mongodb/mongo-python-driver
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

chore: Update SBOM (#2623)

Browse Source 
Co-authored-by: blink1073 <2096628+blink1073@users.noreply.github.com>
This commit is contained in:
github-actions[bot] 2025-11-24 10:34:44 -06:00 committed by GitHub
parent cef27b18d9
commit 1a434c7c59
No known key found for this signature in database
GPG Key ID: B5690EEEBB952194
1 changed files with 175 additions and 132 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

307
sbom.json
View File

@ -1,159 +1,202 @@
{ {
"bomFormat": "CycloneDX",
"specVersion": "1.5",
"serialNumber": "urn:uuid:f91a87bf-a37f-4c1e-805f-142f60b2c960",
"version": 1,
"metadata": {
"timestamp": "2025-11-20T21:30:34Z",
"tools": {
"components": [
{
"group": "@cyclonedx",
"name": "cdxgen",
"version": "11.11.0",
"purl": "pkg:npm/%40cyclonedx/cdxgen@11.11.0",
"type": "application",
"bom-ref": "pkg:npm/@cyclonedx/cdxgen@11.11.0",
"author": "OWASP Foundation",
"publisher": "OWASP Foundation"
}
]
},
"authors": [
{
"name": "OWASP Foundation"
}
],
"lifecycles": [
{
"phase": "build"
}
],
"component": {
"name": "pymongo",
"description": "PyMongo - the Official MongoDB Python driver",
"authors": [
{
"name": "The MongoDB Python Team"
}
],
"tags": [
"bson",
"gridfs",
"mongo",
"mongodb",
"pymongo"
],
"properties": [
{
"name": "cdx:pypi:requiresPython",
"value": ">=3.9"
},
{
"name": "SrcFile",
"value": "/home/runner/work/mongo-python-driver/mongo-python-driver/pyproject.toml"
}
],
"type": "application",
"bom-ref": "pkg:pypi/pymongo@latest",
"purl": "pkg:pypi/pymongo@latest",
"version": "latest",
"licenses": [
{
"license": {
"id": "Apache-2.0",
"url": "https://opensource.org/licenses/Apache-2.0"
}
}
]
},
"properties": [
{
"name": "cdx:bom:componentTypes",
"value": "pypi"
},
{
"name": "cdx:bom:componentSrcFiles",
"value": "pyproject.toml"
}
]
},
"components": [ "components": [
{ {
"group": "", "bom-ref": "dnspython==2.8.0",
"name": "pymongo", "description": "DNS toolkit",
"version": "latest", "externalReferences": [
"purl": "pkg:pypi/pymongo@latest",
"type": "library",
"bom-ref": "pkg:pypi/pymongo@latest",
"properties": [
{ {
"name": "SrcFile", "comment": "from packaging metadata Project-URL: documentation",
"value": "pyproject.toml" "type": "documentation",
"url": "https://dnspython.readthedocs.io/en/stable/"
},
{
"comment": "from packaging metadata Project-URL: issues",
"type": "issue-tracker",
"url": "https://github.com/rthalley/dnspython/issues"
},
{
"comment": "from packaging metadata Project-URL: repository",
"type": "vcs",
"url": "https://github.com/rthalley/dnspython.git"
},
{
"comment": "from packaging metadata Project-URL: homepage",
"type": "website",
"url": "https://www.dnspython.org"
} }
], ],
"evidence": {
"identity": {
"field": "purl",
"confidence": 1,
"methods": [
{
"technique": "instrumentation",
"confidence": 1,
"value": "/home/runner/work/mongo-python-driver/mongo-python-driver/.venv"
}
]
}
}
},
{
"author": "Bob Halley <halley@dnspython.org>",
"group": "",
"name": "dnspython",
"version": "2.8.0",
"description": "DNS toolkit",
"licenses": [ "licenses": [
{ {
"license": { "license": {
"id": "ISC", "id": "ISC"
"url": "https://opensource.org/licenses/ISC"
} }
} }
], ],
"name": "dnspython",
"purl": "pkg:pypi/dnspython@2.8.0", "purl": "pkg:pypi/dnspython@2.8.0",
"type": "library", "type": "library",
"bom-ref": "pkg:pypi/dnspython@2.8.0", "version": "2.8.0"
"properties": [ },
{
"bom-ref": "pymongo==4.16.0.dev0",
"description": "PyMongo - the Official MongoDB Python driver",
"externalReferences": [
{ {
"name": "SrcFile", "comment": "PackageSource: Local",
"value": "pyproject.toml" "type": "distribution",
"url": "file:///home/runner/work/mongo-python-driver/mongo-python-driver"
},
{
"comment": "from packaging metadata Project-URL: Documentation",
"type": "documentation",
"url": "https://www.mongodb.com/docs/languages/python/pymongo-driver/current/"
},
{
"comment": "from packaging metadata Project-URL: Tracker",
"type": "issue-tracker",
"url": "https://jira.mongodb.org/projects/PYTHON/issues"
},
{
"comment": "from packaging metadata Project-URL: Source",
"type": "other",
"url": "https://github.com/mongodb/mongo-python-driver"
},
{
"comment": "from packaging metadata Project-URL: Homepage",
"type": "website",
"url": "https://www.mongodb.org"
} }
], ],
"evidence": { "licenses": [
"identity": { {
"field": "purl", "license": {
"confidence": 1, "id": "Apache-2.0"
"methods": [ }
{
"technique": "instrumentation",
"confidence": 1,
"value": "/home/runner/work/mongo-python-driver/mongo-python-driver/.venv"
}
]
} }
} ],
"name": "pymongo",
"type": "library",
"version": "4.16.0.dev0",
"purl": "pkg:pypi/pymongo@4.16.0.dev0"
} }
], ],
"dependencies": [ "dependencies": [
{ {
"ref": "pkg:pypi/dnspython@2.8.0", "ref": "dnspython==2.8.0"
"dependsOn": []
}, },
{ {
"ref": "pkg:pypi/pymongo@latest",
"dependsOn": [ "dependsOn": [
"pkg:pypi/dnspython@2.8.0" "dnspython==2.8.0"
],
"ref": "pymongo==4.16.0.dev0"
}
],
"metadata": {
"timestamp": "2025-11-24T16:21:47.249880+00:00",
"tools": {
"components": [
{
"description": "CycloneDX Software Bill of Materials (SBOM) generator for Python projects and environments",
"externalReferences": [
{
"type": "build-system",
"url": "https://github.com/CycloneDX/cyclonedx-python/actions"
},
{
"type": "distribution",
"url": "https://pypi.org/project/cyclonedx-bom/"
},
{
"type": "documentation",
"url": "https://cyclonedx-bom-tool.readthedocs.io/"
},
{
"type": "issue-tracker",
"url": "https://github.com/CycloneDX/cyclonedx-python/issues"
},
{
"type": "license",
"url": "https://github.com/CycloneDX/cyclonedx-python/blob/main/LICENSE"
},
{
"type": "release-notes",
"url": "https://github.com/CycloneDX/cyclonedx-python/blob/main/CHANGELOG.md"
},
{
"type": "vcs",
"url": "https://github.com/CycloneDX/cyclonedx-python/"
},
{
"type": "website",
"url": "https://github.com/CycloneDX/cyclonedx-python/#readme"
}
],
"group": "CycloneDX",
"licenses": [
{
"license": {
"id": "Apache-2.0"
}
}
],
"name": "cyclonedx-py",
"type": "application",
"version": "7.2.1"
},
{
"description": "Python library for CycloneDX",
"externalReferences": [
{
"type": "build-system",
"url": "https://github.com/CycloneDX/cyclonedx-python-lib/actions"
},
{
"type": "distribution",
"url": "https://pypi.org/project/cyclonedx-python-lib/"
},
{
"type": "documentation",
"url": "https://cyclonedx-python-library.readthedocs.io/"
},
{
"type": "issue-tracker",
"url": "https://github.com/CycloneDX/cyclonedx-python-lib/issues"
},
{
"type": "license",
"url": "https://github.com/CycloneDX/cyclonedx-python-lib/blob/main/LICENSE"
},
{
"type": "release-notes",
"url": "https://github.com/CycloneDX/cyclonedx-python-lib/blob/main/CHANGELOG.md"
},
{
"type": "vcs",
"url": "https://github.com/CycloneDX/cyclonedx-python-lib"
},
{
"type": "website",
"url": "https://github.com/CycloneDX/cyclonedx-python-lib/#readme"
}
],
"group": "CycloneDX",
"licenses": [
{
"license": {
"id": "Apache-2.0"
}
}
],
"name": "cyclonedx-python-lib",
"type": "library",
"version": "11.5.0"
}
] ]
} }
] },
} "serialNumber": "urn:uuid:7a19d697-d41e-4e88-b953-4bccb5d79937",
"version": 1,
"$schema": "http://cyclonedx.org/schema/bom-1.5.schema.json",
"bomFormat": "CycloneDX",
"specVersion": "1.5"
}