intel
diff --git a/‎sbom/cve-bin-tool-py3.9.json‎
Lines changed: 60 additions & 45 deletions b/‎sbom/cve-bin-tool-py3.9.json‎
Lines changed: 60 additions & 45 deletions
@@ -1,11 +1,11 @@
 {
-  "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json",
+  "$schema": "http://cyclonedx.org/schema/bom-1.7.schema.json",
   "bomFormat": "CycloneDX",
-  "specVersion": "1.6",
-  "serialNumber": "urn:uuid:0fa43716-8c8f-48a5-9055-05a17bd14ee1",
+  "specVersion": "1.7",
+  "serialNumber": "urn:uuid:7bb811f5-d63f-44b6-878c-8a666158e40e",
   "version": 1,
   "metadata": {
-    "timestamp": "2025-10-13T00:40:50Z",
+    "timestamp": "2025-11-03T00:42:18Z",
     "lifecycles": [
       {
         "phase": "build"
@@ -24,6 +24,9 @@
       "type": "application",
       "bom-ref": "CDXRef-DOCUMENT",
       "name": "Python-cve-bin-tool"
+    },
+    "distributionConstraints": {
+      "tlp": "CLEAR"
     }
   },
   "components": [
@@ -79,12 +82,12 @@
       "type": "library",
       "bom-ref": "2-aiohttp",
       "name": "aiohttp",
-      "version": "3.13.0",
+      "version": "3.13.2",
       "description": "Async http client/server framework (asyncio)",
       "hashes": [
         {
           "alg": "SHA-256",
-          "content": "ca69ec38adf5cadcc21d0b25e2144f6a25b7db7bea7e730bac25075bc305eff0"
+          "content": "2372b15a5f62ed37789a6b383ff7344fc5b9f243999b0cd9b629d8bc5f5b4155"
         }
       ],
       "licenses": [
@@ -100,7 +103,7 @@
           "comment": "Home page for project"
         },
         {
-          "url": "https://pypi.org/project/aiohttp/3.13.0/#files",
+          "url": "https://pypi.org/project/aiohttp/3.13.2/#files",
           "type": "distribution",
           "comment": "Download location for component"
         },
@@ -137,11 +140,11 @@
           "type": "vcs"
         }
       ],
-      "purl": "pkg:pypi/[email protected].0",
+      "purl": "pkg:pypi/[email protected].2",
       "properties": [
         {
           "name": "release_date",
-          "value": "2025-10-06T19:54:40Z"
+          "value": "2025-10-28T20:55:27Z"
         },
         {
           "name": "language",
@@ -305,6 +308,12 @@
       "name": "frozenlist",
       "version": "1.8.0",
       "description": "A list-like structure which implements collections.abc.MutableSequence",
+      "hashes": [
+        {
+          "alg": "SHA-256",
+          "content": "b37f6d31b3dcea7deb5e9696e529a6aa4a898adc33db82da12e4c60a7c4d2011"
+        }
+      ],
       "licenses": [
         {
           "license": {
@@ -366,7 +375,7 @@
       "properties": [
         {
           "name": "release_date",
-          "value": "2025-07-03T22:54:42Z"
+          "value": "2025-10-06T05:35:23Z"
         },
         {
           "name": "language",
@@ -894,6 +903,12 @@
       },
       "cpe": "cpe:2.3:a:kim_davies:idna:3.11:*:*:*:*:*:*:*",
       "description": "Internationalized Domain Names in Applications (IDNA)",
+      "hashes": [
+        {
+          "alg": "SHA-256",
+          "content": "771a87f49d9defaf64091e6e6fe9c18d4833f140bd19464795bc32d966ca37ea"
+        }
+      ],
       "externalReferences": [
         {
           "url": "https://pypi.org/project/idna/3.11/#files",
@@ -917,7 +932,7 @@
       "properties": [
         {
           "name": "release_date",
-          "value": "2025-10-06T14:08:42Z"
+          "value": "2025-10-12T14:55:18Z"
         },
         {
           "name": "language",
@@ -1383,7 +1398,7 @@
       "type": "library",
       "bom-ref": "20-argcomplete",
       "name": "argcomplete",
-      "version": "3.6.2",
+      "version": "3.6.3",
       "supplier": {
         "name": "Andrey Kislyuk",
         "contact": [
@@ -1392,12 +1407,12 @@
           }
         ]
       },
-      "cpe": "cpe:2.3:a:andrey_kislyuk:argcomplete:3.6.2:*:*:*:*:*:*:*",
+      "cpe": "cpe:2.3:a:andrey_kislyuk:argcomplete:3.6.3:*:*:*:*:*:*:*",
       "description": "Bash tab completion for argparse",
       "hashes": [
         {
           "alg": "SHA-256",
-          "content": "65b3133a29ad53fb42c48cf5114752c7ab66c1c38544fdf6460f450c09b42591"
+          "content": "f5007b3a600ccac5d25bbce33089211dfd49eab4a7718da3f10e3082525a92ce"
         }
       ],
       "licenses": [
@@ -1416,7 +1431,7 @@
           "comment": "Home page for project"
         },
         {
-          "url": "https://pypi.org/project/argcomplete/3.6.2/#files",
+          "url": "https://pypi.org/project/argcomplete/3.6.3/#files",
           "type": "distribution",
           "comment": "Download location for component"
         },
@@ -1437,11 +1452,11 @@
           "type": "log"
         }
       ],
-      "purl": "pkg:pypi/[email protected].2",
+      "purl": "pkg:pypi/[email protected].3",
       "properties": [
         {
           "name": "release_date",
-          "value": "2025-04-03T04:57:01Z"
+          "value": "2025-10-20T03:33:33Z"
         },
         {
           "name": "language",
@@ -2680,7 +2695,7 @@
       "type": "library",
       "bom-ref": "41-google-auth-httplib2",
       "name": "google-auth-httplib2",
-      "version": "0.2.0",
+      "version": "0.2.1",
       "supplier": {
         "name": "Google Cloud Platform",
         "contact": [
@@ -2689,12 +2704,12 @@
           }
         ]
       },
-      "cpe": "cpe:2.3:a:google_cloud_platform:google-auth-httplib2:0.2.0:*:*:*:*:*:*:*",
+      "cpe": "cpe:2.3:a:google_cloud_platform:google-auth-httplib2:0.2.1:*:*:*:*:*:*:*",
       "description": "Google Authentication Library: httplib2 transport",
       "hashes": [
         {
           "alg": "SHA-256",
-          "content": "b65a0a2123300dd71281a7bf6e64d65a0759287df52729bdd1ae2e47dc311a3d"
+          "content": "1be94c611db91c01f9703e7f62b0a59bbd5587a95571c7b6fade510d648bc08b"
         }
       ],
       "licenses": [
@@ -2713,16 +2728,16 @@
           "comment": "Home page for project"
         },
         {
-          "url": "https://pypi.org/project/google-auth-httplib2/0.2.0/#files",
+          "url": "https://pypi.org/project/google-auth-httplib2/0.2.1/#files",
           "type": "distribution",
           "comment": "Download location for component"
         }
       ],
-      "purl": "pkg:pypi/[email protected].0",
+      "purl": "pkg:pypi/[email protected].1",
       "properties": [
         {
           "name": "release_date",
-          "value": "2023-12-12T17:40:13Z"
+          "value": "2025-10-30T21:13:15Z"
         },
         {
           "name": "language",
@@ -3386,7 +3401,7 @@
       "type": "library",
       "bom-ref": "52-lib4sbom",
       "name": "lib4sbom",
-      "version": "0.8.8",
+      "version": "0.9.0",
       "supplier": {
         "name": "Anthony Harrison",
         "contact": [
@@ -3395,12 +3410,12 @@
           }
         ]
       },
-      "cpe": "cpe:2.3:a:anthony_harrison:lib4sbom:0.8.8:*:*:*:*:*:*:*",
+      "cpe": "cpe:2.3:a:anthony_harrison:lib4sbom:0.9.0:*:*:*:*:*:*:*",
       "description": "Software Bill of Material (SBOM) generator and consumer library",
       "hashes": [
         {
           "alg": "SHA-256",
-          "content": "c8622549fddd568ac473e085be8d08d8eeb3338bd813612f50da189645cdaccf"
+          "content": "78b8584d10fc7fa28fc3c17c0afcb2967f3c2b96974e4bdbb60b3eb3744d01fd"
         }
       ],
       "licenses": [
@@ -3419,16 +3434,16 @@
           "comment": "Home page for project"
         },
         {
-          "url": "https://pypi.org/project/lib4sbom/0.8.8/#files",
+          "url": "https://pypi.org/project/lib4sbom/0.9.0/#files",
           "type": "distribution",
           "comment": "Download location for component"
         }
       ],
-      "purl": "pkg:pypi/lib4sbom@0.8.8",
+      "purl": "pkg:pypi/lib4sbom@0.9.0",
       "properties": [
         {
           "name": "release_date",
-          "value": "2025-08-29T17:06:49Z"
+          "value": "2025-10-28T09:09:40Z"
         },
         {
           "name": "language",
@@ -3646,7 +3661,7 @@
       "type": "library",
       "bom-ref": "56-xmlschema",
       "name": "xmlschema",
-      "version": "4.1.0",
+      "version": "4.2.0",
       "supplier": {
         "name": "Davide Brunato",
         "contact": [
@@ -3655,12 +3670,12 @@
           }
         ]
       },
-      "cpe": "cpe:2.3:a:davide_brunato:xmlschema:4.1.0:*:*:*:*:*:*:*",
+      "cpe": "cpe:2.3:a:davide_brunato:xmlschema:4.2.0:*:*:*:*:*:*:*",
       "description": "An XML Schema validator and decoder",
       "hashes": [
         {
           "alg": "SHA-256",
-          "content": "eabf610f398a58700bc4ac94380ad9ce558297a3f9ca8b7722ed3f7888eb4498"
+          "content": "82d24a50eea5e7f2d603312813848cd66fddf8fa2b6730839c6aa3d66312e3b6"
         }
       ],
       "externalReferences": [
@@ -3670,16 +3685,16 @@
           "comment": "Home page for project"
         },
         {
-          "url": "https://pypi.org/project/xmlschema/4.1.0/#files",
+          "url": "https://pypi.org/project/xmlschema/4.2.0/#files",
           "type": "distribution",
           "comment": "Download location for component"
         }
       ],
-      "purl": "pkg:pypi/xmlschema@4.1.0",
+      "purl": "pkg:pypi/xmlschema@4.2.0",
       "properties": [
         {
           "name": "release_date",
-          "value": "2025-06-05T21:17:35Z"
+          "value": "2025-10-14T09:19:28Z"
         },
         {
           "name": "language",
@@ -4304,7 +4319,7 @@
       "type": "library",
       "bom-ref": "67-narwhals",
       "name": "narwhals",
-      "version": "2.7.0",
+      "version": "2.10.1",
       "supplier": {
         "name": "Marco Gorelli",
         "contact": [
@@ -4313,7 +4328,7 @@
           }
         ]
       },
-      "cpe": "cpe:2.3:a:marco_gorelli:narwhals:2.7.0:*:*:*:*:*:*:*",
+      "cpe": "cpe:2.3:a:marco_gorelli:narwhals:2.10.1:*:*:*:*:*:*:*",
       "description": "Extremely lightweight compatibility layer between dataframe libraries",
       "licenses": [
         {
@@ -4331,7 +4346,7 @@
           "comment": "Home page for project"
         },
         {
-          "url": "https://pypi.org/project/narwhals/2.7.0/#files",
+          "url": "https://pypi.org/project/narwhals/2.10.1/#files",
           "type": "distribution",
           "comment": "Download location for component"
         },
@@ -4348,7 +4363,7 @@
           "type": "issue-tracker"
         }
       ],
-      "purl": "pkg:pypi/narwhals@2.7.0",
+      "purl": "pkg:pypi/narwhals@2.10.1",
       "properties": [
         {
           "name": "release_date",
@@ -4512,7 +4527,7 @@
       "type": "library",
       "bom-ref": "70-charset-normalizer",
       "name": "charset-normalizer",
-      "version": "3.4.3",
+      "version": "3.4.4",
       "supplier": {
         "name": "Ahmed R .",
         "contact": [
@@ -4521,12 +4536,12 @@
           }
         ]
       },
-      "cpe": "cpe:2.3:a:ahmed_r.:charset-normalizer:3.4.3:*:*:*:*:*:*:*",
+      "cpe": "cpe:2.3:a:ahmed_r.:charset-normalizer:3.4.4:*:*:*:*:*:*:*",
       "description": "The Real First Universal Charset Detector. Open, modern and actively maintained alternative to Chardet.",
       "hashes": [
         {
           "alg": "SHA-256",
-          "content": "fb7f67a1bfa6e40b438170ebdc8158b78dc465a5a67b6dde178a46987b244a72"
+          "content": "e824f1492727fa856dd6eda4f7cee25f8518a12f3c4a56a74e8095695089cf6d"
         }
       ],
       "licenses": [
@@ -4540,7 +4555,7 @@
       ],
       "externalReferences": [
         {
-          "url": "https://pypi.org/project/charset-normalizer/3.4.3/#files",
+          "url": "https://pypi.org/project/charset-normalizer/3.4.4/#files",
           "type": "distribution",
           "comment": "Download location for component"
         },
@@ -4561,11 +4576,11 @@
           "type": "issue-tracker"
         }
       ],
-      "purl": "pkg:pypi/[email protected].3",
+      "purl": "pkg:pypi/[email protected].4",
       "properties": [
         {
           "name": "release_date",
-          "value": "2025-08-09T07:55:36Z"
+          "value": "2025-10-14T04:40:11Z"
         },
         {
           "name": "language",