diff --git a/README.md b/README.md index caaa199..cd7f214 100644 --- a/README.md +++ b/README.md @@ -28,18 +28,16 @@ NOTE - to understand possible values for the action input `flags`, run the Secur ## Create your SecureStack API Key and save as GitHub Secret 1. Log in to [SecureStack](https://app.securestack.com) with your GitHub credentials. -2. Go to Settings in the lower left corner, and then select the 6th tab: API. -3. Generate a new API key and copy the value. -4. Now back in GitHub, go to Settings for your GitHub repository and click on Secrets at the bottom left. -5. Create a new secret named SECURESTACK_API_KEY and paste the value from step 2 into the field. +2. Go to Settings in the lower left corner, and then select the 6th tab: API.![Create API key](./images/securestack-create-apikey.png) +3. Generate a new API key and copy the value.![Copy API key](./images/securestack-copy-apikey.png) +4. Now back in GitHub, go to Settings for your GitHub repository and click on Secrets, and then Actions at the bottom left. +5. Create a new secret named SECURESTACK_API_KEY and paste the value from step 2 into the field and click "Add secret".![Create GitHub Secret for API key](./images/securestack-github-apikey-secret.png) ## Retreiving your SecureStack Application ID 1. Log in to [SecureStack](https://app.securestack.com). -2. Open the application you wish to analyse. -3. In the browser URL bar you will see something like this: ```https://app.securestack.com/settings/applications/269aa3a5-9be8-1a23-1234-123456abcdef``` -4. Copy the last part of that as the Application ID. (ex: 269aa3a5-9be8-1a23-1234-123456abcdef) -5. Now go back to the GitHub UI and paste into the value of the `securestack_app_id` action input for the step using the SecureStack action in your workflow. +2. In the application drop down at the top left choose the application you want to use and click on "Copy Application ID" ![Copy Application ID](./images/securestack-copy-appid.png) +3. Create a new secret named SECURESTACK_APP_ID and paste the value from step 2 into the field and click "Add secret".![Create GitHub Secret for app_id](./images/securestack-github-appid-secret.png) ## What types of components will this BoM include? 1. All your software components including third-party libraries and frameworks diff --git a/images/securestack-copy-apikey.png b/images/securestack-copy-apikey.png new file mode 100644 index 0000000..09e5579 Binary files /dev/null and b/images/securestack-copy-apikey.png differ diff --git a/images/securestack-copy-appid.png b/images/securestack-copy-appid.png new file mode 100644 index 0000000..1deff47 Binary files /dev/null and b/images/securestack-copy-appid.png differ diff --git a/images/securestack-create-apikey.png b/images/securestack-create-apikey.png new file mode 100644 index 0000000..66596cf Binary files /dev/null and b/images/securestack-create-apikey.png differ diff --git a/images/securestack-github-apikey-secret.png b/images/securestack-github-apikey-secret.png new file mode 100644 index 0000000..3c0649e Binary files /dev/null and b/images/securestack-github-apikey-secret.png differ diff --git a/images/securestack-github-appid-secret.png b/images/securestack-github-appid-secret.png new file mode 100644 index 0000000..e08b512 Binary files /dev/null and b/images/securestack-github-appid-secret.png differ diff --git a/temp/sbom.json b/temp/sbom.json deleted file mode 100644 index 5d32f86..0000000 --- a/temp/sbom.json +++ /dev/null @@ -1,2646 +0,0 @@ -{ - "data": { - "fSBOMDisplay": { - "$schema": "http://cyclonedx.org/schema/bom-1.4.schema.json", - "bomFormat": "CycloneDX", - "components": [ - { - "bom-ref": "ea992fe2-a984-4832-827f-806ef61e6e38", - "name": "0fcfd3f4-9313-4fa1-9c2c-775524578e18", - "type": "library" - }, - { - "bom-ref": "5b8bde17-d3c4-4cba-8a39-9f1700270081", - "name": "386ae4b7-dde0-42f6-b156-b9777fabcd1b", - "type": "library" - }, - { - "bom-ref": "8910597d-dce1-41fd-8cb6-143c33007209", - "name": "afb4daf1-5378-4422-8a32-0e49c098a733", - "type": "library" - }, - { - "bom-ref": "08bcffc2-c979-4eee-9ace-66b0648633d1", - "licenses": [ - { - "expression": "MIT" - } - ], - "name": "archiver", - "purl": "pkg:npm/%40types/archiver@3.1.0", - "type": "library", - "version": "3.1.0" - }, - { - "bom-ref": "f4e16f29-9e37-4eb5-9ab8-51b7e36d494f", - "licenses": [ - { - "expression": "MIT" - } - ], - "name": "archiver", - "purl": "pkg:npm/archiver@5.0.0", - "type": "library", - "version": "5.0.0" - }, - { - "bom-ref": "e71afb2a-cb0d-405f-ba54-d6f78f2c0f5b", - "licenses": [ - { - "expression": "MIT" - } - ], - "name": "archiver-utils", - "purl": "pkg:npm/archiver-utils@2.1.0", - "type": "library", - "version": "2.1.0" - }, - { - "bom-ref": "a86821ac-463b-4315-b587-5f43009d6a30", - "licenses": [ - { - "expression": "MIT" - } - ], - "name": "async", - "purl": "pkg:npm/async@3.2.0", - "type": "library", - "version": "3.2.0" - }, - { - "bom-ref": "a9702cf2-66e0-40bc-8fe6-0e7ea2ea9938", - "licenses": [ - { - "expression": "MIT" - } - ], - "name": "axios", - "purl": "pkg:npm/axios@0.21.4", - "type": "library", - "version": "0.21.4" - }, - { - "bom-ref": "1264945f-4e1a-4c83-956b-63813105a665", - "licenses": [ - { - "expression": "MIT" - } - ], - "name": "balanced-match", - "purl": "pkg:npm/balanced-match@1.0.0", - "type": "library", - "version": "1.0.0" - }, - { - "bom-ref": "abff7923-46b0-4123-8d9f-f8a82359ab31", - "licenses": [ - { - "expression": "MIT" - } - ], - "name": "base64-js", - "purl": "pkg:npm/base64-js@1.3.1", - "type": "library", - "version": "1.3.1" - }, - { - "bom-ref": "e7d040b4-d0e1-4eee-af73-228c7059a387", - "licenses": [ - { - "expression": "MIT" - } - ], - "name": "bl", - "purl": "pkg:npm/bl@4.0.3", - "type": "library", - "version": "4.0.3" - }, - { - "bom-ref": "f1f3975d-3c67-4fe3-8592-52739ce075ea", - "licenses": [ - { - "expression": "MIT" - } - ], - "name": "boolean", - "purl": "pkg:npm/boolean@3.1.4", - "type": "library", - "version": "3.1.4" - }, - { - "bom-ref": "8095ebd1-1581-48ef-b4f8-2d486dc22f40", - "licenses": [ - { - "expression": "MIT" - } - ], - "name": "brace-expansion", - "purl": "pkg:npm/brace-expansion@1.1.11", - "type": "library", - "version": "1.1.11" - }, - { - "bom-ref": "f2d73b65-0e91-46c2-9508-7a645e5a3afd", - "licenses": [ - { - "expression": "MIT" - } - ], - "name": "buffer", - "purl": "pkg:npm/buffer@5.6.0", - "type": "library", - "version": "5.6.0" - }, - { - "bom-ref": "33c5ab5f-9bfd-4cd6-9295-dca8a6f9a209", - "licenses": [ - { - "expression": "MIT" - } - ], - "name": "buffer-crc32", - "purl": "pkg:npm/buffer-crc32@0.2.13", - "type": "library", - "version": "0.2.13" - }, - { - "bom-ref": "c13a255e-97e0-45a7-b8e2-3c61761b3597", - "licenses": [ - { - "expression": "MIT" - } - ], - "name": "buffer-from", - "purl": "pkg:npm/buffer-from@1.1.2", - "type": "library", - "version": "1.1.2" - }, - { - "bom-ref": "a012f730-a8f1-4b54-9826-5d89bac4948d", - "licenses": [ - { - "expression": "MIT" - } - ], - "name": "cacheable-request", - "purl": "pkg:npm/cacheable-request@6.1.0", - "type": "library", - "version": "6.1.0" - }, - { - "bom-ref": "8d214b8d-3a57-46ff-a2ac-52377560f149", - "licenses": [ - { - "expression": "MIT" - } - ], - "name": "clone-response", - "purl": "pkg:npm/clone-response@1.0.2", - "type": "library", - "version": "1.0.2" - }, - { - "bom-ref": "a2db6347-3dd5-4217-9dd4-507de7e36040", - "licenses": [ - { - "expression": "MIT" - } - ], - "name": "compress-commons", - "purl": "pkg:npm/compress-commons@4.0.1", - "type": "library", - "version": "4.0.1" - }, - { - "bom-ref": "33bc347e-9718-41fd-9f57-b25333d88794", - "licenses": [ - { - "expression": "MIT" - } - ], - "name": "concat-map", - "purl": "pkg:npm/concat-map@0.0.1", - "type": "library", - "version": "0.0.1" - }, - { - "bom-ref": "60c0ace6-855d-47a6-8f69-a030f8879a2c", - "licenses": [ - { - "expression": "MIT" - } - ], - "name": "concat-stream", - "purl": "pkg:npm/concat-stream@1.6.2", - "type": "library", - "version": "1.6.2" - }, - { - "bom-ref": "8efc764c-e1ae-467d-bd12-18a9141e879f", - "licenses": [ - { - "expression": "MIT" - } - ], - "name": "config-chain", - "purl": "pkg:npm/config-chain@1.1.13", - "type": "library", - "version": "1.1.13" - }, - { - "bom-ref": "412f0718-48c3-4e2c-a3fc-8285a90e6bd6", - "licenses": [ - { - "expression": "MIT" - } - ], - "name": "core-util-is", - "purl": "pkg:npm/core-util-is@1.0.2", - "type": "library", - "version": "1.0.2" - }, - { - "bom-ref": "5aecf2a8-5379-48a5-a207-cdbf66b114ad", - "licenses": [ - { - "expression": "MIT" - } - ], - "name": "crc", - "purl": "pkg:npm/crc@3.8.0", - "type": "library", - "version": "3.8.0" - }, - { - "bom-ref": "07c8cf5b-f4b3-4415-b0f5-2ecb187b76b6", - "licenses": [ - { - "expression": "MIT" - } - ], - "name": "crc32-stream", - "purl": "pkg:npm/crc32-stream@4.0.0", - "type": "library", - "version": "4.0.0" - }, - { - "bom-ref": "b330a2b9-595f-44b0-a9ee-716ff06caa69", - "licenses": [ - { - "expression": "ISC" - } - ], - "name": "d", - "purl": "pkg:npm/d@1.0.1", - "type": "library", - "version": "1.0.1" - }, - { - "bom-ref": "d708c72b-6486-42df-983c-e5e16cae1393", - "licenses": [ - { - "expression": "MIT" - } - ], - "name": "debug", - "purl": "pkg:npm/debug@4.3.2", - "type": "library", - "version": "4.3.2" - }, - { - "bom-ref": "294acce0-e3be-48ca-a7a2-5a687ce89ca4", - "licenses": [ - { - "expression": "MIT" - } - ], - "name": "decompress-response", - "purl": "pkg:npm/decompress-response@3.3.0", - "type": "library", - "version": "3.3.0" - }, - { - "bom-ref": "1edab120-3b38-45e2-aa1e-922a23829adc", - "licenses": [ - { - "expression": "MIT" - } - ], - "name": "defer-to-connect", - "purl": "pkg:npm/defer-to-connect@1.1.3", - "type": "library", - "version": "1.1.3" - }, - { - "bom-ref": "26ebd535-20f1-4b74-8782-97000016ef6f", - "licenses": [ - { - "expression": "MIT" - } - ], - "name": "define-properties", - "purl": "pkg:npm/define-properties@1.1.3", - "type": "library", - "version": "1.1.3" - }, - { - "bom-ref": "9e252926-ad65-4efd-801b-99f54cc429ea", - "licenses": [ - { - "expression": "MIT" - } - ], - "name": "detect-node", - "purl": "pkg:npm/detect-node@2.1.0", - "type": "library", - "version": "2.1.0" - }, - { - "bom-ref": "0e9c3bfc-fbf4-4039-97e6-bcd0864484ac", - "licenses": [ - { - "expression": "BSD-3-Clause" - } - ], - "name": "duplexer3", - "purl": "pkg:npm/duplexer3@0.1.4", - "type": "library", - "version": "0.1.4" - }, - { - "bom-ref": "3d4d8bb5-8807-4656-8241-31dc1d84739a", - "licenses": [ - { - "expression": "MIT" - } - ], - "name": "electron", - "purl": "pkg:npm/electron@10.4.7", - "type": "library", - "version": "10.4.7" - }, - { - "bom-ref": "b6745721-917b-4e4d-9eec-39623867f0f6", - "licenses": [ - { - "expression": "MIT" - } - ], - "name": "encodeurl", - "purl": "pkg:npm/encodeurl@1.0.2", - "type": "library", - "version": "1.0.2" - }, - { - "bom-ref": "cbea4aff-ace3-4c83-a3f3-db1f3d2d4153", - "licenses": [ - { - "expression": "MIT" - } - ], - "name": "end-of-stream", - "purl": "pkg:npm/end-of-stream@1.4.4", - "type": "library", - "version": "1.4.4" - }, - { - "bom-ref": "a9beff28-1ef1-476a-9893-528fffa0ee8f", - "licenses": [ - { - "expression": "MIT" - } - ], - "name": "env-paths", - "purl": "pkg:npm/env-paths@2.2.1", - "type": "library", - "version": "2.2.1" - }, - { - "bom-ref": "c3165026-c6b9-4d42-9182-d6f4dcf913b3", - "licenses": [ - { - "expression": "ISC" - } - ], - "name": "es5-ext", - "purl": "pkg:npm/es5-ext@0.10.53", - "type": "library", - "version": "0.10.53" - }, - { - "bom-ref": "e2cf3395-fdde-4e53-a465-521032d7afa4", - "licenses": [ - { - "expression": "MIT" - } - ], - "name": "es6-error", - "purl": "pkg:npm/es6-error@4.1.1", - "type": "library", - "version": "4.1.1" - }, - { - "bom-ref": "60d90c28-ea7a-424a-9ead-ee536f19350c", - "licenses": [ - { - "expression": "MIT" - } - ], - "name": "es6-iterator", - "purl": "pkg:npm/es6-iterator@2.0.3", - "type": "library", - "version": "2.0.3" - }, - { - "bom-ref": "def844c9-2b14-43f9-bef0-1c61e1ae457c", - "licenses": [ - { - "expression": "MIT" - } - ], - "name": "es6-set", - "purl": "pkg:npm/es6-set@0.1.5", - "type": "library", - "version": "0.1.5" - }, - { - "bom-ref": "c7eb48c7-2634-4142-a13b-bec25522cd3d", - "licenses": [ - { - "expression": "MIT" - } - ], - "name": "es6-symbol", - "purl": "pkg:npm/es6-symbol@3.1.1", - "type": "library", - "version": "3.1.1" - }, - { - "bom-ref": "da64deb1-c0cf-4faf-8309-9066cc234939", - "licenses": [ - { - "expression": "MIT" - } - ], - "name": "escape-string-regexp", - "purl": "pkg:npm/escape-string-regexp@4.0.0", - "type": "library", - "version": "4.0.0" - }, - { - "bom-ref": "6c6b2b85-0f89-45a0-835f-892e8283af24", - "licenses": [ - { - "expression": "MIT" - } - ], - "name": "event-emitter", - "purl": "pkg:npm/event-emitter@0.3.5", - "type": "library", - "version": "0.3.5" - }, - { - "bom-ref": "315987b9-7afd-479a-be92-3a8e85b5d3e2", - "licenses": [ - { - "expression": "MIT" - } - ], - "name": "events", - "purl": "pkg:npm/%40types/events@3.0.0", - "type": "library", - "version": "3.0.0" - }, - { - "bom-ref": "e28b6dc4-d28e-4816-98b1-7dffbd9e71e2", - "licenses": [ - { - "expression": "ISC" - } - ], - "name": "ext", - "purl": "pkg:npm/ext@1.4.0", - "type": "library", - "version": "1.4.0" - }, - { - "bom-ref": "31469353-23ed-4b24-ad07-ce6e66d8bbb9", - "licenses": [ - { - "expression": "BSD-2-Clause" - } - ], - "name": "extract-zip", - "purl": "pkg:npm/extract-zip@1.7.0", - "type": "library", - "version": "1.7.0" - }, - { - "bom-ref": "f6a6b1c3-0b17-4c07-947a-e5e3172d007d", - "licenses": [ - { - "expression": "MIT" - } - ], - "name": "fd-slicer", - "purl": "pkg:npm/fd-slicer@1.1.0", - "type": "library", - "version": "1.1.0" - }, - { - "bom-ref": "cc23eae4-49e4-42ff-ab32-bff2e632a1a0", - "licenses": [ - { - "expression": "MIT" - } - ], - "name": "follow-redirects", - "purl": "pkg:npm/follow-redirects@1.14.5", - "type": "library", - "version": "1.14.5" - }, - { - "bom-ref": "3845b727-a84d-40fb-a80c-944d74b1110f", - "licenses": [ - { - "expression": "MIT" - } - ], - "name": "fs-constants", - "purl": "pkg:npm/fs-constants@1.0.0", - "type": "library", - "version": "1.0.0" - }, - { - "bom-ref": "53be827e-98ee-4987-a81e-191439cf3a6b", - "licenses": [ - { - "expression": "MIT" - } - ], - "name": "fs-extra", - "purl": "pkg:npm/fs-extra@8.1.0", - "type": "library", - "version": "8.1.0" - }, - { - "bom-ref": "5ca9d391-5242-4b96-bf5b-659162825ffc", - "licenses": [ - { - "expression": "ISC" - } - ], - "name": "fs.realpath", - "purl": "pkg:npm/fs.realpath@1.0.0", - "type": "library", - "version": "1.0.0" - }, - { - "bom-ref": "b9032d3c-2552-44f3-9242-c5ae008b5e40", - "name": "get", - "purl": "pkg:npm/%40electron/get@1.13.1", - "type": "library", - "version": "1.13.1" - }, - { - "bom-ref": "06f2cf61-d85c-4812-8dfa-d919052d4b2b", - "licenses": [ - { - "expression": "MIT" - } - ], - "name": "get-stream", - "purl": "pkg:npm/get-stream@4.1.0", - "type": "library", - "version": "4.1.0" - }, - { - "bom-ref": "a9676c2c-29f9-4db1-8918-9897e5b7833a", - "licenses": [ - { - "expression": "ISC" - } - ], - "name": "glob", - "purl": "pkg:npm/%40types/glob@7.1.1", - "type": "library", - "version": "7.1.1" - }, - { - "bom-ref": "611cdd05-70ff-48df-816f-809df4d90e67", - "licenses": [ - { - "expression": "ISC" - } - ], - "name": "glob", - "purl": "pkg:npm/glob@7.1.6", - "type": "library", - "version": "7.1.6" - }, - { - "bom-ref": "34f19c99-df98-4f98-a25c-ba8ff2b60834", - "licenses": [ - { - "expression": "BSD-3-Clause" - } - ], - "name": "global-agent", - "purl": "pkg:npm/global-agent@3.0.0", - "type": "library", - "version": "3.0.0" - }, - { - "bom-ref": "cf55a273-7ca1-475a-8942-e7d8d68aef97", - "licenses": [ - { - "expression": "BSD-3-Clause" - } - ], - "name": "global-tunnel-ng", - "purl": "pkg:npm/global-tunnel-ng@2.7.1", - "type": "library", - "version": "2.7.1" - }, - { - "bom-ref": "d293c791-8c7d-4232-9717-44cbc02303f6", - "licenses": [ - { - "expression": "MIT" - } - ], - "name": "globalthis", - "purl": "pkg:npm/globalthis@1.0.2", - "type": "library", - "version": "1.0.2" - }, - { - "bom-ref": "a738ed98-4734-4aa7-9b31-e4ee73fa946e", - "licenses": [ - { - "expression": "MIT" - } - ], - "name": "got", - "purl": "pkg:npm/got@9.6.0", - "type": "library", - "version": "9.6.0" - }, - { - "bom-ref": "f5c75672-8596-446e-86dc-c7b3271a58ca", - "licenses": [ - { - "expression": "ISC" - } - ], - "name": "graceful-fs", - "purl": "pkg:npm/graceful-fs@4.2.4", - "type": "library", - "version": "4.2.4" - }, - { - "bom-ref": "37b9aeae-98dd-40fd-8deb-b9ca08d94fbe", - "licenses": [ - { - "expression": "BSD-2-Clause" - } - ], - "name": "http-cache-semantics", - "purl": "pkg:npm/http-cache-semantics@4.1.0", - "type": "library", - "version": "4.1.0" - }, - { - "bom-ref": "71d1234c-dd22-4bb1-b988-075424b35c45", - "name": "http-timer", - "purl": "pkg:npm/%40szmarczak/http-timer@1.1.2", - "type": "library", - "version": "1.1.2" - }, - { - "bom-ref": "4cec98d5-cfe9-4e7f-9fe6-851b857d27c1", - "licenses": [ - { - "expression": "BSD-3-Clause" - } - ], - "name": "ieee754", - "purl": "pkg:npm/ieee754@1.1.13", - "type": "library", - "version": "1.1.13" - }, - { - "bom-ref": "001f6134-3bc3-4ca0-8fe7-740a9972397f", - "licenses": [ - { - "expression": "MIT" - } - ], - "name": "immer", - "purl": "pkg:npm/immer@9.0.6", - "type": "library", - "version": "9.0.6" - }, - { - "bom-ref": "3ad7b8d9-99ed-4285-8059-d698cdce8b5e", - "licenses": [ - { - "expression": "ISC" - } - ], - "name": "inflight", - "purl": "pkg:npm/inflight@1.0.6", - "type": "library", - "version": "1.0.6" - }, - { - "bom-ref": "27a2345f-32d9-44c4-bb92-77bb5e255107", - "licenses": [ - { - "expression": "ISC" - } - ], - "name": "inherits", - "purl": "pkg:npm/inherits@2.0.4", - "type": "library", - "version": "2.0.4" - }, - { - "bom-ref": "aa96d50a-257b-443f-909c-a80abf098084", - "licenses": [ - { - "expression": "ISC" - } - ], - "name": "ini", - "purl": "pkg:npm/ini@1.3.8", - "type": "library", - "version": "1.3.8" - }, - { - "bom-ref": "81276b6b-1b23-4f63-89fa-4f2be8e2e4bc", - "name": "is", - "purl": "pkg:npm/%40sindresorhus/is@0.14.0", - "type": "library", - "version": "0.14.0" - }, - { - "bom-ref": "bce090b5-2993-4547-aa9e-d96146bf42eb", - "licenses": [ - { - "expression": "MIT" - } - ], - "name": "isarray", - "purl": "pkg:npm/isarray@1.0.0", - "type": "library", - "version": "1.0.0" - }, - { - "bom-ref": "ad7086fe-ec7f-4988-99fb-8b90fcec65c8", - "licenses": [ - { - "expression": "MIT" - } - ], - "name": "json-buffer", - "purl": "pkg:npm/json-buffer@3.0.0", - "type": "library", - "version": "3.0.0" - }, - { - "bom-ref": "f750c829-83f9-4eea-89b5-0e36e7349ee5", - "licenses": [ - { - "expression": "ISC" - } - ], - "name": "json-stringify-safe", - "purl": "pkg:npm/json-stringify-safe@5.0.1", - "type": "library", - "version": "5.0.1" - }, - { - "bom-ref": "bcb7e3a6-06cb-4da4-8fe9-d6b53bed983f", - "licenses": [ - { - "expression": "MIT" - } - ], - "name": "jsonfile", - "purl": "pkg:npm/jsonfile@4.0.0", - "type": "library", - "version": "4.0.0" - }, - { - "bom-ref": "fef7d44f-2895-47e7-8f56-753631491660", - "licenses": [ - { - "expression": "MIT" - } - ], - "name": "keyv", - "purl": "pkg:npm/keyv@3.1.0", - "type": "library", - "version": "3.1.0" - }, - { - "bom-ref": "d9bf018b-0905-4e4b-8449-63afb7fd62ef", - "licenses": [ - { - "expression": "MIT" - } - ], - "name": "lazystream", - "purl": "pkg:npm/lazystream@1.0.0", - "type": "library", - "version": "1.0.0" - }, - { - "bom-ref": "65af1656-4bfd-41da-bc00-a27b28484f63", - "name": "lodash", - "purl": "pkg:npm/%40types/lodash@4.14.176", - "type": "library", - "version": "4.14.176" - }, - { - "bom-ref": "d3cd8cca-6dd6-45d8-a1f5-76fa427edb31", - "licenses": [ - { - "expression": "MIT" - } - ], - "name": "lodash", - "purl": "pkg:npm/lodash@4.17.21", - "type": "library", - "version": "4.17.21" - }, - { - "bom-ref": "82b11f68-68b5-4330-9461-a84f3769378e", - "licenses": [ - { - "expression": "MIT" - } - ], - "name": "lodash-es", - "purl": "pkg:npm/lodash-es@4.17.21", - "type": "library", - "version": "4.17.21" - }, - { - "bom-ref": "748feb55-26b2-49b5-b6fc-038c61fc9ba5", - "licenses": [ - { - "expression": "MIT" - } - ], - "name": "lodash.defaults", - "purl": "pkg:npm/lodash.defaults@4.2.0", - "type": "library", - "version": "4.2.0" - }, - { - "bom-ref": "98d7ddc8-91e7-4cbe-9d07-74cfe0f8f586", - "licenses": [ - { - "expression": "MIT" - } - ], - "name": "lodash.difference", - "purl": "pkg:npm/lodash.difference@4.5.0", - "type": "library", - "version": "4.5.0" - }, - { - "bom-ref": "f4e1cae8-4ecb-49f1-b73f-648fdb866d0a", - "licenses": [ - { - "expression": "MIT" - } - ], - "name": "lodash.flatten", - "purl": "pkg:npm/lodash.flatten@4.4.0", - "type": "library", - "version": "4.4.0" - }, - { - "bom-ref": "331e77db-3cec-4df4-abe2-10396d9b346d", - "licenses": [ - { - "expression": "MIT" - } - ], - "name": "lodash.isplainobject", - "purl": "pkg:npm/lodash.isplainobject@4.0.6", - "type": "library", - "version": "4.0.6" - }, - { - "bom-ref": "638607c5-b681-42c6-82cc-abc81c96e11a", - "licenses": [ - { - "expression": "MIT" - } - ], - "name": "lodash.union", - "purl": "pkg:npm/lodash.union@4.6.0", - "type": "library", - "version": "4.6.0" - }, - { - "bom-ref": "6c5a895b-160d-44ad-a0e7-4fdf20d1d5de", - "licenses": [ - { - "expression": "MIT" - } - ], - "name": "lowercase-keys", - "purl": "pkg:npm/lowercase-keys@1.0.1", - "type": "library", - "version": "1.0.1" - }, - { - "bom-ref": "4bdf0afc-901f-45cb-af92-67c7192162ef", - "licenses": [ - { - "expression": "ISC" - } - ], - "name": "lru-cache", - "purl": "pkg:npm/lru-cache@6.0.0", - "type": "library", - "version": "6.0.0" - }, - { - "bom-ref": "93fe54df-7c95-430b-af82-99b3b4308576", - "licenses": [ - { - "expression": "MIT" - } - ], - "name": "matcher", - "purl": "pkg:npm/matcher@3.0.0", - "type": "library", - "version": "3.0.0" - }, - { - "bom-ref": "b29264cb-7735-422e-8895-ceb23da0aec2", - "licenses": [ - { - "expression": "MIT" - } - ], - "name": "mimic-response", - "purl": "pkg:npm/mimic-response@1.0.1", - "type": "library", - "version": "1.0.1" - }, - { - "bom-ref": "4885fac8-c465-453f-b28d-56e22d65b643", - "licenses": [ - { - "expression": "ISC" - } - ], - "name": "minimatch", - "purl": "pkg:npm/%40types/minimatch@3.0.3", - "type": "library", - "version": "3.0.3" - }, - { - "bom-ref": "0fbef0f2-5088-4838-b417-81b882f3766e", - "licenses": [ - { - "expression": "ISC" - } - ], - "name": "minimatch", - "purl": "pkg:npm/minimatch@3.0.4", - "type": "library", - "version": "3.0.4" - }, - { - "bom-ref": "651139a7-f8cc-4851-a840-d51f16bd8db2", - "licenses": [ - { - "expression": "MIT" - } - ], - "name": "minimist", - "purl": "pkg:npm/minimist@1.2.5", - "type": "library", - "version": "1.2.5" - }, - { - "bom-ref": "6dde11d5-199a-45fb-aea6-cac20f05c7fd", - "licenses": [ - { - "expression": "MIT" - } - ], - "name": "mkdirp", - "purl": "pkg:npm/mkdirp@0.5.5", - "type": "library", - "version": "0.5.5" - }, - { - "bom-ref": "16b69003-cff5-4c3e-8237-a1d992a4b3c1", - "licenses": [ - { - "expression": "MIT" - } - ], - "name": "ms", - "purl": "pkg:npm/ms@2.1.2", - "type": "library", - "version": "2.1.2" - }, - { - "bom-ref": "1f16c282-5c16-402b-bbbc-ffc4bbfc9282", - "licenses": [ - { - "expression": "MIT" - } - ], - "name": "nanoclone", - "purl": "pkg:npm/nanoclone@0.2.1", - "type": "library", - "version": "0.2.1" - }, - { - "bom-ref": "09fd9b56-9143-4f17-b4fd-236424878126", - "licenses": [ - { - "expression": "MIT" - } - ], - "name": "next-tick", - "purl": "pkg:npm/next-tick@1.0.0", - "type": "library", - "version": "1.0.0" - }, - { - "bom-ref": "97a74813-02dd-4c05-9fee-133b4a019d96", - "name": "node", - "purl": "pkg:npm/%40types/node@14.17.32", - "type": "library", - "version": "14.17.32" - }, - { - "bom-ref": "812c2a96-4a8f-4f47-81e8-477dafec3391", - "licenses": [ - { - "expression": "MIT" - } - ], - "name": "normalize-path", - "purl": "pkg:npm/normalize-path@3.0.0", - "type": "library", - "version": "3.0.0" - }, - { - "bom-ref": "6a79f625-6fb6-4587-8bee-339e1ace88bc", - "licenses": [ - { - "expression": "MIT" - } - ], - "name": "normalize-url", - "purl": "pkg:npm/normalize-url@4.5.1", - "type": "library", - "version": "4.5.1" - }, - { - "bom-ref": "2fed8e4b-19ea-4a34-9480-7373976ff544", - "licenses": [ - { - "expression": "MIT" - } - ], - "name": "npm-conf", - "purl": "pkg:npm/npm-conf@1.1.3", - "type": "library", - "version": "1.1.3" - }, - { - "bom-ref": "e029a8d1-561e-4039-9898-8ca8ea0420b5", - "licenses": [ - { - "expression": "MIT" - } - ], - "name": "npm-leech", - "purl": "pkg:npm/npm-leech@1.3.0", - "type": "library", - "version": "1.3.0" - }, - { - "bom-ref": "bec2396a-dee0-4830-9d76-ba5f77217730", - "licenses": [ - { - "expression": "MIT" - } - ], - "name": "object-keys", - "purl": "pkg:npm/object-keys@1.1.1", - "type": "library", - "version": "1.1.1" - }, - { - "bom-ref": "e287fa0f-fec4-4f71-97c4-6b45a4c1040e", - "licenses": [ - { - "expression": "ISC" - } - ], - "name": "once", - "purl": "pkg:npm/once@1.4.0", - "type": "library", - "version": "1.4.0" - }, - { - "bom-ref": "01e2a07c-8088-4b97-b06c-b11bf00f5357", - "licenses": [ - { - "expression": "MIT" - } - ], - "name": "p-cancelable", - "purl": "pkg:npm/p-cancelable@1.1.0", - "type": "library", - "version": "1.1.0" - }, - { - "bom-ref": "df96693a-7383-4316-be08-cda522f368e4", - "licenses": [ - { - "expression": "MIT" - } - ], - "name": "path-is-absolute", - "purl": "pkg:npm/path-is-absolute@1.0.1", - "type": "library", - "version": "1.0.1" - }, - { - "bom-ref": "a2235b1b-e145-4f50-994b-f1542cabf92c", - "licenses": [ - { - "expression": "MIT" - } - ], - "name": "pend", - "purl": "pkg:npm/pend@1.2.0", - "type": "library", - "version": "1.2.0" - }, - { - "bom-ref": "fdf93c03-c40d-4efa-a560-dbc445ac6b35", - "licenses": [ - { - "expression": "MIT" - } - ], - "name": "pify", - "purl": "pkg:npm/pify@3.0.0", - "type": "library", - "version": "3.0.0" - }, - { - "bom-ref": "35328347-379c-4611-892c-872a52b8ae96", - "licenses": [ - { - "expression": "MIT" - } - ], - "name": "prepend-http", - "purl": "pkg:npm/prepend-http@2.0.0", - "type": "library", - "version": "2.0.0" - }, - { - "bom-ref": "8fd9518f-e652-4ce9-93b1-787e05c71bb0", - "licenses": [ - { - "expression": "MIT" - } - ], - "name": "process-nextick-args", - "purl": "pkg:npm/process-nextick-args@2.0.1", - "type": "library", - "version": "2.0.1" - }, - { - "bom-ref": "63f36a46-7291-476f-a530-303e74d6259d", - "licenses": [ - { - "expression": "MIT" - } - ], - "name": "progress", - "purl": "pkg:npm/progress@2.0.3", - "type": "library", - "version": "2.0.3" - }, - { - "bom-ref": "fd1c7478-4b14-4b6c-8e4f-df015398e09f", - "licenses": [ - { - "expression": "MIT" - } - ], - "name": "property-expr", - "purl": "pkg:npm/property-expr@2.0.4", - "type": "library", - "version": "2.0.4" - }, - { - "bom-ref": "2827e599-3cdf-4bb0-9e05-4d4b810726ff", - "licenses": [ - { - "expression": "ISC" - } - ], - "name": "proto-list", - "purl": "pkg:npm/proto-list@1.2.4", - "type": "library", - "version": "1.2.4" - }, - { - "bom-ref": "fd465005-7489-4afd-b5e4-e5846033a073", - "licenses": [ - { - "expression": "MIT" - } - ], - "name": "pump", - "purl": "pkg:npm/pump@3.0.0", - "type": "library", - "version": "3.0.0" - }, - { - "bom-ref": "5e96f2e7-dfb4-4beb-a83c-bffff6ea4b98", - "licenses": [ - { - "expression": "MIT" - } - ], - "name": "readable-stream", - "purl": "pkg:npm/readable-stream@3.6.0", - "type": "library", - "version": "3.6.0" - }, - { - "bom-ref": "d5182a50-cfef-41be-9b3f-8302fd5f4fd0", - "licenses": [ - { - "expression": "Apache-2.0" - } - ], - "name": "readdir-glob", - "purl": "pkg:npm/readdir-glob@1.0.0", - "type": "library", - "version": "1.0.0" - }, - { - "bom-ref": "461a4d08-093a-446a-80dd-b7f6e1c4c14b", - "licenses": [ - { - "expression": "MIT" - } - ], - "name": "regenerator-runtime", - "purl": "pkg:npm/regenerator-runtime@0.13.9", - "type": "library", - "version": "0.13.9" - }, - { - "bom-ref": "6293ff0c-ed9c-468d-b5f0-e7d7a79eb4a4", - "licenses": [ - { - "expression": "MIT" - } - ], - "name": "responselike", - "purl": "pkg:npm/responselike@1.0.2", - "type": "library", - "version": "1.0.2" - }, - { - "bom-ref": "a629c6b1-e564-452c-9f0f-c302894da838", - "licenses": [ - { - "expression": "BSD-3-Clause" - } - ], - "name": "roarr", - "purl": "pkg:npm/roarr@2.15.4", - "type": "library", - "version": "2.15.4" - }, - { - "bom-ref": "6bd48fe6-3a4b-429c-a1ac-a26001c3718f", - "name": "runtime", - "purl": "pkg:npm/%40babel/runtime@7.16.0", - "type": "library", - "version": "7.16.0" - }, - { - "bom-ref": "adf2d020-8767-4a7d-8327-6f65584dc2ac", - "licenses": [ - { - "expression": "MIT" - } - ], - "name": "safe-buffer", - "purl": "pkg:npm/safe-buffer@5.1.2", - "type": "library", - "version": "5.1.2" - }, - { - "bom-ref": "b8ace696-290b-45d3-a563-8126ccb5ad54", - "licenses": [ - { - "expression": "ISC" - } - ], - "name": "semver", - "purl": "pkg:npm/semver@6.3.0", - "type": "library", - "version": "6.3.0" - }, - { - "bom-ref": "d4d8c209-04a7-41af-a36d-d130f6f1858e", - "licenses": [ - { - "expression": "MIT" - } - ], - "name": "semver-compare", - "purl": "pkg:npm/semver-compare@1.0.0", - "type": "library", - "version": "1.0.0" - }, - { - "bom-ref": "155ff886-d198-4e9a-82ac-77ebb43fbfcd", - "licenses": [ - { - "expression": "MIT" - } - ], - "name": "serialize-error", - "purl": "pkg:npm/serialize-error@7.0.1", - "type": "library", - "version": "7.0.1" - }, - { - "bom-ref": "a7e57846-3cf5-425a-8511-f2214c148ac7", - "licenses": [ - { - "expression": "BSD-3-Clause" - } - ], - "name": "sprintf-js", - "purl": "pkg:npm/sprintf-js@1.1.2", - "type": "library", - "version": "1.1.2" - }, - { - "bom-ref": "8f69830e-f037-4263-b423-e204eee853b0", - "licenses": [ - { - "expression": "MIT" - } - ], - "name": "string_decoder", - "purl": "pkg:npm/string_decoder@1.1.1", - "type": "library", - "version": "1.1.1" - }, - { - "bom-ref": "5cbc3d80-64c2-4853-b856-34eebb6d37a0", - "licenses": [ - { - "expression": "Apache-2.0" - } - ], - "name": "sumchecker", - "purl": "pkg:npm/sumchecker@3.0.1", - "type": "library", - "version": "3.0.1" - }, - { - "bom-ref": "b2d5adc6-8bf3-4399-b7c0-9020486ea838", - "licenses": [ - { - "expression": "MIT" - } - ], - "name": "tar-stream", - "purl": "pkg:npm/tar-stream@2.1.3", - "type": "library", - "version": "2.1.3" - }, - { - "bom-ref": "62ca7be3-18e8-4aa7-bdc8-ccafc6e22d9b", - "licenses": [ - { - "expression": "MIT" - } - ], - "name": "to-readable-stream", - "purl": "pkg:npm/to-readable-stream@1.0.0", - "type": "library", - "version": "1.0.0" - }, - { - "bom-ref": "13829d17-a1c1-4ec6-814c-b710e9cfc90d", - "licenses": [ - { - "expression": "MIT" - } - ], - "name": "toposort", - "purl": "pkg:npm/toposort@2.0.2", - "type": "library", - "version": "2.0.2" - }, - { - "bom-ref": "8c652416-37e7-4ae1-8a63-8c4cf2577de3", - "licenses": [ - { - "expression": "MIT" - } - ], - "name": "tunnel", - "purl": "pkg:npm/tunnel@0.0.6", - "type": "library", - "version": "0.0.6" - }, - { - "bom-ref": "1be4ee20-978a-428a-8280-3e2ed7dacf44", - "licenses": [ - { - "expression": "ISC" - } - ], - "name": "type", - "purl": "pkg:npm/type@1.2.0", - "type": "library", - "version": "1.2.0" - }, - { - "bom-ref": "748ef46b-309b-43b1-a34b-7608ae4ebbcd", - "licenses": [ - { - "expression": "CC0-1.0 OR MIT" - } - ], - "name": "type-fest", - "purl": "pkg:npm/type-fest@0.13.1", - "type": "library", - "version": "0.13.1" - }, - { - "bom-ref": "ee85bd77-0055-4b7d-aba5-0c4e72142db9", - "licenses": [ - { - "expression": "MIT" - } - ], - "name": "typedarray", - "purl": "pkg:npm/typedarray@0.0.6", - "type": "library", - "version": "0.0.6" - }, - { - "bom-ref": "c5b46f95-547c-47c3-a578-e0ff494dbcf4", - "licenses": [ - { - "expression": "MIT" - } - ], - "name": "unfetch", - "purl": "pkg:npm/unfetch@4.2.0", - "type": "library", - "version": "4.2.0" - }, - { - "bom-ref": "8fc5f1f8-b388-4fb0-aef5-a015438ac76c", - "licenses": [ - { - "expression": "MIT" - } - ], - "name": "universalify", - "purl": "pkg:npm/universalify@0.1.2", - "type": "library", - "version": "0.1.2" - }, - { - "bom-ref": "dd85c633-2b2f-4162-843c-c5a805f231e1", - "licenses": [ - { - "expression": "MIT" - } - ], - "name": "url-parse-lax", - "purl": "pkg:npm/url-parse-lax@3.0.0", - "type": "library", - "version": "3.0.0" - }, - { - "bom-ref": "b55fc288-cb50-48b7-91c4-494555a8c727", - "licenses": [ - { - "expression": "MIT" - } - ], - "name": "util-deprecate", - "purl": "pkg:npm/util-deprecate@1.0.2", - "type": "library", - "version": "1.0.2" - }, - { - "bom-ref": "f1da8c24-49fd-450d-b76a-779a698e3c9d", - "name": "validator", - "purl": "pkg:npm/%40types/validator@10.11.3", - "type": "library", - "version": "10.11.3" - }, - { - "bom-ref": "abb8ee9e-0b8e-4c26-9983-344833ed4113", - "licenses": [ - { - "expression": "ISC" - } - ], - "name": "wrappy", - "purl": "pkg:npm/wrappy@1.0.2", - "type": "library", - "version": "1.0.2" - }, - { - "bom-ref": "6c2d9d4b-fc99-4e70-b524-4bfdd30667b1", - "licenses": [ - { - "expression": "ISC" - } - ], - "name": "yallist", - "purl": "pkg:npm/yallist@4.0.0", - "type": "library", - "version": "4.0.0" - }, - { - "bom-ref": "def91f65-37dd-4637-a070-34886cb47923", - "licenses": [ - { - "expression": "MIT" - } - ], - "name": "yauzl", - "purl": "pkg:npm/yauzl@2.10.0", - "type": "library", - "version": "2.10.0" - }, - { - "bom-ref": "7aee1f16-9718-41c8-9887-b8ce21d67d1b", - "name": "yup", - "purl": "pkg:npm/%40types/yup@0.26.37", - "type": "library", - "version": "0.26.37" - }, - { - "bom-ref": "49c58ac0-14bb-4582-b0c5-f3b78fe0331a", - "licenses": [ - { - "expression": "MIT" - } - ], - "name": "yup", - "purl": "pkg:npm/yup@0.32.11", - "type": "library", - "version": "0.32.11" - }, - { - "bom-ref": "3fbc9942-9ee3-4b36-b300-0556005762c9", - "licenses": [ - { - "expression": "MIT" - } - ], - "name": "zip-stream", - "purl": "pkg:npm/zip-stream@4.0.2", - "type": "library", - "version": "4.0.2" - } - ], - "dependencies": [ - { - "dependsOn": [], - "ref": "ea992fe2-a984-4832-827f-806ef61e6e38" - }, - { - "dependsOn": [], - "ref": "5b8bde17-d3c4-4cba-8a39-9f1700270081" - }, - { - "dependsOn": [], - "ref": "8910597d-dce1-41fd-8cb6-143c33007209" - }, - { - "dependsOn": [], - "ref": "08bcffc2-c979-4eee-9ace-66b0648633d1" - }, - { - "dependsOn": [], - "ref": "f4e16f29-9e37-4eb5-9ab8-51b7e36d494f" - }, - { - "dependsOn": [], - "ref": "e71afb2a-cb0d-405f-ba54-d6f78f2c0f5b" - }, - { - "dependsOn": [], - "ref": "a86821ac-463b-4315-b587-5f43009d6a30" - }, - { - "dependsOn": [], - "ref": "a9702cf2-66e0-40bc-8fe6-0e7ea2ea9938" - }, - { - "dependsOn": [], - "ref": "1264945f-4e1a-4c83-956b-63813105a665" - }, - { - "dependsOn": [], - "ref": "abff7923-46b0-4123-8d9f-f8a82359ab31" - }, - { - "dependsOn": [], - "ref": "e7d040b4-d0e1-4eee-af73-228c7059a387" - }, - { - "dependsOn": [], - "ref": "f1f3975d-3c67-4fe3-8592-52739ce075ea" - }, - { - "dependsOn": [], - "ref": "8095ebd1-1581-48ef-b4f8-2d486dc22f40" - }, - { - "dependsOn": [], - "ref": "f2d73b65-0e91-46c2-9508-7a645e5a3afd" - }, - { - "dependsOn": [], - "ref": "33c5ab5f-9bfd-4cd6-9295-dca8a6f9a209" - }, - { - "dependsOn": [], - "ref": "c13a255e-97e0-45a7-b8e2-3c61761b3597" - }, - { - "dependsOn": [], - "ref": "a012f730-a8f1-4b54-9826-5d89bac4948d" - }, - { - "dependsOn": [], - "ref": "8d214b8d-3a57-46ff-a2ac-52377560f149" - }, - { - "dependsOn": [], - "ref": "a2db6347-3dd5-4217-9dd4-507de7e36040" - }, - { - "dependsOn": [], - "ref": "33bc347e-9718-41fd-9f57-b25333d88794" - }, - { - "dependsOn": [], - "ref": "60c0ace6-855d-47a6-8f69-a030f8879a2c" - }, - { - "dependsOn": [], - "ref": "8efc764c-e1ae-467d-bd12-18a9141e879f" - }, - { - "dependsOn": [], - "ref": "412f0718-48c3-4e2c-a3fc-8285a90e6bd6" - }, - { - "dependsOn": [], - "ref": "5aecf2a8-5379-48a5-a207-cdbf66b114ad" - }, - { - "dependsOn": [], - "ref": "07c8cf5b-f4b3-4415-b0f5-2ecb187b76b6" - }, - { - "dependsOn": [], - "ref": "b330a2b9-595f-44b0-a9ee-716ff06caa69" - }, - { - "dependsOn": [], - "ref": "d708c72b-6486-42df-983c-e5e16cae1393" - }, - { - "dependsOn": [], - "ref": "294acce0-e3be-48ca-a7a2-5a687ce89ca4" - }, - { - "dependsOn": [], - "ref": "1edab120-3b38-45e2-aa1e-922a23829adc" - }, - { - "dependsOn": [], - "ref": "26ebd535-20f1-4b74-8782-97000016ef6f" - }, - { - "dependsOn": [], - "ref": "9e252926-ad65-4efd-801b-99f54cc429ea" - }, - { - "dependsOn": [], - "ref": "0e9c3bfc-fbf4-4039-97e6-bcd0864484ac" - }, - { - "dependsOn": [], - "ref": "3d4d8bb5-8807-4656-8241-31dc1d84739a" - }, - { - "dependsOn": [], - "ref": "b6745721-917b-4e4d-9eec-39623867f0f6" - }, - { - "dependsOn": [], - "ref": "cbea4aff-ace3-4c83-a3f3-db1f3d2d4153" - }, - { - "dependsOn": [], - "ref": "a9beff28-1ef1-476a-9893-528fffa0ee8f" - }, - { - "dependsOn": [], - "ref": "c3165026-c6b9-4d42-9182-d6f4dcf913b3" - }, - { - "dependsOn": [], - "ref": "e2cf3395-fdde-4e53-a465-521032d7afa4" - }, - { - "dependsOn": [], - "ref": "60d90c28-ea7a-424a-9ead-ee536f19350c" - }, - { - "dependsOn": [], - "ref": "def844c9-2b14-43f9-bef0-1c61e1ae457c" - }, - { - "dependsOn": [], - "ref": "c7eb48c7-2634-4142-a13b-bec25522cd3d" - }, - { - "dependsOn": [], - "ref": "da64deb1-c0cf-4faf-8309-9066cc234939" - }, - { - "dependsOn": [], - "ref": "6c6b2b85-0f89-45a0-835f-892e8283af24" - }, - { - "dependsOn": [], - "ref": "315987b9-7afd-479a-be92-3a8e85b5d3e2" - }, - { - "dependsOn": [], - "ref": "e28b6dc4-d28e-4816-98b1-7dffbd9e71e2" - }, - { - "dependsOn": [], - "ref": "31469353-23ed-4b24-ad07-ce6e66d8bbb9" - }, - { - "dependsOn": [], - "ref": "f6a6b1c3-0b17-4c07-947a-e5e3172d007d" - }, - { - "dependsOn": [], - "ref": "cc23eae4-49e4-42ff-ab32-bff2e632a1a0" - }, - { - "dependsOn": [], - "ref": "3845b727-a84d-40fb-a80c-944d74b1110f" - }, - { - "dependsOn": [], - "ref": "53be827e-98ee-4987-a81e-191439cf3a6b" - }, - { - "dependsOn": [], - "ref": "5ca9d391-5242-4b96-bf5b-659162825ffc" - }, - { - "dependsOn": [], - "ref": "b9032d3c-2552-44f3-9242-c5ae008b5e40" - }, - { - "dependsOn": [], - "ref": "06f2cf61-d85c-4812-8dfa-d919052d4b2b" - }, - { - "dependsOn": [], - "ref": "a9676c2c-29f9-4db1-8918-9897e5b7833a" - }, - { - "dependsOn": [], - "ref": "611cdd05-70ff-48df-816f-809df4d90e67" - }, - { - "dependsOn": [], - "ref": "34f19c99-df98-4f98-a25c-ba8ff2b60834" - }, - { - "dependsOn": [], - "ref": "cf55a273-7ca1-475a-8942-e7d8d68aef97" - }, - { - "dependsOn": [], - "ref": "d293c791-8c7d-4232-9717-44cbc02303f6" - }, - { - "dependsOn": [], - "ref": "a738ed98-4734-4aa7-9b31-e4ee73fa946e" - }, - { - "dependsOn": [], - "ref": "f5c75672-8596-446e-86dc-c7b3271a58ca" - }, - { - "dependsOn": [], - "ref": "37b9aeae-98dd-40fd-8deb-b9ca08d94fbe" - }, - { - "dependsOn": [], - "ref": "71d1234c-dd22-4bb1-b988-075424b35c45" - }, - { - "dependsOn": [], - "ref": "4cec98d5-cfe9-4e7f-9fe6-851b857d27c1" - }, - { - "dependsOn": [], - "ref": "001f6134-3bc3-4ca0-8fe7-740a9972397f" - }, - { - "dependsOn": [], - "ref": "3ad7b8d9-99ed-4285-8059-d698cdce8b5e" - }, - { - "dependsOn": [], - "ref": "27a2345f-32d9-44c4-bb92-77bb5e255107" - }, - { - "dependsOn": [], - "ref": "aa96d50a-257b-443f-909c-a80abf098084" - }, - { - "dependsOn": [], - "ref": "81276b6b-1b23-4f63-89fa-4f2be8e2e4bc" - }, - { - "dependsOn": [], - "ref": "bce090b5-2993-4547-aa9e-d96146bf42eb" - }, - { - "dependsOn": [], - "ref": "ad7086fe-ec7f-4988-99fb-8b90fcec65c8" - }, - { - "dependsOn": [], - "ref": "f750c829-83f9-4eea-89b5-0e36e7349ee5" - }, - { - "dependsOn": [], - "ref": "bcb7e3a6-06cb-4da4-8fe9-d6b53bed983f" - }, - { - "dependsOn": [], - "ref": "fef7d44f-2895-47e7-8f56-753631491660" - }, - { - "dependsOn": [], - "ref": "d9bf018b-0905-4e4b-8449-63afb7fd62ef" - }, - { - "dependsOn": [], - "ref": "65af1656-4bfd-41da-bc00-a27b28484f63" - }, - { - "dependsOn": [], - "ref": "d3cd8cca-6dd6-45d8-a1f5-76fa427edb31" - }, - { - "dependsOn": [], - "ref": "82b11f68-68b5-4330-9461-a84f3769378e" - }, - { - "dependsOn": [], - "ref": "748feb55-26b2-49b5-b6fc-038c61fc9ba5" - }, - { - "dependsOn": [], - "ref": "98d7ddc8-91e7-4cbe-9d07-74cfe0f8f586" - }, - { - "dependsOn": [], - "ref": "f4e1cae8-4ecb-49f1-b73f-648fdb866d0a" - }, - { - "dependsOn": [], - "ref": "331e77db-3cec-4df4-abe2-10396d9b346d" - }, - { - "dependsOn": [], - "ref": "638607c5-b681-42c6-82cc-abc81c96e11a" - }, - { - "dependsOn": [], - "ref": "6c5a895b-160d-44ad-a0e7-4fdf20d1d5de" - }, - { - "dependsOn": [], - "ref": "4bdf0afc-901f-45cb-af92-67c7192162ef" - }, - { - "dependsOn": [], - "ref": "93fe54df-7c95-430b-af82-99b3b4308576" - }, - { - "dependsOn": [], - "ref": "b29264cb-7735-422e-8895-ceb23da0aec2" - }, - { - "dependsOn": [], - "ref": "4885fac8-c465-453f-b28d-56e22d65b643" - }, - { - "dependsOn": [], - "ref": "0fbef0f2-5088-4838-b417-81b882f3766e" - }, - { - "dependsOn": [], - "ref": "651139a7-f8cc-4851-a840-d51f16bd8db2" - }, - { - "dependsOn": [], - "ref": "6dde11d5-199a-45fb-aea6-cac20f05c7fd" - }, - { - "dependsOn": [], - "ref": "16b69003-cff5-4c3e-8237-a1d992a4b3c1" - }, - { - "dependsOn": [], - "ref": "1f16c282-5c16-402b-bbbc-ffc4bbfc9282" - }, - { - "dependsOn": [], - "ref": "09fd9b56-9143-4f17-b4fd-236424878126" - }, - { - "dependsOn": [], - "ref": "97a74813-02dd-4c05-9fee-133b4a019d96" - }, - { - "dependsOn": [], - "ref": "812c2a96-4a8f-4f47-81e8-477dafec3391" - }, - { - "dependsOn": [], - "ref": "6a79f625-6fb6-4587-8bee-339e1ace88bc" - }, - { - "dependsOn": [], - "ref": "2fed8e4b-19ea-4a34-9480-7373976ff544" - }, - { - "dependsOn": [], - "ref": "e029a8d1-561e-4039-9898-8ca8ea0420b5" - }, - { - "dependsOn": [], - "ref": "bec2396a-dee0-4830-9d76-ba5f77217730" - }, - { - "dependsOn": [], - "ref": "e287fa0f-fec4-4f71-97c4-6b45a4c1040e" - }, - { - "dependsOn": [], - "ref": "01e2a07c-8088-4b97-b06c-b11bf00f5357" - }, - { - "dependsOn": [], - "ref": "df96693a-7383-4316-be08-cda522f368e4" - }, - { - "dependsOn": [], - "ref": "a2235b1b-e145-4f50-994b-f1542cabf92c" - }, - { - "dependsOn": [], - "ref": "fdf93c03-c40d-4efa-a560-dbc445ac6b35" - }, - { - "dependsOn": [], - "ref": "35328347-379c-4611-892c-872a52b8ae96" - }, - { - "dependsOn": [], - "ref": "8fd9518f-e652-4ce9-93b1-787e05c71bb0" - }, - { - "dependsOn": [], - "ref": "63f36a46-7291-476f-a530-303e74d6259d" - }, - { - "dependsOn": [], - "ref": "fd1c7478-4b14-4b6c-8e4f-df015398e09f" - }, - { - "dependsOn": [], - "ref": "2827e599-3cdf-4bb0-9e05-4d4b810726ff" - }, - { - "dependsOn": [], - "ref": "fd465005-7489-4afd-b5e4-e5846033a073" - }, - { - "dependsOn": [], - "ref": "5e96f2e7-dfb4-4beb-a83c-bffff6ea4b98" - }, - { - "dependsOn": [], - "ref": "d5182a50-cfef-41be-9b3f-8302fd5f4fd0" - }, - { - "dependsOn": [], - "ref": "461a4d08-093a-446a-80dd-b7f6e1c4c14b" - }, - { - "dependsOn": [], - "ref": "6293ff0c-ed9c-468d-b5f0-e7d7a79eb4a4" - }, - { - "dependsOn": [], - "ref": "a629c6b1-e564-452c-9f0f-c302894da838" - }, - { - "dependsOn": [], - "ref": "6bd48fe6-3a4b-429c-a1ac-a26001c3718f" - }, - { - "dependsOn": [], - "ref": "adf2d020-8767-4a7d-8327-6f65584dc2ac" - }, - { - "dependsOn": [], - "ref": "b8ace696-290b-45d3-a563-8126ccb5ad54" - }, - { - "dependsOn": [], - "ref": "d4d8c209-04a7-41af-a36d-d130f6f1858e" - }, - { - "dependsOn": [], - "ref": "155ff886-d198-4e9a-82ac-77ebb43fbfcd" - }, - { - "dependsOn": [], - "ref": "a7e57846-3cf5-425a-8511-f2214c148ac7" - }, - { - "dependsOn": [], - "ref": "8f69830e-f037-4263-b423-e204eee853b0" - }, - { - "dependsOn": [], - "ref": "5cbc3d80-64c2-4853-b856-34eebb6d37a0" - }, - { - "dependsOn": [], - "ref": "b2d5adc6-8bf3-4399-b7c0-9020486ea838" - }, - { - "dependsOn": [], - "ref": "62ca7be3-18e8-4aa7-bdc8-ccafc6e22d9b" - }, - { - "dependsOn": [], - "ref": "13829d17-a1c1-4ec6-814c-b710e9cfc90d" - }, - { - "dependsOn": [], - "ref": "8c652416-37e7-4ae1-8a63-8c4cf2577de3" - }, - { - "dependsOn": [], - "ref": "1be4ee20-978a-428a-8280-3e2ed7dacf44" - }, - { - "dependsOn": [], - "ref": "748ef46b-309b-43b1-a34b-7608ae4ebbcd" - }, - { - "dependsOn": [], - "ref": "ee85bd77-0055-4b7d-aba5-0c4e72142db9" - }, - { - "dependsOn": [], - "ref": "c5b46f95-547c-47c3-a578-e0ff494dbcf4" - }, - { - "dependsOn": [], - "ref": "8fc5f1f8-b388-4fb0-aef5-a015438ac76c" - }, - { - "dependsOn": [], - "ref": "dd85c633-2b2f-4162-843c-c5a805f231e1" - }, - { - "dependsOn": [], - "ref": "b55fc288-cb50-48b7-91c4-494555a8c727" - }, - { - "dependsOn": [], - "ref": "f1da8c24-49fd-450d-b76a-779a698e3c9d" - }, - { - "dependsOn": [], - "ref": "abb8ee9e-0b8e-4c26-9983-344833ed4113" - }, - { - "dependsOn": [], - "ref": "6c2d9d4b-fc99-4e70-b524-4bfdd30667b1" - }, - { - "dependsOn": [], - "ref": "def91f65-37dd-4637-a070-34886cb47923" - }, - { - "dependsOn": [], - "ref": "7aee1f16-9718-41c8-9887-b8ce21d67d1b" - }, - { - "dependsOn": [], - "ref": "49c58ac0-14bb-4582-b0c5-f3b78fe0331a" - }, - { - "dependsOn": [], - "ref": "3fbc9942-9ee3-4b36-b300-0556005762c9" - } - ], - "metadata": { - "timestamp": "2022-08-25T07:31:59.894285+00:00", - "tools": [ - { - "externalReferences": [ - { - "type": "build-system", - "url": "https://github.com/CycloneDX/cyclonedx-python-lib/actions" - }, - { - "type": "distribution", - "url": "https://pypi.org/project/cyclonedx-python-lib/" - }, - { - "type": "documentation", - "url": "https://cyclonedx.github.io/cyclonedx-python-lib/" - }, - { - "type": "issue-tracker", - "url": "https://github.com/CycloneDX/cyclonedx-python-lib/issues" - }, - { - "type": "license", - "url": "https://github.com/CycloneDX/cyclonedx-python-lib/blob/main/LICENSE" - }, - { - "type": "release-notes", - "url": "https://github.com/CycloneDX/cyclonedx-python-lib/blob/main/CHANGELOG.md" - }, - { - "type": "vcs", - "url": "https://github.com/CycloneDX/cyclonedx-python-lib" - }, - { - "type": "website", - "url": "https://cyclonedx.org" - } - ], - "name": "cyclonedx-python-lib", - "vendor": "CycloneDX", - "version": "2.6.0" - }, - { - "name": "BloodHound", - "vendor": "SecureStack" - } - ] - }, - "serialNumber": "urn:uuid:c3be3693-417e-4c08-be3a-3864d609919a", - "services": [ - { - "authenticated": true, - "bom-ref": "c3e9b7e2-f512-46a1-a05c-ac1c7a29699c", - "data": [ - { - "flow": "bi-directional" - } - ], - "description": "An Application Load Balancer is a Load Balancer that functions at the application layer, the seventh layer of the Open Systems Interconnection (OSI) model.", - "endpoints": [ - "elasticloadbalancing.ap-southeast-2.amazonaws.com" - ], - "group": "com.amazon.aws", - "name": "Application Load Balancer", - "properties": [ - { - "name": "InstanceId", - "value": "arn:aws:elasticloadbalancing:ap-southeast-2:438573708571:loadbalancer/app/prod-niftybank-alb/a8b22859a90dadc2" - } - ], - "provider": { - "name": "Amazon Web Services", - "url": [ - "aws.amazon.com" - ] - } - }, - { - "authenticated": true, - "bom-ref": "2452041f-7c2c-4b08-a765-2b81bf05af65", - "data": [ - { - "flow": "bi-directional" - } - ], - "description": "Amazon EC2 delivers secure, reliable, high-performance, and cost-effective compute infrastructure to meet demanding business needs.", - "endpoints": [ - "ec2.ap-southeast-2.amazonaws.com" - ], - "group": "com.amazon.aws", - "name": "Elastic Compute Cloud", - "properties": [ - { - "name": "InstanceId", - "value": "i-052221630bb8a22ce" - } - ], - "provider": { - "name": "Amazon Web Services", - "url": [ - "aws.amazon.com" - ] - } - } - ], - "specVersion": "1.4", - "version": 1, - "vulnerabilities": [ - { - "bom-ref": "a054b90b-ff48-4060-b980-467daac3236a", - "description": "AWS WAF Not enabled", - "detail": "alb", - "id": "0fcfd3f4-9313-4fa1-9c2c-775524578e18" - }, - { - "bom-ref": "0b571cd7-65f7-4f67-b3bc-e3144da52b0d", - "description": "Target group EC2 Instance security group are open to ports beyond standard ports", - "detail": "alb", - "id": "0fcfd3f4-9313-4fa1-9c2c-775524578e18" - }, - { - "bom-ref": "a52f3b8e-d2e3-49b0-ab79-0e14c9ebbdac", - "description": "Target group EC2 instance has public IP address associated", - "detail": "alb", - "id": "0fcfd3f4-9313-4fa1-9c2c-775524578e18" - }, - { - "bom-ref": "6e9c94ee-618b-45b7-be60-77b908a1d36a", - "description": "Target group only has one instance member", - "detail": "alb", - "id": "0fcfd3f4-9313-4fa1-9c2c-775524578e18" - }, - { - "bom-ref": "e09b93f6-2cf6-43ba-9884-449bbcc002d3", - "description": "AWS GuardDuty not enabled", - "detail": "aws_account", - "id": "386ae4b7-dde0-42f6-b156-b9777fabcd1b" - }, - { - "bom-ref": "998ce34c-6aea-4d40-b18f-bb35bad55c0c", - "description": "AWS GuardDuty not enabled in all regions", - "detail": "aws_account", - "id": "386ae4b7-dde0-42f6-b156-b9777fabcd1b" - }, - { - "bom-ref": "b5350a13-3656-4cdf-a464-2e93ca59e73a", - "description": "EC2 Instances security group is open to ports beyond just web ports", - "detail": "ec2", - "id": "afb4daf1-5378-4422-8a32-0e49c098a733" - }, - { - "bom-ref": "01dbe81b-5548-4c91-b211-02ee3d2a1955", - "description": "EC2 instance exposed publicly", - "detail": "ec2", - "id": "afb4daf1-5378-4422-8a32-0e49c098a733" - }, - { - "affects": [ - { - "ref": "3d4d8bb5-8807-4656-8241-31dc1d84739a" - } - ], - "bom-ref": "2164c6e8-a29f-4864-bf73-60d879c511a8", - "description": "AutoUpdater module fails to validate certain nested components of the bundle", - "published": "2022-06-16T23:18:47+00:00", - "ratings": [ - { - "method": "CVSSv3", - "score": 6.6, - "vector": "AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H" - } - ], - "updated": "2022-06-29T21:48:38+00:00" - }, - { - "affects": [ - { - "ref": "3d4d8bb5-8807-4656-8241-31dc1d84739a" - } - ], - "bom-ref": "009c465d-7054-4968-92a5-64f35a08d9e6", - "description": "Compromised child renderer processes could obtain IPC access without nodeIntegrationInSubFrames being enabled", - "published": "2022-06-16T23:14:33+00:00", - "ratings": [ - { - "method": "CVSSv3", - "score": 2.2, - "vector": "AV:N/AC:H/PR:H/UI:N/S:U/C:L/I:N/A:N" - } - ], - "updated": "2022-06-16T23:14:33+00:00" - }, - { - "affects": [ - { - "ref": "3d4d8bb5-8807-4656-8241-31dc1d84739a" - } - ], - "bom-ref": "2550daf3-b216-4e47-96ec-736dacd8a1cd", - "description": "Electron's sandboxed renderers can obtain thumbnails of arbitrary files through the nativeImage API", - "published": "2021-10-12T21:59:13+00:00", - "ratings": [ - { - "method": "CVSSv3", - "score": 6.8, - "vector": "AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:N/A:N" - } - ], - "updated": "2022-08-11T16:56:02+00:00" - }, - { - "affects": [ - { - "ref": "3d4d8bb5-8807-4656-8241-31dc1d84739a" - } - ], - "bom-ref": "97220ad6-45f1-47a6-9f58-e811b45811e6", - "description": "Renderers can obtain access to random bluetooth device without permission in Electron", - "published": "2022-03-22T18:49:36+00:00", - "ratings": [ - { - "method": "CVSSv3", - "score": 3.4, - "vector": "AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:N/A:N" - } - ], - "updated": "2022-03-22T18:49:36+00:00" - }, - { - "affects": [ - { - "ref": "cc23eae4-49e4-42ff-ab32-bff2e632a1a0" - } - ], - "bom-ref": "9003dd7e-2427-41fe-8525-900079f8ca77", - "description": "Exposure of Sensitive Information to an Unauthorized Actor in follow-redirects", - "published": "2022-02-10T00:00:31+00:00", - "ratings": [ - { - "method": "CVSSv3", - "score": 5.9, - "vector": "AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N" - } - ], - "updated": "2022-02-14T22:27:56+00:00" - }, - { - "affects": [ - { - "ref": "cc23eae4-49e4-42ff-ab32-bff2e632a1a0" - } - ], - "bom-ref": "5fefd66b-b89d-4f04-a899-fe9e52cef2e4", - "description": "Exposure of sensitive information in follow-redirects", - "published": "2022-01-12T22:46:26+00:00", - "ratings": [ - { - "method": "CVSSv3", - "score": 8, - "vector": "AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H" - } - ], - "updated": "2022-01-20T15:34:48+00:00" - }, - { - "affects": [ - { - "ref": "a738ed98-4734-4aa7-9b31-e4ee73fa946e" - } - ], - "bom-ref": "5404b05b-4ef2-4da7-833d-52f60cafa195", - "description": "Got allows a redirect to a UNIX socket", - "published": "2022-06-19T00:00:21+00:00", - "ratings": [ - { - "method": "CVSSv3", - "score": 5.3, - "vector": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N" - } - ], - "updated": "2022-07-05T21:24:52+00:00" - }, - { - "affects": [ - { - "ref": "65af1656-4bfd-41da-bc00-a27b28484f63" - } - ], - "bom-ref": "3d807e69-7374-404c-b361-b3d693d906f6", - "description": "Command Injection in lodash", - "published": "2021-05-06T16:05:51+00:00", - "ratings": [ - { - "method": "CVSSv3", - "score": 7.2, - "vector": "AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H" - } - ], - "updated": "2022-02-08T21:35:09+00:00" - }, - { - "affects": [ - { - "ref": "65af1656-4bfd-41da-bc00-a27b28484f63" - } - ], - "bom-ref": "07867f9c-7fbe-40a4-839b-dfa39759257a", - "description": "Prototype Pollution in lodash", - "published": "2018-07-26T15:14:52+00:00", - "ratings": [ - { - "method": "other" - } - ], - "updated": "2020-08-31T18:28:28+00:00" - }, - { - "affects": [ - { - "ref": "65af1656-4bfd-41da-bc00-a27b28484f63" - } - ], - "bom-ref": "cba74980-4ebe-45fa-95dc-ae3c5febe315", - "description": "Prototype Pollution in lodash", - "published": "2019-02-07T18:16:48+00:00", - "ratings": [ - { - "method": "other" - } - ], - "updated": "2020-08-31T18:35:33+00:00" - }, - { - "affects": [ - { - "ref": "65af1656-4bfd-41da-bc00-a27b28484f63" - } - ], - "bom-ref": "a1e935bd-da3e-4b1b-9c6d-c50a763a5e50", - "description": "Prototype Pollution in lodash", - "published": "2019-07-10T19:45:23+00:00", - "ratings": [ - { - "method": "CVSSv3", - "score": 9.1, - "vector": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H" - } - ], - "updated": "2021-08-17T17:55:46+00:00" - }, - { - "affects": [ - { - "ref": "65af1656-4bfd-41da-bc00-a27b28484f63" - } - ], - "bom-ref": "d1b19b8e-c643-430d-87f8-f48c9bd9c7dd", - "description": "Prototype Pollution in lodash", - "published": "2020-07-15T19:15:48+00:00", - "ratings": [ - { - "method": "CVSSv3", - "score": 7.4, - "vector": "AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:H" - } - ], - "updated": "2022-02-08T22:04:28+00:00" - }, - { - "affects": [ - { - "ref": "65af1656-4bfd-41da-bc00-a27b28484f63" - } - ], - "bom-ref": "bb24a5a5-b324-45df-98b7-c00d6caa2fd8", - "description": "Regular Expression Denial of Service (ReDoS) in lodash", - "published": "2019-07-19T16:13:07+00:00", - "ratings": [ - { - "method": "other" - } - ], - "updated": "2022-03-09T22:54:28+00:00" - }, - { - "affects": [ - { - "ref": "65af1656-4bfd-41da-bc00-a27b28484f63" - } - ], - "bom-ref": "5f371e44-3209-4b57-bdd4-e20b37560e82", - "description": "Regular Expression Denial of Service (ReDoS) in lodash", - "published": "2022-01-06T20:30:46+00:00", - "ratings": [ - { - "method": "CVSSv3", - "score": 5.3, - "vector": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L" - } - ], - "updated": "2022-02-08T21:35:28+00:00" - }, - { - "affects": [ - { - "ref": "651139a7-f8cc-4851-a840-d51f16bd8db2" - } - ], - "bom-ref": "465b8aad-f177-4d9f-bed6-2aa2fb38517f", - "description": "Prototype Pollution in minimist", - "published": "2022-03-18T00:01:09+00:00", - "ratings": [ - { - "method": "CVSSv3", - "score": 9.8, - "vector": "AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" - } - ], - "updated": "2022-04-04T21:39:38+00:00" - }, - { - "affects": [ - { - "ref": "f1da8c24-49fd-450d-b76a-779a698e3c9d" - } - ], - "bom-ref": "bf4d1166-e5a5-47b7-b749-e193279a5cb5", - "description": "Inefficient Regular Expression Complexity in validator.js", - "published": "2021-11-03T17:34:45+00:00", - "ratings": [ - { - "method": "CVSSv3", - "score": 5.3, - "vector": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L" - } - ], - "updated": "2021-11-03T14:46:00+00:00" - } - ] - } - } -} \ No newline at end of file