifier": { "PURL": "pkg:pypi/urllib3@2.6.3", "UID": "4ea644391bf29918", "BOMRef": "pkg:pypi/urllib3@2.6.3" }, "Version": "2.6.3", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/urllib3-2.6.3.dist-info/METADATA", "Digest": "sha1:8e2cd7246c7dce09d4590affab6060ec527397c1" }, { "ID": "uvicorn@0.31.1", "Name": "uvicorn", "Identifier": { "PURL": "pkg:pypi/uvicorn@0.31.1", "UID": "b4bd0bf18dc18627", "BOMRef": "pkg:pypi/uvicorn@0.31.1" }, "Version": "0.31.1", "Licenses": [ "BSD-3-Clause" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/uvicorn-0.31.1.dist-info/METADATA", "Digest": "sha1:d229686a1d0f8b25bbb3ca0ab3b5519a37abc2b2" }, { "ID": "uvloop@0.21.0", "Name": "uvloop", "Identifier": { "PURL": "pkg:pypi/uvloop@0.21.0", "UID": "b3a8542ba3621c35", "BOMRef": "pkg:pypi/uvloop@0.21.0" }, "Version": "0.21.0", "Licenses": [ "Apache-2.0", "MIT" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/uvloop-0.21.0.dist-info/METADATA", "Digest": "sha1:eecfee7932b6d8397d72414b9a42e8b34c4dcbe7" }, { "ID": "websockets@15.0.1", "Name": "websockets", "Identifier": { "PURL": "pkg:pypi/websockets@15.0.1", "UID": "6cda442678b96254", "BOMRef": "pkg:pypi/websockets@15.0.1" }, "Version": "15.0.1", "Licenses": [ "BSD-3-Clause" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/websockets-15.0.1.dist-info/METADATA", "Digest": "sha1:7bcef50b72ed117258a503c68d7f5dd194872067" }, { "ID": "wheel@0.46.3", "Name": "wheel", "Identifier": { "PURL": "pkg:pypi/wheel@0.46.3", "UID": "148dfeecac2178f0", "BOMRef": "pkg:pypi/wheel@0.46.3" }, "Version": "0.46.3", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/wheel-0.46.3.dist-info/METADATA", "Digest": "sha1:241e26c983f51b16a8c352de6e874712a4b70e52" }, { "ID": "wrapt@1.17.3", "Name": "wrapt", "Identifier": { "PURL": "pkg:pypi/wrapt@1.17.3", "UID": "90dd85b3fc106081", "BOMRef": "pkg:pypi/wrapt@1.17.3" }, "Version": "1.17.3", "Licenses": [ "BSD-3-Clause" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/wrapt-1.17.3.dist-info/METADATA", "Digest": "sha1:dbb2682fa0ce1b88bad298721b69b9263a689653" }, { "ID": "xmltodict@1.0.4", "Name": "xmltodict", "Identifier": { "PURL": "pkg:pypi/xmltodict@1.0.4", "UID": "48fb68e68dbe2b82", "BOMRef": "pkg:pypi/xmltodict@1.0.4" }, "Version": "1.0.4", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/xmltodict-1.0.4.dist-info/METADATA", "Digest": "sha1:bd19f1f027500e9a68b016cf681821a8c03e34ef" }, { "ID": "yarl@1.23.0", "Name": "yarl", "Identifier": { "PURL": "pkg:pypi/yarl@1.23.0", "UID": "c66543ad034bc090", "BOMRef": "pkg:pypi/yarl@1.23.0" }, "Version": "1.23.0", "Licenses": [ "Apache-2.0" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/yarl-1.23.0.dist-info/METADATA", "Digest": "sha1:bfec66d9b0f3fc83a27a41c22208de99cdbd2712" }, { "ID": "zipp@3.23.0", "Name": "zipp", "Identifier": { "PURL": "pkg:pypi/zipp@3.23.0", "UID": "e526a0867e5f4ca7", "BOMRef": "pkg:pypi/zipp@3.23.0" }, "Version": "3.23.0", "Licenses": [ "MIT" ], "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "FilePath": "usr/lib/python3.13/site-packages/zipp-3.23.0.dist-info/METADATA", "Digest": "sha1:d7974cc6cd5ace30ae2bf7e89ed458fc7e46a194" } ], "Vulnerabilities": [ { "VulnerabilityID": "CVE-2026-32597", "VendorIDs": [ "GHSA-752w-5fwx-jx9f" ], "PkgID": "PyJWT@2.9.0", "PkgName": "PyJWT", "PkgPath": "usr/lib/python3.13/site-packages/PyJWT-2.9.0.dist-info/METADATA", "PkgIdentifier": { "PURL": "pkg:pypi/pyjwt@2.9.0", "UID": "24306162fed3d651", "BOMRef": "pkg:pypi/pyjwt@2.9.0" }, "InstalledVersion": "2.9.0", "FixedVersion": "2.12.0", "Status": "fixed", "Layer": { "Digest": "sha256:1cf810ac913a5a33f0d78c73e40b977a1b2aecb34c141e9881a1adc532db7b4f", "DiffID": "sha256:a78ae94e757ae1e2a38a023cd7c68218e0942da1e143576725a69ae9a7848959" }, "SeveritySource": "ghsa", "PrimaryURL": "https://avd.aquasec.com/nvd/cve-2026-32597", "DataSource": { "ID": "ghsa", "Name": "GitHub Security Advisory pip", "URL": "https://github.com/advisories?query=type%3Areviewed+ecosystem%3Apip" }, "Fingerprint": "sha256:d131734b884eb278bfd56b4e76f920a52392dde00f313e9ec778f4578dc2074a", "Title": "pyjwt: PyJWT accepts unknown `crit` header extensions (RFC 7515 §4.1.11 MUST violation)", "Description": "PyJWT is a JSON Web Token implementation in Python. Prior to 2.12.0, PyJWT does not validate the crit (Critical) Header Parameter defined in RFC 7515 §4.1.11. When a JWS token contains a crit array listing extensions that PyJWT does not understand, the library accepts the token instead of rejecting it. This violates the MUST requirement in the RFC. This vulnerability is fixed in 2.12.0.", "Severity": "HIGH", "CweIDs": [ "CWE-345", "CWE-863" ], "VendorSeverity": { "amazon": 2, "ghsa": 3, "redhat": 3, "ubuntu": 2 }, "CVSS": { "ghsa": { "V3Vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N", "V3Score": 7.5 }, "redhat": { "V3Vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N", "V3Score": 7.5 } }, "References": [ "https://access.redhat.com/security/cve/CVE-2026-32597", "https://github.com/jpadilla/pyjwt", "https://github.com/jpadilla/pyjwt/security/advisories/GHSA-752w-5fwx-jx9f", "https://nvd.nist.gov/vuln/detail/CVE-2026-32597", "https://ubuntu.com/security/notices/USN-8133-1", "https://www.cve.org/CVERecord?id=CVE-2026-32597" ], "PublishedDate": "2026-03-13T19:55:09.5Z", "LastModifiedDate": "2026-03-19T13:30:29.217Z" }, { "VulnerabilityID": "CVE-2026-4539", "VendorIDs": [ "GHSA-5239-wwwm-4pmq" ], "PkgID": "Pygments@2.19.2", "PkgName": "Pygments", "PkgPath": "usr/lib/python3.13/site-packages/pygments-2.19.2.dist-info/METADATA", "PkgIdentifier": { "PURL": "pkg:pypi/pygments@2.19.2", "UID": "10eb1e8b354a1f5b", "BOMRef": "pkg:pypi/pygments@2.19.2" }, "InstalledVersion": "2.19.2", "FixedVersion": "2.20.0", "Status": "fixed", "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "SeveritySource": "ghsa", "PrimaryURL": "https://avd.aquasec.com/nvd/cve-2026-4539", "DataSource": { "ID": "ghsa", "Name": "GitHub Security Advisory pip", "URL": "https://github.com/advisories?query=type%3Areviewed+ecosystem%3Apip" }, "Fingerprint": "sha256:ebde05e4d8dcd73a17075046f3361dd78663645fafd33c8dceda93495fbf43d3", "Title": "pygments: Pygments: Denial of Service via inefficient regular expression processing in AdlLexer", "Description": "A security flaw has been discovered in pygments up to 2.19.2. The impacted element is the function AdlLexer of the file pygments/lexers/archetype.py. The manipulation results in inefficient regular expression complexity. The attack is only possible with local access. The exploit has been released to the public and may be used for attacks. The project was informed of the problem early through an issue report but has not responded yet.", "Severity": "LOW", "CweIDs": [ "CWE-400", "CWE-1333" ], "VendorSeverity": { "ghsa": 1, "redhat": 1 }, "CVSS": { "ghsa": { "V3Vector": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L", "V40Vector": "CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:P", "V3Score": 3.3, "V40Score": 1.9 }, "redhat": { "V3Vector": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L", "V3Score": 3.3 } }, "References": [ "https://access.redhat.com/security/cve/CVE-2026-4539", "https://github.com/pygments/pygments", "https://github.com/pygments/pygments/", "https://github.com/pygments/pygments/commit/24b8aa76c6cd6d70f39c6dd605cce319c98e2ccc", "https://github.com/pygments/pygments/issues/3058", "https://github.com/pygments/pygments/pull/3064", "https://github.com/pygments/pygments/releases/tag/2.20.0", "https://nvd.nist.gov/vuln/detail/CVE-2026-4539", "https://vuldb.com/?ctiid.352327", "https://vuldb.com/?id.352327", "https://vuldb.com/?submit.774685", "https://www.cve.org/CVERecord?id=CVE-2026-4539" ], "PublishedDate": "2026-03-22T06:16:20.913Z", "LastModifiedDate": "2026-03-23T14:31:37.267Z" }, { "VulnerabilityID": "CVE-2026-22815", "VendorIDs": [ "GHSA-w2fm-2cpv-w7v5" ], "PkgID": "aiohttp@3.13.3", "PkgName": "aiohttp", "PkgPath": "usr/lib/python3.13/site-packages/aiohttp-3.13.3.dist-info/METADATA", "PkgIdentifier": { "PURL": "pkg:pypi/aiohttp@3.13.3", "UID": "5b16de695dc5a135", "BOMRef": "pkg:pypi/aiohttp@3.13.3" }, "InstalledVersion": "3.13.3", "FixedVersion": "3.13.4", "Status": "fixed", "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "SeveritySource": "ghsa", "PrimaryURL": "https://avd.aquasec.com/nvd/cve-2026-22815", "DataSource": { "ID": "ghsa", "Name": "GitHub Security Advisory pip", "URL": "https://github.com/advisories?query=type%3Areviewed+ecosystem%3Apip" }, "Fingerprint": "sha256:e297cb5a8fd78db1e9ad3bb29c1a40a1df63eabccc96ee4b5deb56e6c856a4ab", "Title": "aiohttp: AIOHTTP: Denial of Service via insufficient header/trailer handling", "Description": "AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. Prior to version 3.13.4, insufficient restrictions in header/trailer handling could cause uncapped memory usage. This issue has been patched in version 3.13.4.", "Severity": "MEDIUM", "CweIDs": [ "CWE-400", "CWE-770" ], "VendorSeverity": { "ghsa": 2, "redhat": 2 }, "CVSS": { "ghsa": { "V40Vector": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N", "V40Score": 6.9 }, "redhat": { "V3Vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L", "V3Score": 5.3 } }, "References": [ "https://access.redhat.com/security/cve/CVE-2026-22815", "https://github.com/aio-libs/aiohttp", "https://github.com/aio-libs/aiohttp/commit/0c2e9da51126238a421568eb7c5b53e5b5d17b36", "https://github.com/aio-libs/aiohttp/releases/tag/v3.13.4", "https://github.com/aio-libs/aiohttp/security/advisories/GHSA-w2fm-2cpv-w7v5", "https://nvd.nist.gov/vuln/detail/CVE-2026-22815", "https://www.cve.org/CVERecord?id=CVE-2026-22815" ], "PublishedDate": "2026-04-01T21:16:58.513Z", "LastModifiedDate": "2026-04-04T04:17:11.5Z" }, { "VulnerabilityID": "CVE-2026-34515", "VendorIDs": [ "GHSA-p998-jp59-783m" ], "PkgID": "aiohttp@3.13.3", "PkgName": "aiohttp", "PkgPath": "usr/lib/python3.13/site-packages/aiohttp-3.13.3.dist-info/METADATA", "PkgIdentifier": { "PURL": "pkg:pypi/aiohttp@3.13.3", "UID": "5b16de695dc5a135", "BOMRef": "pkg:pypi/aiohttp@3.13.3" }, "InstalledVersion": "3.13.3", "FixedVersion": "3.13.4", "Status": "fixed", "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "SeveritySource": "ghsa", "PrimaryURL": "https://avd.aquasec.com/nvd/cve-2026-34515", "DataSource": { "ID": "ghsa", "Name": "GitHub Security Advisory pip", "URL": "https://github.com/advisories?query=type%3Areviewed+ecosystem%3Apip" }, "Fingerprint": "sha256:aa0ff32af4423f451a9b5ca9ffda6e685d476c23cfcad9f23218d016963c6ee4", "Title": "aiohttp: AIOHTTP: Information disclosure via static resource handler on Windows", "Description": "AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. Prior to version 3.13.4, on Windows the static resource handler may expose information about a NTLMv2 remote path. This issue has been patched in version 3.13.4.", "Severity": "MEDIUM", "CweIDs": [ "CWE-36", "CWE-918" ], "VendorSeverity": { "ghsa": 2, "redhat": 2 }, "CVSS": { "ghsa": { "V40Vector": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:U", "V40Score": 6.6 }, "redhat": { "V3Vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N", "V3Score": 5.3 } }, "References": [ "https://access.redhat.com/security/cve/CVE-2026-34515", "https://github.com/aio-libs/aiohttp", "https://github.com/aio-libs/aiohttp/commit/0ae2aa076c84573df83fc1fdc39eec0f5862fe3d", "https://github.com/aio-libs/aiohttp/releases/tag/v3.13.4", "https://github.com/aio-libs/aiohttp/security/advisories/GHSA-p998-jp59-783m", "https://nvd.nist.gov/vuln/detail/CVE-2026-34515", "https://www.cve.org/CVERecord?id=CVE-2026-34515" ], "PublishedDate": "2026-04-01T21:16:59.57Z", "LastModifiedDate": "2026-04-03T16:10:52.68Z" }, { "VulnerabilityID": "CVE-2026-34516", "VendorIDs": [ "GHSA-m5qp-6w8w-w647" ], "PkgID": "aiohttp@3.13.3", "PkgName": "aiohttp", "PkgPath": "usr/lib/python3.13/site-packages/aiohttp-3.13.3.dist-info/METADATA", "PkgIdentifier": { "PURL": "pkg:pypi/aiohttp@3.13.3", "UID": "5b16de695dc5a135", "BOMRef": "pkg:pypi/aiohttp@3.13.3" }, "InstalledVersion": "3.13.3", "FixedVersion": "3.13.4", "Status": "fixed", "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "SeveritySource": "ghsa", "PrimaryURL": "https://avd.aquasec.com/nvd/cve-2026-34516", "DataSource": { "ID": "ghsa", "Name": "GitHub Security Advisory pip", "URL": "https://github.com/advisories?query=type%3Areviewed+ecosystem%3Apip" }, "Fingerprint": "sha256:866e8a4d5186c80beaf50090938ccce515a3aaa37fd8a0f3288f6eb882018131", "Title": "aiohttp: AIOHTTP: Denial of Service via excessive multipart headers", "Description": "AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. Prior to version 3.13.4, a response with an excessive number of multipart headers may be allowed to use more memory than intended, potentially allowing a DoS vulnerability. This issue has been patched in version 3.13.4.", "Severity": "MEDIUM", "CweIDs": [ "CWE-770" ], "VendorSeverity": { "ghsa": 2, "redhat": 2 }, "CVSS": { "ghsa": { "V40Vector": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U", "V40Score": 6.6 }, "redhat": { "V3Vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L", "V3Score": 5.3 } }, "References": [ "https://access.redhat.com/security/cve/CVE-2026-34516", "https://github.com/aio-libs/aiohttp", "https://github.com/aio-libs/aiohttp/commit/8a74257b3804c9aac0bf644af93070f68f6c5a6f", "https://github.com/aio-libs/aiohttp/releases/tag/v3.13.4", "https://github.com/aio-libs/aiohttp/security/advisories/GHSA-m5qp-6w8w-w647", "https://nvd.nist.gov/vuln/detail/CVE-2026-34516", "https://www.cve.org/CVERecord?id=CVE-2026-34516" ], "PublishedDate": "2026-04-01T21:16:59.723Z", "LastModifiedDate": "2026-04-04T04:17:20.147Z" }, { "VulnerabilityID": "CVE-2026-34525", "VendorIDs": [ "GHSA-c427-h43c-vf67" ], "PkgID": "aiohttp@3.13.3", "PkgName": "aiohttp", "PkgPath": "usr/lib/python3.13/site-packages/aiohttp-3.13.3.dist-info/METADATA", "PkgIdentifier": { "PURL": "pkg:pypi/aiohttp@3.13.3", "UID": "5b16de695dc5a135", "BOMRef": "pkg:pypi/aiohttp@3.13.3" }, "InstalledVersion": "3.13.3", "FixedVersion": "3.13.4", "Status": "fixed", "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "SeveritySource": "ghsa", "PrimaryURL": "https://avd.aquasec.com/nvd/cve-2026-34525", "DataSource": { "ID": "ghsa", "Name": "GitHub Security Advisory pip", "URL": "https://github.com/advisories?query=type%3Areviewed+ecosystem%3Apip" }, "Fingerprint": "sha256:e84f570f991af8f81da0073310141adbbe376c44e2bb855e226ffeb8826b2695", "Title": "aiohttp: aiohttp: Security bypass via multiple Host headers", "Description": "AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. Prior to version 3.13.4, multiple Host headers were allowed in aiohttp. This issue has been patched in version 3.13.4.", "Severity": "MEDIUM", "CweIDs": [ "CWE-20", "CWE-444" ], "VendorSeverity": { "ghsa": 2, "redhat": 2 }, "CVSS": { "ghsa": { "V40Vector": "CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:L/SI:L/SA:N", "V40Score": 6.3 }, "redhat": { "V3Vector": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:L/I:L/A:N", "V3Score": 5.4 } }, "References": [ "https://access.redhat.com/security/cve/CVE-2026-34525", "https://github.com/aio-libs/aiohttp", "https://github.com/aio-libs/aiohttp/commit/53e2e6fc58b89c6185be7820bd2c9f40216b3000", "https://github.com/aio-libs/aiohttp/commit/e00ca3cca92c465c7913c4beb763a72da9ed8349", "https://github.com/aio-libs/aiohttp/releases/tag/v3.13.4", "https://github.com/aio-libs/aiohttp/security/advisories/GHSA-c427-h43c-vf67", "https://nvd.nist.gov/vuln/detail/CVE-2026-34525", "https://www.cve.org/CVERecord?id=CVE-2026-34525" ], "PublishedDate": "2026-04-01T21:17:00.49Z", "LastModifiedDate": "2026-04-03T16:10:52.68Z" }, { "VulnerabilityID": "CVE-2026-34513", "VendorIDs": [ "GHSA-hcc4-c3v8-rx92" ], "PkgID": "aiohttp@3.13.3", "PkgName": "aiohttp", "PkgPath": "usr/lib/python3.13/site-packages/aiohttp-3.13.3.dist-info/METADATA", "PkgIdentifier": { "PURL": "pkg:pypi/aiohttp@3.13.3", "UID": "5b16de695dc5a135", "BOMRef": "pkg:pypi/aiohttp@3.13.3" }, "InstalledVersion": "3.13.3", "FixedVersion": "3.13.4", "Status": "fixed", "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "SeveritySource": "ghsa", "PrimaryURL": "https://avd.aquasec.com/nvd/cve-2026-34513", "DataSource": { "ID": "ghsa", "Name": "GitHub Security Advisory pip", "URL": "https://github.com/advisories?query=type%3Areviewed+ecosystem%3Apip" }, "Fingerprint": "sha256:96526097b9e565fbcbf5ef8c916c84641b20edb5fca07d11d43577d13d9175e1", "Title": "aiohttp: AIOHTTP: Denial of Service due to unbounded DNS cache", "Description": "AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. Prior to version 3.13.4, an unbounded DNS cache could result in excessive memory usage possibly resulting in a DoS situation. This issue has been patched in version 3.13.4.", "Severity": "LOW", "CweIDs": [ "CWE-770" ], "VendorSeverity": { "ghsa": 1, "redhat": 1 }, "CVSS": { "ghsa": { "V40Vector": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:U", "V40Score": 2.7 }, "redhat": { "V3Vector": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L", "V3Score": 3.7 } }, "References": [ "https://access.redhat.com/security/cve/CVE-2026-34513", "https://github.com/aio-libs/aiohttp", "https://github.com/aio-libs/aiohttp/commit/c4d77c3533122be353b8afca8e8675e3b4cbda98", "https://github.com/aio-libs/aiohttp/releases/tag/v3.13.4", "https://github.com/aio-libs/aiohttp/security/advisories/GHSA-hcc4-c3v8-rx92", "https://nvd.nist.gov/vuln/detail/CVE-2026-34513", "https://www.cve.org/CVERecord?id=CVE-2026-34513" ], "PublishedDate": "2026-04-01T21:16:59.267Z", "LastModifiedDate": "2026-04-03T16:10:52.68Z" }, { "VulnerabilityID": "CVE-2026-34514", "VendorIDs": [ "GHSA-2vrm-gr82-f7m5" ], "PkgID": "aiohttp@3.13.3", "PkgName": "aiohttp", "PkgPath": "usr/lib/python3.13/site-packages/aiohttp-3.13.3.dist-info/METADATA", "PkgIdentifier": { "PURL": "pkg:pypi/aiohttp@3.13.3", "UID": "5b16de695dc5a135", "BOMRef": "pkg:pypi/aiohttp@3.13.3" }, "InstalledVersion": "3.13.3", "FixedVersion": "3.13.4", "Status": "fixed", "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "SeveritySource": "ghsa", "PrimaryURL": "https://avd.aquasec.com/nvd/cve-2026-34514", "DataSource": { "ID": "ghsa", "Name": "GitHub Security Advisory pip", "URL": "https://github.com/advisories?query=type%3Areviewed+ecosystem%3Apip" }, "Fingerprint": "sha256:e702c6a7f468a334f650f8b9550cb73a6231ea5b2f4a9cfd8d21e0428e1a106a", "Title": "aiohttp: AIOHTTP: Header Injection via content_type parameter manipulation", "Description": "AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. Prior to version 3.13.4, an attacker who controls the content_type parameter in aiohttp could use this to inject extra headers or similar exploits. This issue has been patched in version 3.13.4.", "Severity": "LOW", "CweIDs": [ "CWE-113" ], "VendorSeverity": { "ghsa": 1, "redhat": 2 }, "CVSS": { "ghsa": { "V40Vector": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:U", "V40Score": 2.7 }, "redhat": { "V3Vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N", "V3Score": 5.3 } }, "References": [ "https://access.redhat.com/security/cve/CVE-2026-34514", "https://github.com/aio-libs/aiohttp", "https://github.com/aio-libs/aiohttp/commit/9a6ada97e2c6cf1ce31727c6c9fcea17c21f6f06", "https://github.com/aio-libs/aiohttp/releases/tag/v3.13.4", "https://github.com/aio-libs/aiohttp/security/advisories/GHSA-2vrm-gr82-f7m5", "https://nvd.nist.gov/vuln/detail/CVE-2026-34514", "https://www.cve.org/CVERecord?id=CVE-2026-34514" ], "PublishedDate": "2026-04-01T21:16:59.417Z", "LastModifiedDate": "2026-04-03T16:10:52.68Z" }, { "VulnerabilityID": "CVE-2026-34517", "VendorIDs": [ "GHSA-3wq7-rqq7-wx6j" ], "PkgID": "aiohttp@3.13.3", "PkgName": "aiohttp", "PkgPath": "usr/lib/python3.13/site-packages/aiohttp-3.13.3.dist-info/METADATA", "PkgIdentifier": { "PURL": "pkg:pypi/aiohttp@3.13.3", "UID": "5b16de695dc5a135", "BOMRef": "pkg:pypi/aiohttp@3.13.3" }, "InstalledVersion": "3.13.3", "FixedVersion": "3.13.4", "Status": "fixed", "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "SeveritySource": "ghsa", "PrimaryURL": "https://avd.aquasec.com/nvd/cve-2026-34517", "DataSource": { "ID": "ghsa", "Name": "GitHub Security Advisory pip", "URL": "https://github.com/advisories?query=type%3Areviewed+ecosystem%3Apip" }, "Fingerprint": "sha256:a54f789989605bca58808a5eb74e695bddcaf31106f6193215b12e8ab415dc30", "Title": "aiohttp: AIOHTTP: Denial of Service via large multipart form fields", "Description": "AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. Prior to version 3.13.4, for some multipart form fields, aiohttp read the entire field into memory before checking client_max_size. This issue has been patched in version 3.13.4.", "Severity": "LOW", "CweIDs": [ "CWE-770" ], "VendorSeverity": { "ghsa": 1, "redhat": 1 }, "CVSS": { "ghsa": { "V40Vector": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:U", "V40Score": 2.7 }, "redhat": { "V3Vector": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L", "V3Score": 3.7 } }, "References": [ "https://access.redhat.com/security/cve/CVE-2026-34517", "https://github.com/aio-libs/aiohttp", "https://github.com/aio-libs/aiohttp/commit/cbb774f38330563422ca0c413a71021d7b944145", "https://github.com/aio-libs/aiohttp/releases/tag/v3.13.4", "https://github.com/aio-libs/aiohttp/security/advisories/GHSA-3wq7-rqq7-wx6j", "https://nvd.nist.gov/vuln/detail/CVE-2026-34517", "https://www.cve.org/CVERecord?id=CVE-2026-34517" ], "PublishedDate": "2026-04-01T21:16:59.87Z", "LastModifiedDate": "2026-04-03T16:10:52.68Z" }, { "VulnerabilityID": "CVE-2026-34518", "VendorIDs": [ "GHSA-966j-vmvw-g2g9" ], "PkgID": "aiohttp@3.13.3", "PkgName": "aiohttp", "PkgPath": "usr/lib/python3.13/site-packages/aiohttp-3.13.3.dist-info/METADATA", "PkgIdentifier": { "PURL": "pkg:pypi/aiohttp@3.13.3", "UID": "5b16de695dc5a135", "BOMRef": "pkg:pypi/aiohttp@3.13.3" }, "InstalledVersion": "3.13.3", "FixedVersion": "3.13.4", "Status": "fixed", "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "SeveritySource": "ghsa", "PrimaryURL": "https://avd.aquasec.com/nvd/cve-2026-34518", "DataSource": { "ID": "ghsa", "Name": "GitHub Security Advisory pip", "URL": "https://github.com/advisories?query=type%3Areviewed+ecosystem%3Apip" }, "Fingerprint": "sha256:17f8068b71428244ee87fc4bd501180d108baf2d9105f003b3bb86d35173ad70", "Title": "aiohttp: AIOHTTP: Information disclosure via retained Cookie and Proxy-Authorization headers during redirects", "Description": "AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. Prior to version 3.13.4, when following redirects to a different origin, aiohttp drops the Authorization header, but retains the Cookie and Proxy-Authorization headers. This issue has been patched in version 3.13.4.", "Severity": "LOW", "CweIDs": [ "CWE-200" ], "VendorSeverity": { "ghsa": 1, "redhat": 1 }, "CVSS": { "ghsa": { "V40Vector": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U", "V40Score": 2.7 }, "redhat": { "V3Vector": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N", "V3Score": 3.7 } }, "References": [ "https://access.redhat.com/security/cve/CVE-2026-34518", "https://github.com/aio-libs/aiohttp", "https://github.com/aio-libs/aiohttp/commit/5351c980dcec7ad385730efdf4e1f4338b24fdb6", "https://github.com/aio-libs/aiohttp/releases/tag/v3.13.4", "https://github.com/aio-libs/aiohttp/security/advisories/GHSA-966j-vmvw-g2g9", "https://nvd.nist.gov/vuln/detail/CVE-2026-34518", "https://www.cve.org/CVERecord?id=CVE-2026-34518" ], "PublishedDate": "2026-04-01T21:17:00.02Z", "LastModifiedDate": "2026-04-03T16:10:52.68Z" }, { "VulnerabilityID": "CVE-2026-34519", "VendorIDs": [ "GHSA-mwh4-6h8g-pg8w" ], "PkgID": "aiohttp@3.13.3", "PkgName": "aiohttp", "PkgPath": "usr/lib/python3.13/site-packages/aiohttp-3.13.3.dist-info/METADATA", "PkgIdentifier": { "PURL": "pkg:pypi/aiohttp@3.13.3", "UID": "5b16de695dc5a135", "BOMRef": "pkg:pypi/aiohttp@3.13.3" }, "InstalledVersion": "3.13.3", "FixedVersion": "3.13.4", "Status": "fixed", "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "SeveritySource": "ghsa", "PrimaryURL": "https://avd.aquasec.com/nvd/cve-2026-34519", "DataSource": { "ID": "ghsa", "Name": "GitHub Security Advisory pip", "URL": "https://github.com/advisories?query=type%3Areviewed+ecosystem%3Apip" }, "Fingerprint": "sha256:c677ff157a1bb25fab314b79823db49eca07785b4ab4ea1dd8c7d70fb78e8fe3", "Title": "aiohttp: aiohttp: Header injection vulnerability via reason parameter", "Description": "AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. Prior to version 3.13.4, an attacker who controls the reason parameter when creating a Response may be able to inject extra headers or similar exploits. This issue has been patched in version 3.13.4.", "Severity": "LOW", "CweIDs": [ "CWE-113" ], "VendorSeverity": { "ghsa": 1, "redhat": 2 }, "CVSS": { "ghsa": { "V40Vector": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:U", "V40Score": 2.7 }, "redhat": { "V3Vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N", "V3Score": 5.3 } }, "References": [ "https://access.redhat.com/security/cve/CVE-2026-34519", "https://github.com/aio-libs/aiohttp", "https://github.com/aio-libs/aiohttp/commit/53b35a2f8869c37a133e60bf1a82a1c01642ba2b", "https://github.com/aio-libs/aiohttp/releases/tag/v3.13.4", "https://github.com/aio-libs/aiohttp/security/advisories/GHSA-mwh4-6h8g-pg8w", "https://nvd.nist.gov/vuln/detail/CVE-2026-34519", "https://www.cve.org/CVERecord?id=CVE-2026-34519" ], "PublishedDate": "2026-04-01T21:17:00.17Z", "LastModifiedDate": "2026-04-03T16:10:52.68Z" }, { "VulnerabilityID": "CVE-2026-34520", "VendorIDs": [ "GHSA-63hf-3vf5-4wqf" ], "PkgID": "aiohttp@3.13.3", "PkgName": "aiohttp", "PkgPath": "usr/lib/python3.13/site-packages/aiohttp-3.13.3.dist-info/METADATA", "PkgIdentifier": { "PURL": "pkg:pypi/aiohttp@3.13.3", "UID": "5b16de695dc5a135", "BOMRef": "pkg:pypi/aiohttp@3.13.3" }, "InstalledVersion": "3.13.3", "FixedVersion": "3.13.4", "Status": "fixed", "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "SeveritySource": "ghsa", "PrimaryURL": "https://avd.aquasec.com/nvd/cve-2026-34520", "DataSource": { "ID": "ghsa", "Name": "GitHub Security Advisory pip", "URL": "https://github.com/advisories?query=type%3Areviewed+ecosystem%3Apip" }, "Fingerprint": "sha256:0770c420fed18efd646b9b1025c31ad6b249ef4b7310b4e44012f102049b74b9", "Title": "aiohttp: AIOHTTP: Header injection vulnerability due to improper character handling", "Description": "AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. Prior to version 3.13.4, the C parser (the default for most installs) accepted null bytes and control characters in response headers. This issue has been patched in version 3.13.4.", "Severity": "LOW", "CweIDs": [ "CWE-113" ], "VendorSeverity": { "ghsa": 1, "redhat": 1 }, "CVSS": { "ghsa": { "V40Vector": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:U", "V40Score": 2.7 }, "redhat": { "V3Vector": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N", "V3Score": 3.7 } }, "References": [ "https://access.redhat.com/security/cve/CVE-2026-34520", "https://github.com/aio-libs/aiohttp", "https://github.com/aio-libs/aiohttp/commit/9370b9714a7a56003cacd31a9b4ae16eab109ba4", "https://github.com/aio-libs/aiohttp/releases/tag/v3.13.4", "https://github.com/aio-libs/aiohttp/security/advisories/GHSA-63hf-3vf5-4wqf", "https://nvd.nist.gov/vuln/detail/CVE-2026-34520", "https://www.cve.org/CVERecord?id=CVE-2026-34520" ], "PublishedDate": "2026-04-01T21:17:00.333Z", "LastModifiedDate": "2026-04-04T04:17:20.773Z" }, { "VulnerabilityID": "CVE-2026-34073", "VendorIDs": [ "GHSA-m959-cc7f-wv43" ], "PkgID": "cryptography@46.0.5", "PkgName": "cryptography", "PkgPath": "usr/lib/python3.13/site-packages/cryptography-46.0.5.dist-info/METADATA", "PkgIdentifier": { "PURL": "pkg:pypi/cryptography@46.0.5", "UID": "9c049616e8c5bed4", "BOMRef": "pkg:pypi/cryptography@46.0.5" }, "InstalledVersion": "46.0.5", "FixedVersion": "46.0.6", "Status": "fixed", "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "SeveritySource": "ghsa", "PrimaryURL": "https://avd.aquasec.com/nvd/cve-2026-34073", "DataSource": { "ID": "ghsa", "Name": "GitHub Security Advisory pip", "URL": "https://github.com/advisories?query=type%3Areviewed+ecosystem%3Apip" }, "Fingerprint": "sha256:a0a15bf12f7993f9515806d984f1ae6b5269b33fee66ade32b33b7c56ca46249", "Title": "cryptography: python: Cryptography: Security bypass due to improper DNS name constraint validation", "Description": "cryptography is a package designed to expose cryptographic primitives and recipes to Python developers. Prior to version 46.0.6, DNS name constraints were only validated against SANs within child certificates, and not the \"peer name\" presented during each validation. Consequently, cryptography would allow a peer named bar.example.com to validate against a wildcard leaf certificate for *.example.com, even if the leaf's parent certificate (or upwards) contained an excluded subtree constraint for bar.example.com. This issue has been patched in version 46.0.6.", "Severity": "LOW", "CweIDs": [ "CWE-295" ], "VendorSeverity": { "ghsa": 1, "redhat": 1 }, "CVSS": { "ghsa": { "V40Vector": "CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:U", "V40Score": 1.7 }, "redhat": { "V3Vector": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N", "V3Score": 3.7 } }, "References": [ "https://access.redhat.com/security/cve/CVE-2026-34073", "https://github.com/pyca/cryptography", "https://github.com/pyca/cryptography/security/advisories/GHSA-m959-cc7f-wv43", "https://nvd.nist.gov/vuln/detail/CVE-2026-34073", "https://www.cve.org/CVERecord?id=CVE-2026-34073" ], "PublishedDate": "2026-03-31T03:15:59.123Z", "LastModifiedDate": "2026-04-01T14:24:02.583Z" }, { "VulnerabilityID": "CVE-2026-35030", "VendorIDs": [ "GHSA-jjhc-v7c2-5hh6" ], "PkgID": "litellm@1.82.0", "PkgName": "litellm", "PkgPath": "usr/lib/python3.13/site-packages/litellm-1.82.0.dist-info/METADATA", "PkgIdentifier": { "PURL": "pkg:pypi/litellm@1.82.0", "UID": "9501edef23a814fc", "BOMRef": "pkg:pypi/litellm@1.82.0" }, "InstalledVersion": "1.82.0", "FixedVersion": "1.83.0", "Status": "fixed", "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "SeveritySource": "ghsa", "PrimaryURL": "https://avd.aquasec.com/nvd/cve-2026-35030", "DataSource": { "ID": "ghsa", "Name": "GitHub Security Advisory pip", "URL": "https://github.com/advisories?query=type%3Areviewed+ecosystem%3Apip" }, "Fingerprint": "sha256:2bd70b54564e0e1394c5e866cef41c616a248b5f6fc7c04105dbd2cb98b8f103", "Title": "LiteLLM: Authentication bypass via OIDC userinfo cache key collision", "Description": "### Impact\n\nWhen JWT authentication is enabled (`enable_jwt_auth: true`), the OIDC userinfo cache uses `token[:20]` as the cache key. JWT headers produced by the same signing algorithm generate identical first 20 characters.\n\nThis configuration option is not enabled by default. **Most instances are not affected.**\n\nAn unauthenticated attacker can craft a token whose first 20 characters match a legitimate user's cached token. On cache hit, the attacker inherits the legitimate user's identity and permissions. This affects deployments with JWT/OIDC authentication enabled.\n\n### Patches\n\nFixed in v1.83.0. The cache key now uses the full hash of the JWT token.\n\n### Workarounds\n\nDisable OIDC userinfo caching by setting the cache TTL to 0, or disable JWT authentication entirely.", "Severity": "CRITICAL", "VendorSeverity": { "ghsa": 4 }, "CVSS": { "ghsa": { "V40Vector": "CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:N/SC:H/SI:H/SA:N", "V40Score": 9.4 } }, "References": [ "https://github.com/BerriAI/litellm", "https://github.com/BerriAI/litellm/security/advisories/GHSA-jjhc-v7c2-5hh6" ] }, { "VulnerabilityID": "CVE-2026-35029", "VendorIDs": [ "GHSA-53mr-6c8q-9789" ], "PkgID": "litellm@1.82.0", "PkgName": "litellm", "PkgPath": "usr/lib/python3.13/site-packages/litellm-1.82.0.dist-info/METADATA", "PkgIdentifier": { "PURL": "pkg:pypi/litellm@1.82.0", "UID": "9501edef23a814fc", "BOMRef": "pkg:pypi/litellm@1.82.0" }, "InstalledVersion": "1.82.0", "FixedVersion": "1.83.0", "Status": "fixed", "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "SeveritySource": "ghsa", "PrimaryURL": "https://avd.aquasec.com/nvd/cve-2026-35029", "DataSource": { "ID": "ghsa", "Name": "GitHub Security Advisory pip", "URL": "https://github.com/advisories?query=type%3Areviewed+ecosystem%3Apip" }, "Fingerprint": "sha256:5caad8fa327deb8466cd336320abfef92484ac9550c673df5c84ba76a2e839bd", "Title": "LiteLLM: Privilege escalation via unrestricted proxy configuration endpoint", "Description": "### Impact\n\nThe `/config/update endpoint` does not enforce admin role authorization. A user who is already authenticated into the platform can then use this endpoint to do the following:\n\n - Modify proxy configuration and environment variables\n - Register custom pass-through endpoint handlers pointing to attacker-controlled Python code, achieving remote code execution\n - Read arbitrary server files by setting UI_LOGO_PATH and fetching via /get_image\n - Take over other priveleged accounts by overwriting UI_USERNAME and UI_PASSWORD environment variables\n\n### Patches\n\nFixed in v1.83.0. The endpoint now requires `proxy_admin` role.\n\n### Workarounds\n\nRestrict API key distribution. There is no configuration-level workaround.", "Severity": "HIGH", "VendorSeverity": { "ghsa": 3 }, "CVSS": { "ghsa": { "V40Vector": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:L/SI:L/SA:N", "V40Score": 8.7 } }, "References": [ "https://github.com/BerriAI/litellm", "https://github.com/BerriAI/litellm/security/advisories/GHSA-53mr-6c8q-9789" ] }, { "VulnerabilityID": "CVE-2026-30922", "VendorIDs": [ "GHSA-jr27-m4p2-rc6r" ], "PkgID": "pyasn1@0.6.2", "PkgName": "pyasn1", "PkgPath": "usr/lib/python3.13/site-packages/pyasn1-0.6.2.dist-info/METADATA", "PkgIdentifier": { "PURL": "pkg:pypi/pyasn1@0.6.2", "UID": "dc27fd2fd7b26cd5", "BOMRef": "pkg:pypi/pyasn1@0.6.2" }, "InstalledVersion": "0.6.2", "FixedVersion": "0.6.3", "Status": "fixed", "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "SeveritySource": "ghsa", "PrimaryURL": "https://avd.aquasec.com/nvd/cve-2026-30922", "DataSource": { "ID": "ghsa", "Name": "GitHub Security Advisory pip", "URL": "https://github.com/advisories?query=type%3Areviewed+ecosystem%3Apip" }, "Fingerprint": "sha256:c8b01b67777a21a211fe112adb623397adbfa193f38a4aca319365ee454edac6", "Title": "pyasn1: pyasn1 Vulnerable to Denial of Service via Unbounded Recursion", "Description": "pyasn1 is a generic ASN.1 library for Python. Prior to 0.6.3, the `pyasn1` library is vulnerable to a Denial of Service (DoS) attack caused by uncontrolled recursion when decoding ASN.1 data with deeply nested structures. An attacker can supply a crafted payload containing thousands of nested `SEQUENCE` (`0x30`) or `SET` (`0x31`) tags with \"Indefinite Length\" (`0x80`) markers. This forces the decoder to recursively call itself until the Python interpreter crashes with a `RecursionError` or consumes all available memory (OOM), crashing the host application. This is a distinct vulnerability from CVE-2026-23490 (which addressed integer overflows in OID decoding). The fix for CVE-2026-23490 (`MAX_OID_ARC_CONTINUATION_OCTETS`) does not mitigate this recursion issue. Version 0.6.3 fixes this specific issue.", "Severity": "HIGH", "CweIDs": [ "CWE-674" ], "VendorSeverity": { "amazon": 2, "cbl-mariner": 3, "ghsa": 3, "redhat": 3, "ubuntu": 2 }, "CVSS": { "ghsa": { "V3Vector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "V3Score": 7.5 }, "redhat": { "V3Vector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "V3Score": 7.5 } }, "References": [ "http://www.openwall.com/lists/oss-security/2026/03/20/4", "https://access.redhat.com/security/cve/CVE-2026-30922", "https://github.com/pyasn1/pyasn1", "https://github.com/pyasn1/pyasn1/commit/25ad481c19fdb006e20485ef3fc2e5b3eff30ef0", "https://github.com/pyasn1/pyasn1/commit/5a49bd1fe93b5b866a1210f6bf0a3924f21572c8", "https://github.com/pyasn1/pyasn1/releases/tag/v0.6.3", "https://github.com/pyasn1/pyasn1/security/advisories/GHSA-jr27-m4p2-rc6r", "https://nvd.nist.gov/vuln/detail/CVE-2026-30922", "https://ubuntu.com/security/notices/USN-8129-1", "https://ubuntu.com/security/notices/USN-8134-1", "https://www.cve.org/CVERecord?id=CVE-2026-30922" ], "PublishedDate": "2026-03-18T04:17:18.397Z", "LastModifiedDate": "2026-03-21T01:17:06.36Z" }, { "VulnerabilityID": "CVE-2026-33123", "VendorIDs": [ "GHSA-qpxp-75px-xjcp" ], "PkgID": "pypdf@6.8.0", "PkgName": "pypdf", "PkgPath": "usr/lib/python3.13/site-packages/pypdf-6.8.0.dist-info/METADATA", "PkgIdentifier": { "PURL": "pkg:pypi/pypdf@6.8.0", "UID": "4f400fceaf6ebb92", "BOMRef": "pkg:pypi/pypdf@6.8.0" }, "InstalledVersion": "6.8.0", "FixedVersion": "6.9.1", "Status": "fixed", "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "SeveritySource": "ghsa", "PrimaryURL": "https://avd.aquasec.com/nvd/cve-2026-33123", "DataSource": { "ID": "ghsa", "Name": "GitHub Security Advisory pip", "URL": "https://github.com/advisories?query=type%3Areviewed+ecosystem%3Apip" }, "Fingerprint": "sha256:c8c0579ff9a753b35fb8f83cab858aecb5dfc75622e349418eff80d8bfcfbbeb", "Title": "pypdf: pypdf: Denial of Service due to excessive resource consumption from crafted PDF", "Description": "pypdf is a free and open-source pure-python PDF library. Versions prior to 6.9.1 allow an attacker to craft a malicious PDF which leads to long runtimes and/or large memory usage. Exploitation requires accessing an array-based stream with many entries. This issue has been fixed in version 6.9.1.", "Severity": "MEDIUM", "CweIDs": [ "CWE-400", "CWE-407" ], "VendorSeverity": { "ghsa": 2, "nvd": 2, "redhat": 2 }, "CVSS": { "ghsa": { "V40Vector": "CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N", "V40Score": 5.1 }, "nvd": { "V3Vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H", "V3Score": 6.5 }, "redhat": { "V3Vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L", "V3Score": 4.3 } }, "References": [ "https://access.redhat.com/security/cve/CVE-2026-33123", "https://github.com/py-pdf/pypdf", "https://github.com/py-pdf/pypdf/pull/3686", "https://github.com/py-pdf/pypdf/releases/tag/6.9.1", "https://github.com/py-pdf/pypdf/security/advisories/GHSA-qpxp-75px-xjcp", "https://nvd.nist.gov/vuln/detail/CVE-2026-33123", "https://www.cve.org/CVERecord?id=CVE-2026-33123" ], "PublishedDate": "2026-03-20T10:16:18.717Z", "LastModifiedDate": "2026-03-23T15:48:01.007Z" }, { "VulnerabilityID": "CVE-2026-33699", "VendorIDs": [ "GHSA-87mj-5ggw-8qc3" ], "PkgID": "pypdf@6.8.0", "PkgName": "pypdf", "PkgPath": "usr/lib/python3.13/site-packages/pypdf-6.8.0.dist-info/METADATA", "PkgIdentifier": { "PURL": "pkg:pypi/pypdf@6.8.0", "UID": "4f400fceaf6ebb92", "BOMRef": "pkg:pypi/pypdf@6.8.0" }, "InstalledVersion": "6.8.0", "FixedVersion": "6.9.2", "Status": "fixed", "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "SeveritySource": "ghsa", "PrimaryURL": "https://avd.aquasec.com/nvd/cve-2026-33699", "DataSource": { "ID": "ghsa", "Name": "GitHub Security Advisory pip", "URL": "https://github.com/advisories?query=type%3Areviewed+ecosystem%3Apip" }, "Fingerprint": "sha256:ee69131dc1f633d2af634f57da61ca91937658a385125017039479a0a0c443e3", "Title": "pypdf: pypdf: Denial of Service via crafted PDF in non-strict mode", "Description": "pypdf is a free and open-source pure-python PDF library. Versions prior to 6.9.2 have a vulnerability in which an attacker can craft a PDF which leads to an infinite loop. This requires reading a file in non-strict mode. This has been fixed in pypdf 6.9.2. If users cannot upgrade yet, consider applying the changes from the patch manually.", "Severity": "MEDIUM", "CweIDs": [ "CWE-835" ], "VendorSeverity": { "ghsa": 2, "nvd": 3, "redhat": 2 }, "CVSS": { "ghsa": { "V40Vector": "CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U", "V40Score": 4.6 }, "nvd": { "V3Vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "V3Score": 7.5 }, "redhat": { "V3Vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H", "V3Score": 6.5 } }, "References": [ "https://access.redhat.com/security/cve/CVE-2026-33699", "https://github.com/py-pdf/pypdf", "https://github.com/py-pdf/pypdf/pull/3693", "https://github.com/py-pdf/pypdf/releases/tag/6.9.2", "https://github.com/py-pdf/pypdf/security/advisories/GHSA-87mj-5ggw-8qc3", "https://nvd.nist.gov/vuln/detail/CVE-2026-33699", "https://www.cve.org/CVERecord?id=CVE-2026-33699" ], "PublishedDate": "2026-03-27T01:16:19.147Z", "LastModifiedDate": "2026-04-01T16:01:35.88Z" }, { "VulnerabilityID": "CVE-2026-25645", "VendorIDs": [ "GHSA-gc5v-m9x4-r6x2" ], "PkgID": "requests@2.32.5", "PkgName": "requests", "PkgPath": "usr/lib/python3.13/site-packages/requests-2.32.5.dist-info/METADATA", "PkgIdentifier": { "PURL": "pkg:pypi/requests@2.32.5", "UID": "f1721927ee3ff26f", "BOMRef": "pkg:pypi/requests@2.32.5" }, "InstalledVersion": "2.32.5", "FixedVersion": "2.33.0", "Status": "fixed", "Layer": { "Digest": "sha256:96d74030980e55c63f679c9ba433774d9f7e8218a43e3fd5d71eab818f67f250", "DiffID": "sha256:1b2614e7fbd0081da37f78a0a4e4bba1576f8a9ca3290889ac74aefaa30bed19" }, "SeveritySource": "ghsa", "PrimaryURL": "https://avd.aquasec.com/nvd/cve-2026-25645", "DataSource": { "ID": "ghsa", "Name": "GitHub Security Advisory pip", "URL": "https://github.com/advisories?query=type%3Areviewed+ecosystem%3Apip" }, "Fingerprint": "sha256:2b3005b07dc5a6b7e5412ddcf35545abddc5483e79b217a7af964879fbbeb4d4", "Title": "requests: Requests: Security bypass due to predictable temporary file creation", "Description": "Requests is a HTTP library. Prior to version 2.33.0, the `requests.utils.extract_zipped_paths()` utility function uses a predictable filename when extracting files from zip archives into the system temporary directory. If the target file already exists, it is reused without validation. A local attacker with write access to the temp directory could pre-create a malicious file that would be loaded in place of the legitimate one. Standard usage of the Requests library is not affected by this vulnerability. Only applications that call `extract_zipped_paths()` directly are impacted. Starting in version 2.33.0, the library extracts files to a non-deterministic location. If developers are unable to upgrade, they can set `TMPDIR` in their environment to a directory with restricted write access.", "Severity": "MEDIUM", "CweIDs": [ "CWE-377" ], "VendorSeverity": { "ghsa": 2, "nvd": 2, "redhat": 2 }, "CVSS": { "ghsa": { "V3Vector": "CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:N/I:H/A:N", "V3Score": 4.4 }, "nvd": { "V3Vector": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N", "V3Score": 5.5 }, "redhat": { "V3Vector": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:N", "V3Score": 4.7 } }, "References": [ "https://access.redhat.com/security/cve/CVE-2026-25645", "https://github.com/psf/requests", "https://github.com/psf/requests/commit/66d21cb07bd6255b1280291c4fafb71803cdb3b7", "https://github.com/psf/requests/releases/tag/v2.33.0", "https://github.com/psf/requests/security/advisories/GHSA-gc5v-m9x4-r6x2", "https://nvd.nist.gov/vuln/detail/CVE-2026-25645", "https://www.cve.org/CVERecord?id=CVE-2026-25645" ], "PublishedDate": "2026-03-25T17:16:52.97Z", "LastModifiedDate": "2026-03-30T14:23:16.127Z" } ] } ] }