diff --git a/ChangeLog.md b/ChangeLog.md
index e62515e4..7a8ee2a6 100644
--- a/ChangeLog.md
+++ b/ChangeLog.md
@@ -3,9 +3,13 @@
 Starting with v1.31.6, this file will contain a record of major features and updates made in each release of graph-notebook.
 
 ## Upcoming
+
+- New Neptune Analytics notebooks - SBOM ([Link to PR](https://github.com/aws/graph-notebook/pull/566))
+  - Path: 02-Neptune-Analytics > 03-Sample-Use-Cases > 03-Software-Bill-Of-Materials
 - Updated `create-graph` CLI commands in Neptune Analytics samples ([Link to PR](https://github.com/aws/graph-notebook/pull/565))
 
 ## Release 4.1.0 (February 1, 2024)
+
 - New Neptune Analytics notebook - Vector Similarity Algorithms ([Link to PR](https://github.com/aws/graph-notebook/pull/555))
   - Path: 02-Neptune-Analytics > 02-Graph-Algorithms > 06-Vector-Similarity-Algorithms
 - Updated various Neptune magics for new Analytics API ([Link to PR](https://github.com/aws/graph-notebook/pull/560))
@@ -14,17 +18,21 @@ Starting with v1.31.6, this file will contain a record of major features and upd
 - Deprecated Python 3.7 support ([Link to PR](https://github.com/aws/graph-notebook/pull/551))
 
 ## Release 4.0.2 (Dec 14, 2023)
+
 - Fixed `neptune_ml_utils` imports in `03-Neptune-ML` samples ([Link to PR](https://github.com/aws/graph-notebook/pull/546))
 - Enable Gremlin `message_serializer` config field for Neptune endpoints ([Link to PR](https://github.com/aws/graph-notebook/pull/547))
 
 ## Release 4.0.1 (Nov 29, 2023)
+
 - Fixed @neptune_db_only magics decorator ([Link to PR](https://github.com/aws/graph-notebook/pull/543))
 
 ## Release 4.0.0 (Nov 29, 2023)
+
 - Added support for Neptune Analytics ([Link to PR](https://github.com/aws/graph-notebook/pull/541))
 - Added Air-Routes and EPL sample seed datasets for openCypher ([Link to PR](https://github.com/aws/graph-notebook/pull/540))
 
 ## Release 3.9.0 (Oct 9, 2023)
+
 - New Gremlin Language Tutorial notebooks ([Link to PR](https://github.com/aws/graph-notebook/pull/533))
   - Path: 06-Language-Tutorials > 03-Gremlin
 - Added `--explain-type` option to `%%gremlin` ([Link to PR](https://github.com/aws/graph-notebook/pull/503))
@@ -41,6 +49,7 @@ Starting with v1.31.6, this file will contain a record of major features and upd
 - Unpinned `boto3` and `botocore` to support NeptuneData SDK ([Link to PR](https://github.com/aws/graph-notebook/pull/528))
 
 ## Release 3.8.2 (June 5, 2023)
+
 - New Sample Applications - Healthcare and Life Sciences notebooks ([Link to PR](https://github.com/aws/graph-notebook/pull/484))
   - Path: 03-Sample-Applications > 05-Healthcare-and-Life-Sciences-Graphs
 - Added local file path and openCypher query support to `%seed` ([Link to PR](https://github.com/aws/graph-notebook/pull/292))
@@ -56,9 +65,11 @@ Starting with v1.31.6, this file will contain a record of major features and upd
 - Suppress InsecureRequestWarning if SSL verification is disabled ([Link to PR](https://github.com/aws/graph-notebook/pull/499))
 
 ## Release 3.8.1 (April 17, 2023)
+
 - Reinstate Python 3.7 support for compatibility with legacy AL1 Neptune Notebooks ([Link to PR](https://github.com/aws/graph-notebook/pull/479))
 
 ## Release 3.8.0 (April 16, 2023)
+
 - Added support for Python 3.10 ([Link to PR](https://github.com/aws/graph-notebook/pull/476))
 - Deprecated Python 3.7 support ([PR #1](https://github.com/aws/graph-notebook/pull/453)) ([PR #2](https://github.com/aws/graph-notebook/pull/473))
 - Patched nbextensions loader timeouts for large notebooks ([PR #1](https://github.com/aws/graph-notebook/pull/455))
@@ -68,11 +79,13 @@ Starting with v1.31.6, this file will contain a record of major features and upd
 - Fixed Gremlin graph tab not rendering with UUID type IDs ([Link to PR](https://github.com/aws/graph-notebook/pull/475))
 
 ## Release 3.7.3 (March 14, 2023)
+
 - Fixed detailed mode output for graph summary requests ([Link to PR](https://github.com/aws/graph-notebook/pull/461))
 - Added more helpful error messaging for `%statistics`/`%summary` ([Link to PR](https://github.com/aws/graph-notebook/pull/460))
 - Added Neptune Notebook CloudFormation template ([Link to PR](https://github.com/aws/graph-notebook/pull/442))
 
 ## Release 3.7.2 (March 9, 2023)
+
 - New Neptune ML notebook - Real Time Fraud Detection using Inductive Inference ([Link to PR](https://github.com/aws/graph-notebook/pull/338))
   - Path: 04-Machine-Learning > Sample-Applications > 03-Real-Time-Fraud-Detection-Using-Inductive-Inference.ipynb
 - New openCypher Language Tutorial notebooks
@@ -84,6 +97,7 @@ Starting with v1.31.6, this file will contain a record of major features and upd
 - Fixed nbextensions loader timeout on large notebooks ([Link to PR](https://github.com/aws/graph-notebook/pull/455))
 
 ## Release 3.7.1 (January 25, 2023)
+
 - Added ECR auto-publish workflow ([Link to PR](https://github.com/aws/graph-notebook/pull/405))
 - Added support for list/tuple element access in cell variable injection ([Link to PR](https://github.com/aws/graph-notebook/pull/409))
 - Fixed failing endpoint creation step in [01-People-Analytics/People-Analytics-using-Neptune-ML](https://github.com/aws/graph-notebook/blob/main/src/graph_notebook/notebooks/04-Machine-Learning/Sample-Applications/01-People-Analytics/People-Analytics-using-Neptune-ML.ipynb) ([Link to PR](https://github.com/aws/graph-notebook/pull/411))
@@ -97,6 +111,7 @@ Starting with v1.31.6, this file will contain a record of major features and upd
 - Enabled unit test workflow runs for external pull requests ([Link to PR](https://github.com/aws/graph-notebook/pull/437))
 
 ## Release 3.7.0 (December 7, 2022)
+
 - Added Neo4J section to `%%graph_notebook_config` ([Link to PR](https://github.com/aws/graph-notebook/pull/331))
 - Added custom Gremlin authentication and serializer support ([Link to PR](https://github.com/aws/graph-notebook/pull/356))
 - Added `%statistics` magic for Neptune DFE engine ([Link to PR](https://github.com/aws/graph-notebook/pull/377))
@@ -114,6 +129,7 @@ Starting with v1.31.6, this file will contain a record of major features and upd
 - Pinned `nbclient<=0.7.0` ([Link to PR](https://github.com/aws/graph-notebook/pull/402))
 
 ## Release 3.6.2 (October 18, 2022)
+
 - New Sample Applications - Security Graphs notebooks ([Link to PR](https://github.com/aws/graph-notebook/pull/373))
   - Path: 03-Sample-Applications > 04-Security-Graphs
 - Update sample notebooks with parallel, same-direction edges example ([Link to PR](https://github.com/aws/graph-notebook/pull/366))
@@ -126,6 +142,7 @@ Starting with v1.31.6, this file will contain a record of major features and upd
 - Added result media type selection for SPARQL queries ([Link to PR](https://github.com/aws/graph-notebook/pull/313))
 
 ## Release 3.6.0 (September 15, 2022)
+
 - New Language Tutorials - SPARQL Basics notebook ([Link to PR](https://github.com/aws/graph-notebook/pull/316))
   - Path: 06-Language-Tutorials > 01-SPARQL > 01-SPARQL-Basics
 - New Neptune ML - Text Encoding Tutorial notebook ([Link to PR](https://github.com/aws/graph-notebook/pull/338))
@@ -141,7 +158,8 @@ Starting with v1.31.6, this file will contain a record of major features and upd
 - Added new SageMaker installation script for China regions ([Link to PR](https://github.com/aws/graph-notebook/pull/361))
 
 ## Release 3.5.3 (July 25, 2022)
-- Docker support. Docker image can be built using the command `docker build .` and through Docker's `buildx`, this can support non-x86 CPU Architectures  like ARM. ([Link to PR](https://github.com/aws/graph-notebook/pull/323))
+
+- Docker support. Docker image can be built using the command `docker build .` and through Docker's `buildx`, this can support non-x86 CPU Architectures like ARM. ([Link to PR](https://github.com/aws/graph-notebook/pull/323))
   - Fix `service.sh` conditional checks, SSL parameter can now be changed. Fix permissions error on `service.sh` experienced by some users. ([Link to PR](https://github.com/aws/graph-notebook/pull/335))
 - Added `%%neptune_config_allowlist` magic ([Link to PR](https://github.com/aws/graph-notebook/pull/327))
 - Added check to remove whitespace in `%graph_notebook_config` host fields ([Link to PR](https://github.com/aws/graph-notebook/pull/329))
@@ -154,19 +172,21 @@ Starting with v1.31.6, this file will contain a record of major features and upd
 - Bumped jquery-ui from 1.13.1 to 1.13.2 (([Link to PR](https://github.com/aws/graph-notebook/pull/328))
 
 ## Release 3.5.1 (July 12, 2022)
+
 - Improved the `%stream_viewer` magic to show the commit timestamp and `isLastOp` information,
   if available. Also added additional hover (help) text to the stream viewer. ([Link to PR](https://github.com/aws/graph-notebook/pull/311))
 - Added `--max-content-length` option to `%%gremlin` ([Link to PR](https://github.com/aws/graph-notebook/pull/305))
 - Added `proxy_host` and `proxy_port` options to the `%%graph_notebook_config` options. ([Link to PR](https://github.com/aws/graph-notebook/pull/310))
-  - This allows for proxied connections to your Neptune instance from outside your VPC. Supporting the patterns seen [here](https://aws-samples.github.io/aws-dbs-refarch-graph/src/connecting-using-a-load-balancer/). 
+  - This allows for proxied connections to your Neptune instance from outside your VPC. Supporting the patterns seen [here](https://aws-samples.github.io/aws-dbs-refarch-graph/src/connecting-using-a-load-balancer/).
 - Fixed results table formatting in JupyterLab ([Link to PR](https://github.com/aws/graph-notebook/pull/297))
 - Fixed several typos in the Neptune ML 00 notebook ([Link to PR](https://github.com/aws/graph-notebook/pull/319))
 - Renamed the Knowledge Graph application notebooks for clarity ([Link to PR](https://github.com/aws/graph-notebook/pull/320))
 
 ## Release 3.4.1 (June 7, 2022)
+
 - Identity Graph - ETL notebook ([Link to PR](https://github.com/aws/graph-notebook/pull/288))
-    - Path: 03-Identity-Graphs>03-Jumpstart-Identity-Graphs-Using-Canonical-Model-and-ETL
-    - Files: scripts/, glue_utils.py and 3-Identity-Graphs>03-Jumpstart-Identity-Graphs-Using-Canonical-Model-and-ETL notebook
+  - Path: 03-Identity-Graphs>03-Jumpstart-Identity-Graphs-Using-Canonical-Model-and-ETL
+  - Files: scripts/, glue_utils.py and 3-Identity-Graphs>03-Jumpstart-Identity-Graphs-Using-Canonical-Model-and-ETL notebook
 - Support variable injection in `%%graph_notebook_config` magic ([Link to PR](https://github.com/aws/graph-notebook/pull/287))
 - Added three notebooks to show data science workflows with Amazon Neptune ([Link to PR](https://github.com/aws/graph-notebook/pull/302))
 - Added JupyterLab startup script to auto-load magics extensions ([Link to PR](https://github.com/aws/graph-notebook/pull/277))
@@ -180,6 +200,7 @@ Starting with v1.31.6, this file will contain a record of major features and upd
 - Removed `requests-aws4auth` requirement ([Link to PR](https://github.com/aws/graph-notebook/pull/291))
 
 ## Release 3.3.0 (March 28, 2022)
+
 - Support rendering of widgets in JupyterLab ([Link to PR](https://github.com/aws/graph-notebook/pull/271))
 - Fixed ASCII encoding error in Profile/Explain generation ([Link to PR](https://github.com/aws/graph-notebook/pull/275))
 - Fixed inaccessible data URL in NeptuneML utils ([Link to PR](https://github.com/aws/graph-notebook/pull/279))
@@ -188,6 +209,7 @@ Starting with v1.31.6, this file will contain a record of major features and upd
 - Added documentation for JupyterLab installation ([Link to PR](https://github.com/aws/graph-notebook/pull/284))
 
 ## Release 3.2.0 (February 25, 2022)
+
 - Added new notebooks: guides for using SPARQL and RDF with Neptune ML ([Link to PR](https://github.com/aws/graph-notebook/pull/252))
 - Added the ability to run explain plans to openCypher queries via `%%oc explain`. ([Link to PR](https://github.com/aws/graph-notebook/pull/265))
 - Added the ability to download the explain/profile plans for openCypher/Gremlin/SPARQL. ([Link to PR](https://github.com/aws/graph-notebook/pull/265))
@@ -206,6 +228,7 @@ Starting with v1.31.6, this file will contain a record of major features and upd
 - Fixed handling of Decimal type properties when rendering Gremlin query results ([Link to PR](https://github.com/aws/graph-notebook/pull/256))
 
 ## Release 3.1.1 (December 21, 2021)
+
 - Added new dataset for DiningByFriends, and associated notebook ([Link to PR](https://github.com/aws/graph-notebook/pull/235))
 - Added new Neptune ML Sample Application for People Analytics ([Link to PR](https://github.com/aws/graph-notebook/pull/235))
 - Added graph customization support for SPARQL queries ([Link to PR](https://github.com/aws/graph-notebook/pull/236))
@@ -218,12 +241,14 @@ Starting with v1.31.6, this file will contain a record of major features and upd
 - Fixed Jupyter start script for cases where the nbconfig directory is missing ([Link to PR](https://github.com/aws/graph-notebook/pull/239))
 
 ## Release 3.0.8 (November 3, 2021)
+
 - Added support for specifying the Gremlin traversal source ([Link to PR](https://github.com/aws/graph-notebook/pull/221))
 - Added edge tooltips, and options for specifying edge label length ([Link to PR](https://github.com/aws/graph-notebook/pull/218))
 - Fixed configuration options missing when using a CN region Neptune host ([Link to PR](https://github.com/aws/graph-notebook/pull/223))
 - Correct naming of ID parameter for NeptuneML Endpoint command ([Link to PR](https://github.com/aws/graph-notebook/pull/217))
 
 ## Release 3.0.7 (October 25, 2021)
+
 - Added full support for NeptuneML API command parameters to `%neptune_ml` ([Link to PR](https://github.com/aws/graph-notebook/pull/202))
 - Allow `%%neptune_ml` to accept JSON blob as parameter input for most phases ([Link to PR](https://github.com/aws/graph-notebook/pull/202))
 - Added `--silent` option for suppressing query output ([PR #1](https://github.com/aws/graph-notebook/pull/201)) ([PR #2](https://github.com/aws/graph-notebook/pull/203))
@@ -233,6 +258,7 @@ Starting with v1.31.6, this file will contain a record of major features and upd
 - Removed default `/sparql` path suffix from non-Neptune SPARQL requests ([Link to PR](https://github.com/aws/graph-notebook/pull/210))
 
 ## Release 3.0.6 (September 20, 2021)
+
 - Added a new `%stream_viewer` magic that allows interactive exploration of the Neptune CDC stream (if enabled). ([Link to PR](https://github.com/aws/graph-notebook/pull/191))
 - Added support for multi-property values in vertex and edge labels ([Link to PR](https://github.com/aws/graph-notebook/pull/186))
 - Added new visualization physics options, toggle button ([Link to PR](https://github.com/aws/graph-notebook/pull/190))
@@ -271,8 +297,9 @@ Starting with v1.31.6, this file will contain a record of major features and upd
 
 With the release of support for the openCypher query language in Amazon Neptune's lab mode, graph-notebook can now be used to execute and visualize openCypher queries with any compatible graph database.
 
-Two new magic commands have been added: 
-- `%%oc`/`%%opencypher` 
+Two new magic commands have been added:
+
+- `%%oc`/`%%opencypher`
 - `%%oc_status`/`%%opencypher_status`
 
 These openCypher magic commands inherit the majority of the query and visualization customization features that are already available in the Gremlin and SPARQL magics.
@@ -282,6 +309,7 @@ For more detailed information and examples of how you can execute and visualize
 ([Link to PR](https://github.com/aws/graph-notebook/pull/153))
 
 **Other major updates**:
+
 - Added visualization support for elementMap Gremlin step ([Link to PR](https://github.com/aws/graph-notebook/pull/140))
 - Added support for additional customization of edge node labels in Gremlin ([Link to PR](https://github.com/aws/graph-notebook/pull/132))
 - Refactored %load form display code for flexibility; fixes some descriptions being cut off
@@ -291,20 +319,24 @@ For more detailed information and examples of how you can execute and visualize
 - Added new notebook to explain Identity Graph data modeling ([Link to PR](https://github.com/aws/graph-notebook/pull/154))
 
 **Minor updates**:
+
 - Included index operations metrics in metadata results tab for Gremlin Profile queries([Link to PR](https://github.com/aws/graph-notebook/pull/150))
 - Updated SPARQL EPL seed dataset file ([Link to PR](https://github.com/aws/graph-notebook/pull/134))
 - Updated documentation on using `%%graph_notebook_config` with an IAM enabled Neptune cluster ([Link to PR](https://github.com/aws/graph-notebook/pull/136))
-  
+
 **Bugfixes**:
+
 - Fixed improper handling of Blazegraph status response ([Link to PR](https://github.com/aws/graph-notebook/pull/137))
 - Fixed Gremlin node tooltips being displayed incorrectly ([Link to PR](https://github.com/aws/graph-notebook/pull/139))
 - Fixed bug in using Gremlin explain/profile with large result sets ([Link to PR](https://github.com/aws/graph-notebook/pull/141))
 - Pinned RDFLib version ([Link to PR](https://github.com/aws/graph-notebook/pull/151))
 
 ## Release 2.1.4 (June 27, 2021)
+
 - Added support for additional customization of graph node labels in Gremlin ([Link to PR](https://github.com/aws/graph-notebook/pull/127))
 
 ## Release 2.1.3 (June 18, 2021)
+
 - Added support for dictionary value access in variable injection([Link to PR](https://github.com/aws/graph-notebook/pull/126))
 
 ## Release 2.1.2 (May 10, 2021)
@@ -329,9 +361,9 @@ For more detailed information and examples of how you can execute and visualize
 
 ## Release 2.0.12 (Mar 25, 2021)
 
- - Added default parameters for `get_load_status` ([Link to PR](https://github.com/aws/graph-notebook/pull/96))
- - Added ipython as a dependency in `setup.py` ([Link to PR](https://github.com/aws/graph-notebook/pull/95))
- - Added parameters in `load_status` for `details`, `errors`, `page`, and `errorsPerPage` ([Link to PR](https://github.com/aws/graph-notebook/pull/88))
+- Added default parameters for `get_load_status` ([Link to PR](https://github.com/aws/graph-notebook/pull/96))
+- Added ipython as a dependency in `setup.py` ([Link to PR](https://github.com/aws/graph-notebook/pull/95))
+- Added parameters in `load_status` for `details`, `errors`, `page`, and `errorsPerPage` ([Link to PR](https://github.com/aws/graph-notebook/pull/88))
 
 ## Release 2.0.10 (Mar 18, 2021)
 
@@ -343,7 +375,9 @@ For more detailed information and examples of how you can execute and visualize
 - Changed SPARQL path parameter in %%graph-notebook-config command to no longer append /sparql to the end, which should give support to more SPARQL 1.1 endpoints [Link to PR](https://github.com/aws/graph-notebook/pull/75)
 
 #### New Notebooks and Datasets
-Added new sample application notebooks and `%seed` datasets under [03-Sample-Applications](src/graph_notebook/notebooks/03-Sample-Applications) for the following use cases: 
+
+Added new sample application notebooks and `%seed` datasets under [03-Sample-Applications](src/graph_notebook/notebooks/03-Sample-Applications) for the following use cases:
+
 - Fraud Graph
 - Knowledge Graph
 - Identity Graph
@@ -352,20 +386,23 @@ Added new sample application notebooks and `%seed` datasets under [03-Sample-App
 
 ## Release 2.0.7 (Feb 1, 2021)
 
-- Added  "What’s Next" sections to 01-Getting-Started notebooks to suggest users to relevant notebook tutorials [Link to PR](https://github.com/aws/graph-notebook/pull/60)
+- Added "What’s Next" sections to 01-Getting-Started notebooks to suggest users to relevant notebook tutorials [Link to PR](https://github.com/aws/graph-notebook/pull/60)
 
 ## Release 2.0.6 (Jan 28, 2021)
 
-- Added missing __init__ to notebook directories to they get installed correctly
+- Added missing **init** to notebook directories to they get installed correctly
 - Updated list of available magics in notebook documentation [Link to PR](https://github.com/aws/graph-notebook/pull/56)
 
 ## Release 2.0.5 (Jan 8, 2021)
 
 #### Gremlin Visualization
+
 - Enhanced Gremlin Visualization output to group vertices and color-code them based on groups. When not specified it will group by the label (if it exists). You can also specify the property to groupby using the switch --groupby or -g followed by the property name [Link to PR](https://github.com/aws/graph-notebook/pull/15)
 - Added the functionality to sort the values in the details box by key
 - Updated Air-Routes-Visualization notebook to discuss the group by functionality
+
 #### Neptune ML
+
 - Added new tutorial notebooks for Neptune ML functionality [Link to PR](https://github.com/aws/graph-notebook/pull/53)
 
 ## Release 2.0.3 (Dec 29, 2020)
@@ -392,7 +429,7 @@ This release features integration with the Neptune ML feature set in AWS Neptune
 - `%%neptune_ml dataprocessing start`
 - `%%neptune_ml training start`
 - `%%neptune_ml endpoint create`
-NOTE: If a cell magic is used, its line inputs for specifying parts of the command will be ignore such as `--job-id` as a line-param.
+  NOTE: If a cell magic is used, its line inputs for specifying parts of the command will be ignore such as `--job-id` as a line-param.
 
 Inject variable as cell input:
 Currently this will only work for our new cell magic commands details above. You can now specify a variable to use as the cell input received by our `neptune_ml` magics using the syntax ${var_name}. For example...
@@ -410,6 +447,7 @@ ${foo}
 NOTE: The above will only work if it is the sole content of the cell body. You cannot inline multiple variables at this time.
 
 #### SPARQL Enhancements
+
 - Support to allow namespace specification for Blazegraph endpoints by specify the prefix to the sparql endpoint being queried.
 - Add new config section for sparql-specific items [Link to PR](https://github.com/aws/graph-notebook/pull/49)
 - Specify explain prefix_path param explicitly in `%%sparql explain` magic variant [Link to PR](https://github.com/aws/graph-notebook/pull/52)
@@ -442,6 +480,6 @@ First release of graph-notebook on GitHub and to [PyPI](https://pypi.org/project
 
 [Link to PR](https://github.com/aws/graph-notebook/pull/3)
 
-The graph notebook is a Python library for Jupyter Notebooks that can run on local desktops and be used with databases that support either the RDF/SPARQL open standard or the open-source Apache TinkerPop graphs. 
+The graph notebook is a Python library for Jupyter Notebooks that can run on local desktops and be used with databases that support either the RDF/SPARQL open standard or the open-source Apache TinkerPop graphs.
 
 See [here](https://github.com/aws/graph-notebook#features) for a list of major features.
diff --git a/src/graph_notebook/notebooks/02-Neptune-Analytics/03-Sample-Use-Cases/03-Software-Bill-Of-Materials/00-Intro-to-Software-Bill-Of-Materials.ipynb b/src/graph_notebook/notebooks/02-Neptune-Analytics/03-Sample-Use-Cases/03-Software-Bill-Of-Materials/00-Intro-to-Software-Bill-Of-Materials.ipynb
new file mode 100644
index 00000000..c46d181a
--- /dev/null
+++ b/src/graph_notebook/notebooks/02-Neptune-Analytics/03-Sample-Use-Cases/03-Software-Bill-Of-Materials/00-Intro-to-Software-Bill-Of-Materials.ipynb
@@ -0,0 +1,154 @@
+{
+ "cells": [
+  {
+   "cell_type": "markdown",
+   "id": "b1a8a54c-3042-4148-a2d5-7228d7ad33ed",
+   "metadata": {},
+   "source": [
+    "# Introduction to Software Bill Of Materials (SBOM)\n",
+    "\n",
+    "In late 2021, a [critical security vulnerability was discovered in a commonly used logging library, Log4j](https://www.ncsc.gov.uk/information/log4j-vulnerability-what-everyone-needs-to-know).  If exploited, this vulnerability was capable of allowing a bad actor to remotely control the compromised system.  Once this vulnerability was announced, companies and individuals spent many hours combing through countless applications, looking for and patching systems running vulnerable versions of the software.  \n",
+    "\n",
+    "As this effort was ongoing, many were asking, \"Isn't there a better way to track this information?\"\n",
+    "\n",
+    "In response to this, and other similar widespread vulnerabilities, the President of the United States issued an [Executive Order](https://www.whitehouse.gov/briefing-room/presidential-actions/2021/05/12/executive-order-on-improving-the-nations-cybersecurity/) in May of 2021, which tasked the National Institute of Standards and Technology (NIST) with providing guidance on how to secure software supply chains.  One of the critical pieces of that guidance was minimum standards and guidance on how to use Software Bill of Materials (SBOM).  \n",
+    "\n",
+    "\n",
+    "The use of SBOMs in software is not new, but with the increased focus on cybersecurity strategy, they have become a critical tool in combating real and potential threats by providing explainability, traceability, and transparency to a company's software supply chain."
+   ]
+  },
+  {
+   "cell_type": "markdown",
+   "id": "0784bef9-93a0-4ed1-8ac4-2b8b9ff582b7",
+   "metadata": {},
+   "source": [
+    "## What is a Software Bill of Materials (SBOM)\n",
+    "\n",
+    "A software bill of materials (SBOM) is a critical component of software development and management, helping organizations to improve the transparency, security, and reliability of their software applications. An SBOM acts as an \"ingredient list\" of libraries and components of an software application that:\n",
+    "\n",
+    "* Enables software creators to track dependencies within their applications\n",
+    "* Provides security personnel the ability to examine and assess the risk of potential vulnerabilities within an environment\n",
+    "* Provides legal personnel with the information needed to assure that a particular software is in compliance with all licensing requirements.\n",
+    "\n",
+    "A software bill of materials (SBOM) is a comprehensive list of the components, libraries, and dependencies used in a software application or system. It provides a detailed breakdown of the software's architecture, including the names, versions, licenses, and optionally the vulnerabilities of each component.\n",
+    "\n",
+    "An SBOM provides those who create, purchase, and operate software with insight and understanding of the supply chain, enabling them to track known and newly emerged vulnerabilities and risks. SBOM and SBOM analysis are part of the foundational data layer on which further security\n",
+    "tools, practices, and procedures should be built.  SBOMs can be generated using a variety of tools and technologies, including open-source tools, automated tools, and manual processes. They can be formatted in different formats, such as JSON, YAML, or XML, to suit different needs and use cases.  There are currently two main open-source and machine-readable formats for SBOMs:\n",
+    "\n",
+    "* [CycloneDX](https://cyclonedx.org/) - Developed by the Open Web Application Security Project (OWASP), this format is focused on providing simple automation to ease adoption.  In addition to the minimum requirements for data in an SBOM, CycloneDX files can also contain information about associated vulnerabilities within the system or application.\n",
+    "\n",
+    "* [SPDX](https://spdx.dev/) - Developed by the Linux Foundation, this format was originally created to facilitate the exchange of software metadata, with a particular focus on licensing information.  Since its creation in 2011, this has evolved to include additional data fields that enables its use as an SBOM format. \n",
+    "\n",
+    "While there is no one specific format for SBOMs, NIST has provided some guidance around the best practices and minimum elements for SBOMs, as linked below:\n",
+    "\n",
+    "* [Recommendations for Software Bill of Materials\n",
+    "(SBOM) Management](https://media.defense.gov/2023/Dec/14/2003359097/-1/-1/0/CSI-SCRM-SBOM-MANAGEMENT.PDF)\n",
+    "* [Secure Software Development Framework](https://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-218.pdf)\n",
+    "* [The Minimum Elements for a Software Bill of Materials](https://www.ntia.doc.gov/sites/default/files/publications/sbom_minimum_elements_report_0.pdf)\n",
+    "\n"
+   ]
+  },
+  {
+   "cell_type": "markdown",
+   "id": "e9347927-e7eb-478f-b55d-764e116d8fc3",
+   "metadata": {},
+   "source": [
+    "## Why use Graphs for SBOMs\n",
+    "\n",
+    "SBOMs describe the complex dependencies and relationships between components of a software system.  Graphs are excellent for modeling these kinds of interconnected relationships, with nodes representing components and edges representing dependencies and relationships between these components.  SBOMs often contain multi-level hierarchies and recursion. Graph data structures handle recursive relationships very naturally. Traversing a graph allows you to explore dependencies deeply through different levels.  Graphs make it easy to analyze networks and flows. Using graph algorithms and metrics, you can analyze an SBOM to identify critical components and dependencies, single points of failure, security vulnerabilities, license compatibilities, and more. These kinds of analyses provide useful insights.\n",
+    "\n",
+    "In addition to the structural aspects of a graph, graph visualizations help make software relationships more understandable for humans. Seeing a picture of an SBOM graph highlights patterns and issues more effectively than just looking at a flat list of components and dependencies.\n",
+    "\n",
+    "In summary, the networked, hierarchical nature of software component relationships matches very well with the graph abstraction. This makes graphs a natural fit for trying to model, analyze, visualize and build tools around Software Bill of Materials."
+   ]
+  },
+  {
+   "cell_type": "markdown",
+   "id": "ad4ac597-1e3e-4331-9d0f-14256189d45d",
+   "metadata": {},
+   "source": [
+    "## Use Cases for Graphs and SBOMs\n",
+    "\n",
+    "Graphs can be useful for visualizing and analyzing SBOMs in several ways:\n",
+    "\n",
+    "- Dependency graphs - These show how different components in the software relate to and depend on each other. Graphs make these complex relationships easier to visualize.\n",
+    "\n",
+    "- Vulnerability Graphs - Graphs make it easy to determine and assign associated risks with different vulnerabilities in order to prioritize fixing known issues. \n",
+    "\n",
+    "- Supply chain graphs - SBOMs trace the components and dependencies up the software supply chain. Graphs can illustrate the flow of open source components from lower-level suppliers up to the final product. This helps identify vulnerabilities or licensing issues in the supply chain.\n",
+    "\n",
+    "\n",
+    "In summary, graphs provide simplified and intuitive visual representations for the complex components and relationships described in an SBOM. Whether it's high-level architecture or detailed flows within the software, graphs turn the SBOM into more easily digestible visual insights. They make interpreting and communicating SBOM details much more accessible to a variety of stakeholders trying to leverage them."
+   ]
+  },
+  {
+   "attachments": {
+    "e77fdde0-d722-4408-9d10-e05968a855fa.png": {
+     "image/png": "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"
+    }
+   },
+   "cell_type": "markdown",
+   "id": "fb9dcefb-da66-4983-ba00-bdfb9f5d9e8b",
+   "metadata": {},
+   "source": [
+    "## What does our SBOM look like as a Graph\n",
+    "\n",
+    "For these examples, we have provided a Python module that ingests both CycloneDX and SPDX JSON file formats, and attempts to unify these disparate formats through a few key node and edge types.  The data model generated is shown here:\n",
+    "\n",
+    "![image.png](attachment:e77fdde0-d722-4408-9d10-e05968a855fa.png)\n",
+    "\n",
+    "The key elements of this data model are:\n",
+    "\n",
+    "**Node Types**\n",
+    "* `Document` - This represents the SBOM document as well as the metadata associated with that SBOM.  In a CycloneDX file, this is sourced from the [`metadata`](https://cyclonedx.org/guides/sbom/object-model/#metadata) element of the SBOM.  In an SPDX file, this is sourced from the ['document'](https://spdx.github.io/spdx-spec/v2.3/document-creation-information/) element of the SBOM.\n",
+    "* `Component` - This represents a specific component of a software system.  In a CycloneDX file, this is sourced from the [`externalReferences`](https://cyclonedx.org/guides/sbom/object-model/#components) elements of the SBOM `component`.  In an SPDX file, this is sourced from the ['packages'](https://spdx.github.io/spdx-spec/v2.3/package-information/) elements of the SBOM.\n",
+    "* `Reference` - This represents a reference to any external system which the system wanted to include as a reference.  This can range from package managers, URLs to external websites, etc.  In a CycloneDX file, this is sourced from the [`components`](https://cyclonedx.org/guides/sbom/object-model/#components) elements of the SBOM.  In an SPDX file, this is sourced from the ['externalRef'](https://spdx.github.io/spdx-spec/v2.3/package-information/#721-external-reference-field) elements of the SBOM `packages`.\n",
+    "* `Vulnerability` - This represents a specific known vulnerability for a component.  This is only available with CycloneDX files and is sourced from the [`vulnerabilities`](https://cyclonedx.org/guides/sbom/object-model/#vulnerabilities) elements of the SBOM.\n",
+    "* `License` - This represents a specific license associated for a component.  In a CycloneDX file, this is sourced from the [`licenses`](https://cyclonedx.org/docs/1.5/json/#metadata_licenses) elements of the SBOM.  In an SPDX file, this is sourced from the ['license'](https://spdx.github.io/spdx-spec/v2.3/document-creation-information/#67-license-list-version-field) elements of the SBOM `packages`.\n",
+    "\n",
+    "**Edge Types**\n",
+    "* `DESCRIBES`/`DEPENDS_ON`/`DEPENDENCY_OF`/`DESCRIBED_BY`/`CONTAINS` - This represents the type of relationship between a `Document` and a `Component` in the system.  For CycloneDX files only the `DEPENDS_ON` field is used.  For SPDX files the appropriate edge type is determined by the relationship type specified in the [`relationship`](https://spdx.github.io/spdx-spec/v2.3/relationships-between-SPDX-elements/) elements.\n",
+    "* `REFERS_TO` - This represents a reference between a `Component` and a `Reference`\n",
+    "* `AFFECTS` - This represents that a particular `Component` is affected by the connected `Vulnerability`\n",
+    "\n"
+   ]
+  },
+  {
+   "cell_type": "markdown",
+   "id": "bbfd7d19-0ef5-45a0-9f87-ebaaa39d817e",
+   "metadata": {},
+   "source": [
+    "## Next Steps\n",
+    "\n",
+    "In this notebook we discussed what a SBOM is, why they are important, why graphs are a good fit, and how they are structured.\n",
+    "\n",
+    "Below are several notebooks, each of which provides a deeper dive into a specific use case for SBOMs. \n",
+    "\n",
+    "* [SBOM Dependency Analysis](./01-SBOM-Dependency-Analysis.ipynb)\n",
+    "\n",
+    "* [SBOM Vulnerability Analysis](./02-SBOM-Vulnerability-Analysis.ipynb)"
+   ]
+  }
+ ],
+ "metadata": {
+  "kernelspec": {
+   "display_name": "Python 3",
+   "language": "python",
+   "name": "python3"
+  },
+  "language_info": {
+   "codemirror_mode": {
+    "name": "ipython",
+    "version": 3
+   },
+   "file_extension": ".py",
+   "mimetype": "text/x-python",
+   "name": "python",
+   "nbconvert_exporter": "python",
+   "pygments_lexer": "ipython3",
+   "version": "3.10.13"
+  }
+ },
+ "nbformat": 4,
+ "nbformat_minor": 5
+}
diff --git a/src/graph_notebook/notebooks/02-Neptune-Analytics/03-Sample-Use-Cases/03-Software-Bill-Of-Materials/01-SBOM-Dependency-Analysis.ipynb b/src/graph_notebook/notebooks/02-Neptune-Analytics/03-Sample-Use-Cases/03-Software-Bill-Of-Materials/01-SBOM-Dependency-Analysis.ipynb
new file mode 100644
index 00000000..c1850814
--- /dev/null
+++ b/src/graph_notebook/notebooks/02-Neptune-Analytics/03-Sample-Use-Cases/03-Software-Bill-Of-Materials/01-SBOM-Dependency-Analysis.ipynb
@@ -0,0 +1,379 @@
+{
+ "cells": [
+  {
+   "cell_type": "markdown",
+   "id": "bd69c263-2846-44cf-a780-d42b56624772",
+   "metadata": {},
+   "source": [
+    "# Introduction to Software Bill Of Materials Dependency Analysis\n",
+    "\n",
+    "**Note** For a detailed introduction to Software Bill Of Materials, please read [Intro to Software Bill Of Materials](./00-Intro-to-Software-Bill-Of-Materials.ipynb)\n",
+    "\n",
+    "A Software Bill of Materials (SBOM) contains details about the components and dependencies that make up a piece of software. This includes libraries, frameworks, modules, and more.  Loading SBOM files into a graph provides an efficient mechanism to explore common SBOM use cases such as Dependency Analysis.  Understanding dependencies allows teams to identify security vulnerabilities or licensing issues that may arise from open source or third-party code used in their software. Vulnerable dependencies are a major source of risk.  Dependency analysis provides visibility into all the direct and transitive dependencies used in a project. This allows security, legal, and development teams to gain a comprehensive inventory of the open source being utilized.\n",
+    "\n",
+    "During development and maintenance, dependency analysis helps prevent out-of-date or vulnerable components from entering the software supply chain. It supports enforcing policies around the usage of open source and third-party code.  When issues are found in upstream dependencies, analysis of SBOMs allows faster remediation as the impacted downstream software products and versions can be quickly identified from their bill of materials. At an organizational-level, SBOMs and dependency analysis support understanding third-party usage, reducing duplicate work, optimizing licensing expenditure, preventing vendor lock-in, and improving software supply chain security.\n",
+    "\n",
+    "In summary, dependency analysis of SBOMs grants security and transparency into the software supply chain, allowing teams to efficiently mitigate risks introduced through the use of third-party and open source components."
+   ]
+  },
+  {
+   "attachments": {
+    "image.png": {
+     "image/png": "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"
+    }
+   },
+   "cell_type": "markdown",
+   "id": "1e4cf3f8-86e2-48f1-836a-06516d13bafd",
+   "metadata": {},
+   "source": [
+    "## Data Model\n",
+    "\n",
+    "**Note** The data model being used has been covered in [Intro to Software Bill Of Materials](./00-Intro-to-Software-Bill-Of-Materials.ipynb), so please read that to get a deeper understanding of the summary presented below.\n",
+    "\n",
+    "![image.png](attachment:image.png)\n",
+    "\n",
+    "**Node Types**\n",
+    "* `Document` - This represents the SBOM document as well as the metadata associated with that SBOM.\n",
+    "* `Component` - This represents a specific component of a software system.\n",
+    "* `Reference` - This represents a reference to any external system which the system wanted to include as a reference.  This can range from package managers, URLs to external websites, etc.\n",
+    "* `Vulnerability` - This represents a specific known vulnerability for a component. \n",
+    "* `License` - This represents a specific license associated for a component.\n",
+    "\n",
+    "**Edge Types**\n",
+    "* `DESCRIBES`/`DEPENDS_ON`/`DEPENDENCY_OF`/`DESCRIBED_BY`/`CONTAINS` - This represents the type of relationship between a `Document` and a `Component` in the system. \n",
+    "* `REFERS_TO` - This represents a reference between a `Component` and a `Reference`\n",
+    "* `AFFECTS` - This represents that a particular `Component` is affected by the connected `Vulnerability`\n"
+   ]
+  },
+  {
+   "cell_type": "markdown",
+   "id": "c405d964-1ceb-47c2-835b-7146a18842d3",
+   "metadata": {},
+   "source": [
+    "## Loading SBOM Data\n",
+    "\n",
+    "In this notebook we will use [Nodestream](https://nodestream-proj.github.io/docs/) and the [Nodestream SBOM plugin](https://github.com/nodestream-proj/nodestream-plugin-sbom) to load several SPDX files which were sourced from Github using its SBOM feature, detailed [here](https://docs.github.com/en/rest/dependency-graph/sboms).  \n",
+    "\n",
+    "Nodestream is a framework for dealing with semantically modeling data as a graph. It is designed to be flexible and extensible, allowing you to define how data is collected and modeled as a graph. It uses a pipeline-based approach to define how data is collected and processed, and it provides a way to define how the graph should be updated when the schema changes. All of this is done using a simple, human-readable configuration file in yaml format.\n",
+    "\n",
+    "Let's begin by installing the required libraries for using Nodestream with Neptune and the SBOM plugin."
+   ]
+  },
+  {
+   "cell_type": "code",
+   "execution_count": null,
+   "id": "82ba85df-017a-4eaa-b274-b222523c4ee4",
+   "metadata": {
+    "tags": []
+   },
+   "outputs": [],
+   "source": [
+    "!pip install -q pyyaml nodestream-plugin-neptune nodestream_plugin_sbom"
+   ]
+  },
+  {
+   "cell_type": "markdown",
+   "id": "f1e96f3d-b637-4fd4-a3de-a2bcfce869ec",
+   "metadata": {
+    "tags": []
+   },
+   "source": [
+    "\n",
+    "The SBOM plugin enables users to import SBOM files in JSON formatted CycloneDX and SPDX into an opinionated graph data model in a graph database. Nodestream is a developer friendly Python framework for materializing and working with graph databases.\n",
+    "\n",
+    "The included files for this notebook are:\n",
+    "\n",
+    "* [AWS Graph Explorer](https://github.com/aws/graph-explorer)\n",
+    "* [Graph Notebook](https://github.com/aws/graph-notebook)\n",
+    "* [AWS SDK For pandas](https://github.com/aws/aws-sdk-pandas)\n",
+    "* [boto3](https://github.com/boto/boto3)\n",
+    "\n",
+    "<div class=\"alert alert-block alert-info\"> \n",
+    "<details>\n",
+    "    <summary>✏️<b><i> Click here for a tip</i></b></summary>\n",
+    "  \n",
+    "If you would like to import your own SBOM files, you can either save them in JSON format to the `./example_sboms/01/` directory, or change the directory location in the code below.\n",
+    "</details>\n",
+    "</div>\n",
+    "\n",
+    "Running the cell below will setup our configuration file for loading our SBOM data."
+   ]
+  },
+  {
+   "cell_type": "code",
+   "execution_count": null,
+   "id": "91e7ea13-521a-4f34-bdbd-d9f8791fa978",
+   "metadata": {
+    "tags": []
+   },
+   "outputs": [],
+   "source": [
+    "import json\n",
+    "from IPython.utils import io\n",
+    "from sbom_code import sbom_helper\n",
+    "\n",
+    "# Retrieve the notebook configuration information to pass in as parameters and supress printing the config\n",
+    "with io.capture_output() as captured:\n",
+    "    mgc = get_ipython().run_line_magic\n",
+    "    mgc(magic_name = \"graph_notebook_config\", line=\"--store-to config\")\n",
+    "\n",
+    "# Create the nodestream.yaml file\n",
+    "sbom_helper.set_nodesteam_yaml(json.loads(config), \"01/\")"
+   ]
+  },
+  {
+   "cell_type": "markdown",
+   "id": "d60ba7ac-4d3a-47ef-9671-e357acb3a91e",
+   "metadata": {
+    "tags": []
+   },
+   "source": [
+    "Running the code above will generate a `nodestream.yaml` file that specifies the source data and target, which in this case is our Neptune database or graph."
+   ]
+  },
+  {
+   "cell_type": "code",
+   "execution_count": null,
+   "id": "ccb4d774-6fd3-4ed5-8601-a92bb8a3c339",
+   "metadata": {
+    "tags": []
+   },
+   "outputs": [],
+   "source": [
+    "!nodestream run sbom --target my-neptune"
+   ]
+  },
+  {
+   "cell_type": "markdown",
+   "id": "a8630fc3-c3f8-456c-820a-8b254f9f164e",
+   "metadata": {},
+   "source": [
+    "## Dependency Management\n",
+    "\n",
+    "Now that we have completed importing these SBOM files, let's begin by visualizing the graph of components in the SBOM.\n",
+    "\n",
+    "### Graph of components for the `graph-notebook`"
+   ]
+  },
+  {
+   "cell_type": "code",
+   "execution_count": null,
+   "id": "1a4533b2-7ef9-48ac-b7f3-759adcc0b544",
+   "metadata": {
+    "tags": []
+   },
+   "outputs": [],
+   "source": [
+    "%%oc  -d name\n",
+    "\n",
+    "MATCH p=(n:Document {name: 'com.github.aws/graph-notebook'})-[]->()\n",
+    "RETURN p"
+   ]
+  },
+  {
+   "cell_type": "markdown",
+   "id": "05a38fe4-02ba-435a-b1dc-f36919e332bb",
+   "metadata": {},
+   "source": [
+    "Now, let's take a look at the entire SBOM for this project.\n",
+    "\n",
+    "### Graph of entire SBOM for the `graph-notebook`"
+   ]
+  },
+  {
+   "cell_type": "code",
+   "execution_count": null,
+   "id": "5f52d7a8-4a11-4ddf-b6f5-7e4c8b760721",
+   "metadata": {
+    "tags": []
+   },
+   "outputs": [],
+   "source": [
+    "%%oc -d name\n",
+    "\n",
+    "MATCH p=(n:Document {name: 'com.github.aws/graph-notebook'})-[*1..2]->()\n",
+    "RETURN p"
+   ]
+  },
+  {
+   "cell_type": "markdown",
+   "id": "e0ee4f37-9d5b-4ba2-9e8e-e949ef1c0d88",
+   "metadata": {},
+   "source": [
+    "## Shared Dependencies\n",
+    "\n",
+    "Another common use case with multiple SBOM's is to analyze and investigate shared dependencies across projects.  Shared dependencies allow development and security teams to better understand the security posture of the organization through identification of shared risks.  Let's start by taking a look at all the shared dependencies between these projects.\n",
+    "\n",
+    "### Viewing shared dependencies"
+   ]
+  },
+  {
+   "cell_type": "code",
+   "execution_count": null,
+   "id": "21bbb65b-f771-4bf2-b771-1d3a01edd8fe",
+   "metadata": {
+    "tags": []
+   },
+   "outputs": [],
+   "source": [
+    "%%oc -d name\n",
+    "\n",
+    "MATCH p=(d1:Document)-[r]->(c:Component)<-[]-(d2:Document)\n",
+    "WHERE d1 <> d2\n",
+    "RETURN p"
+   ]
+  },
+  {
+   "cell_type": "markdown",
+   "id": "5b122546-58b1-4691-947c-f2a9195205a8",
+   "metadata": {},
+   "source": [
+    "Now, let's take a look at the top 10 most shared dependencies.\n",
+    "\n",
+    "### Which is the most shared dependency"
+   ]
+  },
+  {
+   "cell_type": "code",
+   "execution_count": null,
+   "id": "d3398a81-4efc-452e-9f3b-ba9caa066e06",
+   "metadata": {},
+   "outputs": [],
+   "source": [
+    "%%oc --store-to degree_data\n",
+    "\n",
+    "MATCH (n:Component)\n",
+    "WHERE exists(n.name)\n",
+    "CALL neptune.algo.degree(n, {traversalDirection: 'both', edgeLabels: ['DEPENDS_ON']})\n",
+    "YIELD node, degree\n",
+    "RETURN node.name, degree\n",
+    "ORDER BY degree DESC \n",
+    "LIMIT 10"
+   ]
+  },
+  {
+   "cell_type": "markdown",
+   "id": "84acd344-132f-469d-b4e5-a6a3838adda0",
+   "metadata": {},
+   "source": [
+    "Now that we know the most often shared dependency, let's take a look at the projects that share this dependency.\n",
+    "\n",
+    "### Let's investigate this shared dependency's connections"
+   ]
+  },
+  {
+   "cell_type": "code",
+   "execution_count": null,
+   "id": "a31ff0d9-da3e-4c54-9d08-b84b2c2869e3",
+   "metadata": {
+    "tags": []
+   },
+   "outputs": [],
+   "source": [
+    "params = {'name': degree_data['results'][0]['node.name']}"
+   ]
+  },
+  {
+   "cell_type": "code",
+   "execution_count": null,
+   "id": "19ae58cb-6125-431a-882e-d89bf71d24ec",
+   "metadata": {
+    "tags": []
+   },
+   "outputs": [],
+   "source": [
+    "%%oc -qp params -d name\n",
+    "\n",
+    "MATCH p=(n: Component {name: $name})<-[:DEPENDS_ON]-()\n",
+    "RETURN p"
+   ]
+  },
+  {
+   "cell_type": "markdown",
+   "id": "139c53c7-0fcd-4117-9696-e9a483486ad1",
+   "metadata": {},
+   "source": [
+    "As we see, all four of our projects depend on the same component.  This sort of information is valuable during development and maintenance to prevent out-of-date or vulnerable components from entering the software supply chain."
+   ]
+  },
+  {
+   "cell_type": "markdown",
+   "id": "04171082-c883-4679-8956-303d21da09b1",
+   "metadata": {},
+   "source": [
+    "## Cyclic Dependencies\n",
+    "\n",
+    "Cyclic dependencies refer to situations where two or more components depend on each other in a circular fashion. For example, component A depends on component B, which in turn depends on component C, which then depends back on component A.\n",
+    "\n",
+    "Identifying cyclic dependencies is important for a few reasons:\n",
+    "\n",
+    "* It highlights potential design issues - cyclic dependencies make code more tightly coupled and harder to maintain.\n",
+    "\n",
+    "* It impacts security vulnerability analysis - if one component has a vulnerability, all cyclically dependent components could be impacted.\n",
+    "\n",
+    "* It aids refactoring and restructuring efforts - breaking down cyclic groups into more hierarchical structures.\n",
+    "\n",
+    "Overall, analyzing cyclical dependencies in SBOMs provides insights into the architecture, security, and license compliance of large modern applications with many interconnected components. Removing cycles when possible leads to more resilient and sustainable software.\n",
+    "\n",
+    "To identify cyclic dependencies in an SBOM, we can leverage the fact that a well designed application will contain components that make up a [directed acyclic graph](https://en.wikipedia.org/wiki/Directed_acyclic_graph).  A directed graph is acyclic if and only if it has no strongly connected subgraphs with more than one vertex.  A directed cycle is strongly connected and every non-trivial strongly connected component contains at least one directed cycle.  We can leverage a graph algorithm known as [Strongly Connected Components](https://docs.aws.amazon.com/neptune-analytics/latest/userguide/scc.html) to test for these within our graph.  In this scenario, we would expect that every component returned would only contain a single node."
+   ]
+  },
+  {
+   "cell_type": "code",
+   "execution_count": null,
+   "id": "9b2a537d-8224-4dc1-9f42-95500ac908dd",
+   "metadata": {
+    "tags": []
+   },
+   "outputs": [],
+   "source": [
+    "%%oc \n",
+    "\n",
+    "MATCH (n) \n",
+    "WHERE NOT n:Reference\n",
+    "CALL neptune.algo.scc(n)\n",
+    "YIELD node, component\n",
+    "WITH component, count(node) as cnt\n",
+    "WHERE cnt>1\n",
+    "RETURN component"
+   ]
+  },
+  {
+   "cell_type": "markdown",
+   "id": "b2486dee-eb90-4318-a2d3-9cf3904e1cb6",
+   "metadata": {},
+   "source": [
+    "## Next Steps\n",
+    "\n",
+    "In this notebook, we have demonstrated how to perform Dependency Analysis on SBOMs using Neptune Analytics.  While this notebook used a set of specific SBOM files, the code provided by the Nodestream SBOM plugin may also be used to load your own SBOM files, including code from Github as well as directly from Amazon Inspector.  \n",
+    "\n",
+    "Please look at how to configure and run these import in the [SBOM Plugin - Running Pipelines](https://github.com/nodestream-proj/nodestream-plugin-sbom/?tab=readme-ov-file#running-pipelines).\n",
+    "\n",
+    "If you are interested in the other types of SBOM analysis please look at the other notebooks available:\n",
+    "\n",
+    "* [SBOM Vulnerability Analysis](./02-SBOM-Vulnerability-Analysis.ipynb)"
+   ]
+  }
+ ],
+ "metadata": {
+  "kernelspec": {
+   "display_name": "Python 3",
+   "language": "python",
+   "name": "python3"
+  },
+  "language_info": {
+   "codemirror_mode": {
+    "name": "ipython",
+    "version": 3
+   },
+   "file_extension": ".py",
+   "mimetype": "text/x-python",
+   "name": "python",
+   "nbconvert_exporter": "python",
+   "pygments_lexer": "ipython3",
+   "version": "3.10.8"
+  }
+ },
+ "nbformat": 4,
+ "nbformat_minor": 5
+}
diff --git a/src/graph_notebook/notebooks/02-Neptune-Analytics/03-Sample-Use-Cases/03-Software-Bill-Of-Materials/02-SBOM-Vulnerability-Analysis.ipynb b/src/graph_notebook/notebooks/02-Neptune-Analytics/03-Sample-Use-Cases/03-Software-Bill-Of-Materials/02-SBOM-Vulnerability-Analysis.ipynb
new file mode 100644
index 00000000..040c4505
--- /dev/null
+++ b/src/graph_notebook/notebooks/02-Neptune-Analytics/03-Sample-Use-Cases/03-Software-Bill-Of-Materials/02-SBOM-Vulnerability-Analysis.ipynb
@@ -0,0 +1,339 @@
+{
+ "cells": [
+  {
+   "cell_type": "markdown",
+   "id": "bd69c263-2846-44cf-a780-d42b56624772",
+   "metadata": {},
+   "source": [
+    "# SBOM Vulnerability Analysis\n",
+    "\n",
+    "**Note** For a detailed introduction to Software Bill Of Materials please click read [Intro to Software Bill Of Materials](./00-Intro-to-Software-Bill-Of-Materials.ipynb)\n",
+    "\n",
+    "Software Bill of Materials (SBOM) contain details about the components and dependencies that make up a piece of software. This includes libraries, frameworks, modules, and more.  Loading SBOM files into a graph provides an efficent mechanism to explore common SBOM use cases such as Vulnerability Analysis.  Understanding dependencies allows teams to identify security vulnerabilities or licensing issues that may arise from open source or third-party code used in their software. Vulnerable dependencies are a major source of risk.  Dependency analysis provides visibility into all the direct and transitive dependencies used in a project. This allows security, legal, and development teams to gain a comprehensive inventory of the open source being utilized.\n",
+    "\n",
+    "During development and maintenance, vulnerability analysis helps prevent components with known vulnerabilities from entering the software supply chain.  By knowing all components in use, security and development teams can cross-check them against vulnerability databases to see if any have known vulnerabilities or exposures. This allows proactively patching security flaws.\n",
+    "\n",
+    "In summary, vulnerability analysis of SBOMs grants security and transparency into the software supply chain, allowing teams to efficiently mitigate risks introduced through use of third-party and open source components.\n"
+   ]
+  },
+  {
+   "attachments": {
+    "image.png": {
+     "image/png": "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"
+    }
+   },
+   "cell_type": "markdown",
+   "id": "1e4cf3f8-86e2-48f1-836a-06516d13bafd",
+   "metadata": {},
+   "source": [
+    "## Data Model\n",
+    "\n",
+    "**Note** The data model being used has been covered in [Intro to Software Bill Of Materials](./00-Intro-to-Software-Bill-Of-Materials.ipynb) so please read that to get a deeper understanding of the summary presented below.\n",
+    "\n",
+    "![image.png](attachment:image.png)\n",
+    "\n",
+    "**Node Types**\n",
+    "* `Document` - This represents the SBOM document as well as the metadata associated with that SBOM.\n",
+    "* `Component` - This represents a specific component of a software system.\n",
+    "* `Reference` - This represents a reference to any external system which the system wanted to include as a reference.  This can range from package managers, URLs to external websites, etc.\n",
+    "* `Vulnerability` - This represents a specific known vulnerability for a component. \n",
+    "* `License` - This represents a specific license associated for a component.\n",
+    "\n",
+    "**Edge Types**\n",
+    "* `DESCRIBES`/`DEPENDS_ON`/`DEPENDENCY_OF`/`DESCRIBED_BY`/`CONTAINS` - This represents the type of relationship between a `Document` and a `Component` in the system. \n",
+    "* `REFERS_TO` - This represents a reference between a `Component` and a `Reference`\n",
+    "* `AFFECTS` - This represents that a particular `Component` is affected by the connected `Vulnerability`"
+   ]
+  },
+  {
+   "cell_type": "markdown",
+   "id": "c405d964-1ceb-47c2-835b-7146a18842d3",
+   "metadata": {},
+   "source": [
+    "## Loading SBOM Data\n",
+    "\n",
+    "In this notebook we will use [Nodestream](https://nodestream-proj.github.io/docs/) and the [Nodestream SBOM plugin](https://github.com/nodestream-proj/nodestream-plugin-sbom) to load several SPDX files which were sourced from Github using its SBOM feature, detailed [here](https://docs.github.com/en/rest/dependency-graph/sboms).  \n",
+    "\n",
+    "Nodestream is a framework for dealing with semantically modeling data as a graph. It is designed to be flexible and extensible, allowing you to define how data is collected and modeled as a graph. It uses a pipeline-based approach to define how data is collected and processed, and it provides a way to define how the graph should be updated when the schema changes. All of this is done using a simple, human-readable configuration file in yaml format.\n",
+    "\n",
+    "Let's begin by installing the required libraries for using Nodestream with Neptune and the SBOM plugin."
+   ]
+  },
+  {
+   "cell_type": "code",
+   "execution_count": null,
+   "id": "bbf8e9f3-040d-426a-bce5-77d0ef2bd9c8",
+   "metadata": {
+    "tags": []
+   },
+   "outputs": [],
+   "source": [
+    "!pip install -q pyyaml nodestream-plugin-neptune nodestream_plugin_sbom"
+   ]
+  },
+  {
+   "cell_type": "markdown",
+   "id": "c5877a18-5312-4974-ad1d-f838ca5bff74",
+   "metadata": {},
+   "source": [
+    "The SBOM plugin enables users to import SBOM files in JSON formatted CycloneDX and SPDX into an opinionated graph data model in a graph database. Nodestream is a developer friendly Python framework for materializing and working with graph databases.\n",
+    "\n",
+    "The included files for this notebook are:\n",
+    "\n",
+    "* AWS CLI - version 2.0.6\n",
+    "* Gremlin Console - version 3.7.1\n",
+    "* Gremlin Server - version 3.7.1\n",
+    "\n",
+    "For these example we have also provided CycloneDX based SBOMs as, unlike SPDX, they can optionally contain vulnerability information.\n",
+    "\n",
+    "<div class=\"alert alert-block alert-info\"> \n",
+    "<details>\n",
+    "    <summary>✏️<b><i> Click here for a tip</i></b></summary>\n",
+    "  \n",
+    "If you would like to import your own SBOM files, this can be done by either saving them, in JSON format, to the `./example_sboms/02/` directory or by changing the directory location in the code below.\n",
+    "</details>\n",
+    "</div>\n",
+    "\n",
+    "Running the cell below will setup our configuration file for loading our SBOM data."
+   ]
+  },
+  {
+   "cell_type": "code",
+   "execution_count": null,
+   "id": "91e7ea13-521a-4f34-bdbd-d9f8791fa978",
+   "metadata": {
+    "tags": []
+   },
+   "outputs": [],
+   "source": [
+    "import json\n",
+    "from IPython.utils import io\n",
+    "from sbom_code import sbom_helper\n",
+    "\n",
+    "# Retrieve the notebook configuration information to pass in as parameters and supress printing the config\n",
+    "with io.capture_output() as captured:\n",
+    "    mgc = get_ipython().run_line_magic\n",
+    "    mgc(magic_name = \"graph_notebook_config\", line=\"--store-to config\")\n",
+    "\n",
+    "# Create the nodestream.yaml file\n",
+    "sbom_helper.set_nodesteam_yaml(json.loads(config), \"02/\")"
+   ]
+  },
+  {
+   "cell_type": "markdown",
+   "id": "cd4d0a74-df89-4cad-96e6-d105b1ba5fd4",
+   "metadata": {},
+   "source": [
+    "Running the code above will generate a `nodestream.yaml` file that specifies the source data and target, which in this case is our Neptune database or graph."
+   ]
+  },
+  {
+   "cell_type": "code",
+   "execution_count": null,
+   "id": "bfebc643-83d2-4bad-944c-e78f585207d5",
+   "metadata": {
+    "tags": []
+   },
+   "outputs": [],
+   "source": [
+    "!nodestream run sbom --target my-neptune"
+   ]
+  },
+  {
+   "cell_type": "markdown",
+   "id": "31ed02a7-bb02-4ea8-aebc-4147428ad3f6",
+   "metadata": {},
+   "source": [
+    "## Visualizing the Vulnerability Connections\n",
+    "\n",
+    "Now that we have completed importing these SBOM files' lets begin by visualizing what the graph of vulnerabilities.\n",
+    "\n",
+    "### Graph vulnerabilities and the components that they affect"
+   ]
+  },
+  {
+   "cell_type": "code",
+   "execution_count": null,
+   "id": "21bbb65b-f771-4bf2-b771-1d3a01edd8fe",
+   "metadata": {
+    "tags": []
+   },
+   "outputs": [],
+   "source": [
+    "%%oc -d name\n",
+    "\n",
+    "MATCH p=(v:Vulnerability)-[:AFFECTS]->(c) \n",
+    "RETURN p"
+   ]
+  },
+  {
+   "cell_type": "markdown",
+   "id": "b58baf60-f649-41b0-b9f1-8dc713ede5fc",
+   "metadata": {},
+   "source": [
+    "Now, let's take a look at the projects hierarchy.\n",
+    "\n",
+    "### Graph of project hierarchy of these vulnerabilities\n"
+   ]
+  },
+  {
+   "cell_type": "code",
+   "execution_count": null,
+   "id": "51976e6c-8f8b-4418-b460-a2cef172cbd4",
+   "metadata": {},
+   "outputs": [],
+   "source": [
+    "%%oc -d name\n",
+    "\n",
+    "MATCH p=(v:Vulnerability)-[:AFFECTS]->(c)<-[]-(:Document)\n",
+    "RETURN p"
+   ]
+  },
+  {
+   "cell_type": "markdown",
+   "id": "e065e66e-38c9-473e-9f83-86d67555a6ea",
+   "metadata": {},
+   "source": [
+    "## Ranking projects to update\n",
+    "\n",
+    "A common use case when looking at vulnerabilities is to analyze vulnerabilities and their dependencies to priortize projects to update based on the largest risk.  Priortizing the most risky projects allow development and security teams to better understand the security posture of the organization through identification of shared risks. \n",
+    "\n",
+    "### Find all `critical` and `high` risk vulnerabilities"
+   ]
+  },
+  {
+   "cell_type": "code",
+   "execution_count": null,
+   "id": "1bb5c14b-7f32-4ff4-af25-4fdaba6ab823",
+   "metadata": {
+    "tags": []
+   },
+   "outputs": [],
+   "source": [
+    "%%oc -d name\n",
+    "\n",
+    "MATCH (v:Vulnerability)\n",
+    "WHERE v.`ratings.severity` in ['critical', 'high']\n",
+    "Return v.id, v.`ratings.severity` as severity, v.description\n",
+    "ORDER BY severity"
+   ]
+  },
+  {
+   "cell_type": "markdown",
+   "id": "96024a9b-5a19-4a02-931e-a573e03c5ac5",
+   "metadata": {},
+   "source": [
+    "Now that we know what the important vulnerabilities let's see how we can priortize these risks.  One way to priortize these risks is to find  projects where these vulnerabilities are shared.\n",
+    "\n",
+    "### Finding Projects with Shared Vulnerabilties"
+   ]
+  },
+  {
+   "cell_type": "code",
+   "execution_count": null,
+   "id": "f1a3c35e-fdf6-4bd5-90c9-cc81ad7f999b",
+   "metadata": {
+    "tags": []
+   },
+   "outputs": [],
+   "source": [
+    "%%oc -d name\n",
+    "\n",
+    "MATCH p=(v:Vulnerability)-[]->(c:Component)<-[:DESCRIBES]-(d:Document)\n",
+    "WHERE v.`ratings.severity` in ['critical', 'high']\n",
+    "WITH v, count(d) as document_count\n",
+    "WHERE document_count>1\n",
+    "MATCH p=(v:Vulnerability)-[]->(c:Component)<-[:DESCRIBES]-(d:Document)\n",
+    "RETURN p"
+   ]
+  },
+  {
+   "cell_type": "markdown",
+   "id": "edaa7aa7-200f-4728-b127-4d665511b574",
+   "metadata": {},
+   "source": [
+    "Another way of looking at priortizing risks is to look at which vulnerability is impacting the most components\n",
+    "\n",
+    "### Find the vulnerability impacting the most components"
+   ]
+  },
+  {
+   "cell_type": "code",
+   "execution_count": null,
+   "id": "e758be96-03fb-4409-af37-0f7cf2255704",
+   "metadata": {
+    "tags": []
+   },
+   "outputs": [],
+   "source": [
+    "%%oc -d name\n",
+    "\n",
+    "MATCH (v:Vulnerability)-[]->(c:Component)<-[:DESCRIBES]-(d:Document)\n",
+    "WHERE v.`ratings.severity` in ['critical', 'high']\n",
+    "RETURN c.name as project,  v.`ratings.severity` as severity, count(v.`ratings.severity`) as vulnerability_cnt, d\n",
+    "ORDER BY project, severity, vulnerability_cnt DESC"
+   ]
+  },
+  {
+   "cell_type": "markdown",
+   "id": "561cd6af-72a5-4f59-be6c-3e4ebb10fc03",
+   "metadata": {},
+   "source": [
+    "A final way to look at priortizing risks is to look at which component has the most important vulnerabilities\n",
+    "\n",
+    "### Find the component with the most critical or high severity vulnerabilities"
+   ]
+  },
+  {
+   "cell_type": "code",
+   "execution_count": null,
+   "id": "8ebcdca5-c85a-47b2-bb1a-92392e5b1d50",
+   "metadata": {
+    "tags": []
+   },
+   "outputs": [],
+   "source": [
+    "%%oc -d name\n",
+    "\n",
+    "MATCH (v:Vulnerability)-[]->(c:Component)<-[:DESCRIBES]-(d:Document)\n",
+    "WHERE v.`ratings.severity` in ['critical', 'high']\n",
+    "WITH v, count(DISTINCT c.name) as cnt\n",
+    "RETURN v.id, v.`ratings.severity` as severity, cnt\n",
+    "ORDER BY cnt DESC, severity ASC"
+   ]
+  },
+  {
+   "cell_type": "markdown",
+   "id": "c1bf1c66-3c5a-4943-b5e4-221516c0aed2",
+   "metadata": {},
+   "source": [
+    "## Next Steps\n",
+    "\n",
+    "In this notebook, we have demonstrated how to perform Vulnerabilit Analysis on SBOMs using Neptune Analytics.  If you are interested in the other types of SBOM analysis please look at the other notebooks available:\n",
+    "\n",
+    "* [SBOM Dependency Analysis](./01-SBOM-Dependency-Analysis.ipynb)"
+   ]
+  }
+ ],
+ "metadata": {
+  "kernelspec": {
+   "display_name": "Python 3",
+   "language": "python",
+   "name": "python3"
+  },
+  "language_info": {
+   "codemirror_mode": {
+    "name": "ipython",
+    "version": 3
+   },
+   "file_extension": ".py",
+   "mimetype": "text/x-python",
+   "name": "python",
+   "nbconvert_exporter": "python",
+   "pygments_lexer": "ipython3",
+   "version": "3.10.8"
+  }
+ },
+ "nbformat": 4,
+ "nbformat_minor": 5
+}
diff --git a/src/graph_notebook/notebooks/02-Neptune-Analytics/03-Sample-Use-Cases/03-Software-Bill-Of-Materials/__init__.py b/src/graph_notebook/notebooks/02-Neptune-Analytics/03-Sample-Use-Cases/03-Software-Bill-Of-Materials/__init__.py
new file mode 100644
index 00000000..fa84f3bc
--- /dev/null
+++ b/src/graph_notebook/notebooks/02-Neptune-Analytics/03-Sample-Use-Cases/03-Software-Bill-Of-Materials/__init__.py
@@ -0,0 +1,4 @@
+"""
+Copyright Amazon.com, Inc. or its affiliates. All Rights Reserved.
+SPDX-License-Identifier: Apache-2.0
+"""
\ No newline at end of file
diff --git a/src/graph_notebook/notebooks/02-Neptune-Analytics/03-Sample-Use-Cases/03-Software-Bill-Of-Materials/example_sboms/01/__init__.py b/src/graph_notebook/notebooks/02-Neptune-Analytics/03-Sample-Use-Cases/03-Software-Bill-Of-Materials/example_sboms/01/__init__.py
new file mode 100644
index 00000000..fa84f3bc
--- /dev/null
+++ b/src/graph_notebook/notebooks/02-Neptune-Analytics/03-Sample-Use-Cases/03-Software-Bill-Of-Materials/example_sboms/01/__init__.py
@@ -0,0 +1,4 @@
+"""
+Copyright Amazon.com, Inc. or its affiliates. All Rights Reserved.
+SPDX-License-Identifier: Apache-2.0
+"""
\ No newline at end of file
diff --git a/src/graph_notebook/notebooks/02-Neptune-Analytics/03-Sample-Use-Cases/03-Software-Bill-Of-Materials/example_sboms/01/aws-sdk-pandas_aws_de5d1610d6d4ea3be44a01ab3f09b64e291a4ab7.json b/src/graph_notebook/notebooks/02-Neptune-Analytics/03-Sample-Use-Cases/03-Software-Bill-Of-Materials/example_sboms/01/aws-sdk-pandas_aws_de5d1610d6d4ea3be44a01ab3f09b64e291a4ab7.json
new file mode 100644
index 00000000..c6c7241c
--- /dev/null
+++ b/src/graph_notebook/notebooks/02-Neptune-Analytics/03-Sample-Use-Cases/03-Software-Bill-Of-Materials/example_sboms/01/aws-sdk-pandas_aws_de5d1610d6d4ea3be44a01ab3f09b64e291a4ab7.json
@@ -0,0 +1 @@
+{"SPDXID":"SPDXRef-DOCUMENT","spdxVersion":"SPDX-2.3","creationInfo":{"created":"2024-01-27T00:13:26Z","creators":["Tool: GitHub.com-Dependency-Graph"]},"name":"com.github.aws/aws-sdk-pandas","dataLicense":"CC0-1.0","documentDescribes":["SPDXRef-com.github.aws-aws-sdk-pandas"],"documentNamespace":"https://github.com/aws/aws-sdk-pandas/dependency_graph/sbom-0aa82e11766deba6","packages":[{"SPDXID":"SPDXRef-com.github.aws-aws-sdk-pandas","name":"com.github.aws/aws-sdk-pandas","versionInfo":"","downloadLocation":"git+https://github.com/aws/aws-sdk-pandas","licenseDeclared":"Apache-2.0","filesAnalyzed":false,"supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceType":"purl","referenceLocator":"pkg:github/aws/aws-sdk-pandas"}]},{"SPDXID":"SPDXRef-pip-aenum-3.1.15","name":"pip:aenum","versionInfo":"3.1.15","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"BSD-2-Clause","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/aenum@3.1.15","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-aiohttp-3.9.1","name":"pip:aiohttp","versionInfo":"3.9.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/aiohttp@3.9.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-aiohttp-cors-0.7.0","name":"pip:aiohttp-cors","versionInfo":"0.7.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/aiohttp-cors@0.7.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-aiosignal-1.3.1","name":"pip:aiosignal","versionInfo":"1.3.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/aiosignal@1.3.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-alabaster-0.7.13","name":"pip:alabaster","versionInfo":"0.7.13","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"BSD-2-Clause","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/alabaster@0.7.13","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-annotated-types-0.6.0","name":"pip:annotated-types","versionInfo":"0.6.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/annotated-types@0.6.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-ansicon-1.89.0","name":"pip:ansicon","versionInfo":"1.89.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MPL-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/ansicon@1.89.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-anyio-4.2.0","name":"pip:anyio","versionInfo":"4.2.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/anyio@4.2.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-appnope-0.1.3","name":"pip:appnope","versionInfo":"0.1.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"BSD-2-Clause","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/appnope@0.1.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-argon2-cffi-23.1.0","name":"pip:argon2-cffi","versionInfo":"23.1.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/argon2-cffi@23.1.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-argon2-cffi-bindings-21.2.0","name":"pip:argon2-cffi-bindings","versionInfo":"21.2.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/argon2-cffi-bindings@21.2.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-arrow-1.3.0","name":"pip:arrow","versionInfo":"1.3.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/arrow@1.3.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-asn1crypto-1.5.1","name":"pip:asn1crypto","versionInfo":"1.5.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/asn1crypto@1.5.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-asttokens-2.4.1","name":"pip:asttokens","versionInfo":"2.4.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/asttokens@2.4.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-async-lru-2.0.4","name":"pip:async-lru","versionInfo":"2.0.4","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/async-lru@2.0.4","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-async-timeout-4.0.3","name":"pip:async-timeout","versionInfo":"4.0.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/async-timeout@4.0.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-attrs-23.1.0","name":"pip:attrs","versionInfo":"23.1.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/attrs@23.1.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-babel-2.14.0","name":"pip:babel","versionInfo":"2.14.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"BSD-2-Clause AND BSD-3-Clause","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/babel@2.14.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-backcall-0.2.0","name":"pip:backcall","versionInfo":"0.2.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"BSD-2-Clause AND BSD-3-Clause","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/backcall@0.2.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-beautifulsoup4-4.12.2","name":"pip:beautifulsoup4","versionInfo":"4.12.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/beautifulsoup4@4.12.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-bleach-6.1.0","name":"pip:bleach","versionInfo":"6.1.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/bleach@6.1.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-blessed-1.20.0","name":"pip:blessed","versionInfo":"1.20.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/blessed@1.20.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-boto3-1.34.21","name":"pip:boto3","versionInfo":"1.34.21","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/boto3@1.34.21","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-boto3-stubs-1.34.25","name":"pip:boto3-stubs","versionInfo":"1.34.25","downloadLocation":"NOASSERTION","filesAnalyzed":false,"supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/boto3-stubs@1.34.25","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-botocore-1.34.25","name":"pip:botocore","versionInfo":"1.34.25","downloadLocation":"NOASSERTION","filesAnalyzed":false,"supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/botocore@1.34.25","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-botocore-stubs-1.34.2","name":"pip:botocore-stubs","versionInfo":"1.34.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/botocore-stubs@1.34.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-bump-my-version-0.17.0","name":"pip:bump-my-version","versionInfo":"0.17.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/bump-my-version@0.17.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-cachetools-5.3.2","name":"pip:cachetools","versionInfo":"5.3.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/cachetools@5.3.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-certifi-2023.11.17","name":"pip:certifi","versionInfo":"2023.11.17","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MPL-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/certifi@2023.11.17","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-cffi-1.16.0","name":"pip:cffi","versionInfo":"1.16.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/cffi@1.16.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-chardet-5.2.0","name":"pip:chardet","versionInfo":"5.2.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"GPL-3.0-or-later AND LGPL-2.1-only","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/chardet@5.2.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-charset-normalizer-3.3.2","name":"pip:charset-normalizer","versionInfo":"3.3.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/charset-normalizer@3.3.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-click-8.1.7","name":"pip:click","versionInfo":"8.1.7","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"BSD-2-Clause AND BSD-3-Clause","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/click@8.1.7","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-click-plugins-1.1.1","name":"pip:click-plugins","versionInfo":"1.1.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"BSD-2-Clause AND BSD-3-Clause","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/click-plugins@1.1.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-cligj-0.7.2","name":"pip:cligj","versionInfo":"0.7.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"BSD-3-Clause","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/cligj@0.7.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-colorama-0.4.6","name":"pip:colorama","versionInfo":"0.4.6","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"BSD-2-Clause AND BSD-3-Clause","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/colorama@0.4.6","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-colorful-0.5.5","name":"pip:colorful","versionInfo":"0.5.5","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/colorful@0.5.5","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-comm-0.2.0","name":"pip:comm","versionInfo":"0.2.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"BSD-2-Clause AND BSD-3-Clause","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/comm@0.2.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-coverage-7.3.3","name":"pip:coverage","versionInfo":"7.3.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/coverage@7.3.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-cryptography-41.0.7","name":"pip:cryptography","versionInfo":"41.0.7","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0 OR (Apache-2.0 AND BSD-3-Clause)","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/cryptography@41.0.7","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-debugpy-1.8.0","name":"pip:debugpy","versionInfo":"1.8.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/debugpy@1.8.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-decorator-5.1.1","name":"pip:decorator","versionInfo":"5.1.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"BSD-2-Clause","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/decorator@5.1.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-defusedxml-0.7.1","name":"pip:defusedxml","versionInfo":"0.7.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"PSF-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/defusedxml@0.7.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-deltalake-0.15.1","name":"pip:deltalake","versionInfo":"0.15.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/deltalake@0.15.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-distlib-0.3.8","name":"pip:distlib","versionInfo":"0.3.8","downloadLocation":"NOASSERTION","filesAnalyzed":false,"supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/distlib@0.3.8","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-doc8-1.1.1","name":"pip:doc8","versionInfo":"1.1.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/doc8@1.1.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-docutils-0.19","name":"pip:docutils","versionInfo":"0.19","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"BSD-2-Clause","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/docutils@0.19","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-entrypoints-0.4","name":"pip:entrypoints","versionInfo":"0.4","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/entrypoints@0.4","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-et-xmlfile-1.1.0","name":"pip:et-xmlfile","versionInfo":"1.1.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/et-xmlfile@1.1.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-exceptiongroup-1.2.0","name":"pip:exceptiongroup","versionInfo":"1.2.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT AND Python-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/exceptiongroup@1.2.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-execnet-2.0.2","name":"pip:execnet","versionInfo":"2.0.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/execnet@2.0.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-executing-2.0.1","name":"pip:executing","versionInfo":"2.0.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/executing@2.0.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-fastjsonschema-2.19.0","name":"pip:fastjsonschema","versionInfo":"2.19.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"BSD-2-Clause AND BSD-3-Clause","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/fastjsonschema@2.19.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-filelock-3.13.1","name":"pip:filelock","versionInfo":"3.13.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Unlicense","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/filelock@3.13.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-fiona-1.9.5","name":"pip:fiona","versionInfo":"1.9.5","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"BSD-2-Clause AND BSD-3-Clause","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/fiona@1.9.5","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-fqdn-1.5.1","name":"pip:fqdn","versionInfo":"1.5.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MPL-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/fqdn@1.5.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-frozenlist-1.4.1","name":"pip:frozenlist","versionInfo":"1.4.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/frozenlist@1.4.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-fsspec-2023.12.2","name":"pip:fsspec","versionInfo":"2023.12.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"BSD-2-Clause AND BSD-3-Clause","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/fsspec@2023.12.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-geopandas-0.13.2","name":"pip:geopandas","versionInfo":"0.13.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"BSD-2-Clause","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/geopandas@0.13.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-geopandas-0.14.1","name":"pip:geopandas","versionInfo":"0.14.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/geopandas@0.14.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-google-api-core-2.15.0","name":"pip:google-api-core","versionInfo":"2.15.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/google-api-core@2.15.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-google-auth-2.25.2","name":"pip:google-auth","versionInfo":"2.25.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/google-auth@2.25.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-googleapis-common-protos-1.62.0","name":"pip:googleapis-common-protos","versionInfo":"1.62.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/googleapis-common-protos@1.62.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-gpustat-1.1.1","name":"pip:gpustat","versionInfo":"1.1.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/gpustat@1.1.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-gremlinpython-3.7.1","name":"pip:gremlinpython","versionInfo":"3.7.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/gremlinpython@3.7.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-grpcio-1.53.0","name":"pip:grpcio","versionInfo":"1.53.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0 AND BSD-3-Clause AND MPL-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/grpcio@1.53.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-idna-3.6","name":"pip:idna","versionInfo":"3.6","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"BSD-2-Clause AND BSD-3-Clause","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/idna@3.6","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-imagesize-1.4.1","name":"pip:imagesize","versionInfo":"1.4.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/imagesize@1.4.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-importlib-metadata-7.0.0","name":"pip:importlib-metadata","versionInfo":"7.0.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/importlib-metadata@7.0.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-importlib-resources-6.1.1","name":"pip:importlib-resources","versionInfo":"6.1.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/importlib-resources@6.1.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-iniconfig-2.0.0","name":"pip:iniconfig","versionInfo":"2.0.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/iniconfig@2.0.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-ipykernel-6.27.1","name":"pip:ipykernel","versionInfo":"6.27.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"BSD-2-Clause AND BSD-3-Clause","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/ipykernel@6.27.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-ipython-8.12.3","name":"pip:ipython","versionInfo":"8.12.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"BSD-2-Clause AND BSD-3-Clause","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/ipython@8.12.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-isodate-0.6.1","name":"pip:isodate","versionInfo":"0.6.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"BSD-2-Clause","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/isodate@0.6.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-isoduration-20.11.0","name":"pip:isoduration","versionInfo":"20.11.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"ISC","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/isoduration@20.11.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-jedi-0.19.1","name":"pip:jedi","versionInfo":"0.19.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/jedi@0.19.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-jinja2-3.1.3","name":"pip:jinja2","versionInfo":"3.1.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"BSD-2-Clause AND BSD-3-Clause","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/jinja2@3.1.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-jinxed-1.2.1","name":"pip:jinxed","versionInfo":"1.2.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MPL-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/jinxed@1.2.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-jmespath-1.0.1","name":"pip:jmespath","versionInfo":"1.0.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/jmespath@1.0.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-json5-0.9.14","name":"pip:json5","versionInfo":"0.9.14","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/json5@0.9.14","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-jsonpath-ng-1.6.1","name":"pip:jsonpath-ng","versionInfo":"1.6.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/jsonpath-ng@1.6.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-jsonpointer-2.4","name":"pip:jsonpointer","versionInfo":"2.4","downloadLocation":"NOASSERTION","filesAnalyzed":false,"supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/jsonpointer@2.4","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-jsonschema-4.20.0","name":"pip:jsonschema","versionInfo":"4.20.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/jsonschema@4.20.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-jsonschema-specifications-2023.11.2","name":"pip:jsonschema-specifications","versionInfo":"2023.11.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/jsonschema-specifications@2023.11.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-jupyter-client-7.4.9","name":"pip:jupyter-client","versionInfo":"7.4.9","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"BSD-2-Clause","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/jupyter-client@7.4.9","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-jupyter-core-5.5.1","name":"pip:jupyter-core","versionInfo":"5.5.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/jupyter-core@5.5.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-jupyter-events-0.9.0","name":"pip:jupyter-events","versionInfo":"0.9.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/jupyter-events@0.9.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-jupyter-lsp-2.2.2","name":"pip:jupyter-lsp","versionInfo":"2.2.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/jupyter-lsp@2.2.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-jupyter-server-2.12.1","name":"pip:jupyter-server","versionInfo":"2.12.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"BSD-2-Clause AND BSD-3-Clause","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/jupyter-server@2.12.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-jupyter-server-terminals-0.5.0","name":"pip:jupyter-server-terminals","versionInfo":"0.5.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"BSD-2-Clause AND BSD-3-Clause","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/jupyter-server-terminals@0.5.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-jupyterlab-4.0.11","name":"pip:jupyterlab","versionInfo":"4.0.11","downloadLocation":"NOASSERTION","filesAnalyzed":false,"supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/jupyterlab@4.0.11","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-jupyterlab-pygments-0.3.0","name":"pip:jupyterlab-pygments","versionInfo":"0.3.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"BSD-2-Clause","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/jupyterlab-pygments@0.3.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-jupyterlab-server-2.25.2","name":"pip:jupyterlab-server","versionInfo":"2.25.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"BSD-2-Clause AND BSD-3-Clause","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/jupyterlab-server@2.25.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-lxml-4.9.3","name":"pip:lxml","versionInfo":"4.9.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"BSD-2-Clause AND BSD-3-Clause","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/lxml@4.9.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-markdown-it-py-3.0.0","name":"pip:markdown-it-py","versionInfo":"3.0.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/markdown-it-py@3.0.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-markupsafe-2.1.3","name":"pip:markupsafe","versionInfo":"2.1.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"BSD-2-Clause AND BSD-3-Clause","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/markupsafe@2.1.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-matplotlib-inline-0.1.6","name":"pip:matplotlib-inline","versionInfo":"0.1.6","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"BSD-3-Clause","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/matplotlib-inline@0.1.6","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-mdit-py-plugins-0.4.0","name":"pip:mdit-py-plugins","versionInfo":"0.4.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/mdit-py-plugins@0.4.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-mdurl-0.1.2","name":"pip:mdurl","versionInfo":"0.1.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/mdurl@0.1.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-mistune-3.0.2","name":"pip:mistune","versionInfo":"3.0.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"BSD-2-Clause AND BSD-3-Clause","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/mistune@3.0.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-modin-0.23.1.post0","name":"pip:modin","versionInfo":"0.23.1.post0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/modin@0.23.1.post0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-modin-0.26.0","name":"pip:modin","versionInfo":"0.26.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/modin@0.26.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-moto-4.2.13","name":"pip:moto","versionInfo":"4.2.13","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/moto@4.2.13","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-msgpack-1.0.7","name":"pip:msgpack","versionInfo":"1.0.7","downloadLocation":"NOASSERTION","filesAnalyzed":false,"supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/msgpack@1.0.7","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-multidict-6.0.4","name":"pip:multidict","versionInfo":"6.0.4","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/multidict@6.0.4","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-mypy-1.8.0","name":"pip:mypy","versionInfo":"1.8.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/mypy@1.8.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-mypy-boto3-athena-1.34.0","name":"pip:mypy-boto3-athena","versionInfo":"1.34.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/mypy-boto3-athena@1.34.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-mypy-boto3-chime-1.34.0","name":"pip:mypy-boto3-chime","versionInfo":"1.34.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/mypy-boto3-chime@1.34.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-mypy-boto3-cleanrooms-1.34.0","name":"pip:mypy-boto3-cleanrooms","versionInfo":"1.34.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/mypy-boto3-cleanrooms@1.34.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-mypy-boto3-cloudwatch-1.34.0","name":"pip:mypy-boto3-cloudwatch","versionInfo":"1.34.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/mypy-boto3-cloudwatch@1.34.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-mypy-boto3-dynamodb-1.34.0","name":"pip:mypy-boto3-dynamodb","versionInfo":"1.34.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/mypy-boto3-dynamodb@1.34.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-mypy-boto3-ec2-1.34.0","name":"pip:mypy-boto3-ec2","versionInfo":"1.34.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/mypy-boto3-ec2@1.34.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-mypy-boto3-emr-1.34.0","name":"pip:mypy-boto3-emr","versionInfo":"1.34.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/mypy-boto3-emr@1.34.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-mypy-boto3-emr-serverless-1.34.0","name":"pip:mypy-boto3-emr-serverless","versionInfo":"1.34.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/mypy-boto3-emr-serverless@1.34.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-mypy-boto3-glue-1.34.0","name":"pip:mypy-boto3-glue","versionInfo":"1.34.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/mypy-boto3-glue@1.34.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-mypy-boto3-kms-1.34.2","name":"pip:mypy-boto3-kms","versionInfo":"1.34.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/mypy-boto3-kms@1.34.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-mypy-boto3-lakeformation-1.34.0","name":"pip:mypy-boto3-lakeformation","versionInfo":"1.34.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/mypy-boto3-lakeformation@1.34.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-mypy-boto3-logs-1.34.0","name":"pip:mypy-boto3-logs","versionInfo":"1.34.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/mypy-boto3-logs@1.34.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-mypy-boto3-neptune-1.34.0","name":"pip:mypy-boto3-neptune","versionInfo":"1.34.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/mypy-boto3-neptune@1.34.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-mypy-boto3-opensearch-1.34.1","name":"pip:mypy-boto3-opensearch","versionInfo":"1.34.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/mypy-boto3-opensearch@1.34.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-mypy-boto3-opensearchserverless-1.34.0","name":"pip:mypy-boto3-opensearchserverless","versionInfo":"1.34.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/mypy-boto3-opensearchserverless@1.34.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-mypy-boto3-quicksight-1.34.1","name":"pip:mypy-boto3-quicksight","versionInfo":"1.34.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/mypy-boto3-quicksight@1.34.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-mypy-boto3-rds-1.34.2","name":"pip:mypy-boto3-rds","versionInfo":"1.34.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/mypy-boto3-rds@1.34.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-mypy-boto3-rds-data-1.34.0","name":"pip:mypy-boto3-rds-data","versionInfo":"1.34.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/mypy-boto3-rds-data@1.34.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-mypy-boto3-redshift-1.34.0","name":"pip:mypy-boto3-redshift","versionInfo":"1.34.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/mypy-boto3-redshift@1.34.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-mypy-boto3-redshift-data-1.34.0","name":"pip:mypy-boto3-redshift-data","versionInfo":"1.34.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/mypy-boto3-redshift-data@1.34.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-mypy-boto3-s3-1.34.0","name":"pip:mypy-boto3-s3","versionInfo":"1.34.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/mypy-boto3-s3@1.34.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-mypy-boto3-secretsmanager-1.34.0","name":"pip:mypy-boto3-secretsmanager","versionInfo":"1.34.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/mypy-boto3-secretsmanager@1.34.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-mypy-boto3-ssm-1.34.0","name":"pip:mypy-boto3-ssm","versionInfo":"1.34.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/mypy-boto3-ssm@1.34.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-mypy-boto3-sts-1.34.0","name":"pip:mypy-boto3-sts","versionInfo":"1.34.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/mypy-boto3-sts@1.34.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-mypy-boto3-timestream-query-1.34.0","name":"pip:mypy-boto3-timestream-query","versionInfo":"1.34.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/mypy-boto3-timestream-query@1.34.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-mypy-boto3-timestream-write-1.34.0","name":"pip:mypy-boto3-timestream-write","versionInfo":"1.34.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/mypy-boto3-timestream-write@1.34.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-mypy-extensions-1.0.0","name":"pip:mypy-extensions","versionInfo":"1.0.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/mypy-extensions@1.0.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-myst-parser-2.0.0","name":"pip:myst-parser","versionInfo":"2.0.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/myst-parser@2.0.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-nbclient-0.9.0","name":"pip:nbclient","versionInfo":"0.9.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"BSD-2-Clause","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/nbclient@0.9.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-nbconvert-7.13.0","name":"pip:nbconvert","versionInfo":"7.13.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"BSD-2-Clause AND BSD-3-Clause","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/nbconvert@7.13.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-nbformat-5.9.2","name":"pip:nbformat","versionInfo":"5.9.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"BSD-2-Clause","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/nbformat@5.9.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-nbsphinx-0.9.3","name":"pip:nbsphinx","versionInfo":"0.9.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/nbsphinx@0.9.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-nbsphinx-link-1.3.0","name":"pip:nbsphinx-link","versionInfo":"1.3.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"BSD-2-Clause AND BSD-3-Clause","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/nbsphinx-link@1.3.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-nest-asyncio-1.5.8","name":"pip:nest-asyncio","versionInfo":"1.5.8","downloadLocation":"NOASSERTION","filesAnalyzed":false,"supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/nest-asyncio@1.5.8","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-notebook-shim-0.2.3","name":"pip:notebook-shim","versionInfo":"0.2.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"BSD-2-Clause AND BSD-3-Clause","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/notebook-shim@0.2.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-numpy-1.24.4","name":"pip:numpy","versionInfo":"1.24.4","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"BSD-2-Clause","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/numpy@1.24.4","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-numpy-1.26.2","name":"pip:numpy","versionInfo":"1.26.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/numpy@1.26.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-nvidia-ml-py-12.535.133","name":"pip:nvidia-ml-py","versionInfo":"12.535.133","downloadLocation":"NOASSERTION","filesAnalyzed":false,"supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/nvidia-ml-py@12.535.133","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-opencensus-0.11.3","name":"pip:opencensus","versionInfo":"0.11.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/opencensus@0.11.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-opencensus-context-0.1.3","name":"pip:opencensus-context","versionInfo":"0.1.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/opencensus-context@0.1.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-openpyxl-3.1.2","name":"pip:openpyxl","versionInfo":"3.1.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/openpyxl@3.1.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-opensearch-py-2.4.2","name":"pip:opensearch-py","versionInfo":"2.4.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/opensearch-py@2.4.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-oracledb-2.0.1","name":"pip:oracledb","versionInfo":"2.0.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/oracledb@2.0.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-overrides-7.4.0","name":"pip:overrides","versionInfo":"7.4.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/overrides@7.4.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-packaging-23.2","name":"pip:packaging","versionInfo":"23.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/packaging@23.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-pandas-2.0.3","name":"pip:pandas","versionInfo":"2.0.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"BSD-2-Clause AND BSD-3-Clause","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/pandas@2.0.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-pandas-2.1.4","name":"pip:pandas","versionInfo":"2.1.4","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"BSD-2-Clause AND BSD-3-Clause","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/pandas@2.1.4","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-pandocfilters-1.5.0","name":"pip:pandocfilters","versionInfo":"1.5.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"BSD-2-Clause AND BSD-3-Clause","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/pandocfilters@1.5.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-parso-0.8.3","name":"pip:parso","versionInfo":"0.8.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/parso@0.8.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-pbr-6.0.0","name":"pip:pbr","versionInfo":"6.0.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/pbr@6.0.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-pexpect-4.9.0","name":"pip:pexpect","versionInfo":"4.9.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/pexpect@4.9.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-pg8000-1.30.4","name":"pip:pg8000","versionInfo":"1.30.4","downloadLocation":"NOASSERTION","filesAnalyzed":false,"supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/pg8000@1.30.4","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-pickleshare-0.7.5","name":"pip:pickleshare","versionInfo":"0.7.5","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/pickleshare@0.7.5","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-pkgutil-resolve-name-1.3.10","name":"pip:pkgutil-resolve-name","versionInfo":"1.3.10","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/pkgutil-resolve-name@1.3.10","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-platformdirs-3.11.0","name":"pip:platformdirs","versionInfo":"3.11.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/platformdirs@3.11.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-pluggy-1.3.0","name":"pip:pluggy","versionInfo":"1.3.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/pluggy@1.3.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-ply-3.11","name":"pip:ply","versionInfo":"3.11","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"BSD-3-Clause","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/ply@3.11","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-progressbar2-4.2.0","name":"pip:progressbar2","versionInfo":"4.2.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"BSD-2-Clause","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/progressbar2@4.2.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-prometheus-client-0.19.0","name":"pip:prometheus-client","versionInfo":"0.19.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/prometheus-client@0.19.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-prompt-toolkit-3.0.43","name":"pip:prompt-toolkit","versionInfo":"3.0.43","downloadLocation":"NOASSERTION","filesAnalyzed":false,"supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/prompt-toolkit@3.0.43","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-protobuf-4.25.1","name":"pip:protobuf","versionInfo":"4.25.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/protobuf@4.25.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-psutil-5.9.7","name":"pip:psutil","versionInfo":"5.9.7","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"BSD-2-Clause AND BSD-3-Clause","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/psutil@5.9.7","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-ptyprocess-0.7.0","name":"pip:ptyprocess","versionInfo":"0.7.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"ISC","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/ptyprocess@0.7.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-pure-eval-0.2.2","name":"pip:pure-eval","versionInfo":"0.2.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/pure-eval@0.2.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-py-spy-0.3.14","name":"pip:py-spy","versionInfo":"0.3.14","downloadLocation":"NOASSERTION","filesAnalyzed":false,"supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/py-spy@0.3.14","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-pyarrow-15.0.0","name":"pip:pyarrow","versionInfo":"15.0.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/pyarrow@15.0.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-pyarrow-hotfix-0.6","name":"pip:pyarrow-hotfix","versionInfo":"0.6","downloadLocation":"NOASSERTION","filesAnalyzed":false,"supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/pyarrow-hotfix@0.6","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-pyasn1-0.5.1","name":"pip:pyasn1","versionInfo":"0.5.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"BSD-2-Clause","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/pyasn1@0.5.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-pyasn1-modules-0.3.0","name":"pip:pyasn1-modules","versionInfo":"0.3.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"BSD-2-Clause","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/pyasn1-modules@0.3.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-pycparser-2.21","name":"pip:pycparser","versionInfo":"2.21","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"BSD-2-Clause AND BSD-3-Clause","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/pycparser@2.21","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-pydantic-2.5.3","name":"pip:pydantic","versionInfo":"2.5.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/pydantic@2.5.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-pydantic-core-2.14.6","name":"pip:pydantic-core","versionInfo":"2.14.6","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/pydantic-core@2.14.6","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-pydantic-settings-2.1.0","name":"pip:pydantic-settings","versionInfo":"2.1.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/pydantic-settings@2.1.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-pydot-2.0.0","name":"pip:pydot","versionInfo":"2.0.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/pydot@2.0.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-pygments-2.17.2","name":"pip:pygments","versionInfo":"2.17.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"BSD-2-Clause","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/pygments@2.17.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-pymysql-1.1.0","name":"pip:pymysql","versionInfo":"1.1.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/pymysql@1.1.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-pyodbc-5.0.1","name":"pip:pyodbc","versionInfo":"5.0.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/pyodbc@5.0.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-pyparsing-3.1.1","name":"pip:pyparsing","versionInfo":"3.1.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/pyparsing@3.1.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-pyproj-3.5.0","name":"pip:pyproj","versionInfo":"3.5.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/pyproj@3.5.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-pyproj-3.6.1","name":"pip:pyproj","versionInfo":"3.6.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/pyproj@3.6.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-pyproject-api-1.5.4","name":"pip:pyproject-api","versionInfo":"1.5.4","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/pyproject-api@1.5.4","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-pytest-7.4.4","name":"pip:pytest","versionInfo":"7.4.4","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/pytest@7.4.4","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-pytest-cov-4.1.0","name":"pip:pytest-cov","versionInfo":"4.1.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/pytest-cov@4.1.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-pytest-rerunfailures-13.0","name":"pip:pytest-rerunfailures","versionInfo":"13.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MPL-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/pytest-rerunfailures@13.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-pytest-timeout-2.2.0","name":"pip:pytest-timeout","versionInfo":"2.2.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/pytest-timeout@2.2.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-pytest-xdist-3.5.0","name":"pip:pytest-xdist","versionInfo":"3.5.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/pytest-xdist@3.5.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-python-dateutil-2.8.2","name":"pip:python-dateutil","versionInfo":"2.8.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/python-dateutil@2.8.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-python-dotenv-1.0.0","name":"pip:python-dotenv","versionInfo":"1.0.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"BSD-2-Clause AND BSD-3-Clause","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/python-dotenv@1.0.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-python-json-logger-2.0.7","name":"pip:python-json-logger","versionInfo":"2.0.7","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"BSD-2-Clause","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/python-json-logger@2.0.7","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-python-utils-3.5.2","name":"pip:python-utils","versionInfo":"3.5.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"BSD-2-Clause AND BSD-3-Clause","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/python-utils@3.5.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-pytz-2023.3.post1","name":"pip:pytz","versionInfo":"2023.3.post1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/pytz@2023.3.post1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-pywin32-306","name":"pip:pywin32","versionInfo":"306","downloadLocation":"NOASSERTION","filesAnalyzed":false,"supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/pywin32@306","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-pywinpty-2.0.12","name":"pip:pywinpty","versionInfo":"2.0.12","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/pywinpty@2.0.12","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-pyyaml-6.0.1","name":"pip:pyyaml","versionInfo":"6.0.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/pyyaml@6.0.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-pyzmq-25.1.2","name":"pip:pyzmq","versionInfo":"25.1.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/pyzmq@25.1.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-questionary-1.10.0","name":"pip:questionary","versionInfo":"1.10.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/questionary@1.10.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-ray-2.9.1","name":"pip:ray","versionInfo":"2.9.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/ray@2.9.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-rdflib-6.3.2","name":"pip:rdflib","versionInfo":"6.3.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"BSD-2-Clause AND BSD-3-Clause","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/rdflib@6.3.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-redshift-connector-2.0.918","name":"pip:redshift-connector","versionInfo":"2.0.918","downloadLocation":"NOASSERTION","filesAnalyzed":false,"supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/redshift-connector@2.0.918","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-referencing-0.32.0","name":"pip:referencing","versionInfo":"0.32.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/referencing@0.32.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-requests-2.31.0","name":"pip:requests","versionInfo":"2.31.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/requests@2.31.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-requests-aws4auth-1.2.3","name":"pip:requests-aws4auth","versionInfo":"1.2.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/requests-aws4auth@1.2.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-responses-0.24.1","name":"pip:responses","versionInfo":"0.24.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/responses@0.24.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-restructuredtext-lint-1.4.0","name":"pip:restructuredtext-lint","versionInfo":"1.4.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Unlicense","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/restructuredtext-lint@1.4.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-rfc3339-validator-0.1.4","name":"pip:rfc3339-validator","versionInfo":"0.1.4","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/rfc3339-validator@0.1.4","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-rfc3986-validator-0.1.1","name":"pip:rfc3986-validator","versionInfo":"0.1.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/rfc3986-validator@0.1.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-rich-13.7.0","name":"pip:rich","versionInfo":"13.7.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/rich@13.7.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-rich-click-1.7.3","name":"pip:rich-click","versionInfo":"1.7.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/rich-click@1.7.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-rpds-py-0.15.2","name":"pip:rpds-py","versionInfo":"0.15.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/rpds-py@0.15.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-rsa-4.9","name":"pip:rsa","versionInfo":"4.9","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/rsa@4.9","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-ruff-0.1.14","name":"pip:ruff","versionInfo":"0.1.14","downloadLocation":"NOASSERTION","filesAnalyzed":false,"supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/ruff@0.1.14","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-s3fs-0.4.2","name":"pip:s3fs","versionInfo":"0.4.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"BSD-2-Clause AND BSD-3-Clause","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/s3fs@0.4.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-s3transfer-0.10.0","name":"pip:s3transfer","versionInfo":"0.10.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/s3transfer@0.10.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-scramp-1.4.4","name":"pip:scramp","versionInfo":"1.4.4","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT AND MIT-0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/scramp@1.4.4","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-send2trash-1.8.2","name":"pip:send2trash","versionInfo":"1.8.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"BSD-2-Clause AND BSD-3-Clause","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/send2trash@1.8.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-setuptools-69.0.3","name":"pip:setuptools","versionInfo":"69.0.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/setuptools@69.0.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-shapely-2.0.2","name":"pip:shapely","versionInfo":"2.0.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"BSD-2-Clause AND BSD-3-Clause","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/shapely@2.0.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-six-1.16.0","name":"pip:six","versionInfo":"1.16.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/six@1.16.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-smart-open-6.4.0","name":"pip:smart-open","versionInfo":"6.4.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/smart-open@6.4.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-sniffio-1.3.0","name":"pip:sniffio","versionInfo":"1.3.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"(Apache-2.0 AND BSD-3-Clause) OR (Apache-2.0 AND MIT)","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/sniffio@1.3.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-snowballstemmer-2.2.0","name":"pip:snowballstemmer","versionInfo":"2.2.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"BSD-2-Clause","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/snowballstemmer@2.2.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-soupsieve-2.5","name":"pip:soupsieve","versionInfo":"2.5","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/soupsieve@2.5","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-sparqlwrapper-2.0.0","name":"pip:sparqlwrapper","versionInfo":"2.0.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"W3C","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/sparqlwrapper@2.0.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-sphinx-7.1.2","name":"pip:sphinx","versionInfo":"7.1.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"BSD-2-Clause","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/sphinx@7.1.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-sphinx-bootstrap-theme-0.8.1","name":"pip:sphinx-bootstrap-theme","versionInfo":"0.8.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/sphinx-bootstrap-theme@0.8.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-sphinx-copybutton-0.5.2","name":"pip:sphinx-copybutton","versionInfo":"0.5.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/sphinx-copybutton@0.5.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-sphinxcontrib-applehelp-1.0.4","name":"pip:sphinxcontrib-applehelp","versionInfo":"1.0.4","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"BSD-2-Clause","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/sphinxcontrib-applehelp@1.0.4","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-sphinxcontrib-devhelp-1.0.2","name":"pip:sphinxcontrib-devhelp","versionInfo":"1.0.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"BSD-2-Clause","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/sphinxcontrib-devhelp@1.0.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-sphinxcontrib-htmlhelp-2.0.1","name":"pip:sphinxcontrib-htmlhelp","versionInfo":"2.0.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"BSD-2-Clause","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/sphinxcontrib-htmlhelp@2.0.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-sphinxcontrib-jsmath-1.0.1","name":"pip:sphinxcontrib-jsmath","versionInfo":"1.0.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"BSD-2-Clause","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/sphinxcontrib-jsmath@1.0.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-sphinxcontrib-qthelp-1.0.3","name":"pip:sphinxcontrib-qthelp","versionInfo":"1.0.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"BSD-2-Clause","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/sphinxcontrib-qthelp@1.0.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-sphinxcontrib-serializinghtml-1.1.5","name":"pip:sphinxcontrib-serializinghtml","versionInfo":"1.1.5","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"BSD-2-Clause","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/sphinxcontrib-serializinghtml@1.1.5","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-stack-data-0.6.3","name":"pip:stack-data","versionInfo":"0.6.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/stack-data@0.6.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-stevedore-5.1.0","name":"pip:stevedore","versionInfo":"5.1.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/stevedore@5.1.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-terminado-0.18.0","name":"pip:terminado","versionInfo":"0.18.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"BSD-2-Clause","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/terminado@0.18.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-tinycss2-1.2.1","name":"pip:tinycss2","versionInfo":"1.2.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"BSD-2-Clause AND BSD-3-Clause","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/tinycss2@1.2.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-tomli-2.0.1","name":"pip:tomli","versionInfo":"2.0.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/tomli@2.0.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-tomlkit-0.12.3","name":"pip:tomlkit","versionInfo":"0.12.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/tomlkit@0.12.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-tornado-6.4","name":"pip:tornado","versionInfo":"6.4","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/tornado@6.4","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-tox-4.5.1.1","name":"pip:tox","versionInfo":"4.5.1.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/tox@4.5.1.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-traitlets-5.14.0","name":"pip:traitlets","versionInfo":"5.14.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"BSD-2-Clause AND BSD-3-Clause","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/traitlets@5.14.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-types-awscrt-0.20.0","name":"pip:types-awscrt","versionInfo":"0.20.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/types-awscrt@0.20.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-types-python-dateutil-2.8.19.14","name":"pip:types-python-dateutil","versionInfo":"2.8.19.14","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/types-python-dateutil@2.8.19.14","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-types-s3transfer-0.9.0","name":"pip:types-s3transfer","versionInfo":"0.9.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/types-s3transfer@0.9.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-typing-extensions-4.9.0","name":"pip:typing-extensions","versionInfo":"4.9.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/typing-extensions@4.9.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-tzdata-2023.3","name":"pip:tzdata","versionInfo":"2023.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/tzdata@2023.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-uri-template-1.3.0","name":"pip:uri-template","versionInfo":"1.3.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/uri-template@1.3.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-urllib3-1.26.18","name":"pip:urllib3","versionInfo":"1.26.18","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/urllib3@1.26.18","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-urllib3-2.0.7","name":"pip:urllib3","versionInfo":"2.0.7","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/urllib3@2.0.7","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-virtualenv-20.21.0","name":"pip:virtualenv","versionInfo":"20.21.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/virtualenv@20.21.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-wcwidth-0.2.12","name":"pip:wcwidth","versionInfo":"0.2.12","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/wcwidth@0.2.12","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-webcolors-1.13","name":"pip:webcolors","versionInfo":"1.13","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"BSD-2-Clause","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/webcolors@1.13","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-webencodings-0.5.1","name":"pip:webencodings","versionInfo":"0.5.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"BSD-2-Clause","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/webencodings@0.5.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-websocket-client-1.7.0","name":"pip:websocket-client","versionInfo":"1.7.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/websocket-client@1.7.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-werkzeug-3.0.1","name":"pip:werkzeug","versionInfo":"3.0.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"BSD-2-Clause AND BSD-3-Clause","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/werkzeug@3.0.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-wheel-0.42.0","name":"pip:wheel","versionInfo":"0.42.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/wheel@0.42.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-xmltodict-0.13.0","name":"pip:xmltodict","versionInfo":"0.13.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/xmltodict@0.13.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-yarl-1.9.4","name":"pip:yarl","versionInfo":"1.9.4","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/yarl@1.9.4","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-zipp-3.17.0","name":"pip:zipp","versionInfo":"3.17.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/zipp@3.17.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-aws-cdk-asset-awscli-v1-2.2.201","name":"pip:aws-cdk-asset-awscli-v1","versionInfo":"2.2.201","downloadLocation":"NOASSERTION","filesAnalyzed":false,"supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/aws-cdk-asset-awscli-v1@2.2.201","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-aws-cdk-asset-kubectl-v20-2.1.2","name":"pip:aws-cdk-asset-kubectl-v20","versionInfo":"2.1.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/aws-cdk-asset-kubectl-v20@2.1.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-aws-cdk-asset-node-proxy-agent-v6-2.0.1","name":"pip:aws-cdk-asset-node-proxy-agent-v6","versionInfo":"2.0.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/aws-cdk-asset-node-proxy-agent-v6@2.0.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-aws-cdk-aws-glue-alpha-2.115.0a0","name":"pip:aws-cdk-aws-glue-alpha","versionInfo":"2.115.0a0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/aws-cdk-aws-glue-alpha@2.115.0a0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-aws-cdk-aws-neptune-alpha-2.115.0a0","name":"pip:aws-cdk-aws-neptune-alpha","versionInfo":"2.115.0a0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/aws-cdk-aws-neptune-alpha@2.115.0a0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-aws-cdk-aws-redshift-alpha-2.115.0a0","name":"pip:aws-cdk-aws-redshift-alpha","versionInfo":"2.115.0a0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/aws-cdk-aws-redshift-alpha@2.115.0a0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-aws-cdk-lib-2.115.0","name":"pip:aws-cdk-lib","versionInfo":"2.115.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/aws-cdk-lib@2.115.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-cattrs-23.2.3","name":"pip:cattrs","versionInfo":"23.2.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/cattrs@23.2.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-constructs-10.3.0","name":"pip:constructs","versionInfo":"10.3.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/constructs@10.3.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-jsii-1.93.0","name":"pip:jsii","versionInfo":"1.93.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/jsii@1.93.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-publication-0.0.3","name":"pip:publication","versionInfo":"0.0.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/publication@0.0.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-typeguard-2.13.3","name":"pip:typeguard","versionInfo":"2.13.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/typeguard@2.13.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-actions-actions-checkout-4","name":"actions:actions/checkout","versionInfo":"4","downloadLocation":"NOASSERTION","filesAnalyzed":false,"supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:githubactions/actions/checkout@4","referenceType":"purl"}]},{"SPDXID":"SPDXRef-actions-actions-setup-python-5","name":"actions:actions/setup-python","versionInfo":"5","downloadLocation":"NOASSERTION","filesAnalyzed":false,"supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:githubactions/actions/setup-python@5","referenceType":"purl"}]},{"SPDXID":"SPDXRef-actions-actions-cache-4","name":"actions:actions/cache","versionInfo":"4","downloadLocation":"NOASSERTION","filesAnalyzed":false,"supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:githubactions/actions/cache@4","referenceType":"purl"}]},{"SPDXID":"SPDXRef-actions-actions-setup-node-4","name":"actions:actions/setup-node","versionInfo":"4","downloadLocation":"NOASSERTION","filesAnalyzed":false,"supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:githubactions/actions/setup-node@4","referenceType":"purl"}]},{"SPDXID":"SPDXRef-actions-stelligent-cfn-nag-master","name":"actions:stelligent/cfn_nag","versionInfo":"master","downloadLocation":"NOASSERTION","filesAnalyzed":false,"supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:githubactions/stelligent/cfn_nag@master","referenceType":"purl"}]},{"SPDXID":"SPDXRef-actions-dependabot-fetch-metadata-1","name":"actions:dependabot/fetch-metadata","versionInfo":"1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:githubactions/dependabot/fetch-metadata@1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-actions-actions-stale-9","name":"actions:actions/stale","versionInfo":"9","downloadLocation":"NOASSERTION","filesAnalyzed":false,"supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:githubactions/actions/stale@9","referenceType":"purl"}]},{"SPDXID":"SPDXRef-actions-malachi-constant-issue-minimum-response-latest","name":"actions:malachi-constant/issue-minimum-response","versionInfo":"latest","downloadLocation":"NOASSERTION","filesAnalyzed":false,"supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:githubactions/malachi-constant/issue-minimum-response@latest","referenceType":"purl"}]},{"SPDXID":"SPDXRef-actions-aslafy-z-conventional-pr-title-action-3","name":"actions:aslafy-z/conventional-pr-title-action","versionInfo":"3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:githubactions/aslafy-z/conventional-pr-title-action@3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-actions-actions-checkout-master","name":"actions:actions/checkout","versionInfo":"master","downloadLocation":"NOASSERTION","filesAnalyzed":false,"supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:githubactions/actions/checkout@master","referenceType":"purl"}]},{"SPDXID":"SPDXRef-actions-snyk-actions-python-3.8-master","name":"actions:snyk/actions/python-3.8","versionInfo":"master","downloadLocation":"NOASSERTION","filesAnalyzed":false,"supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:githubactions/snyk/actions/python-3.8@master","referenceType":"purl"}]},{"SPDXID":"SPDXRef-actions-andymckay-labeler-master","name":"actions:andymckay/labeler","versionInfo":"master","downloadLocation":"NOASSERTION","filesAnalyzed":false,"supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:githubactions/andymckay/labeler@master","referenceType":"purl"}]}],"relationships":[{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-aenum-3.1.15"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-aiohttp-3.9.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-aiohttp-cors-0.7.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-aiosignal-1.3.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-alabaster-0.7.13"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-annotated-types-0.6.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-ansicon-1.89.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-anyio-4.2.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-appnope-0.1.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-argon2-cffi-23.1.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-argon2-cffi-bindings-21.2.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-arrow-1.3.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-asn1crypto-1.5.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-asttokens-2.4.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-async-lru-2.0.4"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-async-timeout-4.0.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-attrs-23.1.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-babel-2.14.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-backcall-0.2.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-beautifulsoup4-4.12.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-bleach-6.1.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-blessed-1.20.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-boto3-1.34.21"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-boto3-stubs-1.34.25"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-botocore-1.34.25"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-botocore-stubs-1.34.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-bump-my-version-0.17.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-cachetools-5.3.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-certifi-2023.11.17"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-cffi-1.16.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-chardet-5.2.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-charset-normalizer-3.3.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-click-8.1.7"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-click-plugins-1.1.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-cligj-0.7.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-colorama-0.4.6"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-colorful-0.5.5"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-comm-0.2.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-coverage-7.3.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-cryptography-41.0.7"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-debugpy-1.8.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-decorator-5.1.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-defusedxml-0.7.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-deltalake-0.15.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-distlib-0.3.8"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-doc8-1.1.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-docutils-0.19"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-entrypoints-0.4"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-et-xmlfile-1.1.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-exceptiongroup-1.2.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-execnet-2.0.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-executing-2.0.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-fastjsonschema-2.19.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-filelock-3.13.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-fiona-1.9.5"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-fqdn-1.5.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-frozenlist-1.4.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-fsspec-2023.12.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-geopandas-0.13.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-geopandas-0.14.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-google-api-core-2.15.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-google-auth-2.25.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-googleapis-common-protos-1.62.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-gpustat-1.1.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-gremlinpython-3.7.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-grpcio-1.53.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-idna-3.6"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-imagesize-1.4.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-importlib-metadata-7.0.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-importlib-resources-6.1.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-iniconfig-2.0.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-ipykernel-6.27.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-ipython-8.12.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-isodate-0.6.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-isoduration-20.11.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-jedi-0.19.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-jinja2-3.1.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-jinxed-1.2.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-jmespath-1.0.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-json5-0.9.14"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-jsonpath-ng-1.6.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-jsonpointer-2.4"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-jsonschema-4.20.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-jsonschema-specifications-2023.11.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-jupyter-client-7.4.9"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-jupyter-core-5.5.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-jupyter-events-0.9.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-jupyter-lsp-2.2.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-jupyter-server-2.12.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-jupyter-server-terminals-0.5.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-jupyterlab-4.0.11"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-jupyterlab-pygments-0.3.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-jupyterlab-server-2.25.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-lxml-4.9.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-markdown-it-py-3.0.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-markupsafe-2.1.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-matplotlib-inline-0.1.6"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-mdit-py-plugins-0.4.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-mdurl-0.1.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-mistune-3.0.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-modin-0.23.1.post0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-modin-0.26.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-moto-4.2.13"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-msgpack-1.0.7"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-multidict-6.0.4"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-mypy-1.8.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-mypy-boto3-athena-1.34.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-mypy-boto3-chime-1.34.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-mypy-boto3-cleanrooms-1.34.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-mypy-boto3-cloudwatch-1.34.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-mypy-boto3-dynamodb-1.34.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-mypy-boto3-ec2-1.34.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-mypy-boto3-emr-1.34.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-mypy-boto3-emr-serverless-1.34.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-mypy-boto3-glue-1.34.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-mypy-boto3-kms-1.34.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-mypy-boto3-lakeformation-1.34.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-mypy-boto3-logs-1.34.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-mypy-boto3-neptune-1.34.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-mypy-boto3-opensearch-1.34.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-mypy-boto3-opensearchserverless-1.34.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-mypy-boto3-quicksight-1.34.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-mypy-boto3-rds-1.34.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-mypy-boto3-rds-data-1.34.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-mypy-boto3-redshift-1.34.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-mypy-boto3-redshift-data-1.34.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-mypy-boto3-s3-1.34.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-mypy-boto3-secretsmanager-1.34.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-mypy-boto3-ssm-1.34.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-mypy-boto3-sts-1.34.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-mypy-boto3-timestream-query-1.34.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-mypy-boto3-timestream-write-1.34.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-mypy-extensions-1.0.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-myst-parser-2.0.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-nbclient-0.9.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-nbconvert-7.13.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-nbformat-5.9.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-nbsphinx-0.9.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-nbsphinx-link-1.3.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-nest-asyncio-1.5.8"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-notebook-shim-0.2.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-numpy-1.24.4"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-numpy-1.26.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-nvidia-ml-py-12.535.133"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-opencensus-0.11.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-opencensus-context-0.1.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-openpyxl-3.1.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-opensearch-py-2.4.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-oracledb-2.0.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-overrides-7.4.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-packaging-23.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-pandas-2.0.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-pandas-2.1.4"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-pandocfilters-1.5.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-parso-0.8.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-pbr-6.0.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-pexpect-4.9.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-pg8000-1.30.4"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-pickleshare-0.7.5"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-pkgutil-resolve-name-1.3.10"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-platformdirs-3.11.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-pluggy-1.3.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-ply-3.11"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-progressbar2-4.2.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-prometheus-client-0.19.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-prompt-toolkit-3.0.43"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-protobuf-4.25.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-psutil-5.9.7"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-ptyprocess-0.7.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-pure-eval-0.2.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-py-spy-0.3.14"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-pyarrow-15.0.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-pyarrow-hotfix-0.6"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-pyasn1-0.5.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-pyasn1-modules-0.3.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-pycparser-2.21"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-pydantic-2.5.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-pydantic-core-2.14.6"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-pydantic-settings-2.1.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-pydot-2.0.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-pygments-2.17.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-pymysql-1.1.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-pyodbc-5.0.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-pyparsing-3.1.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-pyproj-3.5.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-pyproj-3.6.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-pyproject-api-1.5.4"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-pytest-7.4.4"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-pytest-cov-4.1.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-pytest-rerunfailures-13.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-pytest-timeout-2.2.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-pytest-xdist-3.5.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-python-dateutil-2.8.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-python-dotenv-1.0.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-python-json-logger-2.0.7"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-python-utils-3.5.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-pytz-2023.3.post1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-pywin32-306"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-pywinpty-2.0.12"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-pyyaml-6.0.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-pyzmq-25.1.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-questionary-1.10.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-ray-2.9.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-rdflib-6.3.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-redshift-connector-2.0.918"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-referencing-0.32.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-requests-2.31.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-requests-aws4auth-1.2.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-responses-0.24.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-restructuredtext-lint-1.4.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-rfc3339-validator-0.1.4"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-rfc3986-validator-0.1.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-rich-13.7.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-rich-click-1.7.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-rpds-py-0.15.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-rsa-4.9"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-ruff-0.1.14"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-s3fs-0.4.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-s3transfer-0.10.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-scramp-1.4.4"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-send2trash-1.8.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-setuptools-69.0.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-shapely-2.0.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-six-1.16.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-smart-open-6.4.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-sniffio-1.3.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-snowballstemmer-2.2.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-soupsieve-2.5"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-sparqlwrapper-2.0.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-sphinx-7.1.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-sphinx-bootstrap-theme-0.8.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-sphinx-copybutton-0.5.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-sphinxcontrib-applehelp-1.0.4"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-sphinxcontrib-devhelp-1.0.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-sphinxcontrib-htmlhelp-2.0.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-sphinxcontrib-jsmath-1.0.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-sphinxcontrib-qthelp-1.0.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-sphinxcontrib-serializinghtml-1.1.5"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-stack-data-0.6.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-stevedore-5.1.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-terminado-0.18.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-tinycss2-1.2.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-tomli-2.0.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-tomlkit-0.12.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-tornado-6.4"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-tox-4.5.1.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-traitlets-5.14.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-types-awscrt-0.20.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-types-python-dateutil-2.8.19.14"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-types-s3transfer-0.9.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-typing-extensions-4.9.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-tzdata-2023.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-uri-template-1.3.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-urllib3-1.26.18"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-urllib3-2.0.7"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-virtualenv-20.21.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-wcwidth-0.2.12"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-webcolors-1.13"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-webencodings-0.5.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-websocket-client-1.7.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-werkzeug-3.0.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-wheel-0.42.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-xmltodict-0.13.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-yarl-1.9.4"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-zipp-3.17.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-aws-cdk-asset-awscli-v1-2.2.201"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-aws-cdk-asset-kubectl-v20-2.1.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-aws-cdk-asset-node-proxy-agent-v6-2.0.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-aws-cdk-aws-glue-alpha-2.115.0a0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-aws-cdk-aws-neptune-alpha-2.115.0a0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-aws-cdk-aws-redshift-alpha-2.115.0a0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-aws-cdk-lib-2.115.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-cattrs-23.2.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-constructs-10.3.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-jsii-1.93.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-publication-0.0.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-pip-typeguard-2.13.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-actions-actions-checkout-4"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-actions-actions-setup-python-5"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-actions-actions-cache-4"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-actions-actions-setup-node-4"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-actions-stelligent-cfn-nag-master"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-actions-dependabot-fetch-metadata-1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-actions-actions-stale-9"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-actions-malachi-constant-issue-minimum-response-latest"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-actions-aslafy-z-conventional-pr-title-action-3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-actions-actions-checkout-master"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-actions-snyk-actions-python-3.8-master"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-aws-sdk-pandas","relatedSpdxElement":"SPDXRef-actions-andymckay-labeler-master"}]}
\ No newline at end of file
diff --git a/src/graph_notebook/notebooks/02-Neptune-Analytics/03-Sample-Use-Cases/03-Software-Bill-Of-Materials/example_sboms/01/boto3_boto_6bbdf83ee00b749587f0fe54778fbec5411147b5.json b/src/graph_notebook/notebooks/02-Neptune-Analytics/03-Sample-Use-Cases/03-Software-Bill-Of-Materials/example_sboms/01/boto3_boto_6bbdf83ee00b749587f0fe54778fbec5411147b5.json
new file mode 100644
index 00000000..db81afd0
--- /dev/null
+++ b/src/graph_notebook/notebooks/02-Neptune-Analytics/03-Sample-Use-Cases/03-Software-Bill-Of-Materials/example_sboms/01/boto3_boto_6bbdf83ee00b749587f0fe54778fbec5411147b5.json
@@ -0,0 +1 @@
+{"SPDXID":"SPDXRef-DOCUMENT","spdxVersion":"SPDX-2.3","creationInfo":{"created":"2024-01-27T00:19:45Z","creators":["Tool: GitHub.com-Dependency-Graph"],"comment":"Exact versions could not be resolved for some packages. For more information: https://docs.github.com/en/code-security/supply-chain-security/understanding-your-software-supply-chain/about-the-dependency-graph#dependencies-included."},"name":"com.github.boto/boto3","dataLicense":"CC0-1.0","documentDescribes":["SPDXRef-com.github.boto-boto3"],"documentNamespace":"https://github.com/boto/boto3/dependency_graph/sbom-c3866a4e06384e9a","packages":[{"SPDXID":"SPDXRef-com.github.boto-boto3","name":"com.github.boto/boto3","versionInfo":"","downloadLocation":"git+https://github.com/boto/boto3","licenseDeclared":"Apache-2.0","filesAnalyzed":false,"supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceType":"purl","referenceLocator":"pkg:github/boto/boto3"}]},{"SPDXID":"SPDXRef-pip-atomicwrites-1.4.1","name":"pip:atomicwrites","versionInfo":"1.4.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/atomicwrites@1.4.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-colorama-0.4.5","name":"pip:colorama","versionInfo":"0.4.5","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"BSD-2-Clause AND BSD-3-Clause","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/colorama@0.4.5","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-coverage-7.2.7","name":"pip:coverage","versionInfo":"7.2.7","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/coverage@7.2.7","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-exceptiongroup-1.1.3","name":"pip:exceptiongroup","versionInfo":"1.1.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT AND Python-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/exceptiongroup@1.1.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-iniconfig-1.1.1","name":"pip:iniconfig","versionInfo":"1.1.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/iniconfig@1.1.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-packaging-21.3","name":"pip:packaging","versionInfo":"21.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0 OR (Apache-2.0 AND BSD-2-Clause AND BSD-3-Clause)","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/packaging@21.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-pluggy-1.0.0","name":"pip:pluggy","versionInfo":"1.0.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/pluggy@1.0.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-pyparsing-3.0.9","name":"pip:pyparsing","versionInfo":"3.0.9","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/pyparsing@3.0.9","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-pytest-7.4.0","name":"pip:pytest","versionInfo":"7.4.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/pytest@7.4.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-pytest-cov-4.1.0","name":"pip:pytest-cov","versionInfo":"4.1.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/pytest-cov@4.1.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-tomli-2.0.1","name":"pip:tomli","versionInfo":"2.0.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/tomli@2.0.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-wheel-0.38.1","name":"pip:wheel","versionInfo":"0.38.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/wheel@0.38.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-atomicwrites","name":"pip:atomicwrites","versionInfo":">= 1.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"supplier":"NOASSERTION"},{"SPDXID":"SPDXRef-pip-colorama","name":"pip:colorama","versionInfo":"> 0.3.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"supplier":"NOASSERTION"},{"SPDXID":"SPDXRef-pip-setuptools-67.8.0","name":"pip:setuptools","versionInfo":"67.8.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/setuptools@67.8.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-furo-2022.12.7","name":"pip:furo","versionInfo":"2022.12.7","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/furo@2022.12.7","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-sphinx-5.3.0","name":"pip:sphinx","versionInfo":"5.3.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"BSD-2-Clause","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/sphinx@5.3.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-sphinx-copybutton-0.5.1","name":"pip:sphinx-copybutton","versionInfo":"0.5.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/sphinx-copybutton@0.5.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-sphinx-remove-toctrees-0.0.3","name":"pip:sphinx-remove-toctrees","versionInfo":"0.0.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/sphinx-remove-toctrees@0.0.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-botocore","name":"pip:botocore","versionInfo":">= 1.34.29,< 1.35.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"supplier":"NOASSERTION"},{"SPDXID":"SPDXRef-pip-jmespath","name":"pip:jmespath","versionInfo":">= 0.7.1,< 2.0.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"supplier":"NOASSERTION"},{"SPDXID":"SPDXRef-pip-s3transfer","name":"pip:s3transfer","versionInfo":">= 0.10.0,< 0.11.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"supplier":"NOASSERTION"},{"SPDXID":"SPDXRef-actions-aws-actions-closed-issue-message-8b6324312193476beecf11f8e8539d73a3553bf4","name":"actions:aws-actions/closed-issue-message","versionInfo":"8b6324312193476beecf11f8e8539d73a3553bf4","downloadLocation":"NOASSERTION","filesAnalyzed":false,"supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:githubactions/aws-actions/closed-issue-message@8b6324312193476beecf11f8e8539d73a3553bf4","referenceType":"purl"}]},{"SPDXID":"SPDXRef-actions-actions-checkout-8ade135a41bc03ea155e62e844d188df1ea18608","name":"actions:actions/checkout","versionInfo":"8ade135a41bc03ea155e62e844d188df1ea18608","downloadLocation":"NOASSERTION","filesAnalyzed":false,"supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:githubactions/actions/checkout@8ade135a41bc03ea155e62e844d188df1ea18608","referenceType":"purl"}]},{"SPDXID":"SPDXRef-actions-github-codeql-action-analyze-cdcdbb579706841c47f7063dda365e292e5cad7a","name":"actions:github/codeql-action/analyze","versionInfo":"cdcdbb579706841c47f7063dda365e292e5cad7a","downloadLocation":"NOASSERTION","filesAnalyzed":false,"supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:githubactions/github/codeql-action/analyze@cdcdbb579706841c47f7063dda365e292e5cad7a","referenceType":"purl"}]},{"SPDXID":"SPDXRef-actions-github-codeql-action-autobuild-cdcdbb579706841c47f7063dda365e292e5cad7a","name":"actions:github/codeql-action/autobuild","versionInfo":"cdcdbb579706841c47f7063dda365e292e5cad7a","downloadLocation":"NOASSERTION","filesAnalyzed":false,"supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:githubactions/github/codeql-action/autobuild@cdcdbb579706841c47f7063dda365e292e5cad7a","referenceType":"purl"}]},{"SPDXID":"SPDXRef-actions-github-codeql-action-init-cdcdbb579706841c47f7063dda365e292e5cad7a","name":"actions:github/codeql-action/init","versionInfo":"cdcdbb579706841c47f7063dda365e292e5cad7a","downloadLocation":"NOASSERTION","filesAnalyzed":false,"supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:githubactions/github/codeql-action/init@cdcdbb579706841c47f7063dda365e292e5cad7a","referenceType":"purl"}]},{"SPDXID":"SPDXRef-actions-aws-github-ops-handle-stale-discussions-a98e47e10f9a5d4ed08ffb27b7a19454302f9a43","name":"actions:aws-github-ops/handle-stale-discussions","versionInfo":"a98e47e10f9a5d4ed08ffb27b7a19454302f9a43","downloadLocation":"NOASSERTION","filesAnalyzed":false,"supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:githubactions/aws-github-ops/handle-stale-discussions@a98e47e10f9a5d4ed08ffb27b7a19454302f9a43","referenceType":"purl"}]},{"SPDXID":"SPDXRef-actions-actions-setup-python-0a5c61591373683505ea898e09a3ea4f39ef2b9c","name":"actions:actions/setup-python","versionInfo":"0a5c61591373683505ea898e09a3ea4f39ef2b9c","downloadLocation":"NOASSERTION","filesAnalyzed":false,"supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:githubactions/actions/setup-python@0a5c61591373683505ea898e09a3ea4f39ef2b9c","referenceType":"purl"}]},{"SPDXID":"SPDXRef-actions-pre-commit-action-646c83fcd040023954eafda54b4db0192ce70507","name":"actions:pre-commit/action","versionInfo":"646c83fcd040023954eafda54b4db0192ce70507","downloadLocation":"NOASSERTION","filesAnalyzed":false,"supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:githubactions/pre-commit/action@646c83fcd040023954eafda54b4db0192ce70507","referenceType":"purl"}]},{"SPDXID":"SPDXRef-actions-aws-actions-stale-issue-cleanup-389be0117d7661840b887276b5da1cc6ddf95c8a","name":"actions:aws-actions/stale-issue-cleanup","versionInfo":"389be0117d7661840b887276b5da1cc6ddf95c8a","downloadLocation":"NOASSERTION","filesAnalyzed":false,"supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:githubactions/aws-actions/stale-issue-cleanup@389be0117d7661840b887276b5da1cc6ddf95c8a","referenceType":"purl"}]}],"relationships":[{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.boto-boto3","relatedSpdxElement":"SPDXRef-pip-atomicwrites-1.4.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.boto-boto3","relatedSpdxElement":"SPDXRef-pip-colorama-0.4.5"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.boto-boto3","relatedSpdxElement":"SPDXRef-pip-coverage-7.2.7"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.boto-boto3","relatedSpdxElement":"SPDXRef-pip-exceptiongroup-1.1.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.boto-boto3","relatedSpdxElement":"SPDXRef-pip-iniconfig-1.1.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.boto-boto3","relatedSpdxElement":"SPDXRef-pip-packaging-21.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.boto-boto3","relatedSpdxElement":"SPDXRef-pip-pluggy-1.0.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.boto-boto3","relatedSpdxElement":"SPDXRef-pip-pyparsing-3.0.9"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.boto-boto3","relatedSpdxElement":"SPDXRef-pip-pytest-7.4.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.boto-boto3","relatedSpdxElement":"SPDXRef-pip-pytest-cov-4.1.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.boto-boto3","relatedSpdxElement":"SPDXRef-pip-tomli-2.0.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.boto-boto3","relatedSpdxElement":"SPDXRef-pip-wheel-0.38.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.boto-boto3","relatedSpdxElement":"SPDXRef-pip-atomicwrites"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.boto-boto3","relatedSpdxElement":"SPDXRef-pip-colorama"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.boto-boto3","relatedSpdxElement":"SPDXRef-pip-setuptools-67.8.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.boto-boto3","relatedSpdxElement":"SPDXRef-pip-furo-2022.12.7"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.boto-boto3","relatedSpdxElement":"SPDXRef-pip-sphinx-5.3.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.boto-boto3","relatedSpdxElement":"SPDXRef-pip-sphinx-copybutton-0.5.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.boto-boto3","relatedSpdxElement":"SPDXRef-pip-sphinx-remove-toctrees-0.0.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.boto-boto3","relatedSpdxElement":"SPDXRef-pip-botocore"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.boto-boto3","relatedSpdxElement":"SPDXRef-pip-jmespath"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.boto-boto3","relatedSpdxElement":"SPDXRef-pip-s3transfer"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.boto-boto3","relatedSpdxElement":"SPDXRef-actions-aws-actions-closed-issue-message-8b6324312193476beecf11f8e8539d73a3553bf4"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.boto-boto3","relatedSpdxElement":"SPDXRef-actions-actions-checkout-8ade135a41bc03ea155e62e844d188df1ea18608"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.boto-boto3","relatedSpdxElement":"SPDXRef-actions-github-codeql-action-analyze-cdcdbb579706841c47f7063dda365e292e5cad7a"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.boto-boto3","relatedSpdxElement":"SPDXRef-actions-github-codeql-action-autobuild-cdcdbb579706841c47f7063dda365e292e5cad7a"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.boto-boto3","relatedSpdxElement":"SPDXRef-actions-github-codeql-action-init-cdcdbb579706841c47f7063dda365e292e5cad7a"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.boto-boto3","relatedSpdxElement":"SPDXRef-actions-aws-github-ops-handle-stale-discussions-a98e47e10f9a5d4ed08ffb27b7a19454302f9a43"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.boto-boto3","relatedSpdxElement":"SPDXRef-actions-actions-setup-python-0a5c61591373683505ea898e09a3ea4f39ef2b9c"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.boto-boto3","relatedSpdxElement":"SPDXRef-actions-pre-commit-action-646c83fcd040023954eafda54b4db0192ce70507"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.boto-boto3","relatedSpdxElement":"SPDXRef-actions-aws-actions-stale-issue-cleanup-389be0117d7661840b887276b5da1cc6ddf95c8a"}]}
\ No newline at end of file
diff --git a/src/graph_notebook/notebooks/02-Neptune-Analytics/03-Sample-Use-Cases/03-Software-Bill-Of-Materials/example_sboms/01/graph-explorer_aws_39eed2c8bae4afc1b38fa7975c720461a7c7c3a6.json b/src/graph_notebook/notebooks/02-Neptune-Analytics/03-Sample-Use-Cases/03-Software-Bill-Of-Materials/example_sboms/01/graph-explorer_aws_39eed2c8bae4afc1b38fa7975c720461a7c7c3a6.json
new file mode 100644
index 00000000..9e964ea1
--- /dev/null
+++ b/src/graph_notebook/notebooks/02-Neptune-Analytics/03-Sample-Use-Cases/03-Software-Bill-Of-Materials/example_sboms/01/graph-explorer_aws_39eed2c8bae4afc1b38fa7975c720461a7c7c3a6.json
@@ -0,0 +1 @@
+{"SPDXID":"SPDXRef-DOCUMENT","spdxVersion":"SPDX-2.3","creationInfo":{"created":"2024-01-27T00:48:01Z","creators":["Tool: GitHub.com-Dependency-Graph"]},"name":"com.github.aws/graph-explorer","dataLicense":"CC0-1.0","documentDescribes":["SPDXRef-com.github.aws-graph-explorer"],"documentNamespace":"https://github.com/aws/graph-explorer/dependency_graph/sbom-6c9973936128f866","packages":[{"SPDXID":"SPDXRef-com.github.aws-graph-explorer","name":"com.github.aws/graph-explorer","versionInfo":"","downloadLocation":"git+https://github.com/aws/graph-explorer","licenseDeclared":"Apache-2.0","filesAnalyzed":false,"supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceType":"purl","referenceLocator":"pkg:github/aws/graph-explorer"}]},{"SPDXID":"SPDXRef-npm-aws-crypto-crc32-3.0.0","name":"npm:@aws-crypto/crc32","versionInfo":"3.0.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40aws-crypto/crc32@3.0.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-aws-crypto-ie11-detection-3.0.0","name":"npm:@aws-crypto/ie11-detection","versionInfo":"3.0.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40aws-crypto/ie11-detection@3.0.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-aws-crypto-sha256-browser-3.0.0","name":"npm:@aws-crypto/sha256-browser","versionInfo":"3.0.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40aws-crypto/sha256-browser@3.0.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-aws-crypto-sha256-js-3.0.0","name":"npm:@aws-crypto/sha256-js","versionInfo":"3.0.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40aws-crypto/sha256-js@3.0.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-aws-crypto-supports-web-crypto-3.0.0","name":"npm:@aws-crypto/supports-web-crypto","versionInfo":"3.0.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40aws-crypto/supports-web-crypto@3.0.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-aws-crypto-util-3.0.0","name":"npm:@aws-crypto/util","versionInfo":"3.0.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40aws-crypto/util@3.0.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-aws-sdk-client-cognito-identity-3.436.0","name":"npm:@aws-sdk/client-cognito-identity","versionInfo":"3.436.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40aws-sdk/client-cognito-identity@3.436.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-aws-sdk-client-sso-3.436.0","name":"npm:@aws-sdk/client-sso","versionInfo":"3.436.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40aws-sdk/client-sso@3.436.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-aws-sdk-client-sts-3.436.0","name":"npm:@aws-sdk/client-sts","versionInfo":"3.436.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40aws-sdk/client-sts@3.436.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-aws-sdk-core-3.436.0","name":"npm:@aws-sdk/core","versionInfo":"3.436.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40aws-sdk/core@3.436.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-aws-sdk-credential-provider-cognito-identity-3.436.0","name":"npm:@aws-sdk/credential-provider-cognito-identity","versionInfo":"3.436.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40aws-sdk/credential-provider-cognito-identity@3.436.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-aws-sdk-credential-provider-env-3.433.0","name":"npm:@aws-sdk/credential-provider-env","versionInfo":"3.433.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40aws-sdk/credential-provider-env@3.433.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-aws-sdk-credential-provider-http-3.435.0","name":"npm:@aws-sdk/credential-provider-http","versionInfo":"3.435.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40aws-sdk/credential-provider-http@3.435.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-aws-sdk-credential-provider-ini-3.436.0","name":"npm:@aws-sdk/credential-provider-ini","versionInfo":"3.436.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40aws-sdk/credential-provider-ini@3.436.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-aws-sdk-credential-provider-node-3.436.0","name":"npm:@aws-sdk/credential-provider-node","versionInfo":"3.436.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40aws-sdk/credential-provider-node@3.436.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-aws-sdk-credential-provider-process-3.433.0","name":"npm:@aws-sdk/credential-provider-process","versionInfo":"3.433.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40aws-sdk/credential-provider-process@3.433.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-aws-sdk-credential-provider-sso-3.436.0","name":"npm:@aws-sdk/credential-provider-sso","versionInfo":"3.436.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40aws-sdk/credential-provider-sso@3.436.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-aws-sdk-credential-provider-web-identity-3.433.0","name":"npm:@aws-sdk/credential-provider-web-identity","versionInfo":"3.433.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40aws-sdk/credential-provider-web-identity@3.433.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-aws-sdk-credential-providers-3.436.0","name":"npm:@aws-sdk/credential-providers","versionInfo":"3.436.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40aws-sdk/credential-providers@3.436.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-aws-sdk-middleware-host-header-3.433.0","name":"npm:@aws-sdk/middleware-host-header","versionInfo":"3.433.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40aws-sdk/middleware-host-header@3.433.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-aws-sdk-middleware-logger-3.433.0","name":"npm:@aws-sdk/middleware-logger","versionInfo":"3.433.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40aws-sdk/middleware-logger@3.433.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-aws-sdk-middleware-recursion-detection-3.433.0","name":"npm:@aws-sdk/middleware-recursion-detection","versionInfo":"3.433.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40aws-sdk/middleware-recursion-detection@3.433.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-aws-sdk-middleware-sdk-sts-3.433.0","name":"npm:@aws-sdk/middleware-sdk-sts","versionInfo":"3.433.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40aws-sdk/middleware-sdk-sts@3.433.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-aws-sdk-middleware-signing-3.433.0","name":"npm:@aws-sdk/middleware-signing","versionInfo":"3.433.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40aws-sdk/middleware-signing@3.433.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-aws-sdk-middleware-user-agent-3.433.0","name":"npm:@aws-sdk/middleware-user-agent","versionInfo":"3.433.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40aws-sdk/middleware-user-agent@3.433.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-aws-sdk-region-config-resolver-3.433.0","name":"npm:@aws-sdk/region-config-resolver","versionInfo":"3.433.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40aws-sdk/region-config-resolver@3.433.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-aws-sdk-token-providers-3.435.0","name":"npm:@aws-sdk/token-providers","versionInfo":"3.435.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40aws-sdk/token-providers@3.435.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-aws-sdk-types-3.433.0","name":"npm:@aws-sdk/types","versionInfo":"3.433.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40aws-sdk/types@3.433.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-aws-sdk-util-endpoints-3.433.0","name":"npm:@aws-sdk/util-endpoints","versionInfo":"3.433.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40aws-sdk/util-endpoints@3.433.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-aws-sdk-util-locate-window-3.310.0","name":"npm:@aws-sdk/util-locate-window","versionInfo":"3.310.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40aws-sdk/util-locate-window@3.310.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-aws-sdk-util-user-agent-browser-3.433.0","name":"npm:@aws-sdk/util-user-agent-browser","versionInfo":"3.433.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40aws-sdk/util-user-agent-browser@3.433.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-aws-sdk-util-user-agent-node-3.433.0","name":"npm:@aws-sdk/util-user-agent-node","versionInfo":"3.433.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40aws-sdk/util-user-agent-node@3.433.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-aws-sdk-util-utf8-browser-3.259.0","name":"npm:@aws-sdk/util-utf8-browser","versionInfo":"3.259.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40aws-sdk/util-utf8-browser@3.259.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-babel-runtime-7.23.2","name":"npm:@babel/runtime","versionInfo":"7.23.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40babel/runtime@7.23.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-smithy-abort-controller-2.0.12","name":"npm:@smithy/abort-controller","versionInfo":"2.0.12","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40smithy/abort-controller@2.0.12","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-smithy-config-resolver-2.0.16","name":"npm:@smithy/config-resolver","versionInfo":"2.0.16","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40smithy/config-resolver@2.0.16","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-smithy-credential-provider-imds-2.0.18","name":"npm:@smithy/credential-provider-imds","versionInfo":"2.0.18","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40smithy/credential-provider-imds@2.0.18","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-smithy-eventstream-codec-2.0.12","name":"npm:@smithy/eventstream-codec","versionInfo":"2.0.12","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40smithy/eventstream-codec@2.0.12","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-smithy-fetch-http-handler-2.2.4","name":"npm:@smithy/fetch-http-handler","versionInfo":"2.2.4","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40smithy/fetch-http-handler@2.2.4","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-smithy-hash-node-2.0.12","name":"npm:@smithy/hash-node","versionInfo":"2.0.12","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40smithy/hash-node@2.0.12","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-smithy-invalid-dependency-2.0.12","name":"npm:@smithy/invalid-dependency","versionInfo":"2.0.12","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40smithy/invalid-dependency@2.0.12","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-smithy-is-array-buffer-2.0.0","name":"npm:@smithy/is-array-buffer","versionInfo":"2.0.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40smithy/is-array-buffer@2.0.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-smithy-middleware-content-length-2.0.14","name":"npm:@smithy/middleware-content-length","versionInfo":"2.0.14","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40smithy/middleware-content-length@2.0.14","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-smithy-middleware-endpoint-2.1.3","name":"npm:@smithy/middleware-endpoint","versionInfo":"2.1.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40smithy/middleware-endpoint@2.1.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-smithy-middleware-retry-2.0.18","name":"npm:@smithy/middleware-retry","versionInfo":"2.0.18","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40smithy/middleware-retry@2.0.18","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-smithy-middleware-serde-2.0.12","name":"npm:@smithy/middleware-serde","versionInfo":"2.0.12","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40smithy/middleware-serde@2.0.12","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-smithy-middleware-stack-2.0.6","name":"npm:@smithy/middleware-stack","versionInfo":"2.0.6","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40smithy/middleware-stack@2.0.6","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-smithy-node-config-provider-2.1.3","name":"npm:@smithy/node-config-provider","versionInfo":"2.1.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40smithy/node-config-provider@2.1.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-smithy-node-http-handler-2.1.8","name":"npm:@smithy/node-http-handler","versionInfo":"2.1.8","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40smithy/node-http-handler@2.1.8","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-smithy-property-provider-2.0.13","name":"npm:@smithy/property-provider","versionInfo":"2.0.13","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40smithy/property-provider@2.0.13","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-smithy-protocol-http-3.0.8","name":"npm:@smithy/protocol-http","versionInfo":"3.0.8","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40smithy/protocol-http@3.0.8","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-smithy-querystring-builder-2.0.12","name":"npm:@smithy/querystring-builder","versionInfo":"2.0.12","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40smithy/querystring-builder@2.0.12","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-smithy-querystring-parser-2.0.12","name":"npm:@smithy/querystring-parser","versionInfo":"2.0.12","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40smithy/querystring-parser@2.0.12","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-smithy-service-error-classification-2.0.5","name":"npm:@smithy/service-error-classification","versionInfo":"2.0.5","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40smithy/service-error-classification@2.0.5","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-smithy-shared-ini-file-loader-2.2.2","name":"npm:@smithy/shared-ini-file-loader","versionInfo":"2.2.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40smithy/shared-ini-file-loader@2.2.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-smithy-signature-v4-2.0.12","name":"npm:@smithy/signature-v4","versionInfo":"2.0.12","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40smithy/signature-v4@2.0.12","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-smithy-smithy-client-2.1.12","name":"npm:@smithy/smithy-client","versionInfo":"2.1.12","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40smithy/smithy-client@2.1.12","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-smithy-types-2.4.0","name":"npm:@smithy/types","versionInfo":"2.4.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40smithy/types@2.4.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-smithy-url-parser-2.0.12","name":"npm:@smithy/url-parser","versionInfo":"2.0.12","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40smithy/url-parser@2.0.12","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-smithy-util-base64-2.0.0","name":"npm:@smithy/util-base64","versionInfo":"2.0.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40smithy/util-base64@2.0.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-smithy-util-body-length-browser-2.0.0","name":"npm:@smithy/util-body-length-browser","versionInfo":"2.0.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40smithy/util-body-length-browser@2.0.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-smithy-util-body-length-node-2.1.0","name":"npm:@smithy/util-body-length-node","versionInfo":"2.1.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40smithy/util-body-length-node@2.1.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-smithy-util-buffer-from-2.0.0","name":"npm:@smithy/util-buffer-from","versionInfo":"2.0.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40smithy/util-buffer-from@2.0.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-smithy-util-config-provider-2.0.0","name":"npm:@smithy/util-config-provider","versionInfo":"2.0.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40smithy/util-config-provider@2.0.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-smithy-util-defaults-mode-browser-2.0.16","name":"npm:@smithy/util-defaults-mode-browser","versionInfo":"2.0.16","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40smithy/util-defaults-mode-browser@2.0.16","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-smithy-util-defaults-mode-node-2.0.21","name":"npm:@smithy/util-defaults-mode-node","versionInfo":"2.0.21","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40smithy/util-defaults-mode-node@2.0.21","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-smithy-util-hex-encoding-2.0.0","name":"npm:@smithy/util-hex-encoding","versionInfo":"2.0.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40smithy/util-hex-encoding@2.0.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-smithy-util-middleware-2.0.5","name":"npm:@smithy/util-middleware","versionInfo":"2.0.5","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40smithy/util-middleware@2.0.5","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-smithy-util-retry-2.0.5","name":"npm:@smithy/util-retry","versionInfo":"2.0.5","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40smithy/util-retry@2.0.5","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-smithy-util-stream-2.0.17","name":"npm:@smithy/util-stream","versionInfo":"2.0.17","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40smithy/util-stream@2.0.17","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-smithy-util-uri-escape-2.0.0","name":"npm:@smithy/util-uri-escape","versionInfo":"2.0.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40smithy/util-uri-escape@2.0.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-smithy-util-utf8-2.0.0","name":"npm:@smithy/util-utf8","versionInfo":"2.0.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40smithy/util-utf8@2.0.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-abort-controller-3.0.0","name":"npm:abort-controller","versionInfo":"3.0.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/abort-controller@3.0.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-accepts-1.3.8","name":"npm:accepts","versionInfo":"1.3.8","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/accepts@1.3.8","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-array-flatten-1.1.1","name":"npm:array-flatten","versionInfo":"1.1.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/array-flatten@1.1.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-atomic-sleep-1.0.0","name":"npm:atomic-sleep","versionInfo":"1.0.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/atomic-sleep@1.0.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-aws4-1.12.0","name":"npm:aws4","versionInfo":"1.12.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/aws4@1.12.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-balanced-match-1.0.2","name":"npm:balanced-match","versionInfo":"1.0.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/balanced-match@1.0.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-base64-js-1.5.1","name":"npm:base64-js","versionInfo":"1.5.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/base64-js@1.5.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-body-parser-1.20.1","name":"npm:body-parser","versionInfo":"1.20.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/body-parser@1.20.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-bowser-2.11.0","name":"npm:bowser","versionInfo":"2.11.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/bowser@2.11.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-brace-expansion-2.0.1","name":"npm:brace-expansion","versionInfo":"2.0.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/brace-expansion@2.0.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-buffer-6.0.3","name":"npm:buffer","versionInfo":"6.0.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/buffer@6.0.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-bytes-3.1.2","name":"npm:bytes","versionInfo":"3.1.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/bytes@3.1.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-call-bind-1.0.5","name":"npm:call-bind","versionInfo":"1.0.5","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/call-bind@1.0.5","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-colorette-2.0.20","name":"npm:colorette","versionInfo":"2.0.20","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/colorette@2.0.20","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-content-disposition-0.5.4","name":"npm:content-disposition","versionInfo":"0.5.4","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/content-disposition@0.5.4","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-content-type-1.0.5","name":"npm:content-type","versionInfo":"1.0.5","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/content-type@1.0.5","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-cookie-0.5.0","name":"npm:cookie","versionInfo":"0.5.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/cookie@0.5.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-cookie-signature-1.0.6","name":"npm:cookie-signature","versionInfo":"1.0.6","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/cookie-signature@1.0.6","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-cors-2.8.5","name":"npm:cors","versionInfo":"2.8.5","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/cors@2.8.5","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-crypto-js-4.2.0","name":"npm:crypto-js","versionInfo":"4.2.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/crypto-js@4.2.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-data-uri-to-buffer-4.0.1","name":"npm:data-uri-to-buffer","versionInfo":"4.0.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/data-uri-to-buffer@4.0.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-date-fns-2.30.0","name":"npm:date-fns","versionInfo":"2.30.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/date-fns@2.30.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-dateformat-4.6.3","name":"npm:dateformat","versionInfo":"4.6.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/dateformat@4.6.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-debug-2.6.9","name":"npm:debug","versionInfo":"2.6.9","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/debug@2.6.9","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-define-data-property-1.1.1","name":"npm:define-data-property","versionInfo":"1.1.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/define-data-property@1.1.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-depd-2.0.0","name":"npm:depd","versionInfo":"2.0.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/depd@2.0.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-destroy-1.2.0","name":"npm:destroy","versionInfo":"1.2.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/destroy@1.2.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-dotenv-16.3.1","name":"npm:dotenv","versionInfo":"16.3.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"BSD-2-Clause","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/dotenv@16.3.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-ee-first-1.1.1","name":"npm:ee-first","versionInfo":"1.1.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/ee-first@1.1.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-encodeurl-1.0.2","name":"npm:encodeurl","versionInfo":"1.0.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/encodeurl@1.0.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-end-of-stream-1.4.4","name":"npm:end-of-stream","versionInfo":"1.4.4","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/end-of-stream@1.4.4","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-escape-html-1.0.3","name":"npm:escape-html","versionInfo":"1.0.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/escape-html@1.0.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-etag-1.8.1","name":"npm:etag","versionInfo":"1.8.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/etag@1.8.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-event-target-shim-5.0.1","name":"npm:event-target-shim","versionInfo":"5.0.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/event-target-shim@5.0.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-events-3.3.0","name":"npm:events","versionInfo":"3.3.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/events@3.3.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-express-4.18.2","name":"npm:express","versionInfo":"4.18.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/express@4.18.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-fast-copy-3.0.1","name":"npm:fast-copy","versionInfo":"3.0.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/fast-copy@3.0.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-fast-redact-3.3.0","name":"npm:fast-redact","versionInfo":"3.3.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/fast-redact@3.3.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-fast-safe-stringify-2.1.1","name":"npm:fast-safe-stringify","versionInfo":"2.1.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/fast-safe-stringify@2.1.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-fast-xml-parser-4.2.5","name":"npm:fast-xml-parser","versionInfo":"4.2.5","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/fast-xml-parser@4.2.5","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-fetch-blob-3.2.0","name":"npm:fetch-blob","versionInfo":"3.2.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/fetch-blob@3.2.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-finalhandler-1.2.0","name":"npm:finalhandler","versionInfo":"1.2.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/finalhandler@1.2.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-formdata-polyfill-4.0.10","name":"npm:formdata-polyfill","versionInfo":"4.0.10","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/formdata-polyfill@4.0.10","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-forwarded-0.2.0","name":"npm:forwarded","versionInfo":"0.2.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/forwarded@0.2.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-fresh-0.5.2","name":"npm:fresh","versionInfo":"0.5.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/fresh@0.5.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-fs-0.0.1-security","name":"npm:fs","versionInfo":"0.0.1-security","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"ISC","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/fs@0.0.1-security","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-fs.realpath-1.0.0","name":"npm:fs.realpath","versionInfo":"1.0.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"ISC","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/fs.realpath@1.0.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-function-bind-1.1.2","name":"npm:function-bind","versionInfo":"1.1.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/function-bind@1.1.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-get-intrinsic-1.2.2","name":"npm:get-intrinsic","versionInfo":"1.2.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/get-intrinsic@1.2.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-glob-8.1.0","name":"npm:glob","versionInfo":"8.1.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"ISC","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/glob@8.1.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-gopd-1.0.1","name":"npm:gopd","versionInfo":"1.0.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/gopd@1.0.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-has-property-descriptors-1.0.1","name":"npm:has-property-descriptors","versionInfo":"1.0.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/has-property-descriptors@1.0.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-has-proto-1.0.1","name":"npm:has-proto","versionInfo":"1.0.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/has-proto@1.0.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-has-symbols-1.0.3","name":"npm:has-symbols","versionInfo":"1.0.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/has-symbols@1.0.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-hasown-2.0.0","name":"npm:hasown","versionInfo":"2.0.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/hasown@2.0.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-help-me-4.2.0","name":"npm:help-me","versionInfo":"4.2.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/help-me@4.2.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-http-errors-2.0.0","name":"npm:http-errors","versionInfo":"2.0.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/http-errors@2.0.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-https-1.0.0","name":"npm:https","versionInfo":"1.0.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"ISC","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/https@1.0.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-iconv-lite-0.4.24","name":"npm:iconv-lite","versionInfo":"0.4.24","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/iconv-lite@0.4.24","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-ieee754-1.2.1","name":"npm:ieee754","versionInfo":"1.2.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"BSD-3-Clause","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/ieee754@1.2.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-inflight-1.0.6","name":"npm:inflight","versionInfo":"1.0.6","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"ISC","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/inflight@1.0.6","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-inherits-2.0.4","name":"npm:inherits","versionInfo":"2.0.4","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"ISC","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/inherits@2.0.4","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-ipaddr.js-1.9.1","name":"npm:ipaddr.js","versionInfo":"1.9.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/ipaddr.js@1.9.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-joycon-3.1.1","name":"npm:joycon","versionInfo":"3.1.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/joycon@3.1.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-media-typer-0.3.0","name":"npm:media-typer","versionInfo":"0.3.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/media-typer@0.3.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-merge-descriptors-1.0.1","name":"npm:merge-descriptors","versionInfo":"1.0.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/merge-descriptors@1.0.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-methods-1.1.2","name":"npm:methods","versionInfo":"1.1.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/methods@1.1.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-mime-1.6.0","name":"npm:mime","versionInfo":"1.6.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/mime@1.6.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-mime-db-1.52.0","name":"npm:mime-db","versionInfo":"1.52.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/mime-db@1.52.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-mime-types-2.1.35","name":"npm:mime-types","versionInfo":"2.1.35","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/mime-types@2.1.35","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-minimatch-5.1.6","name":"npm:minimatch","versionInfo":"5.1.6","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"ISC","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/minimatch@5.1.6","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-minimist-1.2.8","name":"npm:minimist","versionInfo":"1.2.8","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/minimist@1.2.8","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-ms-2.0.0","name":"npm:ms","versionInfo":"2.0.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/ms@2.0.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-ms-2.1.3","name":"npm:ms","versionInfo":"2.1.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/ms@2.1.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-negotiator-0.6.3","name":"npm:negotiator","versionInfo":"0.6.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/negotiator@0.6.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-node-domexception-1.0.0","name":"npm:node-domexception","versionInfo":"1.0.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/node-domexception@1.0.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-node-fetch-3.3.2","name":"npm:node-fetch","versionInfo":"3.3.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/node-fetch@3.3.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-object-assign-4.1.1","name":"npm:object-assign","versionInfo":"4.1.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/object-assign@4.1.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-object-inspect-1.13.1","name":"npm:object-inspect","versionInfo":"1.13.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/object-inspect@1.13.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-on-exit-leak-free-2.1.2","name":"npm:on-exit-leak-free","versionInfo":"2.1.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/on-exit-leak-free@2.1.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-on-finished-2.4.1","name":"npm:on-finished","versionInfo":"2.4.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/on-finished@2.4.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-once-1.4.0","name":"npm:once","versionInfo":"1.4.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"ISC","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/once@1.4.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-parseurl-1.3.3","name":"npm:parseurl","versionInfo":"1.3.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/parseurl@1.3.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-path-to-regexp-0.1.7","name":"npm:path-to-regexp","versionInfo":"0.1.7","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/path-to-regexp@0.1.7","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-pino-8.16.1","name":"npm:pino","versionInfo":"8.16.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/pino@8.16.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-pino-abstract-transport-1.1.0","name":"npm:pino-abstract-transport","versionInfo":"1.1.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/pino-abstract-transport@1.1.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-pino-pretty-10.2.3","name":"npm:pino-pretty","versionInfo":"10.2.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/pino-pretty@10.2.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-pino-std-serializers-6.2.2","name":"npm:pino-std-serializers","versionInfo":"6.2.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/pino-std-serializers@6.2.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-process-0.11.10","name":"npm:process","versionInfo":"0.11.10","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/process@0.11.10","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-process-warning-2.2.0","name":"npm:process-warning","versionInfo":"2.2.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/process-warning@2.2.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-proxy-addr-2.0.7","name":"npm:proxy-addr","versionInfo":"2.0.7","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/proxy-addr@2.0.7","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-pump-3.0.0","name":"npm:pump","versionInfo":"3.0.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/pump@3.0.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-qs-6.11.0","name":"npm:qs","versionInfo":"6.11.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"BSD-3-Clause","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/qs@6.11.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-quick-format-unescaped-4.0.4","name":"npm:quick-format-unescaped","versionInfo":"4.0.4","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/quick-format-unescaped@4.0.4","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-range-parser-1.2.1","name":"npm:range-parser","versionInfo":"1.2.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/range-parser@1.2.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-raw-body-2.5.1","name":"npm:raw-body","versionInfo":"2.5.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/raw-body@2.5.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-readable-stream-3.6.2","name":"npm:readable-stream","versionInfo":"3.6.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/readable-stream@3.6.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-readable-stream-4.4.2","name":"npm:readable-stream","versionInfo":"4.4.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/readable-stream@4.4.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-real-require-0.2.0","name":"npm:real-require","versionInfo":"0.2.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/real-require@0.2.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-regenerator-runtime-0.14.0","name":"npm:regenerator-runtime","versionInfo":"0.14.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/regenerator-runtime@0.14.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-safe-buffer-5.2.1","name":"npm:safe-buffer","versionInfo":"5.2.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/safe-buffer@5.2.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-safe-stable-stringify-2.4.3","name":"npm:safe-stable-stringify","versionInfo":"2.4.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/safe-stable-stringify@2.4.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-safer-buffer-2.1.2","name":"npm:safer-buffer","versionInfo":"2.1.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/safer-buffer@2.1.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-secure-json-parse-2.7.0","name":"npm:secure-json-parse","versionInfo":"2.7.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"BSD-3-Clause","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/secure-json-parse@2.7.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-send-0.18.0","name":"npm:send","versionInfo":"0.18.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/send@0.18.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-serve-static-1.15.0","name":"npm:serve-static","versionInfo":"1.15.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/serve-static@1.15.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-set-function-length-1.1.1","name":"npm:set-function-length","versionInfo":"1.1.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/set-function-length@1.1.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-setprototypeof-1.2.0","name":"npm:setprototypeof","versionInfo":"1.2.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"ISC","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/setprototypeof@1.2.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-side-channel-1.0.4","name":"npm:side-channel","versionInfo":"1.0.4","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/side-channel@1.0.4","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-sonic-boom-3.7.0","name":"npm:sonic-boom","versionInfo":"3.7.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/sonic-boom@3.7.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-split2-4.2.0","name":"npm:split2","versionInfo":"4.2.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"ISC","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/split2@4.2.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-statuses-2.0.1","name":"npm:statuses","versionInfo":"2.0.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/statuses@2.0.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-string-decoder-1.3.0","name":"npm:string_decoder","versionInfo":"1.3.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/string_decoder@1.3.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-strip-json-comments-3.1.1","name":"npm:strip-json-comments","versionInfo":"3.1.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/strip-json-comments@3.1.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-strnum-1.0.5","name":"npm:strnum","versionInfo":"1.0.5","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/strnum@1.0.5","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-thread-stream-2.4.1","name":"npm:thread-stream","versionInfo":"2.4.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/thread-stream@2.4.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-toidentifier-1.0.1","name":"npm:toidentifier","versionInfo":"1.0.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/toidentifier@1.0.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-tslib-1.14.1","name":"npm:tslib","versionInfo":"1.14.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"0BSD","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/tslib@1.14.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-tslib-2.6.2","name":"npm:tslib","versionInfo":"2.6.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"0BSD","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/tslib@2.6.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-type-is-1.6.18","name":"npm:type-is","versionInfo":"1.6.18","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/type-is@1.6.18","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-unpipe-1.0.0","name":"npm:unpipe","versionInfo":"1.0.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/unpipe@1.0.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-util-deprecate-1.0.2","name":"npm:util-deprecate","versionInfo":"1.0.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/util-deprecate@1.0.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-utils-merge-1.0.1","name":"npm:utils-merge","versionInfo":"1.0.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/utils-merge@1.0.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-uuid-8.3.2","name":"npm:uuid","versionInfo":"8.3.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/uuid@8.3.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-vary-1.1.2","name":"npm:vary","versionInfo":"1.1.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/vary@1.1.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-web-streams-polyfill-3.2.1","name":"npm:web-streams-polyfill","versionInfo":"3.2.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/web-streams-polyfill@3.2.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-wrappy-1.0.2","name":"npm:wrappy","versionInfo":"1.0.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"ISC","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/wrappy@1.0.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-actions-actions-checkout-3","name":"actions:actions/checkout","versionInfo":"3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:githubactions/actions/checkout@3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-actions-aws-actions-amazon-ecr-login-1","name":"actions:aws-actions/amazon-ecr-login","versionInfo":"1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:githubactions/aws-actions/amazon-ecr-login@1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-actions-aws-actions-configure-aws-credentials-3","name":"actions:aws-actions/configure-aws-credentials","versionInfo":"3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:githubactions/aws-actions/configure-aws-credentials@3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-actions-tyankatsu0105-read-package-version-actions-1","name":"actions:tyankatsu0105/read-package-version-actions","versionInfo":"1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:githubactions/tyankatsu0105/read-package-version-actions@1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-actions-actions-setup-node-3","name":"actions:actions/setup-node","versionInfo":"3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:githubactions/actions/setup-node@3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-actions-codecov-codecov-action-3","name":"actions:codecov/codecov-action","versionInfo":"3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:githubactions/codecov/codecov-action@3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-actions-pnpm-action-setup-2","name":"actions:pnpm/action-setup","versionInfo":"2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:githubactions/pnpm/action-setup@2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-aashutoshrathi-word-wrap-1.2.6","name":"npm:@aashutoshrathi/word-wrap","versionInfo":"1.2.6","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40aashutoshrathi/word-wrap@1.2.6","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-actions-core-1.10.1","name":"npm:@actions/core","versionInfo":"1.10.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40actions/core@1.10.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-actions-http-client-2.2.0","name":"npm:@actions/http-client","versionInfo":"2.2.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40actions/http-client@2.2.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-adobe-css-tools-4.3.2","name":"npm:@adobe/css-tools","versionInfo":"4.3.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40adobe/css-tools@4.3.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-ampproject-remapping-2.2.1","name":"npm:@ampproject/remapping","versionInfo":"2.2.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40ampproject/remapping@2.2.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-aws-sdk-client-cognito-identity-3.370.0","name":"npm:@aws-sdk/client-cognito-identity","versionInfo":"3.370.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40aws-sdk/client-cognito-identity@3.370.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-aws-sdk-client-sso-3.370.0","name":"npm:@aws-sdk/client-sso","versionInfo":"3.370.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40aws-sdk/client-sso@3.370.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-aws-sdk-client-sso-oidc-3.370.0","name":"npm:@aws-sdk/client-sso-oidc","versionInfo":"3.370.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40aws-sdk/client-sso-oidc@3.370.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-aws-sdk-client-sts-3.370.0","name":"npm:@aws-sdk/client-sts","versionInfo":"3.370.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40aws-sdk/client-sts@3.370.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-aws-sdk-credential-provider-cognito-identity-3.370.0","name":"npm:@aws-sdk/credential-provider-cognito-identity","versionInfo":"3.370.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40aws-sdk/credential-provider-cognito-identity@3.370.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-aws-sdk-credential-provider-env-3.370.0","name":"npm:@aws-sdk/credential-provider-env","versionInfo":"3.370.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40aws-sdk/credential-provider-env@3.370.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-aws-sdk-credential-provider-ini-3.370.0","name":"npm:@aws-sdk/credential-provider-ini","versionInfo":"3.370.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40aws-sdk/credential-provider-ini@3.370.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-aws-sdk-credential-provider-node-3.370.0","name":"npm:@aws-sdk/credential-provider-node","versionInfo":"3.370.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40aws-sdk/credential-provider-node@3.370.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-aws-sdk-credential-provider-process-3.370.0","name":"npm:@aws-sdk/credential-provider-process","versionInfo":"3.370.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40aws-sdk/credential-provider-process@3.370.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-aws-sdk-credential-provider-sso-3.370.0","name":"npm:@aws-sdk/credential-provider-sso","versionInfo":"3.370.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40aws-sdk/credential-provider-sso@3.370.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-aws-sdk-credential-provider-web-identity-3.370.0","name":"npm:@aws-sdk/credential-provider-web-identity","versionInfo":"3.370.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40aws-sdk/credential-provider-web-identity@3.370.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-aws-sdk-credential-providers-3.370.0","name":"npm:@aws-sdk/credential-providers","versionInfo":"3.370.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40aws-sdk/credential-providers@3.370.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-aws-sdk-middleware-host-header-3.370.0","name":"npm:@aws-sdk/middleware-host-header","versionInfo":"3.370.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40aws-sdk/middleware-host-header@3.370.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-aws-sdk-middleware-logger-3.370.0","name":"npm:@aws-sdk/middleware-logger","versionInfo":"3.370.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40aws-sdk/middleware-logger@3.370.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-aws-sdk-middleware-recursion-detection-3.370.0","name":"npm:@aws-sdk/middleware-recursion-detection","versionInfo":"3.370.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40aws-sdk/middleware-recursion-detection@3.370.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-aws-sdk-middleware-sdk-sts-3.370.0","name":"npm:@aws-sdk/middleware-sdk-sts","versionInfo":"3.370.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40aws-sdk/middleware-sdk-sts@3.370.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-aws-sdk-middleware-signing-3.370.0","name":"npm:@aws-sdk/middleware-signing","versionInfo":"3.370.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40aws-sdk/middleware-signing@3.370.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-aws-sdk-middleware-user-agent-3.370.0","name":"npm:@aws-sdk/middleware-user-agent","versionInfo":"3.370.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40aws-sdk/middleware-user-agent@3.370.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-aws-sdk-token-providers-3.370.0","name":"npm:@aws-sdk/token-providers","versionInfo":"3.370.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40aws-sdk/token-providers@3.370.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-aws-sdk-types-3.370.0","name":"npm:@aws-sdk/types","versionInfo":"3.370.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40aws-sdk/types@3.370.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-aws-sdk-util-endpoints-3.370.0","name":"npm:@aws-sdk/util-endpoints","versionInfo":"3.370.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40aws-sdk/util-endpoints@3.370.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-aws-sdk-util-locate-window-3.495.0","name":"npm:@aws-sdk/util-locate-window","versionInfo":"3.495.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40aws-sdk/util-locate-window@3.495.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-aws-sdk-util-user-agent-browser-3.370.0","name":"npm:@aws-sdk/util-user-agent-browser","versionInfo":"3.370.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40aws-sdk/util-user-agent-browser@3.370.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-aws-sdk-util-user-agent-node-3.370.0","name":"npm:@aws-sdk/util-user-agent-node","versionInfo":"3.370.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40aws-sdk/util-user-agent-node@3.370.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-babel-code-frame-7.12.11","name":"npm:@babel/code-frame","versionInfo":"7.12.11","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40babel/code-frame@7.12.11","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-babel-code-frame-7.23.5","name":"npm:@babel/code-frame","versionInfo":"7.23.5","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40babel/code-frame@7.23.5","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-babel-compat-data-7.23.5","name":"npm:@babel/compat-data","versionInfo":"7.23.5","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40babel/compat-data@7.23.5","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-babel-core-7.23.2","name":"npm:@babel/core","versionInfo":"7.23.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40babel/core@7.23.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-babel-generator-7.23.6","name":"npm:@babel/generator","versionInfo":"7.23.6","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40babel/generator@7.23.6","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-babel-helper-annotate-as-pure-7.22.5","name":"npm:@babel/helper-annotate-as-pure","versionInfo":"7.22.5","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40babel/helper-annotate-as-pure@7.22.5","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-babel-helper-builder-binary-assignment-operator-visitor-7.22.15","name":"npm:@babel/helper-builder-binary-assignment-operator-visitor","versionInfo":"7.22.15","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40babel/helper-builder-binary-assignment-operator-visitor@7.22.15","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-babel-helper-compilation-targets-7.23.6","name":"npm:@babel/helper-compilation-targets","versionInfo":"7.23.6","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40babel/helper-compilation-targets@7.23.6","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-babel-helper-create-class-features-plugin-7.23.7","name":"npm:@babel/helper-create-class-features-plugin","versionInfo":"7.23.7","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40babel/helper-create-class-features-plugin@7.23.7","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-babel-helper-create-regexp-features-plugin-7.22.15","name":"npm:@babel/helper-create-regexp-features-plugin","versionInfo":"7.22.15","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40babel/helper-create-regexp-features-plugin@7.22.15","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-babel-helper-define-polyfill-provider-0.4.4","name":"npm:@babel/helper-define-polyfill-provider","versionInfo":"0.4.4","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40babel/helper-define-polyfill-provider@0.4.4","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-babel-helper-define-polyfill-provider-0.5.0","name":"npm:@babel/helper-define-polyfill-provider","versionInfo":"0.5.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40babel/helper-define-polyfill-provider@0.5.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-babel-helper-environment-visitor-7.22.20","name":"npm:@babel/helper-environment-visitor","versionInfo":"7.22.20","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40babel/helper-environment-visitor@7.22.20","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-babel-helper-function-name-7.23.0","name":"npm:@babel/helper-function-name","versionInfo":"7.23.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40babel/helper-function-name@7.23.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-babel-helper-hoist-variables-7.22.5","name":"npm:@babel/helper-hoist-variables","versionInfo":"7.22.5","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40babel/helper-hoist-variables@7.22.5","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-babel-helper-member-expression-to-functions-7.23.0","name":"npm:@babel/helper-member-expression-to-functions","versionInfo":"7.23.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40babel/helper-member-expression-to-functions@7.23.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-babel-helper-module-imports-7.22.15","name":"npm:@babel/helper-module-imports","versionInfo":"7.22.15","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40babel/helper-module-imports@7.22.15","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-babel-helper-module-transforms-7.23.3","name":"npm:@babel/helper-module-transforms","versionInfo":"7.23.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40babel/helper-module-transforms@7.23.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-babel-helper-optimise-call-expression-7.22.5","name":"npm:@babel/helper-optimise-call-expression","versionInfo":"7.22.5","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40babel/helper-optimise-call-expression@7.22.5","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-babel-helper-plugin-utils-7.22.5","name":"npm:@babel/helper-plugin-utils","versionInfo":"7.22.5","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40babel/helper-plugin-utils@7.22.5","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-babel-helper-remap-async-to-generator-7.22.20","name":"npm:@babel/helper-remap-async-to-generator","versionInfo":"7.22.20","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40babel/helper-remap-async-to-generator@7.22.20","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-babel-helper-replace-supers-7.22.20","name":"npm:@babel/helper-replace-supers","versionInfo":"7.22.20","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40babel/helper-replace-supers@7.22.20","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-babel-helper-simple-access-7.22.5","name":"npm:@babel/helper-simple-access","versionInfo":"7.22.5","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40babel/helper-simple-access@7.22.5","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-babel-helper-skip-transparent-expression-wrappers-7.22.5","name":"npm:@babel/helper-skip-transparent-expression-wrappers","versionInfo":"7.22.5","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40babel/helper-skip-transparent-expression-wrappers@7.22.5","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-babel-helper-split-export-declaration-7.22.6","name":"npm:@babel/helper-split-export-declaration","versionInfo":"7.22.6","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40babel/helper-split-export-declaration@7.22.6","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-babel-helper-string-parser-7.23.4","name":"npm:@babel/helper-string-parser","versionInfo":"7.23.4","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40babel/helper-string-parser@7.23.4","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-babel-helper-validator-identifier-7.22.20","name":"npm:@babel/helper-validator-identifier","versionInfo":"7.22.20","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40babel/helper-validator-identifier@7.22.20","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-babel-helper-validator-option-7.23.5","name":"npm:@babel/helper-validator-option","versionInfo":"7.23.5","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40babel/helper-validator-option@7.23.5","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-babel-helper-wrap-function-7.22.20","name":"npm:@babel/helper-wrap-function","versionInfo":"7.22.20","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40babel/helper-wrap-function@7.22.20","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-babel-helpers-7.23.8","name":"npm:@babel/helpers","versionInfo":"7.23.8","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40babel/helpers@7.23.8","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-babel-highlight-7.23.4","name":"npm:@babel/highlight","versionInfo":"7.23.4","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40babel/highlight@7.23.4","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-babel-parser-7.23.6","name":"npm:@babel/parser","versionInfo":"7.23.6","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40babel/parser@7.23.6","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-babel-plugin-bugfix-safari-id-destructuring-collision-in-function-expression-7.23.3","name":"npm:@babel/plugin-bugfix-safari-id-destructuring-collision-in-function-expression","versionInfo":"7.23.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40babel/plugin-bugfix-safari-id-destructuring-collision-in-function-expression@7.23.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-babel-plugin-bugfix-v8-spread-parameters-in-optional-chaining-7.23.3","name":"npm:@babel/plugin-bugfix-v8-spread-parameters-in-optional-chaining","versionInfo":"7.23.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40babel/plugin-bugfix-v8-spread-parameters-in-optional-chaining@7.23.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-babel-plugin-proposal-private-property-in-object-7.21.0-placeholder-for-preset-env.2","name":"npm:@babel/plugin-proposal-private-property-in-object","versionInfo":"7.21.0-placeholder-for-preset-env.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40babel/plugin-proposal-private-property-in-object@7.21.0-placeholder-for-preset-env.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-babel-plugin-syntax-async-generators-7.8.4","name":"npm:@babel/plugin-syntax-async-generators","versionInfo":"7.8.4","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40babel/plugin-syntax-async-generators@7.8.4","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-babel-plugin-syntax-bigint-7.8.3","name":"npm:@babel/plugin-syntax-bigint","versionInfo":"7.8.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40babel/plugin-syntax-bigint@7.8.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-babel-plugin-syntax-class-properties-7.12.13","name":"npm:@babel/plugin-syntax-class-properties","versionInfo":"7.12.13","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40babel/plugin-syntax-class-properties@7.12.13","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-babel-plugin-syntax-class-static-block-7.14.5","name":"npm:@babel/plugin-syntax-class-static-block","versionInfo":"7.14.5","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40babel/plugin-syntax-class-static-block@7.14.5","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-babel-plugin-syntax-dynamic-import-7.8.3","name":"npm:@babel/plugin-syntax-dynamic-import","versionInfo":"7.8.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40babel/plugin-syntax-dynamic-import@7.8.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-babel-plugin-syntax-export-namespace-from-7.8.3","name":"npm:@babel/plugin-syntax-export-namespace-from","versionInfo":"7.8.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40babel/plugin-syntax-export-namespace-from@7.8.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-babel-plugin-syntax-import-assertions-7.23.3","name":"npm:@babel/plugin-syntax-import-assertions","versionInfo":"7.23.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40babel/plugin-syntax-import-assertions@7.23.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-babel-plugin-syntax-import-attributes-7.23.3","name":"npm:@babel/plugin-syntax-import-attributes","versionInfo":"7.23.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40babel/plugin-syntax-import-attributes@7.23.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-babel-plugin-syntax-import-meta-7.10.4","name":"npm:@babel/plugin-syntax-import-meta","versionInfo":"7.10.4","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40babel/plugin-syntax-import-meta@7.10.4","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-babel-plugin-syntax-json-strings-7.8.3","name":"npm:@babel/plugin-syntax-json-strings","versionInfo":"7.8.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40babel/plugin-syntax-json-strings@7.8.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-babel-plugin-syntax-jsx-7.23.3","name":"npm:@babel/plugin-syntax-jsx","versionInfo":"7.23.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40babel/plugin-syntax-jsx@7.23.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-babel-plugin-syntax-logical-assignment-operators-7.10.4","name":"npm:@babel/plugin-syntax-logical-assignment-operators","versionInfo":"7.10.4","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40babel/plugin-syntax-logical-assignment-operators@7.10.4","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-babel-plugin-syntax-nullish-coalescing-operator-7.8.3","name":"npm:@babel/plugin-syntax-nullish-coalescing-operator","versionInfo":"7.8.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40babel/plugin-syntax-nullish-coalescing-operator@7.8.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-babel-plugin-syntax-numeric-separator-7.10.4","name":"npm:@babel/plugin-syntax-numeric-separator","versionInfo":"7.10.4","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40babel/plugin-syntax-numeric-separator@7.10.4","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-babel-plugin-syntax-object-rest-spread-7.8.3","name":"npm:@babel/plugin-syntax-object-rest-spread","versionInfo":"7.8.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40babel/plugin-syntax-object-rest-spread@7.8.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-babel-plugin-syntax-optional-catch-binding-7.8.3","name":"npm:@babel/plugin-syntax-optional-catch-binding","versionInfo":"7.8.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40babel/plugin-syntax-optional-catch-binding@7.8.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-babel-plugin-syntax-optional-chaining-7.8.3","name":"npm:@babel/plugin-syntax-optional-chaining","versionInfo":"7.8.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40babel/plugin-syntax-optional-chaining@7.8.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-babel-plugin-syntax-private-property-in-object-7.14.5","name":"npm:@babel/plugin-syntax-private-property-in-object","versionInfo":"7.14.5","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40babel/plugin-syntax-private-property-in-object@7.14.5","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-babel-plugin-syntax-top-level-await-7.14.5","name":"npm:@babel/plugin-syntax-top-level-await","versionInfo":"7.14.5","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40babel/plugin-syntax-top-level-await@7.14.5","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-babel-plugin-syntax-typescript-7.23.3","name":"npm:@babel/plugin-syntax-typescript","versionInfo":"7.23.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40babel/plugin-syntax-typescript@7.23.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-babel-plugin-syntax-unicode-sets-regex-7.18.6","name":"npm:@babel/plugin-syntax-unicode-sets-regex","versionInfo":"7.18.6","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40babel/plugin-syntax-unicode-sets-regex@7.18.6","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-babel-plugin-transform-arrow-functions-7.23.3","name":"npm:@babel/plugin-transform-arrow-functions","versionInfo":"7.23.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40babel/plugin-transform-arrow-functions@7.23.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-babel-plugin-transform-async-generator-functions-7.23.7","name":"npm:@babel/plugin-transform-async-generator-functions","versionInfo":"7.23.7","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40babel/plugin-transform-async-generator-functions@7.23.7","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-babel-plugin-transform-async-to-generator-7.23.3","name":"npm:@babel/plugin-transform-async-to-generator","versionInfo":"7.23.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40babel/plugin-transform-async-to-generator@7.23.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-babel-plugin-transform-block-scoped-functions-7.23.3","name":"npm:@babel/plugin-transform-block-scoped-functions","versionInfo":"7.23.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40babel/plugin-transform-block-scoped-functions@7.23.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-babel-plugin-transform-block-scoping-7.23.4","name":"npm:@babel/plugin-transform-block-scoping","versionInfo":"7.23.4","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40babel/plugin-transform-block-scoping@7.23.4","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-babel-plugin-transform-class-properties-7.23.3","name":"npm:@babel/plugin-transform-class-properties","versionInfo":"7.23.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40babel/plugin-transform-class-properties@7.23.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-babel-plugin-transform-class-static-block-7.23.4","name":"npm:@babel/plugin-transform-class-static-block","versionInfo":"7.23.4","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40babel/plugin-transform-class-static-block@7.23.4","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-babel-plugin-transform-classes-7.23.8","name":"npm:@babel/plugin-transform-classes","versionInfo":"7.23.8","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40babel/plugin-transform-classes@7.23.8","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-babel-plugin-transform-computed-properties-7.23.3","name":"npm:@babel/plugin-transform-computed-properties","versionInfo":"7.23.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40babel/plugin-transform-computed-properties@7.23.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-babel-plugin-transform-destructuring-7.23.3","name":"npm:@babel/plugin-transform-destructuring","versionInfo":"7.23.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40babel/plugin-transform-destructuring@7.23.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-babel-plugin-transform-dotall-regex-7.23.3","name":"npm:@babel/plugin-transform-dotall-regex","versionInfo":"7.23.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40babel/plugin-transform-dotall-regex@7.23.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-babel-plugin-transform-duplicate-keys-7.23.3","name":"npm:@babel/plugin-transform-duplicate-keys","versionInfo":"7.23.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40babel/plugin-transform-duplicate-keys@7.23.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-babel-plugin-transform-dynamic-import-7.23.4","name":"npm:@babel/plugin-transform-dynamic-import","versionInfo":"7.23.4","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40babel/plugin-transform-dynamic-import@7.23.4","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-babel-plugin-transform-exponentiation-operator-7.23.3","name":"npm:@babel/plugin-transform-exponentiation-operator","versionInfo":"7.23.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40babel/plugin-transform-exponentiation-operator@7.23.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-babel-plugin-transform-export-namespace-from-7.23.4","name":"npm:@babel/plugin-transform-export-namespace-from","versionInfo":"7.23.4","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40babel/plugin-transform-export-namespace-from@7.23.4","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-babel-plugin-transform-for-of-7.23.6","name":"npm:@babel/plugin-transform-for-of","versionInfo":"7.23.6","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40babel/plugin-transform-for-of@7.23.6","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-babel-plugin-transform-function-name-7.23.3","name":"npm:@babel/plugin-transform-function-name","versionInfo":"7.23.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40babel/plugin-transform-function-name@7.23.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-babel-plugin-transform-json-strings-7.23.4","name":"npm:@babel/plugin-transform-json-strings","versionInfo":"7.23.4","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40babel/plugin-transform-json-strings@7.23.4","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-babel-plugin-transform-literals-7.23.3","name":"npm:@babel/plugin-transform-literals","versionInfo":"7.23.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40babel/plugin-transform-literals@7.23.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-babel-plugin-transform-logical-assignment-operators-7.23.4","name":"npm:@babel/plugin-transform-logical-assignment-operators","versionInfo":"7.23.4","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40babel/plugin-transform-logical-assignment-operators@7.23.4","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-babel-plugin-transform-member-expression-literals-7.23.3","name":"npm:@babel/plugin-transform-member-expression-literals","versionInfo":"7.23.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40babel/plugin-transform-member-expression-literals@7.23.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-babel-plugin-transform-modules-amd-7.23.3","name":"npm:@babel/plugin-transform-modules-amd","versionInfo":"7.23.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40babel/plugin-transform-modules-amd@7.23.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-babel-plugin-transform-modules-commonjs-7.23.3","name":"npm:@babel/plugin-transform-modules-commonjs","versionInfo":"7.23.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40babel/plugin-transform-modules-commonjs@7.23.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-babel-plugin-transform-modules-systemjs-7.23.3","name":"npm:@babel/plugin-transform-modules-systemjs","versionInfo":"7.23.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40babel/plugin-transform-modules-systemjs@7.23.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-babel-plugin-transform-modules-umd-7.23.3","name":"npm:@babel/plugin-transform-modules-umd","versionInfo":"7.23.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40babel/plugin-transform-modules-umd@7.23.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-babel-plugin-transform-named-capturing-groups-regex-7.22.5","name":"npm:@babel/plugin-transform-named-capturing-groups-regex","versionInfo":"7.22.5","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40babel/plugin-transform-named-capturing-groups-regex@7.22.5","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-babel-plugin-transform-new-target-7.23.3","name":"npm:@babel/plugin-transform-new-target","versionInfo":"7.23.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40babel/plugin-transform-new-target@7.23.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-babel-plugin-transform-nullish-coalescing-operator-7.23.4","name":"npm:@babel/plugin-transform-nullish-coalescing-operator","versionInfo":"7.23.4","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40babel/plugin-transform-nullish-coalescing-operator@7.23.4","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-babel-plugin-transform-numeric-separator-7.23.4","name":"npm:@babel/plugin-transform-numeric-separator","versionInfo":"7.23.4","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40babel/plugin-transform-numeric-separator@7.23.4","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-babel-plugin-transform-object-rest-spread-7.23.4","name":"npm:@babel/plugin-transform-object-rest-spread","versionInfo":"7.23.4","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40babel/plugin-transform-object-rest-spread@7.23.4","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-babel-plugin-transform-object-super-7.23.3","name":"npm:@babel/plugin-transform-object-super","versionInfo":"7.23.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40babel/plugin-transform-object-super@7.23.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-babel-plugin-transform-optional-catch-binding-7.23.4","name":"npm:@babel/plugin-transform-optional-catch-binding","versionInfo":"7.23.4","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40babel/plugin-transform-optional-catch-binding@7.23.4","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-babel-plugin-transform-optional-chaining-7.23.4","name":"npm:@babel/plugin-transform-optional-chaining","versionInfo":"7.23.4","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40babel/plugin-transform-optional-chaining@7.23.4","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-babel-plugin-transform-parameters-7.23.3","name":"npm:@babel/plugin-transform-parameters","versionInfo":"7.23.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40babel/plugin-transform-parameters@7.23.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-babel-plugin-transform-private-methods-7.23.3","name":"npm:@babel/plugin-transform-private-methods","versionInfo":"7.23.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40babel/plugin-transform-private-methods@7.23.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-babel-plugin-transform-private-property-in-object-7.23.4","name":"npm:@babel/plugin-transform-private-property-in-object","versionInfo":"7.23.4","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40babel/plugin-transform-private-property-in-object@7.23.4","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-babel-plugin-transform-property-literals-7.23.3","name":"npm:@babel/plugin-transform-property-literals","versionInfo":"7.23.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40babel/plugin-transform-property-literals@7.23.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-babel-plugin-transform-react-display-name-7.23.3","name":"npm:@babel/plugin-transform-react-display-name","versionInfo":"7.23.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40babel/plugin-transform-react-display-name@7.23.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-babel-plugin-transform-react-jsx-7.23.4","name":"npm:@babel/plugin-transform-react-jsx","versionInfo":"7.23.4","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40babel/plugin-transform-react-jsx@7.23.4","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-babel-plugin-transform-react-jsx-development-7.22.5","name":"npm:@babel/plugin-transform-react-jsx-development","versionInfo":"7.22.5","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40babel/plugin-transform-react-jsx-development@7.22.5","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-babel-plugin-transform-react-jsx-self-7.23.3","name":"npm:@babel/plugin-transform-react-jsx-self","versionInfo":"7.23.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40babel/plugin-transform-react-jsx-self@7.23.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-babel-plugin-transform-react-jsx-source-7.23.3","name":"npm:@babel/plugin-transform-react-jsx-source","versionInfo":"7.23.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40babel/plugin-transform-react-jsx-source@7.23.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-babel-plugin-transform-react-pure-annotations-7.23.3","name":"npm:@babel/plugin-transform-react-pure-annotations","versionInfo":"7.23.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40babel/plugin-transform-react-pure-annotations@7.23.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-babel-plugin-transform-regenerator-7.23.3","name":"npm:@babel/plugin-transform-regenerator","versionInfo":"7.23.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40babel/plugin-transform-regenerator@7.23.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-babel-plugin-transform-reserved-words-7.23.3","name":"npm:@babel/plugin-transform-reserved-words","versionInfo":"7.23.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40babel/plugin-transform-reserved-words@7.23.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-babel-plugin-transform-shorthand-properties-7.23.3","name":"npm:@babel/plugin-transform-shorthand-properties","versionInfo":"7.23.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40babel/plugin-transform-shorthand-properties@7.23.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-babel-plugin-transform-spread-7.23.3","name":"npm:@babel/plugin-transform-spread","versionInfo":"7.23.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40babel/plugin-transform-spread@7.23.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-babel-plugin-transform-sticky-regex-7.23.3","name":"npm:@babel/plugin-transform-sticky-regex","versionInfo":"7.23.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40babel/plugin-transform-sticky-regex@7.23.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-babel-plugin-transform-template-literals-7.23.3","name":"npm:@babel/plugin-transform-template-literals","versionInfo":"7.23.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40babel/plugin-transform-template-literals@7.23.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-babel-plugin-transform-typeof-symbol-7.23.3","name":"npm:@babel/plugin-transform-typeof-symbol","versionInfo":"7.23.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40babel/plugin-transform-typeof-symbol@7.23.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-babel-plugin-transform-typescript-7.23.6","name":"npm:@babel/plugin-transform-typescript","versionInfo":"7.23.6","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40babel/plugin-transform-typescript@7.23.6","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-babel-plugin-transform-unicode-escapes-7.23.3","name":"npm:@babel/plugin-transform-unicode-escapes","versionInfo":"7.23.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40babel/plugin-transform-unicode-escapes@7.23.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-babel-plugin-transform-unicode-property-regex-7.23.3","name":"npm:@babel/plugin-transform-unicode-property-regex","versionInfo":"7.23.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40babel/plugin-transform-unicode-property-regex@7.23.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-babel-plugin-transform-unicode-regex-7.23.3","name":"npm:@babel/plugin-transform-unicode-regex","versionInfo":"7.23.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40babel/plugin-transform-unicode-regex@7.23.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-babel-plugin-transform-unicode-sets-regex-7.23.3","name":"npm:@babel/plugin-transform-unicode-sets-regex","versionInfo":"7.23.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40babel/plugin-transform-unicode-sets-regex@7.23.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-babel-preset-env-7.23.2","name":"npm:@babel/preset-env","versionInfo":"7.23.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40babel/preset-env@7.23.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-babel-preset-modules-0.1.6-no-external-plugins","name":"npm:@babel/preset-modules","versionInfo":"0.1.6-no-external-plugins","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40babel/preset-modules@0.1.6-no-external-plugins","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-babel-preset-react-7.22.15","name":"npm:@babel/preset-react","versionInfo":"7.22.15","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40babel/preset-react@7.22.15","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-babel-preset-typescript-7.22.15","name":"npm:@babel/preset-typescript","versionInfo":"7.22.15","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40babel/preset-typescript@7.22.15","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-babel-regjsgen-0.8.0","name":"npm:@babel/regjsgen","versionInfo":"0.8.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40babel/regjsgen@0.8.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-babel-runtime-7.23.8","name":"npm:@babel/runtime","versionInfo":"7.23.8","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40babel/runtime@7.23.8","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-babel-runtime-corejs3-7.23.8","name":"npm:@babel/runtime-corejs3","versionInfo":"7.23.8","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40babel/runtime-corejs3@7.23.8","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-babel-template-7.22.15","name":"npm:@babel/template","versionInfo":"7.22.15","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40babel/template@7.22.15","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-babel-traverse-7.23.7","name":"npm:@babel/traverse","versionInfo":"7.23.7","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40babel/traverse@7.23.7","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-babel-types-7.23.6","name":"npm:@babel/types","versionInfo":"7.23.6","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40babel/types@7.23.6","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-bcoe-v8-coverage-0.2.3","name":"npm:@bcoe/v8-coverage","versionInfo":"0.2.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"ISC AND MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40bcoe/v8-coverage@0.2.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-cspotcode-source-map-support-0.8.1","name":"npm:@cspotcode/source-map-support","versionInfo":"0.8.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40cspotcode/source-map-support@0.8.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-emotion-babel-plugin-11.11.0","name":"npm:@emotion/babel-plugin","versionInfo":"11.11.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40emotion/babel-plugin@11.11.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-emotion-cache-11.11.0","name":"npm:@emotion/cache","versionInfo":"11.11.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40emotion/cache@11.11.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-emotion-css-11.11.2","name":"npm:@emotion/css","versionInfo":"11.11.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40emotion/css@11.11.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-emotion-hash-0.9.1","name":"npm:@emotion/hash","versionInfo":"0.9.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40emotion/hash@0.9.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-emotion-is-prop-valid-0.8.8","name":"npm:@emotion/is-prop-valid","versionInfo":"0.8.8","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40emotion/is-prop-valid@0.8.8","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-emotion-memoize-0.7.4","name":"npm:@emotion/memoize","versionInfo":"0.7.4","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40emotion/memoize@0.7.4","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-emotion-memoize-0.8.1","name":"npm:@emotion/memoize","versionInfo":"0.8.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40emotion/memoize@0.8.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-emotion-react-11.11.1","name":"npm:@emotion/react","versionInfo":"11.11.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40emotion/react@11.11.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-emotion-serialize-1.1.3","name":"npm:@emotion/serialize","versionInfo":"1.1.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40emotion/serialize@1.1.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-emotion-sheet-1.2.2","name":"npm:@emotion/sheet","versionInfo":"1.2.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40emotion/sheet@1.2.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-emotion-unitless-0.8.1","name":"npm:@emotion/unitless","versionInfo":"0.8.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40emotion/unitless@0.8.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-emotion-use-insertion-effect-with-fallbacks-1.0.1","name":"npm:@emotion/use-insertion-effect-with-fallbacks","versionInfo":"1.0.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40emotion/use-insertion-effect-with-fallbacks@1.0.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-emotion-utils-1.2.1","name":"npm:@emotion/utils","versionInfo":"1.2.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40emotion/utils@1.2.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-emotion-weak-memoize-0.3.1","name":"npm:@emotion/weak-memoize","versionInfo":"0.3.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40emotion/weak-memoize@0.3.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-esbuild-android-arm-0.16.17","name":"npm:@esbuild/android-arm","versionInfo":"0.16.17","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40esbuild/android-arm@0.16.17","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-esbuild-android-arm-0.18.20","name":"npm:@esbuild/android-arm","versionInfo":"0.18.20","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40esbuild/android-arm@0.18.20","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-esbuild-android-arm64-0.16.17","name":"npm:@esbuild/android-arm64","versionInfo":"0.16.17","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40esbuild/android-arm64@0.16.17","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-esbuild-android-arm64-0.18.20","name":"npm:@esbuild/android-arm64","versionInfo":"0.18.20","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40esbuild/android-arm64@0.18.20","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-esbuild-android-x64-0.16.17","name":"npm:@esbuild/android-x64","versionInfo":"0.16.17","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40esbuild/android-x64@0.16.17","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-esbuild-android-x64-0.18.20","name":"npm:@esbuild/android-x64","versionInfo":"0.18.20","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40esbuild/android-x64@0.18.20","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-esbuild-darwin-arm64-0.16.17","name":"npm:@esbuild/darwin-arm64","versionInfo":"0.16.17","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40esbuild/darwin-arm64@0.16.17","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-esbuild-darwin-arm64-0.18.20","name":"npm:@esbuild/darwin-arm64","versionInfo":"0.18.20","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40esbuild/darwin-arm64@0.18.20","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-esbuild-darwin-x64-0.16.17","name":"npm:@esbuild/darwin-x64","versionInfo":"0.16.17","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40esbuild/darwin-x64@0.16.17","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-esbuild-darwin-x64-0.18.20","name":"npm:@esbuild/darwin-x64","versionInfo":"0.18.20","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40esbuild/darwin-x64@0.18.20","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-esbuild-freebsd-arm64-0.16.17","name":"npm:@esbuild/freebsd-arm64","versionInfo":"0.16.17","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40esbuild/freebsd-arm64@0.16.17","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-esbuild-freebsd-arm64-0.18.20","name":"npm:@esbuild/freebsd-arm64","versionInfo":"0.18.20","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40esbuild/freebsd-arm64@0.18.20","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-esbuild-freebsd-x64-0.16.17","name":"npm:@esbuild/freebsd-x64","versionInfo":"0.16.17","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40esbuild/freebsd-x64@0.16.17","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-esbuild-freebsd-x64-0.18.20","name":"npm:@esbuild/freebsd-x64","versionInfo":"0.18.20","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40esbuild/freebsd-x64@0.18.20","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-esbuild-linux-arm-0.16.17","name":"npm:@esbuild/linux-arm","versionInfo":"0.16.17","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40esbuild/linux-arm@0.16.17","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-esbuild-linux-arm-0.18.20","name":"npm:@esbuild/linux-arm","versionInfo":"0.18.20","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40esbuild/linux-arm@0.18.20","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-esbuild-linux-arm64-0.16.17","name":"npm:@esbuild/linux-arm64","versionInfo":"0.16.17","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40esbuild/linux-arm64@0.16.17","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-esbuild-linux-arm64-0.18.20","name":"npm:@esbuild/linux-arm64","versionInfo":"0.18.20","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40esbuild/linux-arm64@0.18.20","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-esbuild-linux-ia32-0.16.17","name":"npm:@esbuild/linux-ia32","versionInfo":"0.16.17","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40esbuild/linux-ia32@0.16.17","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-esbuild-linux-ia32-0.18.20","name":"npm:@esbuild/linux-ia32","versionInfo":"0.18.20","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40esbuild/linux-ia32@0.18.20","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-esbuild-linux-loong64-0.16.17","name":"npm:@esbuild/linux-loong64","versionInfo":"0.16.17","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40esbuild/linux-loong64@0.16.17","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-esbuild-linux-loong64-0.18.20","name":"npm:@esbuild/linux-loong64","versionInfo":"0.18.20","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40esbuild/linux-loong64@0.18.20","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-esbuild-linux-mips64el-0.16.17","name":"npm:@esbuild/linux-mips64el","versionInfo":"0.16.17","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40esbuild/linux-mips64el@0.16.17","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-esbuild-linux-mips64el-0.18.20","name":"npm:@esbuild/linux-mips64el","versionInfo":"0.18.20","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40esbuild/linux-mips64el@0.18.20","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-esbuild-linux-ppc64-0.16.17","name":"npm:@esbuild/linux-ppc64","versionInfo":"0.16.17","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40esbuild/linux-ppc64@0.16.17","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-esbuild-linux-ppc64-0.18.20","name":"npm:@esbuild/linux-ppc64","versionInfo":"0.18.20","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40esbuild/linux-ppc64@0.18.20","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-esbuild-linux-riscv64-0.16.17","name":"npm:@esbuild/linux-riscv64","versionInfo":"0.16.17","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40esbuild/linux-riscv64@0.16.17","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-esbuild-linux-riscv64-0.18.20","name":"npm:@esbuild/linux-riscv64","versionInfo":"0.18.20","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40esbuild/linux-riscv64@0.18.20","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-esbuild-linux-s390x-0.16.17","name":"npm:@esbuild/linux-s390x","versionInfo":"0.16.17","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40esbuild/linux-s390x@0.16.17","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-esbuild-linux-s390x-0.18.20","name":"npm:@esbuild/linux-s390x","versionInfo":"0.18.20","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40esbuild/linux-s390x@0.18.20","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-esbuild-linux-x64-0.16.17","name":"npm:@esbuild/linux-x64","versionInfo":"0.16.17","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40esbuild/linux-x64@0.16.17","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-esbuild-linux-x64-0.18.20","name":"npm:@esbuild/linux-x64","versionInfo":"0.18.20","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40esbuild/linux-x64@0.18.20","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-esbuild-netbsd-x64-0.16.17","name":"npm:@esbuild/netbsd-x64","versionInfo":"0.16.17","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40esbuild/netbsd-x64@0.16.17","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-esbuild-netbsd-x64-0.18.20","name":"npm:@esbuild/netbsd-x64","versionInfo":"0.18.20","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40esbuild/netbsd-x64@0.18.20","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-esbuild-openbsd-x64-0.16.17","name":"npm:@esbuild/openbsd-x64","versionInfo":"0.16.17","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40esbuild/openbsd-x64@0.16.17","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-esbuild-openbsd-x64-0.18.20","name":"npm:@esbuild/openbsd-x64","versionInfo":"0.18.20","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40esbuild/openbsd-x64@0.18.20","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-esbuild-sunos-x64-0.16.17","name":"npm:@esbuild/sunos-x64","versionInfo":"0.16.17","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40esbuild/sunos-x64@0.16.17","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-esbuild-sunos-x64-0.18.20","name":"npm:@esbuild/sunos-x64","versionInfo":"0.18.20","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40esbuild/sunos-x64@0.18.20","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-esbuild-win32-arm64-0.16.17","name":"npm:@esbuild/win32-arm64","versionInfo":"0.16.17","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40esbuild/win32-arm64@0.16.17","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-esbuild-win32-arm64-0.18.20","name":"npm:@esbuild/win32-arm64","versionInfo":"0.18.20","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40esbuild/win32-arm64@0.18.20","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-esbuild-win32-ia32-0.16.17","name":"npm:@esbuild/win32-ia32","versionInfo":"0.16.17","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40esbuild/win32-ia32@0.16.17","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-esbuild-win32-ia32-0.18.20","name":"npm:@esbuild/win32-ia32","versionInfo":"0.18.20","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40esbuild/win32-ia32@0.18.20","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-esbuild-win32-x64-0.16.17","name":"npm:@esbuild/win32-x64","versionInfo":"0.16.17","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40esbuild/win32-x64@0.16.17","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-esbuild-win32-x64-0.18.20","name":"npm:@esbuild/win32-x64","versionInfo":"0.18.20","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40esbuild/win32-x64@0.18.20","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-eslint-community-eslint-utils-4.4.0","name":"npm:@eslint-community/eslint-utils","versionInfo":"4.4.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40eslint-community/eslint-utils@4.4.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-eslint-community-regexpp-4.10.0","name":"npm:@eslint-community/regexpp","versionInfo":"4.10.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40eslint-community/regexpp@4.10.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-eslint-eslintrc-0.4.3","name":"npm:@eslint/eslintrc","versionInfo":"0.4.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40eslint/eslintrc@0.4.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-eslint-eslintrc-2.1.4","name":"npm:@eslint/eslintrc","versionInfo":"2.1.4","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40eslint/eslintrc@2.1.4","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-eslint-js-8.44.0","name":"npm:@eslint/js","versionInfo":"8.44.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40eslint/js@8.44.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-fastify-busboy-2.1.0","name":"npm:@fastify/busboy","versionInfo":"2.1.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40fastify/busboy@2.1.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-floating-ui-core-1.5.3","name":"npm:@floating-ui/core","versionInfo":"1.5.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40floating-ui/core@1.5.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-floating-ui-dom-1.5.4","name":"npm:@floating-ui/dom","versionInfo":"1.5.4","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40floating-ui/dom@1.5.4","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-floating-ui-react-0.19.2","name":"npm:@floating-ui/react","versionInfo":"0.19.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40floating-ui/react@0.19.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-floating-ui-react-dom-1.3.0","name":"npm:@floating-ui/react-dom","versionInfo":"1.3.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40floating-ui/react-dom@1.3.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-floating-ui-utils-0.2.1","name":"npm:@floating-ui/utils","versionInfo":"0.2.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40floating-ui/utils@0.2.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-formatjs-ecma402-abstract-1.18.2","name":"npm:@formatjs/ecma402-abstract","versionInfo":"1.18.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40formatjs/ecma402-abstract@1.18.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-formatjs-fast-memoize-2.2.0","name":"npm:@formatjs/fast-memoize","versionInfo":"2.2.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40formatjs/fast-memoize@2.2.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-formatjs-icu-messageformat-parser-2.7.5","name":"npm:@formatjs/icu-messageformat-parser","versionInfo":"2.7.5","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40formatjs/icu-messageformat-parser@2.7.5","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-formatjs-icu-skeleton-parser-1.7.2","name":"npm:@formatjs/icu-skeleton-parser","versionInfo":"1.7.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40formatjs/icu-skeleton-parser@1.7.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-formatjs-intl-localematcher-0.5.4","name":"npm:@formatjs/intl-localematcher","versionInfo":"0.5.4","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40formatjs/intl-localematcher@0.5.4","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-humanwhocodes-config-array-0.5.0","name":"npm:@humanwhocodes/config-array","versionInfo":"0.5.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40humanwhocodes/config-array@0.5.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-humanwhocodes-config-array-0.11.14","name":"npm:@humanwhocodes/config-array","versionInfo":"0.11.14","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40humanwhocodes/config-array@0.11.14","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-humanwhocodes-module-importer-1.0.1","name":"npm:@humanwhocodes/module-importer","versionInfo":"1.0.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40humanwhocodes/module-importer@1.0.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-humanwhocodes-object-schema-1.2.1","name":"npm:@humanwhocodes/object-schema","versionInfo":"1.2.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"BSD-3-Clause","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40humanwhocodes/object-schema@1.2.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-humanwhocodes-object-schema-2.0.2","name":"npm:@humanwhocodes/object-schema","versionInfo":"2.0.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"BSD-3-Clause","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40humanwhocodes/object-schema@2.0.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-internationalized-date-3.5.1","name":"npm:@internationalized/date","versionInfo":"3.5.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40internationalized/date@3.5.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-internationalized-message-3.1.1","name":"npm:@internationalized/message","versionInfo":"3.1.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40internationalized/message@3.1.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-internationalized-number-3.5.0","name":"npm:@internationalized/number","versionInfo":"3.5.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40internationalized/number@3.5.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-internationalized-string-3.2.0","name":"npm:@internationalized/string","versionInfo":"3.2.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40internationalized/string@3.2.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-istanbuljs-load-nyc-config-1.1.0","name":"npm:@istanbuljs/load-nyc-config","versionInfo":"1.1.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"ISC","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40istanbuljs/load-nyc-config@1.1.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-istanbuljs-schema-0.1.3","name":"npm:@istanbuljs/schema","versionInfo":"0.1.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40istanbuljs/schema@0.1.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-jest-console-29.7.0","name":"npm:@jest/console","versionInfo":"29.7.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40jest/console@29.7.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-jest-core-29.7.0","name":"npm:@jest/core","versionInfo":"29.7.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40jest/core@29.7.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-jest-environment-29.7.0","name":"npm:@jest/environment","versionInfo":"29.7.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40jest/environment@29.7.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-jest-expect-29.7.0","name":"npm:@jest/expect","versionInfo":"29.7.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40jest/expect@29.7.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-jest-expect-utils-29.7.0","name":"npm:@jest/expect-utils","versionInfo":"29.7.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40jest/expect-utils@29.7.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-jest-fake-timers-29.7.0","name":"npm:@jest/fake-timers","versionInfo":"29.7.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40jest/fake-timers@29.7.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-jest-globals-29.7.0","name":"npm:@jest/globals","versionInfo":"29.7.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40jest/globals@29.7.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-jest-reporters-29.7.0","name":"npm:@jest/reporters","versionInfo":"29.7.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40jest/reporters@29.7.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-jest-schemas-29.6.3","name":"npm:@jest/schemas","versionInfo":"29.6.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40jest/schemas@29.6.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-jest-source-map-29.6.3","name":"npm:@jest/source-map","versionInfo":"29.6.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40jest/source-map@29.6.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-jest-test-result-29.7.0","name":"npm:@jest/test-result","versionInfo":"29.7.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40jest/test-result@29.7.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-jest-test-sequencer-29.7.0","name":"npm:@jest/test-sequencer","versionInfo":"29.7.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40jest/test-sequencer@29.7.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-jest-transform-29.7.0","name":"npm:@jest/transform","versionInfo":"29.7.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40jest/transform@29.7.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-jest-types-26.6.2","name":"npm:@jest/types","versionInfo":"26.6.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40jest/types@26.6.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-jest-types-29.6.3","name":"npm:@jest/types","versionInfo":"29.6.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40jest/types@29.6.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-jridgewell-gen-mapping-0.3.3","name":"npm:@jridgewell/gen-mapping","versionInfo":"0.3.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40jridgewell/gen-mapping@0.3.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-jridgewell-resolve-uri-3.1.1","name":"npm:@jridgewell/resolve-uri","versionInfo":"3.1.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40jridgewell/resolve-uri@3.1.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-jridgewell-set-array-1.1.2","name":"npm:@jridgewell/set-array","versionInfo":"1.1.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40jridgewell/set-array@1.1.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-jridgewell-source-map-0.3.5","name":"npm:@jridgewell/source-map","versionInfo":"0.3.5","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40jridgewell/source-map@0.3.5","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-jridgewell-sourcemap-codec-1.4.15","name":"npm:@jridgewell/sourcemap-codec","versionInfo":"1.4.15","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40jridgewell/sourcemap-codec@1.4.15","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-jridgewell-trace-mapping-0.3.9","name":"npm:@jridgewell/trace-mapping","versionInfo":"0.3.9","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40jridgewell/trace-mapping@0.3.9","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-jridgewell-trace-mapping-0.3.22","name":"npm:@jridgewell/trace-mapping","versionInfo":"0.3.22","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40jridgewell/trace-mapping@0.3.22","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-mantine-core-5.10.5","name":"npm:@mantine/core","versionInfo":"5.10.5","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40mantine/core@5.10.5","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-mantine-dates-5.10.5","name":"npm:@mantine/dates","versionInfo":"5.10.5","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40mantine/dates@5.10.5","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-mantine-hooks-5.10.5","name":"npm:@mantine/hooks","versionInfo":"5.10.5","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40mantine/hooks@5.10.5","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-mantine-styles-5.10.5","name":"npm:@mantine/styles","versionInfo":"5.10.5","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40mantine/styles@5.10.5","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-mantine-utils-5.10.5","name":"npm:@mantine/utils","versionInfo":"5.10.5","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40mantine/utils@5.10.5","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-nodelib-fs.scandir-2.1.5","name":"npm:@nodelib/fs.scandir","versionInfo":"2.1.5","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40nodelib/fs.scandir@2.1.5","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-nodelib-fs.stat-2.0.5","name":"npm:@nodelib/fs.stat","versionInfo":"2.0.5","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40nodelib/fs.stat@2.0.5","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-nodelib-fs.walk-1.2.8","name":"npm:@nodelib/fs.walk","versionInfo":"1.2.8","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40nodelib/fs.walk@1.2.8","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-radix-ui-number-1.0.0","name":"npm:@radix-ui/number","versionInfo":"1.0.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40radix-ui/number@1.0.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-radix-ui-primitive-1.0.0","name":"npm:@radix-ui/primitive","versionInfo":"1.0.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40radix-ui/primitive@1.0.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-radix-ui-react-compose-refs-1.0.0","name":"npm:@radix-ui/react-compose-refs","versionInfo":"1.0.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40radix-ui/react-compose-refs@1.0.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-radix-ui-react-context-1.0.0","name":"npm:@radix-ui/react-context","versionInfo":"1.0.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40radix-ui/react-context@1.0.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-radix-ui-react-direction-1.0.0","name":"npm:@radix-ui/react-direction","versionInfo":"1.0.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40radix-ui/react-direction@1.0.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-radix-ui-react-presence-1.0.0","name":"npm:@radix-ui/react-presence","versionInfo":"1.0.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40radix-ui/react-presence@1.0.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-radix-ui-react-primitive-1.0.1","name":"npm:@radix-ui/react-primitive","versionInfo":"1.0.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40radix-ui/react-primitive@1.0.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-radix-ui-react-scroll-area-1.0.2","name":"npm:@radix-ui/react-scroll-area","versionInfo":"1.0.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40radix-ui/react-scroll-area@1.0.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-radix-ui-react-slot-1.0.1","name":"npm:@radix-ui/react-slot","versionInfo":"1.0.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40radix-ui/react-slot@1.0.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-radix-ui-react-use-callback-ref-1.0.0","name":"npm:@radix-ui/react-use-callback-ref","versionInfo":"1.0.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40radix-ui/react-use-callback-ref@1.0.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-radix-ui-react-use-layout-effect-1.0.0","name":"npm:@radix-ui/react-use-layout-effect","versionInfo":"1.0.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40radix-ui/react-use-layout-effect@1.0.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-react-aria-button-3.5.1","name":"npm:@react-aria/button","versionInfo":"3.5.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40react-aria/button@3.5.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-react-aria-checkbox-3.4.1","name":"npm:@react-aria/checkbox","versionInfo":"3.4.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40react-aria/checkbox@3.4.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-react-aria-combobox-3.3.1","name":"npm:@react-aria/combobox","versionInfo":"3.3.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40react-aria/combobox@3.3.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-react-aria-dialog-3.5.3","name":"npm:@react-aria/dialog","versionInfo":"3.5.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40react-aria/dialog@3.5.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-react-aria-focus-3.13.0","name":"npm:@react-aria/focus","versionInfo":"3.13.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40react-aria/focus@3.13.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-react-aria-focus-3.16.0","name":"npm:@react-aria/focus","versionInfo":"3.16.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40react-aria/focus@3.16.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-react-aria-i18n-3.8.0","name":"npm:@react-aria/i18n","versionInfo":"3.8.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40react-aria/i18n@3.8.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-react-aria-i18n-3.10.0","name":"npm:@react-aria/i18n","versionInfo":"3.10.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40react-aria/i18n@3.10.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-react-aria-interactions-3.20.1","name":"npm:@react-aria/interactions","versionInfo":"3.20.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40react-aria/interactions@3.20.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-react-aria-label-3.7.4","name":"npm:@react-aria/label","versionInfo":"3.7.4","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40react-aria/label@3.7.4","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-react-aria-listbox-3.5.1","name":"npm:@react-aria/listbox","versionInfo":"3.5.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40react-aria/listbox@3.5.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-react-aria-live-announcer-3.3.1","name":"npm:@react-aria/live-announcer","versionInfo":"3.3.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40react-aria/live-announcer@3.3.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-react-aria-menu-3.12.0","name":"npm:@react-aria/menu","versionInfo":"3.12.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40react-aria/menu@3.12.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-react-aria-overlays-3.9.1","name":"npm:@react-aria/overlays","versionInfo":"3.9.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40react-aria/overlays@3.9.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-react-aria-overlays-3.20.0","name":"npm:@react-aria/overlays","versionInfo":"3.20.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40react-aria/overlays@3.20.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-react-aria-radio-3.6.2","name":"npm:@react-aria/radio","versionInfo":"3.6.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40react-aria/radio@3.6.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-react-aria-searchfield-3.3.1","name":"npm:@react-aria/searchfield","versionInfo":"3.3.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40react-aria/searchfield@3.3.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-react-aria-selection-3.17.3","name":"npm:@react-aria/selection","versionInfo":"3.17.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40react-aria/selection@3.17.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-react-aria-ssr-3.9.1","name":"npm:@react-aria/ssr","versionInfo":"3.9.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40react-aria/ssr@3.9.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-react-aria-switch-3.5.2","name":"npm:@react-aria/switch","versionInfo":"3.5.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40react-aria/switch@3.5.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-react-aria-textfield-3.6.1","name":"npm:@react-aria/textfield","versionInfo":"3.6.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40react-aria/textfield@3.6.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-react-aria-toggle-3.10.0","name":"npm:@react-aria/toggle","versionInfo":"3.10.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40react-aria/toggle@3.10.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-react-aria-utils-3.18.0","name":"npm:@react-aria/utils","versionInfo":"3.18.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40react-aria/utils@3.18.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-react-aria-utils-3.23.0","name":"npm:@react-aria/utils","versionInfo":"3.23.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40react-aria/utils@3.23.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-react-aria-visually-hidden-3.8.2","name":"npm:@react-aria/visually-hidden","versionInfo":"3.8.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40react-aria/visually-hidden@3.8.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-react-aria-visually-hidden-3.8.8","name":"npm:@react-aria/visually-hidden","versionInfo":"3.8.8","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40react-aria/visually-hidden@3.8.8","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-react-dnd-asap-4.0.1","name":"npm:@react-dnd/asap","versionInfo":"4.0.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40react-dnd/asap@4.0.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-react-dnd-asap-5.0.2","name":"npm:@react-dnd/asap","versionInfo":"5.0.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40react-dnd/asap@5.0.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-react-dnd-invariant-2.0.0","name":"npm:@react-dnd/invariant","versionInfo":"2.0.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40react-dnd/invariant@2.0.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-react-dnd-invariant-4.0.2","name":"npm:@react-dnd/invariant","versionInfo":"4.0.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40react-dnd/invariant@4.0.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-react-dnd-shallowequal-2.0.0","name":"npm:@react-dnd/shallowequal","versionInfo":"2.0.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40react-dnd/shallowequal@2.0.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-react-stately-checkbox-3.6.1","name":"npm:@react-stately/checkbox","versionInfo":"3.6.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40react-stately/checkbox@3.6.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-react-stately-collections-3.9.0","name":"npm:@react-stately/collections","versionInfo":"3.9.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40react-stately/collections@3.9.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-react-stately-collections-3.10.4","name":"npm:@react-stately/collections","versionInfo":"3.10.4","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40react-stately/collections@3.10.4","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-react-stately-combobox-3.5.2","name":"npm:@react-stately/combobox","versionInfo":"3.5.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40react-stately/combobox@3.5.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-react-stately-flags-3.0.0","name":"npm:@react-stately/flags","versionInfo":"3.0.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40react-stately/flags@3.0.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-react-stately-form-3.0.0","name":"npm:@react-stately/form","versionInfo":"3.0.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40react-stately/form@3.0.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-react-stately-grid-3.8.4","name":"npm:@react-stately/grid","versionInfo":"3.8.4","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40react-stately/grid@3.8.4","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-react-stately-layout-3.13.5","name":"npm:@react-stately/layout","versionInfo":"3.13.5","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40react-stately/layout@3.13.5","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-react-stately-list-3.9.0","name":"npm:@react-stately/list","versionInfo":"3.9.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40react-stately/list@3.9.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-react-stately-list-3.10.2","name":"npm:@react-stately/list","versionInfo":"3.10.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40react-stately/list@3.10.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-react-stately-menu-3.6.0","name":"npm:@react-stately/menu","versionInfo":"3.6.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40react-stately/menu@3.6.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-react-stately-overlays-3.6.0","name":"npm:@react-stately/overlays","versionInfo":"3.6.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40react-stately/overlays@3.6.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-react-stately-overlays-3.6.4","name":"npm:@react-stately/overlays","versionInfo":"3.6.4","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40react-stately/overlays@3.6.4","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-react-stately-radio-3.8.2","name":"npm:@react-stately/radio","versionInfo":"3.8.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40react-stately/radio@3.8.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-react-stately-searchfield-3.4.3","name":"npm:@react-stately/searchfield","versionInfo":"3.4.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40react-stately/searchfield@3.4.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-react-stately-select-3.6.1","name":"npm:@react-stately/select","versionInfo":"3.6.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40react-stately/select@3.6.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-react-stately-selection-3.14.2","name":"npm:@react-stately/selection","versionInfo":"3.14.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40react-stately/selection@3.14.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-react-stately-table-3.11.4","name":"npm:@react-stately/table","versionInfo":"3.11.4","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40react-stately/table@3.11.4","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-react-stately-toggle-3.7.0","name":"npm:@react-stately/toggle","versionInfo":"3.7.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40react-stately/toggle@3.7.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-react-stately-tree-3.7.5","name":"npm:@react-stately/tree","versionInfo":"3.7.5","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40react-stately/tree@3.7.5","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-react-stately-utils-3.9.0","name":"npm:@react-stately/utils","versionInfo":"3.9.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40react-stately/utils@3.9.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-react-stately-virtualizer-3.6.6","name":"npm:@react-stately/virtualizer","versionInfo":"3.6.6","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40react-stately/virtualizer@3.6.6","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-react-types-button-3.7.3","name":"npm:@react-types/button","versionInfo":"3.7.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40react-types/button@3.7.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-react-types-button-3.9.1","name":"npm:@react-types/button","versionInfo":"3.9.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40react-types/button@3.9.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-react-types-checkbox-3.4.4","name":"npm:@react-types/checkbox","versionInfo":"3.4.4","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40react-types/checkbox@3.4.4","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-react-types-checkbox-3.6.0","name":"npm:@react-types/checkbox","versionInfo":"3.6.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40react-types/checkbox@3.6.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-react-types-combobox-3.6.2","name":"npm:@react-types/combobox","versionInfo":"3.6.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40react-types/combobox@3.6.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-react-types-dialog-3.5.7","name":"npm:@react-types/dialog","versionInfo":"3.5.7","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40react-types/dialog@3.5.7","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-react-types-grid-3.2.3","name":"npm:@react-types/grid","versionInfo":"3.2.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40react-types/grid@3.2.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-react-types-listbox-3.4.6","name":"npm:@react-types/listbox","versionInfo":"3.4.6","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40react-types/listbox@3.4.6","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-react-types-menu-3.9.6","name":"npm:@react-types/menu","versionInfo":"3.9.6","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40react-types/menu@3.9.6","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-react-types-overlays-3.8.4","name":"npm:@react-types/overlays","versionInfo":"3.8.4","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40react-types/overlays@3.8.4","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-react-types-radio-3.4.2","name":"npm:@react-types/radio","versionInfo":"3.4.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40react-types/radio@3.4.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-react-types-searchfield-3.5.2","name":"npm:@react-types/searchfield","versionInfo":"3.5.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40react-types/searchfield@3.5.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-react-types-select-3.9.1","name":"npm:@react-types/select","versionInfo":"3.9.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40react-types/select@3.9.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-react-types-shared-3.18.1","name":"npm:@react-types/shared","versionInfo":"3.18.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40react-types/shared@3.18.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-react-types-shared-3.22.0","name":"npm:@react-types/shared","versionInfo":"3.22.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40react-types/shared@3.22.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-react-types-switch-3.3.2","name":"npm:@react-types/switch","versionInfo":"3.3.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40react-types/switch@3.3.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-react-types-table-3.9.2","name":"npm:@react-types/table","versionInfo":"3.9.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40react-types/table@3.9.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-react-types-textfield-3.9.0","name":"npm:@react-types/textfield","versionInfo":"3.9.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40react-types/textfield@3.9.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-remix-run-router-1.7.2","name":"npm:@remix-run/router","versionInfo":"1.7.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40remix-run/router@1.7.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-sinclair-typebox-0.27.8","name":"npm:@sinclair/typebox","versionInfo":"0.27.8","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40sinclair/typebox@0.27.8","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-sinonjs-commons-3.0.0","name":"npm:@sinonjs/commons","versionInfo":"3.0.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"BSD-3-Clause","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40sinonjs/commons@3.0.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-sinonjs-fake-timers-10.3.0","name":"npm:@sinonjs/fake-timers","versionInfo":"10.3.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"BSD-3-Clause","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40sinonjs/fake-timers@10.3.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-smithy-abort-controller-1.1.0","name":"npm:@smithy/abort-controller","versionInfo":"1.1.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40smithy/abort-controller@1.1.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-smithy-config-resolver-1.1.0","name":"npm:@smithy/config-resolver","versionInfo":"1.1.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40smithy/config-resolver@1.1.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-smithy-credential-provider-imds-1.1.0","name":"npm:@smithy/credential-provider-imds","versionInfo":"1.1.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40smithy/credential-provider-imds@1.1.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-smithy-eventstream-codec-1.1.0","name":"npm:@smithy/eventstream-codec","versionInfo":"1.1.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40smithy/eventstream-codec@1.1.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-smithy-fetch-http-handler-1.1.0","name":"npm:@smithy/fetch-http-handler","versionInfo":"1.1.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40smithy/fetch-http-handler@1.1.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-smithy-hash-node-1.1.0","name":"npm:@smithy/hash-node","versionInfo":"1.1.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40smithy/hash-node@1.1.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-smithy-invalid-dependency-1.1.0","name":"npm:@smithy/invalid-dependency","versionInfo":"1.1.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40smithy/invalid-dependency@1.1.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-smithy-is-array-buffer-1.1.0","name":"npm:@smithy/is-array-buffer","versionInfo":"1.1.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40smithy/is-array-buffer@1.1.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-smithy-middleware-content-length-1.1.0","name":"npm:@smithy/middleware-content-length","versionInfo":"1.1.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40smithy/middleware-content-length@1.1.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-smithy-middleware-endpoint-1.1.0","name":"npm:@smithy/middleware-endpoint","versionInfo":"1.1.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40smithy/middleware-endpoint@1.1.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-smithy-middleware-retry-1.1.0","name":"npm:@smithy/middleware-retry","versionInfo":"1.1.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40smithy/middleware-retry@1.1.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-smithy-middleware-serde-1.1.0","name":"npm:@smithy/middleware-serde","versionInfo":"1.1.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40smithy/middleware-serde@1.1.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-smithy-middleware-stack-1.1.0","name":"npm:@smithy/middleware-stack","versionInfo":"1.1.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40smithy/middleware-stack@1.1.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-smithy-node-config-provider-1.1.0","name":"npm:@smithy/node-config-provider","versionInfo":"1.1.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40smithy/node-config-provider@1.1.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-smithy-node-http-handler-1.1.0","name":"npm:@smithy/node-http-handler","versionInfo":"1.1.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40smithy/node-http-handler@1.1.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-smithy-property-provider-1.2.0","name":"npm:@smithy/property-provider","versionInfo":"1.2.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40smithy/property-provider@1.2.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-smithy-protocol-http-1.2.0","name":"npm:@smithy/protocol-http","versionInfo":"1.2.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40smithy/protocol-http@1.2.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-smithy-querystring-builder-1.1.0","name":"npm:@smithy/querystring-builder","versionInfo":"1.1.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40smithy/querystring-builder@1.1.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-smithy-querystring-parser-1.1.0","name":"npm:@smithy/querystring-parser","versionInfo":"1.1.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40smithy/querystring-parser@1.1.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-smithy-service-error-classification-1.1.0","name":"npm:@smithy/service-error-classification","versionInfo":"1.1.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40smithy/service-error-classification@1.1.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-smithy-shared-ini-file-loader-1.1.0","name":"npm:@smithy/shared-ini-file-loader","versionInfo":"1.1.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40smithy/shared-ini-file-loader@1.1.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-smithy-signature-v4-1.1.0","name":"npm:@smithy/signature-v4","versionInfo":"1.1.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40smithy/signature-v4@1.1.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-smithy-smithy-client-1.1.0","name":"npm:@smithy/smithy-client","versionInfo":"1.1.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40smithy/smithy-client@1.1.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-smithy-types-1.2.0","name":"npm:@smithy/types","versionInfo":"1.2.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40smithy/types@1.2.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-smithy-url-parser-1.1.0","name":"npm:@smithy/url-parser","versionInfo":"1.1.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40smithy/url-parser@1.1.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-smithy-util-base64-1.1.0","name":"npm:@smithy/util-base64","versionInfo":"1.1.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40smithy/util-base64@1.1.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-smithy-util-body-length-browser-1.1.0","name":"npm:@smithy/util-body-length-browser","versionInfo":"1.1.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40smithy/util-body-length-browser@1.1.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-smithy-util-body-length-node-1.1.0","name":"npm:@smithy/util-body-length-node","versionInfo":"1.1.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40smithy/util-body-length-node@1.1.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-smithy-util-buffer-from-1.1.0","name":"npm:@smithy/util-buffer-from","versionInfo":"1.1.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40smithy/util-buffer-from@1.1.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-smithy-util-config-provider-1.1.0","name":"npm:@smithy/util-config-provider","versionInfo":"1.1.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40smithy/util-config-provider@1.1.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-smithy-util-defaults-mode-browser-1.1.0","name":"npm:@smithy/util-defaults-mode-browser","versionInfo":"1.1.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40smithy/util-defaults-mode-browser@1.1.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-smithy-util-defaults-mode-node-1.1.0","name":"npm:@smithy/util-defaults-mode-node","versionInfo":"1.1.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40smithy/util-defaults-mode-node@1.1.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-smithy-util-hex-encoding-1.1.0","name":"npm:@smithy/util-hex-encoding","versionInfo":"1.1.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40smithy/util-hex-encoding@1.1.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-smithy-util-middleware-1.1.0","name":"npm:@smithy/util-middleware","versionInfo":"1.1.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40smithy/util-middleware@1.1.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-smithy-util-retry-1.1.0","name":"npm:@smithy/util-retry","versionInfo":"1.1.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40smithy/util-retry@1.1.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-smithy-util-stream-1.1.0","name":"npm:@smithy/util-stream","versionInfo":"1.1.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40smithy/util-stream@1.1.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-smithy-util-uri-escape-1.1.0","name":"npm:@smithy/util-uri-escape","versionInfo":"1.1.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40smithy/util-uri-escape@1.1.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-smithy-util-utf8-1.1.0","name":"npm:@smithy/util-utf8","versionInfo":"1.1.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40smithy/util-utf8@1.1.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-swc-helpers-0.4.14","name":"npm:@swc/helpers","versionInfo":"0.4.14","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40swc/helpers@0.4.14","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-swc-helpers-0.4.36","name":"npm:@swc/helpers","versionInfo":"0.4.36","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40swc/helpers@0.4.36","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-swc-helpers-0.5.3","name":"npm:@swc/helpers","versionInfo":"0.5.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40swc/helpers@0.5.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-testing-library-dom-7.31.2","name":"npm:@testing-library/dom","versionInfo":"7.31.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40testing-library/dom@7.31.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-testing-library-dom-8.20.1","name":"npm:@testing-library/dom","versionInfo":"8.20.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40testing-library/dom@8.20.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-testing-library-jest-dom-5.17.0","name":"npm:@testing-library/jest-dom","versionInfo":"5.17.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40testing-library/jest-dom@5.17.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-testing-library-react-11.2.7","name":"npm:@testing-library/react","versionInfo":"11.2.7","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40testing-library/react@11.2.7","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-testing-library-react-hooks-5.1.3","name":"npm:@testing-library/react-hooks","versionInfo":"5.1.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40testing-library/react-hooks@5.1.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-testing-library-user-event-14.4.3","name":"npm:@testing-library/user-event","versionInfo":"14.4.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40testing-library/user-event@14.4.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-tootallnate-once-2.0.0","name":"npm:@tootallnate/once","versionInfo":"2.0.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40tootallnate/once@2.0.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-tsconfig-node10-1.0.9","name":"npm:@tsconfig/node10","versionInfo":"1.0.9","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40tsconfig/node10@1.0.9","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-tsconfig-node12-1.0.11","name":"npm:@tsconfig/node12","versionInfo":"1.0.11","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40tsconfig/node12@1.0.11","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-tsconfig-node14-1.0.3","name":"npm:@tsconfig/node14","versionInfo":"1.0.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40tsconfig/node14@1.0.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-tsconfig-node16-1.0.4","name":"npm:@tsconfig/node16","versionInfo":"1.0.4","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40tsconfig/node16@1.0.4","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-types-aria-query-4.2.2","name":"npm:@types/aria-query","versionInfo":"4.2.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40types/aria-query@4.2.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-types-aria-query-5.0.4","name":"npm:@types/aria-query","versionInfo":"5.0.4","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40types/aria-query@5.0.4","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-types-babel-core-7.20.5","name":"npm:@types/babel__core","versionInfo":"7.20.5","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40types/babel__core@7.20.5","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-types-babel-generator-7.6.8","name":"npm:@types/babel__generator","versionInfo":"7.6.8","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40types/babel__generator@7.6.8","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-types-babel-template-7.4.4","name":"npm:@types/babel__template","versionInfo":"7.4.4","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40types/babel__template@7.4.4","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-types-babel-traverse-7.20.5","name":"npm:@types/babel__traverse","versionInfo":"7.20.5","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40types/babel__traverse@7.20.5","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-types-color-3.0.3","name":"npm:@types/color","versionInfo":"3.0.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40types/color@3.0.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-types-color-convert-2.0.3","name":"npm:@types/color-convert","versionInfo":"2.0.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40types/color-convert@2.0.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-types-color-name-1.1.3","name":"npm:@types/color-name","versionInfo":"1.1.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40types/color-name@1.1.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-types-crypto-js-4.1.3","name":"npm:@types/crypto-js","versionInfo":"4.1.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40types/crypto-js@4.1.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-types-cytoscape-3.19.10","name":"npm:@types/cytoscape","versionInfo":"3.19.10","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40types/cytoscape@3.19.10","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-types-eslint-8.56.2","name":"npm:@types/eslint","versionInfo":"8.56.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40types/eslint@8.56.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-types-eslint-scope-3.7.7","name":"npm:@types/eslint-scope","versionInfo":"3.7.7","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40types/eslint-scope@3.7.7","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-types-estree-0.0.51","name":"npm:@types/estree","versionInfo":"0.0.51","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40types/estree@0.0.51","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-types-file-saver-2.0.5","name":"npm:@types/file-saver","versionInfo":"2.0.5","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40types/file-saver@2.0.5","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-types-flat-5.0.2","name":"npm:@types/flat","versionInfo":"5.0.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40types/flat@5.0.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-types-graceful-fs-4.1.9","name":"npm:@types/graceful-fs","versionInfo":"4.1.9","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40types/graceful-fs@4.1.9","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-types-history-4.7.11","name":"npm:@types/history","versionInfo":"4.7.11","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40types/history@4.7.11","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-types-hoist-non-react-statics-3.3.5","name":"npm:@types/hoist-non-react-statics","versionInfo":"3.3.5","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40types/hoist-non-react-statics@3.3.5","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-types-istanbul-lib-coverage-2.0.6","name":"npm:@types/istanbul-lib-coverage","versionInfo":"2.0.6","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40types/istanbul-lib-coverage@2.0.6","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-types-istanbul-lib-report-3.0.3","name":"npm:@types/istanbul-lib-report","versionInfo":"3.0.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40types/istanbul-lib-report@3.0.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-types-istanbul-reports-3.0.4","name":"npm:@types/istanbul-reports","versionInfo":"3.0.4","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40types/istanbul-reports@3.0.4","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-types-jest-26.0.24","name":"npm:@types/jest","versionInfo":"26.0.24","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40types/jest@26.0.24","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-types-jsdom-20.0.1","name":"npm:@types/jsdom","versionInfo":"20.0.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40types/jsdom@20.0.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-types-json-schema-7.0.15","name":"npm:@types/json-schema","versionInfo":"7.0.15","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40types/json-schema@7.0.15","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-types-lodash-4.14.195","name":"npm:@types/lodash","versionInfo":"4.14.195","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40types/lodash@4.14.195","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-types-node-17.0.45","name":"npm:@types/node","versionInfo":"17.0.45","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40types/node@17.0.45","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-types-papaparse-5.3.7","name":"npm:@types/papaparse","versionInfo":"5.3.7","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40types/papaparse@5.3.7","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-types-parse-json-4.0.2","name":"npm:@types/parse-json","versionInfo":"4.0.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40types/parse-json@4.0.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-types-prop-types-15.7.11","name":"npm:@types/prop-types","versionInfo":"15.7.11","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40types/prop-types@15.7.11","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-types-react-17.0.62","name":"npm:@types/react","versionInfo":"17.0.62","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40types/react@17.0.62","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-types-react-beautiful-dnd-13.1.4","name":"npm:@types/react-beautiful-dnd","versionInfo":"13.1.4","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40types/react-beautiful-dnd@13.1.4","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-types-react-dom-17.0.20","name":"npm:@types/react-dom","versionInfo":"17.0.20","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40types/react-dom@17.0.20","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-types-react-redux-7.1.33","name":"npm:@types/react-redux","versionInfo":"7.1.33","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40types/react-redux@7.1.33","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-types-react-router-5.1.20","name":"npm:@types/react-router","versionInfo":"5.1.20","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40types/react-router@5.1.20","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-types-react-router-dom-5.3.3","name":"npm:@types/react-router-dom","versionInfo":"5.3.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40types/react-router-dom@5.3.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-types-react-slick-0.23.10","name":"npm:@types/react-slick","versionInfo":"0.23.10","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40types/react-slick@0.23.10","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-types-react-table-7.7.14","name":"npm:@types/react-table","versionInfo":"7.7.14","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40types/react-table@7.7.14","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-types-react-test-renderer-18.0.7","name":"npm:@types/react-test-renderer","versionInfo":"18.0.7","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40types/react-test-renderer@18.0.7","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-types-react-transition-group-4.4.6","name":"npm:@types/react-transition-group","versionInfo":"4.4.6","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40types/react-transition-group@4.4.6","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-types-scheduler-0.16.8","name":"npm:@types/scheduler","versionInfo":"0.16.8","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40types/scheduler@0.16.8","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-types-semver-7.5.6","name":"npm:@types/semver","versionInfo":"7.5.6","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40types/semver@7.5.6","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-types-stack-utils-2.0.3","name":"npm:@types/stack-utils","versionInfo":"2.0.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40types/stack-utils@2.0.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-types-testing-library-jest-dom-5.14.9","name":"npm:@types/testing-library__jest-dom","versionInfo":"5.14.9","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40types/testing-library__jest-dom@5.14.9","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-types-tough-cookie-4.0.5","name":"npm:@types/tough-cookie","versionInfo":"4.0.5","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40types/tough-cookie@4.0.5","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-types-uuid-8.3.4","name":"npm:@types/uuid","versionInfo":"8.3.4","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40types/uuid@8.3.4","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-types-yargs-15.0.19","name":"npm:@types/yargs","versionInfo":"15.0.19","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40types/yargs@15.0.19","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-types-yargs-17.0.32","name":"npm:@types/yargs","versionInfo":"17.0.32","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40types/yargs@17.0.32","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-types-yargs-parser-21.0.3","name":"npm:@types/yargs-parser","versionInfo":"21.0.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40types/yargs-parser@21.0.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-typescript-eslint-eslint-plugin-5.62.0","name":"npm:@typescript-eslint/eslint-plugin","versionInfo":"5.62.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40typescript-eslint/eslint-plugin@5.62.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-typescript-eslint-parser-5.62.0","name":"npm:@typescript-eslint/parser","versionInfo":"5.62.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"BSD-2-Clause","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40typescript-eslint/parser@5.62.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-typescript-eslint-scope-manager-5.62.0","name":"npm:@typescript-eslint/scope-manager","versionInfo":"5.62.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40typescript-eslint/scope-manager@5.62.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-typescript-eslint-type-utils-5.62.0","name":"npm:@typescript-eslint/type-utils","versionInfo":"5.62.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40typescript-eslint/type-utils@5.62.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-typescript-eslint-types-5.62.0","name":"npm:@typescript-eslint/types","versionInfo":"5.62.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40typescript-eslint/types@5.62.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-typescript-eslint-typescript-estree-5.62.0","name":"npm:@typescript-eslint/typescript-estree","versionInfo":"5.62.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"BSD-2-Clause","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40typescript-eslint/typescript-estree@5.62.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-typescript-eslint-utils-5.62.0","name":"npm:@typescript-eslint/utils","versionInfo":"5.62.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40typescript-eslint/utils@5.62.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-typescript-eslint-visitor-keys-5.62.0","name":"npm:@typescript-eslint/visitor-keys","versionInfo":"5.62.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40typescript-eslint/visitor-keys@5.62.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-virtuoso.dev-react-urx-0.2.13","name":"npm:@virtuoso.dev/react-urx","versionInfo":"0.2.13","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40virtuoso.dev/react-urx@0.2.13","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-virtuoso.dev-urx-0.2.13","name":"npm:@virtuoso.dev/urx","versionInfo":"0.2.13","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40virtuoso.dev/urx@0.2.13","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-vitejs-plugin-react-4.0.3","name":"npm:@vitejs/plugin-react","versionInfo":"4.0.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40vitejs/plugin-react@4.0.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-webassemblyjs-ast-1.11.1","name":"npm:@webassemblyjs/ast","versionInfo":"1.11.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40webassemblyjs/ast@1.11.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-webassemblyjs-floating-point-hex-parser-1.11.1","name":"npm:@webassemblyjs/floating-point-hex-parser","versionInfo":"1.11.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40webassemblyjs/floating-point-hex-parser@1.11.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-webassemblyjs-helper-api-error-1.11.1","name":"npm:@webassemblyjs/helper-api-error","versionInfo":"1.11.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40webassemblyjs/helper-api-error@1.11.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-webassemblyjs-helper-buffer-1.11.1","name":"npm:@webassemblyjs/helper-buffer","versionInfo":"1.11.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40webassemblyjs/helper-buffer@1.11.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-webassemblyjs-helper-numbers-1.11.1","name":"npm:@webassemblyjs/helper-numbers","versionInfo":"1.11.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40webassemblyjs/helper-numbers@1.11.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-webassemblyjs-helper-wasm-bytecode-1.11.1","name":"npm:@webassemblyjs/helper-wasm-bytecode","versionInfo":"1.11.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40webassemblyjs/helper-wasm-bytecode@1.11.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-webassemblyjs-helper-wasm-section-1.11.1","name":"npm:@webassemblyjs/helper-wasm-section","versionInfo":"1.11.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40webassemblyjs/helper-wasm-section@1.11.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-webassemblyjs-ieee754-1.11.1","name":"npm:@webassemblyjs/ieee754","versionInfo":"1.11.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40webassemblyjs/ieee754@1.11.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-webassemblyjs-leb128-1.11.1","name":"npm:@webassemblyjs/leb128","versionInfo":"1.11.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40webassemblyjs/leb128@1.11.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-webassemblyjs-utf8-1.11.1","name":"npm:@webassemblyjs/utf8","versionInfo":"1.11.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40webassemblyjs/utf8@1.11.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-webassemblyjs-wasm-edit-1.11.1","name":"npm:@webassemblyjs/wasm-edit","versionInfo":"1.11.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40webassemblyjs/wasm-edit@1.11.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-webassemblyjs-wasm-gen-1.11.1","name":"npm:@webassemblyjs/wasm-gen","versionInfo":"1.11.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40webassemblyjs/wasm-gen@1.11.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-webassemblyjs-wasm-opt-1.11.1","name":"npm:@webassemblyjs/wasm-opt","versionInfo":"1.11.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40webassemblyjs/wasm-opt@1.11.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-webassemblyjs-wasm-parser-1.11.1","name":"npm:@webassemblyjs/wasm-parser","versionInfo":"1.11.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40webassemblyjs/wasm-parser@1.11.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-webassemblyjs-wast-printer-1.11.1","name":"npm:@webassemblyjs/wast-printer","versionInfo":"1.11.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40webassemblyjs/wast-printer@1.11.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-xtuc-ieee754-1.2.0","name":"npm:@xtuc/ieee754","versionInfo":"1.2.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"BSD-3-Clause","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40xtuc/ieee754@1.2.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-xtuc-long-4.2.2","name":"npm:@xtuc/long","versionInfo":"4.2.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40xtuc/long@4.2.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-zeit-schemas-2.29.0","name":"npm:@zeit/schemas","versionInfo":"2.29.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40zeit/schemas@2.29.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-abab-2.0.6","name":"npm:abab","versionInfo":"2.0.6","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"BSD-3-Clause","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/abab@2.0.6","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-acorn-7.4.1","name":"npm:acorn","versionInfo":"7.4.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/acorn@7.4.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-acorn-8.11.3","name":"npm:acorn","versionInfo":"8.11.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/acorn@8.11.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-acorn-globals-7.0.1","name":"npm:acorn-globals","versionInfo":"7.0.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/acorn-globals@7.0.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-acorn-import-assertions-1.9.0","name":"npm:acorn-import-assertions","versionInfo":"1.9.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/acorn-import-assertions@1.9.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-acorn-jsx-5.3.2","name":"npm:acorn-jsx","versionInfo":"5.3.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/acorn-jsx@5.3.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-acorn-walk-8.3.2","name":"npm:acorn-walk","versionInfo":"8.3.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/acorn-walk@8.3.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-agent-base-6.0.2","name":"npm:agent-base","versionInfo":"6.0.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/agent-base@6.0.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-aggregate-error-3.1.0","name":"npm:aggregate-error","versionInfo":"3.1.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/aggregate-error@3.1.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-ajv-6.12.6","name":"npm:ajv","versionInfo":"6.12.6","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/ajv@6.12.6","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-ajv-8.11.0","name":"npm:ajv","versionInfo":"8.11.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/ajv@8.11.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-ajv-8.12.0","name":"npm:ajv","versionInfo":"8.12.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/ajv@8.12.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-ajv-keywords-3.5.2","name":"npm:ajv-keywords","versionInfo":"3.5.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/ajv-keywords@3.5.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-ansi-align-3.0.1","name":"npm:ansi-align","versionInfo":"3.0.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"ISC","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/ansi-align@3.0.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-ansi-colors-4.1.3","name":"npm:ansi-colors","versionInfo":"4.1.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/ansi-colors@4.1.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-ansi-escapes-4.3.2","name":"npm:ansi-escapes","versionInfo":"4.3.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/ansi-escapes@4.3.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-ansi-regex-5.0.1","name":"npm:ansi-regex","versionInfo":"5.0.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/ansi-regex@5.0.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-ansi-regex-6.0.1","name":"npm:ansi-regex","versionInfo":"6.0.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/ansi-regex@6.0.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-ansi-styles-3.2.1","name":"npm:ansi-styles","versionInfo":"3.2.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/ansi-styles@3.2.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-ansi-styles-4.3.0","name":"npm:ansi-styles","versionInfo":"4.3.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/ansi-styles@4.3.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-ansi-styles-5.2.0","name":"npm:ansi-styles","versionInfo":"5.2.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/ansi-styles@5.2.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-ansi-styles-6.2.1","name":"npm:ansi-styles","versionInfo":"6.2.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/ansi-styles@6.2.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-anymatch-3.1.3","name":"npm:anymatch","versionInfo":"3.1.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"ISC","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/anymatch@3.1.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-arch-2.2.0","name":"npm:arch","versionInfo":"2.2.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/arch@2.2.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-arg-4.1.3","name":"npm:arg","versionInfo":"4.1.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/arg@4.1.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-arg-5.0.2","name":"npm:arg","versionInfo":"5.0.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/arg@5.0.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-argparse-1.0.10","name":"npm:argparse","versionInfo":"1.0.10","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/argparse@1.0.10","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-argparse-2.0.1","name":"npm:argparse","versionInfo":"2.0.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Python-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/argparse@2.0.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-aria-hidden-1.2.3","name":"npm:aria-hidden","versionInfo":"1.2.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/aria-hidden@1.2.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-aria-query-4.2.2","name":"npm:aria-query","versionInfo":"4.2.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/aria-query@4.2.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-aria-query-5.1.3","name":"npm:aria-query","versionInfo":"5.1.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/aria-query@5.1.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-aria-query-5.3.0","name":"npm:aria-query","versionInfo":"5.3.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/aria-query@5.3.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-array-buffer-byte-length-1.0.0","name":"npm:array-buffer-byte-length","versionInfo":"1.0.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/array-buffer-byte-length@1.0.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-array-includes-3.1.7","name":"npm:array-includes","versionInfo":"3.1.7","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/array-includes@3.1.7","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-array-union-2.1.0","name":"npm:array-union","versionInfo":"2.1.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/array-union@2.1.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-array.prototype.flat-1.3.2","name":"npm:array.prototype.flat","versionInfo":"1.3.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/array.prototype.flat@1.3.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-array.prototype.flatmap-1.3.2","name":"npm:array.prototype.flatmap","versionInfo":"1.3.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/array.prototype.flatmap@1.3.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-array.prototype.tosorted-1.1.2","name":"npm:array.prototype.tosorted","versionInfo":"1.1.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/array.prototype.tosorted@1.1.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-arraybuffer.prototype.slice-1.0.2","name":"npm:arraybuffer.prototype.slice","versionInfo":"1.0.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/arraybuffer.prototype.slice@1.0.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-astral-regex-2.0.0","name":"npm:astral-regex","versionInfo":"2.0.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/astral-regex@2.0.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-asynckit-0.4.0","name":"npm:asynckit","versionInfo":"0.4.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/asynckit@0.4.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-available-typed-arrays-1.0.5","name":"npm:available-typed-arrays","versionInfo":"1.0.5","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/available-typed-arrays@1.0.5","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-babel-jest-29.0.0","name":"npm:babel-jest","versionInfo":"29.0.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/babel-jest@29.0.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-babel-jest-29.7.0","name":"npm:babel-jest","versionInfo":"29.7.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/babel-jest@29.7.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-babel-plugin-istanbul-6.1.1","name":"npm:babel-plugin-istanbul","versionInfo":"6.1.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"BSD-3-Clause","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/babel-plugin-istanbul@6.1.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-babel-plugin-jest-hoist-29.6.3","name":"npm:babel-plugin-jest-hoist","versionInfo":"29.6.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/babel-plugin-jest-hoist@29.6.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-babel-plugin-macros-3.1.0","name":"npm:babel-plugin-macros","versionInfo":"3.1.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/babel-plugin-macros@3.1.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-babel-plugin-polyfill-corejs2-0.4.8","name":"npm:babel-plugin-polyfill-corejs2","versionInfo":"0.4.8","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/babel-plugin-polyfill-corejs2@0.4.8","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-babel-plugin-polyfill-corejs3-0.8.7","name":"npm:babel-plugin-polyfill-corejs3","versionInfo":"0.8.7","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/babel-plugin-polyfill-corejs3@0.8.7","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-babel-plugin-polyfill-regenerator-0.5.5","name":"npm:babel-plugin-polyfill-regenerator","versionInfo":"0.5.5","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/babel-plugin-polyfill-regenerator@0.5.5","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-babel-preset-current-node-syntax-1.0.1","name":"npm:babel-preset-current-node-syntax","versionInfo":"1.0.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/babel-preset-current-node-syntax@1.0.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-babel-preset-jest-29.6.3","name":"npm:babel-preset-jest","versionInfo":"29.6.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/babel-preset-jest@29.6.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-big-integer-1.6.52","name":"npm:big-integer","versionInfo":"1.6.52","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Unlicense","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/big-integer@1.6.52","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-big.js-5.2.2","name":"npm:big.js","versionInfo":"5.2.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/big.js@5.2.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-body-parser-1.20.2","name":"npm:body-parser","versionInfo":"1.20.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/body-parser@1.20.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-boxen-7.0.0","name":"npm:boxen","versionInfo":"7.0.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/boxen@7.0.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-brace-expansion-1.1.11","name":"npm:brace-expansion","versionInfo":"1.1.11","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/brace-expansion@1.1.11","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-braces-3.0.2","name":"npm:braces","versionInfo":"3.0.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/braces@3.0.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-broadcast-channel-3.7.0","name":"npm:broadcast-channel","versionInfo":"3.7.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/broadcast-channel@3.7.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-browserslist-4.22.2","name":"npm:browserslist","versionInfo":"4.22.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/browserslist@4.22.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-bs-logger-0.2.6","name":"npm:bs-logger","versionInfo":"0.2.6","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/bs-logger@0.2.6","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-bser-2.1.1","name":"npm:bser","versionInfo":"2.1.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/bser@2.1.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-buffer-from-1.1.2","name":"npm:buffer-from","versionInfo":"1.1.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/buffer-from@1.1.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-bytes-3.0.0","name":"npm:bytes","versionInfo":"3.0.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/bytes@3.0.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-callsites-3.1.0","name":"npm:callsites","versionInfo":"3.1.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/callsites@3.1.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-camelcase-5.3.1","name":"npm:camelcase","versionInfo":"5.3.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/camelcase@5.3.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-camelcase-6.3.0","name":"npm:camelcase","versionInfo":"6.3.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/camelcase@6.3.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-camelcase-7.0.1","name":"npm:camelcase","versionInfo":"7.0.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/camelcase@7.0.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-caniuse-lite-1.0.30001579","name":"npm:caniuse-lite","versionInfo":"1.0.30001579","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"CC-BY-4.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/caniuse-lite@1.0.30001579","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-chalk-2.4.2","name":"npm:chalk","versionInfo":"2.4.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/chalk@2.4.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-chalk-3.0.0","name":"npm:chalk","versionInfo":"3.0.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/chalk@3.0.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-chalk-4.1.2","name":"npm:chalk","versionInfo":"4.1.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/chalk@4.1.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-chalk-5.0.1","name":"npm:chalk","versionInfo":"5.0.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/chalk@5.0.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-chalk-5.2.0","name":"npm:chalk","versionInfo":"5.2.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/chalk@5.2.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-chalk-template-0.4.0","name":"npm:chalk-template","versionInfo":"0.4.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/chalk-template@0.4.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-char-regex-1.0.2","name":"npm:char-regex","versionInfo":"1.0.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/char-regex@1.0.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-chrome-trace-event-1.0.3","name":"npm:chrome-trace-event","versionInfo":"1.0.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/chrome-trace-event@1.0.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-ci-info-3.9.0","name":"npm:ci-info","versionInfo":"3.9.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/ci-info@3.9.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-cjs-module-lexer-1.2.3","name":"npm:cjs-module-lexer","versionInfo":"1.2.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/cjs-module-lexer@1.2.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-classnames-2.5.1","name":"npm:classnames","versionInfo":"2.5.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/classnames@2.5.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-clean-stack-2.2.0","name":"npm:clean-stack","versionInfo":"2.2.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/clean-stack@2.2.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-cli-boxes-3.0.0","name":"npm:cli-boxes","versionInfo":"3.0.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/cli-boxes@3.0.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-cli-cursor-3.1.0","name":"npm:cli-cursor","versionInfo":"3.1.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/cli-cursor@3.1.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-cli-truncate-2.1.0","name":"npm:cli-truncate","versionInfo":"2.1.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/cli-truncate@2.1.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-cli-truncate-3.1.0","name":"npm:cli-truncate","versionInfo":"3.1.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/cli-truncate@3.1.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-clipboardy-3.0.0","name":"npm:clipboardy","versionInfo":"3.0.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/clipboardy@3.0.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-cliui-8.0.1","name":"npm:cliui","versionInfo":"8.0.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"ISC","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/cliui@8.0.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-clsx-1.1.1","name":"npm:clsx","versionInfo":"1.1.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/clsx@1.1.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-clsx-1.2.1","name":"npm:clsx","versionInfo":"1.2.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/clsx@1.2.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-clsx-2.1.0","name":"npm:clsx","versionInfo":"2.1.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/clsx@2.1.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-co-4.6.0","name":"npm:co","versionInfo":"4.6.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/co@4.6.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-collect-v8-coverage-1.0.2","name":"npm:collect-v8-coverage","versionInfo":"1.0.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/collect-v8-coverage@1.0.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-color-3.2.1","name":"npm:color","versionInfo":"3.2.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/color@3.2.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-color-convert-1.9.3","name":"npm:color-convert","versionInfo":"1.9.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/color-convert@1.9.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-color-convert-2.0.1","name":"npm:color-convert","versionInfo":"2.0.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/color-convert@2.0.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-color-name-1.1.3","name":"npm:color-name","versionInfo":"1.1.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/color-name@1.1.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-color-name-1.1.4","name":"npm:color-name","versionInfo":"1.1.4","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/color-name@1.1.4","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-color-string-1.9.1","name":"npm:color-string","versionInfo":"1.9.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/color-string@1.9.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-combined-stream-1.0.8","name":"npm:combined-stream","versionInfo":"1.0.8","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/combined-stream@1.0.8","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-commander-2.20.3","name":"npm:commander","versionInfo":"2.20.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/commander@2.20.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-commander-10.0.1","name":"npm:commander","versionInfo":"10.0.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/commander@10.0.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-compressible-2.0.18","name":"npm:compressible","versionInfo":"2.0.18","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/compressible@2.0.18","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-compression-1.7.4","name":"npm:compression","versionInfo":"1.7.4","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/compression@1.7.4","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-concat-map-0.0.1","name":"npm:concat-map","versionInfo":"0.0.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/concat-map@0.0.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-concurrently-8.2.0","name":"npm:concurrently","versionInfo":"8.2.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/concurrently@8.2.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-content-disposition-0.5.2","name":"npm:content-disposition","versionInfo":"0.5.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/content-disposition@0.5.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-convert-source-map-1.9.0","name":"npm:convert-source-map","versionInfo":"1.9.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/convert-source-map@1.9.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-convert-source-map-2.0.0","name":"npm:convert-source-map","versionInfo":"2.0.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/convert-source-map@2.0.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-core-js-compat-3.35.0","name":"npm:core-js-compat","versionInfo":"3.35.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/core-js-compat@3.35.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-core-js-pure-3.35.0","name":"npm:core-js-pure","versionInfo":"3.35.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/core-js-pure@3.35.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-cose-base-2.2.0","name":"npm:cose-base","versionInfo":"2.2.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/cose-base@2.2.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-cosmiconfig-7.1.0","name":"npm:cosmiconfig","versionInfo":"7.1.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/cosmiconfig@7.1.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-create-jest-29.7.0","name":"npm:create-jest","versionInfo":"29.7.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/create-jest@29.7.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-create-require-1.1.1","name":"npm:create-require","versionInfo":"1.1.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/create-require@1.1.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-cross-spawn-7.0.3","name":"npm:cross-spawn","versionInfo":"7.0.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/cross-spawn@7.0.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-css-box-model-1.2.1","name":"npm:css-box-model","versionInfo":"1.2.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/css-box-model@1.2.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-css.escape-1.5.1","name":"npm:css.escape","versionInfo":"1.5.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/css.escape@1.5.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-cssom-0.3.8","name":"npm:cssom","versionInfo":"0.3.8","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/cssom@0.3.8","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-cssom-0.5.0","name":"npm:cssom","versionInfo":"0.5.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/cssom@0.5.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-cssstyle-2.3.0","name":"npm:cssstyle","versionInfo":"2.3.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/cssstyle@2.3.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-csstype-3.0.9","name":"npm:csstype","versionInfo":"3.0.9","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/csstype@3.0.9","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-csstype-3.1.3","name":"npm:csstype","versionInfo":"3.1.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/csstype@3.1.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-cytoscape-3.25.0","name":"npm:cytoscape","versionInfo":"3.25.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/cytoscape@3.25.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-cytoscape-canvas-3.0.1","name":"npm:cytoscape-canvas","versionInfo":"3.0.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/cytoscape-canvas@3.0.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-cytoscape-d3-force-1.1.4","name":"npm:cytoscape-d3-force","versionInfo":"1.1.4","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/cytoscape-d3-force@1.1.4","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-cytoscape-dagre-2.5.0","name":"npm:cytoscape-dagre","versionInfo":"2.5.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/cytoscape-dagre@2.5.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-cytoscape-fcose-2.2.0","name":"npm:cytoscape-fcose","versionInfo":"2.2.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/cytoscape-fcose@2.2.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-cytoscape-klay-3.1.4","name":"npm:cytoscape-klay","versionInfo":"3.1.4","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/cytoscape-klay@3.1.4","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-d3-dispatch-2.0.0","name":"npm:d3-dispatch","versionInfo":"2.0.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"BSD-3-Clause","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/d3-dispatch@2.0.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-d3-force-2.1.1","name":"npm:d3-force","versionInfo":"2.1.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"BSD-3-Clause","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/d3-force@2.1.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-d3-quadtree-2.0.0","name":"npm:d3-quadtree","versionInfo":"2.0.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"BSD-3-Clause","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/d3-quadtree@2.0.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-d3-timer-2.0.0","name":"npm:d3-timer","versionInfo":"2.0.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"BSD-3-Clause","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/d3-timer@2.0.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-dagre-0.8.5","name":"npm:dagre","versionInfo":"0.8.5","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/dagre@0.8.5","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-data-urls-3.0.2","name":"npm:data-urls","versionInfo":"3.0.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/data-urls@3.0.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-dayjs-1.11.9","name":"npm:dayjs","versionInfo":"1.11.9","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/dayjs@1.11.9","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-debug-4.3.4","name":"npm:debug","versionInfo":"4.3.4","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/debug@4.3.4","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-decimal.js-10.4.3","name":"npm:decimal.js","versionInfo":"10.4.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/decimal.js@10.4.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-decode-uri-component-0.2.2","name":"npm:decode-uri-component","versionInfo":"0.2.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/decode-uri-component@0.2.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-dedent-1.5.1","name":"npm:dedent","versionInfo":"1.5.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/dedent@1.5.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-deep-equal-2.2.3","name":"npm:deep-equal","versionInfo":"2.2.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/deep-equal@2.2.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-deep-extend-0.6.0","name":"npm:deep-extend","versionInfo":"0.6.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/deep-extend@0.6.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-deep-is-0.1.4","name":"npm:deep-is","versionInfo":"0.1.4","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/deep-is@0.1.4","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-deepmerge-4.3.1","name":"npm:deepmerge","versionInfo":"4.3.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/deepmerge@4.3.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-define-properties-1.2.1","name":"npm:define-properties","versionInfo":"1.2.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/define-properties@1.2.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-delayed-stream-1.0.0","name":"npm:delayed-stream","versionInfo":"1.0.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/delayed-stream@1.0.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-dequal-2.0.3","name":"npm:dequal","versionInfo":"2.0.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/dequal@2.0.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-detect-newline-3.1.0","name":"npm:detect-newline","versionInfo":"3.1.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/detect-newline@3.1.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-detect-node-2.1.0","name":"npm:detect-node","versionInfo":"2.1.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/detect-node@2.1.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-diff-4.0.2","name":"npm:diff","versionInfo":"4.0.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"BSD-3-Clause","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/diff@4.0.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-diff-sequences-26.6.2","name":"npm:diff-sequences","versionInfo":"26.6.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/diff-sequences@26.6.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-diff-sequences-29.6.3","name":"npm:diff-sequences","versionInfo":"29.6.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/diff-sequences@29.6.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-dir-glob-3.0.1","name":"npm:dir-glob","versionInfo":"3.0.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/dir-glob@3.0.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-dnd-core-11.1.3","name":"npm:dnd-core","versionInfo":"11.1.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/dnd-core@11.1.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-dnd-core-16.0.1","name":"npm:dnd-core","versionInfo":"16.0.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/dnd-core@16.0.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-doctrine-2.1.0","name":"npm:doctrine","versionInfo":"2.1.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/doctrine@2.1.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-doctrine-3.0.0","name":"npm:doctrine","versionInfo":"3.0.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/doctrine@3.0.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-dom-accessibility-api-0.5.16","name":"npm:dom-accessibility-api","versionInfo":"0.5.16","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/dom-accessibility-api@0.5.16","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-dom-align-1.12.4","name":"npm:dom-align","versionInfo":"1.12.4","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/dom-align@1.12.4","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-dom-helpers-5.2.1","name":"npm:dom-helpers","versionInfo":"5.2.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/dom-helpers@5.2.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-dom7-4.0.6","name":"npm:dom7","versionInfo":"4.0.6","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/dom7@4.0.6","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-domexception-4.0.0","name":"npm:domexception","versionInfo":"4.0.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/domexception@4.0.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-eastasianwidth-0.2.0","name":"npm:eastasianwidth","versionInfo":"0.2.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/eastasianwidth@0.2.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-electron-to-chromium-1.4.640","name":"npm:electron-to-chromium","versionInfo":"1.4.640","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"ISC","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/electron-to-chromium@1.4.640","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-emittery-0.13.1","name":"npm:emittery","versionInfo":"0.13.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/emittery@0.13.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-emoji-regex-8.0.0","name":"npm:emoji-regex","versionInfo":"8.0.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/emoji-regex@8.0.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-emoji-regex-9.2.2","name":"npm:emoji-regex","versionInfo":"9.2.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/emoji-regex@9.2.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-emojis-list-3.0.0","name":"npm:emojis-list","versionInfo":"3.0.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/emojis-list@3.0.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-enhanced-resolve-5.15.0","name":"npm:enhanced-resolve","versionInfo":"5.15.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/enhanced-resolve@5.15.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-enquire.js-2.1.6","name":"npm:enquire.js","versionInfo":"2.1.6","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/enquire.js@2.1.6","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-enquirer-2.4.1","name":"npm:enquirer","versionInfo":"2.4.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/enquirer@2.4.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-entities-4.5.0","name":"npm:entities","versionInfo":"4.5.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"BSD-2-Clause","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/entities@4.5.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-error-ex-1.3.2","name":"npm:error-ex","versionInfo":"1.3.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/error-ex@1.3.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-es-abstract-1.22.3","name":"npm:es-abstract","versionInfo":"1.22.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/es-abstract@1.22.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-es-get-iterator-1.1.3","name":"npm:es-get-iterator","versionInfo":"1.1.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/es-get-iterator@1.1.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-es-module-lexer-0.9.3","name":"npm:es-module-lexer","versionInfo":"0.9.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/es-module-lexer@0.9.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-es-set-tostringtag-2.0.2","name":"npm:es-set-tostringtag","versionInfo":"2.0.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/es-set-tostringtag@2.0.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-es-shim-unscopables-1.0.2","name":"npm:es-shim-unscopables","versionInfo":"1.0.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/es-shim-unscopables@1.0.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-es-to-primitive-1.2.1","name":"npm:es-to-primitive","versionInfo":"1.2.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/es-to-primitive@1.2.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-esbuild-0.16.17","name":"npm:esbuild","versionInfo":"0.16.17","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/esbuild@0.16.17","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-esbuild-0.18.20","name":"npm:esbuild","versionInfo":"0.18.20","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/esbuild@0.18.20","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-esbuild-loader-2.21.0","name":"npm:esbuild-loader","versionInfo":"2.21.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/esbuild-loader@2.21.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-escalade-3.1.1","name":"npm:escalade","versionInfo":"3.1.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/escalade@3.1.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-escape-string-regexp-1.0.5","name":"npm:escape-string-regexp","versionInfo":"1.0.5","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/escape-string-regexp@1.0.5","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-escape-string-regexp-2.0.0","name":"npm:escape-string-regexp","versionInfo":"2.0.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/escape-string-regexp@2.0.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-escape-string-regexp-4.0.0","name":"npm:escape-string-regexp","versionInfo":"4.0.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/escape-string-regexp@4.0.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-escodegen-2.1.0","name":"npm:escodegen","versionInfo":"2.1.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"BSD-2-Clause","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/escodegen@2.1.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-eslint-7.32.0","name":"npm:eslint","versionInfo":"7.32.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/eslint@7.32.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-eslint-8.45.0","name":"npm:eslint","versionInfo":"8.45.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/eslint@8.45.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-eslint-plugin-react-7.33.0","name":"npm:eslint-plugin-react","versionInfo":"7.33.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/eslint-plugin-react@7.33.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-eslint-plugin-react-hooks-4.6.0","name":"npm:eslint-plugin-react-hooks","versionInfo":"4.6.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/eslint-plugin-react-hooks@4.6.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-eslint-scope-5.1.1","name":"npm:eslint-scope","versionInfo":"5.1.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"BSD-2-Clause","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/eslint-scope@5.1.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-eslint-scope-7.2.2","name":"npm:eslint-scope","versionInfo":"7.2.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"BSD-2-Clause","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/eslint-scope@7.2.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-eslint-utils-2.1.0","name":"npm:eslint-utils","versionInfo":"2.1.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/eslint-utils@2.1.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-eslint-visitor-keys-1.3.0","name":"npm:eslint-visitor-keys","versionInfo":"1.3.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/eslint-visitor-keys@1.3.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-eslint-visitor-keys-2.1.0","name":"npm:eslint-visitor-keys","versionInfo":"2.1.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/eslint-visitor-keys@2.1.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-eslint-visitor-keys-3.4.3","name":"npm:eslint-visitor-keys","versionInfo":"3.4.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/eslint-visitor-keys@3.4.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-espree-7.3.1","name":"npm:espree","versionInfo":"7.3.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"BSD-2-Clause","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/espree@7.3.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-espree-9.6.1","name":"npm:espree","versionInfo":"9.6.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"BSD-2-Clause","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/espree@9.6.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-esprima-4.0.1","name":"npm:esprima","versionInfo":"4.0.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"BSD-2-Clause","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/esprima@4.0.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-esquery-1.5.0","name":"npm:esquery","versionInfo":"1.5.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"BSD-3-Clause","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/esquery@1.5.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-esrecurse-4.3.0","name":"npm:esrecurse","versionInfo":"4.3.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"BSD-2-Clause","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/esrecurse@4.3.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-estraverse-4.3.0","name":"npm:estraverse","versionInfo":"4.3.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"BSD-2-Clause","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/estraverse@4.3.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-estraverse-5.3.0","name":"npm:estraverse","versionInfo":"5.3.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"BSD-2-Clause","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/estraverse@5.3.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-esutils-2.0.3","name":"npm:esutils","versionInfo":"2.0.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"BSD-2-Clause","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/esutils@2.0.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-execa-5.1.1","name":"npm:execa","versionInfo":"5.1.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/execa@5.1.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-execa-7.2.0","name":"npm:execa","versionInfo":"7.2.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/execa@7.2.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-exenv-1.2.2","name":"npm:exenv","versionInfo":"1.2.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"BSD-3-Clause","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/exenv@1.2.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-exit-0.1.2","name":"npm:exit","versionInfo":"0.1.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/exit@0.1.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-expect-29.7.0","name":"npm:expect","versionInfo":"29.7.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/expect@29.7.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-fast-deep-equal-3.1.3","name":"npm:fast-deep-equal","versionInfo":"3.1.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/fast-deep-equal@3.1.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-fast-glob-3.3.2","name":"npm:fast-glob","versionInfo":"3.3.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/fast-glob@3.3.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-fast-json-stable-stringify-2.1.0","name":"npm:fast-json-stable-stringify","versionInfo":"2.1.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/fast-json-stable-stringify@2.1.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-fast-levenshtein-2.0.6","name":"npm:fast-levenshtein","versionInfo":"2.0.6","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/fast-levenshtein@2.0.6","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-fast-url-parser-1.1.3","name":"npm:fast-url-parser","versionInfo":"1.1.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/fast-url-parser@1.1.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-fastq-1.16.0","name":"npm:fastq","versionInfo":"1.16.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"ISC","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/fastq@1.16.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-fb-watchman-2.0.2","name":"npm:fb-watchman","versionInfo":"2.0.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/fb-watchman@2.0.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-file-entry-cache-6.0.1","name":"npm:file-entry-cache","versionInfo":"6.0.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/file-entry-cache@6.0.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-file-saver-2.0.5","name":"npm:file-saver","versionInfo":"2.0.5","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/file-saver@2.0.5","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-fill-range-7.0.1","name":"npm:fill-range","versionInfo":"7.0.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/fill-range@7.0.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-filter-console-0.1.1","name":"npm:filter-console","versionInfo":"0.1.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/filter-console@0.1.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-filter-obj-1.1.0","name":"npm:filter-obj","versionInfo":"1.1.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/filter-obj@1.1.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-find-root-1.1.0","name":"npm:find-root","versionInfo":"1.1.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/find-root@1.1.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-find-up-4.1.0","name":"npm:find-up","versionInfo":"4.1.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/find-up@4.1.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-find-up-5.0.0","name":"npm:find-up","versionInfo":"5.0.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/find-up@5.0.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-flat-5.0.2","name":"npm:flat","versionInfo":"5.0.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"BSD-3-Clause","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/flat@5.0.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-flat-cache-3.2.0","name":"npm:flat-cache","versionInfo":"3.2.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/flat-cache@3.2.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-flatted-3.2.9","name":"npm:flatted","versionInfo":"3.2.9","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"ISC","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/flatted@3.2.9","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-for-each-0.3.3","name":"npm:for-each","versionInfo":"0.3.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/for-each@0.3.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-form-data-4.0.0","name":"npm:form-data","versionInfo":"4.0.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/form-data@4.0.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-framer-motion-2.9.5","name":"npm:framer-motion","versionInfo":"2.9.5","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/framer-motion@2.9.5","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-framesync-4.1.0","name":"npm:framesync","versionInfo":"4.1.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/framesync@4.1.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-fsevents-2.3.3","name":"npm:fsevents","versionInfo":"2.3.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/fsevents@2.3.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-function.prototype.name-1.1.6","name":"npm:function.prototype.name","versionInfo":"1.1.6","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/function.prototype.name@1.1.6","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-functional-red-black-tree-1.0.1","name":"npm:functional-red-black-tree","versionInfo":"1.0.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/functional-red-black-tree@1.0.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-functions-have-names-1.2.3","name":"npm:functions-have-names","versionInfo":"1.2.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/functions-have-names@1.2.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-gensync-1.0.0-beta.2","name":"npm:gensync","versionInfo":"1.0.0-beta.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/gensync@1.0.0-beta.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-get-caller-file-2.0.5","name":"npm:get-caller-file","versionInfo":"2.0.5","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"ISC","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/get-caller-file@2.0.5","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-get-package-type-0.1.0","name":"npm:get-package-type","versionInfo":"0.1.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/get-package-type@0.1.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-get-stream-6.0.1","name":"npm:get-stream","versionInfo":"6.0.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/get-stream@6.0.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-get-symbol-description-1.0.0","name":"npm:get-symbol-description","versionInfo":"1.0.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/get-symbol-description@1.0.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-glob-7.2.3","name":"npm:glob","versionInfo":"7.2.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"ISC","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/glob@7.2.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-glob-parent-5.1.2","name":"npm:glob-parent","versionInfo":"5.1.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"ISC","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/glob-parent@5.1.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-glob-parent-6.0.2","name":"npm:glob-parent","versionInfo":"6.0.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"ISC","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/glob-parent@6.0.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-glob-to-regexp-0.4.1","name":"npm:glob-to-regexp","versionInfo":"0.4.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"BSD-2-Clause","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/glob-to-regexp@0.4.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-globals-11.12.0","name":"npm:globals","versionInfo":"11.12.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/globals@11.12.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-globals-13.24.0","name":"npm:globals","versionInfo":"13.24.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/globals@13.24.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-globalthis-1.0.3","name":"npm:globalthis","versionInfo":"1.0.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/globalthis@1.0.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-globby-11.1.0","name":"npm:globby","versionInfo":"11.1.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/globby@11.1.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-graceful-fs-4.2.11","name":"npm:graceful-fs","versionInfo":"4.2.11","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"ISC","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/graceful-fs@4.2.11","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-graphemer-1.4.0","name":"npm:graphemer","versionInfo":"1.4.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/graphemer@1.4.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-graphlib-2.1.8","name":"npm:graphlib","versionInfo":"2.1.8","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/graphlib@2.1.8","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-hamt-plus-1.0.2","name":"npm:hamt_plus","versionInfo":"1.0.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/hamt_plus@1.0.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-has-bigints-1.0.2","name":"npm:has-bigints","versionInfo":"1.0.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/has-bigints@1.0.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-has-flag-3.0.0","name":"npm:has-flag","versionInfo":"3.0.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/has-flag@3.0.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-has-flag-4.0.0","name":"npm:has-flag","versionInfo":"4.0.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/has-flag@4.0.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-has-tostringtag-1.0.0","name":"npm:has-tostringtag","versionInfo":"1.0.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/has-tostringtag@1.0.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-heap-0.2.7","name":"npm:heap","versionInfo":"0.2.7","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/heap@0.2.7","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-hey-listen-1.0.8","name":"npm:hey-listen","versionInfo":"1.0.8","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/hey-listen@1.0.8","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-hoist-non-react-statics-3.3.2","name":"npm:hoist-non-react-statics","versionInfo":"3.3.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"BSD-3-Clause","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/hoist-non-react-statics@3.3.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-html-encoding-sniffer-3.0.0","name":"npm:html-encoding-sniffer","versionInfo":"3.0.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/html-encoding-sniffer@3.0.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-html-escaper-2.0.2","name":"npm:html-escaper","versionInfo":"2.0.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/html-escaper@2.0.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-http-proxy-agent-5.0.0","name":"npm:http-proxy-agent","versionInfo":"5.0.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/http-proxy-agent@5.0.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-https-proxy-agent-5.0.1","name":"npm:https-proxy-agent","versionInfo":"5.0.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/https-proxy-agent@5.0.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-human-signals-2.1.0","name":"npm:human-signals","versionInfo":"2.1.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/human-signals@2.1.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-human-signals-4.3.1","name":"npm:human-signals","versionInfo":"4.3.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/human-signals@4.3.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-husky-8.0.3","name":"npm:husky","versionInfo":"8.0.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/husky@8.0.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-iconv-lite-0.6.3","name":"npm:iconv-lite","versionInfo":"0.6.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/iconv-lite@0.6.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-ignore-4.0.6","name":"npm:ignore","versionInfo":"4.0.6","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/ignore@4.0.6","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-ignore-5.3.0","name":"npm:ignore","versionInfo":"5.3.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/ignore@5.3.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-immediate-3.0.6","name":"npm:immediate","versionInfo":"3.0.6","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/immediate@3.0.6","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-import-fresh-3.3.0","name":"npm:import-fresh","versionInfo":"3.3.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/import-fresh@3.3.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-import-local-3.1.0","name":"npm:import-local","versionInfo":"3.1.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/import-local@3.1.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-imurmurhash-0.1.4","name":"npm:imurmurhash","versionInfo":"0.1.4","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/imurmurhash@0.1.4","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-indent-string-4.0.0","name":"npm:indent-string","versionInfo":"4.0.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/indent-string@4.0.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-ini-1.3.8","name":"npm:ini","versionInfo":"1.3.8","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"ISC","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/ini@1.3.8","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-internal-slot-1.0.6","name":"npm:internal-slot","versionInfo":"1.0.6","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/internal-slot@1.0.6","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-intl-messageformat-10.5.10","name":"npm:intl-messageformat","versionInfo":"10.5.10","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"BSD-3-Clause","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/intl-messageformat@10.5.10","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-is-arguments-1.1.1","name":"npm:is-arguments","versionInfo":"1.1.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/is-arguments@1.1.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-is-array-buffer-3.0.2","name":"npm:is-array-buffer","versionInfo":"3.0.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/is-array-buffer@3.0.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-is-arrayish-0.2.1","name":"npm:is-arrayish","versionInfo":"0.2.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/is-arrayish@0.2.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-is-arrayish-0.3.2","name":"npm:is-arrayish","versionInfo":"0.3.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/is-arrayish@0.3.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-is-bigint-1.0.4","name":"npm:is-bigint","versionInfo":"1.0.4","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/is-bigint@1.0.4","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-is-boolean-object-1.1.2","name":"npm:is-boolean-object","versionInfo":"1.1.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/is-boolean-object@1.1.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-is-callable-1.2.7","name":"npm:is-callable","versionInfo":"1.2.7","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/is-callable@1.2.7","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-is-core-module-2.13.1","name":"npm:is-core-module","versionInfo":"2.13.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/is-core-module@2.13.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-is-date-object-1.0.5","name":"npm:is-date-object","versionInfo":"1.0.5","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/is-date-object@1.0.5","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-is-docker-2.2.1","name":"npm:is-docker","versionInfo":"2.2.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/is-docker@2.2.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-is-extglob-2.1.1","name":"npm:is-extglob","versionInfo":"2.1.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/is-extglob@2.1.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-is-fullwidth-code-point-3.0.0","name":"npm:is-fullwidth-code-point","versionInfo":"3.0.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/is-fullwidth-code-point@3.0.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-is-fullwidth-code-point-4.0.0","name":"npm:is-fullwidth-code-point","versionInfo":"4.0.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/is-fullwidth-code-point@4.0.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-is-generator-fn-2.1.0","name":"npm:is-generator-fn","versionInfo":"2.1.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/is-generator-fn@2.1.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-is-glob-4.0.3","name":"npm:is-glob","versionInfo":"4.0.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/is-glob@4.0.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-is-map-2.0.2","name":"npm:is-map","versionInfo":"2.0.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/is-map@2.0.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-is-negative-zero-2.0.2","name":"npm:is-negative-zero","versionInfo":"2.0.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/is-negative-zero@2.0.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-is-number-7.0.0","name":"npm:is-number","versionInfo":"7.0.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/is-number@7.0.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-is-number-object-1.0.7","name":"npm:is-number-object","versionInfo":"1.0.7","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/is-number-object@1.0.7","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-is-path-inside-3.0.3","name":"npm:is-path-inside","versionInfo":"3.0.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/is-path-inside@3.0.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-is-port-reachable-4.0.0","name":"npm:is-port-reachable","versionInfo":"4.0.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/is-port-reachable@4.0.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-is-potential-custom-element-name-1.0.1","name":"npm:is-potential-custom-element-name","versionInfo":"1.0.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/is-potential-custom-element-name@1.0.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-is-regex-1.1.4","name":"npm:is-regex","versionInfo":"1.1.4","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/is-regex@1.1.4","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-is-set-2.0.2","name":"npm:is-set","versionInfo":"2.0.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/is-set@2.0.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-is-shared-array-buffer-1.0.2","name":"npm:is-shared-array-buffer","versionInfo":"1.0.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/is-shared-array-buffer@1.0.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-is-stream-2.0.1","name":"npm:is-stream","versionInfo":"2.0.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/is-stream@2.0.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-is-stream-3.0.0","name":"npm:is-stream","versionInfo":"3.0.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/is-stream@3.0.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-is-string-1.0.7","name":"npm:is-string","versionInfo":"1.0.7","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/is-string@1.0.7","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-is-symbol-1.0.4","name":"npm:is-symbol","versionInfo":"1.0.4","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/is-symbol@1.0.4","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-is-typed-array-1.1.12","name":"npm:is-typed-array","versionInfo":"1.1.12","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/is-typed-array@1.1.12","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-is-weakmap-2.0.1","name":"npm:is-weakmap","versionInfo":"2.0.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/is-weakmap@2.0.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-is-weakref-1.0.2","name":"npm:is-weakref","versionInfo":"1.0.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/is-weakref@1.0.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-is-weakset-2.0.2","name":"npm:is-weakset","versionInfo":"2.0.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/is-weakset@2.0.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-is-wsl-2.2.0","name":"npm:is-wsl","versionInfo":"2.2.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/is-wsl@2.2.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-isarray-2.0.5","name":"npm:isarray","versionInfo":"2.0.5","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/isarray@2.0.5","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-isexe-2.0.0","name":"npm:isexe","versionInfo":"2.0.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"ISC","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/isexe@2.0.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-istanbul-lib-coverage-3.2.2","name":"npm:istanbul-lib-coverage","versionInfo":"3.2.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"BSD-3-Clause","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/istanbul-lib-coverage@3.2.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-istanbul-lib-instrument-5.2.1","name":"npm:istanbul-lib-instrument","versionInfo":"5.2.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"BSD-3-Clause","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/istanbul-lib-instrument@5.2.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-istanbul-lib-instrument-6.0.1","name":"npm:istanbul-lib-instrument","versionInfo":"6.0.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"BSD-3-Clause","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/istanbul-lib-instrument@6.0.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-istanbul-lib-report-3.0.1","name":"npm:istanbul-lib-report","versionInfo":"3.0.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"BSD-3-Clause","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/istanbul-lib-report@3.0.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-istanbul-lib-source-maps-4.0.1","name":"npm:istanbul-lib-source-maps","versionInfo":"4.0.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"BSD-3-Clause","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/istanbul-lib-source-maps@4.0.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-istanbul-reports-3.1.6","name":"npm:istanbul-reports","versionInfo":"3.1.6","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"BSD-3-Clause","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/istanbul-reports@3.1.6","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-jest-29.0.0","name":"npm:jest","versionInfo":"29.0.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/jest@29.0.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-jest-changed-files-29.7.0","name":"npm:jest-changed-files","versionInfo":"29.7.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/jest-changed-files@29.7.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-jest-circus-29.7.0","name":"npm:jest-circus","versionInfo":"29.7.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/jest-circus@29.7.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-jest-cli-29.7.0","name":"npm:jest-cli","versionInfo":"29.7.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/jest-cli@29.7.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-jest-config-29.7.0","name":"npm:jest-config","versionInfo":"29.7.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/jest-config@29.7.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-jest-diff-26.6.2","name":"npm:jest-diff","versionInfo":"26.6.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/jest-diff@26.6.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-jest-diff-29.7.0","name":"npm:jest-diff","versionInfo":"29.7.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/jest-diff@29.7.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-jest-docblock-29.7.0","name":"npm:jest-docblock","versionInfo":"29.7.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/jest-docblock@29.7.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-jest-each-29.7.0","name":"npm:jest-each","versionInfo":"29.7.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/jest-each@29.7.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-jest-environment-jsdom-29.6.1","name":"npm:jest-environment-jsdom","versionInfo":"29.6.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/jest-environment-jsdom@29.6.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-jest-environment-node-29.7.0","name":"npm:jest-environment-node","versionInfo":"29.7.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/jest-environment-node@29.7.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-jest-get-type-26.3.0","name":"npm:jest-get-type","versionInfo":"26.3.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/jest-get-type@26.3.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-jest-get-type-29.6.3","name":"npm:jest-get-type","versionInfo":"29.6.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/jest-get-type@29.6.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-jest-github-actions-reporter-1.0.3","name":"npm:jest-github-actions-reporter","versionInfo":"1.0.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"ISC AND MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/jest-github-actions-reporter@1.0.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-jest-haste-map-29.7.0","name":"npm:jest-haste-map","versionInfo":"29.7.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/jest-haste-map@29.7.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-jest-junit-16.0.0","name":"npm:jest-junit","versionInfo":"16.0.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/jest-junit@16.0.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-jest-leak-detector-29.7.0","name":"npm:jest-leak-detector","versionInfo":"29.7.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/jest-leak-detector@29.7.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-jest-localstorage-mock-2.4.26","name":"npm:jest-localstorage-mock","versionInfo":"2.4.26","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"BSD-3-Clause","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/jest-localstorage-mock@2.4.26","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-jest-matcher-utils-29.7.0","name":"npm:jest-matcher-utils","versionInfo":"29.7.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/jest-matcher-utils@29.7.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-jest-message-util-29.7.0","name":"npm:jest-message-util","versionInfo":"29.7.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/jest-message-util@29.7.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-jest-mock-29.7.0","name":"npm:jest-mock","versionInfo":"29.7.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/jest-mock@29.7.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-jest-pnp-resolver-1.2.3","name":"npm:jest-pnp-resolver","versionInfo":"1.2.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/jest-pnp-resolver@1.2.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-jest-regex-util-29.6.3","name":"npm:jest-regex-util","versionInfo":"29.6.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/jest-regex-util@29.6.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-jest-resolve-29.7.0","name":"npm:jest-resolve","versionInfo":"29.7.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/jest-resolve@29.7.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-jest-resolve-dependencies-29.7.0","name":"npm:jest-resolve-dependencies","versionInfo":"29.7.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/jest-resolve-dependencies@29.7.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-jest-runner-29.7.0","name":"npm:jest-runner","versionInfo":"29.7.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/jest-runner@29.7.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-jest-runtime-29.7.0","name":"npm:jest-runtime","versionInfo":"29.7.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/jest-runtime@29.7.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-jest-snapshot-29.7.0","name":"npm:jest-snapshot","versionInfo":"29.7.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/jest-snapshot@29.7.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-jest-util-29.7.0","name":"npm:jest-util","versionInfo":"29.7.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/jest-util@29.7.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-jest-validate-29.7.0","name":"npm:jest-validate","versionInfo":"29.7.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/jest-validate@29.7.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-jest-watcher-29.7.0","name":"npm:jest-watcher","versionInfo":"29.7.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/jest-watcher@29.7.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-jest-worker-27.5.1","name":"npm:jest-worker","versionInfo":"27.5.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/jest-worker@27.5.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-jest-worker-29.7.0","name":"npm:jest-worker","versionInfo":"29.7.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/jest-worker@29.7.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-js-sha3-0.8.0","name":"npm:js-sha3","versionInfo":"0.8.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/js-sha3@0.8.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-js-tokens-4.0.0","name":"npm:js-tokens","versionInfo":"4.0.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/js-tokens@4.0.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-js-yaml-3.14.1","name":"npm:js-yaml","versionInfo":"3.14.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/js-yaml@3.14.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-js-yaml-4.1.0","name":"npm:js-yaml","versionInfo":"4.1.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/js-yaml@4.1.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-jsdom-20.0.3","name":"npm:jsdom","versionInfo":"20.0.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/jsdom@20.0.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-jsesc-0.5.0","name":"npm:jsesc","versionInfo":"0.5.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/jsesc@0.5.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-jsesc-2.5.2","name":"npm:jsesc","versionInfo":"2.5.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/jsesc@2.5.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-json-buffer-3.0.1","name":"npm:json-buffer","versionInfo":"3.0.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/json-buffer@3.0.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-json-parse-even-better-errors-2.3.1","name":"npm:json-parse-even-better-errors","versionInfo":"2.3.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/json-parse-even-better-errors@2.3.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-json-schema-traverse-0.4.1","name":"npm:json-schema-traverse","versionInfo":"0.4.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/json-schema-traverse@0.4.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-json-schema-traverse-1.0.0","name":"npm:json-schema-traverse","versionInfo":"1.0.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/json-schema-traverse@1.0.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-json-stable-stringify-without-jsonify-1.0.1","name":"npm:json-stable-stringify-without-jsonify","versionInfo":"1.0.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/json-stable-stringify-without-jsonify@1.0.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-json2mq-0.2.0","name":"npm:json2mq","versionInfo":"0.2.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/json2mq@0.2.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-json5-2.2.3","name":"npm:json5","versionInfo":"2.2.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/json5@2.2.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-jsx-ast-utils-3.3.5","name":"npm:jsx-ast-utils","versionInfo":"3.3.5","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/jsx-ast-utils@3.3.5","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-keyv-4.5.4","name":"npm:keyv","versionInfo":"4.5.4","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/keyv@4.5.4","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-klayjs-0.4.1","name":"npm:klayjs","versionInfo":"0.4.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"EPL-1.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/klayjs@0.4.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-kleur-3.0.3","name":"npm:kleur","versionInfo":"3.0.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/kleur@3.0.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-layout-base-2.0.1","name":"npm:layout-base","versionInfo":"2.0.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/layout-base@2.0.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-leven-3.1.0","name":"npm:leven","versionInfo":"3.1.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/leven@3.1.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-levn-0.4.1","name":"npm:levn","versionInfo":"0.4.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/levn@0.4.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-lie-3.1.1","name":"npm:lie","versionInfo":"3.1.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/lie@3.1.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-lilconfig-2.1.0","name":"npm:lilconfig","versionInfo":"2.1.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/lilconfig@2.1.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-lines-and-columns-1.2.4","name":"npm:lines-and-columns","versionInfo":"1.2.4","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/lines-and-columns@1.2.4","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-lint-staged-13.2.3","name":"npm:lint-staged","versionInfo":"13.2.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/lint-staged@13.2.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-listr2-5.0.8","name":"npm:listr2","versionInfo":"5.0.8","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/listr2@5.0.8","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-loader-runner-4.3.0","name":"npm:loader-runner","versionInfo":"4.3.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/loader-runner@4.3.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-loader-utils-2.0.4","name":"npm:loader-utils","versionInfo":"2.0.4","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/loader-utils@2.0.4","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-localforage-1.10.0","name":"npm:localforage","versionInfo":"1.10.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/localforage@1.10.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-locate-path-5.0.0","name":"npm:locate-path","versionInfo":"5.0.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/locate-path@5.0.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-locate-path-6.0.0","name":"npm:locate-path","versionInfo":"6.0.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/locate-path@6.0.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-lodash-4.17.21","name":"npm:lodash","versionInfo":"4.17.21","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/lodash@4.17.21","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-lodash.debounce-4.0.8","name":"npm:lodash.debounce","versionInfo":"4.0.8","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/lodash.debounce@4.0.8","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-lodash.memoize-4.1.2","name":"npm:lodash.memoize","versionInfo":"4.1.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/lodash.memoize@4.1.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-lodash.merge-4.6.2","name":"npm:lodash.merge","versionInfo":"4.6.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/lodash.merge@4.6.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-lodash.truncate-4.4.2","name":"npm:lodash.truncate","versionInfo":"4.4.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/lodash.truncate@4.4.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-log-update-4.0.0","name":"npm:log-update","versionInfo":"4.0.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/log-update@4.0.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-loose-envify-1.4.0","name":"npm:loose-envify","versionInfo":"1.4.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/loose-envify@1.4.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-lru-cache-5.1.1","name":"npm:lru-cache","versionInfo":"5.1.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"ISC","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/lru-cache@5.1.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-lru-cache-6.0.0","name":"npm:lru-cache","versionInfo":"6.0.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"ISC","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/lru-cache@6.0.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-lz-string-1.5.0","name":"npm:lz-string","versionInfo":"1.5.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/lz-string@1.5.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-make-dir-4.0.0","name":"npm:make-dir","versionInfo":"4.0.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/make-dir@4.0.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-make-error-1.3.6","name":"npm:make-error","versionInfo":"1.3.6","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"ISC","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/make-error@1.3.6","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-makeerror-1.0.12","name":"npm:makeerror","versionInfo":"1.0.12","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"BSD-3-Clause","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/makeerror@1.0.12","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-match-sorter-6.3.3","name":"npm:match-sorter","versionInfo":"6.3.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/match-sorter@6.3.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-memoize-one-5.2.1","name":"npm:memoize-one","versionInfo":"5.2.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/memoize-one@5.2.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-merge-stream-2.0.0","name":"npm:merge-stream","versionInfo":"2.0.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/merge-stream@2.0.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-merge2-1.4.1","name":"npm:merge2","versionInfo":"1.4.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/merge2@1.4.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-micromatch-4.0.5","name":"npm:micromatch","versionInfo":"4.0.5","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/micromatch@4.0.5","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-microseconds-0.2.0","name":"npm:microseconds","versionInfo":"0.2.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/microseconds@0.2.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-mime-db-1.33.0","name":"npm:mime-db","versionInfo":"1.33.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/mime-db@1.33.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-mime-types-2.1.18","name":"npm:mime-types","versionInfo":"2.1.18","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/mime-types@2.1.18","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-mimic-fn-2.1.0","name":"npm:mimic-fn","versionInfo":"2.1.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/mimic-fn@2.1.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-mimic-fn-4.0.0","name":"npm:mimic-fn","versionInfo":"4.0.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/mimic-fn@4.0.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-min-indent-1.0.1","name":"npm:min-indent","versionInfo":"1.0.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/min-indent@1.0.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-minimatch-3.1.2","name":"npm:minimatch","versionInfo":"3.1.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"ISC","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/minimatch@3.1.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-mkdirp-1.0.4","name":"npm:mkdirp","versionInfo":"1.0.4","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/mkdirp@1.0.4","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-ms-2.1.2","name":"npm:ms","versionInfo":"2.1.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/ms@2.1.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-nano-time-1.0.0","name":"npm:nano-time","versionInfo":"1.0.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"ISC","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/nano-time@1.0.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-nanoid-3.3.7","name":"npm:nanoid","versionInfo":"3.3.7","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/nanoid@3.3.7","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-natural-compare-1.4.0","name":"npm:natural-compare","versionInfo":"1.4.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/natural-compare@1.4.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-natural-compare-lite-1.4.0","name":"npm:natural-compare-lite","versionInfo":"1.4.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/natural-compare-lite@1.4.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-neo-async-2.6.2","name":"npm:neo-async","versionInfo":"2.6.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/neo-async@2.6.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-node-fetch-3.3.1","name":"npm:node-fetch","versionInfo":"3.3.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/node-fetch@3.3.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-node-int64-0.4.0","name":"npm:node-int64","versionInfo":"0.4.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/node-int64@0.4.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-node-releases-2.0.14","name":"npm:node-releases","versionInfo":"2.0.14","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/node-releases@2.0.14","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-normalize-path-3.0.0","name":"npm:normalize-path","versionInfo":"3.0.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/normalize-path@3.0.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-npm-run-path-4.0.1","name":"npm:npm-run-path","versionInfo":"4.0.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/npm-run-path@4.0.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-npm-run-path-5.2.0","name":"npm:npm-run-path","versionInfo":"5.2.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/npm-run-path@5.2.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-nwsapi-2.2.7","name":"npm:nwsapi","versionInfo":"2.2.7","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/nwsapi@2.2.7","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-object-is-1.1.5","name":"npm:object-is","versionInfo":"1.1.5","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/object-is@1.1.5","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-object-keys-1.1.1","name":"npm:object-keys","versionInfo":"1.1.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/object-keys@1.1.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-object.assign-4.1.5","name":"npm:object.assign","versionInfo":"4.1.5","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/object.assign@4.1.5","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-object.entries-1.1.7","name":"npm:object.entries","versionInfo":"1.1.7","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/object.entries@1.1.7","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-object.fromentries-2.0.7","name":"npm:object.fromentries","versionInfo":"2.0.7","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/object.fromentries@2.0.7","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-object.hasown-1.1.3","name":"npm:object.hasown","versionInfo":"1.1.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/object.hasown@1.1.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-object.values-1.1.7","name":"npm:object.values","versionInfo":"1.1.7","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/object.values@1.1.7","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-oblivious-set-1.0.0","name":"npm:oblivious-set","versionInfo":"1.0.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/oblivious-set@1.0.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-on-headers-1.0.2","name":"npm:on-headers","versionInfo":"1.0.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/on-headers@1.0.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-onetime-5.1.2","name":"npm:onetime","versionInfo":"5.1.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/onetime@5.1.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-onetime-6.0.0","name":"npm:onetime","versionInfo":"6.0.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/onetime@6.0.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-optionator-0.9.3","name":"npm:optionator","versionInfo":"0.9.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/optionator@0.9.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-p-limit-2.3.0","name":"npm:p-limit","versionInfo":"2.3.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/p-limit@2.3.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-p-limit-3.1.0","name":"npm:p-limit","versionInfo":"3.1.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/p-limit@3.1.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-p-locate-4.1.0","name":"npm:p-locate","versionInfo":"4.1.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/p-locate@4.1.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-p-locate-5.0.0","name":"npm:p-locate","versionInfo":"5.0.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/p-locate@5.0.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-p-map-4.0.0","name":"npm:p-map","versionInfo":"4.0.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/p-map@4.0.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-p-try-2.2.0","name":"npm:p-try","versionInfo":"2.2.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/p-try@2.2.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-papaparse-5.4.1","name":"npm:papaparse","versionInfo":"5.4.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/papaparse@5.4.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-parent-module-1.0.1","name":"npm:parent-module","versionInfo":"1.0.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/parent-module@1.0.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-parse-json-5.2.0","name":"npm:parse-json","versionInfo":"5.2.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/parse-json@5.2.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-parse5-7.1.2","name":"npm:parse5","versionInfo":"7.1.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/parse5@7.1.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-path-exists-4.0.0","name":"npm:path-exists","versionInfo":"4.0.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/path-exists@4.0.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-path-is-absolute-1.0.1","name":"npm:path-is-absolute","versionInfo":"1.0.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/path-is-absolute@1.0.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-path-is-inside-1.0.2","name":"npm:path-is-inside","versionInfo":"1.0.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT OR WTFPL OR (MIT AND WTFPL)","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/path-is-inside@1.0.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-path-key-3.1.1","name":"npm:path-key","versionInfo":"3.1.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/path-key@3.1.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-path-key-4.0.0","name":"npm:path-key","versionInfo":"4.0.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/path-key@4.0.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-path-parse-1.0.7","name":"npm:path-parse","versionInfo":"1.0.7","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/path-parse@1.0.7","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-path-to-regexp-2.2.1","name":"npm:path-to-regexp","versionInfo":"2.2.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/path-to-regexp@2.2.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-path-type-4.0.0","name":"npm:path-type","versionInfo":"4.0.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/path-type@4.0.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-picocolors-1.0.0","name":"npm:picocolors","versionInfo":"1.0.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"ISC","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/picocolors@1.0.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-picomatch-2.3.1","name":"npm:picomatch","versionInfo":"2.3.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/picomatch@2.3.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-pidtree-0.6.0","name":"npm:pidtree","versionInfo":"0.6.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/pidtree@0.6.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-pino-8.14.2","name":"npm:pino","versionInfo":"8.14.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/pino@8.14.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-pino-abstract-transport-1.0.0","name":"npm:pino-abstract-transport","versionInfo":"1.0.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/pino-abstract-transport@1.0.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-pino-pretty-10.0.0","name":"npm:pino-pretty","versionInfo":"10.0.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/pino-pretty@10.0.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-pirates-4.0.6","name":"npm:pirates","versionInfo":"4.0.6","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/pirates@4.0.6","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-pkg-dir-4.2.0","name":"npm:pkg-dir","versionInfo":"4.2.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/pkg-dir@4.2.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-popmotion-9.0.0-rc.20","name":"npm:popmotion","versionInfo":"9.0.0-rc.20","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/popmotion@9.0.0-rc.20","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-postcss-8.4.33","name":"npm:postcss","versionInfo":"8.4.33","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/postcss@8.4.33","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-prelude-ls-1.2.1","name":"npm:prelude-ls","versionInfo":"1.2.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/prelude-ls@1.2.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-prettier-2.1.2","name":"npm:prettier","versionInfo":"2.1.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/prettier@2.1.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-prettier-2.8.8","name":"npm:prettier","versionInfo":"2.8.8","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/prettier@2.8.8","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-pretty-format-26.6.2","name":"npm:pretty-format","versionInfo":"26.6.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/pretty-format@26.6.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-pretty-format-27.5.1","name":"npm:pretty-format","versionInfo":"27.5.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/pretty-format@27.5.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-pretty-format-29.7.0","name":"npm:pretty-format","versionInfo":"29.7.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/pretty-format@29.7.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-process-warning-2.3.2","name":"npm:process-warning","versionInfo":"2.3.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/process-warning@2.3.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-progress-2.0.3","name":"npm:progress","versionInfo":"2.0.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/progress@2.0.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-prompts-2.4.2","name":"npm:prompts","versionInfo":"2.4.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/prompts@2.4.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-prop-types-15.8.1","name":"npm:prop-types","versionInfo":"15.8.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/prop-types@15.8.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-psl-1.9.0","name":"npm:psl","versionInfo":"1.9.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/psl@1.9.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-punycode-1.4.1","name":"npm:punycode","versionInfo":"1.4.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/punycode@1.4.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-punycode-2.3.1","name":"npm:punycode","versionInfo":"2.3.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/punycode@2.3.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-pure-rand-6.0.4","name":"npm:pure-rand","versionInfo":"6.0.4","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/pure-rand@6.0.4","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-query-string-7.1.3","name":"npm:query-string","versionInfo":"7.1.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/query-string@7.1.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-querystringify-2.2.0","name":"npm:querystringify","versionInfo":"2.2.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/querystringify@2.2.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-queue-microtask-1.2.3","name":"npm:queue-microtask","versionInfo":"1.2.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/queue-microtask@1.2.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-raf-schd-4.0.3","name":"npm:raf-schd","versionInfo":"4.0.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/raf-schd@4.0.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-randombytes-2.1.0","name":"npm:randombytes","versionInfo":"2.1.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/randombytes@2.1.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-range-parser-1.2.0","name":"npm:range-parser","versionInfo":"1.2.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/range-parser@1.2.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-raw-body-2.5.2","name":"npm:raw-body","versionInfo":"2.5.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/raw-body@2.5.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-rc-1.2.8","name":"npm:rc","versionInfo":"1.2.8","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"BSD-2-Clause OR (MIT OR Apache-2.0)","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/rc@1.2.8","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-rc-align-4.0.15","name":"npm:rc-align","versionInfo":"4.0.15","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/rc-align@4.0.15","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-rc-dropdown-4.0.1","name":"npm:rc-dropdown","versionInfo":"4.0.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/rc-dropdown@4.0.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-rc-menu-9.6.4","name":"npm:rc-menu","versionInfo":"9.6.4","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/rc-menu@9.6.4","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-rc-motion-2.9.0","name":"npm:rc-motion","versionInfo":"2.9.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/rc-motion@2.9.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-rc-overflow-1.3.2","name":"npm:rc-overflow","versionInfo":"1.3.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/rc-overflow@1.3.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-rc-resize-observer-1.4.0","name":"npm:rc-resize-observer","versionInfo":"1.4.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/rc-resize-observer@1.4.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-rc-tabs-11.16.1","name":"npm:rc-tabs","versionInfo":"11.16.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/rc-tabs@11.16.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-rc-trigger-5.3.4","name":"npm:rc-trigger","versionInfo":"5.3.4","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/rc-trigger@5.3.4","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-rc-util-5.38.1","name":"npm:rc-util","versionInfo":"5.38.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/rc-util@5.38.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-re-resizable-6.9.9","name":"npm:re-resizable","versionInfo":"6.9.9","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/re-resizable@6.9.9","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-react-17.0.2","name":"npm:react","versionInfo":"17.0.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/react@17.0.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-react-beautiful-dnd-13.1.1","name":"npm:react-beautiful-dnd","versionInfo":"13.1.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/react-beautiful-dnd@13.1.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-react-dnd-11.1.3","name":"npm:react-dnd","versionInfo":"11.1.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/react-dnd@11.1.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-react-dnd-html5-backend-16.0.1","name":"npm:react-dnd-html5-backend","versionInfo":"16.0.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/react-dnd-html5-backend@16.0.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-react-dom-17.0.2","name":"npm:react-dom","versionInfo":"17.0.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/react-dom@17.0.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-react-error-boundary-3.1.4","name":"npm:react-error-boundary","versionInfo":"3.1.4","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/react-error-boundary@3.1.4","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-react-from-dom-0.6.2","name":"npm:react-from-dom","versionInfo":"0.6.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/react-from-dom@0.6.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-react-inlinesvg-2.3.0","name":"npm:react-inlinesvg","versionInfo":"2.3.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/react-inlinesvg@2.3.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-react-is-16.13.1","name":"npm:react-is","versionInfo":"16.13.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/react-is@16.13.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-react-is-17.0.2","name":"npm:react-is","versionInfo":"17.0.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/react-is@17.0.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-react-is-18.2.0","name":"npm:react-is","versionInfo":"18.2.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/react-is@18.2.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-react-laag-2.0.5","name":"npm:react-laag","versionInfo":"2.0.5","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/react-laag@2.0.5","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-react-query-3.39.3","name":"npm:react-query","versionInfo":"3.39.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/react-query@3.39.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-react-redux-7.2.9","name":"npm:react-redux","versionInfo":"7.2.9","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/react-redux@7.2.9","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-react-refresh-0.14.0","name":"npm:react-refresh","versionInfo":"0.14.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/react-refresh@0.14.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-react-router-6.14.2","name":"npm:react-router","versionInfo":"6.14.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/react-router@6.14.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-react-router-dom-6.14.2","name":"npm:react-router-dom","versionInfo":"6.14.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/react-router-dom@6.14.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-react-shallow-renderer-16.15.0","name":"npm:react-shallow-renderer","versionInfo":"16.15.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/react-shallow-renderer@16.15.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-react-slick-0.28.1","name":"npm:react-slick","versionInfo":"0.28.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/react-slick@0.28.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-react-table-7.8.0","name":"npm:react-table","versionInfo":"7.8.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/react-table@7.8.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-react-test-renderer-17.0.2","name":"npm:react-test-renderer","versionInfo":"17.0.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/react-test-renderer@17.0.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-react-textarea-autosize-8.3.4","name":"npm:react-textarea-autosize","versionInfo":"8.3.4","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/react-textarea-autosize@8.3.4","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-react-transition-group-4.4.5","name":"npm:react-transition-group","versionInfo":"4.4.5","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"BSD-3-Clause","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/react-transition-group@4.4.5","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-react-virtuoso-2.19.1","name":"npm:react-virtuoso","versionInfo":"2.19.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/react-virtuoso@2.19.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-readable-stream-4.5.2","name":"npm:readable-stream","versionInfo":"4.5.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/readable-stream@4.5.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-recoil-0.7.7","name":"npm:recoil","versionInfo":"0.7.7","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/recoil@0.7.7","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-redent-3.0.0","name":"npm:redent","versionInfo":"3.0.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/redent@3.0.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-redux-4.2.1","name":"npm:redux","versionInfo":"4.2.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/redux@4.2.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-regenerate-1.4.2","name":"npm:regenerate","versionInfo":"1.4.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/regenerate@1.4.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-regenerate-unicode-properties-10.1.1","name":"npm:regenerate-unicode-properties","versionInfo":"10.1.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/regenerate-unicode-properties@10.1.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-regenerator-runtime-0.14.1","name":"npm:regenerator-runtime","versionInfo":"0.14.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/regenerator-runtime@0.14.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-regenerator-transform-0.15.2","name":"npm:regenerator-transform","versionInfo":"0.15.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/regenerator-transform@0.15.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-regexp.prototype.flags-1.5.1","name":"npm:regexp.prototype.flags","versionInfo":"1.5.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/regexp.prototype.flags@1.5.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-regexpp-3.2.0","name":"npm:regexpp","versionInfo":"3.2.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/regexpp@3.2.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-regexpu-core-5.3.2","name":"npm:regexpu-core","versionInfo":"5.3.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/regexpu-core@5.3.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-registry-auth-token-3.3.2","name":"npm:registry-auth-token","versionInfo":"3.3.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/registry-auth-token@3.3.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-registry-url-3.1.0","name":"npm:registry-url","versionInfo":"3.1.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/registry-url@3.1.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-regjsparser-0.9.1","name":"npm:regjsparser","versionInfo":"0.9.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"BSD-2-Clause","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/regjsparser@0.9.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-remove-accents-0.5.0","name":"npm:remove-accents","versionInfo":"0.5.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/remove-accents@0.5.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-require-directory-2.1.1","name":"npm:require-directory","versionInfo":"2.1.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/require-directory@2.1.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-require-from-string-2.0.2","name":"npm:require-from-string","versionInfo":"2.0.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/require-from-string@2.0.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-requires-port-1.0.0","name":"npm:requires-port","versionInfo":"1.0.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/requires-port@1.0.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-resize-observer-polyfill-1.5.1","name":"npm:resize-observer-polyfill","versionInfo":"1.5.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/resize-observer-polyfill@1.5.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-resolve-1.22.8","name":"npm:resolve","versionInfo":"1.22.8","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/resolve@1.22.8","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-resolve-2.0.0-next.5","name":"npm:resolve","versionInfo":"2.0.0-next.5","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/resolve@2.0.0-next.5","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-resolve-cwd-3.0.0","name":"npm:resolve-cwd","versionInfo":"3.0.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/resolve-cwd@3.0.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-resolve-from-4.0.0","name":"npm:resolve-from","versionInfo":"4.0.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/resolve-from@4.0.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-resolve-from-5.0.0","name":"npm:resolve-from","versionInfo":"5.0.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/resolve-from@5.0.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-resolve.exports-2.0.2","name":"npm:resolve.exports","versionInfo":"2.0.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/resolve.exports@2.0.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-restore-cursor-3.1.0","name":"npm:restore-cursor","versionInfo":"3.1.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/restore-cursor@3.1.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-reusify-1.0.4","name":"npm:reusify","versionInfo":"1.0.4","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/reusify@1.0.4","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-rfdc-1.3.1","name":"npm:rfdc","versionInfo":"1.3.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/rfdc@1.3.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-rimraf-3.0.2","name":"npm:rimraf","versionInfo":"3.0.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"ISC","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/rimraf@3.0.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-rollup-3.29.4","name":"npm:rollup","versionInfo":"3.29.4","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/rollup@3.29.4","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-run-parallel-1.2.0","name":"npm:run-parallel","versionInfo":"1.2.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/run-parallel@1.2.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-rxjs-7.8.1","name":"npm:rxjs","versionInfo":"7.8.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/rxjs@7.8.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-safe-array-concat-1.1.0","name":"npm:safe-array-concat","versionInfo":"1.1.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/safe-array-concat@1.1.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-safe-buffer-5.1.2","name":"npm:safe-buffer","versionInfo":"5.1.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/safe-buffer@5.1.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-safe-regex-test-1.0.2","name":"npm:safe-regex-test","versionInfo":"1.0.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/safe-regex-test@1.0.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-saxes-6.0.0","name":"npm:saxes","versionInfo":"6.0.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"ISC","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/saxes@6.0.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-scheduler-0.20.2","name":"npm:scheduler","versionInfo":"0.20.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/scheduler@0.20.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-schema-utils-3.3.0","name":"npm:schema-utils","versionInfo":"3.3.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/schema-utils@3.3.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-semver-7.5.4","name":"npm:semver","versionInfo":"7.5.4","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"ISC","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/semver@7.5.4","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-serialize-javascript-6.0.2","name":"npm:serialize-javascript","versionInfo":"6.0.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"BSD-3-Clause","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/serialize-javascript@6.0.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-serve-14.2.0","name":"npm:serve","versionInfo":"14.2.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/serve@14.2.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-serve-handler-6.1.5","name":"npm:serve-handler","versionInfo":"6.1.5","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/serve-handler@6.1.5","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-set-function-length-1.2.0","name":"npm:set-function-length","versionInfo":"1.2.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/set-function-length@1.2.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-set-function-name-2.0.1","name":"npm:set-function-name","versionInfo":"2.0.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/set-function-name@2.0.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-shallowequal-1.1.0","name":"npm:shallowequal","versionInfo":"1.1.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/shallowequal@1.1.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-shebang-command-2.0.0","name":"npm:shebang-command","versionInfo":"2.0.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/shebang-command@2.0.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-shebang-regex-3.0.0","name":"npm:shebang-regex","versionInfo":"3.0.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/shebang-regex@3.0.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-shell-quote-1.8.1","name":"npm:shell-quote","versionInfo":"1.8.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/shell-quote@1.8.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-signal-exit-3.0.7","name":"npm:signal-exit","versionInfo":"3.0.7","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"ISC","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/signal-exit@3.0.7","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-simple-swizzle-0.2.2","name":"npm:simple-swizzle","versionInfo":"0.2.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/simple-swizzle@0.2.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-sisteransi-1.0.5","name":"npm:sisteransi","versionInfo":"1.0.5","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/sisteransi@1.0.5","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-slash-3.0.0","name":"npm:slash","versionInfo":"3.0.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/slash@3.0.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-slice-ansi-3.0.0","name":"npm:slice-ansi","versionInfo":"3.0.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/slice-ansi@3.0.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-slice-ansi-4.0.0","name":"npm:slice-ansi","versionInfo":"4.0.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/slice-ansi@4.0.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-slice-ansi-5.0.0","name":"npm:slice-ansi","versionInfo":"5.0.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/slice-ansi@5.0.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-sonic-boom-3.8.0","name":"npm:sonic-boom","versionInfo":"3.8.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/sonic-boom@3.8.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-source-list-map-2.0.1","name":"npm:source-list-map","versionInfo":"2.0.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/source-list-map@2.0.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-source-map-0.5.7","name":"npm:source-map","versionInfo":"0.5.7","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"BSD-3-Clause","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/source-map@0.5.7","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-source-map-0.6.1","name":"npm:source-map","versionInfo":"0.6.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"BSD-3-Clause","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/source-map@0.6.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-source-map-js-1.0.2","name":"npm:source-map-js","versionInfo":"1.0.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"BSD-3-Clause","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/source-map-js@1.0.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-source-map-support-0.5.13","name":"npm:source-map-support","versionInfo":"0.5.13","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/source-map-support@0.5.13","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-source-map-support-0.5.21","name":"npm:source-map-support","versionInfo":"0.5.21","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/source-map-support@0.5.21","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-spawn-command-0.0.2","name":"npm:spawn-command","versionInfo":"0.0.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/spawn-command@0.0.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-split-on-first-1.1.0","name":"npm:split-on-first","versionInfo":"1.1.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/split-on-first@1.1.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-sprintf-js-1.0.3","name":"npm:sprintf-js","versionInfo":"1.0.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"BSD-3-Clause AND BSD-3-Clause-Clear","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/sprintf-js@1.0.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-ssr-window-4.0.2","name":"npm:ssr-window","versionInfo":"4.0.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/ssr-window@4.0.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-stack-utils-2.0.6","name":"npm:stack-utils","versionInfo":"2.0.6","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/stack-utils@2.0.6","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-stop-iteration-iterator-1.0.0","name":"npm:stop-iteration-iterator","versionInfo":"1.0.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/stop-iteration-iterator@1.0.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-strict-uri-encode-2.0.0","name":"npm:strict-uri-encode","versionInfo":"2.0.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/strict-uri-encode@2.0.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-string-argv-0.3.2","name":"npm:string-argv","versionInfo":"0.3.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/string-argv@0.3.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-string-convert-0.2.1","name":"npm:string-convert","versionInfo":"0.2.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/string-convert@0.2.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-string-length-4.0.2","name":"npm:string-length","versionInfo":"4.0.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/string-length@4.0.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-string-width-4.2.3","name":"npm:string-width","versionInfo":"4.2.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/string-width@4.2.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-string-width-5.1.2","name":"npm:string-width","versionInfo":"5.1.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/string-width@5.1.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-string.prototype.matchall-4.0.10","name":"npm:string.prototype.matchall","versionInfo":"4.0.10","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/string.prototype.matchall@4.0.10","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-string.prototype.trim-1.2.8","name":"npm:string.prototype.trim","versionInfo":"1.2.8","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/string.prototype.trim@1.2.8","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-string.prototype.trimend-1.0.7","name":"npm:string.prototype.trimend","versionInfo":"1.0.7","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/string.prototype.trimend@1.0.7","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-string.prototype.trimstart-1.0.7","name":"npm:string.prototype.trimstart","versionInfo":"1.0.7","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/string.prototype.trimstart@1.0.7","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-strip-ansi-6.0.1","name":"npm:strip-ansi","versionInfo":"6.0.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/strip-ansi@6.0.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-strip-ansi-7.1.0","name":"npm:strip-ansi","versionInfo":"7.1.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/strip-ansi@7.1.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-strip-bom-4.0.0","name":"npm:strip-bom","versionInfo":"4.0.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/strip-bom@4.0.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-strip-final-newline-2.0.0","name":"npm:strip-final-newline","versionInfo":"2.0.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/strip-final-newline@2.0.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-strip-final-newline-3.0.0","name":"npm:strip-final-newline","versionInfo":"3.0.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/strip-final-newline@3.0.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-strip-indent-3.0.0","name":"npm:strip-indent","versionInfo":"3.0.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/strip-indent@3.0.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-strip-json-comments-2.0.1","name":"npm:strip-json-comments","versionInfo":"2.0.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/strip-json-comments@2.0.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-style-value-types-3.2.0","name":"npm:style-value-types","versionInfo":"3.2.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/style-value-types@3.2.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-stylis-4.2.0","name":"npm:stylis","versionInfo":"4.2.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/stylis@4.2.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-supports-color-5.5.0","name":"npm:supports-color","versionInfo":"5.5.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/supports-color@5.5.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-supports-color-7.2.0","name":"npm:supports-color","versionInfo":"7.2.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/supports-color@7.2.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-supports-color-8.1.1","name":"npm:supports-color","versionInfo":"8.1.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/supports-color@8.1.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-supports-preserve-symlinks-flag-1.0.0","name":"npm:supports-preserve-symlinks-flag","versionInfo":"1.0.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/supports-preserve-symlinks-flag@1.0.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-swiper-8.4.7","name":"npm:swiper","versionInfo":"8.4.7","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/swiper@8.4.7","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-symbol-tree-3.2.4","name":"npm:symbol-tree","versionInfo":"3.2.4","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/symbol-tree@3.2.4","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-tabbable-6.2.0","name":"npm:tabbable","versionInfo":"6.2.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/tabbable@6.2.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-table-6.8.1","name":"npm:table","versionInfo":"6.8.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"BSD-3-Clause","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/table@6.8.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-tapable-2.2.1","name":"npm:tapable","versionInfo":"2.2.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/tapable@2.2.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-terser-5.27.0","name":"npm:terser","versionInfo":"5.27.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"BSD-2-Clause","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/terser@5.27.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-terser-webpack-plugin-5.3.10","name":"npm:terser-webpack-plugin","versionInfo":"5.3.10","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/terser-webpack-plugin@5.3.10","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-test-exclude-6.0.0","name":"npm:test-exclude","versionInfo":"6.0.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"ISC","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/test-exclude@6.0.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-text-table-0.2.0","name":"npm:text-table","versionInfo":"0.2.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/text-table@0.2.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-through-2.3.8","name":"npm:through","versionInfo":"2.3.8","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/through@2.3.8","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-tiny-invariant-1.3.1","name":"npm:tiny-invariant","versionInfo":"1.3.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/tiny-invariant@1.3.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-tiny-warning-1.0.3","name":"npm:tiny-warning","versionInfo":"1.0.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/tiny-warning@1.0.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-tmpl-1.0.5","name":"npm:tmpl","versionInfo":"1.0.5","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"BSD-3-Clause","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/tmpl@1.0.5","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-to-fast-properties-2.0.0","name":"npm:to-fast-properties","versionInfo":"2.0.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/to-fast-properties@2.0.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-to-regex-range-5.0.1","name":"npm:to-regex-range","versionInfo":"5.0.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/to-regex-range@5.0.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-tough-cookie-4.1.3","name":"npm:tough-cookie","versionInfo":"4.1.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"BSD-3-Clause","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/tough-cookie@4.1.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-tr46-3.0.0","name":"npm:tr46","versionInfo":"3.0.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/tr46@3.0.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-tree-kill-1.2.2","name":"npm:tree-kill","versionInfo":"1.2.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/tree-kill@1.2.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-ts-jest-29.0.4","name":"npm:ts-jest","versionInfo":"29.0.4","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/ts-jest@29.0.4","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-ts-node-10.9.1","name":"npm:ts-node","versionInfo":"10.9.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/ts-node@10.9.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-tslib-2.6.0","name":"npm:tslib","versionInfo":"2.6.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"0BSD","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/tslib@2.6.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-tsutils-3.21.0","name":"npm:tsutils","versionInfo":"3.21.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/tsutils@3.21.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-tunnel-0.0.6","name":"npm:tunnel","versionInfo":"0.0.6","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/tunnel@0.0.6","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-type-check-0.4.0","name":"npm:type-check","versionInfo":"0.4.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/type-check@0.4.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-type-detect-4.0.8","name":"npm:type-detect","versionInfo":"4.0.8","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/type-detect@4.0.8","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-type-fest-0.20.2","name":"npm:type-fest","versionInfo":"0.20.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT OR (CC0-1.0 AND MIT)","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/type-fest@0.20.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-type-fest-0.21.3","name":"npm:type-fest","versionInfo":"0.21.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT OR (CC0-1.0 AND MIT)","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/type-fest@0.21.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-type-fest-2.19.0","name":"npm:type-fest","versionInfo":"2.19.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"CC0-1.0 OR MIT OR (CC0-1.0 AND MIT)","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/type-fest@2.19.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-typed-array-buffer-1.0.0","name":"npm:typed-array-buffer","versionInfo":"1.0.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/typed-array-buffer@1.0.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-typed-array-byte-length-1.0.0","name":"npm:typed-array-byte-length","versionInfo":"1.0.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/typed-array-byte-length@1.0.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-typed-array-byte-offset-1.0.0","name":"npm:typed-array-byte-offset","versionInfo":"1.0.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/typed-array-byte-offset@1.0.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-typed-array-length-1.0.4","name":"npm:typed-array-length","versionInfo":"1.0.4","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/typed-array-length@1.0.4","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-typescript-4.9.5","name":"npm:typescript","versionInfo":"4.9.5","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/typescript@4.9.5","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-typescript-5.1.6","name":"npm:typescript","versionInfo":"5.1.6","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/typescript@5.1.6","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-unbox-primitive-1.0.2","name":"npm:unbox-primitive","versionInfo":"1.0.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/unbox-primitive@1.0.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-undici-5.28.2","name":"npm:undici","versionInfo":"5.28.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/undici@5.28.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-unicode-canonical-property-names-ecmascript-2.0.0","name":"npm:unicode-canonical-property-names-ecmascript","versionInfo":"2.0.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/unicode-canonical-property-names-ecmascript@2.0.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-unicode-match-property-ecmascript-2.0.0","name":"npm:unicode-match-property-ecmascript","versionInfo":"2.0.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/unicode-match-property-ecmascript@2.0.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-unicode-match-property-value-ecmascript-2.1.0","name":"npm:unicode-match-property-value-ecmascript","versionInfo":"2.1.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/unicode-match-property-value-ecmascript@2.1.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-unicode-property-aliases-ecmascript-2.1.0","name":"npm:unicode-property-aliases-ecmascript","versionInfo":"2.1.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/unicode-property-aliases-ecmascript@2.1.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-universalify-0.2.0","name":"npm:universalify","versionInfo":"0.2.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/universalify@0.2.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-unload-2.2.0","name":"npm:unload","versionInfo":"2.2.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/unload@2.2.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-update-browserslist-db-1.0.13","name":"npm:update-browserslist-db","versionInfo":"1.0.13","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/update-browserslist-db@1.0.13","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-update-check-1.5.4","name":"npm:update-check","versionInfo":"1.5.4","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/update-check@1.5.4","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-uri-js-4.4.1","name":"npm:uri-js","versionInfo":"4.4.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"BSD-2-Clause","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/uri-js@4.4.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-url-parse-1.5.10","name":"npm:url-parse","versionInfo":"1.5.10","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/url-parse@1.5.10","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-use-composed-ref-1.3.0","name":"npm:use-composed-ref","versionInfo":"1.3.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/use-composed-ref@1.3.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-use-deep-compare-effect-1.8.1","name":"npm:use-deep-compare-effect","versionInfo":"1.8.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/use-deep-compare-effect@1.8.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-use-isomorphic-layout-effect-1.1.2","name":"npm:use-isomorphic-layout-effect","versionInfo":"1.1.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/use-isomorphic-layout-effect@1.1.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-use-latest-1.2.1","name":"npm:use-latest","versionInfo":"1.2.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/use-latest@1.2.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-use-memo-one-1.1.3","name":"npm:use-memo-one","versionInfo":"1.1.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/use-memo-one@1.1.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-v8-compile-cache-2.4.0","name":"npm:v8-compile-cache","versionInfo":"2.4.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/v8-compile-cache@2.4.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-v8-compile-cache-lib-3.0.1","name":"npm:v8-compile-cache-lib","versionInfo":"3.0.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/v8-compile-cache-lib@3.0.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-v8-to-istanbul-9.2.0","name":"npm:v8-to-istanbul","versionInfo":"9.2.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"ISC","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/v8-to-istanbul@9.2.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-vite-4.5.2","name":"npm:vite","versionInfo":"4.5.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/vite@4.5.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-w3c-xmlserializer-4.0.0","name":"npm:w3c-xmlserializer","versionInfo":"4.0.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/w3c-xmlserializer@4.0.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-walker-1.0.8","name":"npm:walker","versionInfo":"1.0.8","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/walker@1.0.8","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-watchpack-2.4.0","name":"npm:watchpack","versionInfo":"2.4.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/watchpack@2.4.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-web-streams-polyfill-3.3.2","name":"npm:web-streams-polyfill","versionInfo":"3.3.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/web-streams-polyfill@3.3.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-webidl-conversions-7.0.0","name":"npm:webidl-conversions","versionInfo":"7.0.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"BSD-2-Clause","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/webidl-conversions@7.0.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-webpack-5.76.0","name":"npm:webpack","versionInfo":"5.76.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/webpack@5.76.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-webpack-sources-3.2.3","name":"npm:webpack-sources","versionInfo":"3.2.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/webpack-sources@3.2.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-webpack-sources-1.4.3","name":"npm:webpack-sources","versionInfo":"1.4.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/webpack-sources@1.4.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-whatwg-encoding-2.0.0","name":"npm:whatwg-encoding","versionInfo":"2.0.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/whatwg-encoding@2.0.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-whatwg-mimetype-3.0.0","name":"npm:whatwg-mimetype","versionInfo":"3.0.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/whatwg-mimetype@3.0.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-whatwg-url-11.0.0","name":"npm:whatwg-url","versionInfo":"11.0.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/whatwg-url@11.0.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-which-2.0.2","name":"npm:which","versionInfo":"2.0.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"ISC","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/which@2.0.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-which-boxed-primitive-1.0.2","name":"npm:which-boxed-primitive","versionInfo":"1.0.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/which-boxed-primitive@1.0.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-which-collection-1.0.1","name":"npm:which-collection","versionInfo":"1.0.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/which-collection@1.0.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-which-typed-array-1.1.13","name":"npm:which-typed-array","versionInfo":"1.1.13","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/which-typed-array@1.1.13","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-widest-line-4.0.1","name":"npm:widest-line","versionInfo":"4.0.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/widest-line@4.0.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-wrap-ansi-6.2.0","name":"npm:wrap-ansi","versionInfo":"6.2.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/wrap-ansi@6.2.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-wrap-ansi-7.0.0","name":"npm:wrap-ansi","versionInfo":"7.0.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/wrap-ansi@7.0.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-wrap-ansi-8.1.0","name":"npm:wrap-ansi","versionInfo":"8.1.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/wrap-ansi@8.1.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-write-file-atomic-4.0.2","name":"npm:write-file-atomic","versionInfo":"4.0.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"ISC","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/write-file-atomic@4.0.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-ws-8.16.0","name":"npm:ws","versionInfo":"8.16.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/ws@8.16.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-xml-1.0.1","name":"npm:xml","versionInfo":"1.0.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/xml@1.0.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-xml-name-validator-4.0.0","name":"npm:xml-name-validator","versionInfo":"4.0.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/xml-name-validator@4.0.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-xmlchars-2.2.0","name":"npm:xmlchars","versionInfo":"2.2.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/xmlchars@2.2.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-y18n-5.0.8","name":"npm:y18n","versionInfo":"5.0.8","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"ISC","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/y18n@5.0.8","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-yallist-3.1.1","name":"npm:yallist","versionInfo":"3.1.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"ISC","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/yallist@3.1.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-yallist-4.0.0","name":"npm:yallist","versionInfo":"4.0.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"ISC","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/yallist@4.0.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-yaml-1.10.2","name":"npm:yaml","versionInfo":"1.10.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"ISC","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/yaml@1.10.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-yaml-2.3.4","name":"npm:yaml","versionInfo":"2.3.4","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"ISC","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/yaml@2.3.4","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-yargs-17.7.2","name":"npm:yargs","versionInfo":"17.7.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/yargs@17.7.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-yargs-parser-21.1.1","name":"npm:yargs-parser","versionInfo":"21.1.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"ISC","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/yargs-parser@21.1.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-yn-3.1.1","name":"npm:yn","versionInfo":"3.1.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/yn@3.1.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-yocto-queue-0.1.0","name":"npm:yocto-queue","versionInfo":"0.1.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/yocto-queue@0.1.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-semver-6.3.1","name":"npm:semver","versionInfo":"6.3.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"ISC","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/semver@6.3.1","referenceType":"purl"}]}],"relationships":[{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-aws-crypto-crc32-3.0.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-aws-crypto-ie11-detection-3.0.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-aws-crypto-sha256-browser-3.0.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-aws-crypto-sha256-js-3.0.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-aws-crypto-supports-web-crypto-3.0.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-aws-crypto-util-3.0.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-aws-sdk-client-cognito-identity-3.436.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-aws-sdk-client-sso-3.436.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-aws-sdk-client-sts-3.436.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-aws-sdk-core-3.436.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-aws-sdk-credential-provider-cognito-identity-3.436.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-aws-sdk-credential-provider-env-3.433.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-aws-sdk-credential-provider-http-3.435.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-aws-sdk-credential-provider-ini-3.436.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-aws-sdk-credential-provider-node-3.436.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-aws-sdk-credential-provider-process-3.433.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-aws-sdk-credential-provider-sso-3.436.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-aws-sdk-credential-provider-web-identity-3.433.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-aws-sdk-credential-providers-3.436.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-aws-sdk-middleware-host-header-3.433.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-aws-sdk-middleware-logger-3.433.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-aws-sdk-middleware-recursion-detection-3.433.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-aws-sdk-middleware-sdk-sts-3.433.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-aws-sdk-middleware-signing-3.433.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-aws-sdk-middleware-user-agent-3.433.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-aws-sdk-region-config-resolver-3.433.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-aws-sdk-token-providers-3.435.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-aws-sdk-types-3.433.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-aws-sdk-util-endpoints-3.433.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-aws-sdk-util-locate-window-3.310.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-aws-sdk-util-user-agent-browser-3.433.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-aws-sdk-util-user-agent-node-3.433.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-aws-sdk-util-utf8-browser-3.259.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-babel-runtime-7.23.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-smithy-abort-controller-2.0.12"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-smithy-config-resolver-2.0.16"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-smithy-credential-provider-imds-2.0.18"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-smithy-eventstream-codec-2.0.12"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-smithy-fetch-http-handler-2.2.4"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-smithy-hash-node-2.0.12"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-smithy-invalid-dependency-2.0.12"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-smithy-is-array-buffer-2.0.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-smithy-middleware-content-length-2.0.14"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-smithy-middleware-endpoint-2.1.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-smithy-middleware-retry-2.0.18"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-smithy-middleware-serde-2.0.12"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-smithy-middleware-stack-2.0.6"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-smithy-node-config-provider-2.1.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-smithy-node-http-handler-2.1.8"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-smithy-property-provider-2.0.13"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-smithy-protocol-http-3.0.8"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-smithy-querystring-builder-2.0.12"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-smithy-querystring-parser-2.0.12"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-smithy-service-error-classification-2.0.5"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-smithy-shared-ini-file-loader-2.2.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-smithy-signature-v4-2.0.12"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-smithy-smithy-client-2.1.12"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-smithy-types-2.4.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-smithy-url-parser-2.0.12"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-smithy-util-base64-2.0.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-smithy-util-body-length-browser-2.0.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-smithy-util-body-length-node-2.1.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-smithy-util-buffer-from-2.0.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-smithy-util-config-provider-2.0.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-smithy-util-defaults-mode-browser-2.0.16"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-smithy-util-defaults-mode-node-2.0.21"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-smithy-util-hex-encoding-2.0.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-smithy-util-middleware-2.0.5"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-smithy-util-retry-2.0.5"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-smithy-util-stream-2.0.17"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-smithy-util-uri-escape-2.0.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-smithy-util-utf8-2.0.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-abort-controller-3.0.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-accepts-1.3.8"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-array-flatten-1.1.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-atomic-sleep-1.0.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-aws4-1.12.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-balanced-match-1.0.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-base64-js-1.5.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-body-parser-1.20.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-bowser-2.11.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-brace-expansion-2.0.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-buffer-6.0.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-bytes-3.1.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-call-bind-1.0.5"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-colorette-2.0.20"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-content-disposition-0.5.4"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-content-type-1.0.5"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-cookie-0.5.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-cookie-signature-1.0.6"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-cors-2.8.5"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-crypto-js-4.2.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-data-uri-to-buffer-4.0.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-date-fns-2.30.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-dateformat-4.6.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-debug-2.6.9"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-define-data-property-1.1.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-depd-2.0.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-destroy-1.2.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-dotenv-16.3.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-ee-first-1.1.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-encodeurl-1.0.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-end-of-stream-1.4.4"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-escape-html-1.0.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-etag-1.8.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-event-target-shim-5.0.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-events-3.3.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-express-4.18.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-fast-copy-3.0.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-fast-redact-3.3.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-fast-safe-stringify-2.1.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-fast-xml-parser-4.2.5"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-fetch-blob-3.2.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-finalhandler-1.2.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-formdata-polyfill-4.0.10"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-forwarded-0.2.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-fresh-0.5.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-fs-0.0.1-security"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-fs.realpath-1.0.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-function-bind-1.1.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-get-intrinsic-1.2.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-glob-8.1.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-gopd-1.0.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-has-property-descriptors-1.0.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-has-proto-1.0.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-has-symbols-1.0.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-hasown-2.0.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-help-me-4.2.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-http-errors-2.0.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-https-1.0.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-iconv-lite-0.4.24"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-ieee754-1.2.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-inflight-1.0.6"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-inherits-2.0.4"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-ipaddr.js-1.9.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-joycon-3.1.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-media-typer-0.3.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-merge-descriptors-1.0.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-methods-1.1.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-mime-1.6.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-mime-db-1.52.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-mime-types-2.1.35"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-minimatch-5.1.6"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-minimist-1.2.8"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-ms-2.0.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-ms-2.1.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-negotiator-0.6.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-node-domexception-1.0.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-node-fetch-3.3.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-object-assign-4.1.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-object-inspect-1.13.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-on-exit-leak-free-2.1.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-on-finished-2.4.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-once-1.4.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-parseurl-1.3.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-path-to-regexp-0.1.7"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-pino-8.16.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-pino-abstract-transport-1.1.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-pino-pretty-10.2.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-pino-std-serializers-6.2.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-process-0.11.10"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-process-warning-2.2.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-proxy-addr-2.0.7"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-pump-3.0.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-qs-6.11.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-quick-format-unescaped-4.0.4"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-range-parser-1.2.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-raw-body-2.5.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-readable-stream-3.6.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-readable-stream-4.4.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-real-require-0.2.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-regenerator-runtime-0.14.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-safe-buffer-5.2.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-safe-stable-stringify-2.4.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-safer-buffer-2.1.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-secure-json-parse-2.7.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-send-0.18.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-serve-static-1.15.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-set-function-length-1.1.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-setprototypeof-1.2.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-side-channel-1.0.4"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-sonic-boom-3.7.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-split2-4.2.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-statuses-2.0.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-string-decoder-1.3.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-strip-json-comments-3.1.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-strnum-1.0.5"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-thread-stream-2.4.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-toidentifier-1.0.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-tslib-1.14.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-tslib-2.6.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-type-is-1.6.18"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-unpipe-1.0.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-util-deprecate-1.0.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-utils-merge-1.0.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-uuid-8.3.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-vary-1.1.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-web-streams-polyfill-3.2.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-wrappy-1.0.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-actions-actions-checkout-3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-actions-aws-actions-amazon-ecr-login-1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-actions-aws-actions-configure-aws-credentials-3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-actions-tyankatsu0105-read-package-version-actions-1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-actions-actions-setup-node-3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-actions-codecov-codecov-action-3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-actions-pnpm-action-setup-2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-aashutoshrathi-word-wrap-1.2.6"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-actions-core-1.10.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-actions-http-client-2.2.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-adobe-css-tools-4.3.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-ampproject-remapping-2.2.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-aws-sdk-client-cognito-identity-3.370.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-aws-sdk-client-sso-3.370.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-aws-sdk-client-sso-oidc-3.370.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-aws-sdk-client-sts-3.370.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-aws-sdk-credential-provider-cognito-identity-3.370.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-aws-sdk-credential-provider-env-3.370.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-aws-sdk-credential-provider-ini-3.370.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-aws-sdk-credential-provider-node-3.370.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-aws-sdk-credential-provider-process-3.370.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-aws-sdk-credential-provider-sso-3.370.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-aws-sdk-credential-provider-web-identity-3.370.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-aws-sdk-credential-providers-3.370.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-aws-sdk-middleware-host-header-3.370.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-aws-sdk-middleware-logger-3.370.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-aws-sdk-middleware-recursion-detection-3.370.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-aws-sdk-middleware-sdk-sts-3.370.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-aws-sdk-middleware-signing-3.370.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-aws-sdk-middleware-user-agent-3.370.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-aws-sdk-token-providers-3.370.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-aws-sdk-types-3.370.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-aws-sdk-util-endpoints-3.370.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-aws-sdk-util-locate-window-3.495.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-aws-sdk-util-user-agent-browser-3.370.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-aws-sdk-util-user-agent-node-3.370.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-babel-code-frame-7.12.11"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-babel-code-frame-7.23.5"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-babel-compat-data-7.23.5"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-babel-core-7.23.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-babel-generator-7.23.6"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-babel-helper-annotate-as-pure-7.22.5"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-babel-helper-builder-binary-assignment-operator-visitor-7.22.15"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-babel-helper-compilation-targets-7.23.6"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-babel-helper-create-class-features-plugin-7.23.7"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-babel-helper-create-regexp-features-plugin-7.22.15"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-babel-helper-define-polyfill-provider-0.4.4"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-babel-helper-define-polyfill-provider-0.5.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-babel-helper-environment-visitor-7.22.20"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-babel-helper-function-name-7.23.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-babel-helper-hoist-variables-7.22.5"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-babel-helper-member-expression-to-functions-7.23.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-babel-helper-module-imports-7.22.15"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-babel-helper-module-transforms-7.23.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-babel-helper-optimise-call-expression-7.22.5"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-babel-helper-plugin-utils-7.22.5"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-babel-helper-remap-async-to-generator-7.22.20"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-babel-helper-replace-supers-7.22.20"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-babel-helper-simple-access-7.22.5"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-babel-helper-skip-transparent-expression-wrappers-7.22.5"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-babel-helper-split-export-declaration-7.22.6"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-babel-helper-string-parser-7.23.4"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-babel-helper-validator-identifier-7.22.20"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-babel-helper-validator-option-7.23.5"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-babel-helper-wrap-function-7.22.20"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-babel-helpers-7.23.8"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-babel-highlight-7.23.4"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-babel-parser-7.23.6"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-babel-plugin-bugfix-safari-id-destructuring-collision-in-function-expression-7.23.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-babel-plugin-bugfix-v8-spread-parameters-in-optional-chaining-7.23.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-babel-plugin-proposal-private-property-in-object-7.21.0-placeholder-for-preset-env.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-babel-plugin-syntax-async-generators-7.8.4"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-babel-plugin-syntax-bigint-7.8.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-babel-plugin-syntax-class-properties-7.12.13"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-babel-plugin-syntax-class-static-block-7.14.5"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-babel-plugin-syntax-dynamic-import-7.8.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-babel-plugin-syntax-export-namespace-from-7.8.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-babel-plugin-syntax-import-assertions-7.23.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-babel-plugin-syntax-import-attributes-7.23.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-babel-plugin-syntax-import-meta-7.10.4"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-babel-plugin-syntax-json-strings-7.8.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-babel-plugin-syntax-jsx-7.23.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-babel-plugin-syntax-logical-assignment-operators-7.10.4"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-babel-plugin-syntax-nullish-coalescing-operator-7.8.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-babel-plugin-syntax-numeric-separator-7.10.4"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-babel-plugin-syntax-object-rest-spread-7.8.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-babel-plugin-syntax-optional-catch-binding-7.8.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-babel-plugin-syntax-optional-chaining-7.8.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-babel-plugin-syntax-private-property-in-object-7.14.5"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-babel-plugin-syntax-top-level-await-7.14.5"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-babel-plugin-syntax-typescript-7.23.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-babel-plugin-syntax-unicode-sets-regex-7.18.6"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-babel-plugin-transform-arrow-functions-7.23.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-babel-plugin-transform-async-generator-functions-7.23.7"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-babel-plugin-transform-async-to-generator-7.23.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-babel-plugin-transform-block-scoped-functions-7.23.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-babel-plugin-transform-block-scoping-7.23.4"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-babel-plugin-transform-class-properties-7.23.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-babel-plugin-transform-class-static-block-7.23.4"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-babel-plugin-transform-classes-7.23.8"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-babel-plugin-transform-computed-properties-7.23.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-babel-plugin-transform-destructuring-7.23.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-babel-plugin-transform-dotall-regex-7.23.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-babel-plugin-transform-duplicate-keys-7.23.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-babel-plugin-transform-dynamic-import-7.23.4"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-babel-plugin-transform-exponentiation-operator-7.23.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-babel-plugin-transform-export-namespace-from-7.23.4"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-babel-plugin-transform-for-of-7.23.6"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-babel-plugin-transform-function-name-7.23.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-babel-plugin-transform-json-strings-7.23.4"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-babel-plugin-transform-literals-7.23.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-babel-plugin-transform-logical-assignment-operators-7.23.4"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-babel-plugin-transform-member-expression-literals-7.23.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-babel-plugin-transform-modules-amd-7.23.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-babel-plugin-transform-modules-commonjs-7.23.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-babel-plugin-transform-modules-systemjs-7.23.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-babel-plugin-transform-modules-umd-7.23.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-babel-plugin-transform-named-capturing-groups-regex-7.22.5"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-babel-plugin-transform-new-target-7.23.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-babel-plugin-transform-nullish-coalescing-operator-7.23.4"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-babel-plugin-transform-numeric-separator-7.23.4"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-babel-plugin-transform-object-rest-spread-7.23.4"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-babel-plugin-transform-object-super-7.23.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-babel-plugin-transform-optional-catch-binding-7.23.4"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-babel-plugin-transform-optional-chaining-7.23.4"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-babel-plugin-transform-parameters-7.23.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-babel-plugin-transform-private-methods-7.23.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-babel-plugin-transform-private-property-in-object-7.23.4"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-babel-plugin-transform-property-literals-7.23.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-babel-plugin-transform-react-display-name-7.23.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-babel-plugin-transform-react-jsx-7.23.4"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-babel-plugin-transform-react-jsx-development-7.22.5"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-babel-plugin-transform-react-jsx-self-7.23.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-babel-plugin-transform-react-jsx-source-7.23.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-babel-plugin-transform-react-pure-annotations-7.23.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-babel-plugin-transform-regenerator-7.23.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-babel-plugin-transform-reserved-words-7.23.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-babel-plugin-transform-shorthand-properties-7.23.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-babel-plugin-transform-spread-7.23.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-babel-plugin-transform-sticky-regex-7.23.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-babel-plugin-transform-template-literals-7.23.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-babel-plugin-transform-typeof-symbol-7.23.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-babel-plugin-transform-typescript-7.23.6"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-babel-plugin-transform-unicode-escapes-7.23.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-babel-plugin-transform-unicode-property-regex-7.23.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-babel-plugin-transform-unicode-regex-7.23.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-babel-plugin-transform-unicode-sets-regex-7.23.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-babel-preset-env-7.23.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-babel-preset-modules-0.1.6-no-external-plugins"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-babel-preset-react-7.22.15"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-babel-preset-typescript-7.22.15"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-babel-regjsgen-0.8.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-babel-runtime-7.23.8"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-babel-runtime-corejs3-7.23.8"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-babel-template-7.22.15"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-babel-traverse-7.23.7"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-babel-types-7.23.6"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-bcoe-v8-coverage-0.2.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-cspotcode-source-map-support-0.8.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-emotion-babel-plugin-11.11.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-emotion-cache-11.11.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-emotion-css-11.11.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-emotion-hash-0.9.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-emotion-is-prop-valid-0.8.8"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-emotion-memoize-0.7.4"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-emotion-memoize-0.8.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-emotion-react-11.11.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-emotion-serialize-1.1.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-emotion-sheet-1.2.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-emotion-unitless-0.8.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-emotion-use-insertion-effect-with-fallbacks-1.0.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-emotion-utils-1.2.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-emotion-weak-memoize-0.3.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-esbuild-android-arm-0.16.17"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-esbuild-android-arm-0.18.20"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-esbuild-android-arm64-0.16.17"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-esbuild-android-arm64-0.18.20"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-esbuild-android-x64-0.16.17"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-esbuild-android-x64-0.18.20"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-esbuild-darwin-arm64-0.16.17"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-esbuild-darwin-arm64-0.18.20"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-esbuild-darwin-x64-0.16.17"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-esbuild-darwin-x64-0.18.20"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-esbuild-freebsd-arm64-0.16.17"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-esbuild-freebsd-arm64-0.18.20"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-esbuild-freebsd-x64-0.16.17"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-esbuild-freebsd-x64-0.18.20"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-esbuild-linux-arm-0.16.17"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-esbuild-linux-arm-0.18.20"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-esbuild-linux-arm64-0.16.17"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-esbuild-linux-arm64-0.18.20"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-esbuild-linux-ia32-0.16.17"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-esbuild-linux-ia32-0.18.20"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-esbuild-linux-loong64-0.16.17"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-esbuild-linux-loong64-0.18.20"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-esbuild-linux-mips64el-0.16.17"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-esbuild-linux-mips64el-0.18.20"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-esbuild-linux-ppc64-0.16.17"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-esbuild-linux-ppc64-0.18.20"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-esbuild-linux-riscv64-0.16.17"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-esbuild-linux-riscv64-0.18.20"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-esbuild-linux-s390x-0.16.17"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-esbuild-linux-s390x-0.18.20"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-esbuild-linux-x64-0.16.17"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-esbuild-linux-x64-0.18.20"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-esbuild-netbsd-x64-0.16.17"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-esbuild-netbsd-x64-0.18.20"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-esbuild-openbsd-x64-0.16.17"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-esbuild-openbsd-x64-0.18.20"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-esbuild-sunos-x64-0.16.17"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-esbuild-sunos-x64-0.18.20"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-esbuild-win32-arm64-0.16.17"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-esbuild-win32-arm64-0.18.20"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-esbuild-win32-ia32-0.16.17"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-esbuild-win32-ia32-0.18.20"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-esbuild-win32-x64-0.16.17"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-esbuild-win32-x64-0.18.20"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-eslint-community-eslint-utils-4.4.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-eslint-community-regexpp-4.10.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-eslint-eslintrc-0.4.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-eslint-eslintrc-2.1.4"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-eslint-js-8.44.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-fastify-busboy-2.1.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-floating-ui-core-1.5.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-floating-ui-dom-1.5.4"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-floating-ui-react-0.19.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-floating-ui-react-dom-1.3.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-floating-ui-utils-0.2.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-formatjs-ecma402-abstract-1.18.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-formatjs-fast-memoize-2.2.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-formatjs-icu-messageformat-parser-2.7.5"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-formatjs-icu-skeleton-parser-1.7.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-formatjs-intl-localematcher-0.5.4"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-humanwhocodes-config-array-0.5.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-humanwhocodes-config-array-0.11.14"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-humanwhocodes-module-importer-1.0.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-humanwhocodes-object-schema-1.2.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-humanwhocodes-object-schema-2.0.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-internationalized-date-3.5.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-internationalized-message-3.1.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-internationalized-number-3.5.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-internationalized-string-3.2.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-istanbuljs-load-nyc-config-1.1.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-istanbuljs-schema-0.1.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-jest-console-29.7.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-jest-core-29.7.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-jest-environment-29.7.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-jest-expect-29.7.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-jest-expect-utils-29.7.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-jest-fake-timers-29.7.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-jest-globals-29.7.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-jest-reporters-29.7.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-jest-schemas-29.6.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-jest-source-map-29.6.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-jest-test-result-29.7.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-jest-test-sequencer-29.7.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-jest-transform-29.7.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-jest-types-26.6.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-jest-types-29.6.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-jridgewell-gen-mapping-0.3.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-jridgewell-resolve-uri-3.1.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-jridgewell-set-array-1.1.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-jridgewell-source-map-0.3.5"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-jridgewell-sourcemap-codec-1.4.15"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-jridgewell-trace-mapping-0.3.9"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-jridgewell-trace-mapping-0.3.22"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-mantine-core-5.10.5"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-mantine-dates-5.10.5"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-mantine-hooks-5.10.5"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-mantine-styles-5.10.5"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-mantine-utils-5.10.5"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-nodelib-fs.scandir-2.1.5"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-nodelib-fs.stat-2.0.5"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-nodelib-fs.walk-1.2.8"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-radix-ui-number-1.0.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-radix-ui-primitive-1.0.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-radix-ui-react-compose-refs-1.0.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-radix-ui-react-context-1.0.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-radix-ui-react-direction-1.0.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-radix-ui-react-presence-1.0.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-radix-ui-react-primitive-1.0.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-radix-ui-react-scroll-area-1.0.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-radix-ui-react-slot-1.0.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-radix-ui-react-use-callback-ref-1.0.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-radix-ui-react-use-layout-effect-1.0.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-react-aria-button-3.5.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-react-aria-checkbox-3.4.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-react-aria-combobox-3.3.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-react-aria-dialog-3.5.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-react-aria-focus-3.13.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-react-aria-focus-3.16.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-react-aria-i18n-3.8.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-react-aria-i18n-3.10.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-react-aria-interactions-3.20.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-react-aria-label-3.7.4"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-react-aria-listbox-3.5.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-react-aria-live-announcer-3.3.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-react-aria-menu-3.12.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-react-aria-overlays-3.9.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-react-aria-overlays-3.20.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-react-aria-radio-3.6.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-react-aria-searchfield-3.3.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-react-aria-selection-3.17.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-react-aria-ssr-3.9.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-react-aria-switch-3.5.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-react-aria-textfield-3.6.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-react-aria-toggle-3.10.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-react-aria-utils-3.18.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-react-aria-utils-3.23.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-react-aria-visually-hidden-3.8.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-react-aria-visually-hidden-3.8.8"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-react-dnd-asap-4.0.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-react-dnd-asap-5.0.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-react-dnd-invariant-2.0.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-react-dnd-invariant-4.0.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-react-dnd-shallowequal-2.0.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-react-stately-checkbox-3.6.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-react-stately-collections-3.9.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-react-stately-collections-3.10.4"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-react-stately-combobox-3.5.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-react-stately-flags-3.0.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-react-stately-form-3.0.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-react-stately-grid-3.8.4"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-react-stately-layout-3.13.5"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-react-stately-list-3.9.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-react-stately-list-3.10.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-react-stately-menu-3.6.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-react-stately-overlays-3.6.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-react-stately-overlays-3.6.4"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-react-stately-radio-3.8.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-react-stately-searchfield-3.4.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-react-stately-select-3.6.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-react-stately-selection-3.14.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-react-stately-table-3.11.4"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-react-stately-toggle-3.7.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-react-stately-tree-3.7.5"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-react-stately-utils-3.9.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-react-stately-virtualizer-3.6.6"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-react-types-button-3.7.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-react-types-button-3.9.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-react-types-checkbox-3.4.4"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-react-types-checkbox-3.6.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-react-types-combobox-3.6.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-react-types-dialog-3.5.7"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-react-types-grid-3.2.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-react-types-listbox-3.4.6"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-react-types-menu-3.9.6"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-react-types-overlays-3.8.4"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-react-types-radio-3.4.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-react-types-searchfield-3.5.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-react-types-select-3.9.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-react-types-shared-3.18.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-react-types-shared-3.22.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-react-types-switch-3.3.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-react-types-table-3.9.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-react-types-textfield-3.9.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-remix-run-router-1.7.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-sinclair-typebox-0.27.8"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-sinonjs-commons-3.0.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-sinonjs-fake-timers-10.3.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-smithy-abort-controller-1.1.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-smithy-config-resolver-1.1.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-smithy-credential-provider-imds-1.1.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-smithy-eventstream-codec-1.1.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-smithy-fetch-http-handler-1.1.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-smithy-hash-node-1.1.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-smithy-invalid-dependency-1.1.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-smithy-is-array-buffer-1.1.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-smithy-middleware-content-length-1.1.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-smithy-middleware-endpoint-1.1.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-smithy-middleware-retry-1.1.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-smithy-middleware-serde-1.1.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-smithy-middleware-stack-1.1.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-smithy-node-config-provider-1.1.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-smithy-node-http-handler-1.1.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-smithy-property-provider-1.2.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-smithy-protocol-http-1.2.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-smithy-querystring-builder-1.1.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-smithy-querystring-parser-1.1.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-smithy-service-error-classification-1.1.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-smithy-shared-ini-file-loader-1.1.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-smithy-signature-v4-1.1.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-smithy-smithy-client-1.1.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-smithy-types-1.2.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-smithy-url-parser-1.1.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-smithy-util-base64-1.1.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-smithy-util-body-length-browser-1.1.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-smithy-util-body-length-node-1.1.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-smithy-util-buffer-from-1.1.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-smithy-util-config-provider-1.1.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-smithy-util-defaults-mode-browser-1.1.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-smithy-util-defaults-mode-node-1.1.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-smithy-util-hex-encoding-1.1.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-smithy-util-middleware-1.1.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-smithy-util-retry-1.1.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-smithy-util-stream-1.1.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-smithy-util-uri-escape-1.1.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-smithy-util-utf8-1.1.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-swc-helpers-0.4.14"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-swc-helpers-0.4.36"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-swc-helpers-0.5.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-testing-library-dom-7.31.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-testing-library-dom-8.20.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-testing-library-jest-dom-5.17.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-testing-library-react-11.2.7"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-testing-library-react-hooks-5.1.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-testing-library-user-event-14.4.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-tootallnate-once-2.0.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-tsconfig-node10-1.0.9"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-tsconfig-node12-1.0.11"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-tsconfig-node14-1.0.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-tsconfig-node16-1.0.4"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-types-aria-query-4.2.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-types-aria-query-5.0.4"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-types-babel-core-7.20.5"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-types-babel-generator-7.6.8"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-types-babel-template-7.4.4"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-types-babel-traverse-7.20.5"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-types-color-3.0.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-types-color-convert-2.0.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-types-color-name-1.1.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-types-crypto-js-4.1.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-types-cytoscape-3.19.10"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-types-eslint-8.56.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-types-eslint-scope-3.7.7"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-types-estree-0.0.51"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-types-file-saver-2.0.5"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-types-flat-5.0.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-types-graceful-fs-4.1.9"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-types-history-4.7.11"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-types-hoist-non-react-statics-3.3.5"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-types-istanbul-lib-coverage-2.0.6"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-types-istanbul-lib-report-3.0.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-types-istanbul-reports-3.0.4"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-types-jest-26.0.24"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-types-jsdom-20.0.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-types-json-schema-7.0.15"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-types-lodash-4.14.195"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-types-node-17.0.45"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-types-papaparse-5.3.7"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-types-parse-json-4.0.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-types-prop-types-15.7.11"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-types-react-17.0.62"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-types-react-beautiful-dnd-13.1.4"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-types-react-dom-17.0.20"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-types-react-redux-7.1.33"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-types-react-router-5.1.20"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-types-react-router-dom-5.3.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-types-react-slick-0.23.10"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-types-react-table-7.7.14"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-types-react-test-renderer-18.0.7"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-types-react-transition-group-4.4.6"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-types-scheduler-0.16.8"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-types-semver-7.5.6"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-types-stack-utils-2.0.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-types-testing-library-jest-dom-5.14.9"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-types-tough-cookie-4.0.5"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-types-uuid-8.3.4"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-types-yargs-15.0.19"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-types-yargs-17.0.32"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-types-yargs-parser-21.0.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-typescript-eslint-eslint-plugin-5.62.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-typescript-eslint-parser-5.62.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-typescript-eslint-scope-manager-5.62.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-typescript-eslint-type-utils-5.62.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-typescript-eslint-types-5.62.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-typescript-eslint-typescript-estree-5.62.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-typescript-eslint-utils-5.62.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-typescript-eslint-visitor-keys-5.62.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-virtuoso.dev-react-urx-0.2.13"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-virtuoso.dev-urx-0.2.13"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-vitejs-plugin-react-4.0.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-webassemblyjs-ast-1.11.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-webassemblyjs-floating-point-hex-parser-1.11.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-webassemblyjs-helper-api-error-1.11.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-webassemblyjs-helper-buffer-1.11.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-webassemblyjs-helper-numbers-1.11.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-webassemblyjs-helper-wasm-bytecode-1.11.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-webassemblyjs-helper-wasm-section-1.11.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-webassemblyjs-ieee754-1.11.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-webassemblyjs-leb128-1.11.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-webassemblyjs-utf8-1.11.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-webassemblyjs-wasm-edit-1.11.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-webassemblyjs-wasm-gen-1.11.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-webassemblyjs-wasm-opt-1.11.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-webassemblyjs-wasm-parser-1.11.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-webassemblyjs-wast-printer-1.11.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-xtuc-ieee754-1.2.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-xtuc-long-4.2.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-zeit-schemas-2.29.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-abab-2.0.6"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-acorn-7.4.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-acorn-8.11.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-acorn-globals-7.0.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-acorn-import-assertions-1.9.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-acorn-jsx-5.3.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-acorn-walk-8.3.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-agent-base-6.0.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-aggregate-error-3.1.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-ajv-6.12.6"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-ajv-8.11.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-ajv-8.12.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-ajv-keywords-3.5.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-ansi-align-3.0.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-ansi-colors-4.1.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-ansi-escapes-4.3.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-ansi-regex-5.0.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-ansi-regex-6.0.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-ansi-styles-3.2.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-ansi-styles-4.3.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-ansi-styles-5.2.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-ansi-styles-6.2.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-anymatch-3.1.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-arch-2.2.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-arg-4.1.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-arg-5.0.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-argparse-1.0.10"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-argparse-2.0.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-aria-hidden-1.2.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-aria-query-4.2.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-aria-query-5.1.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-aria-query-5.3.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-array-buffer-byte-length-1.0.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-array-includes-3.1.7"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-array-union-2.1.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-array.prototype.flat-1.3.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-array.prototype.flatmap-1.3.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-array.prototype.tosorted-1.1.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-arraybuffer.prototype.slice-1.0.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-astral-regex-2.0.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-asynckit-0.4.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-available-typed-arrays-1.0.5"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-babel-jest-29.0.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-babel-jest-29.7.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-babel-plugin-istanbul-6.1.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-babel-plugin-jest-hoist-29.6.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-babel-plugin-macros-3.1.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-babel-plugin-polyfill-corejs2-0.4.8"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-babel-plugin-polyfill-corejs3-0.8.7"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-babel-plugin-polyfill-regenerator-0.5.5"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-babel-preset-current-node-syntax-1.0.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-babel-preset-jest-29.6.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-big-integer-1.6.52"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-big.js-5.2.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-body-parser-1.20.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-boxen-7.0.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-brace-expansion-1.1.11"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-braces-3.0.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-broadcast-channel-3.7.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-browserslist-4.22.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-bs-logger-0.2.6"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-bser-2.1.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-buffer-from-1.1.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-bytes-3.0.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-callsites-3.1.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-camelcase-5.3.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-camelcase-6.3.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-camelcase-7.0.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-caniuse-lite-1.0.30001579"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-chalk-2.4.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-chalk-3.0.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-chalk-4.1.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-chalk-5.0.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-chalk-5.2.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-chalk-template-0.4.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-char-regex-1.0.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-chrome-trace-event-1.0.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-ci-info-3.9.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-cjs-module-lexer-1.2.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-classnames-2.5.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-clean-stack-2.2.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-cli-boxes-3.0.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-cli-cursor-3.1.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-cli-truncate-2.1.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-cli-truncate-3.1.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-clipboardy-3.0.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-cliui-8.0.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-clsx-1.1.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-clsx-1.2.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-clsx-2.1.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-co-4.6.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-collect-v8-coverage-1.0.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-color-3.2.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-color-convert-1.9.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-color-convert-2.0.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-color-name-1.1.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-color-name-1.1.4"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-color-string-1.9.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-combined-stream-1.0.8"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-commander-2.20.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-commander-10.0.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-compressible-2.0.18"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-compression-1.7.4"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-concat-map-0.0.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-concurrently-8.2.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-content-disposition-0.5.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-convert-source-map-1.9.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-convert-source-map-2.0.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-core-js-compat-3.35.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-core-js-pure-3.35.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-cose-base-2.2.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-cosmiconfig-7.1.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-create-jest-29.7.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-create-require-1.1.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-cross-spawn-7.0.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-css-box-model-1.2.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-css.escape-1.5.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-cssom-0.3.8"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-cssom-0.5.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-cssstyle-2.3.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-csstype-3.0.9"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-csstype-3.1.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-cytoscape-3.25.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-cytoscape-canvas-3.0.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-cytoscape-d3-force-1.1.4"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-cytoscape-dagre-2.5.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-cytoscape-fcose-2.2.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-cytoscape-klay-3.1.4"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-d3-dispatch-2.0.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-d3-force-2.1.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-d3-quadtree-2.0.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-d3-timer-2.0.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-dagre-0.8.5"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-data-urls-3.0.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-dayjs-1.11.9"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-debug-4.3.4"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-decimal.js-10.4.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-decode-uri-component-0.2.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-dedent-1.5.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-deep-equal-2.2.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-deep-extend-0.6.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-deep-is-0.1.4"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-deepmerge-4.3.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-define-properties-1.2.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-delayed-stream-1.0.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-dequal-2.0.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-detect-newline-3.1.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-detect-node-2.1.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-diff-4.0.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-diff-sequences-26.6.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-diff-sequences-29.6.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-dir-glob-3.0.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-dnd-core-11.1.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-dnd-core-16.0.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-doctrine-2.1.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-doctrine-3.0.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-dom-accessibility-api-0.5.16"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-dom-align-1.12.4"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-dom-helpers-5.2.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-dom7-4.0.6"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-domexception-4.0.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-eastasianwidth-0.2.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-electron-to-chromium-1.4.640"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-emittery-0.13.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-emoji-regex-8.0.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-emoji-regex-9.2.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-emojis-list-3.0.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-enhanced-resolve-5.15.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-enquire.js-2.1.6"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-enquirer-2.4.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-entities-4.5.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-error-ex-1.3.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-es-abstract-1.22.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-es-get-iterator-1.1.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-es-module-lexer-0.9.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-es-set-tostringtag-2.0.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-es-shim-unscopables-1.0.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-es-to-primitive-1.2.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-esbuild-0.16.17"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-esbuild-0.18.20"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-esbuild-loader-2.21.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-escalade-3.1.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-escape-string-regexp-1.0.5"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-escape-string-regexp-2.0.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-escape-string-regexp-4.0.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-escodegen-2.1.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-eslint-7.32.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-eslint-8.45.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-eslint-plugin-react-7.33.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-eslint-plugin-react-hooks-4.6.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-eslint-scope-5.1.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-eslint-scope-7.2.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-eslint-utils-2.1.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-eslint-visitor-keys-1.3.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-eslint-visitor-keys-2.1.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-eslint-visitor-keys-3.4.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-espree-7.3.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-espree-9.6.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-esprima-4.0.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-esquery-1.5.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-esrecurse-4.3.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-estraverse-4.3.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-estraverse-5.3.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-esutils-2.0.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-execa-5.1.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-execa-7.2.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-exenv-1.2.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-exit-0.1.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-expect-29.7.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-fast-deep-equal-3.1.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-fast-glob-3.3.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-fast-json-stable-stringify-2.1.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-fast-levenshtein-2.0.6"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-fast-url-parser-1.1.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-fastq-1.16.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-fb-watchman-2.0.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-file-entry-cache-6.0.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-file-saver-2.0.5"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-fill-range-7.0.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-filter-console-0.1.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-filter-obj-1.1.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-find-root-1.1.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-find-up-4.1.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-find-up-5.0.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-flat-5.0.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-flat-cache-3.2.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-flatted-3.2.9"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-for-each-0.3.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-form-data-4.0.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-framer-motion-2.9.5"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-framesync-4.1.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-fsevents-2.3.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-function.prototype.name-1.1.6"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-functional-red-black-tree-1.0.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-functions-have-names-1.2.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-gensync-1.0.0-beta.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-get-caller-file-2.0.5"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-get-package-type-0.1.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-get-stream-6.0.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-get-symbol-description-1.0.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-glob-7.2.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-glob-parent-5.1.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-glob-parent-6.0.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-glob-to-regexp-0.4.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-globals-11.12.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-globals-13.24.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-globalthis-1.0.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-globby-11.1.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-graceful-fs-4.2.11"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-graphemer-1.4.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-graphlib-2.1.8"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-hamt-plus-1.0.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-has-bigints-1.0.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-has-flag-3.0.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-has-flag-4.0.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-has-tostringtag-1.0.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-heap-0.2.7"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-hey-listen-1.0.8"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-hoist-non-react-statics-3.3.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-html-encoding-sniffer-3.0.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-html-escaper-2.0.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-http-proxy-agent-5.0.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-https-proxy-agent-5.0.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-human-signals-2.1.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-human-signals-4.3.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-husky-8.0.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-iconv-lite-0.6.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-ignore-4.0.6"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-ignore-5.3.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-immediate-3.0.6"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-import-fresh-3.3.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-import-local-3.1.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-imurmurhash-0.1.4"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-indent-string-4.0.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-ini-1.3.8"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-internal-slot-1.0.6"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-intl-messageformat-10.5.10"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-is-arguments-1.1.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-is-array-buffer-3.0.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-is-arrayish-0.2.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-is-arrayish-0.3.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-is-bigint-1.0.4"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-is-boolean-object-1.1.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-is-callable-1.2.7"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-is-core-module-2.13.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-is-date-object-1.0.5"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-is-docker-2.2.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-is-extglob-2.1.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-is-fullwidth-code-point-3.0.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-is-fullwidth-code-point-4.0.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-is-generator-fn-2.1.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-is-glob-4.0.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-is-map-2.0.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-is-negative-zero-2.0.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-is-number-7.0.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-is-number-object-1.0.7"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-is-path-inside-3.0.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-is-port-reachable-4.0.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-is-potential-custom-element-name-1.0.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-is-regex-1.1.4"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-is-set-2.0.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-is-shared-array-buffer-1.0.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-is-stream-2.0.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-is-stream-3.0.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-is-string-1.0.7"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-is-symbol-1.0.4"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-is-typed-array-1.1.12"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-is-weakmap-2.0.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-is-weakref-1.0.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-is-weakset-2.0.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-is-wsl-2.2.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-isarray-2.0.5"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-isexe-2.0.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-istanbul-lib-coverage-3.2.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-istanbul-lib-instrument-5.2.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-istanbul-lib-instrument-6.0.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-istanbul-lib-report-3.0.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-istanbul-lib-source-maps-4.0.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-istanbul-reports-3.1.6"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-jest-29.0.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-jest-changed-files-29.7.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-jest-circus-29.7.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-jest-cli-29.7.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-jest-config-29.7.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-jest-diff-26.6.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-jest-diff-29.7.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-jest-docblock-29.7.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-jest-each-29.7.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-jest-environment-jsdom-29.6.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-jest-environment-node-29.7.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-jest-get-type-26.3.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-jest-get-type-29.6.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-jest-github-actions-reporter-1.0.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-jest-haste-map-29.7.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-jest-junit-16.0.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-jest-leak-detector-29.7.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-jest-localstorage-mock-2.4.26"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-jest-matcher-utils-29.7.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-jest-message-util-29.7.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-jest-mock-29.7.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-jest-pnp-resolver-1.2.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-jest-regex-util-29.6.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-jest-resolve-29.7.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-jest-resolve-dependencies-29.7.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-jest-runner-29.7.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-jest-runtime-29.7.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-jest-snapshot-29.7.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-jest-util-29.7.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-jest-validate-29.7.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-jest-watcher-29.7.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-jest-worker-27.5.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-jest-worker-29.7.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-js-sha3-0.8.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-js-tokens-4.0.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-js-yaml-3.14.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-js-yaml-4.1.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-jsdom-20.0.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-jsesc-0.5.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-jsesc-2.5.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-json-buffer-3.0.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-json-parse-even-better-errors-2.3.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-json-schema-traverse-0.4.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-json-schema-traverse-1.0.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-json-stable-stringify-without-jsonify-1.0.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-json2mq-0.2.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-json5-2.2.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-jsx-ast-utils-3.3.5"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-keyv-4.5.4"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-klayjs-0.4.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-kleur-3.0.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-layout-base-2.0.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-leven-3.1.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-levn-0.4.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-lie-3.1.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-lilconfig-2.1.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-lines-and-columns-1.2.4"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-lint-staged-13.2.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-listr2-5.0.8"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-loader-runner-4.3.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-loader-utils-2.0.4"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-localforage-1.10.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-locate-path-5.0.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-locate-path-6.0.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-lodash-4.17.21"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-lodash.debounce-4.0.8"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-lodash.memoize-4.1.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-lodash.merge-4.6.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-lodash.truncate-4.4.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-log-update-4.0.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-loose-envify-1.4.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-lru-cache-5.1.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-lru-cache-6.0.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-lz-string-1.5.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-make-dir-4.0.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-make-error-1.3.6"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-makeerror-1.0.12"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-match-sorter-6.3.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-memoize-one-5.2.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-merge-stream-2.0.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-merge2-1.4.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-micromatch-4.0.5"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-microseconds-0.2.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-mime-db-1.33.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-mime-types-2.1.18"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-mimic-fn-2.1.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-mimic-fn-4.0.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-min-indent-1.0.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-minimatch-3.1.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-mkdirp-1.0.4"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-ms-2.1.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-nano-time-1.0.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-nanoid-3.3.7"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-natural-compare-1.4.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-natural-compare-lite-1.4.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-neo-async-2.6.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-node-fetch-3.3.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-node-int64-0.4.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-node-releases-2.0.14"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-normalize-path-3.0.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-npm-run-path-4.0.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-npm-run-path-5.2.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-nwsapi-2.2.7"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-object-is-1.1.5"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-object-keys-1.1.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-object.assign-4.1.5"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-object.entries-1.1.7"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-object.fromentries-2.0.7"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-object.hasown-1.1.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-object.values-1.1.7"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-oblivious-set-1.0.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-on-headers-1.0.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-onetime-5.1.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-onetime-6.0.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-optionator-0.9.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-p-limit-2.3.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-p-limit-3.1.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-p-locate-4.1.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-p-locate-5.0.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-p-map-4.0.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-p-try-2.2.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-papaparse-5.4.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-parent-module-1.0.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-parse-json-5.2.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-parse5-7.1.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-path-exists-4.0.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-path-is-absolute-1.0.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-path-is-inside-1.0.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-path-key-3.1.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-path-key-4.0.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-path-parse-1.0.7"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-path-to-regexp-2.2.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-path-type-4.0.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-picocolors-1.0.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-picomatch-2.3.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-pidtree-0.6.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-pino-8.14.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-pino-abstract-transport-1.0.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-pino-pretty-10.0.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-pirates-4.0.6"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-pkg-dir-4.2.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-popmotion-9.0.0-rc.20"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-postcss-8.4.33"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-prelude-ls-1.2.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-prettier-2.1.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-prettier-2.8.8"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-pretty-format-26.6.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-pretty-format-27.5.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-pretty-format-29.7.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-process-warning-2.3.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-progress-2.0.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-prompts-2.4.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-prop-types-15.8.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-psl-1.9.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-punycode-1.4.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-punycode-2.3.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-pure-rand-6.0.4"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-query-string-7.1.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-querystringify-2.2.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-queue-microtask-1.2.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-raf-schd-4.0.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-randombytes-2.1.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-range-parser-1.2.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-raw-body-2.5.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-rc-1.2.8"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-rc-align-4.0.15"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-rc-dropdown-4.0.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-rc-menu-9.6.4"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-rc-motion-2.9.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-rc-overflow-1.3.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-rc-resize-observer-1.4.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-rc-tabs-11.16.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-rc-trigger-5.3.4"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-rc-util-5.38.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-re-resizable-6.9.9"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-react-17.0.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-react-beautiful-dnd-13.1.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-react-dnd-11.1.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-react-dnd-html5-backend-16.0.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-react-dom-17.0.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-react-error-boundary-3.1.4"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-react-from-dom-0.6.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-react-inlinesvg-2.3.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-react-is-16.13.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-react-is-17.0.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-react-is-18.2.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-react-laag-2.0.5"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-react-query-3.39.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-react-redux-7.2.9"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-react-refresh-0.14.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-react-router-6.14.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-react-router-dom-6.14.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-react-shallow-renderer-16.15.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-react-slick-0.28.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-react-table-7.8.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-react-test-renderer-17.0.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-react-textarea-autosize-8.3.4"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-react-transition-group-4.4.5"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-react-virtuoso-2.19.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-readable-stream-4.5.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-recoil-0.7.7"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-redent-3.0.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-redux-4.2.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-regenerate-1.4.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-regenerate-unicode-properties-10.1.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-regenerator-runtime-0.14.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-regenerator-transform-0.15.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-regexp.prototype.flags-1.5.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-regexpp-3.2.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-regexpu-core-5.3.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-registry-auth-token-3.3.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-registry-url-3.1.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-regjsparser-0.9.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-remove-accents-0.5.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-require-directory-2.1.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-require-from-string-2.0.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-requires-port-1.0.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-resize-observer-polyfill-1.5.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-resolve-1.22.8"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-resolve-2.0.0-next.5"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-resolve-cwd-3.0.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-resolve-from-4.0.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-resolve-from-5.0.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-resolve.exports-2.0.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-restore-cursor-3.1.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-reusify-1.0.4"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-rfdc-1.3.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-rimraf-3.0.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-rollup-3.29.4"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-run-parallel-1.2.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-rxjs-7.8.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-safe-array-concat-1.1.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-safe-buffer-5.1.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-safe-regex-test-1.0.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-saxes-6.0.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-scheduler-0.20.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-schema-utils-3.3.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-semver-7.5.4"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-serialize-javascript-6.0.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-serve-14.2.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-serve-handler-6.1.5"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-set-function-length-1.2.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-set-function-name-2.0.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-shallowequal-1.1.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-shebang-command-2.0.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-shebang-regex-3.0.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-shell-quote-1.8.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-signal-exit-3.0.7"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-simple-swizzle-0.2.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-sisteransi-1.0.5"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-slash-3.0.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-slice-ansi-3.0.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-slice-ansi-4.0.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-slice-ansi-5.0.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-sonic-boom-3.8.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-source-list-map-2.0.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-source-map-0.5.7"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-source-map-0.6.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-source-map-js-1.0.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-source-map-support-0.5.13"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-source-map-support-0.5.21"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-spawn-command-0.0.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-split-on-first-1.1.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-sprintf-js-1.0.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-ssr-window-4.0.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-stack-utils-2.0.6"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-stop-iteration-iterator-1.0.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-strict-uri-encode-2.0.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-string-argv-0.3.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-string-convert-0.2.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-string-length-4.0.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-string-width-4.2.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-string-width-5.1.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-string.prototype.matchall-4.0.10"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-string.prototype.trim-1.2.8"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-string.prototype.trimend-1.0.7"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-string.prototype.trimstart-1.0.7"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-strip-ansi-6.0.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-strip-ansi-7.1.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-strip-bom-4.0.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-strip-final-newline-2.0.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-strip-final-newline-3.0.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-strip-indent-3.0.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-strip-json-comments-2.0.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-style-value-types-3.2.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-stylis-4.2.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-supports-color-5.5.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-supports-color-7.2.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-supports-color-8.1.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-supports-preserve-symlinks-flag-1.0.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-swiper-8.4.7"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-symbol-tree-3.2.4"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-tabbable-6.2.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-table-6.8.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-tapable-2.2.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-terser-5.27.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-terser-webpack-plugin-5.3.10"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-test-exclude-6.0.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-text-table-0.2.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-through-2.3.8"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-tiny-invariant-1.3.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-tiny-warning-1.0.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-tmpl-1.0.5"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-to-fast-properties-2.0.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-to-regex-range-5.0.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-tough-cookie-4.1.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-tr46-3.0.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-tree-kill-1.2.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-ts-jest-29.0.4"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-ts-node-10.9.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-tslib-2.6.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-tsutils-3.21.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-tunnel-0.0.6"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-type-check-0.4.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-type-detect-4.0.8"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-type-fest-0.20.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-type-fest-0.21.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-type-fest-2.19.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-typed-array-buffer-1.0.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-typed-array-byte-length-1.0.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-typed-array-byte-offset-1.0.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-typed-array-length-1.0.4"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-typescript-4.9.5"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-typescript-5.1.6"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-unbox-primitive-1.0.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-undici-5.28.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-unicode-canonical-property-names-ecmascript-2.0.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-unicode-match-property-ecmascript-2.0.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-unicode-match-property-value-ecmascript-2.1.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-unicode-property-aliases-ecmascript-2.1.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-universalify-0.2.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-unload-2.2.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-update-browserslist-db-1.0.13"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-update-check-1.5.4"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-uri-js-4.4.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-url-parse-1.5.10"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-use-composed-ref-1.3.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-use-deep-compare-effect-1.8.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-use-isomorphic-layout-effect-1.1.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-use-latest-1.2.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-use-memo-one-1.1.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-v8-compile-cache-2.4.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-v8-compile-cache-lib-3.0.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-v8-to-istanbul-9.2.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-vite-4.5.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-w3c-xmlserializer-4.0.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-walker-1.0.8"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-watchpack-2.4.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-web-streams-polyfill-3.3.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-webidl-conversions-7.0.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-webpack-5.76.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-webpack-sources-3.2.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-webpack-sources-1.4.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-whatwg-encoding-2.0.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-whatwg-mimetype-3.0.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-whatwg-url-11.0.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-which-2.0.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-which-boxed-primitive-1.0.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-which-collection-1.0.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-which-typed-array-1.1.13"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-widest-line-4.0.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-wrap-ansi-6.2.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-wrap-ansi-7.0.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-wrap-ansi-8.1.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-write-file-atomic-4.0.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-ws-8.16.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-xml-1.0.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-xml-name-validator-4.0.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-xmlchars-2.2.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-y18n-5.0.8"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-yallist-3.1.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-yallist-4.0.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-yaml-1.10.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-yaml-2.3.4"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-yargs-17.7.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-yargs-parser-21.1.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-yn-3.1.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-yocto-queue-0.1.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-explorer","relatedSpdxElement":"SPDXRef-npm-semver-6.3.1"}]}
\ No newline at end of file
diff --git a/src/graph_notebook/notebooks/02-Neptune-Analytics/03-Sample-Use-Cases/03-Software-Bill-Of-Materials/example_sboms/01/graph-notebook_aws_bb96dd8d0d9ef9d0e9060f8c5e26a042a3db40c4.json b/src/graph_notebook/notebooks/02-Neptune-Analytics/03-Sample-Use-Cases/03-Software-Bill-Of-Materials/example_sboms/01/graph-notebook_aws_bb96dd8d0d9ef9d0e9060f8c5e26a042a3db40c4.json
new file mode 100644
index 00000000..fbe7fc44
--- /dev/null
+++ b/src/graph_notebook/notebooks/02-Neptune-Analytics/03-Sample-Use-Cases/03-Software-Bill-Of-Materials/example_sboms/01/graph-notebook_aws_bb96dd8d0d9ef9d0e9060f8c5e26a042a3db40c4.json
@@ -0,0 +1 @@
+{"SPDXID":"SPDXRef-DOCUMENT","spdxVersion":"SPDX-2.3","creationInfo":{"created":"2024-01-26T19:09:56Z","creators":["Tool: GitHub.com-Dependency-Graph"],"comment":"Exact versions could not be resolved for some packages. For more information: https://docs.github.com/en/code-security/supply-chain-security/understanding-your-software-supply-chain/about-the-dependency-graph#dependencies-included."},"name":"com.github.aws/graph-notebook","dataLicense":"CC0-1.0","documentDescribes":["SPDXRef-com.github.aws-graph-notebook"],"documentNamespace":"https://github.com/aws/graph-notebook/dependency_graph/sbom-f4785dea1d05c251","packages":[{"SPDXID":"SPDXRef-com.github.aws-graph-notebook","name":"com.github.aws/graph-notebook","versionInfo":"","downloadLocation":"git+https://github.com/aws/graph-notebook","licenseDeclared":"Apache-2.0","filesAnalyzed":false,"supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceType":"purl","referenceLocator":"pkg:github/aws/graph-notebook"}]},{"SPDXID":"SPDXRef-npm-jupyter-widgets-base","name":"npm:@jupyter-widgets/base","versionInfo":"^ 2 || ^ 3 || ^ 4","downloadLocation":"NOASSERTION","filesAnalyzed":false,"supplier":"NOASSERTION"},{"SPDXID":"SPDXRef-npm-jupyterlab-builder","name":"npm:@jupyterlab/builder","versionInfo":"^ 3.0.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"supplier":"NOASSERTION"},{"SPDXID":"SPDXRef-npm-phosphor-application-1.7.3","name":"npm:@phosphor/application","versionInfo":"1.7.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"BSD-3-Clause","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40phosphor/application@1.7.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-phosphor-widgets-1.9.3","name":"npm:@phosphor/widgets","versionInfo":"1.9.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"BSD-3-Clause","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40phosphor/widgets@1.9.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-types-chai-4.2.11","name":"npm:@types/chai","versionInfo":"4.2.11","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40types/chai@4.2.11","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-types-feather-icons-4.7.0","name":"npm:@types/feather-icons","versionInfo":"4.7.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40types/feather-icons@4.7.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-types-jquery-3.5.0","name":"npm:@types/jquery","versionInfo":"3.5.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40types/jquery@3.5.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-types-jqueryui-1.12.13","name":"npm:@types/jqueryui","versionInfo":"1.12.13","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40types/jqueryui@1.12.13","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-types-mocha-7.0.2","name":"npm:@types/mocha","versionInfo":"7.0.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40types/mocha@7.0.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-types-node-13.13.5","name":"npm:@types/node","versionInfo":"13.13.5","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40types/node@13.13.5","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-types-webpack-env-1.15.2","name":"npm:@types/webpack-env","versionInfo":"1.15.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40types/webpack-env@1.15.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-typescript-eslint-eslint-plugin-2.32.0","name":"npm:@typescript-eslint/eslint-plugin","versionInfo":"2.32.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40typescript-eslint/eslint-plugin@2.32.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-typescript-eslint-parser-2.32.0","name":"npm:@typescript-eslint/parser","versionInfo":"2.32.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"BSD-2-Clause","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/%40typescript-eslint/parser@2.32.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-chai-4.2.0","name":"npm:chai","versionInfo":"4.2.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/chai@4.2.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-css-loader-3.5.3","name":"npm:css-loader","versionInfo":"3.5.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/css-loader@3.5.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-eslint-6.8.0","name":"npm:eslint","versionInfo":"6.8.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/eslint@6.8.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-eslint-config-prettier-6.11.0","name":"npm:eslint-config-prettier","versionInfo":"6.11.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/eslint-config-prettier@6.11.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-eslint-loader-4.0.2","name":"npm:eslint-loader","versionInfo":"4.0.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/eslint-loader@4.0.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-eslint-plugin-prettier-3.1.3","name":"npm:eslint-plugin-prettier","versionInfo":"3.1.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/eslint-plugin-prettier@3.1.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-feather-icons-4.28.0","name":"npm:feather-icons","versionInfo":"4.28.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/feather-icons@4.28.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-fs-extra-9.0.0","name":"npm:fs-extra","versionInfo":"9.0.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/fs-extra@9.0.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-jquery-3.6.0","name":"npm:jquery","versionInfo":"3.6.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/jquery@3.6.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-jquery-ui-1.13.2","name":"npm:jquery-ui","versionInfo":"1.13.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/jquery-ui@1.13.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-json-schema-0.4.0","name":"npm:json-schema","versionInfo":"0.4.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"AFL-2.1 OR BSD-3-Clause OR (AFL-2.1 AND BSD-3-Clause)","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/json-schema@0.4.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-karma-6.3.16","name":"npm:karma","versionInfo":"6.3.16","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/karma@6.3.16","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-karma-chai-0.1.0","name":"npm:karma-chai","versionInfo":"0.1.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/karma-chai@0.1.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-karma-firefox-launcher-1.3.0","name":"npm:karma-firefox-launcher","versionInfo":"1.3.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/karma-firefox-launcher@1.3.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-karma-mocha-2.0.1","name":"npm:karma-mocha","versionInfo":"2.0.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/karma-mocha@2.0.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-karma-mocha-reporter-2.2.5","name":"npm:karma-mocha-reporter","versionInfo":"2.2.5","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/karma-mocha-reporter@2.2.5","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-karma-sinon-1.0.5","name":"npm:karma-sinon","versionInfo":"1.0.5","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/karma-sinon@1.0.5","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-karma-sourcemap-loader-0.3.7","name":"npm:karma-sourcemap-loader","versionInfo":"0.3.7","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/karma-sourcemap-loader@0.3.7","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-karma-webpack-4.0.2","name":"npm:karma-webpack","versionInfo":"4.0.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/karma-webpack@4.0.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-lodash-4.17.21","name":"npm:lodash","versionInfo":"4.17.21","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/lodash@4.17.21","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-mkdirp-0.5.5","name":"npm:mkdirp","versionInfo":"0.5.5","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/mkdirp@0.5.5","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-mocha-7.1.2","name":"npm:mocha","versionInfo":"7.1.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/mocha@7.1.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-npm-run-all-4.1.5","name":"npm:npm-run-all","versionInfo":"4.1.5","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/npm-run-all@4.1.5","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-opencollective-1.0.3","name":"npm:opencollective","versionInfo":"1.0.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/opencollective@1.0.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-prettier-2.0.5","name":"npm:prettier","versionInfo":"2.0.5","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/prettier@2.0.5","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-rimraf-3.0.2","name":"npm:rimraf","versionInfo":"3.0.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"ISC","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/rimraf@3.0.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-sinon-9.0.2","name":"npm:sinon","versionInfo":"9.0.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"BSD-3-Clause","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/sinon@9.0.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-source-map-loader-0.2.4","name":"npm:source-map-loader","versionInfo":"0.2.4","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/source-map-loader@0.2.4","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-style-loader-1.2.1","name":"npm:style-loader","versionInfo":"1.2.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/style-loader@1.2.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-ts-loader-5.4.5","name":"npm:ts-loader","versionInfo":"5.4.5","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/ts-loader@5.4.5","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-typescript-4.1.6","name":"npm:typescript","versionInfo":"4.1.6","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/typescript@4.1.6","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-vis-data-6.5.1","name":"npm:vis-data","versionInfo":"6.5.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT OR (Apache-2.0 AND MIT)","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/vis-data@6.5.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-vis-network-7.6.3","name":"npm:vis-network","versionInfo":"7.6.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"Apache-2.0 OR MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/vis-network@7.6.3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-vis-util-4.0.0","name":"npm:vis-util","versionInfo":"4.0.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT OR (Apache-2.0 AND MIT)","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/vis-util@4.0.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-webpack-4.43.0","name":"npm:webpack","versionInfo":"4.43.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/webpack@4.43.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-webpack-cli-3.3.11","name":"npm:webpack-cli","versionInfo":"3.3.11","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/webpack-cli@3.3.11","referenceType":"purl"}]},{"SPDXID":"SPDXRef-npm-webpack-dev-server-3.11.0","name":"npm:webpack-dev-server","versionInfo":"3.11.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:npm/webpack-dev-server@3.11.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-boto3","name":"pip:boto3","versionInfo":"~> 1.18.49","downloadLocation":"NOASSERTION","filesAnalyzed":false,"supplier":"NOASSERTION"},{"SPDXID":"SPDXRef-pip-botocore","name":"pip:botocore","versionInfo":"~> 1.21.49","downloadLocation":"NOASSERTION","filesAnalyzed":false,"supplier":"NOASSERTION"},{"SPDXID":"SPDXRef-pip-gremlinpython","name":"pip:gremlinpython","versionInfo":">= 3.5.1,<= 3.6.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"supplier":"NOASSERTION"},{"SPDXID":"SPDXRef-pip-ipyfilechooser-0.6.0","name":"pip:ipyfilechooser","versionInfo":"0.6.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/ipyfilechooser@0.6.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-ipykernel-5.3.4","name":"pip:ipykernel","versionInfo":"5.3.4","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"BSD-2-Clause","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/ipykernel@5.3.4","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-ipython","name":"pip:ipython","versionInfo":">= 7.16.1,<= 8.10.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"supplier":"NOASSERTION"},{"SPDXID":"SPDXRef-pip-ipywidgets-7.7.2","name":"pip:ipywidgets","versionInfo":"7.7.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"BSD-2-Clause AND BSD-3-Clause","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/ipywidgets@7.7.2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-itables","name":"pip:itables","versionInfo":">= 1.0.0,<= 1.5.2,< 1.4.3 || > 1.4.3,< 1.4.4 || > 1.4.4","downloadLocation":"NOASSERTION","filesAnalyzed":false,"supplier":"NOASSERTION"},{"SPDXID":"SPDXRef-pip-jedi","name":"pip:jedi","versionInfo":">= 0.18.1,<= 0.18.2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"supplier":"NOASSERTION"},{"SPDXID":"SPDXRef-pip-jinja2","name":"pip:jinja2","versionInfo":">= 3.0.3,<= 3.1.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"supplier":"NOASSERTION"},{"SPDXID":"SPDXRef-pip-jupyter-1.0.0","name":"pip:jupyter","versionInfo":"1.0.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"BSD-2-Clause AND BSD-3-Clause","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/jupyter@1.0.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-jupyter-contrib-nbextensions","name":"pip:jupyter-contrib-nbextensions","versionInfo":"<= 0.7.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"supplier":"NOASSERTION"},{"SPDXID":"SPDXRef-pip-jupyterlab-widgets","name":"pip:jupyterlab-widgets","versionInfo":">= 1.0.0,< 3.0.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"supplier":"NOASSERTION"},{"SPDXID":"SPDXRef-pip-markupsafe","name":"pip:markupsafe","versionInfo":"< 2.1.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"supplier":"NOASSERTION"},{"SPDXID":"SPDXRef-pip-nbclient","name":"pip:nbclient","versionInfo":"<= 0.7.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"supplier":"NOASSERTION"},{"SPDXID":"SPDXRef-pip-nbconvert","name":"pip:nbconvert","versionInfo":">= 6.3.0,<= 7.2.8","downloadLocation":"NOASSERTION","filesAnalyzed":false,"supplier":"NOASSERTION"},{"SPDXID":"SPDXRef-pip-neo4j","name":"pip:neo4j","versionInfo":">= 4.4.9,< 5.0.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"supplier":"NOASSERTION"},{"SPDXID":"SPDXRef-pip-nest-asyncio","name":"pip:nest-asyncio","versionInfo":">= 1.5.5,<= 1.5.6","downloadLocation":"NOASSERTION","filesAnalyzed":false,"supplier":"NOASSERTION"},{"SPDXID":"SPDXRef-pip-networkx-2.4","name":"pip:networkx","versionInfo":"2.4","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"BSD-2-Clause","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/networkx@2.4","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-notebook","name":"pip:notebook","versionInfo":">= 6.1.5,< 7.0.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"supplier":"NOASSERTION"},{"SPDXID":"SPDXRef-pip-numpy","name":"pip:numpy","versionInfo":"< 1.24.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"supplier":"NOASSERTION"},{"SPDXID":"SPDXRef-pip-pandas","name":"pip:pandas","versionInfo":">= 1.3.5,<= 1.5.3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"supplier":"NOASSERTION"},{"SPDXID":"SPDXRef-pip-parameterized-0.8.1","name":"pip:parameterized","versionInfo":"0.8.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"BSD-2-Clause","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/parameterized@0.8.1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-pytest-6.2.5","name":"pip:pytest","versionInfo":"6.2.5","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"MIT","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/pytest@6.2.5","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-rdflib-5.0.0","name":"pip:rdflib","versionInfo":"5.0.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"licenseConcluded":"BSD-2-Clause","supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/rdflib@5.0.0","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-requests","name":"pip:requests","versionInfo":">= 2.27.0,<= 2.31.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"supplier":"NOASSERTION"},{"SPDXID":"SPDXRef-pip-setuptools","name":"pip:setuptools","versionInfo":">= 65.5.1,<= 66.0.0","downloadLocation":"NOASSERTION","filesAnalyzed":false,"supplier":"NOASSERTION"},{"SPDXID":"SPDXRef-pip-sparqlwrapper-1.8.4","name":"pip:sparqlwrapper","versionInfo":"1.8.4","downloadLocation":"NOASSERTION","filesAnalyzed":false,"supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:pypi/sparqlwrapper@1.8.4","referenceType":"purl"}]},{"SPDXID":"SPDXRef-pip-widgetsnbextension","name":"pip:widgetsnbextension","versionInfo":"<= 3.6.1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"supplier":"NOASSERTION"},{"SPDXID":"SPDXRef-actions-actions-checkout-3","name":"actions:actions/checkout","versionInfo":"3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:githubactions/actions/checkout@3","referenceType":"purl"}]},{"SPDXID":"SPDXRef-actions-aws-actions-amazon-ecr-login-1","name":"actions:aws-actions/amazon-ecr-login","versionInfo":"1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:githubactions/aws-actions/amazon-ecr-login@1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-actions-aws-actions-configure-aws-credentials-1","name":"actions:aws-actions/configure-aws-credentials","versionInfo":"1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:githubactions/aws-actions/configure-aws-credentials@1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-actions-tyankatsu0105-read-package-version-actions-1","name":"actions:tyankatsu0105/read-package-version-actions","versionInfo":"1","downloadLocation":"NOASSERTION","filesAnalyzed":false,"supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:githubactions/tyankatsu0105/read-package-version-actions@1","referenceType":"purl"}]},{"SPDXID":"SPDXRef-actions-actions-checkout-2","name":"actions:actions/checkout","versionInfo":"2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:githubactions/actions/checkout@2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-actions-actions-setup-python-2","name":"actions:actions/setup-python","versionInfo":"2","downloadLocation":"NOASSERTION","filesAnalyzed":false,"supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:githubactions/actions/setup-python@2","referenceType":"purl"}]},{"SPDXID":"SPDXRef-actions-actions-setup-node-3","name":"actions:actions/setup-node","versionInfo":"3","downloadLocation":"NOASSERTION","filesAnalyzed":false,"supplier":"NOASSERTION","externalRefs":[{"referenceCategory":"PACKAGE-MANAGER","referenceLocator":"pkg:githubactions/actions/setup-node@3","referenceType":"purl"}]}],"relationships":[{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-notebook","relatedSpdxElement":"SPDXRef-npm-jupyter-widgets-base"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-notebook","relatedSpdxElement":"SPDXRef-npm-jupyterlab-builder"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-notebook","relatedSpdxElement":"SPDXRef-npm-phosphor-application-1.7.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-notebook","relatedSpdxElement":"SPDXRef-npm-phosphor-widgets-1.9.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-notebook","relatedSpdxElement":"SPDXRef-npm-types-chai-4.2.11"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-notebook","relatedSpdxElement":"SPDXRef-npm-types-feather-icons-4.7.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-notebook","relatedSpdxElement":"SPDXRef-npm-types-jquery-3.5.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-notebook","relatedSpdxElement":"SPDXRef-npm-types-jqueryui-1.12.13"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-notebook","relatedSpdxElement":"SPDXRef-npm-types-mocha-7.0.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-notebook","relatedSpdxElement":"SPDXRef-npm-types-node-13.13.5"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-notebook","relatedSpdxElement":"SPDXRef-npm-types-webpack-env-1.15.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-notebook","relatedSpdxElement":"SPDXRef-npm-typescript-eslint-eslint-plugin-2.32.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-notebook","relatedSpdxElement":"SPDXRef-npm-typescript-eslint-parser-2.32.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-notebook","relatedSpdxElement":"SPDXRef-npm-chai-4.2.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-notebook","relatedSpdxElement":"SPDXRef-npm-css-loader-3.5.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-notebook","relatedSpdxElement":"SPDXRef-npm-eslint-6.8.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-notebook","relatedSpdxElement":"SPDXRef-npm-eslint-config-prettier-6.11.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-notebook","relatedSpdxElement":"SPDXRef-npm-eslint-loader-4.0.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-notebook","relatedSpdxElement":"SPDXRef-npm-eslint-plugin-prettier-3.1.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-notebook","relatedSpdxElement":"SPDXRef-npm-feather-icons-4.28.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-notebook","relatedSpdxElement":"SPDXRef-npm-fs-extra-9.0.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-notebook","relatedSpdxElement":"SPDXRef-npm-jquery-3.6.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-notebook","relatedSpdxElement":"SPDXRef-npm-jquery-ui-1.13.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-notebook","relatedSpdxElement":"SPDXRef-npm-json-schema-0.4.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-notebook","relatedSpdxElement":"SPDXRef-npm-karma-6.3.16"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-notebook","relatedSpdxElement":"SPDXRef-npm-karma-chai-0.1.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-notebook","relatedSpdxElement":"SPDXRef-npm-karma-firefox-launcher-1.3.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-notebook","relatedSpdxElement":"SPDXRef-npm-karma-mocha-2.0.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-notebook","relatedSpdxElement":"SPDXRef-npm-karma-mocha-reporter-2.2.5"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-notebook","relatedSpdxElement":"SPDXRef-npm-karma-sinon-1.0.5"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-notebook","relatedSpdxElement":"SPDXRef-npm-karma-sourcemap-loader-0.3.7"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-notebook","relatedSpdxElement":"SPDXRef-npm-karma-webpack-4.0.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-notebook","relatedSpdxElement":"SPDXRef-npm-lodash-4.17.21"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-notebook","relatedSpdxElement":"SPDXRef-npm-mkdirp-0.5.5"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-notebook","relatedSpdxElement":"SPDXRef-npm-mocha-7.1.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-notebook","relatedSpdxElement":"SPDXRef-npm-npm-run-all-4.1.5"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-notebook","relatedSpdxElement":"SPDXRef-npm-opencollective-1.0.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-notebook","relatedSpdxElement":"SPDXRef-npm-prettier-2.0.5"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-notebook","relatedSpdxElement":"SPDXRef-npm-rimraf-3.0.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-notebook","relatedSpdxElement":"SPDXRef-npm-sinon-9.0.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-notebook","relatedSpdxElement":"SPDXRef-npm-source-map-loader-0.2.4"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-notebook","relatedSpdxElement":"SPDXRef-npm-style-loader-1.2.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-notebook","relatedSpdxElement":"SPDXRef-npm-ts-loader-5.4.5"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-notebook","relatedSpdxElement":"SPDXRef-npm-typescript-4.1.6"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-notebook","relatedSpdxElement":"SPDXRef-npm-vis-data-6.5.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-notebook","relatedSpdxElement":"SPDXRef-npm-vis-network-7.6.3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-notebook","relatedSpdxElement":"SPDXRef-npm-vis-util-4.0.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-notebook","relatedSpdxElement":"SPDXRef-npm-webpack-4.43.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-notebook","relatedSpdxElement":"SPDXRef-npm-webpack-cli-3.3.11"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-notebook","relatedSpdxElement":"SPDXRef-npm-webpack-dev-server-3.11.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-notebook","relatedSpdxElement":"SPDXRef-pip-boto3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-notebook","relatedSpdxElement":"SPDXRef-pip-botocore"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-notebook","relatedSpdxElement":"SPDXRef-pip-gremlinpython"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-notebook","relatedSpdxElement":"SPDXRef-pip-ipyfilechooser-0.6.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-notebook","relatedSpdxElement":"SPDXRef-pip-ipykernel-5.3.4"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-notebook","relatedSpdxElement":"SPDXRef-pip-ipython"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-notebook","relatedSpdxElement":"SPDXRef-pip-ipywidgets-7.7.2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-notebook","relatedSpdxElement":"SPDXRef-pip-itables"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-notebook","relatedSpdxElement":"SPDXRef-pip-jedi"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-notebook","relatedSpdxElement":"SPDXRef-pip-jinja2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-notebook","relatedSpdxElement":"SPDXRef-pip-jupyter-1.0.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-notebook","relatedSpdxElement":"SPDXRef-pip-jupyter-contrib-nbextensions"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-notebook","relatedSpdxElement":"SPDXRef-pip-jupyterlab-widgets"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-notebook","relatedSpdxElement":"SPDXRef-pip-markupsafe"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-notebook","relatedSpdxElement":"SPDXRef-pip-nbclient"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-notebook","relatedSpdxElement":"SPDXRef-pip-nbconvert"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-notebook","relatedSpdxElement":"SPDXRef-pip-neo4j"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-notebook","relatedSpdxElement":"SPDXRef-pip-nest-asyncio"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-notebook","relatedSpdxElement":"SPDXRef-pip-networkx-2.4"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-notebook","relatedSpdxElement":"SPDXRef-pip-notebook"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-notebook","relatedSpdxElement":"SPDXRef-pip-numpy"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-notebook","relatedSpdxElement":"SPDXRef-pip-pandas"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-notebook","relatedSpdxElement":"SPDXRef-pip-parameterized-0.8.1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-notebook","relatedSpdxElement":"SPDXRef-pip-pytest-6.2.5"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-notebook","relatedSpdxElement":"SPDXRef-pip-rdflib-5.0.0"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-notebook","relatedSpdxElement":"SPDXRef-pip-requests"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-notebook","relatedSpdxElement":"SPDXRef-pip-setuptools"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-notebook","relatedSpdxElement":"SPDXRef-pip-sparqlwrapper-1.8.4"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-notebook","relatedSpdxElement":"SPDXRef-pip-widgetsnbextension"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-notebook","relatedSpdxElement":"SPDXRef-actions-actions-checkout-3"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-notebook","relatedSpdxElement":"SPDXRef-actions-aws-actions-amazon-ecr-login-1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-notebook","relatedSpdxElement":"SPDXRef-actions-aws-actions-configure-aws-credentials-1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-notebook","relatedSpdxElement":"SPDXRef-actions-tyankatsu0105-read-package-version-actions-1"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-notebook","relatedSpdxElement":"SPDXRef-actions-actions-checkout-2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-notebook","relatedSpdxElement":"SPDXRef-actions-actions-setup-python-2"},{"relationshipType":"DEPENDS_ON","spdxElementId":"SPDXRef-com.github.aws-graph-notebook","relatedSpdxElement":"SPDXRef-actions-actions-setup-node-3"}]}
\ No newline at end of file
diff --git a/src/graph_notebook/notebooks/02-Neptune-Analytics/03-Sample-Use-Cases/03-Software-Bill-Of-Materials/example_sboms/02/__init__.py b/src/graph_notebook/notebooks/02-Neptune-Analytics/03-Sample-Use-Cases/03-Software-Bill-Of-Materials/example_sboms/02/__init__.py
new file mode 100644
index 00000000..fa84f3bc
--- /dev/null
+++ b/src/graph_notebook/notebooks/02-Neptune-Analytics/03-Sample-Use-Cases/03-Software-Bill-Of-Materials/example_sboms/02/__init__.py
@@ -0,0 +1,4 @@
+"""
+Copyright Amazon.com, Inc. or its affiliates. All Rights Reserved.
+SPDX-License-Identifier: Apache-2.0
+"""
\ No newline at end of file
diff --git a/src/graph_notebook/notebooks/02-Neptune-Analytics/03-Sample-Use-Cases/03-Software-Bill-Of-Materials/example_sboms/02/aws-cli-2-0-6.json b/src/graph_notebook/notebooks/02-Neptune-Analytics/03-Sample-Use-Cases/03-Software-Bill-Of-Materials/example_sboms/02/aws-cli-2-0-6.json
new file mode 100644
index 00000000..6e0002b8
--- /dev/null
+++ b/src/graph_notebook/notebooks/02-Neptune-Analytics/03-Sample-Use-Cases/03-Software-Bill-Of-Materials/example_sboms/02/aws-cli-2-0-6.json
@@ -0,0 +1,21581 @@
+{
+  "$schema": "http://cyclonedx.org/schema/bom-1.5.schema.json",
+  "bomFormat": "CycloneDX",
+  "specVersion": "1.5",
+  "serialNumber": "urn:uuid:895447d8-6d61-42ea-b763-94eb1ec75cb0",
+  "version": 1,
+  "metadata": {
+    "timestamp": "2024-01-30T14:24:55-09:00",
+    "tools": {
+      "components": [
+        {
+          "type": "application",
+          "author": "anchore",
+          "name": "grype",
+          "version": "0.74.3"
+        }
+      ]
+    },
+    "component": {
+      "bom-ref": "341f46045ef58a29",
+      "type": "container",
+      "name": "amazon/aws-cli",
+      "version": "2.0.6"
+    },
+    "properties": null
+  },
+  "components": [
+    {
+      "bom-ref": "pkg:pypi/amazon-linux-extras@1.6.10?package-id=e0536320c30743c4",
+      "type": "library",
+      "author": "Chad Miller <millchad@amazon.com>",
+      "name": "amazon-linux-extras",
+      "version": "1.6.10",
+      "licenses": [
+        {
+          "license": {
+            "name": "UNKNOWN"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:python-amazon-linux-extras:python-amazon-linux-extras:1.6.10:*:*:*:*:*:*:*",
+      "purl": "pkg:pypi/amazon-linux-extras@1.6.10",
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "python-installed-package-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "python"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "python"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "python-package"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python-amazon-linux-extras:python_amazon_linux_extras:1.6.10:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python_amazon_linux_extras:python-amazon-linux-extras:1.6.10:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python_amazon_linux_extras:python_amazon_linux_extras:1.6.10:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:amazon-linux-extras:python-amazon-linux-extras:1.6.10:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:amazon-linux-extras:python_amazon_linux_extras:1.6.10:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:amazon_linux_extras:python-amazon-linux-extras:1.6.10:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:amazon_linux_extras:python_amazon_linux_extras:1.6.10:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:chad_miller_project:python-amazon-linux-extras:1.6.10:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:chad_miller_project:python_amazon_linux_extras:1.6.10:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python-amazon-linux-extras:amazon-linux-extras:1.6.10:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python-amazon-linux-extras:amazon_linux_extras:1.6.10:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python-amazon-linux:python-amazon-linux-extras:1.6.10:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python-amazon-linux:python_amazon_linux_extras:1.6.10:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python_amazon_linux:python-amazon-linux-extras:1.6.10:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python_amazon_linux:python_amazon_linux_extras:1.6.10:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python_amazon_linux_extras:amazon-linux-extras:1.6.10:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python_amazon_linux_extras:amazon_linux_extras:1.6.10:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:chad_millerproject:python-amazon-linux-extras:1.6.10:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:chad_millerproject:python_amazon_linux_extras:1.6.10:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:millchad_project:python-amazon-linux-extras:1.6.10:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:millchad_project:python_amazon_linux_extras:1.6.10:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:millchadproject:python-amazon-linux-extras:1.6.10:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:millchadproject:python_amazon_linux_extras:1.6.10:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python-amazon:python-amazon-linux-extras:1.6.10:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python-amazon:python_amazon_linux_extras:1.6.10:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python_amazon:python-amazon-linux-extras:1.6.10:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python_amazon:python_amazon_linux_extras:1.6.10:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:amazon-linux-extras:amazon-linux-extras:1.6.10:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:amazon-linux-extras:amazon_linux_extras:1.6.10:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:amazon-linux:python-amazon-linux-extras:1.6.10:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:amazon-linux:python_amazon_linux_extras:1.6.10:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:amazon_linux:python-amazon-linux-extras:1.6.10:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:amazon_linux:python_amazon_linux_extras:1.6.10:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:amazon_linux_extras:amazon-linux-extras:1.6.10:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:amazon_linux_extras:amazon_linux_extras:1.6.10:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:chad_miller_project:amazon-linux-extras:1.6.10:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:chad_miller_project:amazon_linux_extras:1.6.10:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python-amazon-linux:amazon-linux-extras:1.6.10:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python-amazon-linux:amazon_linux_extras:1.6.10:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python_amazon_linux:amazon-linux-extras:1.6.10:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python_amazon_linux:amazon_linux_extras:1.6.10:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:chad_miller:python-amazon-linux-extras:1.6.10:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:chad_miller:python_amazon_linux_extras:1.6.10:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:chad_millerproject:amazon-linux-extras:1.6.10:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:chad_millerproject:amazon_linux_extras:1.6.10:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:millchad_project:amazon-linux-extras:1.6.10:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:millchad_project:amazon_linux_extras:1.6.10:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:millchad:python-amazon-linux-extras:1.6.10:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:millchad:python_amazon_linux_extras:1.6.10:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:millchadproject:amazon-linux-extras:1.6.10:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:millchadproject:amazon_linux_extras:1.6.10:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:amazon:python-amazon-linux-extras:1.6.10:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:amazon:python_amazon_linux_extras:1.6.10:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python-amazon:amazon-linux-extras:1.6.10:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python-amazon:amazon_linux_extras:1.6.10:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python:python-amazon-linux-extras:1.6.10:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python:python_amazon_linux_extras:1.6.10:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python_amazon:amazon-linux-extras:1.6.10:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python_amazon:amazon_linux_extras:1.6.10:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:amazon-linux:amazon-linux-extras:1.6.10:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:amazon-linux:amazon_linux_extras:1.6.10:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:amazon_linux:amazon-linux-extras:1.6.10:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:amazon_linux:amazon_linux_extras:1.6.10:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:chad_miller:amazon-linux-extras:1.6.10:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:chad_miller:amazon_linux_extras:1.6.10:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:millchad:amazon-linux-extras:1.6.10:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:millchad:amazon_linux_extras:1.6.10:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:amazon:amazon-linux-extras:1.6.10:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:amazon:amazon_linux_extras:1.6.10:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python:amazon-linux-extras:1.6.10:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python:amazon_linux_extras:1.6.10:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:fc24ab7e0293a749fddb0110597d42b4d29f1ae143bae880417547e23f5d459c"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/usr/lib/python2.7/site-packages/amazon_linux_extras-1.6.10-py2.7.egg-info/PKG-INFO"
+        },
+        {
+          "name": "syft:location:1:layerID",
+          "value": "sha256:fc24ab7e0293a749fddb0110597d42b4d29f1ae143bae880417547e23f5d459c"
+        },
+        {
+          "name": "syft:location:1:path",
+          "value": "/usr/lib/python2.7/site-packages/amazon_linux_extras-1.6.10-py2.7.egg-info/top_level.txt"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:rpm/amzn/amazon-linux-extras@1.6.10-1.amzn2?arch=noarch&upstream=amazon-linux-extras-1.6.10-1.amzn2.src.rpm&distro=amzn-2&package-id=5550c04fb641b374",
+      "type": "library",
+      "publisher": "Amazon Linux",
+      "name": "amazon-linux-extras",
+      "version": "1.6.10-1.amzn2",
+      "licenses": [
+        {
+          "license": {
+            "name": "GPLv2"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:amazon-linux-extras:amazon-linux-extras:1.6.10-1.amzn2:*:*:*:*:*:*:*",
+      "purl": "pkg:rpm/amzn/amazon-linux-extras@1.6.10-1.amzn2?arch=noarch&upstream=amazon-linux-extras-1.6.10-1.amzn2.src.rpm&distro=amzn-2",
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "rpm-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "rpm"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "rpm-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:amazon-linux-extras:amazon_linux_extras:1.6.10-1.amzn2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:amazon_linux_extras:amazon-linux-extras:1.6.10-1.amzn2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:amazon_linux_extras:amazon_linux_extras:1.6.10-1.amzn2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:amazon-linux:amazon-linux-extras:1.6.10-1.amzn2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:amazon-linux:amazon_linux_extras:1.6.10-1.amzn2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:amazon_linux:amazon-linux-extras:1.6.10-1.amzn2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:amazon_linux:amazon_linux_extras:1.6.10-1.amzn2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:amazonlinux:amazon-linux-extras:1.6.10-1.amzn2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:amazonlinux:amazon_linux_extras:1.6.10-1.amzn2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:amazon:amazon-linux-extras:1.6.10-1.amzn2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:amazon:amazon_linux_extras:1.6.10-1.amzn2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:fc24ab7e0293a749fddb0110597d42b4d29f1ae143bae880417547e23f5d459c"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/var/lib/rpm/Packages"
+        },
+        {
+          "name": "syft:metadata:release",
+          "value": "1.amzn2"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "101600"
+        },
+        {
+          "name": "syft:metadata:sourceRpm",
+          "value": "amazon-linux-extras-1.6.10-1.amzn2.src.rpm"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:rpm/amzn/basesystem@10.0-7.amzn2.0.1?arch=noarch&upstream=basesystem-10.0-7.amzn2.0.1.src.rpm&distro=amzn-2&package-id=b8db57ebd8a09c93",
+      "type": "library",
+      "publisher": "Amazon Linux",
+      "name": "basesystem",
+      "version": "10.0-7.amzn2.0.1",
+      "licenses": [
+        {
+          "license": {
+            "name": "Public Domain"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:amazonlinux:basesystem:10.0-7.amzn2.0.1:*:*:*:*:*:*:*",
+      "purl": "pkg:rpm/amzn/basesystem@10.0-7.amzn2.0.1?arch=noarch&upstream=basesystem-10.0-7.amzn2.0.1.src.rpm&distro=amzn-2",
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "rpm-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "rpm"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "rpm-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:basesystem:basesystem:10.0-7.amzn2.0.1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:fc24ab7e0293a749fddb0110597d42b4d29f1ae143bae880417547e23f5d459c"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/var/lib/rpm/Packages"
+        },
+        {
+          "name": "syft:metadata:release",
+          "value": "7.amzn2.0.1"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "0"
+        },
+        {
+          "name": "syft:metadata:sourceRpm",
+          "value": "basesystem-10.0-7.amzn2.0.1.src.rpm"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:rpm/amzn/bash@4.2.46-33.amzn2?arch=x86_64&upstream=bash-4.2.46-33.amzn2.src.rpm&distro=amzn-2&package-id=b0423b5d2ac2263a",
+      "type": "library",
+      "publisher": "Amazon Linux",
+      "name": "bash",
+      "version": "4.2.46-33.amzn2",
+      "licenses": [
+        {
+          "license": {
+            "name": "GPLv3+"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:amazonlinux:bash:4.2.46-33.amzn2:*:*:*:*:*:*:*",
+      "purl": "pkg:rpm/amzn/bash@4.2.46-33.amzn2?arch=x86_64&upstream=bash-4.2.46-33.amzn2.src.rpm&distro=amzn-2",
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "rpm-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "rpm"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "rpm-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:bash:bash:4.2.46-33.amzn2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:fc24ab7e0293a749fddb0110597d42b4d29f1ae143bae880417547e23f5d459c"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/var/lib/rpm/Packages"
+        },
+        {
+          "name": "syft:metadata:release",
+          "value": "33.amzn2"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "3639150"
+        },
+        {
+          "name": "syft:metadata:sourceRpm",
+          "value": "bash-4.2.46-33.amzn2.src.rpm"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:rpm/amzn/bzip2-libs@1.0.6-13.amzn2.0.2?arch=x86_64&upstream=bzip2-1.0.6-13.amzn2.0.2.src.rpm&distro=amzn-2&package-id=f170c956be7a12a7",
+      "type": "library",
+      "publisher": "Amazon Linux",
+      "name": "bzip2-libs",
+      "version": "1.0.6-13.amzn2.0.2",
+      "licenses": [
+        {
+          "license": {
+            "name": "BSD"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:amazonlinux:bzip2-libs:1.0.6-13.amzn2.0.2:*:*:*:*:*:*:*",
+      "purl": "pkg:rpm/amzn/bzip2-libs@1.0.6-13.amzn2.0.2?arch=x86_64&upstream=bzip2-1.0.6-13.amzn2.0.2.src.rpm&distro=amzn-2",
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "rpm-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "rpm"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "rpm-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:amazonlinux:bzip2_libs:1.0.6-13.amzn2.0.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:bzip2-libs:bzip2-libs:1.0.6-13.amzn2.0.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:bzip2-libs:bzip2_libs:1.0.6-13.amzn2.0.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:bzip2_libs:bzip2-libs:1.0.6-13.amzn2.0.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:bzip2_libs:bzip2_libs:1.0.6-13.amzn2.0.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:bzip2:bzip2-libs:1.0.6-13.amzn2.0.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:bzip2:bzip2_libs:1.0.6-13.amzn2.0.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:fc24ab7e0293a749fddb0110597d42b4d29f1ae143bae880417547e23f5d459c"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/var/lib/rpm/Packages"
+        },
+        {
+          "name": "syft:metadata:release",
+          "value": "13.amzn2.0.2"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "70029"
+        },
+        {
+          "name": "syft:metadata:sourceRpm",
+          "value": "bzip2-1.0.6-13.amzn2.0.2.src.rpm"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:rpm/amzn/ca-certificates@2019.2.32-76.amzn2.0.1?arch=noarch&upstream=ca-certificates-2019.2.32-76.amzn2.0.1.src.rpm&distro=amzn-2&package-id=c650ae5ede493471",
+      "type": "library",
+      "publisher": "Amazon Linux",
+      "name": "ca-certificates",
+      "version": "2019.2.32-76.amzn2.0.1",
+      "licenses": [
+        {
+          "license": {
+            "name": "Public Domain"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:ca-certificates:ca-certificates:2019.2.32-76.amzn2.0.1:*:*:*:*:*:*:*",
+      "purl": "pkg:rpm/amzn/ca-certificates@2019.2.32-76.amzn2.0.1?arch=noarch&upstream=ca-certificates-2019.2.32-76.amzn2.0.1.src.rpm&distro=amzn-2",
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "rpm-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "rpm"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "rpm-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:ca-certificates:ca_certificates:2019.2.32-76.amzn2.0.1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:ca_certificates:ca-certificates:2019.2.32-76.amzn2.0.1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:ca_certificates:ca_certificates:2019.2.32-76.amzn2.0.1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:amazonlinux:ca-certificates:2019.2.32-76.amzn2.0.1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:amazonlinux:ca_certificates:2019.2.32-76.amzn2.0.1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:ca:ca-certificates:2019.2.32-76.amzn2.0.1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:ca:ca_certificates:2019.2.32-76.amzn2.0.1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:fc24ab7e0293a749fddb0110597d42b4d29f1ae143bae880417547e23f5d459c"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/var/lib/rpm/Packages"
+        },
+        {
+          "name": "syft:metadata:release",
+          "value": "76.amzn2.0.1"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "990691"
+        },
+        {
+          "name": "syft:metadata:sourceRpm",
+          "value": "ca-certificates-2019.2.32-76.amzn2.0.1.src.rpm"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:rpm/amzn/chkconfig@1.7.4-1.amzn2.0.2?arch=x86_64&upstream=chkconfig-1.7.4-1.amzn2.0.2.src.rpm&distro=amzn-2&package-id=2a2591d0e3034677",
+      "type": "library",
+      "publisher": "Amazon Linux",
+      "name": "chkconfig",
+      "version": "1.7.4-1.amzn2.0.2",
+      "licenses": [
+        {
+          "license": {
+            "name": "GPLv2"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:amazonlinux:chkconfig:1.7.4-1.amzn2.0.2:*:*:*:*:*:*:*",
+      "purl": "pkg:rpm/amzn/chkconfig@1.7.4-1.amzn2.0.2?arch=x86_64&upstream=chkconfig-1.7.4-1.amzn2.0.2.src.rpm&distro=amzn-2",
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "rpm-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "rpm"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "rpm-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:chkconfig:chkconfig:1.7.4-1.amzn2.0.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:fc24ab7e0293a749fddb0110597d42b4d29f1ae143bae880417547e23f5d459c"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/var/lib/rpm/Packages"
+        },
+        {
+          "name": "syft:metadata:release",
+          "value": "1.amzn2.0.2"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "779387"
+        },
+        {
+          "name": "syft:metadata:sourceRpm",
+          "value": "chkconfig-1.7.4-1.amzn2.0.2.src.rpm"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:rpm/amzn/coreutils@8.22-24.amzn2?arch=x86_64&upstream=coreutils-8.22-24.amzn2.src.rpm&distro=amzn-2&package-id=d55f9b214bbccce8",
+      "type": "library",
+      "publisher": "Amazon Linux",
+      "name": "coreutils",
+      "version": "8.22-24.amzn2",
+      "licenses": [
+        {
+          "license": {
+            "name": "GPLv3+"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:amazonlinux:coreutils:8.22-24.amzn2:*:*:*:*:*:*:*",
+      "purl": "pkg:rpm/amzn/coreutils@8.22-24.amzn2?arch=x86_64&upstream=coreutils-8.22-24.amzn2.src.rpm&distro=amzn-2",
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "rpm-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "rpm"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "rpm-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:coreutils:coreutils:8.22-24.amzn2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:fc24ab7e0293a749fddb0110597d42b4d29f1ae143bae880417547e23f5d459c"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/var/lib/rpm/Packages"
+        },
+        {
+          "name": "syft:metadata:release",
+          "value": "24.amzn2"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "14352745"
+        },
+        {
+          "name": "syft:metadata:sourceRpm",
+          "value": "coreutils-8.22-24.amzn2.src.rpm"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:rpm/amzn/cpio@2.11-27.amzn2?arch=x86_64&upstream=cpio-2.11-27.amzn2.src.rpm&distro=amzn-2&package-id=26638dc22ca9e9af",
+      "type": "library",
+      "publisher": "Amazon Linux",
+      "name": "cpio",
+      "version": "2.11-27.amzn2",
+      "licenses": [
+        {
+          "license": {
+            "name": "GPLv3+"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:amazonlinux:cpio:2.11-27.amzn2:*:*:*:*:*:*:*",
+      "purl": "pkg:rpm/amzn/cpio@2.11-27.amzn2?arch=x86_64&upstream=cpio-2.11-27.amzn2.src.rpm&distro=amzn-2",
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "rpm-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "rpm"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "rpm-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:cpio:cpio:2.11-27.amzn2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:fc24ab7e0293a749fddb0110597d42b4d29f1ae143bae880417547e23f5d459c"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/var/lib/rpm/Packages"
+        },
+        {
+          "name": "syft:metadata:release",
+          "value": "27.amzn2"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "689304"
+        },
+        {
+          "name": "syft:metadata:sourceRpm",
+          "value": "cpio-2.11-27.amzn2.src.rpm"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:rpm/amzn/curl@7.61.1-12.amzn2.0.1?arch=x86_64&upstream=curl-7.61.1-12.amzn2.0.1.src.rpm&distro=amzn-2&package-id=5faf529a869872aa",
+      "type": "library",
+      "publisher": "Amazon Linux",
+      "name": "curl",
+      "version": "7.61.1-12.amzn2.0.1",
+      "licenses": [
+        {
+          "license": {
+            "id": "MIT"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:amazonlinux:curl:7.61.1-12.amzn2.0.1:*:*:*:*:*:*:*",
+      "purl": "pkg:rpm/amzn/curl@7.61.1-12.amzn2.0.1?arch=x86_64&upstream=curl-7.61.1-12.amzn2.0.1.src.rpm&distro=amzn-2",
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "rpm-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "rpm"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "rpm-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:curl:curl:7.61.1-12.amzn2.0.1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:fc24ab7e0293a749fddb0110597d42b4d29f1ae143bae880417547e23f5d459c"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/var/lib/rpm/Packages"
+        },
+        {
+          "name": "syft:metadata:release",
+          "value": "12.amzn2.0.1"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "676002"
+        },
+        {
+          "name": "syft:metadata:sourceRpm",
+          "value": "curl-7.61.1-12.amzn2.0.1.src.rpm"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:rpm/amzn/cyrus-sasl-lib@2.1.26-23.amzn2?arch=x86_64&upstream=cyrus-sasl-2.1.26-23.amzn2.src.rpm&distro=amzn-2&package-id=daebbeb6d70272d0",
+      "type": "library",
+      "publisher": "Amazon Linux",
+      "name": "cyrus-sasl-lib",
+      "version": "2.1.26-23.amzn2",
+      "licenses": [
+        {
+          "license": {
+            "name": "BSD with advertising"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:cyrus-sasl-lib:cyrus-sasl-lib:2.1.26-23.amzn2:*:*:*:*:*:*:*",
+      "purl": "pkg:rpm/amzn/cyrus-sasl-lib@2.1.26-23.amzn2?arch=x86_64&upstream=cyrus-sasl-2.1.26-23.amzn2.src.rpm&distro=amzn-2",
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "rpm-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "rpm"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "rpm-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:cyrus-sasl-lib:cyrus_sasl_lib:2.1.26-23.amzn2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:cyrus_sasl_lib:cyrus-sasl-lib:2.1.26-23.amzn2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:cyrus_sasl_lib:cyrus_sasl_lib:2.1.26-23.amzn2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:amazonlinux:cyrus-sasl-lib:2.1.26-23.amzn2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:amazonlinux:cyrus_sasl_lib:2.1.26-23.amzn2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:cyrus-sasl:cyrus-sasl-lib:2.1.26-23.amzn2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:cyrus-sasl:cyrus_sasl_lib:2.1.26-23.amzn2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:cyrus_sasl:cyrus-sasl-lib:2.1.26-23.amzn2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:cyrus_sasl:cyrus_sasl_lib:2.1.26-23.amzn2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:cyrus:cyrus-sasl-lib:2.1.26-23.amzn2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:cyrus:cyrus_sasl_lib:2.1.26-23.amzn2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:fc24ab7e0293a749fddb0110597d42b4d29f1ae143bae880417547e23f5d459c"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/var/lib/rpm/Packages"
+        },
+        {
+          "name": "syft:metadata:release",
+          "value": "23.amzn2"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "396487"
+        },
+        {
+          "name": "syft:metadata:sourceRpm",
+          "value": "cyrus-sasl-2.1.26-23.amzn2.src.rpm"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:rpm/amzn/diffutils@3.3-5.amzn2?arch=x86_64&upstream=diffutils-3.3-5.amzn2.src.rpm&distro=amzn-2&package-id=c73f03c1e7136da2",
+      "type": "library",
+      "publisher": "Amazon Linux",
+      "name": "diffutils",
+      "version": "3.3-5.amzn2",
+      "licenses": [
+        {
+          "license": {
+            "name": "GPLv3+"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:amazonlinux:diffutils:3.3-5.amzn2:*:*:*:*:*:*:*",
+      "purl": "pkg:rpm/amzn/diffutils@3.3-5.amzn2?arch=x86_64&upstream=diffutils-3.3-5.amzn2.src.rpm&distro=amzn-2",
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "rpm-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "rpm"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "rpm-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:diffutils:diffutils:3.3-5.amzn2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:fc24ab7e0293a749fddb0110597d42b4d29f1ae143bae880417547e23f5d459c"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/var/lib/rpm/Packages"
+        },
+        {
+          "name": "syft:metadata:release",
+          "value": "5.amzn2"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "1056828"
+        },
+        {
+          "name": "syft:metadata:sourceRpm",
+          "value": "diffutils-3.3-5.amzn2.src.rpm"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:rpm/amzn/elfutils-libelf@0.176-2.amzn2?arch=x86_64&upstream=elfutils-0.176-2.amzn2.src.rpm&distro=amzn-2&package-id=eed88a526c888165",
+      "type": "library",
+      "publisher": "Amazon Linux",
+      "name": "elfutils-libelf",
+      "version": "0.176-2.amzn2",
+      "licenses": [
+        {
+          "license": {
+            "name": "GPLv2+ or LGPLv3+"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:elfutils-libelf:elfutils-libelf:0.176-2.amzn2:*:*:*:*:*:*:*",
+      "purl": "pkg:rpm/amzn/elfutils-libelf@0.176-2.amzn2?arch=x86_64&upstream=elfutils-0.176-2.amzn2.src.rpm&distro=amzn-2",
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "rpm-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "rpm"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "rpm-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:elfutils-libelf:elfutils_libelf:0.176-2.amzn2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:elfutils_libelf:elfutils-libelf:0.176-2.amzn2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:elfutils_libelf:elfutils_libelf:0.176-2.amzn2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:amazonlinux:elfutils-libelf:0.176-2.amzn2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:amazonlinux:elfutils_libelf:0.176-2.amzn2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:elfutils:elfutils-libelf:0.176-2.amzn2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:elfutils:elfutils_libelf:0.176-2.amzn2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:fc24ab7e0293a749fddb0110597d42b4d29f1ae143bae880417547e23f5d459c"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/var/lib/rpm/Packages"
+        },
+        {
+          "name": "syft:metadata:release",
+          "value": "2.amzn2"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "916062"
+        },
+        {
+          "name": "syft:metadata:sourceRpm",
+          "value": "elfutils-0.176-2.amzn2.src.rpm"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:rpm/amzn/expat@2.1.0-10.amzn2.0.2?arch=x86_64&upstream=expat-2.1.0-10.amzn2.0.2.src.rpm&distro=amzn-2&package-id=448f7f65e0358bba",
+      "type": "library",
+      "publisher": "Amazon Linux",
+      "name": "expat",
+      "version": "2.1.0-10.amzn2.0.2",
+      "licenses": [
+        {
+          "license": {
+            "id": "MIT"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:amazonlinux:expat:2.1.0-10.amzn2.0.2:*:*:*:*:*:*:*",
+      "purl": "pkg:rpm/amzn/expat@2.1.0-10.amzn2.0.2?arch=x86_64&upstream=expat-2.1.0-10.amzn2.0.2.src.rpm&distro=amzn-2",
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "rpm-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "rpm"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "rpm-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:expat:expat:2.1.0-10.amzn2.0.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:fc24ab7e0293a749fddb0110597d42b4d29f1ae143bae880417547e23f5d459c"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/var/lib/rpm/Packages"
+        },
+        {
+          "name": "syft:metadata:release",
+          "value": "10.amzn2.0.2"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "241075"
+        },
+        {
+          "name": "syft:metadata:sourceRpm",
+          "value": "expat-2.1.0-10.amzn2.0.2.src.rpm"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:rpm/amzn/file-libs@5.11-35.amzn2.0.2?arch=x86_64&upstream=file-5.11-35.amzn2.0.2.src.rpm&distro=amzn-2&package-id=e415701a70b1f63d",
+      "type": "library",
+      "publisher": "Amazon Linux",
+      "name": "file-libs",
+      "version": "5.11-35.amzn2.0.2",
+      "licenses": [
+        {
+          "license": {
+            "name": "BSD"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:amazonlinux:file-libs:5.11-35.amzn2.0.2:*:*:*:*:*:*:*",
+      "purl": "pkg:rpm/amzn/file-libs@5.11-35.amzn2.0.2?arch=x86_64&upstream=file-5.11-35.amzn2.0.2.src.rpm&distro=amzn-2",
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "rpm-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "rpm"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "rpm-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:amazonlinux:file_libs:5.11-35.amzn2.0.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:file-libs:file-libs:5.11-35.amzn2.0.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:file-libs:file_libs:5.11-35.amzn2.0.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:file_libs:file-libs:5.11-35.amzn2.0.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:file_libs:file_libs:5.11-35.amzn2.0.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:file:file-libs:5.11-35.amzn2.0.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:file:file_libs:5.11-35.amzn2.0.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:fc24ab7e0293a749fddb0110597d42b4d29f1ae143bae880417547e23f5d459c"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/var/lib/rpm/Packages"
+        },
+        {
+          "name": "syft:metadata:release",
+          "value": "35.amzn2.0.2"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "3069078"
+        },
+        {
+          "name": "syft:metadata:sourceRpm",
+          "value": "file-5.11-35.amzn2.0.2.src.rpm"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:rpm/amzn/filesystem@3.2-25.amzn2.0.4?arch=x86_64&upstream=filesystem-3.2-25.amzn2.0.4.src.rpm&distro=amzn-2&package-id=45f939b6c25712c4",
+      "type": "library",
+      "publisher": "Amazon Linux",
+      "name": "filesystem",
+      "version": "3.2-25.amzn2.0.4",
+      "licenses": [
+        {
+          "license": {
+            "name": "Public Domain"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:amazonlinux:filesystem:3.2-25.amzn2.0.4:*:*:*:*:*:*:*",
+      "purl": "pkg:rpm/amzn/filesystem@3.2-25.amzn2.0.4?arch=x86_64&upstream=filesystem-3.2-25.amzn2.0.4.src.rpm&distro=amzn-2",
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "rpm-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "rpm"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "rpm-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:filesystem:filesystem:3.2-25.amzn2.0.4:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:fc24ab7e0293a749fddb0110597d42b4d29f1ae143bae880417547e23f5d459c"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/var/lib/rpm/Packages"
+        },
+        {
+          "name": "syft:metadata:release",
+          "value": "25.amzn2.0.4"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "0"
+        },
+        {
+          "name": "syft:metadata:sourceRpm",
+          "value": "filesystem-3.2-25.amzn2.0.4.src.rpm"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:rpm/amzn/findutils@4.5.11-6.amzn2?arch=x86_64&epoch=1&upstream=findutils-4.5.11-6.amzn2.src.rpm&distro=amzn-2&package-id=a1a5398c4172a6ae",
+      "type": "library",
+      "publisher": "Amazon Linux",
+      "name": "findutils",
+      "version": "1:4.5.11-6.amzn2",
+      "licenses": [
+        {
+          "license": {
+            "name": "GPLv3+"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:amazonlinux:findutils:1\\:4.5.11-6.amzn2:*:*:*:*:*:*:*",
+      "purl": "pkg:rpm/amzn/findutils@4.5.11-6.amzn2?arch=x86_64&epoch=1&upstream=findutils-4.5.11-6.amzn2.src.rpm&distro=amzn-2",
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "rpm-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "rpm"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "rpm-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:findutils:findutils:1\\:4.5.11-6.amzn2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:fc24ab7e0293a749fddb0110597d42b4d29f1ae143bae880417547e23f5d459c"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/var/lib/rpm/Packages"
+        },
+        {
+          "name": "syft:metadata:epoch",
+          "value": "1"
+        },
+        {
+          "name": "syft:metadata:release",
+          "value": "6.amzn2"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "1838930"
+        },
+        {
+          "name": "syft:metadata:sourceRpm",
+          "value": "findutils-4.5.11-6.amzn2.src.rpm"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:rpm/amzn/gawk@4.0.2-4.amzn2.1.2?arch=x86_64&upstream=gawk-4.0.2-4.amzn2.1.2.src.rpm&distro=amzn-2&package-id=b643805bfc78dd8d",
+      "type": "library",
+      "publisher": "Amazon Linux",
+      "name": "gawk",
+      "version": "4.0.2-4.amzn2.1.2",
+      "licenses": [
+        {
+          "license": {
+            "name": "GPLv3+ and GPL and LGPLv3+ and LGPL and BSD"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:amazonlinux:gawk:4.0.2-4.amzn2.1.2:*:*:*:*:*:*:*",
+      "purl": "pkg:rpm/amzn/gawk@4.0.2-4.amzn2.1.2?arch=x86_64&upstream=gawk-4.0.2-4.amzn2.1.2.src.rpm&distro=amzn-2",
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "rpm-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "rpm"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "rpm-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:gawk:gawk:4.0.2-4.amzn2.1.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:fc24ab7e0293a749fddb0110597d42b4d29f1ae143bae880417547e23f5d459c"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/var/lib/rpm/Packages"
+        },
+        {
+          "name": "syft:metadata:release",
+          "value": "4.amzn2.1.2"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "2443338"
+        },
+        {
+          "name": "syft:metadata:sourceRpm",
+          "value": "gawk-4.0.2-4.amzn2.1.2.src.rpm"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:rpm/amzn/gdbm@1.13-6.amzn2.0.2?arch=x86_64&epoch=1&upstream=gdbm-1.13-6.amzn2.0.2.src.rpm&distro=amzn-2&package-id=7667a77157116466",
+      "type": "library",
+      "publisher": "Amazon Linux",
+      "name": "gdbm",
+      "version": "1:1.13-6.amzn2.0.2",
+      "licenses": [
+        {
+          "license": {
+            "name": "GPLv3+"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:amazonlinux:gdbm:1\\:1.13-6.amzn2.0.2:*:*:*:*:*:*:*",
+      "purl": "pkg:rpm/amzn/gdbm@1.13-6.amzn2.0.2?arch=x86_64&epoch=1&upstream=gdbm-1.13-6.amzn2.0.2.src.rpm&distro=amzn-2",
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "rpm-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "rpm"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "rpm-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:gdbm:gdbm:1\\:1.13-6.amzn2.0.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:fc24ab7e0293a749fddb0110597d42b4d29f1ae143bae880417547e23f5d459c"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/var/lib/rpm/Packages"
+        },
+        {
+          "name": "syft:metadata:epoch",
+          "value": "1"
+        },
+        {
+          "name": "syft:metadata:release",
+          "value": "6.amzn2.0.2"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "446921"
+        },
+        {
+          "name": "syft:metadata:sourceRpm",
+          "value": "gdbm-1.13-6.amzn2.0.2.src.rpm"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:rpm/amzn/glib2@2.56.1-4.amzn2?arch=x86_64&upstream=glib2-2.56.1-4.amzn2.src.rpm&distro=amzn-2&package-id=f1ce4832b45dbaac",
+      "type": "library",
+      "publisher": "Amazon Linux",
+      "name": "glib2",
+      "version": "2.56.1-4.amzn2",
+      "licenses": [
+        {
+          "license": {
+            "name": "LGPLv2+"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:amazonlinux:glib2:2.56.1-4.amzn2:*:*:*:*:*:*:*",
+      "purl": "pkg:rpm/amzn/glib2@2.56.1-4.amzn2?arch=x86_64&upstream=glib2-2.56.1-4.amzn2.src.rpm&distro=amzn-2",
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "rpm-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "rpm"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "rpm-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:glib2:glib2:2.56.1-4.amzn2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:fc24ab7e0293a749fddb0110597d42b4d29f1ae143bae880417547e23f5d459c"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/var/lib/rpm/Packages"
+        },
+        {
+          "name": "syft:metadata:release",
+          "value": "4.amzn2"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "12173145"
+        },
+        {
+          "name": "syft:metadata:sourceRpm",
+          "value": "glib2-2.56.1-4.amzn2.src.rpm"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:rpm/amzn/glibc@2.26-34.amzn2?arch=x86_64&upstream=glibc-2.26-34.amzn2.src.rpm&distro=amzn-2&package-id=aaf9f40aee775d65",
+      "type": "library",
+      "publisher": "Amazon Linux",
+      "name": "glibc",
+      "version": "2.26-34.amzn2",
+      "licenses": [
+        {
+          "license": {
+            "name": "LGPLv2+ and LGPLv2+ with exceptions and GPLv2+"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:amazonlinux:glibc:2.26-34.amzn2:*:*:*:*:*:*:*",
+      "purl": "pkg:rpm/amzn/glibc@2.26-34.amzn2?arch=x86_64&upstream=glibc-2.26-34.amzn2.src.rpm&distro=amzn-2",
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "rpm-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "rpm"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "rpm-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:glibc:glibc:2.26-34.amzn2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:fc24ab7e0293a749fddb0110597d42b4d29f1ae143bae880417547e23f5d459c"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/var/lib/rpm/Packages"
+        },
+        {
+          "name": "syft:metadata:release",
+          "value": "34.amzn2"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "13328391"
+        },
+        {
+          "name": "syft:metadata:sourceRpm",
+          "value": "glibc-2.26-34.amzn2.src.rpm"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:rpm/amzn/glibc-common@2.26-34.amzn2?arch=x86_64&upstream=glibc-2.26-34.amzn2.src.rpm&distro=amzn-2&package-id=a88e37fdd568988d",
+      "type": "library",
+      "publisher": "Amazon Linux",
+      "name": "glibc-common",
+      "version": "2.26-34.amzn2",
+      "licenses": [
+        {
+          "license": {
+            "name": "LGPLv2+ and LGPLv2+ with exceptions and GPLv2+"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:glibc-common:glibc-common:2.26-34.amzn2:*:*:*:*:*:*:*",
+      "purl": "pkg:rpm/amzn/glibc-common@2.26-34.amzn2?arch=x86_64&upstream=glibc-2.26-34.amzn2.src.rpm&distro=amzn-2",
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "rpm-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "rpm"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "rpm-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:glibc-common:glibc_common:2.26-34.amzn2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:glibc_common:glibc-common:2.26-34.amzn2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:glibc_common:glibc_common:2.26-34.amzn2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:amazonlinux:glibc-common:2.26-34.amzn2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:amazonlinux:glibc_common:2.26-34.amzn2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:glibc:glibc-common:2.26-34.amzn2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:glibc:glibc_common:2.26-34.amzn2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:fc24ab7e0293a749fddb0110597d42b4d29f1ae143bae880417547e23f5d459c"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/var/lib/rpm/Packages"
+        },
+        {
+          "name": "syft:metadata:release",
+          "value": "34.amzn2"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "3412174"
+        },
+        {
+          "name": "syft:metadata:sourceRpm",
+          "value": "glibc-2.26-34.amzn2.src.rpm"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:rpm/amzn/glibc-langpack-en@2.26-34.amzn2?arch=x86_64&upstream=glibc-2.26-34.amzn2.src.rpm&distro=amzn-2&package-id=78ca252f42c0cd10",
+      "type": "library",
+      "publisher": "Amazon Linux",
+      "name": "glibc-langpack-en",
+      "version": "2.26-34.amzn2",
+      "licenses": [
+        {
+          "license": {
+            "name": "LGPLv2+ and LGPLv2+ with exceptions and GPLv2+"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:glibc-langpack-en:glibc-langpack-en:2.26-34.amzn2:*:*:*:*:*:*:*",
+      "purl": "pkg:rpm/amzn/glibc-langpack-en@2.26-34.amzn2?arch=x86_64&upstream=glibc-2.26-34.amzn2.src.rpm&distro=amzn-2",
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "rpm-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "rpm"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "rpm-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:glibc-langpack-en:glibc_langpack_en:2.26-34.amzn2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:glibc_langpack_en:glibc-langpack-en:2.26-34.amzn2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:glibc_langpack_en:glibc_langpack_en:2.26-34.amzn2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:glibc-langpack:glibc-langpack-en:2.26-34.amzn2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:glibc-langpack:glibc_langpack_en:2.26-34.amzn2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:glibc_langpack:glibc-langpack-en:2.26-34.amzn2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:glibc_langpack:glibc_langpack_en:2.26-34.amzn2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:amazonlinux:glibc-langpack-en:2.26-34.amzn2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:amazonlinux:glibc_langpack_en:2.26-34.amzn2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:glibc:glibc-langpack-en:2.26-34.amzn2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:glibc:glibc_langpack_en:2.26-34.amzn2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:fc24ab7e0293a749fddb0110597d42b4d29f1ae143bae880417547e23f5d459c"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/var/lib/rpm/Packages"
+        },
+        {
+          "name": "syft:metadata:release",
+          "value": "34.amzn2"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "3548779"
+        },
+        {
+          "name": "syft:metadata:sourceRpm",
+          "value": "glibc-2.26-34.amzn2.src.rpm"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:rpm/amzn/glibc-minimal-langpack@2.26-34.amzn2?arch=x86_64&upstream=glibc-2.26-34.amzn2.src.rpm&distro=amzn-2&package-id=275d6892508cce54",
+      "type": "library",
+      "publisher": "Amazon Linux",
+      "name": "glibc-minimal-langpack",
+      "version": "2.26-34.amzn2",
+      "licenses": [
+        {
+          "license": {
+            "name": "LGPLv2+ and LGPLv2+ with exceptions and GPLv2+"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:glibc-minimal-langpack:glibc-minimal-langpack:2.26-34.amzn2:*:*:*:*:*:*:*",
+      "purl": "pkg:rpm/amzn/glibc-minimal-langpack@2.26-34.amzn2?arch=x86_64&upstream=glibc-2.26-34.amzn2.src.rpm&distro=amzn-2",
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "rpm-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "rpm"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "rpm-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:glibc-minimal-langpack:glibc_minimal_langpack:2.26-34.amzn2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:glibc_minimal_langpack:glibc-minimal-langpack:2.26-34.amzn2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:glibc_minimal_langpack:glibc_minimal_langpack:2.26-34.amzn2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:glibc-minimal:glibc-minimal-langpack:2.26-34.amzn2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:glibc-minimal:glibc_minimal_langpack:2.26-34.amzn2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:glibc_minimal:glibc-minimal-langpack:2.26-34.amzn2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:glibc_minimal:glibc_minimal_langpack:2.26-34.amzn2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:amazonlinux:glibc-minimal-langpack:2.26-34.amzn2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:amazonlinux:glibc_minimal_langpack:2.26-34.amzn2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:glibc:glibc-minimal-langpack:2.26-34.amzn2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:glibc:glibc_minimal_langpack:2.26-34.amzn2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:fc24ab7e0293a749fddb0110597d42b4d29f1ae143bae880417547e23f5d459c"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/var/lib/rpm/Packages"
+        },
+        {
+          "name": "syft:metadata:release",
+          "value": "34.amzn2"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "0"
+        },
+        {
+          "name": "syft:metadata:sourceRpm",
+          "value": "glibc-2.26-34.amzn2.src.rpm"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:rpm/amzn/gmp@6.0.0-15.amzn2.0.2?arch=x86_64&epoch=1&upstream=gmp-6.0.0-15.amzn2.0.2.src.rpm&distro=amzn-2&package-id=3d24a745cd1830b1",
+      "type": "library",
+      "publisher": "Amazon Linux",
+      "name": "gmp",
+      "version": "1:6.0.0-15.amzn2.0.2",
+      "licenses": [
+        {
+          "license": {
+            "name": "LGPLv3+ or GPLv2+"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:amazonlinux:gmp:1\\:6.0.0-15.amzn2.0.2:*:*:*:*:*:*:*",
+      "purl": "pkg:rpm/amzn/gmp@6.0.0-15.amzn2.0.2?arch=x86_64&epoch=1&upstream=gmp-6.0.0-15.amzn2.0.2.src.rpm&distro=amzn-2",
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "rpm-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "rpm"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "rpm-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:gmp:gmp:1\\:6.0.0-15.amzn2.0.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:fc24ab7e0293a749fddb0110597d42b4d29f1ae143bae880417547e23f5d459c"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/var/lib/rpm/Packages"
+        },
+        {
+          "name": "syft:metadata:epoch",
+          "value": "1"
+        },
+        {
+          "name": "syft:metadata:release",
+          "value": "15.amzn2.0.2"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "656878"
+        },
+        {
+          "name": "syft:metadata:sourceRpm",
+          "value": "gmp-6.0.0-15.amzn2.0.2.src.rpm"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:rpm/amzn/gnupg2@2.0.22-5.amzn2.0.4?arch=x86_64&upstream=gnupg2-2.0.22-5.amzn2.0.4.src.rpm&distro=amzn-2&package-id=4e4a6728d4b58ebd",
+      "type": "library",
+      "publisher": "Amazon Linux",
+      "name": "gnupg2",
+      "version": "2.0.22-5.amzn2.0.4",
+      "licenses": [
+        {
+          "license": {
+            "name": "GPLv3+"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:amazonlinux:gnupg2:2.0.22-5.amzn2.0.4:*:*:*:*:*:*:*",
+      "purl": "pkg:rpm/amzn/gnupg2@2.0.22-5.amzn2.0.4?arch=x86_64&upstream=gnupg2-2.0.22-5.amzn2.0.4.src.rpm&distro=amzn-2",
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "rpm-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "rpm"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "rpm-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:gnupg2:gnupg2:2.0.22-5.amzn2.0.4:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:fc24ab7e0293a749fddb0110597d42b4d29f1ae143bae880417547e23f5d459c"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/var/lib/rpm/Packages"
+        },
+        {
+          "name": "syft:metadata:release",
+          "value": "5.amzn2.0.4"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "6578228"
+        },
+        {
+          "name": "syft:metadata:sourceRpm",
+          "value": "gnupg2-2.0.22-5.amzn2.0.4.src.rpm"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:rpm/amzn/gpg-pubkey@c87f5b1a-593863f8?distro=amzn-2&package-id=fc78441fd699b752",
+      "type": "library",
+      "name": "gpg-pubkey",
+      "version": "c87f5b1a-593863f8",
+      "licenses": [
+        {
+          "license": {
+            "name": "pubkey"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:gpg-pubkey:gpg-pubkey:c87f5b1a-593863f8:*:*:*:*:*:*:*",
+      "purl": "pkg:rpm/amzn/gpg-pubkey@c87f5b1a-593863f8?distro=amzn-2",
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "rpm-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "rpm"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "rpm-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:gpg-pubkey:gpg_pubkey:c87f5b1a-593863f8:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:gpg_pubkey:gpg-pubkey:c87f5b1a-593863f8:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:gpg_pubkey:gpg_pubkey:c87f5b1a-593863f8:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:gpg:gpg-pubkey:c87f5b1a-593863f8:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:gpg:gpg_pubkey:c87f5b1a-593863f8:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:fc24ab7e0293a749fddb0110597d42b4d29f1ae143bae880417547e23f5d459c"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/var/lib/rpm/Packages"
+        },
+        {
+          "name": "syft:metadata:release",
+          "value": "593863f8"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "0"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:rpm/amzn/gpgme@1.3.2-5.amzn2.0.2?arch=x86_64&upstream=gpgme-1.3.2-5.amzn2.0.2.src.rpm&distro=amzn-2&package-id=98928750540c289f",
+      "type": "library",
+      "publisher": "Amazon Linux",
+      "name": "gpgme",
+      "version": "1.3.2-5.amzn2.0.2",
+      "licenses": [
+        {
+          "license": {
+            "name": "LGPLv2+"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:amazonlinux:gpgme:1.3.2-5.amzn2.0.2:*:*:*:*:*:*:*",
+      "purl": "pkg:rpm/amzn/gpgme@1.3.2-5.amzn2.0.2?arch=x86_64&upstream=gpgme-1.3.2-5.amzn2.0.2.src.rpm&distro=amzn-2",
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "rpm-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "rpm"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "rpm-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:gpgme:gpgme:1.3.2-5.amzn2.0.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:fc24ab7e0293a749fddb0110597d42b4d29f1ae143bae880417547e23f5d459c"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/var/lib/rpm/Packages"
+        },
+        {
+          "name": "syft:metadata:release",
+          "value": "5.amzn2.0.2"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "551398"
+        },
+        {
+          "name": "syft:metadata:sourceRpm",
+          "value": "gpgme-1.3.2-5.amzn2.0.2.src.rpm"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:rpm/amzn/grep@2.20-3.amzn2.0.2?arch=x86_64&upstream=grep-2.20-3.amzn2.0.2.src.rpm&distro=amzn-2&package-id=46be1b9d511c4daf",
+      "type": "library",
+      "publisher": "Amazon Linux",
+      "name": "grep",
+      "version": "2.20-3.amzn2.0.2",
+      "licenses": [
+        {
+          "license": {
+            "name": "GPLv3+"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:amazonlinux:grep:2.20-3.amzn2.0.2:*:*:*:*:*:*:*",
+      "purl": "pkg:rpm/amzn/grep@2.20-3.amzn2.0.2?arch=x86_64&upstream=grep-2.20-3.amzn2.0.2.src.rpm&distro=amzn-2",
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "rpm-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "rpm"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "rpm-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:grep:grep:2.20-3.amzn2.0.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:fc24ab7e0293a749fddb0110597d42b4d29f1ae143bae880417547e23f5d459c"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/var/lib/rpm/Packages"
+        },
+        {
+          "name": "syft:metadata:release",
+          "value": "3.amzn2.0.2"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "1194971"
+        },
+        {
+          "name": "syft:metadata:sourceRpm",
+          "value": "grep-2.20-3.amzn2.0.2.src.rpm"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:rpm/amzn/groff@1.22.2-8.amzn2.0.2?arch=x86_64&upstream=groff-1.22.2-8.amzn2.0.2.src.rpm&distro=amzn-2&package-id=84ddcaec1a197441",
+      "type": "library",
+      "publisher": "Amazon Linux",
+      "name": "groff",
+      "version": "1.22.2-8.amzn2.0.2",
+      "licenses": [
+        {
+          "license": {
+            "name": "GPLv3+ and GFDL and BSD and MIT"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:amazonlinux:groff:1.22.2-8.amzn2.0.2:*:*:*:*:*:*:*",
+      "purl": "pkg:rpm/amzn/groff@1.22.2-8.amzn2.0.2?arch=x86_64&upstream=groff-1.22.2-8.amzn2.0.2.src.rpm&distro=amzn-2",
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "rpm-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "rpm"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "rpm-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:groff:groff:1.22.2-8.amzn2.0.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:fc24ab7e0293a749fddb0110597d42b4d29f1ae143bae880417547e23f5d459c"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/var/lib/rpm/Packages"
+        },
+        {
+          "name": "syft:metadata:release",
+          "value": "8.amzn2.0.2"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "3766095"
+        },
+        {
+          "name": "syft:metadata:sourceRpm",
+          "value": "groff-1.22.2-8.amzn2.0.2.src.rpm"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:rpm/amzn/groff-base@1.22.2-8.amzn2.0.2?arch=x86_64&upstream=groff-1.22.2-8.amzn2.0.2.src.rpm&distro=amzn-2&package-id=5c8ff1a9e1082248",
+      "type": "library",
+      "publisher": "Amazon Linux",
+      "name": "groff-base",
+      "version": "1.22.2-8.amzn2.0.2",
+      "licenses": [
+        {
+          "license": {
+            "name": "GPLv3+ and GFDL and BSD and MIT"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:amazonlinux:groff-base:1.22.2-8.amzn2.0.2:*:*:*:*:*:*:*",
+      "purl": "pkg:rpm/amzn/groff-base@1.22.2-8.amzn2.0.2?arch=x86_64&upstream=groff-1.22.2-8.amzn2.0.2.src.rpm&distro=amzn-2",
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "rpm-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "rpm"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "rpm-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:amazonlinux:groff_base:1.22.2-8.amzn2.0.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:groff-base:groff-base:1.22.2-8.amzn2.0.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:groff-base:groff_base:1.22.2-8.amzn2.0.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:groff_base:groff-base:1.22.2-8.amzn2.0.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:groff_base:groff_base:1.22.2-8.amzn2.0.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:groff:groff-base:1.22.2-8.amzn2.0.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:groff:groff_base:1.22.2-8.amzn2.0.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:fc24ab7e0293a749fddb0110597d42b4d29f1ae143bae880417547e23f5d459c"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/var/lib/rpm/Packages"
+        },
+        {
+          "name": "syft:metadata:release",
+          "value": "8.amzn2.0.2"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "3438114"
+        },
+        {
+          "name": "syft:metadata:sourceRpm",
+          "value": "groff-1.22.2-8.amzn2.0.2.src.rpm"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:rpm/amzn/info@5.1-5.amzn2?arch=x86_64&upstream=texinfo-5.1-5.amzn2.src.rpm&distro=amzn-2&package-id=fdd90c25c5909ff5",
+      "type": "library",
+      "publisher": "Amazon Linux",
+      "name": "info",
+      "version": "5.1-5.amzn2",
+      "licenses": [
+        {
+          "license": {
+            "name": "GPLv3+"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:amazonlinux:info:5.1-5.amzn2:*:*:*:*:*:*:*",
+      "purl": "pkg:rpm/amzn/info@5.1-5.amzn2?arch=x86_64&upstream=texinfo-5.1-5.amzn2.src.rpm&distro=amzn-2",
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "rpm-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "rpm"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "rpm-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:info:info:5.1-5.amzn2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:fc24ab7e0293a749fddb0110597d42b4d29f1ae143bae880417547e23f5d459c"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/var/lib/rpm/Packages"
+        },
+        {
+          "name": "syft:metadata:release",
+          "value": "5.amzn2"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "494310"
+        },
+        {
+          "name": "syft:metadata:sourceRpm",
+          "value": "texinfo-5.1-5.amzn2.src.rpm"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:pypi/iniparse@0.4?package-id=e60fac5dafef4bd0",
+      "type": "library",
+      "author": "Paramjit Oberoi <param@cs.wisc.edu>",
+      "name": "iniparse",
+      "version": "0.4",
+      "licenses": [
+        {
+          "license": {
+            "id": "MIT"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:paramjit_oberoi_project:python-iniparse:0.4:*:*:*:*:*:*:*",
+      "purl": "pkg:pypi/iniparse@0.4",
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "python-installed-package-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "python"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "python"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "python-package"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:paramjit_oberoi_project:python_iniparse:0.4:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:paramjit_oberoiproject:python-iniparse:0.4:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:paramjit_oberoiproject:python_iniparse:0.4:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:paramjit_oberoi_project:iniparse:0.4:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:paramjit_oberoi:python-iniparse:0.4:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:paramjit_oberoi:python_iniparse:0.4:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:paramjit_oberoiproject:iniparse:0.4:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python-iniparse:python-iniparse:0.4:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python-iniparse:python_iniparse:0.4:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python_iniparse:python-iniparse:0.4:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python_iniparse:python_iniparse:0.4:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:param_project:python-iniparse:0.4:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:param_project:python_iniparse:0.4:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:paramproject:python-iniparse:0.4:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:paramproject:python_iniparse:0.4:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:iniparse:python-iniparse:0.4:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:iniparse:python_iniparse:0.4:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:paramjit_oberoi:iniparse:0.4:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python-iniparse:iniparse:0.4:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python_iniparse:iniparse:0.4:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:param_project:iniparse:0.4:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python:python-iniparse:0.4:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python:python_iniparse:0.4:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:param:python-iniparse:0.4:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:param:python_iniparse:0.4:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:paramproject:iniparse:0.4:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:iniparse:iniparse:0.4:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python:iniparse:0.4:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:param:iniparse:0.4:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:9f856a31a19b9076c45195825844d89d7dad641870d1bd10c66579ff6bc1a0b4"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/usr/lib/python2.7/site-packages/iniparse-0.4-py2.7.egg-info"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:rpm/amzn/keyutils-libs@1.5.8-3.amzn2.0.2?arch=x86_64&upstream=keyutils-1.5.8-3.amzn2.0.2.src.rpm&distro=amzn-2&package-id=814c8c72f1708bfb",
+      "type": "library",
+      "publisher": "Amazon Linux",
+      "name": "keyutils-libs",
+      "version": "1.5.8-3.amzn2.0.2",
+      "licenses": [
+        {
+          "license": {
+            "name": "GPLv2+ and LGPLv2+"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:keyutils-libs:keyutils-libs:1.5.8-3.amzn2.0.2:*:*:*:*:*:*:*",
+      "purl": "pkg:rpm/amzn/keyutils-libs@1.5.8-3.amzn2.0.2?arch=x86_64&upstream=keyutils-1.5.8-3.amzn2.0.2.src.rpm&distro=amzn-2",
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "rpm-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "rpm"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "rpm-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:keyutils-libs:keyutils_libs:1.5.8-3.amzn2.0.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:keyutils_libs:keyutils-libs:1.5.8-3.amzn2.0.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:keyutils_libs:keyutils_libs:1.5.8-3.amzn2.0.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:amazonlinux:keyutils-libs:1.5.8-3.amzn2.0.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:amazonlinux:keyutils_libs:1.5.8-3.amzn2.0.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:keyutils:keyutils-libs:1.5.8-3.amzn2.0.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:keyutils:keyutils_libs:1.5.8-3.amzn2.0.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:fc24ab7e0293a749fddb0110597d42b4d29f1ae143bae880417547e23f5d459c"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/var/lib/rpm/Packages"
+        },
+        {
+          "name": "syft:metadata:release",
+          "value": "3.amzn2.0.2"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "42066"
+        },
+        {
+          "name": "syft:metadata:sourceRpm",
+          "value": "keyutils-1.5.8-3.amzn2.0.2.src.rpm"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:rpm/amzn/krb5-libs@1.15.1-37.amzn2.2.2?arch=x86_64&upstream=krb5-1.15.1-37.amzn2.2.2.src.rpm&distro=amzn-2&package-id=623d9be85a64caf7",
+      "type": "library",
+      "publisher": "Amazon Linux",
+      "name": "krb5-libs",
+      "version": "1.15.1-37.amzn2.2.2",
+      "licenses": [
+        {
+          "license": {
+            "id": "MIT"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:amazonlinux:krb5-libs:1.15.1-37.amzn2.2.2:*:*:*:*:*:*:*",
+      "purl": "pkg:rpm/amzn/krb5-libs@1.15.1-37.amzn2.2.2?arch=x86_64&upstream=krb5-1.15.1-37.amzn2.2.2.src.rpm&distro=amzn-2",
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "rpm-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "rpm"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "rpm-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:amazonlinux:krb5_libs:1.15.1-37.amzn2.2.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:krb5-libs:krb5-libs:1.15.1-37.amzn2.2.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:krb5-libs:krb5_libs:1.15.1-37.amzn2.2.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:krb5_libs:krb5-libs:1.15.1-37.amzn2.2.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:krb5_libs:krb5_libs:1.15.1-37.amzn2.2.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:krb5:krb5-libs:1.15.1-37.amzn2.2.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:krb5:krb5_libs:1.15.1-37.amzn2.2.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:fc24ab7e0293a749fddb0110597d42b4d29f1ae143bae880417547e23f5d459c"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/var/lib/rpm/Packages"
+        },
+        {
+          "name": "syft:metadata:release",
+          "value": "37.amzn2.2.2"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "2154193"
+        },
+        {
+          "name": "syft:metadata:sourceRpm",
+          "value": "krb5-1.15.1-37.amzn2.2.2.src.rpm"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:rpm/amzn/less@458-9.amzn2.0.2?arch=x86_64&upstream=less-458-9.amzn2.0.2.src.rpm&distro=amzn-2&package-id=2127174435bcb42d",
+      "type": "library",
+      "publisher": "Amazon Linux",
+      "name": "less",
+      "version": "458-9.amzn2.0.2",
+      "licenses": [
+        {
+          "license": {
+            "name": "GPLv3+"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:amazonlinux:less:458-9.amzn2.0.2:*:*:*:*:*:*:*",
+      "purl": "pkg:rpm/amzn/less@458-9.amzn2.0.2?arch=x86_64&upstream=less-458-9.amzn2.0.2.src.rpm&distro=amzn-2",
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "rpm-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "rpm"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "rpm-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:less:less:458-9.amzn2.0.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:fc24ab7e0293a749fddb0110597d42b4d29f1ae143bae880417547e23f5d459c"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/var/lib/rpm/Packages"
+        },
+        {
+          "name": "syft:metadata:release",
+          "value": "9.amzn2.0.2"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "219232"
+        },
+        {
+          "name": "syft:metadata:sourceRpm",
+          "value": "less-458-9.amzn2.0.2.src.rpm"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:rpm/amzn/libacl@2.2.51-14.amzn2?arch=x86_64&upstream=acl-2.2.51-14.amzn2.src.rpm&distro=amzn-2&package-id=3f2ccfaf63b4968c",
+      "type": "library",
+      "publisher": "Amazon Linux",
+      "name": "libacl",
+      "version": "2.2.51-14.amzn2",
+      "licenses": [
+        {
+          "license": {
+            "name": "LGPLv2+"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:amazonlinux:libacl:2.2.51-14.amzn2:*:*:*:*:*:*:*",
+      "purl": "pkg:rpm/amzn/libacl@2.2.51-14.amzn2?arch=x86_64&upstream=acl-2.2.51-14.amzn2.src.rpm&distro=amzn-2",
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "rpm-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "rpm"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "rpm-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:libacl:libacl:2.2.51-14.amzn2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:fc24ab7e0293a749fddb0110597d42b4d29f1ae143bae880417547e23f5d459c"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/var/lib/rpm/Packages"
+        },
+        {
+          "name": "syft:metadata:release",
+          "value": "14.amzn2"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "37000"
+        },
+        {
+          "name": "syft:metadata:sourceRpm",
+          "value": "acl-2.2.51-14.amzn2.src.rpm"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:rpm/amzn/libassuan@2.1.0-3.amzn2.0.2?arch=x86_64&upstream=libassuan-2.1.0-3.amzn2.0.2.src.rpm&distro=amzn-2&package-id=1d05854893d85652",
+      "type": "library",
+      "publisher": "Amazon Linux",
+      "name": "libassuan",
+      "version": "2.1.0-3.amzn2.0.2",
+      "licenses": [
+        {
+          "license": {
+            "name": "LGPLv2+ and GPLv3+"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:amazonlinux:libassuan:2.1.0-3.amzn2.0.2:*:*:*:*:*:*:*",
+      "purl": "pkg:rpm/amzn/libassuan@2.1.0-3.amzn2.0.2?arch=x86_64&upstream=libassuan-2.1.0-3.amzn2.0.2.src.rpm&distro=amzn-2",
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "rpm-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "rpm"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "rpm-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:libassuan:libassuan:2.1.0-3.amzn2.0.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:fc24ab7e0293a749fddb0110597d42b4d29f1ae143bae880417547e23f5d459c"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/var/lib/rpm/Packages"
+        },
+        {
+          "name": "syft:metadata:release",
+          "value": "3.amzn2.0.2"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "155367"
+        },
+        {
+          "name": "syft:metadata:sourceRpm",
+          "value": "libassuan-2.1.0-3.amzn2.0.2.src.rpm"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:rpm/amzn/libattr@2.4.46-12.amzn2.0.2?arch=x86_64&upstream=attr-2.4.46-12.amzn2.0.2.src.rpm&distro=amzn-2&package-id=cee3b8132eb0c49c",
+      "type": "library",
+      "publisher": "Amazon Linux",
+      "name": "libattr",
+      "version": "2.4.46-12.amzn2.0.2",
+      "licenses": [
+        {
+          "license": {
+            "name": "LGPLv2+"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:amazonlinux:libattr:2.4.46-12.amzn2.0.2:*:*:*:*:*:*:*",
+      "purl": "pkg:rpm/amzn/libattr@2.4.46-12.amzn2.0.2?arch=x86_64&upstream=attr-2.4.46-12.amzn2.0.2.src.rpm&distro=amzn-2",
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "rpm-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "rpm"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "rpm-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:libattr:libattr:2.4.46-12.amzn2.0.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:fc24ab7e0293a749fddb0110597d42b4d29f1ae143bae880417547e23f5d459c"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/var/lib/rpm/Packages"
+        },
+        {
+          "name": "syft:metadata:release",
+          "value": "12.amzn2.0.2"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "19816"
+        },
+        {
+          "name": "syft:metadata:sourceRpm",
+          "value": "attr-2.4.46-12.amzn2.0.2.src.rpm"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:rpm/amzn/libblkid@2.30.2-2.amzn2.0.4?arch=x86_64&upstream=util-linux-2.30.2-2.amzn2.0.4.src.rpm&distro=amzn-2&package-id=e8af3719cdbeb994",
+      "type": "library",
+      "publisher": "Amazon Linux",
+      "name": "libblkid",
+      "version": "2.30.2-2.amzn2.0.4",
+      "licenses": [
+        {
+          "license": {
+            "name": "LGPLv2+"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:amazonlinux:libblkid:2.30.2-2.amzn2.0.4:*:*:*:*:*:*:*",
+      "purl": "pkg:rpm/amzn/libblkid@2.30.2-2.amzn2.0.4?arch=x86_64&upstream=util-linux-2.30.2-2.amzn2.0.4.src.rpm&distro=amzn-2",
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "rpm-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "rpm"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "rpm-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:libblkid:libblkid:2.30.2-2.amzn2.0.4:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:fc24ab7e0293a749fddb0110597d42b4d29f1ae143bae880417547e23f5d459c"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/var/lib/rpm/Packages"
+        },
+        {
+          "name": "syft:metadata:release",
+          "value": "2.amzn2.0.4"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "307232"
+        },
+        {
+          "name": "syft:metadata:sourceRpm",
+          "value": "util-linux-2.30.2-2.amzn2.0.4.src.rpm"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:rpm/amzn/libcap@2.22-9.amzn2.0.2?arch=x86_64&upstream=libcap-2.22-9.amzn2.0.2.src.rpm&distro=amzn-2&package-id=7a4d77bdf5c027d8",
+      "type": "library",
+      "publisher": "Amazon Linux",
+      "name": "libcap",
+      "version": "2.22-9.amzn2.0.2",
+      "licenses": [
+        {
+          "license": {
+            "name": "LGPLv2+"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:amazonlinux:libcap:2.22-9.amzn2.0.2:*:*:*:*:*:*:*",
+      "purl": "pkg:rpm/amzn/libcap@2.22-9.amzn2.0.2?arch=x86_64&upstream=libcap-2.22-9.amzn2.0.2.src.rpm&distro=amzn-2",
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "rpm-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "rpm"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "rpm-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:libcap:libcap:2.22-9.amzn2.0.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:fc24ab7e0293a749fddb0110597d42b4d29f1ae143bae880417547e23f5d459c"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/var/lib/rpm/Packages"
+        },
+        {
+          "name": "syft:metadata:release",
+          "value": "9.amzn2.0.2"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "106781"
+        },
+        {
+          "name": "syft:metadata:sourceRpm",
+          "value": "libcap-2.22-9.amzn2.0.2.src.rpm"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:rpm/amzn/libcom_err@1.42.9-12.amzn2.0.2?arch=x86_64&upstream=e2fsprogs-1.42.9-12.amzn2.0.2.src.rpm&distro=amzn-2&package-id=40d723d40ba5f08c",
+      "type": "library",
+      "publisher": "Amazon Linux",
+      "name": "libcom_err",
+      "version": "1.42.9-12.amzn2.0.2",
+      "licenses": [
+        {
+          "license": {
+            "id": "MIT"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:amazonlinux:libcom-err:1.42.9-12.amzn2.0.2:*:*:*:*:*:*:*",
+      "purl": "pkg:rpm/amzn/libcom_err@1.42.9-12.amzn2.0.2?arch=x86_64&upstream=e2fsprogs-1.42.9-12.amzn2.0.2.src.rpm&distro=amzn-2",
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "rpm-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "rpm"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "rpm-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:amazonlinux:libcom_err:1.42.9-12.amzn2.0.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:libcom-err:libcom-err:1.42.9-12.amzn2.0.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:libcom-err:libcom_err:1.42.9-12.amzn2.0.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:libcom_err:libcom-err:1.42.9-12.amzn2.0.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:libcom_err:libcom_err:1.42.9-12.amzn2.0.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:libcom:libcom-err:1.42.9-12.amzn2.0.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:libcom:libcom_err:1.42.9-12.amzn2.0.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:fc24ab7e0293a749fddb0110597d42b4d29f1ae143bae880417547e23f5d459c"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/var/lib/rpm/Packages"
+        },
+        {
+          "name": "syft:metadata:release",
+          "value": "12.amzn2.0.2"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "60337"
+        },
+        {
+          "name": "syft:metadata:sourceRpm",
+          "value": "e2fsprogs-1.42.9-12.amzn2.0.2.src.rpm"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:rpm/amzn/libcrypt@2.26-34.amzn2?arch=x86_64&upstream=glibc-2.26-34.amzn2.src.rpm&distro=amzn-2&package-id=8a691524aa78dd93",
+      "type": "library",
+      "publisher": "Amazon Linux",
+      "name": "libcrypt",
+      "version": "2.26-34.amzn2",
+      "licenses": [
+        {
+          "license": {
+            "name": "LGPLv2+ and LGPLv2+ with exceptions and GPLv2+"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:amazonlinux:libcrypt:2.26-34.amzn2:*:*:*:*:*:*:*",
+      "purl": "pkg:rpm/amzn/libcrypt@2.26-34.amzn2?arch=x86_64&upstream=glibc-2.26-34.amzn2.src.rpm&distro=amzn-2",
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "rpm-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "rpm"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "rpm-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:libcrypt:libcrypt:2.26-34.amzn2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:fc24ab7e0293a749fddb0110597d42b4d29f1ae143bae880417547e23f5d459c"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/var/lib/rpm/Packages"
+        },
+        {
+          "name": "syft:metadata:release",
+          "value": "34.amzn2"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "45597"
+        },
+        {
+          "name": "syft:metadata:sourceRpm",
+          "value": "glibc-2.26-34.amzn2.src.rpm"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:rpm/amzn/libcurl@7.61.1-12.amzn2.0.1?arch=x86_64&upstream=curl-7.61.1-12.amzn2.0.1.src.rpm&distro=amzn-2&package-id=1008415a12c5a3d8",
+      "type": "library",
+      "publisher": "Amazon Linux",
+      "name": "libcurl",
+      "version": "7.61.1-12.amzn2.0.1",
+      "licenses": [
+        {
+          "license": {
+            "id": "MIT"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:amazonlinux:libcurl:7.61.1-12.amzn2.0.1:*:*:*:*:*:*:*",
+      "purl": "pkg:rpm/amzn/libcurl@7.61.1-12.amzn2.0.1?arch=x86_64&upstream=curl-7.61.1-12.amzn2.0.1.src.rpm&distro=amzn-2",
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "rpm-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "rpm"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "rpm-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:libcurl:libcurl:7.61.1-12.amzn2.0.1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:fc24ab7e0293a749fddb0110597d42b4d29f1ae143bae880417547e23f5d459c"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/var/lib/rpm/Packages"
+        },
+        {
+          "name": "syft:metadata:release",
+          "value": "12.amzn2.0.1"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "554928"
+        },
+        {
+          "name": "syft:metadata:sourceRpm",
+          "value": "curl-7.61.1-12.amzn2.0.1.src.rpm"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:rpm/amzn/libdb@5.3.21-24.amzn2.0.3?arch=x86_64&upstream=libdb-5.3.21-24.amzn2.0.3.src.rpm&distro=amzn-2&package-id=d1342d9e247af90c",
+      "type": "library",
+      "publisher": "Amazon Linux",
+      "name": "libdb",
+      "version": "5.3.21-24.amzn2.0.3",
+      "licenses": [
+        {
+          "license": {
+            "name": "BSD and LGPLv2 and Sleepycat"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:amazonlinux:libdb:5.3.21-24.amzn2.0.3:*:*:*:*:*:*:*",
+      "purl": "pkg:rpm/amzn/libdb@5.3.21-24.amzn2.0.3?arch=x86_64&upstream=libdb-5.3.21-24.amzn2.0.3.src.rpm&distro=amzn-2",
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "rpm-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "rpm"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "rpm-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:libdb:libdb:5.3.21-24.amzn2.0.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:fc24ab7e0293a749fddb0110597d42b4d29f1ae143bae880417547e23f5d459c"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/var/lib/rpm/Packages"
+        },
+        {
+          "name": "syft:metadata:release",
+          "value": "24.amzn2.0.3"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "1853824"
+        },
+        {
+          "name": "syft:metadata:sourceRpm",
+          "value": "libdb-5.3.21-24.amzn2.0.3.src.rpm"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:rpm/amzn/libdb-utils@5.3.21-24.amzn2.0.3?arch=x86_64&upstream=libdb-5.3.21-24.amzn2.0.3.src.rpm&distro=amzn-2&package-id=e11936523ddc3075",
+      "type": "library",
+      "publisher": "Amazon Linux",
+      "name": "libdb-utils",
+      "version": "5.3.21-24.amzn2.0.3",
+      "licenses": [
+        {
+          "license": {
+            "name": "BSD and LGPLv2 and Sleepycat"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:amazonlinux:libdb-utils:5.3.21-24.amzn2.0.3:*:*:*:*:*:*:*",
+      "purl": "pkg:rpm/amzn/libdb-utils@5.3.21-24.amzn2.0.3?arch=x86_64&upstream=libdb-5.3.21-24.amzn2.0.3.src.rpm&distro=amzn-2",
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "rpm-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "rpm"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "rpm-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:amazonlinux:libdb_utils:5.3.21-24.amzn2.0.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:libdb-utils:libdb-utils:5.3.21-24.amzn2.0.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:libdb-utils:libdb_utils:5.3.21-24.amzn2.0.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:libdb_utils:libdb-utils:5.3.21-24.amzn2.0.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:libdb_utils:libdb_utils:5.3.21-24.amzn2.0.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:libdb:libdb-utils:5.3.21-24.amzn2.0.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:libdb:libdb_utils:5.3.21-24.amzn2.0.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:fc24ab7e0293a749fddb0110597d42b4d29f1ae143bae880417547e23f5d459c"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/var/lib/rpm/Packages"
+        },
+        {
+          "name": "syft:metadata:release",
+          "value": "24.amzn2.0.3"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "320967"
+        },
+        {
+          "name": "syft:metadata:sourceRpm",
+          "value": "libdb-5.3.21-24.amzn2.0.3.src.rpm"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:rpm/amzn/libffi@3.0.13-18.amzn2.0.2?arch=x86_64&upstream=libffi-3.0.13-18.amzn2.0.2.src.rpm&distro=amzn-2&package-id=0878ce310d10ec84",
+      "type": "library",
+      "publisher": "Amazon Linux",
+      "name": "libffi",
+      "version": "3.0.13-18.amzn2.0.2",
+      "licenses": [
+        {
+          "license": {
+            "name": "MIT and Public Domain"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:amazonlinux:libffi:3.0.13-18.amzn2.0.2:*:*:*:*:*:*:*",
+      "purl": "pkg:rpm/amzn/libffi@3.0.13-18.amzn2.0.2?arch=x86_64&upstream=libffi-3.0.13-18.amzn2.0.2.src.rpm&distro=amzn-2",
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "rpm-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "rpm"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "rpm-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:libffi:libffi:3.0.13-18.amzn2.0.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:fc24ab7e0293a749fddb0110597d42b4d29f1ae143bae880417547e23f5d459c"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/var/lib/rpm/Packages"
+        },
+        {
+          "name": "syft:metadata:release",
+          "value": "18.amzn2.0.2"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "47702"
+        },
+        {
+          "name": "syft:metadata:sourceRpm",
+          "value": "libffi-3.0.13-18.amzn2.0.2.src.rpm"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:rpm/amzn/libgcc@7.3.1-6.amzn2.0.4?arch=x86_64&upstream=gcc-7.3.1-6.amzn2.0.4.src.rpm&distro=amzn-2&package-id=979f7faec885ddae",
+      "type": "library",
+      "publisher": "Amazon Linux",
+      "name": "libgcc",
+      "version": "7.3.1-6.amzn2.0.4",
+      "licenses": [
+        {
+          "license": {
+            "name": "GPLv3+ and GPLv3+ with exceptions and GPLv2+ with exceptions and LGPLv2+ and BSD"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:amazonlinux:libgcc:7.3.1-6.amzn2.0.4:*:*:*:*:*:*:*",
+      "purl": "pkg:rpm/amzn/libgcc@7.3.1-6.amzn2.0.4?arch=x86_64&upstream=gcc-7.3.1-6.amzn2.0.4.src.rpm&distro=amzn-2",
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "rpm-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "rpm"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "rpm-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:libgcc:libgcc:7.3.1-6.amzn2.0.4:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:fc24ab7e0293a749fddb0110597d42b4d29f1ae143bae880417547e23f5d459c"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/var/lib/rpm/Packages"
+        },
+        {
+          "name": "syft:metadata:release",
+          "value": "6.amzn2.0.4"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "179192"
+        },
+        {
+          "name": "syft:metadata:sourceRpm",
+          "value": "gcc-7.3.1-6.amzn2.0.4.src.rpm"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:rpm/amzn/libgcrypt@1.5.3-14.amzn2.0.2?arch=x86_64&upstream=libgcrypt-1.5.3-14.amzn2.0.2.src.rpm&distro=amzn-2&package-id=308ac3e8a6cc94fe",
+      "type": "library",
+      "publisher": "Amazon Linux",
+      "name": "libgcrypt",
+      "version": "1.5.3-14.amzn2.0.2",
+      "licenses": [
+        {
+          "license": {
+            "name": "LGPLv2+"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:amazonlinux:libgcrypt:1.5.3-14.amzn2.0.2:*:*:*:*:*:*:*",
+      "purl": "pkg:rpm/amzn/libgcrypt@1.5.3-14.amzn2.0.2?arch=x86_64&upstream=libgcrypt-1.5.3-14.amzn2.0.2.src.rpm&distro=amzn-2",
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "rpm-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "rpm"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "rpm-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:libgcrypt:libgcrypt:1.5.3-14.amzn2.0.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:fc24ab7e0293a749fddb0110597d42b4d29f1ae143bae880417547e23f5d459c"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/var/lib/rpm/Packages"
+        },
+        {
+          "name": "syft:metadata:release",
+          "value": "14.amzn2.0.2"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "597119"
+        },
+        {
+          "name": "syft:metadata:sourceRpm",
+          "value": "libgcrypt-1.5.3-14.amzn2.0.2.src.rpm"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:rpm/amzn/libgpg-error@1.12-3.amzn2.0.3?arch=x86_64&upstream=libgpg-error-1.12-3.amzn2.0.3.src.rpm&distro=amzn-2&package-id=32564c68bdae6424",
+      "type": "library",
+      "publisher": "Amazon Linux",
+      "name": "libgpg-error",
+      "version": "1.12-3.amzn2.0.3",
+      "licenses": [
+        {
+          "license": {
+            "name": "LGPLv2+"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:libgpg-error:libgpg-error:1.12-3.amzn2.0.3:*:*:*:*:*:*:*",
+      "purl": "pkg:rpm/amzn/libgpg-error@1.12-3.amzn2.0.3?arch=x86_64&upstream=libgpg-error-1.12-3.amzn2.0.3.src.rpm&distro=amzn-2",
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "rpm-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "rpm"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "rpm-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:libgpg-error:libgpg_error:1.12-3.amzn2.0.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:libgpg_error:libgpg-error:1.12-3.amzn2.0.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:libgpg_error:libgpg_error:1.12-3.amzn2.0.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:amazonlinux:libgpg-error:1.12-3.amzn2.0.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:amazonlinux:libgpg_error:1.12-3.amzn2.0.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:libgpg:libgpg-error:1.12-3.amzn2.0.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:libgpg:libgpg_error:1.12-3.amzn2.0.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:fc24ab7e0293a749fddb0110597d42b4d29f1ae143bae880417547e23f5d459c"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/var/lib/rpm/Packages"
+        },
+        {
+          "name": "syft:metadata:release",
+          "value": "3.amzn2.0.3"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "350689"
+        },
+        {
+          "name": "syft:metadata:sourceRpm",
+          "value": "libgpg-error-1.12-3.amzn2.0.3.src.rpm"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:rpm/amzn/libidn2@2.3.0-1.amzn2?arch=x86_64&upstream=libidn2-2.3.0-1.amzn2.src.rpm&distro=amzn-2&package-id=f82e1f29103d7674",
+      "type": "library",
+      "publisher": "Amazon Linux",
+      "name": "libidn2",
+      "version": "2.3.0-1.amzn2",
+      "licenses": [
+        {
+          "license": {
+            "name": "(GPLv2+ or LGPLv3+) and GPLv3+"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:amazonlinux:libidn2:2.3.0-1.amzn2:*:*:*:*:*:*:*",
+      "purl": "pkg:rpm/amzn/libidn2@2.3.0-1.amzn2?arch=x86_64&upstream=libidn2-2.3.0-1.amzn2.src.rpm&distro=amzn-2",
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "rpm-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "rpm"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "rpm-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:libidn2:libidn2:2.3.0-1.amzn2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:fc24ab7e0293a749fddb0110597d42b4d29f1ae143bae880417547e23f5d459c"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/var/lib/rpm/Packages"
+        },
+        {
+          "name": "syft:metadata:release",
+          "value": "1.amzn2"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "446670"
+        },
+        {
+          "name": "syft:metadata:sourceRpm",
+          "value": "libidn2-2.3.0-1.amzn2.src.rpm"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:rpm/amzn/libmetalink@0.1.2-7.amzn2.0.2?arch=x86_64&upstream=libmetalink-0.1.2-7.amzn2.0.2.src.rpm&distro=amzn-2&package-id=f3820b72d8b3afd4",
+      "type": "library",
+      "publisher": "Amazon Linux",
+      "name": "libmetalink",
+      "version": "0.1.2-7.amzn2.0.2",
+      "licenses": [
+        {
+          "license": {
+            "id": "MIT"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:amazonlinux:libmetalink:0.1.2-7.amzn2.0.2:*:*:*:*:*:*:*",
+      "purl": "pkg:rpm/amzn/libmetalink@0.1.2-7.amzn2.0.2?arch=x86_64&upstream=libmetalink-0.1.2-7.amzn2.0.2.src.rpm&distro=amzn-2",
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "rpm-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "rpm"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "rpm-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:libmetalink:libmetalink:0.1.2-7.amzn2.0.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:fc24ab7e0293a749fddb0110597d42b4d29f1ae143bae880417547e23f5d459c"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/var/lib/rpm/Packages"
+        },
+        {
+          "name": "syft:metadata:release",
+          "value": "7.amzn2.0.2"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "64384"
+        },
+        {
+          "name": "syft:metadata:sourceRpm",
+          "value": "libmetalink-0.1.2-7.amzn2.0.2.src.rpm"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:rpm/amzn/libmount@2.30.2-2.amzn2.0.4?arch=x86_64&upstream=util-linux-2.30.2-2.amzn2.0.4.src.rpm&distro=amzn-2&package-id=c878fc9e38668715",
+      "type": "library",
+      "publisher": "Amazon Linux",
+      "name": "libmount",
+      "version": "2.30.2-2.amzn2.0.4",
+      "licenses": [
+        {
+          "license": {
+            "name": "LGPLv2+"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:amazonlinux:libmount:2.30.2-2.amzn2.0.4:*:*:*:*:*:*:*",
+      "purl": "pkg:rpm/amzn/libmount@2.30.2-2.amzn2.0.4?arch=x86_64&upstream=util-linux-2.30.2-2.amzn2.0.4.src.rpm&distro=amzn-2",
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "rpm-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "rpm"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "rpm-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:libmount:libmount:2.30.2-2.amzn2.0.4:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:fc24ab7e0293a749fddb0110597d42b4d29f1ae143bae880417547e23f5d459c"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/var/lib/rpm/Packages"
+        },
+        {
+          "name": "syft:metadata:release",
+          "value": "2.amzn2.0.4"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "375402"
+        },
+        {
+          "name": "syft:metadata:sourceRpm",
+          "value": "util-linux-2.30.2-2.amzn2.0.4.src.rpm"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:rpm/amzn/libnghttp2@1.39.2-1.amzn2?arch=x86_64&upstream=nghttp2-1.39.2-1.amzn2.src.rpm&distro=amzn-2&package-id=fda057e615d46988",
+      "type": "library",
+      "publisher": "Amazon Linux",
+      "name": "libnghttp2",
+      "version": "1.39.2-1.amzn2",
+      "licenses": [
+        {
+          "license": {
+            "id": "MIT"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:amazonlinux:libnghttp2:1.39.2-1.amzn2:*:*:*:*:*:*:*",
+      "purl": "pkg:rpm/amzn/libnghttp2@1.39.2-1.amzn2?arch=x86_64&upstream=nghttp2-1.39.2-1.amzn2.src.rpm&distro=amzn-2",
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "rpm-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "rpm"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "rpm-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:libnghttp2:libnghttp2:1.39.2-1.amzn2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:fc24ab7e0293a749fddb0110597d42b4d29f1ae143bae880417547e23f5d459c"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/var/lib/rpm/Packages"
+        },
+        {
+          "name": "syft:metadata:release",
+          "value": "1.amzn2"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "159436"
+        },
+        {
+          "name": "syft:metadata:sourceRpm",
+          "value": "nghttp2-1.39.2-1.amzn2.src.rpm"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:rpm/amzn/libselinux@2.5-12.amzn2.0.2?arch=x86_64&upstream=libselinux-2.5-12.amzn2.0.2.src.rpm&distro=amzn-2&package-id=e41beff4f6aef204",
+      "type": "library",
+      "publisher": "Amazon Linux",
+      "name": "libselinux",
+      "version": "2.5-12.amzn2.0.2",
+      "licenses": [
+        {
+          "license": {
+            "name": "Public Domain"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:amazonlinux:libselinux:2.5-12.amzn2.0.2:*:*:*:*:*:*:*",
+      "purl": "pkg:rpm/amzn/libselinux@2.5-12.amzn2.0.2?arch=x86_64&upstream=libselinux-2.5-12.amzn2.0.2.src.rpm&distro=amzn-2",
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "rpm-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "rpm"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "rpm-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:libselinux:libselinux:2.5-12.amzn2.0.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:fc24ab7e0293a749fddb0110597d42b4d29f1ae143bae880417547e23f5d459c"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/var/lib/rpm/Packages"
+        },
+        {
+          "name": "syft:metadata:release",
+          "value": "12.amzn2.0.2"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "217610"
+        },
+        {
+          "name": "syft:metadata:sourceRpm",
+          "value": "libselinux-2.5-12.amzn2.0.2.src.rpm"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:rpm/amzn/libsepol@2.5-8.1.amzn2.0.2?arch=x86_64&upstream=libsepol-2.5-8.1.amzn2.0.2.src.rpm&distro=amzn-2&package-id=95da3b72e7849acf",
+      "type": "library",
+      "publisher": "Amazon Linux",
+      "name": "libsepol",
+      "version": "2.5-8.1.amzn2.0.2",
+      "licenses": [
+        {
+          "license": {
+            "name": "LGPLv2+"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:amazonlinux:libsepol:2.5-8.1.amzn2.0.2:*:*:*:*:*:*:*",
+      "purl": "pkg:rpm/amzn/libsepol@2.5-8.1.amzn2.0.2?arch=x86_64&upstream=libsepol-2.5-8.1.amzn2.0.2.src.rpm&distro=amzn-2",
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "rpm-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "rpm"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "rpm-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:libsepol:libsepol:2.5-8.1.amzn2.0.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:fc24ab7e0293a749fddb0110597d42b4d29f1ae143bae880417547e23f5d459c"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/var/lib/rpm/Packages"
+        },
+        {
+          "name": "syft:metadata:release",
+          "value": "8.1.amzn2.0.2"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "678376"
+        },
+        {
+          "name": "syft:metadata:sourceRpm",
+          "value": "libsepol-2.5-8.1.amzn2.0.2.src.rpm"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:rpm/amzn/libssh2@1.4.3-12.amzn2.2.2?arch=x86_64&upstream=libssh2-1.4.3-12.amzn2.2.2.src.rpm&distro=amzn-2&package-id=aec3dc0ee68de92c",
+      "type": "library",
+      "publisher": "Amazon Linux",
+      "name": "libssh2",
+      "version": "1.4.3-12.amzn2.2.2",
+      "licenses": [
+        {
+          "license": {
+            "name": "BSD"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:amazonlinux:libssh2:1.4.3-12.amzn2.2.2:*:*:*:*:*:*:*",
+      "purl": "pkg:rpm/amzn/libssh2@1.4.3-12.amzn2.2.2?arch=x86_64&upstream=libssh2-1.4.3-12.amzn2.2.2.src.rpm&distro=amzn-2",
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "rpm-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "rpm"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "rpm-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:libssh2:libssh2:1.4.3-12.amzn2.2.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:fc24ab7e0293a749fddb0110597d42b4d29f1ae143bae880417547e23f5d459c"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/var/lib/rpm/Packages"
+        },
+        {
+          "name": "syft:metadata:release",
+          "value": "12.amzn2.2.2"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "337622"
+        },
+        {
+          "name": "syft:metadata:sourceRpm",
+          "value": "libssh2-1.4.3-12.amzn2.2.2.src.rpm"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:rpm/amzn/libstdc++@7.3.1-6.amzn2.0.4?arch=x86_64&upstream=gcc-7.3.1-6.amzn2.0.4.src.rpm&distro=amzn-2&package-id=56defed63b54dcef",
+      "type": "library",
+      "publisher": "Amazon Linux",
+      "name": "libstdc++",
+      "version": "7.3.1-6.amzn2.0.4",
+      "licenses": [
+        {
+          "license": {
+            "name": "GPLv3+ and GPLv3+ with exceptions and GPLv2+ with exceptions and LGPLv2+ and BSD"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:amazonlinux:libstdc\\+\\+:7.3.1-6.amzn2.0.4:*:*:*:*:*:*:*",
+      "purl": "pkg:rpm/amzn/libstdc++@7.3.1-6.amzn2.0.4?arch=x86_64&upstream=gcc-7.3.1-6.amzn2.0.4.src.rpm&distro=amzn-2",
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "rpm-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "rpm"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "rpm-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:libstdc\\+\\+:libstdc\\+\\+:7.3.1-6.amzn2.0.4:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:fc24ab7e0293a749fddb0110597d42b4d29f1ae143bae880417547e23f5d459c"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/var/lib/rpm/Packages"
+        },
+        {
+          "name": "syft:metadata:release",
+          "value": "6.amzn2.0.4"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "1769982"
+        },
+        {
+          "name": "syft:metadata:sourceRpm",
+          "value": "gcc-7.3.1-6.amzn2.0.4.src.rpm"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:rpm/amzn/libtasn1@4.10-1.amzn2.0.2?arch=x86_64&upstream=libtasn1-4.10-1.amzn2.0.2.src.rpm&distro=amzn-2&package-id=da8514563bf628c9",
+      "type": "library",
+      "publisher": "Amazon Linux",
+      "name": "libtasn1",
+      "version": "4.10-1.amzn2.0.2",
+      "licenses": [
+        {
+          "license": {
+            "name": "GPLv3+ and LGPLv2+"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:amazonlinux:libtasn1:4.10-1.amzn2.0.2:*:*:*:*:*:*:*",
+      "purl": "pkg:rpm/amzn/libtasn1@4.10-1.amzn2.0.2?arch=x86_64&upstream=libtasn1-4.10-1.amzn2.0.2.src.rpm&distro=amzn-2",
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "rpm-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "rpm"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "rpm-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:libtasn1:libtasn1:4.10-1.amzn2.0.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:fc24ab7e0293a749fddb0110597d42b4d29f1ae143bae880417547e23f5d459c"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/var/lib/rpm/Packages"
+        },
+        {
+          "name": "syft:metadata:release",
+          "value": "1.amzn2.0.2"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "424398"
+        },
+        {
+          "name": "syft:metadata:sourceRpm",
+          "value": "libtasn1-4.10-1.amzn2.0.2.src.rpm"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:rpm/amzn/libunistring@0.9.3-9.amzn2.0.2?arch=x86_64&upstream=libunistring-0.9.3-9.amzn2.0.2.src.rpm&distro=amzn-2&package-id=22119b6d8fff111e",
+      "type": "library",
+      "publisher": "Amazon Linux",
+      "name": "libunistring",
+      "version": "0.9.3-9.amzn2.0.2",
+      "licenses": [
+        {
+          "license": {
+            "name": "LGPLv3+"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:libunistring:libunistring:0.9.3-9.amzn2.0.2:*:*:*:*:*:*:*",
+      "purl": "pkg:rpm/amzn/libunistring@0.9.3-9.amzn2.0.2?arch=x86_64&upstream=libunistring-0.9.3-9.amzn2.0.2.src.rpm&distro=amzn-2",
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "rpm-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "rpm"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "rpm-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:amazonlinux:libunistring:0.9.3-9.amzn2.0.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:fc24ab7e0293a749fddb0110597d42b4d29f1ae143bae880417547e23f5d459c"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/var/lib/rpm/Packages"
+        },
+        {
+          "name": "syft:metadata:release",
+          "value": "9.amzn2.0.2"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "1149705"
+        },
+        {
+          "name": "syft:metadata:sourceRpm",
+          "value": "libunistring-0.9.3-9.amzn2.0.2.src.rpm"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:rpm/amzn/libuuid@2.30.2-2.amzn2.0.4?arch=x86_64&upstream=util-linux-2.30.2-2.amzn2.0.4.src.rpm&distro=amzn-2&package-id=00510fe1ebc28410",
+      "type": "library",
+      "publisher": "Amazon Linux",
+      "name": "libuuid",
+      "version": "2.30.2-2.amzn2.0.4",
+      "licenses": [
+        {
+          "license": {
+            "name": "BSD"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:amazonlinux:libuuid:2.30.2-2.amzn2.0.4:*:*:*:*:*:*:*",
+      "purl": "pkg:rpm/amzn/libuuid@2.30.2-2.amzn2.0.4?arch=x86_64&upstream=util-linux-2.30.2-2.amzn2.0.4.src.rpm&distro=amzn-2",
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "rpm-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "rpm"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "rpm-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:libuuid:libuuid:2.30.2-2.amzn2.0.4:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:fc24ab7e0293a749fddb0110597d42b4d29f1ae143bae880417547e23f5d459c"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/var/lib/rpm/Packages"
+        },
+        {
+          "name": "syft:metadata:release",
+          "value": "2.amzn2.0.4"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "21664"
+        },
+        {
+          "name": "syft:metadata:sourceRpm",
+          "value": "util-linux-2.30.2-2.amzn2.0.4.src.rpm"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:rpm/amzn/libverto@0.2.5-4.amzn2.0.2?arch=x86_64&upstream=libverto-0.2.5-4.amzn2.0.2.src.rpm&distro=amzn-2&package-id=760e9c825276c7a8",
+      "type": "library",
+      "publisher": "Amazon Linux",
+      "name": "libverto",
+      "version": "0.2.5-4.amzn2.0.2",
+      "licenses": [
+        {
+          "license": {
+            "id": "MIT"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:amazonlinux:libverto:0.2.5-4.amzn2.0.2:*:*:*:*:*:*:*",
+      "purl": "pkg:rpm/amzn/libverto@0.2.5-4.amzn2.0.2?arch=x86_64&upstream=libverto-0.2.5-4.amzn2.0.2.src.rpm&distro=amzn-2",
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "rpm-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "rpm"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "rpm-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:libverto:libverto:0.2.5-4.amzn2.0.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:fc24ab7e0293a749fddb0110597d42b4d29f1ae143bae880417547e23f5d459c"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/var/lib/rpm/Packages"
+        },
+        {
+          "name": "syft:metadata:release",
+          "value": "4.amzn2.0.2"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "22996"
+        },
+        {
+          "name": "syft:metadata:sourceRpm",
+          "value": "libverto-0.2.5-4.amzn2.0.2.src.rpm"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:rpm/amzn/libxml2@2.9.1-6.amzn2.3.3?arch=x86_64&upstream=libxml2-2.9.1-6.amzn2.3.3.src.rpm&distro=amzn-2&package-id=7ebe618675e23846",
+      "type": "library",
+      "publisher": "Amazon Linux",
+      "name": "libxml2",
+      "version": "2.9.1-6.amzn2.3.3",
+      "licenses": [
+        {
+          "license": {
+            "id": "MIT"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:amazonlinux:libxml2:2.9.1-6.amzn2.3.3:*:*:*:*:*:*:*",
+      "purl": "pkg:rpm/amzn/libxml2@2.9.1-6.amzn2.3.3?arch=x86_64&upstream=libxml2-2.9.1-6.amzn2.3.3.src.rpm&distro=amzn-2",
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "rpm-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "rpm"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "rpm-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:libxml2:libxml2:2.9.1-6.amzn2.3.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:fc24ab7e0293a749fddb0110597d42b4d29f1ae143bae880417547e23f5d459c"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/var/lib/rpm/Packages"
+        },
+        {
+          "name": "syft:metadata:release",
+          "value": "6.amzn2.3.3"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "1636502"
+        },
+        {
+          "name": "syft:metadata:sourceRpm",
+          "value": "libxml2-2.9.1-6.amzn2.3.3.src.rpm"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:rpm/amzn/lua@5.1.4-15.amzn2.0.2?arch=x86_64&upstream=lua-5.1.4-15.amzn2.0.2.src.rpm&distro=amzn-2&package-id=c52e3cf20969949a",
+      "type": "library",
+      "publisher": "Amazon Linux",
+      "name": "lua",
+      "version": "5.1.4-15.amzn2.0.2",
+      "licenses": [
+        {
+          "license": {
+            "id": "MIT"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:amazonlinux:lua:5.1.4-15.amzn2.0.2:*:*:*:*:*:*:*",
+      "purl": "pkg:rpm/amzn/lua@5.1.4-15.amzn2.0.2?arch=x86_64&upstream=lua-5.1.4-15.amzn2.0.2.src.rpm&distro=amzn-2",
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "rpm-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "rpm"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "rpm-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:lua:lua:5.1.4-15.amzn2.0.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:fc24ab7e0293a749fddb0110597d42b4d29f1ae143bae880417547e23f5d459c"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/var/lib/rpm/Packages"
+        },
+        {
+          "name": "syft:metadata:release",
+          "value": "15.amzn2.0.2"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "631815"
+        },
+        {
+          "name": "syft:metadata:sourceRpm",
+          "value": "lua-5.1.4-15.amzn2.0.2.src.rpm"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:rpm/amzn/ncurses@6.0-8.20170212.amzn2.1.3?arch=x86_64&upstream=ncurses-6.0-8.20170212.amzn2.1.3.src.rpm&distro=amzn-2&package-id=75d4a654c7033f96",
+      "type": "library",
+      "publisher": "Amazon Linux",
+      "name": "ncurses",
+      "version": "6.0-8.20170212.amzn2.1.3",
+      "licenses": [
+        {
+          "license": {
+            "id": "MIT"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:amazonlinux:ncurses:6.0-8.20170212.amzn2.1.3:*:*:*:*:*:*:*",
+      "purl": "pkg:rpm/amzn/ncurses@6.0-8.20170212.amzn2.1.3?arch=x86_64&upstream=ncurses-6.0-8.20170212.amzn2.1.3.src.rpm&distro=amzn-2",
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "rpm-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "rpm"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "rpm-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:ncurses:ncurses:6.0-8.20170212.amzn2.1.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:fc24ab7e0293a749fddb0110597d42b4d29f1ae143bae880417547e23f5d459c"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/var/lib/rpm/Packages"
+        },
+        {
+          "name": "syft:metadata:release",
+          "value": "8.20170212.amzn2.1.3"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "533028"
+        },
+        {
+          "name": "syft:metadata:sourceRpm",
+          "value": "ncurses-6.0-8.20170212.amzn2.1.3.src.rpm"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:rpm/amzn/ncurses-base@6.0-8.20170212.amzn2.1.3?arch=noarch&upstream=ncurses-6.0-8.20170212.amzn2.1.3.src.rpm&distro=amzn-2&package-id=61a93095dd78673e",
+      "type": "library",
+      "publisher": "Amazon Linux",
+      "name": "ncurses-base",
+      "version": "6.0-8.20170212.amzn2.1.3",
+      "licenses": [
+        {
+          "license": {
+            "id": "MIT"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:ncurses-base:ncurses-base:6.0-8.20170212.amzn2.1.3:*:*:*:*:*:*:*",
+      "purl": "pkg:rpm/amzn/ncurses-base@6.0-8.20170212.amzn2.1.3?arch=noarch&upstream=ncurses-6.0-8.20170212.amzn2.1.3.src.rpm&distro=amzn-2",
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "rpm-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "rpm"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "rpm-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:ncurses-base:ncurses_base:6.0-8.20170212.amzn2.1.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:ncurses_base:ncurses-base:6.0-8.20170212.amzn2.1.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:ncurses_base:ncurses_base:6.0-8.20170212.amzn2.1.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:amazonlinux:ncurses-base:6.0-8.20170212.amzn2.1.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:amazonlinux:ncurses_base:6.0-8.20170212.amzn2.1.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:ncurses:ncurses-base:6.0-8.20170212.amzn2.1.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:ncurses:ncurses_base:6.0-8.20170212.amzn2.1.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:fc24ab7e0293a749fddb0110597d42b4d29f1ae143bae880417547e23f5d459c"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/var/lib/rpm/Packages"
+        },
+        {
+          "name": "syft:metadata:release",
+          "value": "8.20170212.amzn2.1.3"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "267943"
+        },
+        {
+          "name": "syft:metadata:sourceRpm",
+          "value": "ncurses-6.0-8.20170212.amzn2.1.3.src.rpm"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:rpm/amzn/ncurses-libs@6.0-8.20170212.amzn2.1.3?arch=x86_64&upstream=ncurses-6.0-8.20170212.amzn2.1.3.src.rpm&distro=amzn-2&package-id=01904aacf5abaf0c",
+      "type": "library",
+      "publisher": "Amazon Linux",
+      "name": "ncurses-libs",
+      "version": "6.0-8.20170212.amzn2.1.3",
+      "licenses": [
+        {
+          "license": {
+            "id": "MIT"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:ncurses-libs:ncurses-libs:6.0-8.20170212.amzn2.1.3:*:*:*:*:*:*:*",
+      "purl": "pkg:rpm/amzn/ncurses-libs@6.0-8.20170212.amzn2.1.3?arch=x86_64&upstream=ncurses-6.0-8.20170212.amzn2.1.3.src.rpm&distro=amzn-2",
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "rpm-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "rpm"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "rpm-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:ncurses-libs:ncurses_libs:6.0-8.20170212.amzn2.1.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:ncurses_libs:ncurses-libs:6.0-8.20170212.amzn2.1.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:ncurses_libs:ncurses_libs:6.0-8.20170212.amzn2.1.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:amazonlinux:ncurses-libs:6.0-8.20170212.amzn2.1.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:amazonlinux:ncurses_libs:6.0-8.20170212.amzn2.1.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:ncurses:ncurses-libs:6.0-8.20170212.amzn2.1.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:ncurses:ncurses_libs:6.0-8.20170212.amzn2.1.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:fc24ab7e0293a749fddb0110597d42b4d29f1ae143bae880417547e23f5d459c"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/var/lib/rpm/Packages"
+        },
+        {
+          "name": "syft:metadata:release",
+          "value": "8.20170212.amzn2.1.3"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "865368"
+        },
+        {
+          "name": "syft:metadata:sourceRpm",
+          "value": "ncurses-6.0-8.20170212.amzn2.1.3.src.rpm"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:rpm/amzn/nspr@4.21.0-1.amzn2.0.2?arch=x86_64&upstream=nspr-4.21.0-1.amzn2.0.2.src.rpm&distro=amzn-2&package-id=348020d7a91be901",
+      "type": "library",
+      "publisher": "Amazon Linux",
+      "name": "nspr",
+      "version": "4.21.0-1.amzn2.0.2",
+      "licenses": [
+        {
+          "license": {
+            "name": "MPLv2.0"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:amazonlinux:nspr:4.21.0-1.amzn2.0.2:*:*:*:*:*:*:*",
+      "purl": "pkg:rpm/amzn/nspr@4.21.0-1.amzn2.0.2?arch=x86_64&upstream=nspr-4.21.0-1.amzn2.0.2.src.rpm&distro=amzn-2",
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "rpm-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "rpm"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "rpm-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:nspr:nspr:4.21.0-1.amzn2.0.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:fc24ab7e0293a749fddb0110597d42b4d29f1ae143bae880417547e23f5d459c"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/var/lib/rpm/Packages"
+        },
+        {
+          "name": "syft:metadata:release",
+          "value": "1.amzn2.0.2"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "279144"
+        },
+        {
+          "name": "syft:metadata:sourceRpm",
+          "value": "nspr-4.21.0-1.amzn2.0.2.src.rpm"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:rpm/amzn/nss@3.44.0-7.amzn2?arch=x86_64&upstream=nss-3.44.0-7.amzn2.src.rpm&distro=amzn-2&package-id=2cb464ea2eabdab5",
+      "type": "library",
+      "publisher": "Amazon Linux",
+      "name": "nss",
+      "version": "3.44.0-7.amzn2",
+      "licenses": [
+        {
+          "license": {
+            "name": "MPLv2.0"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:amazonlinux:nss:3.44.0-7.amzn2:*:*:*:*:*:*:*",
+      "purl": "pkg:rpm/amzn/nss@3.44.0-7.amzn2?arch=x86_64&upstream=nss-3.44.0-7.amzn2.src.rpm&distro=amzn-2",
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "rpm-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "rpm"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "rpm-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:nss:nss:3.44.0-7.amzn2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:fc24ab7e0293a749fddb0110597d42b4d29f1ae143bae880417547e23f5d459c"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/var/lib/rpm/Packages"
+        },
+        {
+          "name": "syft:metadata:release",
+          "value": "7.amzn2"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "2393266"
+        },
+        {
+          "name": "syft:metadata:sourceRpm",
+          "value": "nss-3.44.0-7.amzn2.src.rpm"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:rpm/amzn/nss-pem@1.0.3-5.amzn2?arch=x86_64&upstream=nss-pem-1.0.3-5.amzn2.src.rpm&distro=amzn-2&package-id=b300e98a84f41c70",
+      "type": "library",
+      "publisher": "Amazon Linux",
+      "name": "nss-pem",
+      "version": "1.0.3-5.amzn2",
+      "licenses": [
+        {
+          "license": {
+            "name": "MPLv1.1"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:amazonlinux:nss-pem:1.0.3-5.amzn2:*:*:*:*:*:*:*",
+      "purl": "pkg:rpm/amzn/nss-pem@1.0.3-5.amzn2?arch=x86_64&upstream=nss-pem-1.0.3-5.amzn2.src.rpm&distro=amzn-2",
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "rpm-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "rpm"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "rpm-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:amazonlinux:nss_pem:1.0.3-5.amzn2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:nss-pem:nss-pem:1.0.3-5.amzn2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:nss-pem:nss_pem:1.0.3-5.amzn2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:nss_pem:nss-pem:1.0.3-5.amzn2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:nss_pem:nss_pem:1.0.3-5.amzn2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:nss:nss-pem:1.0.3-5.amzn2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:nss:nss_pem:1.0.3-5.amzn2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:fc24ab7e0293a749fddb0110597d42b4d29f1ae143bae880417547e23f5d459c"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/var/lib/rpm/Packages"
+        },
+        {
+          "name": "syft:metadata:release",
+          "value": "5.amzn2"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "201307"
+        },
+        {
+          "name": "syft:metadata:sourceRpm",
+          "value": "nss-pem-1.0.3-5.amzn2.src.rpm"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:rpm/amzn/nss-softokn@3.44.0-8.amzn2?arch=x86_64&upstream=nss-softokn-3.44.0-8.amzn2.src.rpm&distro=amzn-2&package-id=14b8c1ec2d9bb9a4",
+      "type": "library",
+      "publisher": "Amazon Linux",
+      "name": "nss-softokn",
+      "version": "3.44.0-8.amzn2",
+      "licenses": [
+        {
+          "license": {
+            "name": "MPLv2.0"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:amazonlinux:nss-softokn:3.44.0-8.amzn2:*:*:*:*:*:*:*",
+      "purl": "pkg:rpm/amzn/nss-softokn@3.44.0-8.amzn2?arch=x86_64&upstream=nss-softokn-3.44.0-8.amzn2.src.rpm&distro=amzn-2",
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "rpm-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "rpm"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "rpm-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:amazonlinux:nss_softokn:3.44.0-8.amzn2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:nss-softokn:nss-softokn:3.44.0-8.amzn2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:nss-softokn:nss_softokn:3.44.0-8.amzn2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:nss_softokn:nss-softokn:3.44.0-8.amzn2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:nss_softokn:nss_softokn:3.44.0-8.amzn2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:nss:nss-softokn:3.44.0-8.amzn2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:nss:nss_softokn:3.44.0-8.amzn2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:fc24ab7e0293a749fddb0110597d42b4d29f1ae143bae880417547e23f5d459c"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/var/lib/rpm/Packages"
+        },
+        {
+          "name": "syft:metadata:release",
+          "value": "8.amzn2"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "1155342"
+        },
+        {
+          "name": "syft:metadata:sourceRpm",
+          "value": "nss-softokn-3.44.0-8.amzn2.src.rpm"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:rpm/amzn/nss-softokn-freebl@3.44.0-8.amzn2?arch=x86_64&upstream=nss-softokn-3.44.0-8.amzn2.src.rpm&distro=amzn-2&package-id=e99013f9b958f96f",
+      "type": "library",
+      "publisher": "Amazon Linux",
+      "name": "nss-softokn-freebl",
+      "version": "3.44.0-8.amzn2",
+      "licenses": [
+        {
+          "license": {
+            "name": "MPLv2.0"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:nss-softokn-freebl:nss-softokn-freebl:3.44.0-8.amzn2:*:*:*:*:*:*:*",
+      "purl": "pkg:rpm/amzn/nss-softokn-freebl@3.44.0-8.amzn2?arch=x86_64&upstream=nss-softokn-3.44.0-8.amzn2.src.rpm&distro=amzn-2",
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "rpm-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "rpm"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "rpm-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:nss-softokn-freebl:nss_softokn_freebl:3.44.0-8.amzn2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:nss_softokn_freebl:nss-softokn-freebl:3.44.0-8.amzn2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:nss_softokn_freebl:nss_softokn_freebl:3.44.0-8.amzn2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:amazonlinux:nss-softokn-freebl:3.44.0-8.amzn2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:amazonlinux:nss_softokn_freebl:3.44.0-8.amzn2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:nss-softokn:nss-softokn-freebl:3.44.0-8.amzn2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:nss-softokn:nss_softokn_freebl:3.44.0-8.amzn2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:nss_softokn:nss-softokn-freebl:3.44.0-8.amzn2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:nss_softokn:nss_softokn_freebl:3.44.0-8.amzn2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:nss:nss-softokn-freebl:3.44.0-8.amzn2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:nss:nss_softokn_freebl:3.44.0-8.amzn2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:fc24ab7e0293a749fddb0110597d42b4d29f1ae143bae880417547e23f5d459c"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/var/lib/rpm/Packages"
+        },
+        {
+          "name": "syft:metadata:release",
+          "value": "8.amzn2"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "553076"
+        },
+        {
+          "name": "syft:metadata:sourceRpm",
+          "value": "nss-softokn-3.44.0-8.amzn2.src.rpm"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:rpm/amzn/nss-sysinit@3.44.0-7.amzn2?arch=x86_64&upstream=nss-3.44.0-7.amzn2.src.rpm&distro=amzn-2&package-id=05011f8669bbc3f2",
+      "type": "library",
+      "publisher": "Amazon Linux",
+      "name": "nss-sysinit",
+      "version": "3.44.0-7.amzn2",
+      "licenses": [
+        {
+          "license": {
+            "name": "MPLv2.0"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:amazonlinux:nss-sysinit:3.44.0-7.amzn2:*:*:*:*:*:*:*",
+      "purl": "pkg:rpm/amzn/nss-sysinit@3.44.0-7.amzn2?arch=x86_64&upstream=nss-3.44.0-7.amzn2.src.rpm&distro=amzn-2",
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "rpm-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "rpm"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "rpm-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:amazonlinux:nss_sysinit:3.44.0-7.amzn2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:nss-sysinit:nss-sysinit:3.44.0-7.amzn2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:nss-sysinit:nss_sysinit:3.44.0-7.amzn2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:nss_sysinit:nss-sysinit:3.44.0-7.amzn2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:nss_sysinit:nss_sysinit:3.44.0-7.amzn2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:nss:nss-sysinit:3.44.0-7.amzn2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:nss:nss_sysinit:3.44.0-7.amzn2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:fc24ab7e0293a749fddb0110597d42b4d29f1ae143bae880417547e23f5d459c"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/var/lib/rpm/Packages"
+        },
+        {
+          "name": "syft:metadata:release",
+          "value": "7.amzn2"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "14015"
+        },
+        {
+          "name": "syft:metadata:sourceRpm",
+          "value": "nss-3.44.0-7.amzn2.src.rpm"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:rpm/amzn/nss-tools@3.44.0-7.amzn2?arch=x86_64&upstream=nss-3.44.0-7.amzn2.src.rpm&distro=amzn-2&package-id=01f73c7582c3a81e",
+      "type": "library",
+      "publisher": "Amazon Linux",
+      "name": "nss-tools",
+      "version": "3.44.0-7.amzn2",
+      "licenses": [
+        {
+          "license": {
+            "name": "MPLv2.0"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:amazonlinux:nss-tools:3.44.0-7.amzn2:*:*:*:*:*:*:*",
+      "purl": "pkg:rpm/amzn/nss-tools@3.44.0-7.amzn2?arch=x86_64&upstream=nss-3.44.0-7.amzn2.src.rpm&distro=amzn-2",
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "rpm-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "rpm"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "rpm-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:amazonlinux:nss_tools:3.44.0-7.amzn2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:nss-tools:nss-tools:3.44.0-7.amzn2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:nss-tools:nss_tools:3.44.0-7.amzn2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:nss_tools:nss-tools:3.44.0-7.amzn2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:nss_tools:nss_tools:3.44.0-7.amzn2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:nss:nss-tools:3.44.0-7.amzn2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:nss:nss_tools:3.44.0-7.amzn2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:fc24ab7e0293a749fddb0110597d42b4d29f1ae143bae880417547e23f5d459c"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/var/lib/rpm/Packages"
+        },
+        {
+          "name": "syft:metadata:release",
+          "value": "7.amzn2"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "2080227"
+        },
+        {
+          "name": "syft:metadata:sourceRpm",
+          "value": "nss-3.44.0-7.amzn2.src.rpm"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:rpm/amzn/nss-util@3.44.0-4.amzn2?arch=x86_64&upstream=nss-util-3.44.0-4.amzn2.src.rpm&distro=amzn-2&package-id=26068ebc816756c5",
+      "type": "library",
+      "publisher": "Amazon Linux",
+      "name": "nss-util",
+      "version": "3.44.0-4.amzn2",
+      "licenses": [
+        {
+          "license": {
+            "name": "MPLv2.0"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:amazonlinux:nss-util:3.44.0-4.amzn2:*:*:*:*:*:*:*",
+      "purl": "pkg:rpm/amzn/nss-util@3.44.0-4.amzn2?arch=x86_64&upstream=nss-util-3.44.0-4.amzn2.src.rpm&distro=amzn-2",
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "rpm-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "rpm"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "rpm-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:amazonlinux:nss_util:3.44.0-4.amzn2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:nss-util:nss-util:3.44.0-4.amzn2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:nss-util:nss_util:3.44.0-4.amzn2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:nss_util:nss-util:3.44.0-4.amzn2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:nss_util:nss_util:3.44.0-4.amzn2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:nss:nss-util:3.44.0-4.amzn2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:nss:nss_util:3.44.0-4.amzn2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:fc24ab7e0293a749fddb0110597d42b4d29f1ae143bae880417547e23f5d459c"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/var/lib/rpm/Packages"
+        },
+        {
+          "name": "syft:metadata:release",
+          "value": "4.amzn2"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "194760"
+        },
+        {
+          "name": "syft:metadata:sourceRpm",
+          "value": "nss-util-3.44.0-4.amzn2.src.rpm"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:rpm/amzn/openldap@2.4.44-15.amzn2?arch=x86_64&upstream=openldap-2.4.44-15.amzn2.src.rpm&distro=amzn-2&package-id=1370d90ba0ef3b57",
+      "type": "library",
+      "publisher": "Amazon Linux",
+      "name": "openldap",
+      "version": "2.4.44-15.amzn2",
+      "licenses": [
+        {
+          "license": {
+            "name": "OpenLDAP"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:amazonlinux:openldap:2.4.44-15.amzn2:*:*:*:*:*:*:*",
+      "purl": "pkg:rpm/amzn/openldap@2.4.44-15.amzn2?arch=x86_64&upstream=openldap-2.4.44-15.amzn2.src.rpm&distro=amzn-2",
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "rpm-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "rpm"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "rpm-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openldap:openldap:2.4.44-15.amzn2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:fc24ab7e0293a749fddb0110597d42b4d29f1ae143bae880417547e23f5d459c"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/var/lib/rpm/Packages"
+        },
+        {
+          "name": "syft:metadata:release",
+          "value": "15.amzn2"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "1028547"
+        },
+        {
+          "name": "syft:metadata:sourceRpm",
+          "value": "openldap-2.4.44-15.amzn2.src.rpm"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:rpm/amzn/openssl-libs@1.0.2k-19.amzn2.0.3?arch=x86_64&epoch=1&upstream=openssl-1.0.2k-19.amzn2.0.3.src.rpm&distro=amzn-2&package-id=ce1f995008afc26a",
+      "type": "library",
+      "publisher": "Amazon Linux",
+      "name": "openssl-libs",
+      "version": "1:1.0.2k-19.amzn2.0.3",
+      "licenses": [
+        {
+          "license": {
+            "id": "OpenSSL"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:openssl-libs:openssl-libs:1\\:1.0.2k-19.amzn2.0.3:*:*:*:*:*:*:*",
+      "purl": "pkg:rpm/amzn/openssl-libs@1.0.2k-19.amzn2.0.3?arch=x86_64&epoch=1&upstream=openssl-1.0.2k-19.amzn2.0.3.src.rpm&distro=amzn-2",
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "rpm-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "rpm"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "rpm-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openssl-libs:openssl_libs:1\\:1.0.2k-19.amzn2.0.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openssl_libs:openssl-libs:1\\:1.0.2k-19.amzn2.0.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openssl_libs:openssl_libs:1\\:1.0.2k-19.amzn2.0.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:amazonlinux:openssl-libs:1\\:1.0.2k-19.amzn2.0.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:amazonlinux:openssl_libs:1\\:1.0.2k-19.amzn2.0.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openssl:openssl-libs:1\\:1.0.2k-19.amzn2.0.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openssl:openssl_libs:1\\:1.0.2k-19.amzn2.0.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:fc24ab7e0293a749fddb0110597d42b4d29f1ae143bae880417547e23f5d459c"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/var/lib/rpm/Packages"
+        },
+        {
+          "name": "syft:metadata:epoch",
+          "value": "1"
+        },
+        {
+          "name": "syft:metadata:release",
+          "value": "19.amzn2.0.3"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "3137068"
+        },
+        {
+          "name": "syft:metadata:sourceRpm",
+          "value": "openssl-1.0.2k-19.amzn2.0.3.src.rpm"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:rpm/amzn/p11-kit@0.23.5-3.amzn2.0.2?arch=x86_64&upstream=p11-kit-0.23.5-3.amzn2.0.2.src.rpm&distro=amzn-2&package-id=6854665f163a7b5e",
+      "type": "library",
+      "publisher": "Amazon Linux",
+      "name": "p11-kit",
+      "version": "0.23.5-3.amzn2.0.2",
+      "licenses": [
+        {
+          "license": {
+            "name": "BSD"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:amazonlinux:p11-kit:0.23.5-3.amzn2.0.2:*:*:*:*:*:*:*",
+      "purl": "pkg:rpm/amzn/p11-kit@0.23.5-3.amzn2.0.2?arch=x86_64&upstream=p11-kit-0.23.5-3.amzn2.0.2.src.rpm&distro=amzn-2",
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "rpm-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "rpm"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "rpm-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:amazonlinux:p11_kit:0.23.5-3.amzn2.0.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:p11-kit:p11-kit:0.23.5-3.amzn2.0.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:p11-kit:p11_kit:0.23.5-3.amzn2.0.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:p11_kit:p11-kit:0.23.5-3.amzn2.0.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:p11_kit:p11_kit:0.23.5-3.amzn2.0.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:p11:p11-kit:0.23.5-3.amzn2.0.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:p11:p11_kit:0.23.5-3.amzn2.0.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:fc24ab7e0293a749fddb0110597d42b4d29f1ae143bae880417547e23f5d459c"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/var/lib/rpm/Packages"
+        },
+        {
+          "name": "syft:metadata:release",
+          "value": "3.amzn2.0.2"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "1325593"
+        },
+        {
+          "name": "syft:metadata:sourceRpm",
+          "value": "p11-kit-0.23.5-3.amzn2.0.2.src.rpm"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:rpm/amzn/p11-kit-trust@0.23.5-3.amzn2.0.2?arch=x86_64&upstream=p11-kit-0.23.5-3.amzn2.0.2.src.rpm&distro=amzn-2&package-id=e563650ccd8a421e",
+      "type": "library",
+      "publisher": "Amazon Linux",
+      "name": "p11-kit-trust",
+      "version": "0.23.5-3.amzn2.0.2",
+      "licenses": [
+        {
+          "license": {
+            "name": "BSD"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:p11-kit-trust:p11-kit-trust:0.23.5-3.amzn2.0.2:*:*:*:*:*:*:*",
+      "purl": "pkg:rpm/amzn/p11-kit-trust@0.23.5-3.amzn2.0.2?arch=x86_64&upstream=p11-kit-0.23.5-3.amzn2.0.2.src.rpm&distro=amzn-2",
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "rpm-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "rpm"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "rpm-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:p11-kit-trust:p11_kit_trust:0.23.5-3.amzn2.0.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:p11_kit_trust:p11-kit-trust:0.23.5-3.amzn2.0.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:p11_kit_trust:p11_kit_trust:0.23.5-3.amzn2.0.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:amazonlinux:p11-kit-trust:0.23.5-3.amzn2.0.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:amazonlinux:p11_kit_trust:0.23.5-3.amzn2.0.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:p11-kit:p11-kit-trust:0.23.5-3.amzn2.0.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:p11-kit:p11_kit_trust:0.23.5-3.amzn2.0.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:p11_kit:p11-kit-trust:0.23.5-3.amzn2.0.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:p11_kit:p11_kit_trust:0.23.5-3.amzn2.0.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:p11:p11-kit-trust:0.23.5-3.amzn2.0.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:p11:p11_kit_trust:0.23.5-3.amzn2.0.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:fc24ab7e0293a749fddb0110597d42b4d29f1ae143bae880417547e23f5d459c"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/var/lib/rpm/Packages"
+        },
+        {
+          "name": "syft:metadata:release",
+          "value": "3.amzn2.0.2"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "432886"
+        },
+        {
+          "name": "syft:metadata:sourceRpm",
+          "value": "p11-kit-0.23.5-3.amzn2.0.2.src.rpm"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:rpm/amzn/pcre@8.32-17.amzn2.0.2?arch=x86_64&upstream=pcre-8.32-17.amzn2.0.2.src.rpm&distro=amzn-2&package-id=c074b2f009ba5e0a",
+      "type": "library",
+      "publisher": "Amazon Linux",
+      "name": "pcre",
+      "version": "8.32-17.amzn2.0.2",
+      "licenses": [
+        {
+          "license": {
+            "name": "BSD"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:amazonlinux:pcre:8.32-17.amzn2.0.2:*:*:*:*:*:*:*",
+      "purl": "pkg:rpm/amzn/pcre@8.32-17.amzn2.0.2?arch=x86_64&upstream=pcre-8.32-17.amzn2.0.2.src.rpm&distro=amzn-2",
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "rpm-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "rpm"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "rpm-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:pcre:pcre:8.32-17.amzn2.0.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:fc24ab7e0293a749fddb0110597d42b4d29f1ae143bae880417547e23f5d459c"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/var/lib/rpm/Packages"
+        },
+        {
+          "name": "syft:metadata:release",
+          "value": "17.amzn2.0.2"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "1499580"
+        },
+        {
+          "name": "syft:metadata:sourceRpm",
+          "value": "pcre-8.32-17.amzn2.0.2.src.rpm"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:rpm/amzn/pinentry@0.8.1-17.amzn2.0.2?arch=x86_64&upstream=pinentry-0.8.1-17.amzn2.0.2.src.rpm&distro=amzn-2&package-id=61afe7d9cd9c6a27",
+      "type": "library",
+      "publisher": "Amazon Linux",
+      "name": "pinentry",
+      "version": "0.8.1-17.amzn2.0.2",
+      "licenses": [
+        {
+          "license": {
+            "name": "GPLv2+"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:amazonlinux:pinentry:0.8.1-17.amzn2.0.2:*:*:*:*:*:*:*",
+      "purl": "pkg:rpm/amzn/pinentry@0.8.1-17.amzn2.0.2?arch=x86_64&upstream=pinentry-0.8.1-17.amzn2.0.2.src.rpm&distro=amzn-2",
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "rpm-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "rpm"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "rpm-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:pinentry:pinentry:0.8.1-17.amzn2.0.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:fc24ab7e0293a749fddb0110597d42b4d29f1ae143bae880417547e23f5d459c"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/var/lib/rpm/Packages"
+        },
+        {
+          "name": "syft:metadata:release",
+          "value": "17.amzn2.0.2"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "159857"
+        },
+        {
+          "name": "syft:metadata:sourceRpm",
+          "value": "pinentry-0.8.1-17.amzn2.0.2.src.rpm"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:rpm/amzn/popt@1.13-16.amzn2.0.2?arch=x86_64&upstream=popt-1.13-16.amzn2.0.2.src.rpm&distro=amzn-2&package-id=6a292fe91c5bb97f",
+      "type": "library",
+      "publisher": "Amazon Linux",
+      "name": "popt",
+      "version": "1.13-16.amzn2.0.2",
+      "licenses": [
+        {
+          "license": {
+            "id": "MIT"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:amazonlinux:popt:1.13-16.amzn2.0.2:*:*:*:*:*:*:*",
+      "purl": "pkg:rpm/amzn/popt@1.13-16.amzn2.0.2?arch=x86_64&upstream=popt-1.13-16.amzn2.0.2.src.rpm&distro=amzn-2",
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "rpm-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "rpm"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "rpm-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:popt:popt:1.13-16.amzn2.0.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:fc24ab7e0293a749fddb0110597d42b4d29f1ae143bae880417547e23f5d459c"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/var/lib/rpm/Packages"
+        },
+        {
+          "name": "syft:metadata:release",
+          "value": "16.amzn2.0.2"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "88460"
+        },
+        {
+          "name": "syft:metadata:sourceRpm",
+          "value": "popt-1.13-16.amzn2.0.2.src.rpm"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:rpm/amzn/pth@2.0.7-23.amzn2.0.2?arch=x86_64&upstream=pth-2.0.7-23.amzn2.0.2.src.rpm&distro=amzn-2&package-id=a8041244bafb3246",
+      "type": "library",
+      "publisher": "Amazon Linux",
+      "name": "pth",
+      "version": "2.0.7-23.amzn2.0.2",
+      "licenses": [
+        {
+          "license": {
+            "name": "LGPLv2+"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:amazonlinux:pth:2.0.7-23.amzn2.0.2:*:*:*:*:*:*:*",
+      "purl": "pkg:rpm/amzn/pth@2.0.7-23.amzn2.0.2?arch=x86_64&upstream=pth-2.0.7-23.amzn2.0.2.src.rpm&distro=amzn-2",
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "rpm-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "rpm"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "rpm-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:pth:pth:2.0.7-23.amzn2.0.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:fc24ab7e0293a749fddb0110597d42b4d29f1ae143bae880417547e23f5d459c"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/var/lib/rpm/Packages"
+        },
+        {
+          "name": "syft:metadata:release",
+          "value": "23.amzn2.0.2"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "263667"
+        },
+        {
+          "name": "syft:metadata:sourceRpm",
+          "value": "pth-2.0.7-23.amzn2.0.2.src.rpm"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:pypi/pycurl@7.19.0?package-id=ed66f5a5f5fd407b",
+      "type": "library",
+      "author": "Kjetil Jacobsen, Markus F.X.J. Oberhumer <kjetilja at gmail.com, markus at oberhumer.com>",
+      "name": "pycurl",
+      "version": "7.19.0",
+      "licenses": [
+        {
+          "license": {
+            "name": "LGPL/MIT"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:kjetilja_at_gmail_com\\,_markus_at_oberhumer_com_project:python-pycurl:7.19.0:*:*:*:*:*:*:*",
+      "purl": "pkg:pypi/pycurl@7.19.0",
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "python-installed-package-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "python"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "python"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "python-package"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:kjetilja_at_gmail_com\\,_markus_at_oberhumer_com_project:python_pycurl:7.19.0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:kjetilja_at_gmail_com\\,_markus_at_oberhumer_comproject:python-pycurl:7.19.0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:kjetilja_at_gmail_com\\,_markus_at_oberhumer_comproject:python_pycurl:7.19.0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:kjetil_jacobsen\\,_markus_f_x_j__oberhumer_project:python-pycurl:7.19.0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:kjetil_jacobsen\\,_markus_f_x_j__oberhumer_project:python_pycurl:7.19.0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:kjetil_jacobsen\\,_markus_f_x_j__oberhumerproject:python-pycurl:7.19.0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:kjetil_jacobsen\\,_markus_f_x_j__oberhumerproject:python_pycurl:7.19.0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:kjetilja_at_gmail_com\\,_markus_at_oberhumer_com_project:pycurl:7.19.0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:kjetilja-at-gmail-com\\,-markus-at-oberhumer-com:python-pycurl:7.19.0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:kjetilja-at-gmail-com\\,-markus-at-oberhumer-com:python_pycurl:7.19.0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:kjetilja_at_gmail_com\\,_markus_at_oberhumer_com:python-pycurl:7.19.0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:kjetilja_at_gmail_com\\,_markus_at_oberhumer_com:python_pycurl:7.19.0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:kjetilja_at_gmail_com\\,_markus_at_oberhumer_comproject:pycurl:7.19.0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:kjetil_jacobsen\\,_markus_f_x_j__oberhumer_project:pycurl:7.19.0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:kjetil_jacobsen\\,_markus_f_x_j__oberhumer:python-pycurl:7.19.0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:kjetil_jacobsen\\,_markus_f_x_j__oberhumer:python_pycurl:7.19.0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:kjetil_jacobsen\\,_markus_f_x_j__oberhumerproject:pycurl:7.19.0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:kjetilja-at-gmail-com\\,-markus-at-oberhumer-com:pycurl:7.19.0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:kjetilja_at_gmail_com\\,_markus_at_oberhumer_com:pycurl:7.19.0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:kjetil_jacobsen\\,_markus_f_x_j__oberhumer:pycurl:7.19.0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python-pycurl:python-pycurl:7.19.0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python-pycurl:python_pycurl:7.19.0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python_pycurl:python-pycurl:7.19.0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python_pycurl:python_pycurl:7.19.0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:pycurl:python-pycurl:7.19.0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:pycurl:python_pycurl:7.19.0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python-pycurl:pycurl:7.19.0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python:python-pycurl:7.19.0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python:python_pycurl:7.19.0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python_pycurl:pycurl:7.19.0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:pycurl:pycurl:7.19.0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python:pycurl:7.19.0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:9f856a31a19b9076c45195825844d89d7dad641870d1bd10c66579ff6bc1a0b4"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/usr/lib64/python2.7/site-packages/pycurl-7.19.0-py2.7.egg-info"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:pypi/pygpgme@0.3?package-id=160c1d86916b6105",
+      "type": "library",
+      "author": "James Henstridge <james@jamesh.id.au>",
+      "name": "pygpgme",
+      "version": "0.3",
+      "licenses": [
+        {
+          "license": {
+            "name": "LGPL"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:james_henstridge_project:python-pygpgme:0.3:*:*:*:*:*:*:*",
+      "purl": "pkg:pypi/pygpgme@0.3",
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "python-installed-package-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "python"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "python"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "python-package"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:james_henstridge_project:python_pygpgme:0.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:james_henstridgeproject:python-pygpgme:0.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:james_henstridgeproject:python_pygpgme:0.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:james_henstridge_project:pygpgme:0.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:james_henstridge:python-pygpgme:0.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:james_henstridge:python_pygpgme:0.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:james_henstridgeproject:pygpgme:0.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python-pygpgme:python-pygpgme:0.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python-pygpgme:python_pygpgme:0.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python_pygpgme:python-pygpgme:0.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python_pygpgme:python_pygpgme:0.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:james_project:python-pygpgme:0.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:james_project:python_pygpgme:0.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:jamesproject:python-pygpgme:0.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:jamesproject:python_pygpgme:0.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:james_henstridge:pygpgme:0.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:pygpgme:python-pygpgme:0.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:pygpgme:python_pygpgme:0.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python-pygpgme:pygpgme:0.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python_pygpgme:pygpgme:0.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:james_project:pygpgme:0.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python:python-pygpgme:0.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python:python_pygpgme:0.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:james:python-pygpgme:0.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:james:python_pygpgme:0.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:jamesproject:pygpgme:0.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:pygpgme:pygpgme:0.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python:pygpgme:0.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:james:pygpgme:0.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:9f856a31a19b9076c45195825844d89d7dad641870d1bd10c66579ff6bc1a0b4"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/usr/lib64/python2.7/site-packages/pygpgme-0.3-py2.7.egg-info"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:rpm/amzn/pygpgme@0.3-9.amzn2.0.2?arch=x86_64&upstream=pygpgme-0.3-9.amzn2.0.2.src.rpm&distro=amzn-2&package-id=e1ce54fa1cd04aff",
+      "type": "library",
+      "publisher": "Amazon Linux",
+      "name": "pygpgme",
+      "version": "0.3-9.amzn2.0.2",
+      "licenses": [
+        {
+          "license": {
+            "name": "LGPLv2+"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:amazonlinux:pygpgme:0.3-9.amzn2.0.2:*:*:*:*:*:*:*",
+      "purl": "pkg:rpm/amzn/pygpgme@0.3-9.amzn2.0.2?arch=x86_64&upstream=pygpgme-0.3-9.amzn2.0.2.src.rpm&distro=amzn-2",
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "rpm-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "rpm"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "rpm-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:pygpgme:pygpgme:0.3-9.amzn2.0.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:fc24ab7e0293a749fddb0110597d42b4d29f1ae143bae880417547e23f5d459c"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/var/lib/rpm/Packages"
+        },
+        {
+          "name": "syft:metadata:release",
+          "value": "9.amzn2.0.2"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "193493"
+        },
+        {
+          "name": "syft:metadata:sourceRpm",
+          "value": "pygpgme-0.3-9.amzn2.0.2.src.rpm"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:pypi/pyliblzma@0.5.3?package-id=c3324376c831d8d9",
+      "type": "library",
+      "author": "Per Øyvind Karlsen <peroyvind@mandriva.org>",
+      "name": "pyliblzma",
+      "version": "0.5.3",
+      "licenses": [
+        {
+          "license": {
+            "name": "LGPL 3"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:peroyvind_project:python-pyliblzma:0.5.3:*:*:*:*:*:*:*",
+      "purl": "pkg:pypi/pyliblzma@0.5.3",
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "python-installed-package-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "python"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "python"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "python-package"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:peroyvind_project:python_pyliblzma:0.5.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:peroyvindproject:python-pyliblzma:0.5.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:peroyvindproject:python_pyliblzma:0.5.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python-pyliblzma:python-pyliblzma:0.5.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python-pyliblzma:python_pyliblzma:0.5.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python_pyliblzma:python-pyliblzma:0.5.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python_pyliblzma:python_pyliblzma:0.5.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:peroyvind_project:pyliblzma:0.5.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:peroyvind:python-pyliblzma:0.5.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:peroyvind:python_pyliblzma:0.5.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:peroyvindproject:pyliblzma:0.5.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:pyliblzma:python-pyliblzma:0.5.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:pyliblzma:python_pyliblzma:0.5.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python-pyliblzma:pyliblzma:0.5.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python_pyliblzma:pyliblzma:0.5.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python:python-pyliblzma:0.5.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python:python_pyliblzma:0.5.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:peroyvind:pyliblzma:0.5.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:pyliblzma:pyliblzma:0.5.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python:pyliblzma:0.5.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:9f856a31a19b9076c45195825844d89d7dad641870d1bd10c66579ff6bc1a0b4"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/usr/lib64/python2.7/site-packages/pyliblzma-0.5.3-py2.7.egg-info/PKG-INFO"
+        },
+        {
+          "name": "syft:location:1:layerID",
+          "value": "sha256:9f856a31a19b9076c45195825844d89d7dad641870d1bd10c66579ff6bc1a0b4"
+        },
+        {
+          "name": "syft:location:1:path",
+          "value": "/usr/lib64/python2.7/site-packages/pyliblzma-0.5.3-py2.7.egg-info/top_level.txt"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:rpm/amzn/pyliblzma@0.5.3-11.amzn2.0.2?arch=x86_64&upstream=pyliblzma-0.5.3-11.amzn2.0.2.src.rpm&distro=amzn-2&package-id=d08d09c6b1b30a49",
+      "type": "library",
+      "publisher": "Amazon Linux",
+      "name": "pyliblzma",
+      "version": "0.5.3-11.amzn2.0.2",
+      "licenses": [
+        {
+          "license": {
+            "name": "LGPLv3+"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:amazonlinux:pyliblzma:0.5.3-11.amzn2.0.2:*:*:*:*:*:*:*",
+      "purl": "pkg:rpm/amzn/pyliblzma@0.5.3-11.amzn2.0.2?arch=x86_64&upstream=pyliblzma-0.5.3-11.amzn2.0.2.src.rpm&distro=amzn-2",
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "rpm-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "rpm"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "rpm-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:pyliblzma:pyliblzma:0.5.3-11.amzn2.0.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:fc24ab7e0293a749fddb0110597d42b4d29f1ae143bae880417547e23f5d459c"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/var/lib/rpm/Packages"
+        },
+        {
+          "name": "syft:metadata:release",
+          "value": "11.amzn2.0.2"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "190090"
+        },
+        {
+          "name": "syft:metadata:sourceRpm",
+          "value": "pyliblzma-0.5.3-11.amzn2.0.2.src.rpm"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:rpm/amzn/python@2.7.16-5.amzn2?arch=x86_64&upstream=python-2.7.16-5.amzn2.src.rpm&distro=amzn-2&package-id=e3d1c4f13c624d72",
+      "type": "library",
+      "publisher": "Amazon Linux",
+      "name": "python",
+      "version": "2.7.16-5.amzn2",
+      "licenses": [
+        {
+          "license": {
+            "name": "Python"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:amazonlinux:python:2.7.16-5.amzn2:*:*:*:*:*:*:*",
+      "purl": "pkg:rpm/amzn/python@2.7.16-5.amzn2?arch=x86_64&upstream=python-2.7.16-5.amzn2.src.rpm&distro=amzn-2",
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "rpm-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "rpm"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "rpm-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python:python:2.7.16-5.amzn2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:fc24ab7e0293a749fddb0110597d42b4d29f1ae143bae880417547e23f5d459c"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/var/lib/rpm/Packages"
+        },
+        {
+          "name": "syft:metadata:release",
+          "value": "5.amzn2"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "81198"
+        },
+        {
+          "name": "syft:metadata:sourceRpm",
+          "value": "python-2.7.16-5.amzn2.src.rpm"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:generic/python@3.7.3?package-id=0969bdfee1fd85b2",
+      "type": "application",
+      "name": "python",
+      "version": "3.7.3",
+      "cpe": "cpe:2.3:a:python_software_foundation:python:3.7.3:*:*:*:*:*:*:*",
+      "purl": "pkg:generic/python@3.7.3",
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "binary-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "binary"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "binary-signature"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python:python:3.7.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python:python:3.7.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:bfed989ad1f8d5fcd292ba31ce84c2dae534f1165e2f4977d9b96414c62b9d3e"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/usr/local/aws-cli/v2/2.0.6/dist/libpython3.7m.so.1.0"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:rpm/amzn/python-iniparse@0.4-9.amzn2?arch=noarch&upstream=python-iniparse-0.4-9.amzn2.src.rpm&distro=amzn-2&package-id=886063aac8d00d39",
+      "type": "library",
+      "publisher": "Amazon Linux",
+      "name": "python-iniparse",
+      "version": "0.4-9.amzn2",
+      "licenses": [
+        {
+          "license": {
+            "id": "MIT"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:python-iniparse:python-iniparse:0.4-9.amzn2:*:*:*:*:*:*:*",
+      "purl": "pkg:rpm/amzn/python-iniparse@0.4-9.amzn2?arch=noarch&upstream=python-iniparse-0.4-9.amzn2.src.rpm&distro=amzn-2",
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "rpm-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "rpm"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "rpm-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python-iniparse:python_iniparse:0.4-9.amzn2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python_iniparse:python-iniparse:0.4-9.amzn2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python_iniparse:python_iniparse:0.4-9.amzn2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:amazonlinux:python-iniparse:0.4-9.amzn2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:amazonlinux:python_iniparse:0.4-9.amzn2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python:python-iniparse:0.4-9.amzn2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python:python_iniparse:0.4-9.amzn2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:fc24ab7e0293a749fddb0110597d42b4d29f1ae143bae880417547e23f5d459c"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/var/lib/rpm/Packages"
+        },
+        {
+          "name": "syft:metadata:release",
+          "value": "9.amzn2"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "115166"
+        },
+        {
+          "name": "syft:metadata:sourceRpm",
+          "value": "python-iniparse-0.4-9.amzn2.src.rpm"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:rpm/amzn/python-libs@2.7.16-5.amzn2?arch=x86_64&upstream=python-2.7.16-5.amzn2.src.rpm&distro=amzn-2&package-id=648306be89232862",
+      "type": "library",
+      "publisher": "Amazon Linux",
+      "name": "python-libs",
+      "version": "2.7.16-5.amzn2",
+      "licenses": [
+        {
+          "license": {
+            "name": "Python"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:amazonlinux:python-libs:2.7.16-5.amzn2:*:*:*:*:*:*:*",
+      "purl": "pkg:rpm/amzn/python-libs@2.7.16-5.amzn2?arch=x86_64&upstream=python-2.7.16-5.amzn2.src.rpm&distro=amzn-2",
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "rpm-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "rpm"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "rpm-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:amazonlinux:python_libs:2.7.16-5.amzn2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python-libs:python-libs:2.7.16-5.amzn2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python-libs:python_libs:2.7.16-5.amzn2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python_libs:python-libs:2.7.16-5.amzn2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python_libs:python_libs:2.7.16-5.amzn2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python:python-libs:2.7.16-5.amzn2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python:python_libs:2.7.16-5.amzn2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:fc24ab7e0293a749fddb0110597d42b4d29f1ae143bae880417547e23f5d459c"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/var/lib/rpm/Packages"
+        },
+        {
+          "name": "syft:metadata:release",
+          "value": "5.amzn2"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "27329840"
+        },
+        {
+          "name": "syft:metadata:sourceRpm",
+          "value": "python-2.7.16-5.amzn2.src.rpm"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:rpm/amzn/python-pycurl@7.19.0-19.amzn2.0.2?arch=x86_64&upstream=python-pycurl-7.19.0-19.amzn2.0.2.src.rpm&distro=amzn-2&package-id=fa23c7904052361e",
+      "type": "library",
+      "publisher": "Amazon Linux",
+      "name": "python-pycurl",
+      "version": "7.19.0-19.amzn2.0.2",
+      "licenses": [
+        {
+          "license": {
+            "name": "LGPLv2+ or MIT"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:python-pycurl:python-pycurl:7.19.0-19.amzn2.0.2:*:*:*:*:*:*:*",
+      "purl": "pkg:rpm/amzn/python-pycurl@7.19.0-19.amzn2.0.2?arch=x86_64&upstream=python-pycurl-7.19.0-19.amzn2.0.2.src.rpm&distro=amzn-2",
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "rpm-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "rpm"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "rpm-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python-pycurl:python_pycurl:7.19.0-19.amzn2.0.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python_pycurl:python-pycurl:7.19.0-19.amzn2.0.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python_pycurl:python_pycurl:7.19.0-19.amzn2.0.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:amazonlinux:python-pycurl:7.19.0-19.amzn2.0.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:amazonlinux:python_pycurl:7.19.0-19.amzn2.0.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python:python-pycurl:7.19.0-19.amzn2.0.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python:python_pycurl:7.19.0-19.amzn2.0.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:fc24ab7e0293a749fddb0110597d42b4d29f1ae143bae880417547e23f5d459c"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/var/lib/rpm/Packages"
+        },
+        {
+          "name": "syft:metadata:release",
+          "value": "19.amzn2.0.2"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "241457"
+        },
+        {
+          "name": "syft:metadata:sourceRpm",
+          "value": "python-pycurl-7.19.0-19.amzn2.0.2.src.rpm"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:rpm/amzn/python-urlgrabber@3.10-9.amzn2.0.1?arch=noarch&upstream=python-urlgrabber-3.10-9.amzn2.0.1.src.rpm&distro=amzn-2&package-id=474c8a4776481634",
+      "type": "library",
+      "publisher": "Amazon Linux",
+      "name": "python-urlgrabber",
+      "version": "3.10-9.amzn2.0.1",
+      "licenses": [
+        {
+          "license": {
+            "name": "LGPLv2+"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:python-urlgrabber:python-urlgrabber:3.10-9.amzn2.0.1:*:*:*:*:*:*:*",
+      "purl": "pkg:rpm/amzn/python-urlgrabber@3.10-9.amzn2.0.1?arch=noarch&upstream=python-urlgrabber-3.10-9.amzn2.0.1.src.rpm&distro=amzn-2",
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "rpm-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "rpm"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "rpm-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python-urlgrabber:python_urlgrabber:3.10-9.amzn2.0.1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python_urlgrabber:python-urlgrabber:3.10-9.amzn2.0.1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python_urlgrabber:python_urlgrabber:3.10-9.amzn2.0.1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:amazonlinux:python-urlgrabber:3.10-9.amzn2.0.1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:amazonlinux:python_urlgrabber:3.10-9.amzn2.0.1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python:python-urlgrabber:3.10-9.amzn2.0.1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python:python_urlgrabber:3.10-9.amzn2.0.1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:fc24ab7e0293a749fddb0110597d42b4d29f1ae143bae880417547e23f5d459c"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/var/lib/rpm/Packages"
+        },
+        {
+          "name": "syft:metadata:release",
+          "value": "9.amzn2.0.1"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "502813"
+        },
+        {
+          "name": "syft:metadata:sourceRpm",
+          "value": "python-urlgrabber-3.10-9.amzn2.0.1.src.rpm"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:rpm/amzn/python2-rpm@4.11.3-40.amzn2.0.3?arch=x86_64&upstream=rpm-4.11.3-40.amzn2.0.3.src.rpm&distro=amzn-2&package-id=010576d89bcd0993",
+      "type": "library",
+      "publisher": "Amazon Linux",
+      "name": "python2-rpm",
+      "version": "4.11.3-40.amzn2.0.3",
+      "licenses": [
+        {
+          "license": {
+            "name": "GPLv2+"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:amazonlinux:python2-rpm:4.11.3-40.amzn2.0.3:*:*:*:*:*:*:*",
+      "purl": "pkg:rpm/amzn/python2-rpm@4.11.3-40.amzn2.0.3?arch=x86_64&upstream=rpm-4.11.3-40.amzn2.0.3.src.rpm&distro=amzn-2",
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "rpm-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "rpm"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "rpm-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:amazonlinux:python2_rpm:4.11.3-40.amzn2.0.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python2-rpm:python2-rpm:4.11.3-40.amzn2.0.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python2-rpm:python2_rpm:4.11.3-40.amzn2.0.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python2_rpm:python2-rpm:4.11.3-40.amzn2.0.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python2_rpm:python2_rpm:4.11.3-40.amzn2.0.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python2:python2-rpm:4.11.3-40.amzn2.0.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python2:python2_rpm:4.11.3-40.amzn2.0.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:fc24ab7e0293a749fddb0110597d42b4d29f1ae143bae880417547e23f5d459c"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/var/lib/rpm/Packages"
+        },
+        {
+          "name": "syft:metadata:release",
+          "value": "40.amzn2.0.3"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "149704"
+        },
+        {
+          "name": "syft:metadata:sourceRpm",
+          "value": "rpm-4.11.3-40.amzn2.0.3.src.rpm"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:pypi/pyxattr@0.5.1?package-id=9bf77a722d7bf940",
+      "type": "library",
+      "author": "Iustin Pop <iusty@k1024.org>",
+      "name": "pyxattr",
+      "version": "0.5.1",
+      "licenses": [
+        {
+          "license": {
+            "name": "LGPL"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:iustin_pop_project:python-pyxattr:0.5.1:*:*:*:*:*:*:*",
+      "purl": "pkg:pypi/pyxattr@0.5.1",
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "python-installed-package-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "python"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "python"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "python-package"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:iustin_pop_project:python_pyxattr:0.5.1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:iustin_popproject:python-pyxattr:0.5.1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:iustin_popproject:python_pyxattr:0.5.1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python-pyxattr:python-pyxattr:0.5.1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python-pyxattr:python_pyxattr:0.5.1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python_pyxattr:python-pyxattr:0.5.1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python_pyxattr:python_pyxattr:0.5.1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:iusty_project:python-pyxattr:0.5.1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:iusty_project:python_pyxattr:0.5.1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:iustyproject:python-pyxattr:0.5.1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:iustyproject:python_pyxattr:0.5.1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:iustin_pop_project:pyxattr:0.5.1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:iustin_pop:python-pyxattr:0.5.1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:iustin_pop:python_pyxattr:0.5.1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:iustin_popproject:pyxattr:0.5.1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python-pyxattr:pyxattr:0.5.1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python_pyxattr:pyxattr:0.5.1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:pyxattr:python-pyxattr:0.5.1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:pyxattr:python_pyxattr:0.5.1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:iusty_project:pyxattr:0.5.1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python:python-pyxattr:0.5.1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python:python_pyxattr:0.5.1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:iusty:python-pyxattr:0.5.1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:iusty:python_pyxattr:0.5.1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:iustyproject:pyxattr:0.5.1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:iustin_pop:pyxattr:0.5.1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:pyxattr:pyxattr:0.5.1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python:pyxattr:0.5.1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:iusty:pyxattr:0.5.1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:9f856a31a19b9076c45195825844d89d7dad641870d1bd10c66579ff6bc1a0b4"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/usr/lib64/python2.7/site-packages/pyxattr-0.5.1-py2.7.egg-info/PKG-INFO"
+        },
+        {
+          "name": "syft:location:1:layerID",
+          "value": "sha256:9f856a31a19b9076c45195825844d89d7dad641870d1bd10c66579ff6bc1a0b4"
+        },
+        {
+          "name": "syft:location:1:path",
+          "value": "/usr/lib64/python2.7/site-packages/pyxattr-0.5.1-py2.7.egg-info/top_level.txt"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:rpm/amzn/pyxattr@0.5.1-5.amzn2.0.2?arch=x86_64&upstream=pyxattr-0.5.1-5.amzn2.0.2.src.rpm&distro=amzn-2&package-id=7f80761c85799326",
+      "type": "library",
+      "publisher": "Amazon Linux",
+      "name": "pyxattr",
+      "version": "0.5.1-5.amzn2.0.2",
+      "licenses": [
+        {
+          "license": {
+            "name": "LGPLv2+"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:amazonlinux:pyxattr:0.5.1-5.amzn2.0.2:*:*:*:*:*:*:*",
+      "purl": "pkg:rpm/amzn/pyxattr@0.5.1-5.amzn2.0.2?arch=x86_64&upstream=pyxattr-0.5.1-5.amzn2.0.2.src.rpm&distro=amzn-2",
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "rpm-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "rpm"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "rpm-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:pyxattr:pyxattr:0.5.1-5.amzn2.0.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:fc24ab7e0293a749fddb0110597d42b4d29f1ae143bae880417547e23f5d459c"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/var/lib/rpm/Packages"
+        },
+        {
+          "name": "syft:metadata:release",
+          "value": "5.amzn2.0.2"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "63298"
+        },
+        {
+          "name": "syft:metadata:sourceRpm",
+          "value": "pyxattr-0.5.1-5.amzn2.0.2.src.rpm"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:rpm/amzn/readline@6.2-10.amzn2.0.2?arch=x86_64&upstream=readline-6.2-10.amzn2.0.2.src.rpm&distro=amzn-2&package-id=05157c35cd5893ed",
+      "type": "library",
+      "publisher": "Amazon Linux",
+      "name": "readline",
+      "version": "6.2-10.amzn2.0.2",
+      "licenses": [
+        {
+          "license": {
+            "name": "GPLv3+"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:amazonlinux:readline:6.2-10.amzn2.0.2:*:*:*:*:*:*:*",
+      "purl": "pkg:rpm/amzn/readline@6.2-10.amzn2.0.2?arch=x86_64&upstream=readline-6.2-10.amzn2.0.2.src.rpm&distro=amzn-2",
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "rpm-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "rpm"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "rpm-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:readline:readline:6.2-10.amzn2.0.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:fc24ab7e0293a749fddb0110597d42b4d29f1ae143bae880417547e23f5d459c"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/var/lib/rpm/Packages"
+        },
+        {
+          "name": "syft:metadata:release",
+          "value": "10.amzn2.0.2"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "460368"
+        },
+        {
+          "name": "syft:metadata:sourceRpm",
+          "value": "readline-6.2-10.amzn2.0.2.src.rpm"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:rpm/amzn/rpm@4.11.3-40.amzn2.0.3?arch=x86_64&upstream=rpm-4.11.3-40.amzn2.0.3.src.rpm&distro=amzn-2&package-id=f64339b059a85228",
+      "type": "library",
+      "publisher": "Amazon Linux",
+      "name": "rpm",
+      "version": "4.11.3-40.amzn2.0.3",
+      "licenses": [
+        {
+          "license": {
+            "name": "GPLv2+"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:amazonlinux:rpm:4.11.3-40.amzn2.0.3:*:*:*:*:*:*:*",
+      "purl": "pkg:rpm/amzn/rpm@4.11.3-40.amzn2.0.3?arch=x86_64&upstream=rpm-4.11.3-40.amzn2.0.3.src.rpm&distro=amzn-2",
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "rpm-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "rpm"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "rpm-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:rpm:rpm:4.11.3-40.amzn2.0.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:fc24ab7e0293a749fddb0110597d42b4d29f1ae143bae880417547e23f5d459c"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/var/lib/rpm/Packages"
+        },
+        {
+          "name": "syft:metadata:release",
+          "value": "40.amzn2.0.3"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "2622280"
+        },
+        {
+          "name": "syft:metadata:sourceRpm",
+          "value": "rpm-4.11.3-40.amzn2.0.3.src.rpm"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:rpm/amzn/rpm-build-libs@4.11.3-40.amzn2.0.3?arch=x86_64&upstream=rpm-4.11.3-40.amzn2.0.3.src.rpm&distro=amzn-2&package-id=2b59c6caf41cd153",
+      "type": "library",
+      "publisher": "Amazon Linux",
+      "name": "rpm-build-libs",
+      "version": "4.11.3-40.amzn2.0.3",
+      "licenses": [
+        {
+          "license": {
+            "name": "GPLv2+ and LGPLv2+ with exceptions"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:rpm-build-libs:rpm-build-libs:4.11.3-40.amzn2.0.3:*:*:*:*:*:*:*",
+      "purl": "pkg:rpm/amzn/rpm-build-libs@4.11.3-40.amzn2.0.3?arch=x86_64&upstream=rpm-4.11.3-40.amzn2.0.3.src.rpm&distro=amzn-2",
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "rpm-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "rpm"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "rpm-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:rpm-build-libs:rpm_build_libs:4.11.3-40.amzn2.0.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:rpm_build_libs:rpm-build-libs:4.11.3-40.amzn2.0.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:rpm_build_libs:rpm_build_libs:4.11.3-40.amzn2.0.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:amazonlinux:rpm-build-libs:4.11.3-40.amzn2.0.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:amazonlinux:rpm_build_libs:4.11.3-40.amzn2.0.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:rpm-build:rpm-build-libs:4.11.3-40.amzn2.0.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:rpm-build:rpm_build_libs:4.11.3-40.amzn2.0.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:rpm_build:rpm-build-libs:4.11.3-40.amzn2.0.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:rpm_build:rpm_build_libs:4.11.3-40.amzn2.0.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:rpm:rpm-build-libs:4.11.3-40.amzn2.0.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:rpm:rpm_build_libs:4.11.3-40.amzn2.0.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:fc24ab7e0293a749fddb0110597d42b4d29f1ae143bae880417547e23f5d459c"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/var/lib/rpm/Packages"
+        },
+        {
+          "name": "syft:metadata:release",
+          "value": "40.amzn2.0.3"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "162392"
+        },
+        {
+          "name": "syft:metadata:sourceRpm",
+          "value": "rpm-4.11.3-40.amzn2.0.3.src.rpm"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:rpm/amzn/rpm-libs@4.11.3-40.amzn2.0.3?arch=x86_64&upstream=rpm-4.11.3-40.amzn2.0.3.src.rpm&distro=amzn-2&package-id=72bafd9950abc480",
+      "type": "library",
+      "publisher": "Amazon Linux",
+      "name": "rpm-libs",
+      "version": "4.11.3-40.amzn2.0.3",
+      "licenses": [
+        {
+          "license": {
+            "name": "GPLv2+ and LGPLv2+ with exceptions"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:amazonlinux:rpm-libs:4.11.3-40.amzn2.0.3:*:*:*:*:*:*:*",
+      "purl": "pkg:rpm/amzn/rpm-libs@4.11.3-40.amzn2.0.3?arch=x86_64&upstream=rpm-4.11.3-40.amzn2.0.3.src.rpm&distro=amzn-2",
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "rpm-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "rpm"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "rpm-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:amazonlinux:rpm_libs:4.11.3-40.amzn2.0.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:rpm-libs:rpm-libs:4.11.3-40.amzn2.0.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:rpm-libs:rpm_libs:4.11.3-40.amzn2.0.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:rpm_libs:rpm-libs:4.11.3-40.amzn2.0.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:rpm_libs:rpm_libs:4.11.3-40.amzn2.0.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:rpm:rpm-libs:4.11.3-40.amzn2.0.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:rpm:rpm_libs:4.11.3-40.amzn2.0.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:fc24ab7e0293a749fddb0110597d42b4d29f1ae143bae880417547e23f5d459c"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/var/lib/rpm/Packages"
+        },
+        {
+          "name": "syft:metadata:release",
+          "value": "40.amzn2.0.3"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "594752"
+        },
+        {
+          "name": "syft:metadata:sourceRpm",
+          "value": "rpm-4.11.3-40.amzn2.0.3.src.rpm"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:pypi/rpm-python@4.11.3?package-id=6fc583015a5b3a7e",
+      "type": "library",
+      "author": "UNKNOWN <rpm-maint@lists.rpm.org>",
+      "name": "rpm-python",
+      "version": "4.11.3",
+      "licenses": [
+        {
+          "license": {
+            "name": "UNKNOWN"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:python-rpm-python:python-rpm-python:4.11.3:*:*:*:*:*:*:*",
+      "purl": "pkg:pypi/rpm-python@4.11.3",
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "python-installed-package-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "python"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "python"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "python-package"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python-rpm-python:python_rpm_python:4.11.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python_rpm_python:python-rpm-python:4.11.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python_rpm_python:python_rpm_python:4.11.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:rpm_maint_project:python-rpm-python:4.11.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:rpm_maint_project:python_rpm_python:4.11.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:rpm_maintproject:python-rpm-python:4.11.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:rpm_maintproject:python_rpm_python:4.11.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:unknown_project:python-rpm-python:4.11.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:unknown_project:python_rpm_python:4.11.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:unknownproject:python-rpm-python:4.11.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:unknownproject:python_rpm_python:4.11.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python-rpm-python:rpm-python:4.11.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python-rpm-python:rpm_python:4.11.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python-rpm:python-rpm-python:4.11.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python-rpm:python_rpm_python:4.11.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python_rpm:python-rpm-python:4.11.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python_rpm:python_rpm_python:4.11.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python_rpm_python:rpm-python:4.11.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python_rpm_python:rpm_python:4.11.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:rpm-python:python-rpm-python:4.11.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:rpm-python:python_rpm_python:4.11.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:rpm_maint_project:rpm-python:4.11.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:rpm_maint_project:rpm_python:4.11.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:rpm_python:python-rpm-python:4.11.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:rpm_python:python_rpm_python:4.11.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:rpm-maint:python-rpm-python:4.11.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:rpm-maint:python_rpm_python:4.11.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:rpm_maint:python-rpm-python:4.11.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:rpm_maint:python_rpm_python:4.11.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:rpm_maintproject:rpm-python:4.11.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:rpm_maintproject:rpm_python:4.11.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:unknown_project:rpm-python:4.11.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:unknown_project:rpm_python:4.11.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:unknown:python-rpm-python:4.11.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:unknown:python_rpm_python:4.11.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:unknownproject:rpm-python:4.11.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:unknownproject:rpm_python:4.11.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python:python-rpm-python:4.11.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python:python_rpm_python:4.11.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python-rpm:rpm-python:4.11.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python-rpm:rpm_python:4.11.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python_rpm:rpm-python:4.11.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python_rpm:rpm_python:4.11.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:rpm-python:rpm-python:4.11.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:rpm-python:rpm_python:4.11.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:rpm:python-rpm-python:4.11.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:rpm:python_rpm_python:4.11.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:rpm_python:rpm-python:4.11.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:rpm_python:rpm_python:4.11.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:rpm-maint:rpm-python:4.11.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:rpm-maint:rpm_python:4.11.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:rpm_maint:rpm-python:4.11.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:rpm_maint:rpm_python:4.11.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:unknown:rpm-python:4.11.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:unknown:rpm_python:4.11.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python:rpm-python:4.11.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python:rpm_python:4.11.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:rpm:rpm-python:4.11.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:rpm:rpm_python:4.11.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:9f856a31a19b9076c45195825844d89d7dad641870d1bd10c66579ff6bc1a0b4"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/usr/lib64/python2.7/site-packages/rpm_python-4.11.3-py2.7.egg-info"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:rpm/amzn/sed@4.2.2-5.amzn2.0.2?arch=x86_64&upstream=sed-4.2.2-5.amzn2.0.2.src.rpm&distro=amzn-2&package-id=4c808a42ccb93d6c",
+      "type": "library",
+      "publisher": "Amazon Linux",
+      "name": "sed",
+      "version": "4.2.2-5.amzn2.0.2",
+      "licenses": [
+        {
+          "license": {
+            "name": "GPLv3+"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:amazonlinux:sed:4.2.2-5.amzn2.0.2:*:*:*:*:*:*:*",
+      "purl": "pkg:rpm/amzn/sed@4.2.2-5.amzn2.0.2?arch=x86_64&upstream=sed-4.2.2-5.amzn2.0.2.src.rpm&distro=amzn-2",
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "rpm-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "rpm"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "rpm-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:sed:sed:4.2.2-5.amzn2.0.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:fc24ab7e0293a749fddb0110597d42b4d29f1ae143bae880417547e23f5d459c"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/var/lib/rpm/Packages"
+        },
+        {
+          "name": "syft:metadata:release",
+          "value": "5.amzn2.0.2"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "601153"
+        },
+        {
+          "name": "syft:metadata:sourceRpm",
+          "value": "sed-4.2.2-5.amzn2.0.2.src.rpm"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:rpm/amzn/setup@2.8.71-10.amzn2.0.1?arch=noarch&upstream=setup-2.8.71-10.amzn2.0.1.src.rpm&distro=amzn-2&package-id=d6140cfafbca8c51",
+      "type": "library",
+      "publisher": "Amazon Linux",
+      "name": "setup",
+      "version": "2.8.71-10.amzn2.0.1",
+      "licenses": [
+        {
+          "license": {
+            "name": "Public Domain"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:amazonlinux:setup:2.8.71-10.amzn2.0.1:*:*:*:*:*:*:*",
+      "purl": "pkg:rpm/amzn/setup@2.8.71-10.amzn2.0.1?arch=noarch&upstream=setup-2.8.71-10.amzn2.0.1.src.rpm&distro=amzn-2",
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "rpm-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "rpm"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "rpm-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:setup:setup:2.8.71-10.amzn2.0.1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:fc24ab7e0293a749fddb0110597d42b4d29f1ae143bae880417547e23f5d459c"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/var/lib/rpm/Packages"
+        },
+        {
+          "name": "syft:metadata:release",
+          "value": "10.amzn2.0.1"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "698255"
+        },
+        {
+          "name": "syft:metadata:sourceRpm",
+          "value": "setup-2.8.71-10.amzn2.0.1.src.rpm"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:rpm/amzn/shared-mime-info@1.8-4.amzn2?arch=x86_64&upstream=shared-mime-info-1.8-4.amzn2.src.rpm&distro=amzn-2&package-id=589062c64d69dfe4",
+      "type": "library",
+      "publisher": "Amazon Linux",
+      "name": "shared-mime-info",
+      "version": "1.8-4.amzn2",
+      "licenses": [
+        {
+          "license": {
+            "name": "GPLv2+"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:shared-mime-info:shared-mime-info:1.8-4.amzn2:*:*:*:*:*:*:*",
+      "purl": "pkg:rpm/amzn/shared-mime-info@1.8-4.amzn2?arch=x86_64&upstream=shared-mime-info-1.8-4.amzn2.src.rpm&distro=amzn-2",
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "rpm-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "rpm"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "rpm-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:shared-mime-info:shared_mime_info:1.8-4.amzn2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:shared_mime_info:shared-mime-info:1.8-4.amzn2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:shared_mime_info:shared_mime_info:1.8-4.amzn2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:amazonlinux:shared-mime-info:1.8-4.amzn2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:amazonlinux:shared_mime_info:1.8-4.amzn2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:shared-mime:shared-mime-info:1.8-4.amzn2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:shared-mime:shared_mime_info:1.8-4.amzn2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:shared_mime:shared-mime-info:1.8-4.amzn2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:shared_mime:shared_mime_info:1.8-4.amzn2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:shared:shared-mime-info:1.8-4.amzn2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:shared:shared_mime_info:1.8-4.amzn2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:fc24ab7e0293a749fddb0110597d42b4d29f1ae143bae880417547e23f5d459c"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/var/lib/rpm/Packages"
+        },
+        {
+          "name": "syft:metadata:release",
+          "value": "4.amzn2"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "2379325"
+        },
+        {
+          "name": "syft:metadata:sourceRpm",
+          "value": "shared-mime-info-1.8-4.amzn2.src.rpm"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:rpm/amzn/sqlite@3.7.17-8.amzn2.1.1?arch=x86_64&upstream=sqlite-3.7.17-8.amzn2.1.1.src.rpm&distro=amzn-2&package-id=ed31a29fb86b3607",
+      "type": "library",
+      "publisher": "Amazon Linux",
+      "name": "sqlite",
+      "version": "3.7.17-8.amzn2.1.1",
+      "licenses": [
+        {
+          "license": {
+            "name": "Public Domain"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:amazonlinux:sqlite:3.7.17-8.amzn2.1.1:*:*:*:*:*:*:*",
+      "purl": "pkg:rpm/amzn/sqlite@3.7.17-8.amzn2.1.1?arch=x86_64&upstream=sqlite-3.7.17-8.amzn2.1.1.src.rpm&distro=amzn-2",
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "rpm-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "rpm"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "rpm-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:sqlite:sqlite:3.7.17-8.amzn2.1.1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:fc24ab7e0293a749fddb0110597d42b4d29f1ae143bae880417547e23f5d459c"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/var/lib/rpm/Packages"
+        },
+        {
+          "name": "syft:metadata:release",
+          "value": "8.amzn2.1.1"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "793455"
+        },
+        {
+          "name": "syft:metadata:sourceRpm",
+          "value": "sqlite-3.7.17-8.amzn2.1.1.src.rpm"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:rpm/amzn/system-release@2-11.amzn2?arch=x86_64&epoch=1&upstream=system-release-2-11.amzn2.src.rpm&distro=amzn-2&package-id=5133e44f57abe2ff",
+      "type": "library",
+      "publisher": "Amazon Linux",
+      "name": "system-release",
+      "version": "1:2-11.amzn2",
+      "licenses": [
+        {
+          "license": {
+            "name": "GPLv2"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:system-release:system-release:1\\:2-11.amzn2:*:*:*:*:*:*:*",
+      "purl": "pkg:rpm/amzn/system-release@2-11.amzn2?arch=x86_64&epoch=1&upstream=system-release-2-11.amzn2.src.rpm&distro=amzn-2",
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "rpm-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "rpm"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "rpm-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:system-release:system_release:1\\:2-11.amzn2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:system_release:system-release:1\\:2-11.amzn2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:system_release:system_release:1\\:2-11.amzn2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:amazonlinux:system-release:1\\:2-11.amzn2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:amazonlinux:system_release:1\\:2-11.amzn2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:system:system-release:1\\:2-11.amzn2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:system:system_release:1\\:2-11.amzn2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:fc24ab7e0293a749fddb0110597d42b4d29f1ae143bae880417547e23f5d459c"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/var/lib/rpm/Packages"
+        },
+        {
+          "name": "syft:metadata:epoch",
+          "value": "1"
+        },
+        {
+          "name": "syft:metadata:release",
+          "value": "11.amzn2"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "26653"
+        },
+        {
+          "name": "syft:metadata:sourceRpm",
+          "value": "system-release-2-11.amzn2.src.rpm"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:rpm/amzn/tzdata@2019c-1.amzn2?arch=noarch&upstream=tzdata-2019c-1.amzn2.src.rpm&distro=amzn-2&package-id=e2f6ae9e505cc111",
+      "type": "library",
+      "publisher": "Amazon Linux",
+      "name": "tzdata",
+      "version": "2019c-1.amzn2",
+      "licenses": [
+        {
+          "license": {
+            "name": "Public Domain"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:amazonlinux:tzdata:2019c-1.amzn2:*:*:*:*:*:*:*",
+      "purl": "pkg:rpm/amzn/tzdata@2019c-1.amzn2?arch=noarch&upstream=tzdata-2019c-1.amzn2.src.rpm&distro=amzn-2",
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "rpm-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "rpm"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "rpm-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:tzdata:tzdata:2019c-1.amzn2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:fc24ab7e0293a749fddb0110597d42b4d29f1ae143bae880417547e23f5d459c"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/var/lib/rpm/Packages"
+        },
+        {
+          "name": "syft:metadata:release",
+          "value": "1.amzn2"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "1904440"
+        },
+        {
+          "name": "syft:metadata:sourceRpm",
+          "value": "tzdata-2019c-1.amzn2.src.rpm"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:pypi/urlgrabber@3.10?package-id=99bb2ec318c6118f",
+      "type": "library",
+      "author": "Michael D. Stenner, Ryan Tomayko <mstenner@linux.duke.edu, zpavlas@redhat.com>",
+      "name": "urlgrabber",
+      "version": "3.10",
+      "licenses": [
+        {
+          "license": {
+            "name": "LGPL"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:michael_d__stenner\\,_ryan_tomayko_project:python-urlgrabber:3.10:*:*:*:*:*:*:*",
+      "purl": "pkg:pypi/urlgrabber@3.10",
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "python-installed-package-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "python"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "python"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "python-package"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:michael_d__stenner\\,_ryan_tomayko_project:python_urlgrabber:3.10:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:michael_d__stenner\\,_ryan_tomaykoproject:python-urlgrabber:3.10:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:michael_d__stenner\\,_ryan_tomaykoproject:python_urlgrabber:3.10:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:michael_d__stenner\\,_ryan_tomayko_project:urlgrabber:3.10:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:michael_d__stenner\\,_ryan_tomayko:python-urlgrabber:3.10:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:michael_d__stenner\\,_ryan_tomayko:python_urlgrabber:3.10:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:michael_d__stenner\\,_ryan_tomaykoproject:urlgrabber:3.10:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:michael_d__stenner\\,_ryan_tomayko:urlgrabber:3.10:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python-urlgrabber:python-urlgrabber:3.10:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python-urlgrabber:python_urlgrabber:3.10:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python_urlgrabber:python-urlgrabber:3.10:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python_urlgrabber:python_urlgrabber:3.10:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:mstenner_project:python-urlgrabber:3.10:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:mstenner_project:python_urlgrabber:3.10:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:mstennerproject:python-urlgrabber:3.10:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:mstennerproject:python_urlgrabber:3.10:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python-urlgrabber:urlgrabber:3.10:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python_urlgrabber:urlgrabber:3.10:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:urlgrabber:python-urlgrabber:3.10:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:urlgrabber:python_urlgrabber:3.10:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:mstenner_project:urlgrabber:3.10:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:mstenner:python-urlgrabber:3.10:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:mstenner:python_urlgrabber:3.10:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:mstennerproject:urlgrabber:3.10:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python:python-urlgrabber:3.10:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python:python_urlgrabber:3.10:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:urlgrabber:urlgrabber:3.10:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:mstenner:urlgrabber:3.10:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python:urlgrabber:3.10:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:9f856a31a19b9076c45195825844d89d7dad641870d1bd10c66579ff6bc1a0b4"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/usr/lib/python2.7/site-packages/urlgrabber-3.10-py2.7.egg-info"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:rpm/amzn/vim-minimal@8.1.1602-1.amzn2?arch=x86_64&epoch=2&upstream=vim-8.1.1602-1.amzn2.src.rpm&distro=amzn-2&package-id=1e714dcf72aab0ca",
+      "type": "library",
+      "publisher": "Amazon Linux",
+      "name": "vim-minimal",
+      "version": "2:8.1.1602-1.amzn2",
+      "licenses": [
+        {
+          "license": {
+            "name": "Vim and MIT"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:amazonlinux:vim-minimal:2\\:8.1.1602-1.amzn2:*:*:*:*:*:*:*",
+      "purl": "pkg:rpm/amzn/vim-minimal@8.1.1602-1.amzn2?arch=x86_64&epoch=2&upstream=vim-8.1.1602-1.amzn2.src.rpm&distro=amzn-2",
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "rpm-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "rpm"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "rpm-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:amazonlinux:vim_minimal:2\\:8.1.1602-1.amzn2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:vim-minimal:vim-minimal:2\\:8.1.1602-1.amzn2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:vim-minimal:vim_minimal:2\\:8.1.1602-1.amzn2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:vim_minimal:vim-minimal:2\\:8.1.1602-1.amzn2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:vim_minimal:vim_minimal:2\\:8.1.1602-1.amzn2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:vim:vim-minimal:2\\:8.1.1602-1.amzn2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:vim:vim_minimal:2\\:8.1.1602-1.amzn2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:fc24ab7e0293a749fddb0110597d42b4d29f1ae143bae880417547e23f5d459c"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/var/lib/rpm/Packages"
+        },
+        {
+          "name": "syft:metadata:epoch",
+          "value": "2"
+        },
+        {
+          "name": "syft:metadata:release",
+          "value": "1.amzn2"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "1156692"
+        },
+        {
+          "name": "syft:metadata:sourceRpm",
+          "value": "vim-8.1.1602-1.amzn2.src.rpm"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:pypi/wsgiref@0.1.2?package-id=209dc54cc2d861d3",
+      "type": "library",
+      "author": "Phillip J. Eby <web-sig@python.org>",
+      "name": "wsgiref",
+      "version": "0.1.2",
+      "licenses": [
+        {
+          "license": {
+            "name": "PSF or ZPL"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:phillip_j__eby_project:python-wsgiref:0.1.2:*:*:*:*:*:*:*",
+      "purl": "pkg:pypi/wsgiref@0.1.2",
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "python-installed-package-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "python"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "python"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "python-package"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:phillip_j__eby_project:python_wsgiref:0.1.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:phillip_j__ebyproject:python-wsgiref:0.1.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:phillip_j__ebyproject:python_wsgiref:0.1.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:phillip_j__eby_project:wsgiref:0.1.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:web_sig_project:python-wsgiref:0.1.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:web_sig_project:python_wsgiref:0.1.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:phillip_j__eby:python-wsgiref:0.1.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:phillip_j__eby:python_wsgiref:0.1.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:phillip_j__ebyproject:wsgiref:0.1.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python-wsgiref:python-wsgiref:0.1.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python-wsgiref:python_wsgiref:0.1.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python_wsgiref:python-wsgiref:0.1.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python_wsgiref:python_wsgiref:0.1.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:web_sigproject:python-wsgiref:0.1.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:web_sigproject:python_wsgiref:0.1.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:web_sig_project:wsgiref:0.1.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:phillip_j__eby:wsgiref:0.1.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python-wsgiref:wsgiref:0.1.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python_wsgiref:wsgiref:0.1.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:web-sig:python-wsgiref:0.1.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:web-sig:python_wsgiref:0.1.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:web_sig:python-wsgiref:0.1.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:web_sig:python_wsgiref:0.1.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:web_sigproject:wsgiref:0.1.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:wsgiref:python-wsgiref:0.1.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:wsgiref:python_wsgiref:0.1.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python:python-wsgiref:0.1.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python:python_wsgiref:0.1.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:web-sig:wsgiref:0.1.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:web_sig:wsgiref:0.1.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:wsgiref:wsgiref:0.1.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python:wsgiref:0.1.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:9f856a31a19b9076c45195825844d89d7dad641870d1bd10c66579ff6bc1a0b4"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/usr/lib64/python2.7/wsgiref.egg-info"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:rpm/amzn/xz-libs@5.2.2-1.amzn2.0.2?arch=x86_64&upstream=xz-5.2.2-1.amzn2.0.2.src.rpm&distro=amzn-2&package-id=948ac7a6d34f83f6",
+      "type": "library",
+      "publisher": "Amazon Linux",
+      "name": "xz-libs",
+      "version": "5.2.2-1.amzn2.0.2",
+      "licenses": [
+        {
+          "license": {
+            "name": "LGPLv2+"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:amazonlinux:xz-libs:5.2.2-1.amzn2.0.2:*:*:*:*:*:*:*",
+      "purl": "pkg:rpm/amzn/xz-libs@5.2.2-1.amzn2.0.2?arch=x86_64&upstream=xz-5.2.2-1.amzn2.0.2.src.rpm&distro=amzn-2",
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "rpm-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "rpm"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "rpm-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:amazonlinux:xz_libs:5.2.2-1.amzn2.0.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:xz-libs:xz-libs:5.2.2-1.amzn2.0.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:xz-libs:xz_libs:5.2.2-1.amzn2.0.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:xz_libs:xz-libs:5.2.2-1.amzn2.0.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:xz_libs:xz_libs:5.2.2-1.amzn2.0.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:xz:xz-libs:5.2.2-1.amzn2.0.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:xz:xz_libs:5.2.2-1.amzn2.0.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:fc24ab7e0293a749fddb0110597d42b4d29f1ae143bae880417547e23f5d459c"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/var/lib/rpm/Packages"
+        },
+        {
+          "name": "syft:metadata:release",
+          "value": "1.amzn2.0.2"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "239943"
+        },
+        {
+          "name": "syft:metadata:sourceRpm",
+          "value": "xz-5.2.2-1.amzn2.0.2.src.rpm"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:rpm/amzn/yum@3.4.3-158.amzn2.0.3?arch=noarch&upstream=yum-3.4.3-158.amzn2.0.3.src.rpm&distro=amzn-2&package-id=668195b1b72254ac",
+      "type": "library",
+      "publisher": "Amazon Linux",
+      "name": "yum",
+      "version": "3.4.3-158.amzn2.0.3",
+      "licenses": [
+        {
+          "license": {
+            "name": "GPLv2+"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:amazonlinux:yum:3.4.3-158.amzn2.0.3:*:*:*:*:*:*:*",
+      "purl": "pkg:rpm/amzn/yum@3.4.3-158.amzn2.0.3?arch=noarch&upstream=yum-3.4.3-158.amzn2.0.3.src.rpm&distro=amzn-2",
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "rpm-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "rpm"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "rpm-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:yum:yum:3.4.3-158.amzn2.0.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:fc24ab7e0293a749fddb0110597d42b4d29f1ae143bae880417547e23f5d459c"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/var/lib/rpm/Packages"
+        },
+        {
+          "name": "syft:metadata:release",
+          "value": "158.amzn2.0.3"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "5811871"
+        },
+        {
+          "name": "syft:metadata:sourceRpm",
+          "value": "yum-3.4.3-158.amzn2.0.3.src.rpm"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:pypi/yum-metadata-parser@1.1.4?package-id=bb47ea838db7fd39",
+      "type": "library",
+      "author": "UNKNOWN <UNKNOWN>",
+      "name": "yum-metadata-parser",
+      "version": "1.1.4",
+      "licenses": [
+        {
+          "license": {
+            "name": "UNKNOWN"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:python-yum-metadata-parser:python-yum-metadata-parser:1.1.4:*:*:*:*:*:*:*",
+      "purl": "pkg:pypi/yum-metadata-parser@1.1.4",
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "python-installed-package-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "python"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "python"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "python-package"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python-yum-metadata-parser:python_yum_metadata_parser:1.1.4:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python_yum_metadata_parser:python-yum-metadata-parser:1.1.4:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python_yum_metadata_parser:python_yum_metadata_parser:1.1.4:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python-yum-metadata-parser:yum-metadata-parser:1.1.4:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python-yum-metadata-parser:yum_metadata_parser:1.1.4:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python-yum-metadata:python-yum-metadata-parser:1.1.4:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python-yum-metadata:python_yum_metadata_parser:1.1.4:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python_yum_metadata:python-yum-metadata-parser:1.1.4:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python_yum_metadata:python_yum_metadata_parser:1.1.4:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python_yum_metadata_parser:yum-metadata-parser:1.1.4:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python_yum_metadata_parser:yum_metadata_parser:1.1.4:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:yum-metadata-parser:python-yum-metadata-parser:1.1.4:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:yum-metadata-parser:python_yum_metadata_parser:1.1.4:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:yum_metadata_parser:python-yum-metadata-parser:1.1.4:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:yum_metadata_parser:python_yum_metadata_parser:1.1.4:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:unknown_project:python-yum-metadata-parser:1.1.4:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:unknown_project:python_yum_metadata_parser:1.1.4:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:unknownproject:python-yum-metadata-parser:1.1.4:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:unknownproject:python_yum_metadata_parser:1.1.4:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python-yum-metadata:yum-metadata-parser:1.1.4:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python-yum-metadata:yum_metadata_parser:1.1.4:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python_yum_metadata:yum-metadata-parser:1.1.4:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python_yum_metadata:yum_metadata_parser:1.1.4:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:yum-metadata-parser:yum-metadata-parser:1.1.4:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:yum-metadata-parser:yum_metadata_parser:1.1.4:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:yum-metadata:python-yum-metadata-parser:1.1.4:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:yum-metadata:python_yum_metadata_parser:1.1.4:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:yum_metadata:python-yum-metadata-parser:1.1.4:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:yum_metadata:python_yum_metadata_parser:1.1.4:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:yum_metadata_parser:yum-metadata-parser:1.1.4:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:yum_metadata_parser:yum_metadata_parser:1.1.4:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python-yum:python-yum-metadata-parser:1.1.4:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python-yum:python_yum_metadata_parser:1.1.4:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python_yum:python-yum-metadata-parser:1.1.4:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python_yum:python_yum_metadata_parser:1.1.4:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:unknown_project:yum-metadata-parser:1.1.4:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:unknown_project:yum_metadata_parser:1.1.4:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:unknown:python-yum-metadata-parser:1.1.4:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:unknown:python_yum_metadata_parser:1.1.4:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:unknownproject:yum-metadata-parser:1.1.4:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:unknownproject:yum_metadata_parser:1.1.4:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python:python-yum-metadata-parser:1.1.4:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python:python_yum_metadata_parser:1.1.4:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:yum-metadata:yum-metadata-parser:1.1.4:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:yum-metadata:yum_metadata_parser:1.1.4:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:yum_metadata:yum-metadata-parser:1.1.4:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:yum_metadata:yum_metadata_parser:1.1.4:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python-yum:yum-metadata-parser:1.1.4:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python-yum:yum_metadata_parser:1.1.4:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python_yum:yum-metadata-parser:1.1.4:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python_yum:yum_metadata_parser:1.1.4:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:yum:python-yum-metadata-parser:1.1.4:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:yum:python_yum_metadata_parser:1.1.4:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:unknown:yum-metadata-parser:1.1.4:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:unknown:yum_metadata_parser:1.1.4:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python:yum-metadata-parser:1.1.4:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:python:yum_metadata_parser:1.1.4:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:yum:yum-metadata-parser:1.1.4:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:yum:yum_metadata_parser:1.1.4:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:9f856a31a19b9076c45195825844d89d7dad641870d1bd10c66579ff6bc1a0b4"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/usr/lib64/python2.7/site-packages/yum_metadata_parser-1.1.4-py2.7.egg-info"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:rpm/amzn/yum-metadata-parser@1.1.4-10.amzn2.0.2?arch=x86_64&upstream=yum-metadata-parser-1.1.4-10.amzn2.0.2.src.rpm&distro=amzn-2&package-id=d6406a32ec41625e",
+      "type": "library",
+      "publisher": "Amazon Linux",
+      "name": "yum-metadata-parser",
+      "version": "1.1.4-10.amzn2.0.2",
+      "licenses": [
+        {
+          "license": {
+            "name": "GPLv2"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:yum-metadata-parser:yum-metadata-parser:1.1.4-10.amzn2.0.2:*:*:*:*:*:*:*",
+      "purl": "pkg:rpm/amzn/yum-metadata-parser@1.1.4-10.amzn2.0.2?arch=x86_64&upstream=yum-metadata-parser-1.1.4-10.amzn2.0.2.src.rpm&distro=amzn-2",
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "rpm-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "rpm"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "rpm-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:yum-metadata-parser:yum_metadata_parser:1.1.4-10.amzn2.0.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:yum_metadata_parser:yum-metadata-parser:1.1.4-10.amzn2.0.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:yum_metadata_parser:yum_metadata_parser:1.1.4-10.amzn2.0.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:yum-metadata:yum-metadata-parser:1.1.4-10.amzn2.0.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:yum-metadata:yum_metadata_parser:1.1.4-10.amzn2.0.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:yum_metadata:yum-metadata-parser:1.1.4-10.amzn2.0.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:yum_metadata:yum_metadata_parser:1.1.4-10.amzn2.0.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:amazonlinux:yum-metadata-parser:1.1.4-10.amzn2.0.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:amazonlinux:yum_metadata_parser:1.1.4-10.amzn2.0.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:yum:yum-metadata-parser:1.1.4-10.amzn2.0.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:yum:yum_metadata_parser:1.1.4-10.amzn2.0.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:fc24ab7e0293a749fddb0110597d42b4d29f1ae143bae880417547e23f5d459c"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/var/lib/rpm/Packages"
+        },
+        {
+          "name": "syft:metadata:release",
+          "value": "10.amzn2.0.2"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "58701"
+        },
+        {
+          "name": "syft:metadata:sourceRpm",
+          "value": "yum-metadata-parser-1.1.4-10.amzn2.0.2.src.rpm"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:rpm/amzn/yum-plugin-ovl@1.1.31-46.amzn2.0.1?arch=noarch&upstream=yum-utils-1.1.31-46.amzn2.0.1.src.rpm&distro=amzn-2&package-id=6cd4cd31bb087764",
+      "type": "library",
+      "publisher": "Amazon Linux",
+      "name": "yum-plugin-ovl",
+      "version": "1.1.31-46.amzn2.0.1",
+      "licenses": [
+        {
+          "license": {
+            "name": "GPLv2+"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:yum-plugin-ovl:yum-plugin-ovl:1.1.31-46.amzn2.0.1:*:*:*:*:*:*:*",
+      "purl": "pkg:rpm/amzn/yum-plugin-ovl@1.1.31-46.amzn2.0.1?arch=noarch&upstream=yum-utils-1.1.31-46.amzn2.0.1.src.rpm&distro=amzn-2",
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "rpm-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "rpm"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "rpm-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:yum-plugin-ovl:yum_plugin_ovl:1.1.31-46.amzn2.0.1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:yum_plugin_ovl:yum-plugin-ovl:1.1.31-46.amzn2.0.1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:yum_plugin_ovl:yum_plugin_ovl:1.1.31-46.amzn2.0.1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:amazonlinux:yum-plugin-ovl:1.1.31-46.amzn2.0.1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:amazonlinux:yum_plugin_ovl:1.1.31-46.amzn2.0.1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:yum-plugin:yum-plugin-ovl:1.1.31-46.amzn2.0.1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:yum-plugin:yum_plugin_ovl:1.1.31-46.amzn2.0.1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:yum_plugin:yum-plugin-ovl:1.1.31-46.amzn2.0.1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:yum_plugin:yum_plugin_ovl:1.1.31-46.amzn2.0.1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:yum:yum-plugin-ovl:1.1.31-46.amzn2.0.1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:yum:yum_plugin_ovl:1.1.31-46.amzn2.0.1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:fc24ab7e0293a749fddb0110597d42b4d29f1ae143bae880417547e23f5d459c"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/var/lib/rpm/Packages"
+        },
+        {
+          "name": "syft:metadata:release",
+          "value": "46.amzn2.0.1"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "22399"
+        },
+        {
+          "name": "syft:metadata:sourceRpm",
+          "value": "yum-utils-1.1.31-46.amzn2.0.1.src.rpm"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:rpm/amzn/yum-plugin-priorities@1.1.31-46.amzn2.0.1?arch=noarch&upstream=yum-utils-1.1.31-46.amzn2.0.1.src.rpm&distro=amzn-2&package-id=23e0162115ef74a8",
+      "type": "library",
+      "publisher": "Amazon Linux",
+      "name": "yum-plugin-priorities",
+      "version": "1.1.31-46.amzn2.0.1",
+      "licenses": [
+        {
+          "license": {
+            "name": "GPLv2+"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:yum-plugin-priorities:yum-plugin-priorities:1.1.31-46.amzn2.0.1:*:*:*:*:*:*:*",
+      "purl": "pkg:rpm/amzn/yum-plugin-priorities@1.1.31-46.amzn2.0.1?arch=noarch&upstream=yum-utils-1.1.31-46.amzn2.0.1.src.rpm&distro=amzn-2",
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "rpm-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "rpm"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "rpm-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:yum-plugin-priorities:yum_plugin_priorities:1.1.31-46.amzn2.0.1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:yum_plugin_priorities:yum-plugin-priorities:1.1.31-46.amzn2.0.1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:yum_plugin_priorities:yum_plugin_priorities:1.1.31-46.amzn2.0.1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:amazonlinux:yum-plugin-priorities:1.1.31-46.amzn2.0.1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:amazonlinux:yum_plugin_priorities:1.1.31-46.amzn2.0.1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:yum-plugin:yum-plugin-priorities:1.1.31-46.amzn2.0.1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:yum-plugin:yum_plugin_priorities:1.1.31-46.amzn2.0.1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:yum_plugin:yum-plugin-priorities:1.1.31-46.amzn2.0.1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:yum_plugin:yum_plugin_priorities:1.1.31-46.amzn2.0.1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:yum:yum-plugin-priorities:1.1.31-46.amzn2.0.1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:yum:yum_plugin_priorities:1.1.31-46.amzn2.0.1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:fc24ab7e0293a749fddb0110597d42b4d29f1ae143bae880417547e23f5d459c"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/var/lib/rpm/Packages"
+        },
+        {
+          "name": "syft:metadata:release",
+          "value": "46.amzn2.0.1"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "29155"
+        },
+        {
+          "name": "syft:metadata:sourceRpm",
+          "value": "yum-utils-1.1.31-46.amzn2.0.1.src.rpm"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:rpm/amzn/zlib@1.2.7-18.amzn2?arch=x86_64&upstream=zlib-1.2.7-18.amzn2.src.rpm&distro=amzn-2&package-id=c0cf775539092aff",
+      "type": "library",
+      "publisher": "Amazon Linux",
+      "name": "zlib",
+      "version": "1.2.7-18.amzn2",
+      "licenses": [
+        {
+          "license": {
+            "name": "zlib and Boost"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:amazonlinux:zlib:1.2.7-18.amzn2:*:*:*:*:*:*:*",
+      "purl": "pkg:rpm/amzn/zlib@1.2.7-18.amzn2?arch=x86_64&upstream=zlib-1.2.7-18.amzn2.src.rpm&distro=amzn-2",
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "rpm-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "rpm"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "rpm-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:zlib:zlib:1.2.7-18.amzn2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:fc24ab7e0293a749fddb0110597d42b4d29f1ae143bae880417547e23f5d459c"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/var/lib/rpm/Packages"
+        },
+        {
+          "name": "syft:metadata:release",
+          "value": "18.amzn2"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "181022"
+        },
+        {
+          "name": "syft:metadata:sourceRpm",
+          "value": "zlib-1.2.7-18.amzn2.src.rpm"
+        }
+      ]
+    },
+    {
+      "type": "operating-system",
+      "name": "amzn",
+      "version": "2",
+      "description": "Amazon Linux 2",
+      "cpe": "cpe:2.3:o:amazon:amazon_linux:2:*:*:*:*:*:*:*",
+      "swid": {
+        "tagId": "amzn",
+        "name": "amzn",
+        "version": "2"
+      },
+      "externalReferences": [
+        {
+          "url": "https://amazonlinux.com/",
+          "type": "website"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:distro:id",
+          "value": "amzn"
+        },
+        {
+          "name": "syft:distro:idLike:0",
+          "value": "centos"
+        },
+        {
+          "name": "syft:distro:idLike:1",
+          "value": "rhel"
+        },
+        {
+          "name": "syft:distro:idLike:2",
+          "value": "fedora"
+        },
+        {
+          "name": "syft:distro:prettyName",
+          "value": "Amazon Linux 2"
+        },
+        {
+          "name": "syft:distro:versionID",
+          "value": "2"
+        }
+      ]
+    }
+  ],
+  "vulnerabilities": [
+    {
+      "bom-ref": "urn:uuid:75f2ebd6-8348-48bb-b94c-d277c39a6292",
+      "id": "ALAS-2020-1432",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2020-1432.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2020-1432",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2020-1432.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "http.cookiejar.DefaultPolicy.domain_return_ok in Lib/http/cookiejar.py in Python before 3.7.3 does not correctly validate the domain: it can be tricked into sending existing cookies to the wrong server. An attacker may abuse this flaw by using a server with a hostname that has another valid hostname as a suffix (e.g., pythonicexample.com to steal cookies for example.com). When a program uses http.cookiejar.DefaultPolicy and tries to do an HTTP connection to an attacker-controlled server, existing cookies can be leaked to the attacker. This affects 2.x through 2.7.16, 3.x before 3.4.10, 3.5.x before 3.5.7, 3.6.x before 3.6.9, and 3.7.x before 3.7.3.(CVE-2018-20852)Python 2.7 through 2.7.17, 3.5 through 3.5.9, 3.6 through 3.6.10, 3.7 through 3.7.6, and 3.8 through 3.8.1 allows an HTTP server to conduct Regular Expression Denial of Service (ReDoS) attacks against a client because of urllib.request.AbstractBasicAuthHandler catastrophic backtracking.(CVE-2020-8492)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2020-1432.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/python@2.7.16-5.amzn2?arch=x86_64&upstream=python-2.7.16-5.amzn2.src.rpm&distro=amzn-2&package-id=e3d1c4f13c624d72"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:12fef644-65f0-4295-9ac3-b2e06b73f865",
+      "id": "ALAS-2020-1432",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2020-1432.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2020-1432",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2020-1432.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "http.cookiejar.DefaultPolicy.domain_return_ok in Lib/http/cookiejar.py in Python before 3.7.3 does not correctly validate the domain: it can be tricked into sending existing cookies to the wrong server. An attacker may abuse this flaw by using a server with a hostname that has another valid hostname as a suffix (e.g., pythonicexample.com to steal cookies for example.com). When a program uses http.cookiejar.DefaultPolicy and tries to do an HTTP connection to an attacker-controlled server, existing cookies can be leaked to the attacker. This affects 2.x through 2.7.16, 3.x before 3.4.10, 3.5.x before 3.5.7, 3.6.x before 3.6.9, and 3.7.x before 3.7.3.(CVE-2018-20852)Python 2.7 through 2.7.17, 3.5 through 3.5.9, 3.6 through 3.6.10, 3.7 through 3.7.6, and 3.8 through 3.8.1 allows an HTTP server to conduct Regular Expression Denial of Service (ReDoS) attacks against a client because of urllib.request.AbstractBasicAuthHandler catastrophic backtracking.(CVE-2020-8492)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2020-1432.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/python-libs@2.7.16-5.amzn2?arch=x86_64&upstream=python-2.7.16-5.amzn2.src.rpm&distro=amzn-2&package-id=648306be89232862"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:38927236-d98f-4e47-a88f-9d7a89471456",
+      "id": "ALAS-2020-1445",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2020-1445.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2020-1445",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2020-1445.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "high"
+        }
+      ],
+      "description": "In nghttp2 before version 1.41.0, the overly large HTTP/2 SETTINGS frame payload causes denial of service. The proof of concept attack involves a malicious client constructing a SETTINGS frame with a length of 14,400 bytes (2400 individual settings entries) over and over again. The attack causes the CPU to spike at 100%. nghttp2 v1.41.0 fixes this vulnerability. There is a workaround to this vulnerability. Implement nghttp2_on_frame_recv_callback callback, and if received frame is SETTINGS frame and the number of settings entries are large (e.g., > 32), then drop the connection. (CVE-2020-11080)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2020-1445.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/libnghttp2@1.39.2-1.amzn2?arch=x86_64&upstream=nghttp2-1.39.2-1.amzn2.src.rpm&distro=amzn-2&package-id=fda057e615d46988"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:afdb5c06-5ee6-453a-8096-1513baf5f601",
+      "id": "ALAS-2020-1451",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2020-1451.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2020-1451",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2020-1451.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "command line arguments lead to local file overwrite (CVE-2020-8177)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2020-1451.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/curl@7.61.1-12.amzn2.0.1?arch=x86_64&upstream=curl-7.61.1-12.amzn2.0.1.src.rpm&distro=amzn-2&package-id=5faf529a869872aa"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:ac0f2ee5-fa75-4b9c-b9bd-8074ba9600d4",
+      "id": "ALAS-2020-1451",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2020-1451.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2020-1451",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2020-1451.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "command line arguments lead to local file overwrite (CVE-2020-8177)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2020-1451.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/libcurl@7.61.1-12.amzn2.0.1?arch=x86_64&upstream=curl-7.61.1-12.amzn2.0.1.src.rpm&distro=amzn-2&package-id=1008415a12c5a3d8"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:c8c01f44-c4f5-4d12-9e4a-a2b6a7f21905",
+      "id": "ALAS-2020-1452",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2020-1452.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2020-1452",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2020-1452.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "low"
+        }
+      ],
+      "description": "The do_core_note function in readelf.c in libmagic.a in file 5.33 allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via a crafted ELF file. (CVE-2018-10360)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2020-1452.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/file-libs@5.11-35.amzn2.0.2?arch=x86_64&upstream=file-5.11-35.amzn2.0.2.src.rpm&distro=amzn-2&package-id=e415701a70b1f63d"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:f3b64f3c-dad5-4ad6-aa8f-51082665caf1",
+      "id": "ALAS-2020-1466",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2020-1466.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2020-1466",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2020-1466.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "high"
+        }
+      ],
+      "description": "A NULL pointer dereference vulnerability exists in the xpath.c:xmlXPathCompOpEval() function of libxml2 through 2.9.8 when parsing an invalid XPath expression in the XPATH_OP_AND or XPATH_OP_OR case. Applications processing untrusted XSL format inputs with the use of the libxml2 library may be vulnerable to a denial of service attack due to a crash of the application. (CVE-2018-14404)Use after free in libxml2 before 2.9.5, as used in Google Chrome prior to 63.0.3239.84 and other products, allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (CVE-2017-15412)A denial of service flaw was found in libxml2. A remote attacker could provide a specially crafted XML or HTML file that, when processed by an application using libxml2, would cause that application to crash. (CVE-2015-8035)libxml2 2.9.8, if --with-lzma is used, allows remote attackers to cause a denial of service (infinite loop) via a crafted XML file that triggers LZMA_MEMLIMIT_ERROR, as demonstrated by xmllint, a different vulnerability than CVE-2015-8035 and CVE-2018-9251. (CVE-2018-14567)The xz_head function in xzlib.c in libxml2 before 2.9.6 allows remote attackers to cause a denial of service (memory consumption) via a crafted LZMA file, because the decoder functionality does not restrict memory usage to what is required for a legitimate file. (CVE-2017-18258)Use-after-free vulnerability in libxml2 through 2.9.4, as used in Google Chrome before 52.0.2743.82, allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to the XPointer range-to function. (CVE-2016-5131)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2020-1466.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/libxml2@2.9.1-6.amzn2.3.3?arch=x86_64&upstream=libxml2-2.9.1-6.amzn2.3.3.src.rpm&distro=amzn-2&package-id=7ebe618675e23846"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:fca24265-049b-4805-9e8e-7d8e9e1e7760",
+      "id": "ALAS-2020-1471",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2020-1471.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2020-1471",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2020-1471.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "Python 2.7 through 2.7.17, 3.5 through 3.5.9, 3.6 through 3.6.10, 3.7 through 3.7.6, and 3.8 through 3.8.1 allows an HTTP server to conduct Regular Expression Denial of Service (ReDoS) attacks against a client because of urllib.request.AbstractBasicAuthHandler catastrophic backtracking. (CVE-2020-8492)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2020-1471.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/python@2.7.16-5.amzn2?arch=x86_64&upstream=python-2.7.16-5.amzn2.src.rpm&distro=amzn-2&package-id=e3d1c4f13c624d72"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:433eb0a5-6d44-4eb6-8525-80a6a3ec4ae3",
+      "id": "ALAS-2020-1471",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2020-1471.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2020-1471",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2020-1471.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "Python 2.7 through 2.7.17, 3.5 through 3.5.9, 3.6 through 3.6.10, 3.7 through 3.7.6, and 3.8 through 3.8.1 allows an HTTP server to conduct Regular Expression Denial of Service (ReDoS) attacks against a client because of urllib.request.AbstractBasicAuthHandler catastrophic backtracking. (CVE-2020-8492)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2020-1471.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/python-libs@2.7.16-5.amzn2?arch=x86_64&upstream=python-2.7.16-5.amzn2.src.rpm&distro=amzn-2&package-id=648306be89232862"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:cc4bd777-ce7c-4f71-9b5f-cfaa9d302ba5",
+      "id": "ALAS-2020-1483",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2020-1483.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2020-1483",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2020-1483.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "In Lib/tarfile.py in Python through 3.8.3, an attacker is able to craft a TAR archive leading to an infinite loop when opened by tarfile.open, because _proc_pax lacks header validation. (CVE-2019-20907)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2020-1483.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/python@2.7.16-5.amzn2?arch=x86_64&upstream=python-2.7.16-5.amzn2.src.rpm&distro=amzn-2&package-id=e3d1c4f13c624d72"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:69237dee-7630-4aaf-ba6e-4f4db7bcc3a3",
+      "id": "ALAS-2020-1483",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2020-1483.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2020-1483",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2020-1483.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "In Lib/tarfile.py in Python through 3.8.3, an attacker is able to craft a TAR archive leading to an infinite loop when opened by tarfile.open, because _proc_pax lacks header validation. (CVE-2019-20907)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2020-1483.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/python-libs@2.7.16-5.amzn2?arch=x86_64&upstream=python-2.7.16-5.amzn2.src.rpm&distro=amzn-2&package-id=648306be89232862"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:a7d5b5c9-f1b5-4d75-8f23-6a037a2759ec",
+      "id": "ALAS-2020-1503",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2020-1503.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2020-1503",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2020-1503.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "rbash in Bash before 4.4-beta2 did not prevent the shell user from modifying BASH_CMDS, thus allowing the user to execute any command with the permissions of the shell. (CVE-2019-9924)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2020-1503.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/bash@4.2.46-33.amzn2?arch=x86_64&upstream=bash-4.2.46-33.amzn2.src.rpm&distro=amzn-2&package-id=b0423b5d2ac2263a"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:4a88b32a-2576-45b8-a52b-8ab8b705454e",
+      "id": "ALAS-2020-1505",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2020-1505.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2020-1505",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2020-1505.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "It was discovered cpio does not properly validate input files when generating TAR archives. When cpio is used to create TAR archives from paths an attacker can write to, the resulting archive may contain files with permissions the attacker did not have or in paths he did not have access to. Extracting those archives from a high-privilege user without carefully reviewing them may lead to the compromise of the system. (CVE-2019-14866)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2020-1505.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/cpio@2.11-27.amzn2?arch=x86_64&upstream=cpio-2.11-27.amzn2.src.rpm&distro=amzn-2&package-id=26638dc22ca9e9af"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:e957106f-73a5-4556-96e9-d36dd540dfa0",
+      "id": "ALAS-2020-1509",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2020-1509.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2020-1509",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2020-1509.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "An exploitable code execution vulnerability exists in the quota file functionality of E2fsprogs 1.45.3. A specially crafted ext4 partition can cause an out-of-bounds write on the heap, resulting in code execution. An attacker can corrupt a partition to trigger this vulnerability. (CVE-2019-5094)A code execution vulnerability exists in the directory rehashing functionality of E2fsprogs e2fsck 1.45.4. A specially crafted ext4 directory can cause an out-of-bounds write on the stack, resulting in code execution. An attacker can corrupt a partition to trigger this vulnerability. (CVE-2019-5188)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2020-1509.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/libcom_err@1.42.9-12.amzn2.0.2?arch=x86_64&upstream=e2fsprogs-1.42.9-12.amzn2.0.2.src.rpm&distro=amzn-2&package-id=40d723d40ba5f08c"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:24c78c77-5021-4696-bdc0-3367544095dc",
+      "id": "ALAS-2020-1513",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2020-1513.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2020-1513",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2020-1513.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "It was discovered that the \"setElementTypePrefix()\" function incorrectly extracted XML namespace prefixes. By tricking an application into processing a specially crafted XML file, an attacker could cause unusually high consumption of memory resources and possibly lead to a denial of service. (CVE-2018-20843)In libexpat before 2.2.8, crafted XML input could fool the parser into changing from DTD parsing to document parsing too early; a consecutive call to XML_GetCurrentLineNumber (or XML_GetCurrentColumnNumber) then resulted in a heap-based buffer over-read. (CVE-2019-15903)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2020-1513.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/expat@2.1.0-10.amzn2.0.2?arch=x86_64&upstream=expat-2.1.0-10.amzn2.0.2.src.rpm&distro=amzn-2&package-id=448f7f65e0358bba"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:8345639a-5298-4bae-8aed-169d03c19e27",
+      "id": "ALAS-2020-1517",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2020-1517.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2020-1517",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2020-1517.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "In the GNU C Library (aka glibc or libc6) through 2.28, the getaddrinfo function would successfully parse a string that contained an IPv4 address followed by whitespace and arbitrary characters, which could lead applications to incorrectly assume that it had parsed a valid string, without the possibility of embedded HTTP headers or other potentially dangerous substrings. (CVE-2016-10739)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2020-1517.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/glibc@2.26-34.amzn2?arch=x86_64&upstream=glibc-2.26-34.amzn2.src.rpm&distro=amzn-2&package-id=aaf9f40aee775d65"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:e114e7c0-36af-4023-bab0-64ac5f04316f",
+      "id": "ALAS-2020-1517",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2020-1517.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2020-1517",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2020-1517.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "In the GNU C Library (aka glibc or libc6) through 2.28, the getaddrinfo function would successfully parse a string that contained an IPv4 address followed by whitespace and arbitrary characters, which could lead applications to incorrectly assume that it had parsed a valid string, without the possibility of embedded HTTP headers or other potentially dangerous substrings. (CVE-2016-10739)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2020-1517.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/glibc-common@2.26-34.amzn2?arch=x86_64&upstream=glibc-2.26-34.amzn2.src.rpm&distro=amzn-2&package-id=a88e37fdd568988d"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:ff8306c0-3148-4f75-98f0-927a625b0a9d",
+      "id": "ALAS-2020-1517",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2020-1517.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2020-1517",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2020-1517.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "In the GNU C Library (aka glibc or libc6) through 2.28, the getaddrinfo function would successfully parse a string that contained an IPv4 address followed by whitespace and arbitrary characters, which could lead applications to incorrectly assume that it had parsed a valid string, without the possibility of embedded HTTP headers or other potentially dangerous substrings. (CVE-2016-10739)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2020-1517.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/glibc-langpack-en@2.26-34.amzn2?arch=x86_64&upstream=glibc-2.26-34.amzn2.src.rpm&distro=amzn-2&package-id=78ca252f42c0cd10"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:e8240eec-fdfd-477b-8237-206b2173f8d7",
+      "id": "ALAS-2020-1517",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2020-1517.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2020-1517",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2020-1517.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "In the GNU C Library (aka glibc or libc6) through 2.28, the getaddrinfo function would successfully parse a string that contained an IPv4 address followed by whitespace and arbitrary characters, which could lead applications to incorrectly assume that it had parsed a valid string, without the possibility of embedded HTTP headers or other potentially dangerous substrings. (CVE-2016-10739)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2020-1517.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/glibc-minimal-langpack@2.26-34.amzn2?arch=x86_64&upstream=glibc-2.26-34.amzn2.src.rpm&distro=amzn-2&package-id=275d6892508cce54"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:bee27a59-b009-4947-8f45-f876ef1986c8",
+      "id": "ALAS-2020-1517",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2020-1517.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2020-1517",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2020-1517.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "In the GNU C Library (aka glibc or libc6) through 2.28, the getaddrinfo function would successfully parse a string that contained an IPv4 address followed by whitespace and arbitrary characters, which could lead applications to incorrectly assume that it had parsed a valid string, without the possibility of embedded HTTP headers or other potentially dangerous substrings. (CVE-2016-10739)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2020-1517.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/libcrypt@2.26-34.amzn2?arch=x86_64&upstream=glibc-2.26-34.amzn2.src.rpm&distro=amzn-2&package-id=8a691524aa78dd93"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:f47f30cf-cdbb-4b07-961a-2910bdbe163e",
+      "id": "ALAS-2020-1531",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2020-1531.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2020-1531",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2020-1531.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "In libssh2 v1.9.0 and earlier versions, the SSH_MSG_DISCONNECT logic in packet.c has an integer overflow in a bounds check, enabling an attacker to specify an arbitrary (out-of-bounds) offset for a subsequent memory read. A crafted SSH server may be able to disclose sensitive information or cause a denial of service condition on the client system when a user connects to the server. (CVE-2019-17498)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2020-1531.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/libssh2@1.4.3-12.amzn2.2.2?arch=x86_64&upstream=libssh2-1.4.3-12.amzn2.2.2.src.rpm&distro=amzn-2&package-id=aec3dc0ee68de92c"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:44f6c6d8-eb03-461b-a9db-78aeda1825a9",
+      "id": "ALAS-2020-1534",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2020-1534.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2020-1534",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2020-1534.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "xmlParseBalancedChunkMemoryRecover in parser.c in libxml2 before 2.9.10 has a memory leak related to newDoc->oldNs. (CVE-2019-19956)A memory leak was found in the xmlSchemaValidateStream function of libxml2. Applications that use this library may be vulnerable to memory not being freed leading to a denial of service. System availability is the highest threat from this vulnerability. (CVE-2019-20388)xmlStringLenDecodeEntities in parser.c in libxml2 2.9.10 has an infinite loop in a certain end-of-file situation. (CVE-2020-7595)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2020-1534.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/libxml2@2.9.1-6.amzn2.3.3?arch=x86_64&upstream=libxml2-2.9.1-6.amzn2.3.3.src.rpm&distro=amzn-2&package-id=7ebe618675e23846"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:340523a2-a1e9-44bd-9c77-a62611a1972a",
+      "id": "ALAS-2020-1539",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2020-1539.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2020-1539",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2020-1539.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "In filter.c in slapd in OpenLDAP before 2.4.50, LDAP search filters with nested boolean expressions can result in denial of service (daemon crash). (CVE-2020-12243)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2020-1539.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/openldap@2.4.44-15.amzn2?arch=x86_64&upstream=openldap-2.4.44-15.amzn2.src.rpm&distro=amzn-2&package-id=1370d90ba0ef3b57"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:7feb9255-265f-49f0-9037-372dd6b7af00",
+      "id": "ALAS-2020-1553",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2020-1553.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2020-1553",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2020-1553.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "file_copy_fallback in gio/gfile.c in GNOME GLib 2.15.0 through 2.61.1 does not properly restrict file permissions while a copy operation is in progress. Instead, default permissions are used. (CVE-2019-12450)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2020-1553.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/glib2@2.56.1-4.amzn2?arch=x86_64&upstream=glib2-2.56.1-4.amzn2.src.rpm&distro=amzn-2&package-id=f1ce4832b45dbaac"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:0a4754a1-cb33-43ce-94fe-1663677fc191",
+      "id": "ALAS-2020-1559",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2020-1559.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2020-1559",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2020-1559.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "When importing a curve25519 private key in PKCS#8format with leading 0x00 bytes, it is possible to trigger an out-of-bounds read in the Network Security Services (NSS) library. This could lead to information disclosure. This vulnerability affects Firefox ESR < 60.8, Firefox < 68, and Thunderbird < 60.8. (CVE-2019-11719)A vulnerability exists where it possible to force Network Security Services (NSS) to sign CertificateVerify with PKCS#1 v1.5 signatures when those are the only ones advertised by server in CertificateRequest in TLS 1.3. PKCS#1 v1.5 signatures should not be used for TLS 1.3 messages. This vulnerability affects Firefox < 68. (CVE-2019-11727)A use-after-free flaw was found in Mozilla Network Security Services (NSS) related to PK11 session handling. An attacker could use this flaw to execute arbitrary code with the permissions of the user running the application compiled with NSS. (CVE-2019-11756)A vulnerability was discovered in nss where input text length was not checked when using certain cryptographic primitives. This could lead to a heap-buffer overflow resulting in a crash and data leak. The highest threat is to confidentiality and integrity of data as well as system availability. (CVE-2019-17006)A protocol downgrade flaw was found in Network Security Services (NSS). After a HelloRetryRequest has been sent, the client may negotiate a lower protocol than TLS 1.3, resulting in an invalid state transition in the TLS State Machine. If the client gets into this state, incoming Application Data records will be ignored. (CVE-2019-17023)A side channel flaw was found in nss, in the way P-384 and P-521 curves are used in the generation of EDSA signatures, leaking partial information about the ECDSA nonce. Given a small number of ECDSA signatures, this information can be used to steal the private key. The highest threat from this vulnerability is to data confidentiality. (CVE-2020-12400)A flaw was found in nss. Using the EM side-channel, it is possible to extract the position of zero and non-zero wNAF digits while nss-certutil tool performs scalar multiplication during the ECDSA signature generation, leaking partial information about the ECDSA nonce. Given a small number of ECDSA signatures, this information can be used to steal the private key. The highest threat from this vulnerability is to data confidentiality. (CVE-2020-12401)A flaw was found in NSS, where it is vulnerable to RSA key generation cache timing side-channel attacks. An attacker with sufficient access to mount cache timing attacks during the RSA key generation process could recover the private key. The highest threat to this flaw is to confidentiality. (CVE-2020-12402)A flaw was found in the way CHACHA20-POLY1305 was implemented in NSS. When using multi-part Chacha20, it could cause out-of-bounds reads. This issue was fixed by explicitly disabling multi-part ChaCha20 (which was not functioning correctly) and strictly enforcing tag length. The highest threat from this vulnerability is to confidentiality and system availability. (CVE-2020-12403)A flaw was found in nss. Using the EM side-channel, it is possible to extract the position of zero and non-zero wNAF digits while nss-certutil tool performs scalar multiplication during the ECDSA signature generation, leaking partial information about the ECDSA nonce. Given a small number of ECDSA signatures, this information can be used to steal the private key. The highest threat from this vulnerability is to data confidentiality. (CVE-2020-6829)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2020-1559.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/nspr@4.21.0-1.amzn2.0.2?arch=x86_64&upstream=nspr-4.21.0-1.amzn2.0.2.src.rpm&distro=amzn-2&package-id=348020d7a91be901"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:554dfdbd-120b-4ab9-8d89-1c2a56a32762",
+      "id": "ALAS-2020-1559",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2020-1559.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2020-1559",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2020-1559.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "When importing a curve25519 private key in PKCS#8format with leading 0x00 bytes, it is possible to trigger an out-of-bounds read in the Network Security Services (NSS) library. This could lead to information disclosure. This vulnerability affects Firefox ESR < 60.8, Firefox < 68, and Thunderbird < 60.8. (CVE-2019-11719)A vulnerability exists where it possible to force Network Security Services (NSS) to sign CertificateVerify with PKCS#1 v1.5 signatures when those are the only ones advertised by server in CertificateRequest in TLS 1.3. PKCS#1 v1.5 signatures should not be used for TLS 1.3 messages. This vulnerability affects Firefox < 68. (CVE-2019-11727)A use-after-free flaw was found in Mozilla Network Security Services (NSS) related to PK11 session handling. An attacker could use this flaw to execute arbitrary code with the permissions of the user running the application compiled with NSS. (CVE-2019-11756)A vulnerability was discovered in nss where input text length was not checked when using certain cryptographic primitives. This could lead to a heap-buffer overflow resulting in a crash and data leak. The highest threat is to confidentiality and integrity of data as well as system availability. (CVE-2019-17006)A protocol downgrade flaw was found in Network Security Services (NSS). After a HelloRetryRequest has been sent, the client may negotiate a lower protocol than TLS 1.3, resulting in an invalid state transition in the TLS State Machine. If the client gets into this state, incoming Application Data records will be ignored. (CVE-2019-17023)A side channel flaw was found in nss, in the way P-384 and P-521 curves are used in the generation of EDSA signatures, leaking partial information about the ECDSA nonce. Given a small number of ECDSA signatures, this information can be used to steal the private key. The highest threat from this vulnerability is to data confidentiality. (CVE-2020-12400)A flaw was found in nss. Using the EM side-channel, it is possible to extract the position of zero and non-zero wNAF digits while nss-certutil tool performs scalar multiplication during the ECDSA signature generation, leaking partial information about the ECDSA nonce. Given a small number of ECDSA signatures, this information can be used to steal the private key. The highest threat from this vulnerability is to data confidentiality. (CVE-2020-12401)A flaw was found in NSS, where it is vulnerable to RSA key generation cache timing side-channel attacks. An attacker with sufficient access to mount cache timing attacks during the RSA key generation process could recover the private key. The highest threat to this flaw is to confidentiality. (CVE-2020-12402)A flaw was found in the way CHACHA20-POLY1305 was implemented in NSS. When using multi-part Chacha20, it could cause out-of-bounds reads. This issue was fixed by explicitly disabling multi-part ChaCha20 (which was not functioning correctly) and strictly enforcing tag length. The highest threat from this vulnerability is to confidentiality and system availability. (CVE-2020-12403)A flaw was found in nss. Using the EM side-channel, it is possible to extract the position of zero and non-zero wNAF digits while nss-certutil tool performs scalar multiplication during the ECDSA signature generation, leaking partial information about the ECDSA nonce. Given a small number of ECDSA signatures, this information can be used to steal the private key. The highest threat from this vulnerability is to data confidentiality. (CVE-2020-6829)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2020-1559.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/nss@3.44.0-7.amzn2?arch=x86_64&upstream=nss-3.44.0-7.amzn2.src.rpm&distro=amzn-2&package-id=2cb464ea2eabdab5"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:f4885150-69ed-42cc-b0ae-3de24a377015",
+      "id": "ALAS-2020-1559",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2020-1559.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2020-1559",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2020-1559.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "When importing a curve25519 private key in PKCS#8format with leading 0x00 bytes, it is possible to trigger an out-of-bounds read in the Network Security Services (NSS) library. This could lead to information disclosure. This vulnerability affects Firefox ESR < 60.8, Firefox < 68, and Thunderbird < 60.8. (CVE-2019-11719)A vulnerability exists where it possible to force Network Security Services (NSS) to sign CertificateVerify with PKCS#1 v1.5 signatures when those are the only ones advertised by server in CertificateRequest in TLS 1.3. PKCS#1 v1.5 signatures should not be used for TLS 1.3 messages. This vulnerability affects Firefox < 68. (CVE-2019-11727)A use-after-free flaw was found in Mozilla Network Security Services (NSS) related to PK11 session handling. An attacker could use this flaw to execute arbitrary code with the permissions of the user running the application compiled with NSS. (CVE-2019-11756)A vulnerability was discovered in nss where input text length was not checked when using certain cryptographic primitives. This could lead to a heap-buffer overflow resulting in a crash and data leak. The highest threat is to confidentiality and integrity of data as well as system availability. (CVE-2019-17006)A protocol downgrade flaw was found in Network Security Services (NSS). After a HelloRetryRequest has been sent, the client may negotiate a lower protocol than TLS 1.3, resulting in an invalid state transition in the TLS State Machine. If the client gets into this state, incoming Application Data records will be ignored. (CVE-2019-17023)A side channel flaw was found in nss, in the way P-384 and P-521 curves are used in the generation of EDSA signatures, leaking partial information about the ECDSA nonce. Given a small number of ECDSA signatures, this information can be used to steal the private key. The highest threat from this vulnerability is to data confidentiality. (CVE-2020-12400)A flaw was found in nss. Using the EM side-channel, it is possible to extract the position of zero and non-zero wNAF digits while nss-certutil tool performs scalar multiplication during the ECDSA signature generation, leaking partial information about the ECDSA nonce. Given a small number of ECDSA signatures, this information can be used to steal the private key. The highest threat from this vulnerability is to data confidentiality. (CVE-2020-12401)A flaw was found in NSS, where it is vulnerable to RSA key generation cache timing side-channel attacks. An attacker with sufficient access to mount cache timing attacks during the RSA key generation process could recover the private key. The highest threat to this flaw is to confidentiality. (CVE-2020-12402)A flaw was found in the way CHACHA20-POLY1305 was implemented in NSS. When using multi-part Chacha20, it could cause out-of-bounds reads. This issue was fixed by explicitly disabling multi-part ChaCha20 (which was not functioning correctly) and strictly enforcing tag length. The highest threat from this vulnerability is to confidentiality and system availability. (CVE-2020-12403)A flaw was found in nss. Using the EM side-channel, it is possible to extract the position of zero and non-zero wNAF digits while nss-certutil tool performs scalar multiplication during the ECDSA signature generation, leaking partial information about the ECDSA nonce. Given a small number of ECDSA signatures, this information can be used to steal the private key. The highest threat from this vulnerability is to data confidentiality. (CVE-2020-6829)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2020-1559.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/nss-softokn@3.44.0-8.amzn2?arch=x86_64&upstream=nss-softokn-3.44.0-8.amzn2.src.rpm&distro=amzn-2&package-id=14b8c1ec2d9bb9a4"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:a6778af9-0d0d-4372-a295-b34f952cfcb4",
+      "id": "ALAS-2020-1559",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2020-1559.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2020-1559",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2020-1559.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "When importing a curve25519 private key in PKCS#8format with leading 0x00 bytes, it is possible to trigger an out-of-bounds read in the Network Security Services (NSS) library. This could lead to information disclosure. This vulnerability affects Firefox ESR < 60.8, Firefox < 68, and Thunderbird < 60.8. (CVE-2019-11719)A vulnerability exists where it possible to force Network Security Services (NSS) to sign CertificateVerify with PKCS#1 v1.5 signatures when those are the only ones advertised by server in CertificateRequest in TLS 1.3. PKCS#1 v1.5 signatures should not be used for TLS 1.3 messages. This vulnerability affects Firefox < 68. (CVE-2019-11727)A use-after-free flaw was found in Mozilla Network Security Services (NSS) related to PK11 session handling. An attacker could use this flaw to execute arbitrary code with the permissions of the user running the application compiled with NSS. (CVE-2019-11756)A vulnerability was discovered in nss where input text length was not checked when using certain cryptographic primitives. This could lead to a heap-buffer overflow resulting in a crash and data leak. The highest threat is to confidentiality and integrity of data as well as system availability. (CVE-2019-17006)A protocol downgrade flaw was found in Network Security Services (NSS). After a HelloRetryRequest has been sent, the client may negotiate a lower protocol than TLS 1.3, resulting in an invalid state transition in the TLS State Machine. If the client gets into this state, incoming Application Data records will be ignored. (CVE-2019-17023)A side channel flaw was found in nss, in the way P-384 and P-521 curves are used in the generation of EDSA signatures, leaking partial information about the ECDSA nonce. Given a small number of ECDSA signatures, this information can be used to steal the private key. The highest threat from this vulnerability is to data confidentiality. (CVE-2020-12400)A flaw was found in nss. Using the EM side-channel, it is possible to extract the position of zero and non-zero wNAF digits while nss-certutil tool performs scalar multiplication during the ECDSA signature generation, leaking partial information about the ECDSA nonce. Given a small number of ECDSA signatures, this information can be used to steal the private key. The highest threat from this vulnerability is to data confidentiality. (CVE-2020-12401)A flaw was found in NSS, where it is vulnerable to RSA key generation cache timing side-channel attacks. An attacker with sufficient access to mount cache timing attacks during the RSA key generation process could recover the private key. The highest threat to this flaw is to confidentiality. (CVE-2020-12402)A flaw was found in the way CHACHA20-POLY1305 was implemented in NSS. When using multi-part Chacha20, it could cause out-of-bounds reads. This issue was fixed by explicitly disabling multi-part ChaCha20 (which was not functioning correctly) and strictly enforcing tag length. The highest threat from this vulnerability is to confidentiality and system availability. (CVE-2020-12403)A flaw was found in nss. Using the EM side-channel, it is possible to extract the position of zero and non-zero wNAF digits while nss-certutil tool performs scalar multiplication during the ECDSA signature generation, leaking partial information about the ECDSA nonce. Given a small number of ECDSA signatures, this information can be used to steal the private key. The highest threat from this vulnerability is to data confidentiality. (CVE-2020-6829)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2020-1559.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/nss-softokn-freebl@3.44.0-8.amzn2?arch=x86_64&upstream=nss-softokn-3.44.0-8.amzn2.src.rpm&distro=amzn-2&package-id=e99013f9b958f96f"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:77360c9a-0a26-4981-bbb6-6e54a5bcb745",
+      "id": "ALAS-2020-1559",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2020-1559.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2020-1559",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2020-1559.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "When importing a curve25519 private key in PKCS#8format with leading 0x00 bytes, it is possible to trigger an out-of-bounds read in the Network Security Services (NSS) library. This could lead to information disclosure. This vulnerability affects Firefox ESR < 60.8, Firefox < 68, and Thunderbird < 60.8. (CVE-2019-11719)A vulnerability exists where it possible to force Network Security Services (NSS) to sign CertificateVerify with PKCS#1 v1.5 signatures when those are the only ones advertised by server in CertificateRequest in TLS 1.3. PKCS#1 v1.5 signatures should not be used for TLS 1.3 messages. This vulnerability affects Firefox < 68. (CVE-2019-11727)A use-after-free flaw was found in Mozilla Network Security Services (NSS) related to PK11 session handling. An attacker could use this flaw to execute arbitrary code with the permissions of the user running the application compiled with NSS. (CVE-2019-11756)A vulnerability was discovered in nss where input text length was not checked when using certain cryptographic primitives. This could lead to a heap-buffer overflow resulting in a crash and data leak. The highest threat is to confidentiality and integrity of data as well as system availability. (CVE-2019-17006)A protocol downgrade flaw was found in Network Security Services (NSS). After a HelloRetryRequest has been sent, the client may negotiate a lower protocol than TLS 1.3, resulting in an invalid state transition in the TLS State Machine. If the client gets into this state, incoming Application Data records will be ignored. (CVE-2019-17023)A side channel flaw was found in nss, in the way P-384 and P-521 curves are used in the generation of EDSA signatures, leaking partial information about the ECDSA nonce. Given a small number of ECDSA signatures, this information can be used to steal the private key. The highest threat from this vulnerability is to data confidentiality. (CVE-2020-12400)A flaw was found in nss. Using the EM side-channel, it is possible to extract the position of zero and non-zero wNAF digits while nss-certutil tool performs scalar multiplication during the ECDSA signature generation, leaking partial information about the ECDSA nonce. Given a small number of ECDSA signatures, this information can be used to steal the private key. The highest threat from this vulnerability is to data confidentiality. (CVE-2020-12401)A flaw was found in NSS, where it is vulnerable to RSA key generation cache timing side-channel attacks. An attacker with sufficient access to mount cache timing attacks during the RSA key generation process could recover the private key. The highest threat to this flaw is to confidentiality. (CVE-2020-12402)A flaw was found in the way CHACHA20-POLY1305 was implemented in NSS. When using multi-part Chacha20, it could cause out-of-bounds reads. This issue was fixed by explicitly disabling multi-part ChaCha20 (which was not functioning correctly) and strictly enforcing tag length. The highest threat from this vulnerability is to confidentiality and system availability. (CVE-2020-12403)A flaw was found in nss. Using the EM side-channel, it is possible to extract the position of zero and non-zero wNAF digits while nss-certutil tool performs scalar multiplication during the ECDSA signature generation, leaking partial information about the ECDSA nonce. Given a small number of ECDSA signatures, this information can be used to steal the private key. The highest threat from this vulnerability is to data confidentiality. (CVE-2020-6829)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2020-1559.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/nss-sysinit@3.44.0-7.amzn2?arch=x86_64&upstream=nss-3.44.0-7.amzn2.src.rpm&distro=amzn-2&package-id=05011f8669bbc3f2"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:4d6f1eca-375c-4faa-9ac9-3f878b2ae5cd",
+      "id": "ALAS-2020-1559",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2020-1559.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2020-1559",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2020-1559.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "When importing a curve25519 private key in PKCS#8format with leading 0x00 bytes, it is possible to trigger an out-of-bounds read in the Network Security Services (NSS) library. This could lead to information disclosure. This vulnerability affects Firefox ESR < 60.8, Firefox < 68, and Thunderbird < 60.8. (CVE-2019-11719)A vulnerability exists where it possible to force Network Security Services (NSS) to sign CertificateVerify with PKCS#1 v1.5 signatures when those are the only ones advertised by server in CertificateRequest in TLS 1.3. PKCS#1 v1.5 signatures should not be used for TLS 1.3 messages. This vulnerability affects Firefox < 68. (CVE-2019-11727)A use-after-free flaw was found in Mozilla Network Security Services (NSS) related to PK11 session handling. An attacker could use this flaw to execute arbitrary code with the permissions of the user running the application compiled with NSS. (CVE-2019-11756)A vulnerability was discovered in nss where input text length was not checked when using certain cryptographic primitives. This could lead to a heap-buffer overflow resulting in a crash and data leak. The highest threat is to confidentiality and integrity of data as well as system availability. (CVE-2019-17006)A protocol downgrade flaw was found in Network Security Services (NSS). After a HelloRetryRequest has been sent, the client may negotiate a lower protocol than TLS 1.3, resulting in an invalid state transition in the TLS State Machine. If the client gets into this state, incoming Application Data records will be ignored. (CVE-2019-17023)A side channel flaw was found in nss, in the way P-384 and P-521 curves are used in the generation of EDSA signatures, leaking partial information about the ECDSA nonce. Given a small number of ECDSA signatures, this information can be used to steal the private key. The highest threat from this vulnerability is to data confidentiality. (CVE-2020-12400)A flaw was found in nss. Using the EM side-channel, it is possible to extract the position of zero and non-zero wNAF digits while nss-certutil tool performs scalar multiplication during the ECDSA signature generation, leaking partial information about the ECDSA nonce. Given a small number of ECDSA signatures, this information can be used to steal the private key. The highest threat from this vulnerability is to data confidentiality. (CVE-2020-12401)A flaw was found in NSS, where it is vulnerable to RSA key generation cache timing side-channel attacks. An attacker with sufficient access to mount cache timing attacks during the RSA key generation process could recover the private key. The highest threat to this flaw is to confidentiality. (CVE-2020-12402)A flaw was found in the way CHACHA20-POLY1305 was implemented in NSS. When using multi-part Chacha20, it could cause out-of-bounds reads. This issue was fixed by explicitly disabling multi-part ChaCha20 (which was not functioning correctly) and strictly enforcing tag length. The highest threat from this vulnerability is to confidentiality and system availability. (CVE-2020-12403)A flaw was found in nss. Using the EM side-channel, it is possible to extract the position of zero and non-zero wNAF digits while nss-certutil tool performs scalar multiplication during the ECDSA signature generation, leaking partial information about the ECDSA nonce. Given a small number of ECDSA signatures, this information can be used to steal the private key. The highest threat from this vulnerability is to data confidentiality. (CVE-2020-6829)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2020-1559.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/nss-tools@3.44.0-7.amzn2?arch=x86_64&upstream=nss-3.44.0-7.amzn2.src.rpm&distro=amzn-2&package-id=01f73c7582c3a81e"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:c9903188-efcd-4cad-a74f-659a2bf5e852",
+      "id": "ALAS-2020-1559",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2020-1559.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2020-1559",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2020-1559.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "When importing a curve25519 private key in PKCS#8format with leading 0x00 bytes, it is possible to trigger an out-of-bounds read in the Network Security Services (NSS) library. This could lead to information disclosure. This vulnerability affects Firefox ESR < 60.8, Firefox < 68, and Thunderbird < 60.8. (CVE-2019-11719)A vulnerability exists where it possible to force Network Security Services (NSS) to sign CertificateVerify with PKCS#1 v1.5 signatures when those are the only ones advertised by server in CertificateRequest in TLS 1.3. PKCS#1 v1.5 signatures should not be used for TLS 1.3 messages. This vulnerability affects Firefox < 68. (CVE-2019-11727)A use-after-free flaw was found in Mozilla Network Security Services (NSS) related to PK11 session handling. An attacker could use this flaw to execute arbitrary code with the permissions of the user running the application compiled with NSS. (CVE-2019-11756)A vulnerability was discovered in nss where input text length was not checked when using certain cryptographic primitives. This could lead to a heap-buffer overflow resulting in a crash and data leak. The highest threat is to confidentiality and integrity of data as well as system availability. (CVE-2019-17006)A protocol downgrade flaw was found in Network Security Services (NSS). After a HelloRetryRequest has been sent, the client may negotiate a lower protocol than TLS 1.3, resulting in an invalid state transition in the TLS State Machine. If the client gets into this state, incoming Application Data records will be ignored. (CVE-2019-17023)A side channel flaw was found in nss, in the way P-384 and P-521 curves are used in the generation of EDSA signatures, leaking partial information about the ECDSA nonce. Given a small number of ECDSA signatures, this information can be used to steal the private key. The highest threat from this vulnerability is to data confidentiality. (CVE-2020-12400)A flaw was found in nss. Using the EM side-channel, it is possible to extract the position of zero and non-zero wNAF digits while nss-certutil tool performs scalar multiplication during the ECDSA signature generation, leaking partial information about the ECDSA nonce. Given a small number of ECDSA signatures, this information can be used to steal the private key. The highest threat from this vulnerability is to data confidentiality. (CVE-2020-12401)A flaw was found in NSS, where it is vulnerable to RSA key generation cache timing side-channel attacks. An attacker with sufficient access to mount cache timing attacks during the RSA key generation process could recover the private key. The highest threat to this flaw is to confidentiality. (CVE-2020-12402)A flaw was found in the way CHACHA20-POLY1305 was implemented in NSS. When using multi-part Chacha20, it could cause out-of-bounds reads. This issue was fixed by explicitly disabling multi-part ChaCha20 (which was not functioning correctly) and strictly enforcing tag length. The highest threat from this vulnerability is to confidentiality and system availability. (CVE-2020-12403)A flaw was found in nss. Using the EM side-channel, it is possible to extract the position of zero and non-zero wNAF digits while nss-certutil tool performs scalar multiplication during the ECDSA signature generation, leaking partial information about the ECDSA nonce. Given a small number of ECDSA signatures, this information can be used to steal the private key. The highest threat from this vulnerability is to data confidentiality. (CVE-2020-6829)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2020-1559.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/nss-util@3.44.0-4.amzn2?arch=x86_64&upstream=nss-util-3.44.0-4.amzn2.src.rpm&distro=amzn-2&package-id=26068ebc816756c5"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:fdeca65c-a28f-4700-85f2-46e3d301a035",
+      "id": "ALAS-2020-1573",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2020-1573.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2020-1573",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2020-1573.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "high"
+        }
+      ],
+      "description": "A null pointer dereference flaw was found in openssl. A remote attacker, able to control the arguments of the GENERAL_NAME_cmp function, could cause the application, compiled with openssl to crash resulting in a denial of service. The highest threat from this vulnerability is to system availability. (CVE-2020-1971)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2020-1573.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/openssl-libs@1.0.2k-19.amzn2.0.3?arch=x86_64&epoch=1&upstream=openssl-1.0.2k-19.amzn2.0.3.src.rpm&distro=amzn-2&package-id=ce1f995008afc26a"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:37ad1ddb-01ce-4e37-ab65-8e38de9c9a77",
+      "id": "ALAS-2021-1599",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1599.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2021-1599",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1599.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "high"
+        }
+      ],
+      "description": "A flaw was found in glibc. When processing input in the EUC-KR encoding, an invalid input sequence could cause glibc to read beyond the end of a buffer, resulting in a segmentation fault. The highest threat from this vulnerability is to system availability. (CVE-2019-25013)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1599.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/glibc@2.26-34.amzn2?arch=x86_64&upstream=glibc-2.26-34.amzn2.src.rpm&distro=amzn-2&package-id=aaf9f40aee775d65"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:489263e1-a7c6-4763-8f4a-da9952dfcdb7",
+      "id": "ALAS-2021-1599",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1599.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2021-1599",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1599.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "high"
+        }
+      ],
+      "description": "A flaw was found in glibc. When processing input in the EUC-KR encoding, an invalid input sequence could cause glibc to read beyond the end of a buffer, resulting in a segmentation fault. The highest threat from this vulnerability is to system availability. (CVE-2019-25013)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1599.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/glibc-common@2.26-34.amzn2?arch=x86_64&upstream=glibc-2.26-34.amzn2.src.rpm&distro=amzn-2&package-id=a88e37fdd568988d"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:c8ea5d27-f699-42ed-83c7-89dfc94ec233",
+      "id": "ALAS-2021-1599",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1599.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2021-1599",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1599.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "high"
+        }
+      ],
+      "description": "A flaw was found in glibc. When processing input in the EUC-KR encoding, an invalid input sequence could cause glibc to read beyond the end of a buffer, resulting in a segmentation fault. The highest threat from this vulnerability is to system availability. (CVE-2019-25013)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1599.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/glibc-langpack-en@2.26-34.amzn2?arch=x86_64&upstream=glibc-2.26-34.amzn2.src.rpm&distro=amzn-2&package-id=78ca252f42c0cd10"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:565eb241-fc0d-4def-849d-2988c770dab2",
+      "id": "ALAS-2021-1599",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1599.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2021-1599",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1599.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "high"
+        }
+      ],
+      "description": "A flaw was found in glibc. When processing input in the EUC-KR encoding, an invalid input sequence could cause glibc to read beyond the end of a buffer, resulting in a segmentation fault. The highest threat from this vulnerability is to system availability. (CVE-2019-25013)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1599.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/glibc-minimal-langpack@2.26-34.amzn2?arch=x86_64&upstream=glibc-2.26-34.amzn2.src.rpm&distro=amzn-2&package-id=275d6892508cce54"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:8351972f-fe63-4c2b-be73-b2800ad390d7",
+      "id": "ALAS-2021-1599",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1599.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2021-1599",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1599.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "high"
+        }
+      ],
+      "description": "A flaw was found in glibc. When processing input in the EUC-KR encoding, an invalid input sequence could cause glibc to read beyond the end of a buffer, resulting in a segmentation fault. The highest threat from this vulnerability is to system availability. (CVE-2019-25013)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1599.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/libcrypt@2.26-34.amzn2?arch=x86_64&upstream=glibc-2.26-34.amzn2.src.rpm&distro=amzn-2&package-id=8a691524aa78dd93"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:555c9b8c-258b-476b-b001-210c54bae046",
+      "id": "ALAS-2021-1601",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1601.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2021-1601",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1601.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "An issue was discovered in p11-kit 0.21.1 through 0.23.21. Multiple integer overflows have been discovered in the array allocations in the p11-kit library and the p11-kit list command, where overflow checks are missing before calling realloc or calloc. (CVE-2020-29361)An issue was discovered in p11-kit 0.21.1 through 0.23.21. A heap-based buffer over-read has been discovered in the RPC protocol used by thep11-kit server/remote commands and the client library. When the remote entity supplies a byte array through a serialized PKCS#11 function call, the receiving entity may allow the reading of up to 4 bytes of memory past the heap allocation. (CVE-2020-29362)An issue was discovered in p11-kit 0.23.6 through 0.23.21. A heap-based buffer overflow has been discovered in the RPC protocol used by p11-kit server/remote commands and the client library. When the remote entity supplies a serialized byte array in a CK_ATTRIBUTE, the receiving entity may not allocate sufficient length for the buffer to store the deserialized value. (CVE-2020-29363)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1601.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/p11-kit@0.23.5-3.amzn2.0.2?arch=x86_64&upstream=p11-kit-0.23.5-3.amzn2.0.2.src.rpm&distro=amzn-2&package-id=6854665f163a7b5e"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:378c118f-5319-486b-9242-7e2d0e26a4bd",
+      "id": "ALAS-2021-1601",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1601.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2021-1601",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1601.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "An issue was discovered in p11-kit 0.21.1 through 0.23.21. Multiple integer overflows have been discovered in the array allocations in the p11-kit library and the p11-kit list command, where overflow checks are missing before calling realloc or calloc. (CVE-2020-29361)An issue was discovered in p11-kit 0.21.1 through 0.23.21. A heap-based buffer over-read has been discovered in the RPC protocol used by thep11-kit server/remote commands and the client library. When the remote entity supplies a byte array through a serialized PKCS#11 function call, the receiving entity may allow the reading of up to 4 bytes of memory past the heap allocation. (CVE-2020-29362)An issue was discovered in p11-kit 0.23.6 through 0.23.21. A heap-based buffer overflow has been discovered in the RPC protocol used by p11-kit server/remote commands and the client library. When the remote entity supplies a serialized byte array in a CK_ATTRIBUTE, the receiving entity may not allocate sufficient length for the buffer to store the deserialized value. (CVE-2020-29363)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1601.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/p11-kit-trust@0.23.5-3.amzn2.0.2?arch=x86_64&upstream=p11-kit-0.23.5-3.amzn2.0.2.src.rpm&distro=amzn-2&package-id=e563650ccd8a421e"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:c802bc2c-cdc8-4763-a899-4c717971fb7a",
+      "id": "ALAS-2021-1605",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1605.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2021-1605",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1605.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "high"
+        }
+      ],
+      "description": "The iconv program in the GNU C Library (aka glibc or libc6) 2.31 and earlier, when invoked with multiple suffixes in the destination encoding (TRANSLATE or IGNORE) along with the -c option, enters an infinite loop when processing invalid multi-byte input sequences, leading to a denial of service. (CVE-2016-10228)A flaw was found in glibc. When processing input in the EUC-KR encoding, an invalid input sequence could cause glibc to read beyond the end of a buffer, resulting in a segmentation fault. The highest threat from this vulnerability is to system availability. (CVE-2019-25013)A denial of service flaw was found in the way glibc's iconv function handled UCS4 text containing an irreversible character. This flaw causes an application compiled with glibc and using the vulnerable function to terminate with an assertion, resulting in a denial of service. The highest threat from this vulnerability is to system availability. (CVE-2020-29562)A signed comparison vulnerability was found in GNU libc in the ARMv7 implementation of memcpy(). The flaw affects the third argument to memcpy() that specifies the number of bytes to copy. An underflow on the third argument could lead to undefined behavior such as out-of-bounds memory write and potentially remote code execution. (CVE-2020-6096)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1605.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/glibc@2.26-34.amzn2?arch=x86_64&upstream=glibc-2.26-34.amzn2.src.rpm&distro=amzn-2&package-id=aaf9f40aee775d65"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:4531b079-5394-430c-a01f-a7562cc4038c",
+      "id": "ALAS-2021-1605",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1605.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2021-1605",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1605.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "high"
+        }
+      ],
+      "description": "The iconv program in the GNU C Library (aka glibc or libc6) 2.31 and earlier, when invoked with multiple suffixes in the destination encoding (TRANSLATE or IGNORE) along with the -c option, enters an infinite loop when processing invalid multi-byte input sequences, leading to a denial of service. (CVE-2016-10228)A flaw was found in glibc. When processing input in the EUC-KR encoding, an invalid input sequence could cause glibc to read beyond the end of a buffer, resulting in a segmentation fault. The highest threat from this vulnerability is to system availability. (CVE-2019-25013)A denial of service flaw was found in the way glibc's iconv function handled UCS4 text containing an irreversible character. This flaw causes an application compiled with glibc and using the vulnerable function to terminate with an assertion, resulting in a denial of service. The highest threat from this vulnerability is to system availability. (CVE-2020-29562)A signed comparison vulnerability was found in GNU libc in the ARMv7 implementation of memcpy(). The flaw affects the third argument to memcpy() that specifies the number of bytes to copy. An underflow on the third argument could lead to undefined behavior such as out-of-bounds memory write and potentially remote code execution. (CVE-2020-6096)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1605.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/glibc-common@2.26-34.amzn2?arch=x86_64&upstream=glibc-2.26-34.amzn2.src.rpm&distro=amzn-2&package-id=a88e37fdd568988d"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:94dce092-7adf-46f2-b5fa-8bf8364cf01f",
+      "id": "ALAS-2021-1605",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1605.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2021-1605",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1605.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "high"
+        }
+      ],
+      "description": "The iconv program in the GNU C Library (aka glibc or libc6) 2.31 and earlier, when invoked with multiple suffixes in the destination encoding (TRANSLATE or IGNORE) along with the -c option, enters an infinite loop when processing invalid multi-byte input sequences, leading to a denial of service. (CVE-2016-10228)A flaw was found in glibc. When processing input in the EUC-KR encoding, an invalid input sequence could cause glibc to read beyond the end of a buffer, resulting in a segmentation fault. The highest threat from this vulnerability is to system availability. (CVE-2019-25013)A denial of service flaw was found in the way glibc's iconv function handled UCS4 text containing an irreversible character. This flaw causes an application compiled with glibc and using the vulnerable function to terminate with an assertion, resulting in a denial of service. The highest threat from this vulnerability is to system availability. (CVE-2020-29562)A signed comparison vulnerability was found in GNU libc in the ARMv7 implementation of memcpy(). The flaw affects the third argument to memcpy() that specifies the number of bytes to copy. An underflow on the third argument could lead to undefined behavior such as out-of-bounds memory write and potentially remote code execution. (CVE-2020-6096)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1605.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/glibc-langpack-en@2.26-34.amzn2?arch=x86_64&upstream=glibc-2.26-34.amzn2.src.rpm&distro=amzn-2&package-id=78ca252f42c0cd10"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:092cc8ad-c6bb-4b16-8fed-c54f77982b49",
+      "id": "ALAS-2021-1605",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1605.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2021-1605",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1605.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "high"
+        }
+      ],
+      "description": "The iconv program in the GNU C Library (aka glibc or libc6) 2.31 and earlier, when invoked with multiple suffixes in the destination encoding (TRANSLATE or IGNORE) along with the -c option, enters an infinite loop when processing invalid multi-byte input sequences, leading to a denial of service. (CVE-2016-10228)A flaw was found in glibc. When processing input in the EUC-KR encoding, an invalid input sequence could cause glibc to read beyond the end of a buffer, resulting in a segmentation fault. The highest threat from this vulnerability is to system availability. (CVE-2019-25013)A denial of service flaw was found in the way glibc's iconv function handled UCS4 text containing an irreversible character. This flaw causes an application compiled with glibc and using the vulnerable function to terminate with an assertion, resulting in a denial of service. The highest threat from this vulnerability is to system availability. (CVE-2020-29562)A signed comparison vulnerability was found in GNU libc in the ARMv7 implementation of memcpy(). The flaw affects the third argument to memcpy() that specifies the number of bytes to copy. An underflow on the third argument could lead to undefined behavior such as out-of-bounds memory write and potentially remote code execution. (CVE-2020-6096)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1605.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/glibc-minimal-langpack@2.26-34.amzn2?arch=x86_64&upstream=glibc-2.26-34.amzn2.src.rpm&distro=amzn-2&package-id=275d6892508cce54"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:9b1077c5-891b-47ca-b0a5-2dcc4afca417",
+      "id": "ALAS-2021-1605",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1605.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2021-1605",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1605.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "high"
+        }
+      ],
+      "description": "The iconv program in the GNU C Library (aka glibc or libc6) 2.31 and earlier, when invoked with multiple suffixes in the destination encoding (TRANSLATE or IGNORE) along with the -c option, enters an infinite loop when processing invalid multi-byte input sequences, leading to a denial of service. (CVE-2016-10228)A flaw was found in glibc. When processing input in the EUC-KR encoding, an invalid input sequence could cause glibc to read beyond the end of a buffer, resulting in a segmentation fault. The highest threat from this vulnerability is to system availability. (CVE-2019-25013)A denial of service flaw was found in the way glibc's iconv function handled UCS4 text containing an irreversible character. This flaw causes an application compiled with glibc and using the vulnerable function to terminate with an assertion, resulting in a denial of service. The highest threat from this vulnerability is to system availability. (CVE-2020-29562)A signed comparison vulnerability was found in GNU libc in the ARMv7 implementation of memcpy(). The flaw affects the third argument to memcpy() that specifies the number of bytes to copy. An underflow on the third argument could lead to undefined behavior such as out-of-bounds memory write and potentially remote code execution. (CVE-2020-6096)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1605.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/libcrypt@2.26-34.amzn2?arch=x86_64&upstream=glibc-2.26-34.amzn2.src.rpm&distro=amzn-2&package-id=8a691524aa78dd93"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:c172892b-83c1-4813-a63d-d83d7610edba",
+      "id": "ALAS-2021-1608",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1608.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2021-1608",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1608.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "OpenSSL 1.0.2 supports SSLv2. If a client attempts to negotiate SSLv2 with a server that is configured to support both SSLv2 and more recent SSL and TLS versions then a check is made for a version rollback attack when unpadding an RSA signature. Clients that support SSL or TLS versions greater than SSLv2 are supposed to use a special form of padding. A server that supports greater than SSLv2 is supposed to reject connection attempts from a client where this special form of padding is present, because this indicates that a version rollback has occurred (i.e. both client and server support greater than SSLv2, and yet this is the version that is being requested). The implementation of this padding check inverted the logic so that the connection attempt is accepted if the padding is present, and rejected if it is absent. This means that such as server will accept a connection if a version rollback attack has occurred. Further the server will erroneously reject a connection if a normal SSLv2 connection attempt is made. Only OpenSSL 1.0.2 servers from version 1.0.2s to 1.0.2x are affected by this issue. In order to be vulnerable a 1.0.2 server must: 1) have configured SSLv2 support at compile time (this is off by default), 2) have configured SSLv2 support at runtime (this is off by default), 3) have configured SSLv2 ciphersuites (these are not in the default ciphersuite list) OpenSSL 1.1.1 does not have SSLv2 support and therefore is not vulnerable to this issue. The underlying error is in the implementation of the RSA_padding_check_SSLv23() function. This also affects the RSA_SSLV23_PADDING padding mode used by various other functions. Although 1.1.1 does not support SSLv2 the RSA_padding_check_SSLv23() function still exists, as does the RSA_SSLV23_PADDING padding mode. Applications that directly call that function or use that padding mode will encounter this issue. However since there is no support for the SSLv2 protocol in 1.1.1 this is considered a bug and not a security issue in that version. OpenSSL 1.0.2 is out of support and no longer receiving public updates. Premium support customers of OpenSSL 1.0.2 should upgrade to 1.0.2y. Other users should upgrade to 1.1.1j. Fixed in OpenSSL 1.0.2y (Affected 1.0.2s-1.0.2x). (CVE-2021-23839)Calls to EVP_CipherUpdate, EVP_EncryptUpdate and EVP_DecryptUpdate may overflow the output length argument in some cases where the input length is close to the maximum permissable length for an integer on the platform. In such cases the return value from the function call will be 1 (indicating success), but the output length value will be negative. This could cause applications to behave incorrectly or crash. OpenSSL versions 1.1.1i and below are affected by this issue. Users of these versions should upgrade to OpenSSL 1.1.1j. OpenSSL versions 1.0.2x and below are affected by this issue. However OpenSSL 1.0.2 is out of support and no longer receiving public updates. Premium support customers of OpenSSL 1.0.2 should upgrade to 1.0.2y. Other users should upgrade to 1.1.1j. Fixed in OpenSSL 1.1.1j (Affected 1.1.1-1.1.1i). Fixed in OpenSSL 1.0.2y (Affected 1.0.2-1.0.2x). (CVE-2021-23840)The OpenSSL public API function X509_issuer_and_serial_hash() attempts to create a unique hash value based on the issuer and serial number data contained within an X509 certificate. However it fails to correctly handle any errors that may occur while parsing the issuer field (which might occur if the issuer field is maliciously constructed). This may subsequently result in a NULL pointer deref and a crash leading to a potential denial of service attack. The function X509_issuer_and_serial_hash() is never directly called by OpenSSL itself so applications are only vulnerable if they use this function directly and they use it on certificates that may have been obtained from untrusted sources. OpenSSL versions 1.1.1i and below are affected by this issue. Users of these versions should upgrade to OpenSSL 1.1.1j. OpenSSL versions 1.0.2x and below are affected by this issue. However OpenSSL 1.0.2 is out of support and no longer receiving public updates. Premium support customers of OpenSSL 1.0.2 should upgrade to 1.0.2y. Other users should upgrade to 1.1.1j. Fixed in OpenSSL 1.1.1j (Affected 1.1.1-1.1.1i). Fixed in OpenSSL 1.0.2y (Affected 1.0.2-1.0.2x). (CVE-2021-23841)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1608.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/openssl-libs@1.0.2k-19.amzn2.0.3?arch=x86_64&epoch=1&upstream=openssl-1.0.2k-19.amzn2.0.3.src.rpm&distro=amzn-2&package-id=ce1f995008afc26a"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:63decfb0-acf2-4dac-82a0-269c642cab51",
+      "id": "ALAS-2021-1611",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1611.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2021-1611",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1611.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "A flaw was found in python. A stack-based buffer overflow was discovered in the ctypes module provided within Python. Applications that use ctypes without carefully validating the input passed to it may be vulnerable to this flaw, which would allow an attacker to overflow a buffer on the stack and crash the application. The highest threat from this vulnerability is to system availability. (CVE-2021-3177)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1611.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/python@2.7.16-5.amzn2?arch=x86_64&upstream=python-2.7.16-5.amzn2.src.rpm&distro=amzn-2&package-id=e3d1c4f13c624d72"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:e1b72c5c-c27f-448c-8153-44f596711004",
+      "id": "ALAS-2021-1611",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1611.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2021-1611",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1611.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "A flaw was found in python. A stack-based buffer overflow was discovered in the ctypes module provided within Python. Applications that use ctypes without carefully validating the input passed to it may be vulnerable to this flaw, which would allow an attacker to overflow a buffer on the stack and crash the application. The highest threat from this vulnerability is to system availability. (CVE-2021-3177)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1611.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/python-libs@2.7.16-5.amzn2?arch=x86_64&upstream=python-2.7.16-5.amzn2.src.rpm&distro=amzn-2&package-id=648306be89232862"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:085bdda9-80cb-4783-9473-ecd68a126684",
+      "id": "ALAS-2021-1615",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1615.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2021-1615",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1615.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "A flaw was found in glibc's iconv() functionality. This flaw allows an attacker capable of supplying a crafted sequence of characters to an application using iconv() to convert from ISO-2022-JP-3 to cause an assertion failure. The highest threat from this vulnerability is to system availability. (CVE-2021-3326)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1615.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/glibc@2.26-34.amzn2?arch=x86_64&upstream=glibc-2.26-34.amzn2.src.rpm&distro=amzn-2&package-id=aaf9f40aee775d65"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:a2a6daaa-d336-4db9-8a7e-806e35b8c0c8",
+      "id": "ALAS-2021-1615",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1615.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2021-1615",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1615.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "A flaw was found in glibc's iconv() functionality. This flaw allows an attacker capable of supplying a crafted sequence of characters to an application using iconv() to convert from ISO-2022-JP-3 to cause an assertion failure. The highest threat from this vulnerability is to system availability. (CVE-2021-3326)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1615.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/glibc-common@2.26-34.amzn2?arch=x86_64&upstream=glibc-2.26-34.amzn2.src.rpm&distro=amzn-2&package-id=a88e37fdd568988d"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:e0e52f33-1bec-4646-9bad-1e14c8f572fa",
+      "id": "ALAS-2021-1615",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1615.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2021-1615",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1615.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "A flaw was found in glibc's iconv() functionality. This flaw allows an attacker capable of supplying a crafted sequence of characters to an application using iconv() to convert from ISO-2022-JP-3 to cause an assertion failure. The highest threat from this vulnerability is to system availability. (CVE-2021-3326)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1615.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/glibc-langpack-en@2.26-34.amzn2?arch=x86_64&upstream=glibc-2.26-34.amzn2.src.rpm&distro=amzn-2&package-id=78ca252f42c0cd10"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:66edeaaf-1083-4b49-924a-01889cc10b00",
+      "id": "ALAS-2021-1615",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1615.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2021-1615",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1615.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "A flaw was found in glibc's iconv() functionality. This flaw allows an attacker capable of supplying a crafted sequence of characters to an application using iconv() to convert from ISO-2022-JP-3 to cause an assertion failure. The highest threat from this vulnerability is to system availability. (CVE-2021-3326)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1615.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/glibc-minimal-langpack@2.26-34.amzn2?arch=x86_64&upstream=glibc-2.26-34.amzn2.src.rpm&distro=amzn-2&package-id=275d6892508cce54"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:0a2b43a1-7737-4464-9537-2c7d2a6e827f",
+      "id": "ALAS-2021-1615",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1615.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2021-1615",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1615.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "A flaw was found in glibc's iconv() functionality. This flaw allows an attacker capable of supplying a crafted sequence of characters to an application using iconv() to convert from ISO-2022-JP-3 to cause an assertion failure. The highest threat from this vulnerability is to system availability. (CVE-2021-3326)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1615.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/libcrypt@2.26-34.amzn2?arch=x86_64&upstream=glibc-2.26-34.amzn2.src.rpm&distro=amzn-2&package-id=8a691524aa78dd93"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:35cdca13-38e2-4ba4-9a14-379418fafebc",
+      "id": "ALAS-2021-1638",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1638.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2021-1638",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1638.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "A NULL pointer dereference flaw was found in the OpenLDAP server, during a request for renaming RDNs. This flaw allows a remote, unauthenticated attacker to crash the slapd process by sending a specially crafted request, causing a denial of service. The highest threat from this vulnerability is to system availability. (CVE-2020-25692)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1638.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/openldap@2.4.44-15.amzn2?arch=x86_64&upstream=openldap-2.4.44-15.amzn2.src.rpm&distro=amzn-2&package-id=1370d90ba0ef3b57"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:beb2eff9-a8d0-4dc8-82e7-dc7d9ac65bd3",
+      "id": "ALAS-2021-1652",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1652.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2021-1652",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1652.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "low"
+        }
+      ],
+      "description": "BZ2_decompress in decompress.c in bzip2 through 1.0.6 has an out-of-bounds write when there are many selectors. (CVE-2019-12900)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1652.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/bzip2-libs@1.0.6-13.amzn2.0.2?arch=x86_64&upstream=bzip2-1.0.6-13.amzn2.0.2.src.rpm&distro=amzn-2&package-id=f170c956be7a12a7"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:8ad82882-c65b-4e8c-b95c-78de79b966ab",
+      "id": "ALAS-2021-1653",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1653.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2021-1653",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1653.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "It was discovered that libcurl did not remove authentication credentials from URLs when automatically populating the Referer HTTP request header while handling HTTP redirects. This could lead to exposure of the credentials to the server to which requests were redirected. (CVE-2021-22876)A vulnerability was found in curl where a flaw in the option parser for sending NEW_ENV variables libcurl can pass uninitialized data from a stack-based buffer to the server. This issue leads to potentially revealing sensitive internal information to the server using a clear-text network protocol. The highest threat from this vulnerability is to confidentiality. (CVE-2021-22898)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1653.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/curl@7.61.1-12.amzn2.0.1?arch=x86_64&upstream=curl-7.61.1-12.amzn2.0.1.src.rpm&distro=amzn-2&package-id=5faf529a869872aa"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:5d81ce55-4e70-46da-83cb-fc1e2aa6b48b",
+      "id": "ALAS-2021-1653",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1653.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2021-1653",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1653.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "It was discovered that libcurl did not remove authentication credentials from URLs when automatically populating the Referer HTTP request header while handling HTTP redirects. This could lead to exposure of the credentials to the server to which requests were redirected. (CVE-2021-22876)A vulnerability was found in curl where a flaw in the option parser for sending NEW_ENV variables libcurl can pass uninitialized data from a stack-based buffer to the server. This issue leads to potentially revealing sensitive internal information to the server using a clear-text network protocol. The highest threat from this vulnerability is to confidentiality. (CVE-2021-22898)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1653.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/libcurl@7.61.1-12.amzn2.0.1?arch=x86_64&upstream=curl-7.61.1-12.amzn2.0.1.src.rpm&distro=amzn-2&package-id=1008415a12c5a3d8"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:06a87ed3-4a52-4e52-91af-163cc0158627",
+      "id": "ALAS-2021-1655",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1655.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2021-1655",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1655.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "high"
+        }
+      ],
+      "description": "An issue was discovered in GNOME GLib before 2.66.6 and 2.67.x before 2.67.3. The function g_bytes_new has an integer overflow on 64-bit platforms due to an implicit cast from 64 bits to 32 bits. The overflow could potentially lead to memory corruption. (CVE-2021-27219)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1655.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/glib2@2.56.1-4.amzn2?arch=x86_64&upstream=glib2-2.56.1-4.amzn2.src.rpm&distro=amzn-2&package-id=f1ce4832b45dbaac"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:9a4704a1-ee96-410c-b40c-3dde4187e5aa",
+      "id": "ALAS-2021-1656",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1656.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2021-1656",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1656.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "In the GNU C Library (aka glibc or libc6) through 2.29, proceed_next_node in posix/regexec.c has a heap-based buffer over-read via an attempted case-insensitive regular-expression match. (CVE-2019-9169)A flaw was found in glibc. If an attacker provides the iconv function with invalid multi-byte input sequences in IBM1364, IBM1371, IBM1388, IBM1390, IBM1399 encodings, it fails to advance the input state, which could lead to an infinite loop in applications, resulting in a denial of service. (CVE-2020-27618)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1656.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/glibc@2.26-34.amzn2?arch=x86_64&upstream=glibc-2.26-34.amzn2.src.rpm&distro=amzn-2&package-id=aaf9f40aee775d65"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:2293faf1-11ec-4eaf-9de6-e50c16dd5cb3",
+      "id": "ALAS-2021-1656",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1656.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2021-1656",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1656.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "In the GNU C Library (aka glibc or libc6) through 2.29, proceed_next_node in posix/regexec.c has a heap-based buffer over-read via an attempted case-insensitive regular-expression match. (CVE-2019-9169)A flaw was found in glibc. If an attacker provides the iconv function with invalid multi-byte input sequences in IBM1364, IBM1371, IBM1388, IBM1390, IBM1399 encodings, it fails to advance the input state, which could lead to an infinite loop in applications, resulting in a denial of service. (CVE-2020-27618)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1656.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/glibc-common@2.26-34.amzn2?arch=x86_64&upstream=glibc-2.26-34.amzn2.src.rpm&distro=amzn-2&package-id=a88e37fdd568988d"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:f2b18a1d-5488-4877-a5e0-e7be86c5248c",
+      "id": "ALAS-2021-1656",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1656.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2021-1656",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1656.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "In the GNU C Library (aka glibc or libc6) through 2.29, proceed_next_node in posix/regexec.c has a heap-based buffer over-read via an attempted case-insensitive regular-expression match. (CVE-2019-9169)A flaw was found in glibc. If an attacker provides the iconv function with invalid multi-byte input sequences in IBM1364, IBM1371, IBM1388, IBM1390, IBM1399 encodings, it fails to advance the input state, which could lead to an infinite loop in applications, resulting in a denial of service. (CVE-2020-27618)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1656.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/glibc-langpack-en@2.26-34.amzn2?arch=x86_64&upstream=glibc-2.26-34.amzn2.src.rpm&distro=amzn-2&package-id=78ca252f42c0cd10"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:3a1f2ca1-f932-4a46-99a1-58b6816bd8d9",
+      "id": "ALAS-2021-1656",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1656.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2021-1656",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1656.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "In the GNU C Library (aka glibc or libc6) through 2.29, proceed_next_node in posix/regexec.c has a heap-based buffer over-read via an attempted case-insensitive regular-expression match. (CVE-2019-9169)A flaw was found in glibc. If an attacker provides the iconv function with invalid multi-byte input sequences in IBM1364, IBM1371, IBM1388, IBM1390, IBM1399 encodings, it fails to advance the input state, which could lead to an infinite loop in applications, resulting in a denial of service. (CVE-2020-27618)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1656.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/glibc-minimal-langpack@2.26-34.amzn2?arch=x86_64&upstream=glibc-2.26-34.amzn2.src.rpm&distro=amzn-2&package-id=275d6892508cce54"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:a902f54c-8caa-4c8c-87dc-07979b5635b5",
+      "id": "ALAS-2021-1656",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1656.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2021-1656",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1656.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "In the GNU C Library (aka glibc or libc6) through 2.29, proceed_next_node in posix/regexec.c has a heap-based buffer over-read via an attempted case-insensitive regular-expression match. (CVE-2019-9169)A flaw was found in glibc. If an attacker provides the iconv function with invalid multi-byte input sequences in IBM1364, IBM1371, IBM1388, IBM1390, IBM1399 encodings, it fails to advance the input state, which could lead to an infinite loop in applications, resulting in a denial of service. (CVE-2020-27618)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1656.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/libcrypt@2.26-34.amzn2?arch=x86_64&upstream=glibc-2.26-34.amzn2.src.rpm&distro=amzn-2&package-id=8a691524aa78dd93"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:a46898bf-7005-4ea5-b3b8-e76dd81e2a91",
+      "id": "ALAS-2021-1662",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1662.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2021-1662",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1662.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "GNOME project libxml2 v2.9.10 has a global buffer over-read vulnerability in xmlEncodeEntitiesInternal at libxml2/entities.c. The issue has been fixed in commit 50f06b3e. (CVE-2020-24977)There is a flaw in the xml entity encoding functionality of libxml2. An attacker who is able to supply a crafted file to be processed by an application linked with the affected functionality of libxml2 could trigger an out-of-bounds read. The most likely impact of this flaw is to application availability, with some potential impact to confidentiality and integrity if an attacker is able to use memory information to further exploit the application. (CVE-2021-3517)A flaw exists in libxml2 which allows for an exponential entity expansion attack which can bypass existing protection mechanisms leading to a potential denial of service. (CVE-2021-3541)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1662.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/libxml2@2.9.1-6.amzn2.3.3?arch=x86_64&upstream=libxml2-2.9.1-6.amzn2.3.3.src.rpm&distro=amzn-2&package-id=7ebe618675e23846"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:da220496-e6ee-433e-babd-d0ad45abd5eb",
+      "id": "ALAS-2021-1664",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1664.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2021-1664",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1664.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "A flaw was found in the way NSS handled CCS (ChangeCipherSpec) messages in TLS 1.3. This flaw allows a remote attacker to send multiple CCS messages, causing a denial of service for servers compiled with the NSS library. The highest threat from this vulnerability is to system availability. (CVE-2020-25648)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1664.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/nss@3.44.0-7.amzn2?arch=x86_64&upstream=nss-3.44.0-7.amzn2.src.rpm&distro=amzn-2&package-id=2cb464ea2eabdab5"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:2a3f5c05-8da5-487c-9650-f28f83b9b29e",
+      "id": "ALAS-2021-1664",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1664.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2021-1664",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1664.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "A flaw was found in the way NSS handled CCS (ChangeCipherSpec) messages in TLS 1.3. This flaw allows a remote attacker to send multiple CCS messages, causing a denial of service for servers compiled with the NSS library. The highest threat from this vulnerability is to system availability. (CVE-2020-25648)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1664.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/nss-sysinit@3.44.0-7.amzn2?arch=x86_64&upstream=nss-3.44.0-7.amzn2.src.rpm&distro=amzn-2&package-id=05011f8669bbc3f2"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:5631e281-1617-4333-aa18-c9a4b889fcf9",
+      "id": "ALAS-2021-1664",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1664.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2021-1664",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1664.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "A flaw was found in the way NSS handled CCS (ChangeCipherSpec) messages in TLS 1.3. This flaw allows a remote attacker to send multiple CCS messages, causing a denial of service for servers compiled with the NSS library. The highest threat from this vulnerability is to system availability. (CVE-2020-25648)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1664.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/nss-tools@3.44.0-7.amzn2?arch=x86_64&upstream=nss-3.44.0-7.amzn2.src.rpm&distro=amzn-2&package-id=01f73c7582c3a81e"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:8d5acb09-58f9-41a9-a152-2ef4fc6629b3",
+      "id": "ALAS-2021-1669",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1669.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2021-1669",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1669.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "A flaw was found in Python. The built-in modules httplib and http.client (included in Python 2 and Python 3, respectively) do not properly validate CRLF sequences in the HTTP request method, potentially allowing manipulation to the request by injecting additional HTTP headers. The highest threat from this vulnerability is to confidentiality and integrity. (CVE-2020-26116)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1669.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/python@2.7.16-5.amzn2?arch=x86_64&upstream=python-2.7.16-5.amzn2.src.rpm&distro=amzn-2&package-id=e3d1c4f13c624d72"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:ab21409b-957a-495e-959f-024323e0852b",
+      "id": "ALAS-2021-1669",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1669.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2021-1669",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1669.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "A flaw was found in Python. The built-in modules httplib and http.client (included in Python 2 and Python 3, respectively) do not properly validate CRLF sequences in the HTTP request method, potentially allowing manipulation to the request by injecting additional HTTP headers. The highest threat from this vulnerability is to confidentiality and integrity. (CVE-2020-26116)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1669.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/python-libs@2.7.16-5.amzn2?arch=x86_64&upstream=python-2.7.16-5.amzn2.src.rpm&distro=amzn-2&package-id=648306be89232862"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:6b9296b2-b5df-4039-9a37-5edbf19bcb14",
+      "id": "ALAS-2021-1677",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1677.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2021-1677",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1677.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "There's a flaw in libxml2's xmllint. An attacker who is able to submit a crafted file to be processed by xmllint could trigger a use-after-free. The greatest impact of this flaw is to confidentiality, integrity, and availability. (CVE-2021-3516)There's a flaw in libxml2. An attacker who is able to submit a crafted file to be processed by an application linked with libxml2 could trigger a use-after-free. The greatest impact from this flaw is to confidentiality, integrity, and availability. (CVE-2021-3518)A vulnerability found in libxml2 in versions before 2.9.11 shows that it did not propagate errors while parsing XML mixed content, causing a NULL dereference. If an untrusted XML document was parsed in recovery mode and post-validated, the flaw could be used to crash the application. The highest threat from this vulnerability is to system availability. (CVE-2021-3537)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1677.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/libxml2@2.9.1-6.amzn2.3.3?arch=x86_64&upstream=libxml2-2.9.1-6.amzn2.3.3.src.rpm&distro=amzn-2&package-id=7ebe618675e23846"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:2b5ac62c-7e2f-44ba-8f15-cfc04cda03e3",
+      "id": "ALAS-2021-1687",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1687.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2021-1687",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1687.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "low"
+        }
+      ],
+      "description": "An integer overflow was found in the x64_64 Montgomery squaring procedure used in exponentiation with 512-bit moduli.  As per upstream:* No EC algorithms are affected.* Attacks against 2-prime RSA1024, 3-prime RSA1536, and DSA1024 as a result of this defect would be very difficult to perform and are not believed likely.* Attacks against DH512 are considered just feasible. However, for an attack the target would have to re-use the DH512 private key, which is not recommended anyway.* Also applications directly using the low level API BN_mod_exp may be affected if they use BN_FLG_CONSTTIME (CVE-2019-1551)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1687.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/openssl-libs@1.0.2k-19.amzn2.0.3?arch=x86_64&epoch=1&upstream=openssl-1.0.2k-19.amzn2.0.3.src.rpm&distro=amzn-2&package-id=ce1f995008afc26a"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:839280c6-5310-46ea-9573-09b6b98fa87a",
+      "id": "ALAS-2021-1689",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1689.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2021-1689",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1689.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "A flaw was found in RPM's signature check functionality when reading a package file. This flaw allows an attacker who can convince a victim to install a seemingly verifiable package, whose signature header was modified, to cause RPM database corruption and execute code. The highest threat from this vulnerability is to data integrity, confidentiality, and system availability. (CVE-2021-20271)A flaw was found in the RPM package in the read functionality. This flaw allows an attacker who can convince a victim to install a seemingly verifiable package or compromise an RPM repository, to cause RPM database corruption. The highest threat from this vulnerability is to data integrity. (CVE-2021-3421)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1689.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/python2-rpm@4.11.3-40.amzn2.0.3?arch=x86_64&upstream=rpm-4.11.3-40.amzn2.0.3.src.rpm&distro=amzn-2&package-id=010576d89bcd0993"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:87a347e9-9d54-447a-9c88-4d44f22b9bd8",
+      "id": "ALAS-2021-1689",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1689.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2021-1689",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1689.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "A flaw was found in RPM's signature check functionality when reading a package file. This flaw allows an attacker who can convince a victim to install a seemingly verifiable package, whose signature header was modified, to cause RPM database corruption and execute code. The highest threat from this vulnerability is to data integrity, confidentiality, and system availability. (CVE-2021-20271)A flaw was found in the RPM package in the read functionality. This flaw allows an attacker who can convince a victim to install a seemingly verifiable package or compromise an RPM repository, to cause RPM database corruption. The highest threat from this vulnerability is to data integrity. (CVE-2021-3421)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1689.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/rpm@4.11.3-40.amzn2.0.3?arch=x86_64&upstream=rpm-4.11.3-40.amzn2.0.3.src.rpm&distro=amzn-2&package-id=f64339b059a85228"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:b48bd4f1-e29d-4b30-9441-ebe420ec9042",
+      "id": "ALAS-2021-1689",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1689.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2021-1689",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1689.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "A flaw was found in RPM's signature check functionality when reading a package file. This flaw allows an attacker who can convince a victim to install a seemingly verifiable package, whose signature header was modified, to cause RPM database corruption and execute code. The highest threat from this vulnerability is to data integrity, confidentiality, and system availability. (CVE-2021-20271)A flaw was found in the RPM package in the read functionality. This flaw allows an attacker who can convince a victim to install a seemingly verifiable package or compromise an RPM repository, to cause RPM database corruption. The highest threat from this vulnerability is to data integrity. (CVE-2021-3421)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1689.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/rpm-build-libs@4.11.3-40.amzn2.0.3?arch=x86_64&upstream=rpm-4.11.3-40.amzn2.0.3.src.rpm&distro=amzn-2&package-id=2b59c6caf41cd153"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:dc00aad4-1886-4909-ae91-7b30b4630932",
+      "id": "ALAS-2021-1689",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1689.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2021-1689",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1689.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "A flaw was found in RPM's signature check functionality when reading a package file. This flaw allows an attacker who can convince a victim to install a seemingly verifiable package, whose signature header was modified, to cause RPM database corruption and execute code. The highest threat from this vulnerability is to data integrity, confidentiality, and system availability. (CVE-2021-20271)A flaw was found in the RPM package in the read functionality. This flaw allows an attacker who can convince a victim to install a seemingly verifiable package or compromise an RPM repository, to cause RPM database corruption. The highest threat from this vulnerability is to data integrity. (CVE-2021-3421)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1689.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/rpm-libs@4.11.3-40.amzn2.0.3?arch=x86_64&upstream=rpm-4.11.3-40.amzn2.0.3.src.rpm&distro=amzn-2&package-id=72bafd9950abc480"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:09083e8e-e9dd-4a67-8015-c92096ee06a0",
+      "id": "ALAS-2021-1693",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1693.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2021-1693",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1693.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "A flaw was found in libcurl from versions 7.29.0 through 7.71.1. An application that performs multiple requests with libcurl's multi API, and sets the `CURLOPT_CONNECT_ONLY` option, might experience libcurl using the wrong connection. The highest threat from this vulnerability is to data confidentiality. (CVE-2020-8231)A malicious server can use the `PASV` response to trick curl into connecting back to a given IP address and port, and this way potentially make curl extract information about services that are otherwise private and not disclosed, for example doing port scanning and service banner extractions. If curl operates on a URL provided by a user, a user can exploit that and pass in a URL to a malicious FTP server instance without needing any server breach to perform the attack. (CVE-2020-8284)Libcurl offers a wildcard matching functionality, which allows a callback (set with `CURLOPT_CHUNK_BGN_FUNCTION`) to return information back to libcurl on how to handle a specific entry in a directory when libcurl iterates over a list of all available entries. When this callback returns `CURL_CHUNK_BGN_FUNC_SKIP`, to tell libcurl to not deal with that file, the internal function in libcurl then calls itself recursively to handle the next directory entry. If there's a sufficient amount of file entries and if the callback returns \"skip\" enough number of times, libcurl runs out of stack space. The exact amount will of course vary with platforms, compilers and other environmental factors. (CVE-2020-8285)Libcurl offers \"OCSP stapling\" via the CURLOPT_SSL_VERIFYSTATUS option. When set, libcurl verifies the OCSP response that a server responds with as part of the TLS handshake. It then aborts the TLS negotiation if something is wrong with the response. The same feature can be enabled with --cert-status using the curl tool. As part of the OCSP response verification, a client should verify that the response is indeed set out for the correct certificate. This step was not performed by libcurl when built or told to use OpenSSL as TLS backend. (CVE-2020-8286)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1693.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/curl@7.61.1-12.amzn2.0.1?arch=x86_64&upstream=curl-7.61.1-12.amzn2.0.1.src.rpm&distro=amzn-2&package-id=5faf529a869872aa"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:03628c42-948b-490d-a220-b2b28bea20b6",
+      "id": "ALAS-2021-1693",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1693.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2021-1693",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1693.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "A flaw was found in libcurl from versions 7.29.0 through 7.71.1. An application that performs multiple requests with libcurl's multi API, and sets the `CURLOPT_CONNECT_ONLY` option, might experience libcurl using the wrong connection. The highest threat from this vulnerability is to data confidentiality. (CVE-2020-8231)A malicious server can use the `PASV` response to trick curl into connecting back to a given IP address and port, and this way potentially make curl extract information about services that are otherwise private and not disclosed, for example doing port scanning and service banner extractions. If curl operates on a URL provided by a user, a user can exploit that and pass in a URL to a malicious FTP server instance without needing any server breach to perform the attack. (CVE-2020-8284)Libcurl offers a wildcard matching functionality, which allows a callback (set with `CURLOPT_CHUNK_BGN_FUNCTION`) to return information back to libcurl on how to handle a specific entry in a directory when libcurl iterates over a list of all available entries. When this callback returns `CURL_CHUNK_BGN_FUNC_SKIP`, to tell libcurl to not deal with that file, the internal function in libcurl then calls itself recursively to handle the next directory entry. If there's a sufficient amount of file entries and if the callback returns \"skip\" enough number of times, libcurl runs out of stack space. The exact amount will of course vary with platforms, compilers and other environmental factors. (CVE-2020-8285)Libcurl offers \"OCSP stapling\" via the CURLOPT_SSL_VERIFYSTATUS option. When set, libcurl verifies the OCSP response that a server responds with as part of the TLS handshake. It then aborts the TLS negotiation if something is wrong with the response. The same feature can be enabled with --cert-status using the curl tool. As part of the OCSP response verification, a client should verify that the response is indeed set out for the correct certificate. This step was not performed by libcurl when built or told to use OpenSSL as TLS backend. (CVE-2020-8286)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1693.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/libcurl@7.61.1-12.amzn2.0.1?arch=x86_64&upstream=curl-7.61.1-12.amzn2.0.1.src.rpm&distro=amzn-2&package-id=1008415a12c5a3d8"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:9c134b6f-feeb-46de-8d8a-1e0eb8a8def9",
+      "id": "ALAS-2021-1700",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1700.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2021-1700",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1700.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "A flaw was found in the way curl handled telnet protocol option for sending environment variables, which could lead to sending of uninitialized data from a stack-based buffer to the server. This issue leads to potentially revealing sensitive internal information to the server using a clear-text network protocol. (CVE-2021-22898)A flaw was found in curl in the way curl handles a file hash mismatch after downloading content using the Metalink feature. This flaw allows malicious actors controlling a hosting server to trick users into downloading malicious content. The highest threat from this vulnerability is to integrity. (CVE-2021-22922)A flaw was found in curl in the way curl handles credentials when downloading content using the Metalink feature. This flaw allows malicious actors controlling a hosting server to gain access to credentials provided while downloading content without the user's knowledge. The highest threat from this vulnerability is to confidentiality. (CVE-2021-22923)A flaw was found in libcurl in the way libcurl handles previously used connections without accounting for 'issuer cert' and comparing the involved paths case-insensitively. This flaw allows libcurl to use the wrong connection. The highest threat from this vulnerability is to confidentiality. (CVE-2021-22924)A flaw was found in the way curl handled telnet protocol option for sending environment variables, which could lead to sending of uninitialized data from a stack-based buffer to the server. This issue leads to potentially revealing sensitive internal information to the server using a clear-text network protocol. (CVE-2021-22925)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1700.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/curl@7.61.1-12.amzn2.0.1?arch=x86_64&upstream=curl-7.61.1-12.amzn2.0.1.src.rpm&distro=amzn-2&package-id=5faf529a869872aa"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:bb20c38d-cc0b-4cc9-a59a-ec99e1baf16b",
+      "id": "ALAS-2021-1700",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1700.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2021-1700",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1700.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "A flaw was found in the way curl handled telnet protocol option for sending environment variables, which could lead to sending of uninitialized data from a stack-based buffer to the server. This issue leads to potentially revealing sensitive internal information to the server using a clear-text network protocol. (CVE-2021-22898)A flaw was found in curl in the way curl handles a file hash mismatch after downloading content using the Metalink feature. This flaw allows malicious actors controlling a hosting server to trick users into downloading malicious content. The highest threat from this vulnerability is to integrity. (CVE-2021-22922)A flaw was found in curl in the way curl handles credentials when downloading content using the Metalink feature. This flaw allows malicious actors controlling a hosting server to gain access to credentials provided while downloading content without the user's knowledge. The highest threat from this vulnerability is to confidentiality. (CVE-2021-22923)A flaw was found in libcurl in the way libcurl handles previously used connections without accounting for 'issuer cert' and comparing the involved paths case-insensitively. This flaw allows libcurl to use the wrong connection. The highest threat from this vulnerability is to confidentiality. (CVE-2021-22924)A flaw was found in the way curl handled telnet protocol option for sending environment variables, which could lead to sending of uninitialized data from a stack-based buffer to the server. This issue leads to potentially revealing sensitive internal information to the server using a clear-text network protocol. (CVE-2021-22925)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1700.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/libcurl@7.61.1-12.amzn2.0.1?arch=x86_64&upstream=curl-7.61.1-12.amzn2.0.1.src.rpm&distro=amzn-2&package-id=1008415a12c5a3d8"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:3a880ee8-d7f0-4712-a044-9cfd0ee6baae",
+      "id": "ALAS-2021-1703",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1703.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2021-1703",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1703.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "An integer overflow flaw was found in glibc that may result in reading of arbitrary memory when wordexp is used with a specially crafted untrusted regular expression input. (CVE-2021-35942)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1703.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/glibc@2.26-34.amzn2?arch=x86_64&upstream=glibc-2.26-34.amzn2.src.rpm&distro=amzn-2&package-id=aaf9f40aee775d65"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:3d6b8d5a-cbca-40c1-8463-97f6ef7d61ef",
+      "id": "ALAS-2021-1703",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1703.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2021-1703",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1703.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "An integer overflow flaw was found in glibc that may result in reading of arbitrary memory when wordexp is used with a specially crafted untrusted regular expression input. (CVE-2021-35942)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1703.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/glibc-common@2.26-34.amzn2?arch=x86_64&upstream=glibc-2.26-34.amzn2.src.rpm&distro=amzn-2&package-id=a88e37fdd568988d"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:234e16fe-eaee-4a57-a5d3-2a53c92a0b38",
+      "id": "ALAS-2021-1703",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1703.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2021-1703",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1703.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "An integer overflow flaw was found in glibc that may result in reading of arbitrary memory when wordexp is used with a specially crafted untrusted regular expression input. (CVE-2021-35942)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1703.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/glibc-langpack-en@2.26-34.amzn2?arch=x86_64&upstream=glibc-2.26-34.amzn2.src.rpm&distro=amzn-2&package-id=78ca252f42c0cd10"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:18978a4f-3688-48da-87a2-98380a9ec832",
+      "id": "ALAS-2021-1703",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1703.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2021-1703",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1703.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "An integer overflow flaw was found in glibc that may result in reading of arbitrary memory when wordexp is used with a specially crafted untrusted regular expression input. (CVE-2021-35942)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1703.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/glibc-minimal-langpack@2.26-34.amzn2?arch=x86_64&upstream=glibc-2.26-34.amzn2.src.rpm&distro=amzn-2&package-id=275d6892508cce54"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:5dc564ca-9c15-4e4d-a897-44af4bd4cb4a",
+      "id": "ALAS-2021-1703",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1703.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2021-1703",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1703.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "An integer overflow flaw was found in glibc that may result in reading of arbitrary memory when wordexp is used with a specially crafted untrusted regular expression input. (CVE-2021-35942)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1703.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/libcrypt@2.26-34.amzn2?arch=x86_64&upstream=glibc-2.26-34.amzn2.src.rpm&distro=amzn-2&package-id=8a691524aa78dd93"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:59db9ac9-c1a0-4ed7-8f70-947b18a9054b",
+      "id": "ALAS-2021-1707",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1707.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2021-1707",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1707.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "A flaw was discovered in OpenLDAP before 2.4.57 leading to a double free and slapd crash in the saslAuthzTo processing, resulting in denial of service. (CVE-2020-36225)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1707.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/openldap@2.4.44-15.amzn2?arch=x86_64&upstream=openldap-2.4.44-15.amzn2.src.rpm&distro=amzn-2&package-id=1370d90ba0ef3b57"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:7cacce84-69b1-47c7-8ee4-502dd722ccae",
+      "id": "ALAS-2021-1710",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1710.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2021-1710",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1710.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "high"
+        }
+      ],
+      "description": "Update of ca-certificates to version 2021.2.50-72.amzn2.0.1 addresses the expiring IdentTrust DST Root CA X3, which affected some Let's Encrypt TLS certificates. The effect of the expiring certificate would be an inability of OpenSSL to validate impacted certificates issued by Let's Encrypt. Impacted customers may have experienced connection or certificate errors when attempting to connect to certain websites or APIs that use Let's Encrypt certificates.",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1710.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/ca-certificates@2019.2.32-76.amzn2.0.1?arch=noarch&upstream=ca-certificates-2019.2.32-76.amzn2.0.1.src.rpm&distro=amzn-2&package-id=c650ae5ede493471"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:a511cb77-8e15-46e1-a638-44365abe124d",
+      "id": "ALAS-2021-1711",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1711.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2021-1711",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1711.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "An issue was discovered in GNOME GLib before 2.66.7 and 2.67.x before 2.67.4. If g_byte_array_new_take() was called with a buffer of 4GB or more on a 64-bit platform, the length would be truncated modulo 2**32, causing unintended length truncation. (CVE-2021-27218)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1711.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/glib2@2.56.1-4.amzn2?arch=x86_64&upstream=glib2-2.56.1-4.amzn2.src.rpm&distro=amzn-2&package-id=f1ce4832b45dbaac"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:de828142-1f03-4b7b-8fc0-316ec94d21e6",
+      "id": "ALAS-2021-1721",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1721.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2021-1721",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1721.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "It was found that openssl assumed ASN.1 strings to be NUL terminated. A malicious actor may be able to force an application into calling openssl function with a specially crafted, non-NUL terminated string to deliberately hit this bug, which may result in a crash of the application, causing a Denial of Service attack, or possibly, memory disclosure. The highest threat from this vulnerability is to data confidentiality and system availability. (CVE-2021-3712)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1721.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/openssl-libs@1.0.2k-19.amzn2.0.3?arch=x86_64&epoch=1&upstream=openssl-1.0.2k-19.amzn2.0.3.src.rpm&distro=amzn-2&package-id=ce1f995008afc26a"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:540c8ab3-c199-402d-a045-3902de2f9b7c",
+      "id": "ALAS-2021-1722",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1722.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2021-1722",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1722.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "critical"
+        }
+      ],
+      "description": "NSS (Network Security Services) up to and including 3.73 is vulnerable to a heap overflow when handling DER-encoded DSA or RSA-PSS signatures. Applications using NSS for handling signatures encoded within CMS, S/MIME, PKCS \\#7, or PKCS \\#12 are likely to be impacted. Applications using NSS for certificate validation or other TLS, X.509, OCSP or CRL functionality may be impacted, depending on how they configure NSS.When verifying a DER-encoded signature, NSS decodes the signature into a fixed-size buffer and passes the buffer to the underlying PKCS \\#11 module. The length of the signature is not correctly checked when processing DSA and RSA-PSS signatures. DSA and RSA-PSS signatures larger than 16384 bits will overflow the buffer in VFYContextStr. The vulnerable code is located within secvfy.c:vfy_CreateContext. (CVE-2021-43527)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1722.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/nspr@4.21.0-1.amzn2.0.2?arch=x86_64&upstream=nspr-4.21.0-1.amzn2.0.2.src.rpm&distro=amzn-2&package-id=348020d7a91be901"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:3dbf2279-8fef-4420-b523-6ab3c0d73f9d",
+      "id": "ALAS-2021-1722",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1722.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2021-1722",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1722.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "critical"
+        }
+      ],
+      "description": "NSS (Network Security Services) up to and including 3.73 is vulnerable to a heap overflow when handling DER-encoded DSA or RSA-PSS signatures. Applications using NSS for handling signatures encoded within CMS, S/MIME, PKCS \\#7, or PKCS \\#12 are likely to be impacted. Applications using NSS for certificate validation or other TLS, X.509, OCSP or CRL functionality may be impacted, depending on how they configure NSS.When verifying a DER-encoded signature, NSS decodes the signature into a fixed-size buffer and passes the buffer to the underlying PKCS \\#11 module. The length of the signature is not correctly checked when processing DSA and RSA-PSS signatures. DSA and RSA-PSS signatures larger than 16384 bits will overflow the buffer in VFYContextStr. The vulnerable code is located within secvfy.c:vfy_CreateContext. (CVE-2021-43527)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1722.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/nss@3.44.0-7.amzn2?arch=x86_64&upstream=nss-3.44.0-7.amzn2.src.rpm&distro=amzn-2&package-id=2cb464ea2eabdab5"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:0761701f-eeca-46a9-8bd9-f4efe80d3544",
+      "id": "ALAS-2021-1722",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1722.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2021-1722",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1722.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "critical"
+        }
+      ],
+      "description": "NSS (Network Security Services) up to and including 3.73 is vulnerable to a heap overflow when handling DER-encoded DSA or RSA-PSS signatures. Applications using NSS for handling signatures encoded within CMS, S/MIME, PKCS \\#7, or PKCS \\#12 are likely to be impacted. Applications using NSS for certificate validation or other TLS, X.509, OCSP or CRL functionality may be impacted, depending on how they configure NSS.When verifying a DER-encoded signature, NSS decodes the signature into a fixed-size buffer and passes the buffer to the underlying PKCS \\#11 module. The length of the signature is not correctly checked when processing DSA and RSA-PSS signatures. DSA and RSA-PSS signatures larger than 16384 bits will overflow the buffer in VFYContextStr. The vulnerable code is located within secvfy.c:vfy_CreateContext. (CVE-2021-43527)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1722.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/nss-softokn@3.44.0-8.amzn2?arch=x86_64&upstream=nss-softokn-3.44.0-8.amzn2.src.rpm&distro=amzn-2&package-id=14b8c1ec2d9bb9a4"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:c1ae0351-d173-41d0-88a6-873e764247d6",
+      "id": "ALAS-2021-1722",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1722.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2021-1722",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1722.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "critical"
+        }
+      ],
+      "description": "NSS (Network Security Services) up to and including 3.73 is vulnerable to a heap overflow when handling DER-encoded DSA or RSA-PSS signatures. Applications using NSS for handling signatures encoded within CMS, S/MIME, PKCS \\#7, or PKCS \\#12 are likely to be impacted. Applications using NSS for certificate validation or other TLS, X.509, OCSP or CRL functionality may be impacted, depending on how they configure NSS.When verifying a DER-encoded signature, NSS decodes the signature into a fixed-size buffer and passes the buffer to the underlying PKCS \\#11 module. The length of the signature is not correctly checked when processing DSA and RSA-PSS signatures. DSA and RSA-PSS signatures larger than 16384 bits will overflow the buffer in VFYContextStr. The vulnerable code is located within secvfy.c:vfy_CreateContext. (CVE-2021-43527)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1722.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/nss-softokn-freebl@3.44.0-8.amzn2?arch=x86_64&upstream=nss-softokn-3.44.0-8.amzn2.src.rpm&distro=amzn-2&package-id=e99013f9b958f96f"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:f0d36e9b-03cb-47d8-bafe-27be11640f46",
+      "id": "ALAS-2021-1722",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1722.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2021-1722",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1722.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "critical"
+        }
+      ],
+      "description": "NSS (Network Security Services) up to and including 3.73 is vulnerable to a heap overflow when handling DER-encoded DSA or RSA-PSS signatures. Applications using NSS for handling signatures encoded within CMS, S/MIME, PKCS \\#7, or PKCS \\#12 are likely to be impacted. Applications using NSS for certificate validation or other TLS, X.509, OCSP or CRL functionality may be impacted, depending on how they configure NSS.When verifying a DER-encoded signature, NSS decodes the signature into a fixed-size buffer and passes the buffer to the underlying PKCS \\#11 module. The length of the signature is not correctly checked when processing DSA and RSA-PSS signatures. DSA and RSA-PSS signatures larger than 16384 bits will overflow the buffer in VFYContextStr. The vulnerable code is located within secvfy.c:vfy_CreateContext. (CVE-2021-43527)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1722.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/nss-sysinit@3.44.0-7.amzn2?arch=x86_64&upstream=nss-3.44.0-7.amzn2.src.rpm&distro=amzn-2&package-id=05011f8669bbc3f2"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:a0d1b05a-211e-49bf-8dfe-178db93f7c58",
+      "id": "ALAS-2021-1722",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1722.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2021-1722",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1722.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "critical"
+        }
+      ],
+      "description": "NSS (Network Security Services) up to and including 3.73 is vulnerable to a heap overflow when handling DER-encoded DSA or RSA-PSS signatures. Applications using NSS for handling signatures encoded within CMS, S/MIME, PKCS \\#7, or PKCS \\#12 are likely to be impacted. Applications using NSS for certificate validation or other TLS, X.509, OCSP or CRL functionality may be impacted, depending on how they configure NSS.When verifying a DER-encoded signature, NSS decodes the signature into a fixed-size buffer and passes the buffer to the underlying PKCS \\#11 module. The length of the signature is not correctly checked when processing DSA and RSA-PSS signatures. DSA and RSA-PSS signatures larger than 16384 bits will overflow the buffer in VFYContextStr. The vulnerable code is located within secvfy.c:vfy_CreateContext. (CVE-2021-43527)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1722.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/nss-tools@3.44.0-7.amzn2?arch=x86_64&upstream=nss-3.44.0-7.amzn2.src.rpm&distro=amzn-2&package-id=01f73c7582c3a81e"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:c3e95c3c-0077-427a-8027-ab7f1d5a6599",
+      "id": "ALAS-2021-1722",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1722.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2021-1722",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1722.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "critical"
+        }
+      ],
+      "description": "NSS (Network Security Services) up to and including 3.73 is vulnerable to a heap overflow when handling DER-encoded DSA or RSA-PSS signatures. Applications using NSS for handling signatures encoded within CMS, S/MIME, PKCS \\#7, or PKCS \\#12 are likely to be impacted. Applications using NSS for certificate validation or other TLS, X.509, OCSP or CRL functionality may be impacted, depending on how they configure NSS.When verifying a DER-encoded signature, NSS decodes the signature into a fixed-size buffer and passes the buffer to the underlying PKCS \\#11 module. The length of the signature is not correctly checked when processing DSA and RSA-PSS signatures. DSA and RSA-PSS signatures larger than 16384 bits will overflow the buffer in VFYContextStr. The vulnerable code is located within secvfy.c:vfy_CreateContext. (CVE-2021-43527)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1722.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/nss-util@3.44.0-4.amzn2?arch=x86_64&upstream=nss-util-3.44.0-4.amzn2.src.rpm&distro=amzn-2&package-id=26068ebc816756c5"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:430c0e64-5acd-4cfd-8b66-c0e47287b3d5",
+      "id": "ALAS-2021-1724",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1724.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2021-1724",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1724.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "A flaw was found in libcurl. When sending data to an MQTT server could in some situations lead to libcurl using already freed memory and then try to free it again. The highest threat from this vulnerability is to data confidentiality as well as system availability. (CVE-2021-22945)A flaw was found in curl. This flaw lies in the --ssl-reqd option or related settings in libcurl. Users specify this flag to upgrade to TLS when communicating with either IMAP, POP3 or a FTP server. An attacker controlling such servers could return a crafted response which could lead to curl client continue its operation without TLS encryption leading to data being transmitted in clear text over the network. The highest threat from this vulnerability is to data confidentiality. (CVE-2021-22946)A flaw was found in curl. The flaw lies in how curl handles cached or pipelined responses that it receives from either a IMAP, POP3, SMTP or FTP server before the TLS upgrade using STARTTLS. In such a scenario curl even after upgrading to TLS would trust these cached responses treating them as valid and authenticated and use them. An attacker could potentially use this flaw to carry out a Man-In-The-Middle attack. The highest threat from this vulnerability is to data confidentiality. (CVE-2021-22947)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1724.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/curl@7.61.1-12.amzn2.0.1?arch=x86_64&upstream=curl-7.61.1-12.amzn2.0.1.src.rpm&distro=amzn-2&package-id=5faf529a869872aa"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:19cfb677-21d6-4a6f-894a-a557e0fb8fa3",
+      "id": "ALAS-2021-1724",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1724.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2021-1724",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1724.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "A flaw was found in libcurl. When sending data to an MQTT server could in some situations lead to libcurl using already freed memory and then try to free it again. The highest threat from this vulnerability is to data confidentiality as well as system availability. (CVE-2021-22945)A flaw was found in curl. This flaw lies in the --ssl-reqd option or related settings in libcurl. Users specify this flag to upgrade to TLS when communicating with either IMAP, POP3 or a FTP server. An attacker controlling such servers could return a crafted response which could lead to curl client continue its operation without TLS encryption leading to data being transmitted in clear text over the network. The highest threat from this vulnerability is to data confidentiality. (CVE-2021-22946)A flaw was found in curl. The flaw lies in how curl handles cached or pipelined responses that it receives from either a IMAP, POP3, SMTP or FTP server before the TLS upgrade using STARTTLS. In such a scenario curl even after upgrading to TLS would trust these cached responses treating them as valid and authenticated and use them. An attacker could potentially use this flaw to carry out a Man-In-The-Middle attack. The highest threat from this vulnerability is to data confidentiality. (CVE-2021-22947)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1724.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/libcurl@7.61.1-12.amzn2.0.1?arch=x86_64&upstream=curl-7.61.1-12.amzn2.0.1.src.rpm&distro=amzn-2&package-id=1008415a12c5a3d8"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:6cd2e46d-9452-48f5-b65c-1c42eaa6f44a",
+      "id": "ALAS-2021-1728",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1728.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2021-1728",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1728.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "A flaw was found in vim. A possible heap-based buffer overflow could allow an attacker to input a specially crafted file leading to a crash or code execution. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability. (CVE-2021-3778)A use-after-free vulnerability in vim could allow an attacker to input a specially crafted file leading to memory corruption and a potentially exploitable crash or code execution. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability. (CVE-2021-3796)An out-of-bounds write flaw was found in vim's drawscreen.c win_redr_status() function. This flaw allows an attacker to trick a user to open a crafted file with specific arguments in vim, triggering an out-of-bounds write. The highest threat from this vulnerability is to confidentiality, integrity, and system availability. (CVE-2021-3872)There's an out-of-bounds read flaw in Vim's ex_docmd.c. An attacker who is capable of tricking a user into opening a specially crafted file could trigger an out-of-bounds read on a memmove operation, potentially causing an impact to application availability. (CVE-2021-3875)A flaw was found in vim. A possible heap use-after-free vulnerability could allow an attacker to input a specially crafted file leading to a crash or code execution. The highest threat from this vulnerability is to system availability. (CVE-2021-3968)A flaw was found in vim. A possible heap-based buffer overflow could allow an attacker to input a specially crafted file leading to a crash or code execution. The highest threat from this vulnerability is to system availability. (CVE-2021-3973)A flaw was found in vim. A possible use-after-free vulnerability could allow an attacker to input a specially crafted file leading to a crash or code execution. The highest threat from this vulnerability is to system availability. (CVE-2021-3974)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1728.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/vim-minimal@8.1.1602-1.amzn2?arch=x86_64&epoch=2&upstream=vim-8.1.1602-1.amzn2.src.rpm&distro=amzn-2&package-id=1e714dcf72aab0ca"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:cb0b2db4-553c-4721-ac44-1dee3c3dd0f7",
+      "id": "ALAS-2022-1736",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1736.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2022-1736",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1736.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "low"
+        }
+      ],
+      "description": "The mq_notify function in the GNU C Library (aka glibc) has a use-after-free. It may use the notification thread attributes object (passed through its struct sigevent parameter) after it has been freed by the caller, leading to a denial of service (application crash) or possibly unspecified other impact. (CVE-2021-33574)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1736.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/glibc@2.26-34.amzn2?arch=x86_64&upstream=glibc-2.26-34.amzn2.src.rpm&distro=amzn-2&package-id=aaf9f40aee775d65"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:42c9671e-96d3-4aab-8dc8-7fbcfb50c8c6",
+      "id": "ALAS-2022-1736",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1736.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2022-1736",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1736.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "low"
+        }
+      ],
+      "description": "The mq_notify function in the GNU C Library (aka glibc) has a use-after-free. It may use the notification thread attributes object (passed through its struct sigevent parameter) after it has been freed by the caller, leading to a denial of service (application crash) or possibly unspecified other impact. (CVE-2021-33574)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1736.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/glibc-common@2.26-34.amzn2?arch=x86_64&upstream=glibc-2.26-34.amzn2.src.rpm&distro=amzn-2&package-id=a88e37fdd568988d"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:d9f8bc7d-53b8-4074-a3d6-32340f7fcbe8",
+      "id": "ALAS-2022-1736",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1736.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2022-1736",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1736.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "low"
+        }
+      ],
+      "description": "The mq_notify function in the GNU C Library (aka glibc) has a use-after-free. It may use the notification thread attributes object (passed through its struct sigevent parameter) after it has been freed by the caller, leading to a denial of service (application crash) or possibly unspecified other impact. (CVE-2021-33574)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1736.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/glibc-langpack-en@2.26-34.amzn2?arch=x86_64&upstream=glibc-2.26-34.amzn2.src.rpm&distro=amzn-2&package-id=78ca252f42c0cd10"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:9779464e-5319-4b8b-8f85-42ee9a0b8dc8",
+      "id": "ALAS-2022-1736",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1736.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2022-1736",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1736.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "low"
+        }
+      ],
+      "description": "The mq_notify function in the GNU C Library (aka glibc) has a use-after-free. It may use the notification thread attributes object (passed through its struct sigevent parameter) after it has been freed by the caller, leading to a denial of service (application crash) or possibly unspecified other impact. (CVE-2021-33574)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1736.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/glibc-minimal-langpack@2.26-34.amzn2?arch=x86_64&upstream=glibc-2.26-34.amzn2.src.rpm&distro=amzn-2&package-id=275d6892508cce54"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:3e157565-33be-4248-be60-92d4d331d939",
+      "id": "ALAS-2022-1736",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1736.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2022-1736",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1736.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "low"
+        }
+      ],
+      "description": "The mq_notify function in the GNU C Library (aka glibc) has a use-after-free. It may use the notification thread attributes object (passed through its struct sigevent parameter) after it has been freed by the caller, leading to a denial of service (application crash) or possibly unspecified other impact. (CVE-2021-33574)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1736.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/libcrypt@2.26-34.amzn2?arch=x86_64&upstream=glibc-2.26-34.amzn2.src.rpm&distro=amzn-2&package-id=8a691524aa78dd93"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:e3e97c88-3fdd-4089-8c3b-73411b069161",
+      "id": "ALAS-2022-1738",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1738.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2022-1738",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1738.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "A flaw was found in krb5. The Key Distribution Center (KDC) in MIT Kerberos 5 has a NULL pointer dereference via a FAST inner body that lacks a server field. An authenticated attacker could use this flaw to crash the Kerberos KDC server. The highest threat from this vulnerability is to system availability. (CVE-2021-37750)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1738.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/krb5-libs@1.15.1-37.amzn2.2.2?arch=x86_64&upstream=krb5-1.15.1-37.amzn2.2.2.src.rpm&distro=amzn-2&package-id=623d9be85a64caf7"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:9d957496-599a-45a7-b933-9fbfb70393c8",
+      "id": "ALAS-2022-1743",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1743.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2022-1743",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1743.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "vim is vulnerable to Heap-based Buffer Overflow (CVE-2021-3903)A flaw was found in vim. A possible heap-based buffer overflow could allow an attacker to input a specially crafted file leading to a crash or code execution. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability. (CVE-2021-3927)A flaw was found in vim. A possible stack-based buffer overflow could allow an attacker to input a specially crafted file leading to a crash or code execution. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability. (CVE-2021-3928)A flaw was found in vim. A possible heap use-after-free vulnerability could allow an attacker to input a specially crafted file leading to a crash or code execution. The highest threat from this vulnerability is to system availability. (CVE-2021-3968)A flaw was found in vim. A possible heap-based buffer overflow could allow an attacker to input a specially crafted file leading to a crash or code execution. The highest threat from this vulnerability is to system availability. (CVE-2021-3973)A flaw was found in vim. A possible use-after-free vulnerability could allow an attacker to input a specially crafted file leading to a crash or code execution. The highest threat from this vulnerability is to system availability. (CVE-2021-3974)A flaw was found in vim. A possible heap-based buffer overflow allows an attacker to input a specially crafted file, leading to a crash or code execution. The highest threat from this vulnerability is confidentiality, integrity, and system availability. (CVE-2021-3984)A flaw was found in vim. A possible heap-based buffer overflow vulnerability allows an attacker to input a specially crafted file, leading to a crash or code execution. The highest threat from this vulnerability is system availability. (CVE-2021-4019)vim is vulnerable to Use After Free (CVE-2021-4069)A flaw was found in vim. A possible heap-based buffer overflow could allow an attacker to input a specially crafted file leading to a crash or code execution. (CVE-2021-4136)A flaw was found in vim. A possible heap-based buffer overflow could allow an attacker to input a specially crafted file leading to a crash or code execution. (CVE-2021-4166)A flaw was found in vim. A possible use after free vulnerability could allow an attacker to input a specially crafted file leading to a crash or code execution. (CVE-2021-4173)A flaw was found in vim. A possible use after free vulnerability could allow an attacker to input a specially crafted file leading to a crash or code execution. (CVE-2021-4187)It was found that vim was vulnerable to use-after-free flaw in win_linetabsize(). Sourcing a specially crafted file in vim could crash the vim process or possibly lead to other undefined behaviors. (CVE-2021-4192)It was found that vim was vulnerable to an out-of-bound read flaw in getvcol(). A specially crafted file could be used to, when opened in vim, disclose some of the process's internal memory. (CVE-2021-4193)References to CVE-2021-4192 and CVE-2021-4193 have been added after the original release of this advisory, however those vulnerabilities were fixed by the packages referenced by this advisory's initial release on 2022-01-18.",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1743.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/vim-minimal@8.1.1602-1.amzn2?arch=x86_64&epoch=2&upstream=vim-8.1.1602-1.amzn2.src.rpm&distro=amzn-2&package-id=1e714dcf72aab0ca"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:c0097704-cc8d-424e-8a2b-62dae5a1bc5f",
+      "id": "ALAS-2022-1751",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1751.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2022-1751",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1751.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "It was found that vim was vulnerable to use-after-free flaw in the way it was treating allocated lines in user functions. A specially crafted file could crash the vim process or possibly lead to other undefined behaviors. (CVE-2022-0156)It was found that vim was vulnerable to a 1 byte heap based out of bounds read flaw in the `compile_get_env()` function. A file could use that flaw to disclose 1 byte of vim's internal memory. (CVE-2022-0158)A flaw was found in vim.  The vulnerability occurs due to not checking the length for the NameBuff function, which can lead to a heap buffer overflow. This flaw allows an attacker to input a specially crafted file, leading to a crash or code execution. (CVE-2022-0213)A heap based out-of-bounds write flaw was found in vim's ops.c. This flaw allows an attacker to trick a user to open a crafted file triggering an out-of-bounds write. This vulnerability is capable of crashing software, modify memory, and possible code execution. (CVE-2022-0261)A flaw was found in vim.  The vulnerability occurs due to reading beyond the end of a line in the utf_head_off function, which can lead to a heap buffer overflow. This flaw allows an attacker to input a specially crafted file, leading to a crash or code execution. (CVE-2022-0318)A flaw was found in vim. The vulnerability occurs due to too many recursions, which can lead to a segmentation fault. This flaw allows an attacker to input a specially crafted file, leading to a crash or code execution. (CVE-2022-0351)A flaw was found in vim. The vulnerability occurs due to Illegal memory access with large tabstop in Ex mode, which can lead to a heap buffer overflow. This flaw allows an attacker to input a specially crafted file, leading to a crash or code execution. (CVE-2022-0359)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1751.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/vim-minimal@8.1.1602-1.amzn2?arch=x86_64&epoch=2&upstream=vim-8.1.1602-1.amzn2.src.rpm&distro=amzn-2&package-id=1e714dcf72aab0ca"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:95e04974-ccc3-42e5-83b2-dde80ed4457c",
+      "id": "ALAS-2022-1754",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1754.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2022-1754",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1754.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "expat (libexpat) is susceptible to a software flaw that causes process interruption. When processing a large number of prefixed XML attributes on a single tag can libexpat can terminate unexpectedly due to integer overflow. The highest threat from this vulnerability is to availability, confidentiality and integrity. (CVE-2022-23852)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1754.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/expat@2.1.0-10.amzn2.0.2?arch=x86_64&upstream=expat-2.1.0-10.amzn2.0.2.src.rpm&distro=amzn-2&package-id=448f7f65e0358bba"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:80b8fb7c-5a05-4b66-b977-d370bb803dbc",
+      "id": "ALAS-2022-1758",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1758.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2022-1758",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1758.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "high"
+        }
+      ],
+      "description": "A flaw was found in the SQL plugin shipped with Cyrus SASL. Failure to properly escape the SQL input allows a remote attacker to execute arbitrary SQL commands. This issue can lead to the escalation of privileges. (CVE-2022-24407)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1758.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/cyrus-sasl-lib@2.1.26-23.amzn2?arch=x86_64&upstream=cyrus-sasl-2.1.26-23.amzn2.src.rpm&distro=amzn-2&package-id=daebbeb6d70272d0"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:c7854cdc-d507-4a29-900b-0c5634f43e0c",
+      "id": "ALAS-2022-1759",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1759.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2022-1759",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1759.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "high"
+        }
+      ],
+      "description": "An integer overflow was found in expat. The issue occurs in storeRawNames() by abusing the m_buffer expansion logic to allow allocations very close to INT_MAX and out-of-bounds heap writes. This flaw can cause a denial of service or potentially arbitrary code execution. (CVE-2022-25315)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1759.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/expat@2.1.0-10.amzn2.0.2?arch=x86_64&upstream=expat-2.1.0-10.amzn2.0.2.src.rpm&distro=amzn-2&package-id=448f7f65e0358bba"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:3db7078b-344d-4c63-98fd-e2dd0711ed89",
+      "id": "ALAS-2022-1764",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1764.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2022-1764",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1764.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "critical"
+        }
+      ],
+      "description": "A flaw was found in expat. Passing malformed 2- and 3-byte UTF-8 sequences (for example, from start tag names) to the XML processing application on top of expat can lead to arbitrary code execution. This issue is dependent on how invalid UTF-8 is handled inside the XML processor. (CVE-2022-25235)A flaw was found in expat. Passing one or more namespace separator characters in the \"xmlns[:prefix]\" attribute values made expat send malformed tag names to the XML processor on top of expat. This issue causes arbitrary code execution depending on how unexpected cases are handled inside the XML processor. (CVE-2022-25236)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1764.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/expat@2.1.0-10.amzn2.0.2?arch=x86_64&upstream=expat-2.1.0-10.amzn2.0.2.src.rpm&distro=amzn-2&package-id=448f7f65e0358bba"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:2e2a197b-eb05-4271-b92e-5214fabcc73a",
+      "id": "ALAS-2022-1766",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1766.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2022-1766",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1766.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "high"
+        }
+      ],
+      "description": "The BN_mod_sqrt() function, which computes a modular square root, contains a bug that can cause it to loop forever for non-prime moduli. Internally this function is used when parsing certificates that contain elliptic curve public keys in compressed form or explicit elliptic curve parameters with a base point encoded in compressed form. It is possible to trigger the infinite loop by crafting a certificate that has invalid explicit curve parameters. Since certificate parsing happens prior to verification of the certificate signature, any process that parses an externally supplied certificate may thus be subject to a denial of service attack. The infinite loop can also be reached when parsing crafted private keys as they can contain explicit elliptic curve parameters. Thus vulnerable situations include: - TLS clients consuming server certificates - TLS servers consuming client certificates - Hosting providers taking certificates or private keys from customers - Certificate authorities parsing certification requests from subscribers - Anything else which parses ASN.1 elliptic curve parameters Also any other applications that use the BN_mod_sqrt() where the attacker can control the parameter values are vulnerable to this DoS issue. In the OpenSSL 1.0.2 version the public key is not parsed during initial parsing of the certificate which makes it slightly harder to trigger the infinite loop. However any operation which requires the public key from the certificate will trigger the infinite loop. In particular the attacker can use a self-signed certificate to trigger the loop during verification of the certificate signature. This issue affects OpenSSL versions 1.0.2, 1.1.1 and 3.0. OpenSSL versions 1.0.2, 1.1.1, and 3.0 have been updated. (CVE-2022-0778)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1766.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/openssl-libs@1.0.2k-19.amzn2.0.3?arch=x86_64&epoch=1&upstream=openssl-1.0.2k-19.amzn2.0.3.src.rpm&distro=amzn-2&package-id=ce1f995008afc26a"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:b7dfabc5-1d2d-4ecd-a9d6-2056eff22b3d",
+      "id": "ALAS-2022-1767",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1767.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2022-1767",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1767.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "A stack based buffer-overflow vulnerability was found in the deprecated compatibility function svcunix_create() in the sunrpc's svc_unix.c module of the GNU C Library (aka glibc) through 2.34. This vulnerability copies its path argument onto the stack without validating its length, which may result in a buffer overflow, potentially resulting in a denial of service or (if an application is not built with a stack protector enabled) then it will lead to arbitrary code execution. (CVE-2022-23218)A stack based buffer-overflow vulnerability was found in the deprecated compatibility function clnt_create() in the sunrpc's clnt_gen.c module of the GNU C Library (aka glibc) through 2.34. This vulnerability copies its hostname argument onto the stack without validating its length, which may result in a buffer overflow, potentially resulting in a denial of service or (if an application is not built with a stack protector enabled) lead to arbitrary code execution. (CVE-2022-23219)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1767.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/glibc@2.26-34.amzn2?arch=x86_64&upstream=glibc-2.26-34.amzn2.src.rpm&distro=amzn-2&package-id=aaf9f40aee775d65"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:3fd362a3-7c0f-4add-b3b5-3489ccf4221f",
+      "id": "ALAS-2022-1767",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1767.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2022-1767",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1767.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "A stack based buffer-overflow vulnerability was found in the deprecated compatibility function svcunix_create() in the sunrpc's svc_unix.c module of the GNU C Library (aka glibc) through 2.34. This vulnerability copies its path argument onto the stack without validating its length, which may result in a buffer overflow, potentially resulting in a denial of service or (if an application is not built with a stack protector enabled) then it will lead to arbitrary code execution. (CVE-2022-23218)A stack based buffer-overflow vulnerability was found in the deprecated compatibility function clnt_create() in the sunrpc's clnt_gen.c module of the GNU C Library (aka glibc) through 2.34. This vulnerability copies its hostname argument onto the stack without validating its length, which may result in a buffer overflow, potentially resulting in a denial of service or (if an application is not built with a stack protector enabled) lead to arbitrary code execution. (CVE-2022-23219)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1767.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/glibc-common@2.26-34.amzn2?arch=x86_64&upstream=glibc-2.26-34.amzn2.src.rpm&distro=amzn-2&package-id=a88e37fdd568988d"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:22205232-de41-4120-928e-f8b2173dc2f7",
+      "id": "ALAS-2022-1767",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1767.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2022-1767",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1767.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "A stack based buffer-overflow vulnerability was found in the deprecated compatibility function svcunix_create() in the sunrpc's svc_unix.c module of the GNU C Library (aka glibc) through 2.34. This vulnerability copies its path argument onto the stack without validating its length, which may result in a buffer overflow, potentially resulting in a denial of service or (if an application is not built with a stack protector enabled) then it will lead to arbitrary code execution. (CVE-2022-23218)A stack based buffer-overflow vulnerability was found in the deprecated compatibility function clnt_create() in the sunrpc's clnt_gen.c module of the GNU C Library (aka glibc) through 2.34. This vulnerability copies its hostname argument onto the stack without validating its length, which may result in a buffer overflow, potentially resulting in a denial of service or (if an application is not built with a stack protector enabled) lead to arbitrary code execution. (CVE-2022-23219)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1767.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/glibc-langpack-en@2.26-34.amzn2?arch=x86_64&upstream=glibc-2.26-34.amzn2.src.rpm&distro=amzn-2&package-id=78ca252f42c0cd10"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:83db7a5e-28ab-4b76-aa62-32a7c367e1c8",
+      "id": "ALAS-2022-1767",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1767.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2022-1767",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1767.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "A stack based buffer-overflow vulnerability was found in the deprecated compatibility function svcunix_create() in the sunrpc's svc_unix.c module of the GNU C Library (aka glibc) through 2.34. This vulnerability copies its path argument onto the stack without validating its length, which may result in a buffer overflow, potentially resulting in a denial of service or (if an application is not built with a stack protector enabled) then it will lead to arbitrary code execution. (CVE-2022-23218)A stack based buffer-overflow vulnerability was found in the deprecated compatibility function clnt_create() in the sunrpc's clnt_gen.c module of the GNU C Library (aka glibc) through 2.34. This vulnerability copies its hostname argument onto the stack without validating its length, which may result in a buffer overflow, potentially resulting in a denial of service or (if an application is not built with a stack protector enabled) lead to arbitrary code execution. (CVE-2022-23219)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1767.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/glibc-minimal-langpack@2.26-34.amzn2?arch=x86_64&upstream=glibc-2.26-34.amzn2.src.rpm&distro=amzn-2&package-id=275d6892508cce54"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:351a784a-e6fe-4bb7-a2e7-f30b882fe781",
+      "id": "ALAS-2022-1767",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1767.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2022-1767",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1767.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "A stack based buffer-overflow vulnerability was found in the deprecated compatibility function svcunix_create() in the sunrpc's svc_unix.c module of the GNU C Library (aka glibc) through 2.34. This vulnerability copies its path argument onto the stack without validating its length, which may result in a buffer overflow, potentially resulting in a denial of service or (if an application is not built with a stack protector enabled) then it will lead to arbitrary code execution. (CVE-2022-23218)A stack based buffer-overflow vulnerability was found in the deprecated compatibility function clnt_create() in the sunrpc's clnt_gen.c module of the GNU C Library (aka glibc) through 2.34. This vulnerability copies its hostname argument onto the stack without validating its length, which may result in a buffer overflow, potentially resulting in a denial of service or (if an application is not built with a stack protector enabled) lead to arbitrary code execution. (CVE-2022-23219)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1767.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/libcrypt@2.26-34.amzn2?arch=x86_64&upstream=glibc-2.26-34.amzn2.src.rpm&distro=amzn-2&package-id=8a691524aa78dd93"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:556bae41-6d86-488f-bc63-3b93bf389552",
+      "id": "ALAS-2022-1769",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1769.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2022-1769",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1769.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "A side-channel attack flaw was found in the way libgcrypt implemented Elgamal encryption. This flaw allows an attacker to decrypt parts of ciphertext encrypted using Elgamal, for example, when using OpenPGP. The highest threat from this vulnerability is to confidentiality. (CVE-2021-33560)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1769.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/libgcrypt@1.5.3-14.amzn2.0.2?arch=x86_64&upstream=libgcrypt-1.5.3-14.amzn2.0.2.src.rpm&distro=amzn-2&package-id=308ac3e8a6cc94fe"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:77152940-a44b-4758-8e52-f5fff57f3cd9",
+      "id": "ALAS-2022-1770",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1770.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2022-1770",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1770.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "A flaw was found in OpenLDAP. This flaw allows an attacker who can send a malicious packet to be processed by OpenLDAP's slapd server, to trigger an assertion failure. The highest threat from this vulnerability is to system availability. (CVE-2020-25709)A flaw was found in OpenLDAP. This flaw allows an attacker who sends a malicious packet processed by OpenLDAP to force a failed assertion in csnNormalize23(). The highest threat from this vulnerability is to system availability. (CVE-2020-25710)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1770.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/openldap@2.4.44-15.amzn2?arch=x86_64&upstream=openldap-2.4.44-15.amzn2.src.rpm&distro=amzn-2&package-id=1370d90ba0ef3b57"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:5f23b941-04f8-4ffe-8e80-5071f3211795",
+      "id": "ALAS-2022-1771",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1771.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2022-1771",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1771.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "A flaw was found in vim that causes an out-of-range pointer offset vulnerability. This flaw allows an attacker to input a specially crafted file, leading to a crash or code execution. (CVE-2022-0554)A heap-based buffer overflow flaw was found in vim's ex_retab() function of indent.c file. This flaw occurs when repeatedly using :retab. This flaw allows an attacker to trick a user into opening a crafted file triggering a heap-overflow. (CVE-2022-0572)A stack-based buffer overflow flaw was found in vim's ga_concat_shorten_esc() function of src/testing.c file. This flaw allows an attacker to trick a user into opening a crafted file, triggering a stack-overflow. This issue can lead to an application crash, causing a denial of service. (CVE-2022-0629)A flaw was found in vim. The vulnerability occurs due to a crash when using a special multi-byte character and leads to an out-of-range vulnerability. This flaw allows an attacker to input a specially crafted file, leading to a crash or code execution. (CVE-2022-0685)A NULL pointer dereference flaw was found in vim's find_ucmd() function of usercmd.c file. This flaw allows an attacker to trick a user into opening a crafted file, triggering a NULL pointer dereference. This issue leads to an application crash, causing a denial of service. (CVE-2022-0696)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1771.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/vim-minimal@8.1.1602-1.amzn2?arch=x86_64&epoch=2&upstream=vim-8.1.1602-1.amzn2.src.rpm&distro=amzn-2&package-id=1e714dcf72aab0ca"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:9ed767cf-1507-4210-aaa4-203942bfb283",
+      "id": "ALAS-2022-1772",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1772.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2022-1772",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1772.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "high"
+        }
+      ],
+      "description": "An out-of-bounds access flaw was found in zlib, which allows memory corruption when deflating (ex: when compressing) if the input has many distant matches. For some rare inputs with a large number of distant matches (crafted payloads), the buffer into which the compressed or deflated data is written can overwrite the distance symbol table which it overlays. This issue results in corrupted output due to invalid distances, which leads to out-of-bound access, corrupting the memory and potentially crashing the application. (CVE-2018-25032)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1772.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/zlib@1.2.7-18.amzn2?arch=x86_64&upstream=zlib-1.2.7-18.amzn2.src.rpm&distro=amzn-2&package-id=c0cf775539092aff"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:035c07a3-c60c-451a-a967-4def26d6a064",
+      "id": "ALAS-2022-1782",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1782.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2022-1782",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1782.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "high"
+        }
+      ],
+      "description": "An arbitrary file write vulnerability was found in GNU gzip's zgrep utility. When zgrep is applied on the attacker's chosen file name (for example, a crafted file name), this can overwrite an attacker's content to an arbitrary attacker-selected file. This flaw occurs due to insufficient validation when processing filenames with two or more newlines where selected content and the target file names are embedded in crafted multi-line file names. This flaw allows a remote, low privileged attacker to force zgrep to write arbitrary files on the system. (CVE-2022-1271)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1782.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/xz-libs@5.2.2-1.amzn2.0.2?arch=x86_64&upstream=xz-5.2.2-1.amzn2.0.2.src.rpm&distro=amzn-2&package-id=948ac7a6d34f83f6"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:6c4f433e-b39c-4001-a8f7-425da1ecfbab",
+      "id": "ALAS-2022-1784",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1784.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2022-1784",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1784.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "A flaw was found in the way Unicode standards are implemented in the context of development environments, which have specialized requirements for rendering text. An attacker could exploit this to deceive a human reviewer by creating a malicious patch containing well placed BiDi characters. The special handling and rendering of those characters can be then used in an attempt to hide unexpected and potentially dangerous behaviour from the reviewer. (CVE-2021-42574)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1784.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/libgcc@7.3.1-6.amzn2.0.4?arch=x86_64&upstream=gcc-7.3.1-6.amzn2.0.4.src.rpm&distro=amzn-2&package-id=979f7faec885ddae"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:d60799ad-5f2b-401c-b43e-1e9ad1e378c5",
+      "id": "ALAS-2022-1784",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1784.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2022-1784",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1784.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "A flaw was found in the way Unicode standards are implemented in the context of development environments, which have specialized requirements for rendering text. An attacker could exploit this to deceive a human reviewer by creating a malicious patch containing well placed BiDi characters. The special handling and rendering of those characters can be then used in an attempt to hide unexpected and potentially dangerous behaviour from the reviewer. (CVE-2021-42574)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1784.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/libstdc++@7.3.1-6.amzn2.0.4?arch=x86_64&upstream=gcc-7.3.1-6.amzn2.0.4.src.rpm&distro=amzn-2&package-id=56defed63b54dcef"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:8b285604-e7a2-4e57-95fb-2554773f9542",
+      "id": "ALAS-2022-1788",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1788.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2022-1788",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1788.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "In Expat (aka libexpat) before 2.4.3, a left shift by 29 (or more) places in the storeAtts function in xmlparse.c can lead to realloc misbehavior (e.g., allocating too few bytes, or only freeing memory). (CVE-2021-45960)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1788.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/expat@2.1.0-10.amzn2.0.2?arch=x86_64&upstream=expat-2.1.0-10.amzn2.0.2.src.rpm&distro=amzn-2&package-id=448f7f65e0358bba"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:1bc77000-8304-454a-bf24-aef5848de29d",
+      "id": "ALAS-2022-1792",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1792.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2022-1792",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1792.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "A vulnerability was found in curl. This security flaw allows reusing OAUTH2-authenticated connections without properly ensuring that the connection was authenticated with the same credentials set for this transfer. This issue leads to an authentication bypass, either by mistake or by a malicious actor. (CVE-2022-22576)A vulnerability was found in curl. This security flaw allows leaking credentials to other servers when it follows redirects from auth-protected HTTP(S) URLs to other protocols and port numbers. (CVE-2022-27774)A vulnerability was found in curl. This security flaw occurs due to errors in the logic where the config matching function did not take the IPv6 address zone id into account. This issue can lead to curl reusing the wrong connection when one transfer uses a zone id, and the subsequent transfer uses another. (CVE-2022-27775)A vulnerability was found in curl. This security flaw allows leak authentication or cookie header data on HTTP redirects to the same host but another port number. Sending the same set of headers to a server on a different port number is a problem for applications that pass on custom `Authorization:` or `Cookie:`headers. Those headers often contain privacy-sensitive information or data. (CVE-2022-27776)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1792.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/curl@7.61.1-12.amzn2.0.1?arch=x86_64&upstream=curl-7.61.1-12.amzn2.0.1.src.rpm&distro=amzn-2&package-id=5faf529a869872aa"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:2c846d5f-03a8-4ac5-aa9e-6ba0ed1e2377",
+      "id": "ALAS-2022-1792",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1792.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2022-1792",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1792.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "A vulnerability was found in curl. This security flaw allows reusing OAUTH2-authenticated connections without properly ensuring that the connection was authenticated with the same credentials set for this transfer. This issue leads to an authentication bypass, either by mistake or by a malicious actor. (CVE-2022-22576)A vulnerability was found in curl. This security flaw allows leaking credentials to other servers when it follows redirects from auth-protected HTTP(S) URLs to other protocols and port numbers. (CVE-2022-27774)A vulnerability was found in curl. This security flaw occurs due to errors in the logic where the config matching function did not take the IPv6 address zone id into account. This issue can lead to curl reusing the wrong connection when one transfer uses a zone id, and the subsequent transfer uses another. (CVE-2022-27775)A vulnerability was found in curl. This security flaw allows leak authentication or cookie header data on HTTP redirects to the same host but another port number. Sending the same set of headers to a server on a different port number is a problem for applications that pass on custom `Authorization:` or `Cookie:`headers. Those headers often contain privacy-sensitive information or data. (CVE-2022-27776)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1792.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/libcurl@7.61.1-12.amzn2.0.1?arch=x86_64&upstream=curl-7.61.1-12.amzn2.0.1.src.rpm&distro=amzn-2&package-id=1008415a12c5a3d8"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:aef7fc0e-c2a2-4909-b85d-fd07e12d0baa",
+      "id": "ALAS-2022-1801",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1801.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2022-1801",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1801.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "The c_rehash script does not properly sanitise shell metacharacters to prevent command injection. This script is distributed by some operating systems in a manner where it is automatically executed. On such operating systems, an attacker could execute arbitrary commands with the privileges of the script. Use of the c_rehash script is considered obsolete and should be replaced by the OpenSSL rehash command line tool. Fixed in OpenSSL 3.0.3 (Affected 3.0.0,3.0.1,3.0.2). Fixed in OpenSSL 1.1.1o (Affected 1.1.1-1.1.1n). Fixed in OpenSSL 1.0.2ze (Affected 1.0.2-1.0.2zd). (CVE-2022-1292)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1801.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/openssl-libs@1.0.2k-19.amzn2.0.3?arch=x86_64&epoch=1&upstream=openssl-1.0.2k-19.amzn2.0.3.src.rpm&distro=amzn-2&package-id=ce1f995008afc26a"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:a9b734dc-b6cd-4974-9b83-4ced785e1521",
+      "id": "ALAS-2022-1802",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1802.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2022-1802",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1802.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "In Python3's Lib/test/multibytecodec_support.py CJK codec tests call eval() on content retrieved via HTTP. (CVE-2020-27619)The package python/cpython is vulnerable to Web Cache Poisoning via urllib.parse.parse_qsl and urllib.parse.parse_qs by using a vector called parameter cloaking. When the attacker can separate query parameters using a semicolon (;), they can cause a difference in the interpretation of the request between the proxy (running with default configuration) and the server. This can result in malicious requests being cached as completely safe ones, as the proxy would usually not see the semicolon as a separator, and therefore would not include it in a cache key of an unkeyed parameter. (CVE-2021-23336)There's a flaw in urllib's AbstractBasicAuthHandler class. An attacker who controls a malicious HTTP server that an HTTP client (such as web browser) connects to, could trigger a Regular Expression Denial of Service (ReDOS) during an authentication request with a specially crafted payload that is sent by the server to the client. The greatest threat that this flaw poses is to application availability. (CVE-2021-3733)A flaw was found in python. An improperly handled HTTP response in the HTTP client code of python may allow a remote attacker, who controls the HTTP server, to make the client script enter an infinite loop, consuming CPU time. The highest threat from this vulnerability is to system availability. (CVE-2021-3737)ftplib should not use the host from the PASV response (CVE-2021-4189)A flaw was found in Python, specifically within the urllib.parse module. This module helps break Uniform Resource Locator (URL) strings into components. The issue involves how the urlparse method does not sanitize input and allows characters like r and n in the URL path. This flaw allows an attacker to input a crafted URL, leading to injection attacks. (CVE-2022-0391)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1802.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/python@2.7.16-5.amzn2?arch=x86_64&upstream=python-2.7.16-5.amzn2.src.rpm&distro=amzn-2&package-id=e3d1c4f13c624d72"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:bbed254b-9c57-46c1-9a2d-d3e7dac15c59",
+      "id": "ALAS-2022-1802",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1802.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2022-1802",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1802.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "In Python3's Lib/test/multibytecodec_support.py CJK codec tests call eval() on content retrieved via HTTP. (CVE-2020-27619)The package python/cpython is vulnerable to Web Cache Poisoning via urllib.parse.parse_qsl and urllib.parse.parse_qs by using a vector called parameter cloaking. When the attacker can separate query parameters using a semicolon (;), they can cause a difference in the interpretation of the request between the proxy (running with default configuration) and the server. This can result in malicious requests being cached as completely safe ones, as the proxy would usually not see the semicolon as a separator, and therefore would not include it in a cache key of an unkeyed parameter. (CVE-2021-23336)There's a flaw in urllib's AbstractBasicAuthHandler class. An attacker who controls a malicious HTTP server that an HTTP client (such as web browser) connects to, could trigger a Regular Expression Denial of Service (ReDOS) during an authentication request with a specially crafted payload that is sent by the server to the client. The greatest threat that this flaw poses is to application availability. (CVE-2021-3733)A flaw was found in python. An improperly handled HTTP response in the HTTP client code of python may allow a remote attacker, who controls the HTTP server, to make the client script enter an infinite loop, consuming CPU time. The highest threat from this vulnerability is to system availability. (CVE-2021-3737)ftplib should not use the host from the PASV response (CVE-2021-4189)A flaw was found in Python, specifically within the urllib.parse module. This module helps break Uniform Resource Locator (URL) strings into components. The issue involves how the urlparse method does not sanitize input and allows characters like r and n in the URL path. This flaw allows an attacker to input a crafted URL, leading to injection attacks. (CVE-2022-0391)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1802.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/python-libs@2.7.16-5.amzn2?arch=x86_64&upstream=python-2.7.16-5.amzn2.src.rpm&distro=amzn-2&package-id=648306be89232862"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:5096dc2a-24bd-4320-a299-e6d40aee2afd",
+      "id": "ALAS-2022-1805",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1805.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2022-1805",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1805.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "A flaw was found in vim. The vulnerability occurs due to a crash when recording and using Select mode and leads to an out-of-bounds read. This flaw allows an attacker to input a specially crafted file, leading to a crash or code execution. (CVE-2022-0393)A flaw was found in vim. The vulnerability occurs due to stack corruption when looking for spell suggestions and leads to a stack buffer overflow. This flaw allows an attacker to input a specially crafted file, leading to a crash or code execution. (CVE-2022-0408)A flaw was found in vim. The vulnerability occurs due to using freed memory when the substitute uses a recursive function call, resulting in a use-after-free vulnerability. This flaw allows an attacker to input a specially crafted file, leading to a crash or code execution. (CVE-2022-0413)A flaw was found in vim. The vulnerability occurs due to illegal memory access and leads to a heap buffer overflow. This flaw allows an attacker to input a specially crafted file, leading to a crash or code execution. (CVE-2022-0417)A flaw was found in vim. The vulnerability occurs due to using freed memory which results in a use-after-free vulnerability. This flaw allows an attacker to input a specially crafted file, leading to a crash or code execution. (CVE-2022-0443)A flaw was found in vim that causes an out-of-range pointer offset vulnerability. This flaw allows an attacker to input a specially crafted file, leading to a crash or code execution. (CVE-2022-0554)A heap-based buffer overflow flaw was found in vim's ex_retab() function of indent.c file. This flaw occurs when repeatedly using :retab. This flaw allows an attacker to trick a user into opening a crafted file triggering a heap-overflow. (CVE-2022-0572)A stack-based buffer overflow flaw was found in vim's ga_concat_shorten_esc() function of src/testing.c file. This flaw allows an attacker to trick a user into opening a crafted file, triggering a stack-overflow. This issue can lead to an application crash, causing a denial of service. (CVE-2022-0629)A flaw was found in vim. The vulnerability occurs due to a crash when using a special multi-byte character and leads to an out-of-range vulnerability. This flaw allows an attacker to input a specially crafted file, leading to a crash or code execution. (CVE-2022-0685)A NULL pointer dereference flaw was found in vim's find_ucmd() function of usercmd.c file. This flaw allows an attacker to trick a user into opening a crafted file, triggering a NULL pointer dereference. This issue leads to an application crash, causing a denial of service. (CVE-2022-0696)A heap-buffer-overflow flaw was found in vim's win_lbr_chartabsize() function of charset.c file. The issue occurs due to an incorrect 'vartabstop' value. This flaw allows an attacker to trick a user into opening a specially crafted file, triggering a heap-overflow, and can cause an application to crash, eventually leading to a denial of service. (CVE-2022-0714)A flaw was found in vim. The vulnerability occurs due to crashes within specific regexp patterns and strings and leads to an out-of-range vulnerability. This flaw allows an attacker to input a specially crafted file, leading to a crash or code execution. (CVE-2022-0729)A heap buffer overflow flaw was found in vim's suggest_try_change() function of the spellsuggest.c file. This flaw allows an attacker to trick a user into opening a crafted file, triggering a heap-overflow and causing an application to crash, which leads to a denial of service. (CVE-2022-0943)A heap use-after-free vulnerability was found in Vim's utf_ptr2char() function of the src/mbyte.c file. This flaw occurs because vim is using a buffer line after it has been freed in the old regexp engine. This flaw allows an attacker to trick a user into opening a specially crafted file, triggering a heap use-after-free that causes an application to crash, possibly executing code and corrupting memory. (CVE-2022-1154)A heap buffer overflow flaw was found in vim's get_one_sourceline() function of scriptfile.c file. This flaw occurs when source can read past the end of the copied line. This flaw allows an attacker to trick a user into opening a crafted file, triggering a heap-overflow and causing an application to crash, which leads to a denial of service. (CVE-2022-1160)A global heap buffer overflow vulnerability was found in vim's skip_range() function of the src/ex_docmd.c file. This flaw occurs because vim uses an invalid pointer with V: in Ex mode. This flaw allows an attacker to trick a user into opening a specially crafted file, triggering a heap buffer overflow that causes an application to crash, leading to a denial of service. (CVE-2022-1381)A vulnerability was found in Vim. The issue occurs when using a number in a string for the lambda name, triggering an out-of-range pointer offset vulnerability. This flaw allows an attacker to trick a user into opening a crafted script containing an argument as a number and then using it as a string pointer to access any memory location, causing an application to crash and possibly access some memory. (CVE-2022-1420)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1805.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/vim-minimal@8.1.1602-1.amzn2?arch=x86_64&epoch=2&upstream=vim-8.1.1602-1.amzn2.src.rpm&distro=amzn-2&package-id=1e714dcf72aab0ca"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:e6399b11-6ab1-4be1-8851-3a1a2a1af7f6",
+      "id": "ALAS-2022-1808",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1808.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2022-1808",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1808.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "A vulnerability was found in curl. This issue occurs because curl can reuse a previously created connection even when a TLS or SSH-related option is changed that should have prohibited reuse. This flaw leads to an authentication bypass, either by mistake or by a malicious actor. (CVE-2022-27782)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1808.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/curl@7.61.1-12.amzn2.0.1?arch=x86_64&upstream=curl-7.61.1-12.amzn2.0.1.src.rpm&distro=amzn-2&package-id=5faf529a869872aa"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:01f3dfac-723f-4e03-9bec-62b919e53ad6",
+      "id": "ALAS-2022-1808",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1808.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2022-1808",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1808.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "A vulnerability was found in curl. This issue occurs because curl can reuse a previously created connection even when a TLS or SSH-related option is changed that should have prohibited reuse. This flaw leads to an authentication bypass, either by mistake or by a malicious actor. (CVE-2022-27782)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1808.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/libcurl@7.61.1-12.amzn2.0.1?arch=x86_64&upstream=curl-7.61.1-12.amzn2.0.1.src.rpm&distro=amzn-2&package-id=1008415a12c5a3d8"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:0cf63e44-77ec-48d7-87a1-d9ee088bc880",
+      "id": "ALAS-2022-1809",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1809.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2022-1809",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1809.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "In doProlog in xmlparse.c in Expat (aka libexpat) before 2.4.3, an integer overflow exists for m_groupSize. (CVE-2021-46143)addBinding in xmlparse.c in Expat (aka libexpat) before 2.4.3 has an integer overflow. (CVE-2022-22822)build_model in xmlparse.c in Expat (aka libexpat) before 2.4.3 has an integer overflow. (CVE-2022-22823)defineAttribute in xmlparse.c in Expat (aka libexpat) before 2.4.3 has an integer overflow. (CVE-2022-22824)lookup in xmlparse.c in Expat (aka libexpat) before 2.4.3 has an integer overflow. (CVE-2022-22825)nextScaffoldPart in xmlparse.c in Expat (aka libexpat) before 2.4.3 has an integer overflow. (CVE-2022-22826)storeAtts in xmlparse.c in Expat (aka libexpat) before 2.4.3 has an integer overflow. (CVE-2022-22827)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1809.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/expat@2.1.0-10.amzn2.0.2?arch=x86_64&upstream=expat-2.1.0-10.amzn2.0.2.src.rpm&distro=amzn-2&package-id=448f7f65e0358bba"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:e0593335-dd80-43f4-b607-c7d0019e4914",
+      "id": "ALAS-2022-1826",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1826.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2022-1826",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1826.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "valid.c in libxml2 before 2.9.13 has a use-after-free of ID and IDREF attributes. (CVE-2022-23308)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1826.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/libxml2@2.9.1-6.amzn2.3.3?arch=x86_64&upstream=libxml2-2.9.1-6.amzn2.3.3.src.rpm&distro=amzn-2&package-id=7ebe618675e23846"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:2e1994b7-3b47-4734-9795-7c9476d4c77a",
+      "id": "ALAS-2022-1829",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1829.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2022-1829",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1829.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "Use after free in append_command in GitHub repository vim/vim prior to 8.2.4895. This vulnerability is capable of crashing software, Bypass Protection Mechanism, Modify Memory, and possible remote execution (CVE-2022-1616)Heap-based Buffer Overflow in function cmdline_erase_chars in GitHub repository vim/vim prior to 8.2.4899. This vulnerabilities are capable of crashing software, modify memory, and possible remote execution (CVE-2022-1619)NULL Pointer Dereference in function vim_regexec_string at regexp.c:2729 in GitHub repository vim/vim prior to 8.2.4901. NULL Pointer Dereference in function vim_regexec_string at regexp.c:2729 allows attackers to cause a denial of service (application crash) via a crafted input. (CVE-2022-1620)Heap buffer overflow in vim_strncpy find_word in GitHub repository vim/vim prior to 8.2.4919. This vulnerability is capable of crashing software, Bypass Protection Mechanism, Modify Memory, and possible remote execution (CVE-2022-1621)Buffer Over-read in function find_next_quote in GitHub repository vim/vim prior to 8.2.4925. This vulnerabilities are capable of crashing software, Modify Memory, and possible remote execution (CVE-2022-1629)A NULL pointer dereference flaw was found in vim's vim_regexec_string() function in regexp.c file. The issue occurs when the function tries to match the buffer with an invalid pattern. This flaw allows an attacker to trick a user into opening a specially crafted file, triggering a NULL pointer dereference that causes an application to crash, leading to a denial of service. (CVE-2022-1674)A heap buffer over-read vulnerability was found in Vim's grab_file_name() function of the src/findfile.c file. This flaw occurs because the function reads after the NULL terminates the line with \"gf\" in Visual block mode. This flaw allows an attacker to trick a user into opening a specially crafted file, triggering a heap buffer over-read vulnerability that causes an application to crash and corrupt memory. (CVE-2022-1720)NULL Pointer Dereference in GitHub repository vim/vim prior to 8.2.495 (CVE-2022-1725)Heap-based Buffer Overflow in GitHub repository vim/vim prior to 8.2.4968. (CVE-2022-1733)Classic Buffer Overflow in GitHub repository vim/vim prior to 8.2.4969. (CVE-2022-1735)Buffer Over-read in GitHub repository vim/vim prior to 8.2.4974. (CVE-2022-1769)A flaw was found in vim. The vulnerability occurs due to Illegal memory access and leads to a stack-based buffer overflow vulnerability. This flaw allows an attacker to input a specially crafted file, leading to a crash or code execution. (CVE-2022-1771)A flaw was found in vim. The vulnerability occurs due to Illegal memory access and leads to an out-of-bounds write vulnerability in the ex_cmds function. This flaw allows an attacker to input a specially crafted file, leading to a crash or code execution. (CVE-2022-1785)A flaw was found in vim. The vulnerability occurs due to Illegal memory access and leads to a use after free vulnerability. This flaw allows an attacker to input a specially crafted file, leading to a crash or code execution. (CVE-2022-1796)A flaw was found in vim. The vulnerability occurs due to Illegal memory access and leads to an out-of-bounds read vulnerability in the gchar_cursor function. This flaw allows an attacker to input a specially crafted file, leading to a crash or code execution. (CVE-2022-1851)A heap buffer overflow flaw was found in Vim's utf_head_off() function in the mbyte.c file. This flaw allows an attacker to trick a user into opening a specially crafted file, triggering a heap buffer overflow that causes an application to crash, leading to a denial of service and possibly some amount of memory leak. (CVE-2022-1886)A flaw was found in vim. The vulnerability occurs due to Illegal memory access and leads to an out-of-bounds write vulnerability in the vim_regsub_both function. This flaw allows an attacker to input a specially crafted file, leading to a crash or code execution. (CVE-2022-1897)A flaw was found in vim. The vulnerability occurs due to Illegal memory access and leads to a use-after-free vulnerability in the find_pattern_in_path function. This flaw allows an attacker to input a specially crafted file, leading to a crash or code execution. (CVE-2022-1898)A flaw was found in vim. The vulnerability occurs due to Illegal memory access and leads to a buffer over-read vulnerability in the utf_ptr2char function. This flaw allows an attacker to input a specially crafted file, leading to a crash or code execution. (CVE-2022-1927)An out-of-bounds write vulnerability was found in Vim's vim_regsub_both() function in the src/regexp.c file. The flaw can open a command-line window from a substitute expression when a text or buffer is locked. This flaw allows an attacker to trick a user into opening a specially crafted file, triggering an out-of-bounds write that causes an application to crash, possibly reading and modifying some amount of memory contents. (CVE-2022-1942)A flaw was found in vim. The vulnerability occurs due to Illegal memory access and leads to a use-after-free vulnerability in the utf_ptr2char function. This flaw allows an attacker to input a specially crafted file, leading to a crash or code execution. (CVE-2022-1968)An out-of-bounds write vulnerability was found in Vim's append_command() function of the src/ex_docmd.c file. This issue occurs when an error for a command goes over the end of IObuff. This flaw allows an attacker to trick a user into opening a specially crafted file, triggering a heap buffer overflow that causes an application to crash and corrupt memory. (CVE-2022-2000)A heap use-after-free vulnerability was found in Vim's skipwhite() function of the src/charset.c file. This flaw occurs because of an uninitialized attribute value and freed memory in the spell command. This flaw allows an attacker to trick a user into opening a specially crafted file, triggering a heap use-after-free that causes an application to crash and corrupt memory. (CVE-2022-2042)Buffer Over-read in GitHub repository vim/vim prior to 8.2. (CVE-2022-2124)Heap-based Buffer Overflow in GitHub repository vim/vim prior to 8.2. (CVE-2022-2125)Out-of-bounds Read in GitHub repository vim/vim prior to 8.2. (CVE-2022-2126)Out-of-bounds Write in GitHub repository vim/vim prior to 8.2. (CVE-2022-2129)A heap buffer over-read vulnerability was found in Vim's put_on_cmdline() function of the src/ex_getln.c file. This issue occurs due to invalid memory access when using an expression on the command line. This flaw allows an attacker to trick a user into opening a specially crafted file, triggering a heap buffer overflow that causes an application to crash and corrupt memory. (CVE-2022-2175)Heap-based Buffer Overflow in GitHub repository vim/vim prior to 8.2. (CVE-2022-2182)Out-of-bounds Read in GitHub repository vim/vim prior to 8.2. (CVE-2022-2183)Out-of-bounds Read in GitHub repository vim/vim prior to 8.2. (CVE-2022-2206)Heap-based Buffer Overflow in GitHub repository vim/vim prior to 8.2. (CVE-2022-2207)NULL Pointer Dereference in GitHub repository vim/vim prior to 8.2.5163. (CVE-2022-2208)Out-of-bounds Write in GitHub repository vim/vim prior to 8.2. (CVE-2022-2210)NULL Pointer Dereference in GitHub repository vim/vim prior to 8.2. (CVE-2022-2231)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1829.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/vim-minimal@8.1.1602-1.amzn2?arch=x86_64&epoch=2&upstream=vim-8.1.1602-1.amzn2.src.rpm&distro=amzn-2&package-id=1e714dcf72aab0ca"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:f2dc40fa-91ce-4845-acd7-f44f2dc09db8",
+      "id": "ALAS-2022-1831",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1831.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2022-1831",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1831.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "A flaw was found in OpenSSL. The issue in CVE-2022-1292 did not find other places in the `c_rehash` script where it possibly passed the file names of certificates being hashed to a command executed through the shell. Some operating systems distribute this script in a manner where it is automatically executed. On these operating systems, this flaw allows an attacker to execute arbitrary commands with the privileges of the script. (CVE-2022-2068)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1831.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/openssl-libs@1.0.2k-19.amzn2.0.3?arch=x86_64&epoch=1&upstream=openssl-1.0.2k-19.amzn2.0.3.src.rpm&distro=amzn-2&package-id=ce1f995008afc26a"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:0ca1b3c4-bbdf-4a25-9678-7e5b9cab31b5",
+      "id": "ALAS-2022-1834",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1834.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2022-1834",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1834.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "A vulnerability was found in GnuPG. This issue occurs due to an escape detection loop at the write_status_text_and_buffer() function in g10/cpr.c. This flaw allows a malicious actor to bypass access control. (CVE-2022-34903)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1834.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/gnupg2@2.0.22-5.amzn2.0.4?arch=x86_64&upstream=gnupg2-2.0.22-5.amzn2.0.4.src.rpm&distro=amzn-2&package-id=4e4a6728d4b58ebd"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:7657c57d-77a5-472c-b724-dd5d2eaa1dea",
+      "id": "ALAS-2022-1845",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1845.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2022-1845",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1845.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "A flaw was found in krb5. MIT Kerberos 5 allows unbounded recursion via an ASN.1-encoded Kerberos message because the lib/krb5/asn.1/asn1_encode.c support for BER indefinite lengths lacks a recursion limit. (CVE-2020-28196)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1845.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/krb5-libs@1.15.1-37.amzn2.2.2?arch=x86_64&upstream=krb5-1.15.1-37.amzn2.2.2.src.rpm&distro=amzn-2&package-id=623d9be85a64caf7"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:5d83fe0f-cf72-4fe2-9617-aec74ac16d9c",
+      "id": "ALAS-2022-1848",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1848.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2022-1848",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1848.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "A flaw was found in the libxml2 library in functions used to manipulate the xmlBuf and the xmlBuffer types. A substantial input causes values to calculate buffer sizes to overflow, resulting in an out-of-bounds write. (CVE-2022-29824)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1848.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/libxml2@2.9.1-6.amzn2.3.3?arch=x86_64&upstream=libxml2-2.9.1-6.amzn2.3.3.src.rpm&distro=amzn-2&package-id=7ebe618675e23846"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:b4cf18d0-d6d7-473b-9b15-09f1ccba4807",
+      "id": "ALAS-2022-1849",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1849.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2022-1849",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1849.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "A security vulnerability was found in zlib. The flaw triggered a heap-based buffer in inflate in the inflate.c function via a large gzip header extra field. This flaw is only applicable in the call inflateGetHeader. (CVE-2022-37434)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1849.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/zlib@1.2.7-18.amzn2?arch=x86_64&upstream=zlib-1.2.7-18.amzn2.src.rpm&distro=amzn-2&package-id=c0cf775539092aff"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:265bcbfe-88e5-4a12-92d7-50114664891a",
+      "id": "ALAS-2022-1857",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1857.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2022-1857",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1857.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "A flaw was found in glibc. An off-by-one buffer overflow and underflow in getcwd() may lead to memory corruption when the size of the buffer is exactly 1. A local attacker who can control the input buffer and size passed to getcwd() in a setuid program could use this flaw to potentially execute arbitrary code and escalate their privileges on the system. (CVE-2021-3999)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1857.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/glibc@2.26-34.amzn2?arch=x86_64&upstream=glibc-2.26-34.amzn2.src.rpm&distro=amzn-2&package-id=aaf9f40aee775d65"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:faa2a096-b7a4-4a8c-8b38-2847e21dc785",
+      "id": "ALAS-2022-1857",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1857.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2022-1857",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1857.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "A flaw was found in glibc. An off-by-one buffer overflow and underflow in getcwd() may lead to memory corruption when the size of the buffer is exactly 1. A local attacker who can control the input buffer and size passed to getcwd() in a setuid program could use this flaw to potentially execute arbitrary code and escalate their privileges on the system. (CVE-2021-3999)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1857.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/glibc-common@2.26-34.amzn2?arch=x86_64&upstream=glibc-2.26-34.amzn2.src.rpm&distro=amzn-2&package-id=a88e37fdd568988d"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:a3322741-197a-4ad7-967f-137ada6d6b6e",
+      "id": "ALAS-2022-1857",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1857.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2022-1857",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1857.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "A flaw was found in glibc. An off-by-one buffer overflow and underflow in getcwd() may lead to memory corruption when the size of the buffer is exactly 1. A local attacker who can control the input buffer and size passed to getcwd() in a setuid program could use this flaw to potentially execute arbitrary code and escalate their privileges on the system. (CVE-2021-3999)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1857.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/glibc-langpack-en@2.26-34.amzn2?arch=x86_64&upstream=glibc-2.26-34.amzn2.src.rpm&distro=amzn-2&package-id=78ca252f42c0cd10"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:ad686dea-f0a7-49e4-98d0-b7d88aca0984",
+      "id": "ALAS-2022-1857",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1857.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2022-1857",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1857.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "A flaw was found in glibc. An off-by-one buffer overflow and underflow in getcwd() may lead to memory corruption when the size of the buffer is exactly 1. A local attacker who can control the input buffer and size passed to getcwd() in a setuid program could use this flaw to potentially execute arbitrary code and escalate their privileges on the system. (CVE-2021-3999)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1857.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/glibc-minimal-langpack@2.26-34.amzn2?arch=x86_64&upstream=glibc-2.26-34.amzn2.src.rpm&distro=amzn-2&package-id=275d6892508cce54"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:912062a3-4cbf-47b9-9dfa-97fd7c1cb337",
+      "id": "ALAS-2022-1857",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1857.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2022-1857",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1857.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "A flaw was found in glibc. An off-by-one buffer overflow and underflow in getcwd() may lead to memory corruption when the size of the buffer is exactly 1. A local attacker who can control the input buffer and size passed to getcwd() in a setuid program could use this flaw to potentially execute arbitrary code and escalate their privileges on the system. (CVE-2021-3999)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1857.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/libcrypt@2.26-34.amzn2?arch=x86_64&upstream=glibc-2.26-34.amzn2.src.rpm&distro=amzn-2&package-id=8a691524aa78dd93"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:6205823e-9778-49ba-a56a-31259fe2fa4d",
+      "id": "ALAS-2022-1868",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1868.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2022-1868",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1868.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "low"
+        }
+      ],
+      "description": "A flaw was found in vim, which is vulnerable to an out-of-bounds read in the msg_outtrans_special function. This flaw allows a specially crafted file to crash software or execute code when opened in vim. (CVE-2022-2257)A heap buffer overflow vulnerability was found in Vim's inc() function of misc2.c. This issue occurs because Vim reads beyond the end of the line with a put command. This flaw allows an attacker to trick a user into opening a specially crafted file, triggering an out-of-bounds read that causes a crash in the CLI tool. (CVE-2022-2264)Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0. (CVE-2022-2284)Integer Overflow or Wraparound in GitHub repository vim/vim prior to 9.0. (CVE-2022-2285)Out-of-bounds Read in GitHub repository vim/vim prior to 9.0. (CVE-2022-2286)Out-of-bounds Read in GitHub repository vim/vim prior to 9.0. (CVE-2022-2287)Out-of-bounds Write in GitHub repository vim/vim prior to 9.0. (CVE-2022-2288)Use After Free in GitHub repository vim/vim prior to 9.0. (CVE-2022-2289)A stack-based buffer overflow vulnerability was found in Vim's spell_dump_compl() function of the src/spell.c file. This issue occurs because the spell dump goes beyond the end of an array when crafted input is processed. This flaw allows an attacker to trick a user into opening a specially crafted file, triggering an out-of-bounds write that causes an application to crash, possibly executing code and corrupting memory. (CVE-2022-2304)A heap-based buffer overflow was found in Vim in the ins_compl_add function in the insexpand.c file. This issue occurs due to a read past the end of a buffer when a specially crafted input is processed. This flaw allows an attacker who can trick a user into opening a specially crafted file into triggering the heap-based buffer overflow, causing the application to crash, possibly executing code and corrupting memory. (CVE-2022-2343)A heap-based buffer overflow was found in Vim in the ins_compl_add function in the insexpand.c file. This issue occurs due to a read past the end of a buffer when a specially crafted input is processed. This flaw allows an attacker who can trick a user into opening a specially crafted file into triggering the heap-based buffer overflow, causing the application to crash, possibly executing code and corrupting memory. (CVE-2022-2344)A use-after-free vulnerability was found in Vim in the skipwhite function in the charset.c file. This issue occurs because an already freed memory is used when a specially crafted input is processed. This flaw allows an attacker who can trick a user into opening a specially crafted file into triggering the use-after-free, and cause the application to crash, possibly executing code and corrupting memory. (CVE-2022-2345)An out-of-bounds read vulnerability was found in Vim in the check_vim9_unlet function in the vim9cmds.c file. This issue occurs because of invalid memory access when compiling the unlet command when a specially crafted input is processed. This flaw allows an attacker who can trick a user into opening a specially crafted file into triggering the out-of-bounds read, causing the application to crash, possibly executing code and corrupting memory. (CVE-2022-2816)A use-after-free vulnerability was found in Vim in the string_quote function in the strings.c file. This issue occurs because an already freed memory is used when a specially crafted input is processed. This flaw allows an attacker who can trick a user into opening a specially crafted file into triggering the use-after-free, causing the application to crash, possibly executing code and corrupting memory. (CVE-2022-2817)A flaw was found in vim. The vulnerability occurs due to illegal memory access and leads to a heap buffer overflow vulnerability. This flaw allows an attacker to input a specially crafted file, leading to a crash or code execution. (CVE-2022-2819)Buffer Over-read in GitHub repository vim/vim prior to 9.0.0218. (CVE-2022-2845)Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.0220. (CVE-2022-2849)Use After Free in GitHub repository vim/vim prior to 9.0.0221. (CVE-2022-2862)A use-after-free vulnerability was found in Vim in the find_var_also_in_script function in the evalvars.c file. This issue occurs because an already freed memory is used when a specially crafted input is processed. This flaw allows an attacker who can trick a user into opening a specially crafted file into triggering the use-after-free, causing the application to crash, possibly executing code and corrupting memory. (CVE-2022-2889)A flaw was found in vim, where it is vulnerable to a NULL pointer dereference in the sug_filltree function. This flaw allows a specially crafted file to crash the software. (CVE-2022-2923)A flaw was found in vim, where it is vulnerable to a use-after-free in the vim_vsnprintf_typval function. This flaw allows a specially crafted file to crash a program, use unexpected values, or execute code. (CVE-2022-2946)A NULL pointer dereference vulnerability was found in vim's do_mouse() function of the src/mouse.c file. The issue occurs with a mouse click when it is not initialized. This flaw allows an attacker to trick a user into opening a specially crafted input file, triggering the vulnerability that could cause an application to crash. (CVE-2022-2980)A heap use-after-free vulnerability was found in vim's qf_fill_buffer() function of the src/quickfix.c file. The issue occurs because vim uses freed memory when recursively using 'quickfixtextfunc.' This flaw allows an attacker to trick a user into opening a specially crafted file, triggering a heap use-after-free that causes an application to crash, possibly executing code and corrupting memory. (CVE-2022-2982)A heap use-after-free vulnerability was found in vim's get_next_valid_entry() function of the src/quickfix.c file. The issue occurs because vim is using freed memory when the location list is changed in autocmd. This flaw allows an attacker to trick a user into opening a specially crafted file, triggering a heap use-after-free that causes an application to crash, possibly executing code and corrupting memory. (CVE-2022-3016)Use After Free in GitHub repository vim/vim prior to 9.0.0322. (CVE-2022-3037)A use-after-free vulnerability was found in vim's do_cmdline() function of the src/ex_docmd.c file. The issue triggers when an invalid line number on :for is ignored. This flaw allows an attacker to trick a user into opening a specially crafted file, triggering use-after-free that causes an application to crash, possibly executing code and corrupting memory. (CVE-2022-3099)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1868.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/vim-minimal@8.1.1602-1.amzn2?arch=x86_64&epoch=2&upstream=vim-8.1.1602-1.amzn2.src.rpm&distro=amzn-2&package-id=1e714dcf72aab0ca"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:9ef20476-8c1a-491b-a1cc-2a918d55056a",
+      "id": "ALAS-2022-1869",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1869.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2022-1869",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1869.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "In the GNU C Library (aka glibc or libc6) before 2.28, parse_reg_exp in posix/regcomp.c misparses alternatives, which allows attackers to cause a denial of service (assertion failure and application exit) or trigger an incorrect result by attempting a regular-expression match. (CVE-2009-5155)The pop_fail_stack function in the GNU C Library (aka glibc or libc6) allows context-dependent attackers to cause a denial of service (assertion failure and application crash) via vectors related to extended regular expression processing. (CVE-2015-8985)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1869.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/glibc@2.26-34.amzn2?arch=x86_64&upstream=glibc-2.26-34.amzn2.src.rpm&distro=amzn-2&package-id=aaf9f40aee775d65"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:4251fc08-f21b-4919-899c-639104bb31b8",
+      "id": "ALAS-2022-1869",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1869.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2022-1869",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1869.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "In the GNU C Library (aka glibc or libc6) before 2.28, parse_reg_exp in posix/regcomp.c misparses alternatives, which allows attackers to cause a denial of service (assertion failure and application exit) or trigger an incorrect result by attempting a regular-expression match. (CVE-2009-5155)The pop_fail_stack function in the GNU C Library (aka glibc or libc6) allows context-dependent attackers to cause a denial of service (assertion failure and application crash) via vectors related to extended regular expression processing. (CVE-2015-8985)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1869.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/glibc-common@2.26-34.amzn2?arch=x86_64&upstream=glibc-2.26-34.amzn2.src.rpm&distro=amzn-2&package-id=a88e37fdd568988d"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:c760426b-c11a-44f6-9de4-49f13aab887e",
+      "id": "ALAS-2022-1869",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1869.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2022-1869",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1869.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "In the GNU C Library (aka glibc or libc6) before 2.28, parse_reg_exp in posix/regcomp.c misparses alternatives, which allows attackers to cause a denial of service (assertion failure and application exit) or trigger an incorrect result by attempting a regular-expression match. (CVE-2009-5155)The pop_fail_stack function in the GNU C Library (aka glibc or libc6) allows context-dependent attackers to cause a denial of service (assertion failure and application crash) via vectors related to extended regular expression processing. (CVE-2015-8985)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1869.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/glibc-langpack-en@2.26-34.amzn2?arch=x86_64&upstream=glibc-2.26-34.amzn2.src.rpm&distro=amzn-2&package-id=78ca252f42c0cd10"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:1f140c51-8b8f-4434-8bd1-dd7101ae3b0f",
+      "id": "ALAS-2022-1869",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1869.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2022-1869",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1869.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "In the GNU C Library (aka glibc or libc6) before 2.28, parse_reg_exp in posix/regcomp.c misparses alternatives, which allows attackers to cause a denial of service (assertion failure and application exit) or trigger an incorrect result by attempting a regular-expression match. (CVE-2009-5155)The pop_fail_stack function in the GNU C Library (aka glibc or libc6) allows context-dependent attackers to cause a denial of service (assertion failure and application crash) via vectors related to extended regular expression processing. (CVE-2015-8985)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1869.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/glibc-minimal-langpack@2.26-34.amzn2?arch=x86_64&upstream=glibc-2.26-34.amzn2.src.rpm&distro=amzn-2&package-id=275d6892508cce54"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:36b35a2b-a6af-4622-8dfd-2e7d7fe4bccf",
+      "id": "ALAS-2022-1869",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1869.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2022-1869",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1869.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "In the GNU C Library (aka glibc or libc6) before 2.28, parse_reg_exp in posix/regcomp.c misparses alternatives, which allows attackers to cause a denial of service (assertion failure and application exit) or trigger an incorrect result by attempting a regular-expression match. (CVE-2009-5155)The pop_fail_stack function in the GNU C Library (aka glibc or libc6) allows context-dependent attackers to cause a denial of service (assertion failure and application crash) via vectors related to extended regular expression processing. (CVE-2015-8985)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1869.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/libcrypt@2.26-34.amzn2?arch=x86_64&upstream=glibc-2.26-34.amzn2.src.rpm&distro=amzn-2&package-id=8a691524aa78dd93"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:9ecc4206-d599-4a8a-9a82-deca732b03b8",
+      "id": "ALAS-2022-1875",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1875.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2022-1875",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1875.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "A vulnerability was found in curl. This issue occurs because a malicious server can serve excessive amounts of `Set-Cookie:` headers in an HTTP response to curl, which stores all of them. This flaw leads to a denial of service, either by mistake or by a malicious actor. (CVE-2022-32205)A vulnerability was found in curl. This issue occurs because the number of acceptable \"links\" in the \"decompression chain\" was unbounded, allowing a malicious server to insert a virtually unlimited number of compression steps. This flaw leads to a denial of service, either by mistake or by a malicious actor. (CVE-2022-32206)A vulnerability was found in curl. This issue occurs because when curl saves cookies, alt-svc, and HSTS data to local files, it makes the operation atomic by finalizing the process with a rename from a temporary name to the final target file name. This flaw leads to unpreserved file permissions, either by mistake or by a malicious actor. (CVE-2022-32207)A vulnerability was found in curl. This issue occurs because it mishandles message verification failures when curl does FTP transfers secured by krb5. This flaw makes it possible for a Man-in-the-middle attack to go unnoticed and allows data injection into the client. (CVE-2022-32208)A vulnerability found in curl. This security flaw happens when curl is used to retrieve and parse cookies from an HTTP(S) server, where it accepts cookies using control codes (byte values below 32), and also when cookies that contain such control codes are later sent back to an HTTP(S) server, possibly causing the server to return a 400 response. This issue effectively allows a \"sister site\" to deny service to siblings and cause a denial of service attack. (CVE-2022-35252)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1875.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/curl@7.61.1-12.amzn2.0.1?arch=x86_64&upstream=curl-7.61.1-12.amzn2.0.1.src.rpm&distro=amzn-2&package-id=5faf529a869872aa"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:35677a83-1ce5-4673-a8e5-6e2d62d48651",
+      "id": "ALAS-2022-1875",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1875.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2022-1875",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1875.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "A vulnerability was found in curl. This issue occurs because a malicious server can serve excessive amounts of `Set-Cookie:` headers in an HTTP response to curl, which stores all of them. This flaw leads to a denial of service, either by mistake or by a malicious actor. (CVE-2022-32205)A vulnerability was found in curl. This issue occurs because the number of acceptable \"links\" in the \"decompression chain\" was unbounded, allowing a malicious server to insert a virtually unlimited number of compression steps. This flaw leads to a denial of service, either by mistake or by a malicious actor. (CVE-2022-32206)A vulnerability was found in curl. This issue occurs because when curl saves cookies, alt-svc, and HSTS data to local files, it makes the operation atomic by finalizing the process with a rename from a temporary name to the final target file name. This flaw leads to unpreserved file permissions, either by mistake or by a malicious actor. (CVE-2022-32207)A vulnerability was found in curl. This issue occurs because it mishandles message verification failures when curl does FTP transfers secured by krb5. This flaw makes it possible for a Man-in-the-middle attack to go unnoticed and allows data injection into the client. (CVE-2022-32208)A vulnerability found in curl. This security flaw happens when curl is used to retrieve and parse cookies from an HTTP(S) server, where it accepts cookies using control codes (byte values below 32), and also when cookies that contain such control codes are later sent back to an HTTP(S) server, possibly causing the server to return a 400 response. This issue effectively allows a \"sister site\" to deny service to siblings and cause a denial of service attack. (CVE-2022-35252)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1875.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/libcurl@7.61.1-12.amzn2.0.1?arch=x86_64&upstream=curl-7.61.1-12.amzn2.0.1.src.rpm&distro=amzn-2&package-id=1008415a12c5a3d8"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:546e4871-283a-436a-b6db-24518e7a1fd4",
+      "id": "ALAS-2022-1877",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1877.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2022-1877",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1877.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "high"
+        }
+      ],
+      "description": "A vulnerability was found in expat. With this flaw, it is possible to create a situation in which parsing is suspended while substituting in an internal entity so that XML_ResumeParser directly uses the internalEntityProcessor as its processor. If the subsequent parse includes some unclosed tags, this will return without calling storeRawNames to ensure that the raw versions of the tag names are stored in memory other than the parse buffer itself. Issues occur if the parse buffer is changed or reallocated (for example, if processing a file line by line), problems occur. Using this vulnerability in the doContent function allows an attacker to triage a denial of service or potentially arbitrary code execution. (CVE-2022-40674)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1877.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/expat@2.1.0-10.amzn2.0.2?arch=x86_64&upstream=expat-2.1.0-10.amzn2.0.2.src.rpm&distro=amzn-2&package-id=448f7f65e0358bba"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:ffc36dcc-ef10-4bfa-979c-6527c1c31c58",
+      "id": "ALAS-2022-1878",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1878.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2022-1878",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1878.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "A command injection flaw was found in the way util-linux implements umount autocompletion in Bash. An attacker with the ability to mount a filesystem with custom mount points may execute arbitrary commands on behalf of the user who triggers the umount autocompletion. (CVE-2018-7738)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1878.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/libblkid@2.30.2-2.amzn2.0.4?arch=x86_64&upstream=util-linux-2.30.2-2.amzn2.0.4.src.rpm&distro=amzn-2&package-id=e8af3719cdbeb994"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:b7bd4d1b-1f6d-496d-9c4e-2a971d38bdf6",
+      "id": "ALAS-2022-1878",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1878.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2022-1878",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1878.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "A command injection flaw was found in the way util-linux implements umount autocompletion in Bash. An attacker with the ability to mount a filesystem with custom mount points may execute arbitrary commands on behalf of the user who triggers the umount autocompletion. (CVE-2018-7738)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1878.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/libmount@2.30.2-2.amzn2.0.4?arch=x86_64&upstream=util-linux-2.30.2-2.amzn2.0.4.src.rpm&distro=amzn-2&package-id=c878fc9e38668715"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:d5aeb746-96b1-4a70-8769-038ee9ac2176",
+      "id": "ALAS-2022-1878",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1878.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2022-1878",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1878.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "A command injection flaw was found in the way util-linux implements umount autocompletion in Bash. An attacker with the ability to mount a filesystem with custom mount points may execute arbitrary commands on behalf of the user who triggers the umount autocompletion. (CVE-2018-7738)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1878.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/libuuid@2.30.2-2.amzn2.0.4?arch=x86_64&upstream=util-linux-2.30.2-2.amzn2.0.4.src.rpm&distro=amzn-2&package-id=00510fe1ebc28410"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:cdac3b3e-eaf1-4a90-b24b-9a19a6f4022c",
+      "id": "ALAS-2022-1882",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1882.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2022-1882",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1882.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "A vulnerability was found in curl. The issue occurs when doing HTTP(S) transfers, where curl might erroneously use the read callback (`CURLOPT_READFUNCTION`) to ask for data to send, even when the `CURLOPT_POSTFIELDS` option has been set if it previously used the same handle to issue a `PUT` request which used that callback. This flaw may surprise the application and cause it to misbehave and either send off the wrong data or use memory after free or similar in the subsequent `POST` request. (CVE-2022-32221)A vulnerability was found in curl. The issue occurs when curl is told to parse a `.netrc` file for credentials. If that file ends in a line with consecutive non-white space letters and no newline, curl could read past the end of the stack-based buffer, and if the read works, it can write a zero byte beyond its boundary. This issue, in most cases, causes a segfault or similar problem. A denial of service can occur if a malicious user can provide a custom netrc file to an application or otherwise affect its contents. (CVE-2022-35260)A vulnerability was found in curl. The issue occurs if curl is told to use an HTTP proxy for a transfer with a non-HTTP(S) URL. It sets up the connection to the remote server by issuing a `CONNECT` request to the proxy and then tunnels the rest of the protocol through. An HTTP proxy might refuse this request (HTTP proxies often only allow outgoing connections to specific port numbers, like 443 for HTTPS) and instead return a non-200 response code to the client. Due to flaws in the error/cleanup handling, this could trigger a double-free issue in curl if using one of the following schemes in the URL for the transfer: `dict,` `gopher,` `gophers,` `ldap`, `ldaps`, `rtmp`, `rtmps`, `telnet.` (CVE-2022-42915)A vulnerability was found in curl. The issue occurs because curl's HSTS check can be bypassed to trick it to keep using HTTP. Using its HSTS support, it can instruct curl to use HTTPS directly instead of using an insecure clear-text HTTP step even when HTTP is provided in the URL. This mechanism can be bypassed if the hostname in the given URL uses IDN characters that get replaced with ASCII counterparts as part of the IDN conversion. Like using the character UTF-8 U+3002 (IDEOGRAPHIC FULL STOP) instead of the common ASCII full stop (U+002E) `.`. (CVE-2022-42916)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1882.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/curl@7.61.1-12.amzn2.0.1?arch=x86_64&upstream=curl-7.61.1-12.amzn2.0.1.src.rpm&distro=amzn-2&package-id=5faf529a869872aa"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:a1694dc0-1c19-4821-ac32-8f0320ba52ab",
+      "id": "ALAS-2022-1882",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1882.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2022-1882",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1882.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "A vulnerability was found in curl. The issue occurs when doing HTTP(S) transfers, where curl might erroneously use the read callback (`CURLOPT_READFUNCTION`) to ask for data to send, even when the `CURLOPT_POSTFIELDS` option has been set if it previously used the same handle to issue a `PUT` request which used that callback. This flaw may surprise the application and cause it to misbehave and either send off the wrong data or use memory after free or similar in the subsequent `POST` request. (CVE-2022-32221)A vulnerability was found in curl. The issue occurs when curl is told to parse a `.netrc` file for credentials. If that file ends in a line with consecutive non-white space letters and no newline, curl could read past the end of the stack-based buffer, and if the read works, it can write a zero byte beyond its boundary. This issue, in most cases, causes a segfault or similar problem. A denial of service can occur if a malicious user can provide a custom netrc file to an application or otherwise affect its contents. (CVE-2022-35260)A vulnerability was found in curl. The issue occurs if curl is told to use an HTTP proxy for a transfer with a non-HTTP(S) URL. It sets up the connection to the remote server by issuing a `CONNECT` request to the proxy and then tunnels the rest of the protocol through. An HTTP proxy might refuse this request (HTTP proxies often only allow outgoing connections to specific port numbers, like 443 for HTTPS) and instead return a non-200 response code to the client. Due to flaws in the error/cleanup handling, this could trigger a double-free issue in curl if using one of the following schemes in the URL for the transfer: `dict,` `gopher,` `gophers,` `ldap`, `ldaps`, `rtmp`, `rtmps`, `telnet.` (CVE-2022-42915)A vulnerability was found in curl. The issue occurs because curl's HSTS check can be bypassed to trick it to keep using HTTP. Using its HSTS support, it can instruct curl to use HTTPS directly instead of using an insecure clear-text HTTP step even when HTTP is provided in the URL. This mechanism can be bypassed if the hostname in the given URL uses IDN characters that get replaced with ASCII counterparts as part of the IDN conversion. Like using the character UTF-8 U+3002 (IDEOGRAPHIC FULL STOP) instead of the common ASCII full stop (U+002E) `.`. (CVE-2022-42916)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1882.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/libcurl@7.61.1-12.amzn2.0.1?arch=x86_64&upstream=curl-7.61.1-12.amzn2.0.1.src.rpm&distro=amzn-2&package-id=1008415a12c5a3d8"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:dba0479f-4f8a-4cbb-9158-af7418dfd81b",
+      "id": "ALAS-2022-1884",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1884.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2022-1884",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1884.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "An out-of-bounds read/write vulnerability was found in e2fsprogs. This issue leads to a segmentation fault and possibly arbitrary code execution via a specially crafted filesystem. (CVE-2022-1304)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1884.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/libcom_err@1.42.9-12.amzn2.0.2?arch=x86_64&upstream=e2fsprogs-1.42.9-12.amzn2.0.2.src.rpm&distro=amzn-2&package-id=40d723d40ba5f08c"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:7c981d1b-7c77-4d23-824c-dcf36d0777f2",
+      "id": "ALAS-2022-1885",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1885.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2022-1885",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1885.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "high"
+        }
+      ],
+      "description": "In libexpat through 2.4.9, there is a use-after free caused by overeager destruction of a shared DTD in XML_ExternalEntityParserCreate in out-of-memory situations. (CVE-2022-43680)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1885.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/expat@2.1.0-10.amzn2.0.2?arch=x86_64&upstream=expat-2.1.0-10.amzn2.0.2.src.rpm&distro=amzn-2&package-id=448f7f65e0358bba"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:cfd952a7-2c57-4b9c-9cf5-cbb302cfba86",
+      "id": "ALAS-2022-1893",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1893.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2022-1893",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1893.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "The ncurses package (tic) is susceptible to a heap overflow on crafted input. When the terminfo entry-description compiler processes input, proper bounds checking was not enforced leading to this software flaw. The highest threat from this vulnerability is system availability. (CVE-2021-39537)A segmentation fault vulnerability was found in ncurses's convert_strings() function of tinfo/read_entry.c file. This flaw occurs due to corrupted terminfo data, triggering an out-of-bounds read error. (CVE-2022-29458)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1893.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/ncurses@6.0-8.20170212.amzn2.1.3?arch=x86_64&upstream=ncurses-6.0-8.20170212.amzn2.1.3.src.rpm&distro=amzn-2&package-id=75d4a654c7033f96"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:0564fb9a-14dd-4d2f-be12-c0f0d4308c10",
+      "id": "ALAS-2022-1893",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1893.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2022-1893",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1893.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "The ncurses package (tic) is susceptible to a heap overflow on crafted input. When the terminfo entry-description compiler processes input, proper bounds checking was not enforced leading to this software flaw. The highest threat from this vulnerability is system availability. (CVE-2021-39537)A segmentation fault vulnerability was found in ncurses's convert_strings() function of tinfo/read_entry.c file. This flaw occurs due to corrupted terminfo data, triggering an out-of-bounds read error. (CVE-2022-29458)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1893.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/ncurses-base@6.0-8.20170212.amzn2.1.3?arch=noarch&upstream=ncurses-6.0-8.20170212.amzn2.1.3.src.rpm&distro=amzn-2&package-id=61a93095dd78673e"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:4c5e44b9-94d2-4d94-b948-578cd059fa50",
+      "id": "ALAS-2022-1893",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1893.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2022-1893",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1893.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "The ncurses package (tic) is susceptible to a heap overflow on crafted input. When the terminfo entry-description compiler processes input, proper bounds checking was not enforced leading to this software flaw. The highest threat from this vulnerability is system availability. (CVE-2021-39537)A segmentation fault vulnerability was found in ncurses's convert_strings() function of tinfo/read_entry.c file. This flaw occurs due to corrupted terminfo data, triggering an out-of-bounds read error. (CVE-2022-29458)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1893.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/ncurses-libs@6.0-8.20170212.amzn2.1.3?arch=x86_64&upstream=ncurses-6.0-8.20170212.amzn2.1.3.src.rpm&distro=amzn-2&package-id=01904aacf5abaf0c"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:9d2b1c57-1426-43ef-bd1b-dde6011e3089",
+      "id": "ALAS-2022-1901",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1901.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2022-1901",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1901.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "A flaw was found in the Linux kernel's util-linux chfn and chsh utilities when compiled with Readline support. The Readline library uses an \"INPUTRC\" environment variable to get a path to the library config file. When the library cannot parse the specified file, it prints an error message containing data from the file. This flaw allows an unprivileged user to read root-owned files, potentially leading to privilege escalation. (CVE-2022-0563)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1901.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/libblkid@2.30.2-2.amzn2.0.4?arch=x86_64&upstream=util-linux-2.30.2-2.amzn2.0.4.src.rpm&distro=amzn-2&package-id=e8af3719cdbeb994"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:8bd5f9ae-6e7f-4a26-89c4-4dd30ad73c40",
+      "id": "ALAS-2022-1901",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1901.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2022-1901",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1901.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "A flaw was found in the Linux kernel's util-linux chfn and chsh utilities when compiled with Readline support. The Readline library uses an \"INPUTRC\" environment variable to get a path to the library config file. When the library cannot parse the specified file, it prints an error message containing data from the file. This flaw allows an unprivileged user to read root-owned files, potentially leading to privilege escalation. (CVE-2022-0563)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1901.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/libmount@2.30.2-2.amzn2.0.4?arch=x86_64&upstream=util-linux-2.30.2-2.amzn2.0.4.src.rpm&distro=amzn-2&package-id=c878fc9e38668715"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:0c41f086-b646-43c1-832a-964c9328a035",
+      "id": "ALAS-2022-1901",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1901.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2022-1901",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1901.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "A flaw was found in the Linux kernel's util-linux chfn and chsh utilities when compiled with Readline support. The Readline library uses an \"INPUTRC\" environment variable to get a path to the library config file. When the library cannot parse the specified file, it prints an error message containing data from the file. This flaw allows an unprivileged user to read root-owned files, potentially leading to privilege escalation. (CVE-2022-0563)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1901.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/libuuid@2.30.2-2.amzn2.0.4?arch=x86_64&upstream=util-linux-2.30.2-2.amzn2.0.4.src.rpm&distro=amzn-2&package-id=00510fe1ebc28410"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:51de22e3-8bbb-48d2-904e-39151a8011cc",
+      "id": "ALAS-2022-1902",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1902.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2022-1902",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1902.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "high"
+        }
+      ],
+      "description": "A vulnerability was found in vim and classified as problematic. Affected by this issue is the function qf_update_buffer of the file quickfix.c of the component autocmd Handler. The manipulation leads to use after free. The attack may be launched remotely. Upgrading to version 9.0.0805 is able to address this issue. The name of the patch is d0fab10ed2a86698937e3c3fed2f10bd9bb5e731. It is recommended to upgrade the affected component. The identifier of this vulnerability is VDB-212324. (CVE-2022-3705)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1902.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/vim-minimal@8.1.1602-1.amzn2?arch=x86_64&epoch=2&upstream=vim-8.1.1602-1.amzn2.src.rpm&distro=amzn-2&package-id=1e714dcf72aab0ca"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:7dcedf8b-4932-41e1-9ea1-f129627e723b",
+      "id": "ALAS-2023-1908",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-1908.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2023-1908",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-1908.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "high"
+        }
+      ],
+      "description": "GNU Libtasn1 before 4.19.0 has an ETYPE_OK off-by-one array size check that affects asn1_encode_simple_der. (CVE-2021-46848)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-1908.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/libtasn1@4.10-1.amzn2.0.2?arch=x86_64&upstream=libtasn1-4.10-1.amzn2.0.2.src.rpm&distro=amzn-2&package-id=da8514563bf628c9"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:382f164e-a912-47a3-adc9-a5e9bb4e3fe8",
+      "id": "ALAS-2023-1911",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-1911.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2023-1911",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-1911.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "high"
+        }
+      ],
+      "description": "SQLite 1.0.12 through 3.39.x before 3.39.2 sometimes allows an array-bounds overflow if billions of bytes are used in a string argument to a C API. (CVE-2022-35737)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-1911.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/sqlite@3.7.17-8.amzn2.1.1?arch=x86_64&upstream=sqlite-3.7.17-8.amzn2.1.1.src.rpm&distro=amzn-2&package-id=ed31a29fb86b3607"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:5c1d4681-529c-4563-ad32-c1b0a9470d57",
+      "id": "ALAS-2023-1912",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-1912.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2023-1912",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-1912.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "The target's backtrace indicates that libc has detected a heap error or that the target was executing a heap function when it stopped. This could be due to heap corruption, passing a bad pointer to a heap function such as free(), etc. Since heap errors might include buffer overflows, use-after-free situations, etc. they are generally considered exploitable. (CVE-2022-4141)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-1912.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/vim-minimal@8.1.1602-1.amzn2?arch=x86_64&epoch=2&upstream=vim-8.1.1602-1.amzn2.src.rpm&distro=amzn-2&package-id=1e714dcf72aab0ca"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:0e18c7c4-f68a-4d0b-9bdb-d39031204cde",
+      "id": "ALAS-2023-1915",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-1915.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2023-1915",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-1915.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "high"
+        }
+      ],
+      "description": "Integer overflow vulnerabilities in PAC parsing (CVE-2022-42898)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-1915.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/krb5-libs@1.15.1-37.amzn2.2.2?arch=x86_64&upstream=krb5-1.15.1-37.amzn2.2.2.src.rpm&distro=amzn-2&package-id=623d9be85a64caf7"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:5af8fa95-ba50-43cc-ad21-f3d8a9090a54",
+      "id": "ALAS-2023-1920",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-1920.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2023-1920",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-1920.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "low"
+        }
+      ],
+      "description": "** DISPUTED ** An integer overflow in util-linux through 2.37.1 can potentially cause a buffer overflow if an attacker were able to use system resources in a way that leads to a large number in the /proc/sysvipc/sem file. NOTE: this is unexploitable in GNU C Library environments, and possibly in all realistic environments. (CVE-2021-37600)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-1920.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/libblkid@2.30.2-2.amzn2.0.4?arch=x86_64&upstream=util-linux-2.30.2-2.amzn2.0.4.src.rpm&distro=amzn-2&package-id=e8af3719cdbeb994"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:653170ed-c5c5-4230-8707-50ad69b41d39",
+      "id": "ALAS-2023-1920",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-1920.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2023-1920",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-1920.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "low"
+        }
+      ],
+      "description": "** DISPUTED ** An integer overflow in util-linux through 2.37.1 can potentially cause a buffer overflow if an attacker were able to use system resources in a way that leads to a large number in the /proc/sysvipc/sem file. NOTE: this is unexploitable in GNU C Library environments, and possibly in all realistic environments. (CVE-2021-37600)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-1920.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/libmount@2.30.2-2.amzn2.0.4?arch=x86_64&upstream=util-linux-2.30.2-2.amzn2.0.4.src.rpm&distro=amzn-2&package-id=c878fc9e38668715"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:23e0497a-82f4-44d7-8d2a-72328fc09bda",
+      "id": "ALAS-2023-1920",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-1920.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2023-1920",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-1920.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "low"
+        }
+      ],
+      "description": "** DISPUTED ** An integer overflow in util-linux through 2.37.1 can potentially cause a buffer overflow if an attacker were able to use system resources in a way that leads to a large number in the /proc/sysvipc/sem file. NOTE: this is unexploitable in GNU C Library environments, and possibly in all realistic environments. (CVE-2021-37600)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-1920.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/libuuid@2.30.2-2.amzn2.0.4?arch=x86_64&upstream=util-linux-2.30.2-2.amzn2.0.4.src.rpm&distro=amzn-2&package-id=00510fe1ebc28410"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:cfc3bca7-033b-4cf3-a304-a95957f7e52f",
+      "id": "ALAS-2023-1924",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-1924.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2023-1924",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-1924.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "A vulnerability was found in curl. This issue occurs due to an erroneous function. A malicious server could make curl within Network Security Services (NSS) get stuck in a never-ending busy loop when trying to retrieve that information. This flaw allows an Infinite Loop, affecting system availability. (CVE-2022-27781)A vulnerability was found in curl. The issue can occur when curl's HSTS check is bypassed to trick it to keep using HTTP. Using its HSTS support, curl can be instructed to use HTTPS instead of an insecure clear-text HTTP step even when providing HTTP in the URL. Suppose the hostname in the given URL first uses IDN characters that get replaced with ASCII counterparts as part of the IDN conversion. In that case, it can bypass the HSTS mechanism using the character UTF-8 U+3002 (IDEOGRAPHIC FULL STOP) instead of the common ASCII full stop (U+002E). Then in a subsequent request, it does not detect the HSTS state and makes a clear text transfer. Because it would store the information, IDN encoded but looked for it as IDN decoded. (CVE-2022-43551)A vulnerability was found in curl. In this issue, curl can be asked to tunnel all protocols virtually it supports through an HTTP proxy. HTTP proxies can deny these tunnel operations using an appropriate HTTP error response code. When getting denied to tunnel the specific SMB or TELNET protocols, curl can use a heap-allocated struct after it has been freed and shut down the code path in its transfer. (CVE-2022-43552)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-1924.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/curl@7.61.1-12.amzn2.0.1?arch=x86_64&upstream=curl-7.61.1-12.amzn2.0.1.src.rpm&distro=amzn-2&package-id=5faf529a869872aa"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:52c2c859-4c35-4633-9069-356d2268fd2c",
+      "id": "ALAS-2023-1924",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-1924.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2023-1924",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-1924.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "A vulnerability was found in curl. This issue occurs due to an erroneous function. A malicious server could make curl within Network Security Services (NSS) get stuck in a never-ending busy loop when trying to retrieve that information. This flaw allows an Infinite Loop, affecting system availability. (CVE-2022-27781)A vulnerability was found in curl. The issue can occur when curl's HSTS check is bypassed to trick it to keep using HTTP. Using its HSTS support, curl can be instructed to use HTTPS instead of an insecure clear-text HTTP step even when providing HTTP in the URL. Suppose the hostname in the given URL first uses IDN characters that get replaced with ASCII counterparts as part of the IDN conversion. In that case, it can bypass the HSTS mechanism using the character UTF-8 U+3002 (IDEOGRAPHIC FULL STOP) instead of the common ASCII full stop (U+002E). Then in a subsequent request, it does not detect the HSTS state and makes a clear text transfer. Because it would store the information, IDN encoded but looked for it as IDN decoded. (CVE-2022-43551)A vulnerability was found in curl. In this issue, curl can be asked to tunnel all protocols virtually it supports through an HTTP proxy. HTTP proxies can deny these tunnel operations using an appropriate HTTP error response code. When getting denied to tunnel the specific SMB or TELNET protocols, curl can use a heap-allocated struct after it has been freed and shut down the code path in its transfer. (CVE-2022-43552)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-1924.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/libcurl@7.61.1-12.amzn2.0.1?arch=x86_64&upstream=curl-7.61.1-12.amzn2.0.1.src.rpm&distro=amzn-2&package-id=1008415a12c5a3d8"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:b7b6fb88-fdb9-4ba8-b7d1-7a508daaff01",
+      "id": "ALAS-2023-1927",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-1927.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2023-1927",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-1927.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "Use After Free in GitHub repository vim/vim prior to 9.0.0882. (CVE-2022-4292)Out-of-bounds Read in GitHub repository vim/vim prior to 9.0.1143. (CVE-2023-0049)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-1927.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/vim-minimal@8.1.1602-1.amzn2?arch=x86_64&epoch=2&upstream=vim-8.1.1602-1.amzn2.src.rpm&distro=amzn-2&package-id=1e714dcf72aab0ca"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:6b5aa24b-942f-4e14-b905-4b6f1882292a",
+      "id": "ALAS-2023-1935",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-1935.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2023-1935",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-1935.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "high"
+        }
+      ],
+      "description": "A timing-based side channel exists in the OpenSSL RSA Decryption implementation, which could be sufficient to recover a ciphertext across a network in a Bleichenbacher style attack. To achieve a successful decryption, an attacker would have to be able to send a very large number of trial messages for decryption. This issue affects all RSA padding modes: PKCS#1 v1.5, RSA-OEAP, and RSASVE. (CVE-2022-4304)A use-after-free vulnerability was found in OpenSSL's BIO_new_NDEF function. The public API function BIO_new_NDEF is a helper function used for streaming ASN.1 data via a BIO. It is primarily used internally by OpenSSL to support the SMIME, CMS, and PKCS7 streaming capabilities, but it may also be called directly by end-user applications. The function receives a BIO from the caller, prepends a new BIO_f_asn1 filter BIO onto the front of it to form a BIO chain, and then returns the new head of the BIO chain to the caller. Under certain conditions. For example, if a CMS recipient public key is invalid, the new filter BIO is freed, and the function returns a NULL result indicating a failure. However, in this case, the BIO chain is not properly cleaned up, and the BIO passed by the caller still retains internal pointers to the previously freed filter BIO. If the caller then calls BIO_pop() on the BIO, a use-after-free will occur, possibly resulting in a crash. (CVE-2023-0215)A type confusion vulnerability was found in OpenSSL when OpenSSL X.400 addresses processing inside an X.509 GeneralName. When CRL checking is enabled (for example, the application sets the X509_V_FLAG_CRL_CHECK flag), this vulnerability may allow an attacker to pass arbitrary pointers to a memcmp call, enabling them to read memory contents or cause a denial of service. In most cases, the attack requires the attacker to provide both the certificate chain and CRL, of which neither needs a valid signature. If the attacker only controls one of these inputs, the other input must already contain an X.400 address as a CRL distribution point, which is uncommon. In this case, this vulnerability is likely only to affect applications that have implemented their own functionality for retrieving CRLs over a network. (CVE-2023-0286)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-1935.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/openssl-libs@1.0.2k-19.amzn2.0.3?arch=x86_64&epoch=1&upstream=openssl-1.0.2k-19.amzn2.0.3.src.rpm&distro=amzn-2&package-id=ce1f995008afc26a"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:9256a342-2f2f-493a-9ee6-aa62f444f8b5",
+      "id": "ALAS-2023-1957",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-1957.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2023-1957",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-1957.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "high"
+        }
+      ],
+      "description": "Certifi is a curated collection of Root Certificates for validating the trustworthiness of SSL certificates while verifying the identity of TLS hosts. Certifi 2022.12.07 removes root certificates from \"TrustCor\" from the root store. These are in the process of being removed from Mozilla's trust store. TrustCor's root certificates are being removed pursuant to an investigation prompted by media reporting that TrustCor's ownership also operated a business that produced spyware. Conclusions of Mozilla's investigation can be found in the linked google group discussion. (CVE-2022-23491)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-1957.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/ca-certificates@2019.2.32-76.amzn2.0.1?arch=noarch&upstream=ca-certificates-2019.2.32-76.amzn2.0.1.src.rpm&distro=amzn-2&package-id=c650ae5ede493471"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:a19d83db-6791-43df-8b8f-638aa81a56b9",
+      "id": "ALAS-2023-1965",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-1965.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2023-1965",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-1965.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "high"
+        }
+      ],
+      "description": "Postfix before 2.11.10, 3.0.x before 3.0.10, 3.1.x before 3.1.6, and 3.2.x before 3.2.2 might allow local users to gain privileges by leveraging undocumented functionality in Berkeley DB 2.x and later, related to reading settings from DB_CONFIG in the current directory. (CVE-2017-10140)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-1965.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/libdb@5.3.21-24.amzn2.0.3?arch=x86_64&upstream=libdb-5.3.21-24.amzn2.0.3.src.rpm&distro=amzn-2&package-id=d1342d9e247af90c"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:50fa3b64-da44-4052-ac4f-7da9249dca05",
+      "id": "ALAS-2023-1965",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-1965.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2023-1965",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-1965.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "high"
+        }
+      ],
+      "description": "Postfix before 2.11.10, 3.0.x before 3.0.10, 3.1.x before 3.1.6, and 3.2.x before 3.2.2 might allow local users to gain privileges by leveraging undocumented functionality in Berkeley DB 2.x and later, related to reading settings from DB_CONFIG in the current directory. (CVE-2017-10140)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-1965.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/libdb-utils@5.3.21-24.amzn2.0.3?arch=x86_64&upstream=libdb-5.3.21-24.amzn2.0.3.src.rpm&distro=amzn-2&package-id=e11936523ddc3075"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:db7a24dd-a486-4e80-bcad-34d7d4d97308",
+      "id": "ALAS-2023-1972",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-1972.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2023-1972",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-1972.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "GNU cpio through 2.13 allows attackers to execute arbitrary code via a crafted pattern file, because of a dstring.c ds_fgetstr integer overflow that triggers an out-of-bounds heap write. NOTE: it is unclear whether there are common cases where the pattern file, associated with the -E option, is untrusted data. (CVE-2021-38185)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-1972.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/cpio@2.11-27.amzn2?arch=x86_64&upstream=cpio-2.11-27.amzn2.src.rpm&distro=amzn-2&package-id=26638dc22ca9e9af"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:442a64e2-d303-445e-97fd-74a1ebb72985",
+      "id": "ALAS-2023-1975",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-1975.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2023-1975",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-1975.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "high"
+        }
+      ],
+      "description": "A heap buffer overflow vulnerability was found in vim's ins_compl_infercase_gettext() function of the src/insexpand.c file. This flaw occurs when vim tries to access uninitialized memory when completing a long line. This flaw allows an attacker to trick a user into opening a specially crafted file, triggering a heap-based buffer overflow that causes an application to crash, possibly executing code and corrupting memory. (CVE-2022-2522)A flaw was found in vim. The vulnerability occurs due to illegal memory access and leads to a heap buffer overflow vulnerability. This flaw allows an attacker to input a specially crafted file, leading to a crash or code execution. (CVE-2022-2571)A flaw was found in vim. The vulnerability occurs due to illegal memory access and leads to a heap buffer overflow. This flaw allows an attacker to input a specially crafted file, leading to a crash or code execution. (CVE-2022-2580)A flaw was found in vim. The vulnerability occurs due to illegal memory access and leads to a heap buffer overflow. This flaw allows an attacker to input a specially crafted file, leading to a crash or code execution. (CVE-2022-2581)NULL Pointer Dereference in GitHub repository vim/vim prior to 9.0.0224. (CVE-2022-2874)A heap use-after-free vulnerability was found in vim's do_tag() function of the src/tag.c file. The issue triggers when the 'tagfunc' closes the window. This flaw allows an attacker to trick a user into opening a specially crafted file, triggering a heap use-after-free that causes an application to crash, possibly executing code and corrupting memory. (CVE-2022-3134)NULL Pointer Dereference in GitHub repository vim/vim prior to 9.0.0404. (CVE-2022-3153)Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.0483. (CVE-2022-3234)Use After Free in GitHub repository vim/vim prior to 9.0.0490. (CVE-2022-3235)Use After Free in GitHub repository vim/vim prior to 9.0.0530. (CVE-2022-3256)NULL Pointer Dereference in GitHub repository vim/vim prior to 9.0.0552. (CVE-2022-3278)Stack-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.0577. (CVE-2022-3296)Use After Free in GitHub repository vim/vim prior to 9.0.0579. (CVE-2022-3297)Stack-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.0598. (CVE-2022-3324)Use After Free in GitHub repository vim/vim prior to 9.0.0614. (CVE-2022-3352)Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.0742. (CVE-2022-3491)A null pointer dereference issue was discovered in function gui_x11_create_blank_mouse in gui_x11.c in vim 8.1.2269 thru 9.0.0339 allows attackers to cause denial of service or other unspecified impacts. (CVE-2022-47024)Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.1144. (CVE-2023-0051)Out-of-bounds Write in GitHub repository vim/vim prior to 9.0.1145. (CVE-2023-0054)Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.1189. (CVE-2023-0288)Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.1225. (CVE-2023-0433)Divide By Zero in GitHub repository vim/vim prior to 9.0.1247. (CVE-2023-0512)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-1975.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/vim-minimal@8.1.1602-1.amzn2?arch=x86_64&epoch=2&upstream=vim-8.1.1602-1.amzn2.src.rpm&distro=amzn-2&package-id=1e714dcf72aab0ca"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:772f529e-4351-4f8d-bd20-adf01a0e12e1",
+      "id": "ALAS-2023-1980",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-1980.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2023-1980",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-1980.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "high"
+        }
+      ],
+      "description": "An issue was discovered in Python before 3.11.1. An unnecessary quadratic algorithm exists in one path when processing some inputs to the IDNA (RFC 3490) decoder, such that a crafted, unreasonably long name being presented to the decoder could lead to a CPU denial of service. Hostnames are often supplied by remote servers that could be controlled by a malicious actor; in such a scenario, they could trigger excessive CPU consumption on the client attempting to make use of an attacker-supplied supposed hostname. For example, the attack payload could be placed in the Location header of an HTTP response with status code 302. A fix is planned in 3.11.1, 3.10.9, 3.9.16, 3.8.16, and 3.7.16. (CVE-2022-45061)An issue in the urllib.parse component of Python before v3.11 allows attackers to bypass blocklisting methods by supplying a URL that starts with blank characters. (CVE-2023-24329)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-1980.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/python@2.7.16-5.amzn2?arch=x86_64&upstream=python-2.7.16-5.amzn2.src.rpm&distro=amzn-2&package-id=e3d1c4f13c624d72"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:df718f50-9348-4abf-8268-38010b76b11e",
+      "id": "ALAS-2023-1980",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-1980.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2023-1980",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-1980.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "high"
+        }
+      ],
+      "description": "An issue was discovered in Python before 3.11.1. An unnecessary quadratic algorithm exists in one path when processing some inputs to the IDNA (RFC 3490) decoder, such that a crafted, unreasonably long name being presented to the decoder could lead to a CPU denial of service. Hostnames are often supplied by remote servers that could be controlled by a malicious actor; in such a scenario, they could trigger excessive CPU consumption on the client attempting to make use of an attacker-supplied supposed hostname. For example, the attack payload could be placed in the Location header of an HTTP response with status code 302. A fix is planned in 3.11.1, 3.10.9, 3.9.16, 3.8.16, and 3.7.16. (CVE-2022-45061)An issue in the urllib.parse component of Python before v3.11 allows attackers to bypass blocklisting methods by supplying a URL that starts with blank characters. (CVE-2023-24329)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-1980.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/python-libs@2.7.16-5.amzn2?arch=x86_64&upstream=python-2.7.16-5.amzn2.src.rpm&distro=amzn-2&package-id=648306be89232862"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:7a54738d-b6ad-4d70-9f67-1eabd7132c40",
+      "id": "ALAS-2023-1986",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-1986.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2023-1986",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-1986.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "A flaw was found in the Curl package, where the HSTS mechanism would be ignored by subsequent transfers when done on the same command line because the state would not be properly carried. This issue may result in limited confidentiality and integrity. (CVE-2023-23914)A flaw was found in the Curl package, where the HSTS mechanism could fail when multiple transfers are done in parallel, as the HSTS cache file gets overwritten by the most recently completed transfer. This issue may result in limited confidentiality and integrity. (CVE-2023-23915)curl: HTTP multi-header compression denial of service (CVE-2023-23916)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-1986.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/curl@7.61.1-12.amzn2.0.1?arch=x86_64&upstream=curl-7.61.1-12.amzn2.0.1.src.rpm&distro=amzn-2&package-id=5faf529a869872aa"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:7044fd69-7a5f-4815-abca-2e9de7054de2",
+      "id": "ALAS-2023-1986",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-1986.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2023-1986",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-1986.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "A flaw was found in the Curl package, where the HSTS mechanism would be ignored by subsequent transfers when done on the same command line because the state would not be properly carried. This issue may result in limited confidentiality and integrity. (CVE-2023-23914)A flaw was found in the Curl package, where the HSTS mechanism could fail when multiple transfers are done in parallel, as the HSTS cache file gets overwritten by the most recently completed transfer. This issue may result in limited confidentiality and integrity. (CVE-2023-23915)curl: HTTP multi-header compression denial of service (CVE-2023-23916)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-1986.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/libcurl@7.61.1-12.amzn2.0.1?arch=x86_64&upstream=curl-7.61.1-12.amzn2.0.1.src.rpm&distro=amzn-2&package-id=1008415a12c5a3d8"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:e9c649aa-8ec2-4012-8d77-060f29963822",
+      "id": "ALAS-2023-1991",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-1991.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2023-1991",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-1991.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "low"
+        }
+      ],
+      "description": "Divide By Zero in GitHub repository vim/vim prior to 9.0.1367. (CVE-2023-1127)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-1991.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/vim-minimal@8.1.1602-1.amzn2?arch=x86_64&epoch=2&upstream=vim-8.1.1602-1.amzn2.src.rpm&distro=amzn-2&package-id=1e714dcf72aab0ca"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:40e4419c-3b35-4ae3-a3aa-ab0caac4a60d",
+      "id": "ALAS-2023-1992",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-1992.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2023-1992",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-1992.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "high"
+        }
+      ],
+      "description": "firefox-esr , thunderbird and nss only are affected by this package. (CVE-2023-0767)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-1992.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/nss@3.44.0-7.amzn2?arch=x86_64&upstream=nss-3.44.0-7.amzn2.src.rpm&distro=amzn-2&package-id=2cb464ea2eabdab5"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:cc20c42c-7043-4d94-9056-2a7385429bdd",
+      "id": "ALAS-2023-1992",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-1992.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2023-1992",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-1992.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "high"
+        }
+      ],
+      "description": "firefox-esr , thunderbird and nss only are affected by this package. (CVE-2023-0767)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-1992.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/nss-sysinit@3.44.0-7.amzn2?arch=x86_64&upstream=nss-3.44.0-7.amzn2.src.rpm&distro=amzn-2&package-id=05011f8669bbc3f2"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:be1523ce-0d95-42a1-a3c7-441680f0fdb7",
+      "id": "ALAS-2023-1992",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-1992.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2023-1992",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-1992.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "high"
+        }
+      ],
+      "description": "firefox-esr , thunderbird and nss only are affected by this package. (CVE-2023-0767)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-1992.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/nss-tools@3.44.0-7.amzn2?arch=x86_64&upstream=nss-3.44.0-7.amzn2.src.rpm&distro=amzn-2&package-id=01f73c7582c3a81e"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:fb46ea04-0099-4ee3-9d7b-0baf2064f781",
+      "id": "ALAS-2023-1996",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-1996.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2023-1996",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-1996.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "An issue was discovered in libxml2 before 2.10.3. When parsing a multi-gigabyte XML document with the XML_PARSE_HUGE parser option enabled, several integer counters can overflow. This results in an attempt to access an array at a negative 2GB offset, typically leading to a segmentation fault. (CVE-2022-40303)An issue was discovered in libxml2 before 2.10.3. Certain invalid XML entity definitions can corrupt a hash table key, potentially leading to subsequent logic errors. In one case, a double-free can be provoked. (CVE-2022-40304)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-1996.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/libxml2@2.9.1-6.amzn2.3.3?arch=x86_64&upstream=libxml2-2.9.1-6.amzn2.3.3.src.rpm&distro=amzn-2&package-id=7ebe618675e23846"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:379d96b0-eb3c-468a-96e9-321773cd8725",
+      "id": "ALAS-2023-2005",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2005.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2023-2005",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2005.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "A heap-based buffer overflow vulnerability was found in GitHub repository vim/vim prior to 9.0.1376 in Vim's utf_ptr2char() function of the src/mbyte.c file. This flaw occurs because there is access to invalid memory with put in visual block mode. An attacker can trick a user into opening a specially crafted file, triggering an out-of-bounds read that causes an application to crash, leading to a denial of service. (CVE-2023-1170)Incorrect Calculation of Buffer Size in GitHub repository vim/vim prior to 9.0.1378. (CVE-2023-1175)NULL Pointer Dereference in GitHub repository vim/vim prior to 9.0.1392. (CVE-2023-1264)NULL Pointer Dereference in GitHub repository vim/vim prior to 9.0.1402. (CVE-2023-1355)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2005.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/vim-minimal@8.1.1602-1.amzn2?arch=x86_64&epoch=2&upstream=vim-8.1.1602-1.amzn2.src.rpm&distro=amzn-2&package-id=1e714dcf72aab0ca"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:f9692733-e238-4b90-bd88-7779842a51ed",
+      "id": "ALAS-2023-2021",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2021.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2023-2021",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2021.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "A NULL pointer dereference exists when parsing (invalid) XML schemas in libxml2 xmlSchemaCheckCOSSTDerivedOK (CVE-2023-28484)libxml2 Hashing of empty dict strings isn't deterministic. When hashing empty strings which aren't null-terminated, xmlDictComputeFastKey could produce inconsistent results. This could lead to various logic or memory errors, including double frees. (CVE-2023-29469)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2021.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/libxml2@2.9.1-6.amzn2.3.3?arch=x86_64&upstream=libxml2-2.9.1-6.amzn2.3.3.src.rpm&distro=amzn-2&package-id=7ebe618675e23846"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:90dfbf1d-236a-4f07-b9cf-f43e5aa139c0",
+      "id": "ALAS-2023-2033",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2033.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2023-2033",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2033.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "high"
+        }
+      ],
+      "description": "An issue was discovered in OpenLDAP 2.x before 2.4.48. When using SASL authentication and session encryption, and relying on the SASL security layers in slapd access controls, it is possible to obtain access that would otherwise be denied via a simple bind for any identity covered in those ACLs. After the first SASL bind is completed, the sasl_ssf value is retained for all new non-SASL connections. Depending on the ACL configuration, this can affect different types of operations (searches, modifications, etc.). In other words, a successful authorization step completed by one user affects the authorization requirement for a different user. (CVE-2019-13565)An integer underflow was discovered in OpenLDAP before 2.4.57 leading to slapd crashes in the Certificate Exact Assertion processing, resulting in denial of service (schema_init.c serialNumberAndIssuerCheck). (CVE-2020-36221)A flaw was discovered in OpenLDAP before 2.4.57 leading to an assertion failure in slapd in the saslAuthzTo validation, resulting in denial of service. (CVE-2020-36222)A flaw was discovered in OpenLDAP before 2.4.57 leading to a slapd crash in the Values Return Filter control handling, resulting in denial of service (double free and out-of-bounds read). (CVE-2020-36223)A flaw was discovered in OpenLDAP before 2.4.57 leading to an invalid pointer free and slapd crash in the saslAuthzTo processing, resulting in denial of service. (CVE-2020-36224)A flaw was discovered in OpenLDAP before 2.4.57 leading to a memch->bv_len miscalculation and slapd crash in the saslAuthzTo processing, resulting in denial of service. (CVE-2020-36226)A flaw was discovered in OpenLDAP before 2.4.57 leading to an infinite loop in slapd with the cancel_extop Cancel operation, resulting in denial of service. (CVE-2020-36227)An integer underflow was discovered in OpenLDAP before 2.4.57 leading to a slapd crash in the Certificate List Exact Assertion processing, resulting in denial of service. (CVE-2020-36228)A flaw was discovered in ldap_X509dn2bv in OpenLDAP before 2.4.57 leading to a slapd crash in the X.509 DN parsing in ad_keystring, resulting in denial of service. (CVE-2020-36229)A flaw was discovered in OpenLDAP before 2.4.57 leading in an assertion failure in slapd in the X.509 DN parsing in decode.c ber_next_element, resulting in denial of service. (CVE-2020-36230)In OpenLDAP through 2.4.57 and 2.5.x through 2.5.1alpha, an assertion  ...NOTE: https://bugs.openldap.org/show_bug.cgi?id=9454NOTE: trunk: https://git.openldap.org/openldap/openldap/-/commit/3539fc33212b528c56b716584f2c2994af7c30b0NOTE: REL_ENG 2.4.x: https://git.openldap.org/openldap/openldap/-/commit/9badb73425a67768c09bcaed1a9c26c684af6c30 (CVE-2021-27212)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2033.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/openldap@2.4.44-15.amzn2?arch=x86_64&upstream=openldap-2.4.44-15.amzn2.src.rpm&distro=amzn-2&package-id=1370d90ba0ef3b57"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:656f547d-343d-4e56-931e-ed3e6fac9b78",
+      "id": "ALAS-2023-2046",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2046.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2023-2046",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2046.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "An out of bounds read flaw was discovered in libssh2 before 1.8.1 in the _libssh2_packet_require and _libssh2_packet_requirev functions. A remote attacker who compromises a SSH server may be able to cause a Denial of Service or read data in the client memory. (CVE-2019-3859)An out of bounds read flaw was discovered in libssh2 before 1.8.1 in the way SFTP packets with empty payloads are parsed. A remote attacker who compromises a SSH server may be able to cause a Denial of Service or read data in the client memory. (CVE-2019-3860)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2046.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/libssh2@1.4.3-12.amzn2.2.2?arch=x86_64&upstream=libssh2-1.4.3-12.amzn2.2.2.src.rpm&distro=amzn-2&package-id=aec3dc0ee68de92c"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:cbe085d9-c2f2-47af-800f-cea3d563cfad",
+      "id": "ALAS-2023-2049",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2049.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2023-2049",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2049.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "high"
+        }
+      ],
+      "description": "In GNOME GLib 2.56.1, g_markup_parse_context_end_parse() in gmarkup.c has a NULL pointer dereference. (CVE-2018-16428)GNOME GLib 2.56.1 has an out-of-bounds read vulnerability in g_markup_parse_context_parse() in gmarkup.c, related to utf8_str(). (CVE-2018-16429)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2049.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/glib2@2.56.1-4.amzn2?arch=x86_64&upstream=glib2-2.56.1-4.amzn2.src.rpm&distro=amzn-2&package-id=f1ce4832b45dbaac"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:2b9a4be4-0d35-45e0-98ad-c571c2d057b8",
+      "id": "ALAS-2023-2058",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2058.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2023-2058",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2058.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "A flaw was found in glib before version 2.63.6. Due to random charset alias, pkexec can leak content from files owned by privileged users to unprivileged ones under the right condition. (CVE-2021-3800)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2058.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/glib2@2.56.1-4.amzn2?arch=x86_64&upstream=glib2-2.56.1-4.amzn2.src.rpm&distro=amzn-2&package-id=f1ce4832b45dbaac"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:48c48401-264b-47fc-9dab-ad3890385f75",
+      "id": "ALAS-2023-2070",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2070.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2023-2070",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2070.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "The curl advisory describes this issue as follows:curl supports communicating using the TELNET protocol and as a part of this it offers users to pass on user name and \"telnet options\" for the server negotiation.Due to lack of proper input scrubbing and without it being the documented functionality, curl would pass on user name and telnet options to the server as provided. This could allow users to pass in carefully crafted content that pass on content or do option negotiation without the application intending to do so. In particular if an application for example allows users to provide the data or parts of the data. (CVE-2023-27533)The curl advisory describes this issue as follows:curl supports SFTP transfers. curl's SFTP implementation offers a special feature in the path component of URLs: a tilde (~) character as the first path element in the path to denotes a path relative to the user's home directory. This is supported because of wording in the once proposed to-become RFC draft that was to dictate how SFTP URLs work.Due to a bug, the handling of the tilde in SFTP path did however not only replace it when it is used stand-alone as the first path element but also wrongly when used as a mere prefix in the first element.Using a path like /~2/foo when accessing a server using the user dan (with home directory /home/dan) would then quite surprisingly access the file /home/dan2/foo.This can be taken advantage of to circumvent filtering or worse. (CVE-2023-27534)The curl advisory describes this issue as follows:libcurl would reuse a previously created FTP connection even when one or more options had been changed that could have made the effective user a very different one, thus leading to the doing the second transfer with wrong credentials. (CVE-2023-27535)The curl advisory describes this issue as follows:libcurl would reuse a previously created connection even when the GSS delegation (CURLOPT_GSSAPI_DELEGATION) option had been changed that could have changed the user's permissions in a second transfer.libcurl keeps previously used connections in a connection pool for subsequent transfers to reuse if one of them matches the setup. However, this GSS delegation setting was left out from the configuration match checks, making them match too easily, affecting krb5/kerberos/negotiate/GSSAPI transfers. (CVE-2023-27536)The curl advisory describes this issue as follows:libcurl supports sharing HSTS data between separate \"handles\". This sharing was introduced without considerations for doing this sharing across separate threads, but there was no indication of this fact in the documentation. Due to missing mutexes or thread locks, two threads sharing the same HSTS data could end up doing a double-free or use-after-free. (CVE-2023-27537)The curl advisory describes this issue as follows:libcurl would reuse a previously created connection even when an SSH related option had been changed that should have prohibited reuse.libcurl keeps previously used connections in a connection pool for subsequent transfers to reuse if one of them matches the setup. However, two SSH settings were left out from the configuration match checks, making them match too easily. (CVE-2023-27538)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2070.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/curl@7.61.1-12.amzn2.0.1?arch=x86_64&upstream=curl-7.61.1-12.amzn2.0.1.src.rpm&distro=amzn-2&package-id=5faf529a869872aa"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:ea4abb10-d57a-4cde-9679-68c7ef84b640",
+      "id": "ALAS-2023-2070",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2070.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2023-2070",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2070.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "The curl advisory describes this issue as follows:curl supports communicating using the TELNET protocol and as a part of this it offers users to pass on user name and \"telnet options\" for the server negotiation.Due to lack of proper input scrubbing and without it being the documented functionality, curl would pass on user name and telnet options to the server as provided. This could allow users to pass in carefully crafted content that pass on content or do option negotiation without the application intending to do so. In particular if an application for example allows users to provide the data or parts of the data. (CVE-2023-27533)The curl advisory describes this issue as follows:curl supports SFTP transfers. curl's SFTP implementation offers a special feature in the path component of URLs: a tilde (~) character as the first path element in the path to denotes a path relative to the user's home directory. This is supported because of wording in the once proposed to-become RFC draft that was to dictate how SFTP URLs work.Due to a bug, the handling of the tilde in SFTP path did however not only replace it when it is used stand-alone as the first path element but also wrongly when used as a mere prefix in the first element.Using a path like /~2/foo when accessing a server using the user dan (with home directory /home/dan) would then quite surprisingly access the file /home/dan2/foo.This can be taken advantage of to circumvent filtering or worse. (CVE-2023-27534)The curl advisory describes this issue as follows:libcurl would reuse a previously created FTP connection even when one or more options had been changed that could have made the effective user a very different one, thus leading to the doing the second transfer with wrong credentials. (CVE-2023-27535)The curl advisory describes this issue as follows:libcurl would reuse a previously created connection even when the GSS delegation (CURLOPT_GSSAPI_DELEGATION) option had been changed that could have changed the user's permissions in a second transfer.libcurl keeps previously used connections in a connection pool for subsequent transfers to reuse if one of them matches the setup. However, this GSS delegation setting was left out from the configuration match checks, making them match too easily, affecting krb5/kerberos/negotiate/GSSAPI transfers. (CVE-2023-27536)The curl advisory describes this issue as follows:libcurl supports sharing HSTS data between separate \"handles\". This sharing was introduced without considerations for doing this sharing across separate threads, but there was no indication of this fact in the documentation. Due to missing mutexes or thread locks, two threads sharing the same HSTS data could end up doing a double-free or use-after-free. (CVE-2023-27537)The curl advisory describes this issue as follows:libcurl would reuse a previously created connection even when an SSH related option had been changed that should have prohibited reuse.libcurl keeps previously used connections in a connection pool for subsequent transfers to reuse if one of them matches the setup. However, two SSH settings were left out from the configuration match checks, making them match too easily. (CVE-2023-27538)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2070.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/libcurl@7.61.1-12.amzn2.0.1?arch=x86_64&upstream=curl-7.61.1-12.amzn2.0.1.src.rpm&distro=amzn-2&package-id=1008415a12c5a3d8"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:fb700e5d-9aef-403f-b347-3a1cd43d2dec",
+      "id": "ALAS-2023-2073",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2073.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2023-2073",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2073.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "A security vulnerability has been identified in all supported versions of OpenSSL related to the verification of X.509 certificate chains that include policy constraints. Attackers may be able to exploit this vulnerability by creating a malicious certificate chain that triggers exponential use of computational resources, leading to a denial-of-service (DoS) attack on affected systems. Policy processing is disabled by default but can be enabled by passing the `-policy' argument to the command line utilities or by calling the `X509_VERIFY_PARAM_set1_policies()' function. (CVE-2023-0464)Applications that use a non-default option when verifying certificates may be vulnerable to an attack from a malicious CA to circumvent certain checks. Invalid certificate policies in leaf certificates are silently ignored by OpenSSL and other certificate policy checks are skipped for that certificate. A malicious CA could use this to deliberately assert invalid certificate policies in order to circumvent policy checking on the certificate altogether. Policy processing is disabled by default but can be enabled by passing the `-policy' argument to the command line utilities or by calling the `X509_VERIFY_PARAM_set1_policies()' function. (CVE-2023-0465)The function X509_VERIFY_PARAM_add0_policy() is documented to implicitly enable the certificate policy check when doing certificate verification. However the implementation of the function does not enable the check which allows certificates with invalid or incorrect policies to pass the certificate verification. As suddenly enabling the policy check could break existing deployments it was decided to keep the existing behavior of the X509_VERIFY_PARAM_add0_policy() function. Instead the applications that require OpenSSL to perform certificate policy check need to use X509_VERIFY_PARAM_set1_policies() or explicitly enable the policy check by calling X509_VERIFY_PARAM_set_flags() with the X509_V_FLAG_POLICY_CHECK flag argument. Certificate policy checks are disabled by default in OpenSSL and are not commonly used by applications. (CVE-2023-0466)Issue summary: Processing some specially crafted ASN.1 object identifiers ordata containing them may be very slow.Impact summary: Applications that use OBJ_obj2txt() directly, or use any ofthe OpenSSL subsystems OCSP, PKCS7/SMIME, CMS, CMP/CRMF or TS with no messagesize limit may experience notable to very long delays when processing thosemessages, which may lead to a Denial of Service.An OBJECT IDENTIFIER is composed of a series of numbers - sub-identifiers -most of which have no size limit.  OBJ_obj2txt() may be used to translatean ASN.1 OBJECT IDENTIFIER given in DER encoding form (using the OpenSSLtype ASN1_OBJECT) to its canonical numeric text form, which are thesub-identifiers of the OBJECT IDENTIFIER in decimal form, separated byperiods.When one of the sub-identifiers in the OBJECT IDENTIFIER is very large(these are sizes that are seen as absurdly large, taking up tens or hundredsof KiBs), the translation to a decimal number in text may take a very longtime.  The time complexity is O(n^2) with 'n' being the size of thesub-identifiers in bytes (*).With OpenSSL 3.0, support to fetch cryptographic algorithms using names /identifiers in string form was introduced.  This includes using OBJECTIDENTIFIERs in canonical numeric text form as identifiers for fetchingalgorithms.Such OBJECT IDENTIFIERs may be received through the ASN.1 structureAlgorithmIdentifier, which is commonly used in multiple protocols to specifywhat cryptographic algorithm should be used to sign or verify, encrypt ordecrypt, or digest passed data.Applications that call OBJ_obj2txt() directly with untrusted data areaffected, with any version of OpenSSL.  If the use is for the mere purposeof display, the severity is considered low.In OpenSSL 3.0 and newer, this affects the subsystems OCSP, PKCS7/SMIME,CMS, CMP/CRMF or TS.  It also impacts anything that processes X.509certificates, including simple things like verifying its signature.The impact on TLS is relatively low, because all versions of OpenSSL have a100KiB limit on the peer's certificate chain.  Additionally, this onlyimpacts clients, or servers that have explicitly enabled clientauthentication.In OpenSSL 1.1.1 and 1.0.2, this only affects displaying diverse objects,such as X.509 certificates.  This is assumed to not happen in such a waythat it would cause a Denial of Service, so these versions are considerednot affected by this issue in such a way that it would be cause for concern,and the severity is therefore considered low. (CVE-2023-2650)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2073.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/openssl-libs@1.0.2k-19.amzn2.0.3?arch=x86_64&epoch=1&upstream=openssl-1.0.2k-19.amzn2.0.3.src.rpm&distro=amzn-2&package-id=ce1f995008afc26a"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:d7d021a6-cbe3-40e7-ab3b-0d2f8afa98a8",
+      "id": "ALAS-2023-2082",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2082.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2023-2082",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2082.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "PCRE before 8.38 mishandles the [: and \\ substrings in character classes, which allows remote attackers to cause a denial of service (uninitialized memory read) or possibly have unspecified other impact via a crafted regular expression, as demonstrated by a JavaScript RegExp object encountered by Konqueror. (CVE-2015-8390)PCRE before 8.38 mishandles the (?(<digits>) and (?(R<digits>) conditions, which allows remote attackers to cause a denial of service (integer overflow) or possibly have unspecified other impact via a crafted regular expression, as demonstrated by a JavaScript RegExp object encountered by Konqueror. (CVE-2015-8394)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2082.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/pcre@8.32-17.amzn2.0.2?arch=x86_64&upstream=pcre-8.32-17.amzn2.0.2.src.rpm&distro=amzn-2&package-id=c074b2f009ba5e0a"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:6fe2be0d-d431-492e-84ba-7f5bdd372957",
+      "id": "ALAS-2023-2085",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2085.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2023-2085",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2085.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "high"
+        }
+      ],
+      "description": "NULL Pointer Dereference in GitHub repository vim/vim prior to 9.0.1531. (CVE-2023-2609)Integer Overflow or Wraparound in GitHub repository vim/vim prior to 9.0.1532. (CVE-2023-2610)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2085.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/vim-minimal@8.1.1602-1.amzn2?arch=x86_64&epoch=2&upstream=vim-8.1.1602-1.amzn2.src.rpm&distro=amzn-2&package-id=1e714dcf72aab0ca"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:47845ae2-20de-4ffe-85e9-a079459546fb",
+      "id": "ALAS-2023-2095",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2095.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2023-2095",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2095.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "A vulnerability was found in openldap that can cause a null pointer dereference in the ber_memalloc_x() function. (CVE-2023-2953)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2095.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/openldap@2.4.44-15.amzn2?arch=x86_64&upstream=openldap-2.4.44-15.amzn2.src.rpm&distro=amzn-2&package-id=1370d90ba0ef3b57"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:869714c9-80f8-4b97-811a-941a9c430da1",
+      "id": "ALAS-2023-2096",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2096.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2023-2096",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2096.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "high"
+        }
+      ],
+      "description": "ncurses before 6.4 20230408, when used by a setuid application, allows local users to trigger security-relevant memory corruption via malformed data in a terminfo database file that is found in $HOME/.terminfo or reached via the TERMINFO or TERM environment variable. (CVE-2023-29491)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2096.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/ncurses@6.0-8.20170212.amzn2.1.3?arch=x86_64&upstream=ncurses-6.0-8.20170212.amzn2.1.3.src.rpm&distro=amzn-2&package-id=75d4a654c7033f96"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:418995a4-d814-4479-9dff-cc7fee4b942a",
+      "id": "ALAS-2023-2096",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2096.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2023-2096",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2096.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "high"
+        }
+      ],
+      "description": "ncurses before 6.4 20230408, when used by a setuid application, allows local users to trigger security-relevant memory corruption via malformed data in a terminfo database file that is found in $HOME/.terminfo or reached via the TERMINFO or TERM environment variable. (CVE-2023-29491)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2096.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/ncurses-base@6.0-8.20170212.amzn2.1.3?arch=noarch&upstream=ncurses-6.0-8.20170212.amzn2.1.3.src.rpm&distro=amzn-2&package-id=61a93095dd78673e"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:07d8a06e-d652-4ea3-9884-3adaaf26c9f5",
+      "id": "ALAS-2023-2096",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2096.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2023-2096",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2096.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "high"
+        }
+      ],
+      "description": "ncurses before 6.4 20230408, when used by a setuid application, allows local users to trigger security-relevant memory corruption via malformed data in a terminfo database file that is found in $HOME/.terminfo or reached via the TERMINFO or TERM environment variable. (CVE-2023-29491)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2096.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/ncurses-libs@6.0-8.20170212.amzn2.1.3?arch=x86_64&upstream=ncurses-6.0-8.20170212.amzn2.1.3.src.rpm&distro=amzn-2&package-id=01904aacf5abaf0c"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:e5526ed6-26dd-48cd-af24-afcbeb7e6f93",
+      "id": "ALAS-2023-2107",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2107.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2023-2107",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2107.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "PCRE before 8.38 mishandles the [: and \\ substrings in character classes, which allows remote attackers to cause a denial of service (uninitialized memory read) or possibly have unspecified other impact via a crafted regular expression, as demonstrated by a JavaScript RegExp object encountered by Konqueror. (CVE-2015-8390)PCRE before 8.38 mishandles the (?(<digits>) and (?(R<digits>) conditions, which allows remote attackers to cause a denial of service (integer overflow) or possibly have unspecified other impact via a crafted regular expression, as demonstrated by a JavaScript RegExp object encountered by Konqueror. (CVE-2015-8394)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2107.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/glib2@2.56.1-4.amzn2?arch=x86_64&upstream=glib2-2.56.1-4.amzn2.src.rpm&distro=amzn-2&package-id=f1ce4832b45dbaac"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:2034100c-4e66-4ce1-ba99-d43561987262",
+      "id": "ALAS-2023-2136",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2136.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2023-2136",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2136.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "low"
+        }
+      ],
+      "description": "libcap is vulnerable to a denial of service caused by the error handling in wrap_pthread_create() function, which will cause memory to be leaked in the case of an error. (CVE-2023-2602)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2136.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/libcap@2.22-9.amzn2.0.2?arch=x86_64&upstream=libcap-2.22-9.amzn2.0.2.src.rpm&distro=amzn-2&package-id=7a4d77bdf5c027d8"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:fee88602-8ed4-43f4-a2eb-416a1113373b",
+      "id": "ALAS-2023-2180",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2180.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2023-2180",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2180.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "high"
+        }
+      ],
+      "description": "Envoy is a cloud-native high-performance edge/middle/service proxy. Envoy's HTTP/2 codec may leak a header map and bookkeeping structures upon receiving `RST_STREAM` immediately followed by the `GOAWAY` frames from an upstream server. In nghttp2, cleanup of pending requests due to receipt of the `GOAWAY` frame skips de-allocation of the bookkeeping structure and pending compressed header. The error return [code path] is taken if connection is already marked for not sending more requests due to `GOAWAY` frame. The clean-up code is right after the return statement, causing memory leak. Denial of service through memory exhaustion. This vulnerability was patched in versions(s) 1.26.3, 1.25.8, 1.24.9, 1.23.11. (CVE-2023-35945)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2180.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/libnghttp2@1.39.2-1.amzn2?arch=x86_64&upstream=nghttp2-1.39.2-1.amzn2.src.rpm&distro=amzn-2&package-id=fda057e615d46988"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:162d71a8-97a7-469d-ba22-c4639a052af3",
+      "id": "ALAS-2023-2197",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2197.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2023-2197",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2197.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "low"
+        }
+      ],
+      "description": "In elfutils 0.183, an infinite loop was found in the function handle_symtab in readelf.c .Which allows attackers to cause a denial of service (infinite loop) via crafted file. (CVE-2021-33294)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2197.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/elfutils-libelf@0.176-2.amzn2?arch=x86_64&upstream=elfutils-0.176-2.amzn2.src.rpm&distro=amzn-2&package-id=eed88a526c888165"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:08a6992b-2116-4f92-b43a-73dbaaa44076",
+      "id": "ALAS-2023-2203",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2203.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2023-2203",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2203.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "high"
+        }
+      ],
+      "description": "An initial fix in Amazon Linux ca-certificates package relating to CVE-2022-23491 did not properly remove root certificates from TrustCor from the root store. (CVE-2023-32803)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2203.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/ca-certificates@2019.2.32-76.amzn2.0.1?arch=noarch&upstream=ca-certificates-2019.2.32-76.amzn2.0.1.src.rpm&distro=amzn-2&package-id=c650ae5ede493471"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:113890ec-4f1e-4567-a1e9-e0fdbbb59a00",
+      "id": "ALAS-2023-2221",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2221.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2023-2221",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2221.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "A vulnerability was discovered in glibc where the LD_PREFER_MAP_32BIT_EXEC environment variable is not ignored when running binaries with the setuid flag on x86_64 architectures. This allows an attacker to force system to utilize only half of the memory (making the system think the software is 32-bit only), thus lowering the amount of memory being used with address space layout randomization (ASLR). The highest threat is confidentiality although the complexity of attack is high. The affected application must already have other vulnerabilities for this flaw to be usable. (CVE-2019-19126)A flaw was found in glibc in versions prior to 2.32. Pseudo-zero values are not validated causing a stack corruption due to a stack-based overflow. The highest threat from this vulnerability is to system availability. (CVE-2020-10029)A use-after-free vulnerability was found in glibc in the way the tilde expansion was carried out. Directory paths containing an initial tilde followed by a valid username were affected by this issue. A local attacker could exploit this flaw by creating a specially crafted path that, when processed by the glob function, would potentially lead to arbitrary code execution. (CVE-2020-1752)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2221.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/glibc@2.26-34.amzn2?arch=x86_64&upstream=glibc-2.26-34.amzn2.src.rpm&distro=amzn-2&package-id=aaf9f40aee775d65"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:811409ff-2018-4e69-8f89-b60b699ec0ab",
+      "id": "ALAS-2023-2221",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2221.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2023-2221",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2221.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "A vulnerability was discovered in glibc where the LD_PREFER_MAP_32BIT_EXEC environment variable is not ignored when running binaries with the setuid flag on x86_64 architectures. This allows an attacker to force system to utilize only half of the memory (making the system think the software is 32-bit only), thus lowering the amount of memory being used with address space layout randomization (ASLR). The highest threat is confidentiality although the complexity of attack is high. The affected application must already have other vulnerabilities for this flaw to be usable. (CVE-2019-19126)A flaw was found in glibc in versions prior to 2.32. Pseudo-zero values are not validated causing a stack corruption due to a stack-based overflow. The highest threat from this vulnerability is to system availability. (CVE-2020-10029)A use-after-free vulnerability was found in glibc in the way the tilde expansion was carried out. Directory paths containing an initial tilde followed by a valid username were affected by this issue. A local attacker could exploit this flaw by creating a specially crafted path that, when processed by the glob function, would potentially lead to arbitrary code execution. (CVE-2020-1752)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2221.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/glibc-common@2.26-34.amzn2?arch=x86_64&upstream=glibc-2.26-34.amzn2.src.rpm&distro=amzn-2&package-id=a88e37fdd568988d"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:0451df9e-1cbd-4aea-a579-2ed32afb58a9",
+      "id": "ALAS-2023-2221",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2221.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2023-2221",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2221.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "A vulnerability was discovered in glibc where the LD_PREFER_MAP_32BIT_EXEC environment variable is not ignored when running binaries with the setuid flag on x86_64 architectures. This allows an attacker to force system to utilize only half of the memory (making the system think the software is 32-bit only), thus lowering the amount of memory being used with address space layout randomization (ASLR). The highest threat is confidentiality although the complexity of attack is high. The affected application must already have other vulnerabilities for this flaw to be usable. (CVE-2019-19126)A flaw was found in glibc in versions prior to 2.32. Pseudo-zero values are not validated causing a stack corruption due to a stack-based overflow. The highest threat from this vulnerability is to system availability. (CVE-2020-10029)A use-after-free vulnerability was found in glibc in the way the tilde expansion was carried out. Directory paths containing an initial tilde followed by a valid username were affected by this issue. A local attacker could exploit this flaw by creating a specially crafted path that, when processed by the glob function, would potentially lead to arbitrary code execution. (CVE-2020-1752)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2221.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/glibc-langpack-en@2.26-34.amzn2?arch=x86_64&upstream=glibc-2.26-34.amzn2.src.rpm&distro=amzn-2&package-id=78ca252f42c0cd10"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:0e4ba722-77d2-4174-ae5a-5a56f27d9675",
+      "id": "ALAS-2023-2221",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2221.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2023-2221",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2221.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "A vulnerability was discovered in glibc where the LD_PREFER_MAP_32BIT_EXEC environment variable is not ignored when running binaries with the setuid flag on x86_64 architectures. This allows an attacker to force system to utilize only half of the memory (making the system think the software is 32-bit only), thus lowering the amount of memory being used with address space layout randomization (ASLR). The highest threat is confidentiality although the complexity of attack is high. The affected application must already have other vulnerabilities for this flaw to be usable. (CVE-2019-19126)A flaw was found in glibc in versions prior to 2.32. Pseudo-zero values are not validated causing a stack corruption due to a stack-based overflow. The highest threat from this vulnerability is to system availability. (CVE-2020-10029)A use-after-free vulnerability was found in glibc in the way the tilde expansion was carried out. Directory paths containing an initial tilde followed by a valid username were affected by this issue. A local attacker could exploit this flaw by creating a specially crafted path that, when processed by the glob function, would potentially lead to arbitrary code execution. (CVE-2020-1752)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2221.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/glibc-minimal-langpack@2.26-34.amzn2?arch=x86_64&upstream=glibc-2.26-34.amzn2.src.rpm&distro=amzn-2&package-id=275d6892508cce54"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:68167f8b-f5a3-4719-8740-639da52097ad",
+      "id": "ALAS-2023-2221",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2221.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2023-2221",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2221.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "A vulnerability was discovered in glibc where the LD_PREFER_MAP_32BIT_EXEC environment variable is not ignored when running binaries with the setuid flag on x86_64 architectures. This allows an attacker to force system to utilize only half of the memory (making the system think the software is 32-bit only), thus lowering the amount of memory being used with address space layout randomization (ASLR). The highest threat is confidentiality although the complexity of attack is high. The affected application must already have other vulnerabilities for this flaw to be usable. (CVE-2019-19126)A flaw was found in glibc in versions prior to 2.32. Pseudo-zero values are not validated causing a stack corruption due to a stack-based overflow. The highest threat from this vulnerability is to system availability. (CVE-2020-10029)A use-after-free vulnerability was found in glibc in the way the tilde expansion was carried out. Directory paths containing an initial tilde followed by a valid username were affected by this issue. A local attacker could exploit this flaw by creating a specially crafted path that, when processed by the glob function, would potentially lead to arbitrary code execution. (CVE-2020-1752)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2221.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/libcrypt@2.26-34.amzn2?arch=x86_64&upstream=glibc-2.26-34.amzn2.src.rpm&distro=amzn-2&package-id=8a691524aa78dd93"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:243fadcc-583a-4d63-8431-7c3a62989b3a",
+      "id": "ALAS-2023-2224",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2224.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2023-2224",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2224.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "high"
+        }
+      ],
+      "description": "Certifi is a curated collection of Root Certificates for validating the trustworthiness of SSL certificates while verifying the identity of TLS hosts. Certifi prior to version 2023.07.22 recognizes \"e-Tugra\" root certificates. e-Tugra's root certificates were subject to an investigation prompted by reporting of security issues in their systems. Certifi 2023.07.22 removes root certificates from \"e-Tugra\" from the root store. (CVE-2023-37920)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2224.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/ca-certificates@2019.2.32-76.amzn2.0.1?arch=noarch&upstream=ca-certificates-2019.2.32-76.amzn2.0.1.src.rpm&distro=amzn-2&package-id=c650ae5ede493471"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:6c15c1c7-bd4f-4b6c-9ab5-80bc36344bc2",
+      "id": "ALAS-2023-2225",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2225.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2023-2225",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2225.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "lib/kadm5/kadm_rpc_xdr.c in MIT Kerberos 5 (aka krb5) before 1.20.2 and 1.21.x before 1.21.1 frees an uninitialized pointer. A remote authenticated user can trigger a kadmind crash. This occurs because _xdr_kadm5_principal_ent_rec does not validate the relationship between n_key_data and the key_data array count. (CVE-2023-36054)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2225.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/krb5-libs@1.15.1-37.amzn2.2.2?arch=x86_64&upstream=krb5-1.15.1-37.amzn2.2.2.src.rpm&distro=amzn-2&package-id=623d9be85a64caf7"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:1337ee16-064d-4b07-9006-ee7d8200d908",
+      "id": "ALAS-2023-2230",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2230.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2023-2230",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2230.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "Integer overflow vulnerability in tool_operate.c in curl 7.65.2 via crafted value as the retry delay. (CVE-2020-19909)libcurl offers a feature to verify an SSH server's public key using a SHA 256 hash. When this check fails, libcurl would free the memory for the fingerprint before it returns an error message containing the (now freed) hash.This flaw risks inserting sensitive heap-based data into the error message that might be shown to users or otherwise get leaked and revealed. (CVE-2023-28319)curl supports matching of wildcard patterns when listed as \"Subject Alternative Name\" in TLS server certificates. curl can be built to use its own name matching function for TLS rather than one provided by a TLS library. This private wildcard matching function would match IDN (International Domain Name) hosts incorrectly and could as a result accept patterns that otherwise should mismatch.IDN hostnames are converted to puny code before used for certificate checks. Puny coded names always start with xn-- and should not be allowed to pattern match, but the wildcard check in curl could still check for x*, which would match even though the IDN name most likely contained nothing even resembling an x. (CVE-2023-28321)When doing HTTP(S) transfers, libcurl might erroneously use the read callback (CURLOPT_READFUNCTION) to ask for data to send, even when the CURLOPT_POSTFIELDS option has been set, if the same handle previously was used to issue a PUT request which used that callback.This flaw may surprise the application and cause it to misbehave and either send off the wrong data or use memory after free or similar in the second transfer.The problem exists in the logic for a reused handle when it is (expected to be) changed from a PUT to a POST. (CVE-2023-28322)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2230.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/curl@7.61.1-12.amzn2.0.1?arch=x86_64&upstream=curl-7.61.1-12.amzn2.0.1.src.rpm&distro=amzn-2&package-id=5faf529a869872aa"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:02e4b0e6-de34-4286-a4ec-fd138c1c4888",
+      "id": "ALAS-2023-2230",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2230.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2023-2230",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2230.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "Integer overflow vulnerability in tool_operate.c in curl 7.65.2 via crafted value as the retry delay. (CVE-2020-19909)libcurl offers a feature to verify an SSH server's public key using a SHA 256 hash. When this check fails, libcurl would free the memory for the fingerprint before it returns an error message containing the (now freed) hash.This flaw risks inserting sensitive heap-based data into the error message that might be shown to users or otherwise get leaked and revealed. (CVE-2023-28319)curl supports matching of wildcard patterns when listed as \"Subject Alternative Name\" in TLS server certificates. curl can be built to use its own name matching function for TLS rather than one provided by a TLS library. This private wildcard matching function would match IDN (International Domain Name) hosts incorrectly and could as a result accept patterns that otherwise should mismatch.IDN hostnames are converted to puny code before used for certificate checks. Puny coded names always start with xn-- and should not be allowed to pattern match, but the wildcard check in curl could still check for x*, which would match even though the IDN name most likely contained nothing even resembling an x. (CVE-2023-28321)When doing HTTP(S) transfers, libcurl might erroneously use the read callback (CURLOPT_READFUNCTION) to ask for data to send, even when the CURLOPT_POSTFIELDS option has been set, if the same handle previously was used to issue a PUT request which used that callback.This flaw may surprise the application and cause it to misbehave and either send off the wrong data or use memory after free or similar in the second transfer.The problem exists in the logic for a reused handle when it is (expected to be) changed from a PUT to a POST. (CVE-2023-28322)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2230.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/libcurl@7.61.1-12.amzn2.0.1?arch=x86_64&upstream=curl-7.61.1-12.amzn2.0.1.src.rpm&distro=amzn-2&package-id=1008415a12c5a3d8"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:4aad80fc-4a6e-4a54-85a5-3c18508bdf91",
+      "id": "ALAS-2023-2245",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2245.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2023-2245",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2245.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "2023-09-13: The severity of this advisory was corrected from low to medium.An issue was found in a defense in depth feature of the GCC compiler on aarch64 platforms. The stack protector feature (-fstack-protector) did not detect or defend against overflows of dynamically-sized local variables. This update to the GCC compiler remedies code generation for this defense in depth feature, ensuring it is working as intended.Customers building their own binaries with GCC are advised to update their compiler, and to ensure they are enabling the defense in depth options available to them, such as the stack protector. (CVE-2023-4039)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2245.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/libgcc@7.3.1-6.amzn2.0.4?arch=x86_64&upstream=gcc-7.3.1-6.amzn2.0.4.src.rpm&distro=amzn-2&package-id=979f7faec885ddae"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:922ad16f-2830-4d1d-9275-e48146575e81",
+      "id": "ALAS-2023-2245",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2245.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2023-2245",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2245.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "2023-09-13: The severity of this advisory was corrected from low to medium.An issue was found in a defense in depth feature of the GCC compiler on aarch64 platforms. The stack protector feature (-fstack-protector) did not detect or defend against overflows of dynamically-sized local variables. This update to the GCC compiler remedies code generation for this defense in depth feature, ensuring it is working as intended.Customers building their own binaries with GCC are advised to update their compiler, and to ensure they are enabling the defense in depth options available to them, such as the stack protector. (CVE-2023-4039)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2245.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/libstdc++@7.3.1-6.amzn2.0.4?arch=x86_64&upstream=gcc-7.3.1-6.amzn2.0.4.src.rpm&distro=amzn-2&package-id=56defed63b54dcef"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:b6732d12-c627-434d-848f-2bacc1ea8bcb",
+      "id": "ALAS-2023-2246",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2246.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2023-2246",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2246.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "Issue summary: Checking excessively long DH keys or parameters may be very slow.Impact summary: Applications that use the functions DH_check(), DH_check_ex()or EVP_PKEY_param_check() to check a DH key or DH parameters may experience longdelays. Where the key or parameters that are being checked have been obtainedfrom an untrusted source this may lead to a Denial of Service.The function DH_check() performs various checks on DH parameters. One of thosechecks confirms that the modulus ('p' parameter) is not too large. Trying to usea very large modulus is slow and OpenSSL will not normally use a modulus whichis over 10,000 bits in length.However the DH_check() function checks numerous aspects of the key or parametersthat have been supplied. Some of those checks use the supplied modulus valueeven if it has already been found to be too large.An application that calls DH_check() and supplies a key or parameters obtainedfrom an untrusted source could be vulernable to a Denial of Service attack.The function DH_check() is itself called by a number of other OpenSSL functions.An application calling any of those other functions may similarly be affected.The other functions affected by this are DH_check_ex() andEVP_PKEY_param_check().Also vulnerable are the OpenSSL dhparam and pkeyparam command line applicationswhen using the '-check' option.The OpenSSL SSL/TLS implementation is not affected by this issue.The OpenSSL 3.0 and 3.1 FIPS providers are not affected by this issue. (CVE-2023-3446)Issue summary: Checking excessively long DH keys or parameters may be very slow.Impact summary: Applications that use the functions DH_check(), DH_check_ex()or EVP_PKEY_param_check() to check a DH key or DH parameters may experience longdelays. Where the key or parameters that are being checked have been obtainedfrom an untrusted source this may lead to a Denial of Service.The function DH_check() performs various checks on DH parameters. After fixingCVE-2023-3446 it was discovered that a large q parameter value can also triggeran overly long computation during some of these checks. A correct q value,if present, cannot be larger than the modulus p parameter, thus it isunnecessary to perform these checks if q is larger than p.An application that calls DH_check() and supplies a key or parameters obtainedfrom an untrusted source could be vulnerable to a Denial of Service attack.The function DH_check() is itself called by a number of other OpenSSL functions.An application calling any of those other functions may similarly be affected.The other functions affected by this are DH_check_ex() andEVP_PKEY_param_check().Also vulnerable are the OpenSSL dhparam and pkeyparam command line applicationswhen using the \"-check\" option.The OpenSSL SSL/TLS implementation is not affected by this issue.The OpenSSL 3.0 and 3.1 FIPS providers are not affected by this issue. (CVE-2023-3817)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2246.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/openssl-libs@1.0.2k-19.amzn2.0.3?arch=x86_64&epoch=1&upstream=openssl-1.0.2k-19.amzn2.0.3.src.rpm&distro=amzn-2&package-id=ce1f995008afc26a"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:8a76fb3b-289e-482c-b43e-159cce7a007b",
+      "id": "ALAS-2023-2249",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2249.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2023-2249",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2249.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "Xmlsoft Libxml2 v2.11.0 was discovered to contain a global buffer overflow via the xmlSAX2StartElement() function at /libxml2/SAX2.c. This vulnerability allows attackers to cause a Denial of Service (DoS) via supplying a crafted XML file. (CVE-2023-39615)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2249.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/libxml2@2.9.1-6.amzn2.3.3?arch=x86_64&upstream=libxml2-2.9.1-6.amzn2.3.3.src.rpm&distro=amzn-2&package-id=7ebe618675e23846"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:7927f269-748c-4f84-9510-91aa400e0865",
+      "id": "ALAS-2023-2257",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2257.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2023-2257",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2257.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "high"
+        }
+      ],
+      "description": "An issue was discovered in function _libssh2_packet_add in libssh2 1.10.0 allows attackers to access out of bounds memory. (CVE-2020-22218)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2257.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/libssh2@1.4.3-12.amzn2.2.2?arch=x86_64&upstream=libssh2-1.4.3-12.amzn2.2.2.src.rpm&distro=amzn-2&package-id=aec3dc0ee68de92c"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:9daae123-7703-4272-876f-f2e914d58a8b",
+      "id": "ALAS-2023-2259",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2259.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2023-2259",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2259.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "The libcpu component which is used by libasm of elfutils version 0.177 (git 47780c9e), suffers from denial-of-service vulnerability caused by application crashes due to out-of-bounds write (CWE-787), off-by-one error (CWE-193) and reachable assertion (CWE-617); to exploit the vulnerability, the attackers need to craft certain ELF files which bypass the missing bound checks. (CVE-2020-21047)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2259.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/elfutils-libelf@0.176-2.amzn2?arch=x86_64&upstream=elfutils-0.176-2.amzn2.src.rpm&distro=amzn-2&package-id=eed88a526c888165"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:05cc2fc7-f5bd-4f6a-a71f-be0fc8cf8df9",
+      "id": "ALAS-2023-2266",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2266.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2023-2266",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2266.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "high"
+        }
+      ],
+      "description": "vim 8.2.2348 is affected by null pointer dereference, allows local attackers to cause a denial of service (DoS) via the ex_buffer_all method. (CVE-2021-3236)Use After Free in GitHub repository vim/vim prior to 9.0.1840. (CVE-2023-4733)Integer Overflow or Wraparound in GitHub repository vim/vim prior to 9.0.1846. (CVE-2023-4734)Out-of-bounds Write in GitHub repository vim/vim prior to 9.0.1847. (CVE-2023-4735)Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.1848. (CVE-2023-4738)Use After Free in GitHub repository vim/vim prior to 9.0.1857. (CVE-2023-4750)Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.1331. (CVE-2023-4751)Use After Free in GitHub repository vim/vim prior to 9.0.1858. (CVE-2023-4752)Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.1873. (CVE-2023-4781)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2266.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/vim-minimal@8.1.1602-1.amzn2?arch=x86_64&epoch=2&upstream=vim-8.1.1602-1.amzn2.src.rpm&distro=amzn-2&package-id=1e714dcf72aab0ca"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:baa9b3f0-1f27-48c7-8806-1ebe28f63d82",
+      "id": "ALAS-2023-2271",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2271.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2023-2271",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2271.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "high"
+        }
+      ],
+      "description": "HTTP headers eat all memoryNOTE: https://www.openwall.com/lists/oss-security/2023/09/13/1NOTE: https://curl.se/docs/CVE-2023-38039.htmlNOTE: Introduced by: https://github.com/curl/curl/commit/7c8c723682d524ac9580b9ca3b71419163cb5660 (curl-7_83_0)NOTE: Experimental tag removed in: https://github.com/curl/curl/commit/4d94fac9f0d1dd02b8308291e4c47651142dc28b (curl-7_84_0)NOTE: Fixed by: https://github.com/curl/curl/commit/3ee79c1674fd6f99e8efca52cd7510e08b766770 (curl-8_3_0) (CVE-2023-38039)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2271.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/curl@7.61.1-12.amzn2.0.1?arch=x86_64&upstream=curl-7.61.1-12.amzn2.0.1.src.rpm&distro=amzn-2&package-id=5faf529a869872aa"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:c47b70db-1ae5-4e2a-8aeb-b9432f60a596",
+      "id": "ALAS-2023-2271",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2271.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2023-2271",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2271.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "high"
+        }
+      ],
+      "description": "HTTP headers eat all memoryNOTE: https://www.openwall.com/lists/oss-security/2023/09/13/1NOTE: https://curl.se/docs/CVE-2023-38039.htmlNOTE: Introduced by: https://github.com/curl/curl/commit/7c8c723682d524ac9580b9ca3b71419163cb5660 (curl-7_83_0)NOTE: Experimental tag removed in: https://github.com/curl/curl/commit/4d94fac9f0d1dd02b8308291e4c47651142dc28b (curl-7_84_0)NOTE: Fixed by: https://github.com/curl/curl/commit/3ee79c1674fd6f99e8efca52cd7510e08b766770 (curl-8_3_0) (CVE-2023-38039)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2271.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/libcurl@7.61.1-12.amzn2.0.1?arch=x86_64&upstream=curl-7.61.1-12.amzn2.0.1.src.rpm&distro=amzn-2&package-id=1008415a12c5a3d8"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:d1edbf92-3ff0-44a9-bc42-9a540aecba4a",
+      "id": "ALAS-2023-2280",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2280.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2023-2280",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2280.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "Expat (aka libexpat) before 2.4.4 has an integer overflow in the doProlog function. (CVE-2022-23990)A flaw was found in expat. A stack exhaustion in doctype parsing could be triggered by a file with a large number of opening braces, resulting in a denial of service. (CVE-2022-25313)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2280.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/expat@2.1.0-10.amzn2.0.2?arch=x86_64&upstream=expat-2.1.0-10.amzn2.0.2.src.rpm&distro=amzn-2&package-id=448f7f65e0358bba"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:79eb41c3-9a58-440b-82d5-6f2464e7c74f",
+      "id": "ALAS-2023-2287",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2287.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2023-2287",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2287.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "high"
+        }
+      ],
+      "description": "An issue was found in curl that can cause a buffer overflow in its SOCKS5 proxy communications code.When curl is using a SOCKS5 proxy and it needs to resolve a hostname to an IP address, its default behavior is to pass the hostname to the proxy and allow it to perform the resolution. In cases where the hostname is greater than 255 characters in length, curl will instead attempt to perform the resolution locally and then pass the resolved IP to the proxy for its use. Due to an issue in the curl source code, the logic that determines whether curl should resolve the name locally or pass it to the proxy for resolution could make an incorrect decision when a slow SOCKS5 handshake occurs. If this occurs, curl may inadvertently copy an excessively long host name, rather than the resolved address, into the target buffer being prepared for transmission to the proxy, resulting in a buffer overflow. (CVE-2023-38545)An issue was found in libcurl which allows cookies to be inserted into a running program if specific conditions are met. The libcurl provided function, curl_easy_duphandle(), is used to duplicate the easy_handle associated with a transfer. If a duplicated transfer's easy_handle has cookies enabled when it is duplicated, the cookie-enabled state is cloned but the actual cookies are not. If the source easy_handle didn't read cookies from disk, the cloned easy_handle will attempt to read cookies from a file named 'none' in the local directory, potentially allowing arbitrary cookies to be loaded. (CVE-2023-38546)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2287.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/curl@7.61.1-12.amzn2.0.1?arch=x86_64&upstream=curl-7.61.1-12.amzn2.0.1.src.rpm&distro=amzn-2&package-id=5faf529a869872aa"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:13b2c186-f9d0-463b-ac95-41926ee11d89",
+      "id": "ALAS-2023-2287",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2287.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2023-2287",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2287.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "high"
+        }
+      ],
+      "description": "An issue was found in curl that can cause a buffer overflow in its SOCKS5 proxy communications code.When curl is using a SOCKS5 proxy and it needs to resolve a hostname to an IP address, its default behavior is to pass the hostname to the proxy and allow it to perform the resolution. In cases where the hostname is greater than 255 characters in length, curl will instead attempt to perform the resolution locally and then pass the resolved IP to the proxy for its use. Due to an issue in the curl source code, the logic that determines whether curl should resolve the name locally or pass it to the proxy for resolution could make an incorrect decision when a slow SOCKS5 handshake occurs. If this occurs, curl may inadvertently copy an excessively long host name, rather than the resolved address, into the target buffer being prepared for transmission to the proxy, resulting in a buffer overflow. (CVE-2023-38545)An issue was found in libcurl which allows cookies to be inserted into a running program if specific conditions are met. The libcurl provided function, curl_easy_duphandle(), is used to duplicate the easy_handle associated with a transfer. If a duplicated transfer's easy_handle has cookies enabled when it is duplicated, the cookie-enabled state is cloned but the actual cookies are not. If the source easy_handle didn't read cookies from disk, the cloned easy_handle will attempt to read cookies from a file named 'none' in the local directory, potentially allowing arbitrary cookies to be loaded. (CVE-2023-38546)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2287.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/libcurl@7.61.1-12.amzn2.0.1?arch=x86_64&upstream=curl-7.61.1-12.amzn2.0.1.src.rpm&distro=amzn-2&package-id=1008415a12c5a3d8"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:f964e012-6aba-4be3-88fc-3384c52d246a",
+      "id": "ALAS-2023-2288",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2288.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2023-2288",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2288.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.1969. (CVE-2023-5344)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2288.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/vim-minimal@8.1.1602-1.amzn2?arch=x86_64&epoch=2&upstream=vim-8.1.1602-1.amzn2.src.rpm&distro=amzn-2&package-id=1e714dcf72aab0ca"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:40ac4010-edbf-455a-a97c-ac5536711e40",
+      "id": "ALAS-2023-2307",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2307.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2023-2307",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2307.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "The CIL compiler in SELinux 3.2 has a use-after-free in __cil_verify_classperms (called from __cil_verify_classpermission and __cil_pre_verify_helper). (CVE-2021-36084)The CIL compiler in SELinux 3.2 has a use-after-free in __cil_verify_classperms (called from __verify_map_perm_classperms and hashtab_map). (CVE-2021-36085)The CIL compiler in SELinux 3.2 has a use-after-free in cil_reset_classpermission (called from cil_reset_classperms_set and cil_reset_classperms_list). (CVE-2021-36086)The CIL compiler in SELinux 3.2 has a heap-based buffer over-read in ebitmap_match_any (called indirectly from cil_check_neverallow). This occurs because there is sometimes a lack of checks for invalid statements in an optional block. (CVE-2021-36087)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2307.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/libsepol@2.5-8.1.amzn2.0.2?arch=x86_64&upstream=libsepol-2.5-8.1.amzn2.0.2.src.rpm&distro=amzn-2&package-id=95da3b72e7849acf"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:4e8d1f92-db84-47a2-975c-32a17705d7ed",
+      "id": "ALAS-2023-2312",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2312.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2023-2312",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2312.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "high"
+        }
+      ],
+      "description": "The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023. (CVE-2023-44487)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2312.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/libnghttp2@1.39.2-1.amzn2?arch=x86_64&upstream=nghttp2-1.39.2-1.amzn2.src.rpm&distro=amzn-2&package-id=fda057e615d46988"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:389ece76-d6ba-4af0-8b52-4feba5278f2e",
+      "id": "ALAS-2023-2316",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2316.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2023-2316",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2316.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "high"
+        }
+      ],
+      "description": "No CVE was issued for this update.",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2316.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/yum@3.4.3-158.amzn2.0.3?arch=noarch&upstream=yum-3.4.3-158.amzn2.0.3.src.rpm&distro=amzn-2&package-id=668195b1b72254ac"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:c0ff57c6-33bc-4428-bf51-21f0fbc88c0e",
+      "id": "ALAS-2023-2319",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2319.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2023-2319",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2319.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "NULL Pointer Dereference in GitHub repository vim/vim prior to 20d161ace307e28690229b68584f2d84556f8960. (CVE-2023-5441)Use After Free in GitHub repository vim/vim prior to v9.0.2010. (CVE-2023-5535)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2319.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/vim-minimal@8.1.1602-1.amzn2?arch=x86_64&epoch=2&upstream=vim-8.1.1602-1.amzn2.src.rpm&distro=amzn-2&package-id=1e714dcf72aab0ca"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:a7aeb23c-4423-4e0a-b184-70d91dac4e39",
+      "id": "ALAS-2023-2320",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2320.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2023-2320",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2320.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "MiniZip in zlib through 1.3 has an integer overflow and resultant heap-based buffer overflow in zipOpenNewFileInZip4_64 via a long filename, comment, or extra field. NOTE: MiniZip is not a supported part of the zlib product. (CVE-2023-45853)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2320.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/zlib@1.2.7-18.amzn2?arch=x86_64&upstream=zlib-1.2.7-18.amzn2.src.rpm&distro=amzn-2&package-id=c0cf775539092aff"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:64517b36-c573-4bee-ab76-9825a32d8fd0",
+      "id": "ALAS-2023-2321",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2321.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2023-2321",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2321.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "high"
+        }
+      ],
+      "description": "libxml2 through 2.11.5 has a use-after-free that can only occur after a certain memory allocation fails. This occurs in xmlUnlinkNode in tree.c. NOTE: the vendor's position is \"I don't think these issues are critical enough to warrant a CVE ID ... because an attacker typically can't control when memory allocations fail.\" (CVE-2023-45322)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2321.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/libxml2@2.9.1-6.amzn2.3.3?arch=x86_64&upstream=libxml2-2.9.1-6.amzn2.3.3.src.rpm&distro=amzn-2&package-id=7ebe618675e23846"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:61021656-7eea-4eee-aa10-8db1ff6005bb",
+      "id": "ALAS-2023-2330",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2330.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2023-2330",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2330.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "high"
+        }
+      ],
+      "description": "An XML External Entity (XXE) issue was discovered in Python through 3.9.1. The plistlib module no longer accepts entity declarations in XML plist files to avoid XML vulnerabilities. (CVE-2022-48565)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2330.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/python@2.7.16-5.amzn2?arch=x86_64&upstream=python-2.7.16-5.amzn2.src.rpm&distro=amzn-2&package-id=e3d1c4f13c624d72"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:15804b03-3bb5-4aea-acaf-861399653cf1",
+      "id": "ALAS-2023-2330",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2330.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2023-2330",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2330.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "high"
+        }
+      ],
+      "description": "An XML External Entity (XXE) issue was discovered in Python through 3.9.1. The plistlib module no longer accepts entity declarations in XML plist files to avoid XML vulnerabilities. (CVE-2022-48565)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2330.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/python-libs@2.7.16-5.amzn2?arch=x86_64&upstream=python-2.7.16-5.amzn2.src.rpm&distro=amzn-2&package-id=648306be89232862"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:12a22fda-3c31-4b17-b189-21f815fd4060",
+      "id": "ALAS-2023-2338",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2338.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2023-2338",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2338.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "Vim is an improved version of the good old UNIX editor Vi. Heap-use-after-free in memory allocated in the function `ga_grow_inner` in in the file `src/alloc.c` at line 748, which is freed in the file `src/ex_docmd.c` in the function `do_cmdline` at line 1010 and then used again in `src/cmdhist.c` at line 759. When using the `:history` command, it's possible that the provided argument overflows the accepted value. Causing an Integer Overflow and potentially later an use-after-free. This vulnerability has been patched in version 9.0.2068. (CVE-2023-46246)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2338.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/vim-minimal@8.1.1602-1.amzn2?arch=x86_64&epoch=2&upstream=vim-8.1.1602-1.amzn2.src.rpm&distro=amzn-2&package-id=1e714dcf72aab0ca"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:95bcd480-1ce3-46e0-af48-96c316b9d2f2",
+      "id": "ALAS-2023-2350",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2350.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2023-2350",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2350.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "Issue summary: Generating excessively long X9.42 DH keys or checkingexcessively long X9.42 DH keys or parameters may be very slow.Impact summary: Applications that use the functions DH_generate_key() togenerate an X9.42 DH key may experience long delays.  Likewise, applicationsthat use DH_check_pub_key(), DH_check_pub_key_ex() or EVP_PKEY_public_check()to check an X9.42 DH key or X9.42 DH parameters may experience long delays.Where the key or parameters that are being checked have been obtained froman untrusted source this may lead to a Denial of Service.While DH_check() performs all the necessary checks (as of CVE-2023-3817),DH_check_pub_key() doesn't make any of these checks, and is thereforevulnerable for excessively large P and Q parameters.Likewise, while DH_generate_key() performs a check for an excessively largeP, it doesn't check for an excessively large Q.An application that calls DH_generate_key() or DH_check_pub_key() andsupplies a key or parameters obtained from an untrusted source could bevulnerable to a Denial of Service attack.DH_generate_key() and DH_check_pub_key() are also called by a number ofother OpenSSL functions.  An application calling any of those otherfunctions may similarly be affected.  The other functions affected by thisare DH_check_pub_key_ex(), EVP_PKEY_public_check(), and EVP_PKEY_generate().Also vulnerable are the OpenSSL pkey command line application when using the\"-pubcheck\" option, as well as the OpenSSL genpkey command line application.The OpenSSL SSL/TLS implementation is not affected by this issue.The OpenSSL 3.0 and 3.1 FIPS providers are not affected by this issue. (CVE-2023-5678)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2350.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/openssl-libs@1.0.2k-19.amzn2.0.3?arch=x86_64&epoch=1&upstream=openssl-1.0.2k-19.amzn2.0.3.src.rpm&distro=amzn-2&package-id=ce1f995008afc26a"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:245550c7-3964-423a-ab76-484a25a55b59",
+      "id": "ALAS-2023-2353",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2353.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2023-2353",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2353.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "low"
+        }
+      ],
+      "description": "Vim is an open source command line text editor. When closing a window, vim may try to access already freed window structure. Exploitation beyond crashing the application has not been shown to be viable. This issue has been addressed in commit `25aabc2b` which has been included in release version 9.0.2106. Users are advised to upgrade. There are no known workarounds for this vulnerability. (CVE-2023-48231)Vim is an open source command line text editor. A floating point exception may occur when calculating the line offset for overlong lines and smooth scrolling is enabled and the cpo-settings include the 'n' flag. This may happen when a window border is present and when the wrapped line continues on the next physical line directly in the window border because the 'cpo' setting includes the 'n' flag. Only users with non-default settings are affected and the exception should only result in a crash. This issue has been addressed in commit `cb0b99f0` which has been included in release version 9.0.2107. Users are advised to upgrade. There are no known workarounds for this vulnerability. (CVE-2023-48232)Vim is an open source command line text editor. If the count after the :s command is larger than what fits into a (signed) long variable, abort with e_value_too_large. Impact is low, user interaction is required and a crash may not even happen in all situations. This issue has been addressed in commit `ac6378773` which has been included in release version 9.0.2108. Users are advised to upgrade. There are no known workarounds for this vulnerability. (CVE-2023-48233)Vim is an open source command line text editor. When getting the count for a normal mode z command, it may overflow for large counts given. Impact is low, user interaction is required and a crash may not even happen in all situations. This issue has been addressed in commit `58f9befca1` which has been included in release version 9.0.2109. Users are advised to upgrade. There are no known workarounds for this vulnerability. (CVE-2023-48234)Vim is an open source command line text editor. When parsing relative ex addresses one may unintentionally cause anoverflow. Ironically this happens in the existing overflow check, because the line number becomes negative and LONG_MAX - lnum will cause the overflow. Impact is low, user interaction is required and a crash may not even happen in all situations. This issue has been addressed in commit `060623e` which has been included in release version 9.0.2110. Users are advised to upgrade. There are no known workarounds for this vulnerability. (CVE-2023-48235)Vim is an open source command line text editor. When using the z= command, the user may overflow the count with values largerthan MAX_INT. Impact is low, user interaction is required and a crash may not even happen in all situations. This vulnerability has been addressed in commit `73b2d379` which has been included in release version 9.0.2111. Users are advised to upgrade. There are no known workarounds for this vulnerability. (CVE-2023-48236)Vim is an open source command line text editor. In affected versions when shifting lines in operator pending mode and using a very large value, it may be possible to overflow the size of integer. Impact is low, user interaction is required and a crash may not even happen in all situations. This issue has been addressed in commit `6bf131888` which has been included in version 9.0.2112. Users are advised to upgrade. There are no known workarounds for this vulnerability. (CVE-2023-48237)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2353.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/vim-minimal@8.1.1602-1.amzn2?arch=x86_64&epoch=2&upstream=vim-8.1.1602-1.amzn2.src.rpm&distro=amzn-2&package-id=1e714dcf72aab0ca"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:91649ad7-a323-47cc-8470-70e3f74708a8",
+      "id": "ALAS-2023-2357",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2357.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2023-2357",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2357.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "low"
+        }
+      ],
+      "description": "A heap out-of-bounds read flaw was found in builtin.c in the gawk package which may result in a crash of the software. (CVE-2023-4156)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2357.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/gawk@4.0.2-4.amzn2.1.2?arch=x86_64&upstream=gawk-4.0.2-4.amzn2.1.2.src.rpm&distro=amzn-2&package-id=b643805bfc78dd8d"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:13b3bd36-caa9-4fb2-8055-a5bd2a8e9abb",
+      "id": "ALAS-2023-2369",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2369.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2023-2369",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2369.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "low"
+        }
+      ],
+      "description": "A flaw was found in gmp. An integer overflow vulnerability could allow an attacker to input an integer value leading to a crash. The highest threat from this vulnerability is to system availability. (CVE-2021-43618)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2369.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/gmp@6.0.0-15.amzn2.0.2?arch=x86_64&epoch=1&upstream=gmp-6.0.0-15.amzn2.0.2.src.rpm&distro=amzn-2&package-id=3d24a745cd1830b1"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:1dbd8736-4273-4e12-b8b6-1753a50f8868",
+      "id": "ALAS-2023-2371",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2371.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2023-2371",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2371.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "In librt in the GNU C Library (aka glibc) through 2.34, sysdeps/unix/sysv/linux/mq_notify.c mishandles certain NOTIFY_REMOVED data, leading to a NULL pointer dereference. NOTE: this vulnerability was introduced as a side effect of the CVE-2021-33574 fix. (CVE-2021-38604)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2371.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/glibc@2.26-34.amzn2?arch=x86_64&upstream=glibc-2.26-34.amzn2.src.rpm&distro=amzn-2&package-id=aaf9f40aee775d65"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:fca37003-cf68-450f-a3a2-18d519355fed",
+      "id": "ALAS-2023-2371",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2371.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2023-2371",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2371.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "In librt in the GNU C Library (aka glibc) through 2.34, sysdeps/unix/sysv/linux/mq_notify.c mishandles certain NOTIFY_REMOVED data, leading to a NULL pointer dereference. NOTE: this vulnerability was introduced as a side effect of the CVE-2021-33574 fix. (CVE-2021-38604)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2371.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/glibc-common@2.26-34.amzn2?arch=x86_64&upstream=glibc-2.26-34.amzn2.src.rpm&distro=amzn-2&package-id=a88e37fdd568988d"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:1523c23a-4bcf-4f11-b3c2-da25ec369d90",
+      "id": "ALAS-2023-2371",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2371.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2023-2371",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2371.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "In librt in the GNU C Library (aka glibc) through 2.34, sysdeps/unix/sysv/linux/mq_notify.c mishandles certain NOTIFY_REMOVED data, leading to a NULL pointer dereference. NOTE: this vulnerability was introduced as a side effect of the CVE-2021-33574 fix. (CVE-2021-38604)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2371.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/glibc-langpack-en@2.26-34.amzn2?arch=x86_64&upstream=glibc-2.26-34.amzn2.src.rpm&distro=amzn-2&package-id=78ca252f42c0cd10"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:48196dcc-5c4e-4d9e-8042-54ec23feff50",
+      "id": "ALAS-2023-2371",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2371.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2023-2371",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2371.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "In librt in the GNU C Library (aka glibc) through 2.34, sysdeps/unix/sysv/linux/mq_notify.c mishandles certain NOTIFY_REMOVED data, leading to a NULL pointer dereference. NOTE: this vulnerability was introduced as a side effect of the CVE-2021-33574 fix. (CVE-2021-38604)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2371.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/glibc-minimal-langpack@2.26-34.amzn2?arch=x86_64&upstream=glibc-2.26-34.amzn2.src.rpm&distro=amzn-2&package-id=275d6892508cce54"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:d69a925b-e290-4eb5-80c0-7505166d6761",
+      "id": "ALAS-2023-2371",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2371.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2023-2371",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2371.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "In librt in the GNU C Library (aka glibc) through 2.34, sysdeps/unix/sysv/linux/mq_notify.c mishandles certain NOTIFY_REMOVED data, leading to a NULL pointer dereference. NOTE: this vulnerability was introduced as a side effect of the CVE-2021-33574 fix. (CVE-2021-38604)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2371.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/libcrypt@2.26-34.amzn2?arch=x86_64&upstream=glibc-2.26-34.amzn2.src.rpm&distro=amzn-2&package-id=8a691524aa78dd93"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:0f48c314-94aa-4967-814b-9adb384e2e1c",
+      "id": "ALAS-2024-2380",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2024-2380.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2024-2380",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2024-2380.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "NCurse v6.4-20230418 was discovered to contain a segmentation fault via the component _nc_wrap_entry(). (CVE-2023-50495)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2024-2380.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/ncurses@6.0-8.20170212.amzn2.1.3?arch=x86_64&upstream=ncurses-6.0-8.20170212.amzn2.1.3.src.rpm&distro=amzn-2&package-id=75d4a654c7033f96"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:c9b8cd87-7dd5-4d89-9c7e-3f3c4f47e342",
+      "id": "ALAS-2024-2380",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2024-2380.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2024-2380",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2024-2380.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "NCurse v6.4-20230418 was discovered to contain a segmentation fault via the component _nc_wrap_entry(). (CVE-2023-50495)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2024-2380.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/ncurses-base@6.0-8.20170212.amzn2.1.3?arch=noarch&upstream=ncurses-6.0-8.20170212.amzn2.1.3.src.rpm&distro=amzn-2&package-id=61a93095dd78673e"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:88f13730-2f01-43e6-b5d2-c5f09fb3c4c0",
+      "id": "ALAS-2024-2380",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2024-2380.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2024-2380",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2024-2380.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "NCurse v6.4-20230418 was discovered to contain a segmentation fault via the component _nc_wrap_entry(). (CVE-2023-50495)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2024-2380.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/ncurses-libs@6.0-8.20170212.amzn2.1.3?arch=x86_64&upstream=ncurses-6.0-8.20170212.amzn2.1.3.src.rpm&distro=amzn-2&package-id=01904aacf5abaf0c"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:da07f663-fca0-4324-8854-0a7843367579",
+      "id": "ALAS-2024-2384",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2024-2384.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2024-2384",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2024-2384.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "low"
+        }
+      ],
+      "description": "Vim is a UNIX editor that, prior to version 9.0.2121, has a heap-use-after-free vulnerability. When executing a `:s` command for the very first time and using a sub-replace-special atom inside the substitution part, it is possible that the recursive `:s` call causes free-ing of memory which may later then be accessed by the initial `:s` command. The user must intentionally execute the payload and the whole process is a bit tricky to do since it seems to work only reliably for the very first :s command. It may also cause a crash of Vim. Version 9.0.2121 contains a fix for this issue. (CVE-2023-48706)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2024-2384.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/vim-minimal@8.1.1602-1.amzn2?arch=x86_64&epoch=2&upstream=vim-8.1.1602-1.amzn2.src.rpm&distro=amzn-2&package-id=1e714dcf72aab0ca"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:8429e3a3-1fbd-43ab-8b67-15194c5eccdb",
+      "id": "ALAS-2024-2385",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2024-2385.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2024-2385",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2024-2385.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "This flaw allows a malicious HTTP server to set \"super cookies\" in curl that are then passed back to more origins than what is otherwise allowed or possible. This allows a site to set cookies that then would get sent to different and unrelated sites and domains.It could do this by exploiting a mixed case flaw in curl's function that verifies a given cookie domain against the Public Suffix List (PSL). For example a cookie could be set with domain=co.UK when the URL used a lowercase hostname curl.co.uk, even though co.uk is listed as a PSL domain. (CVE-2023-46218)When saving HSTS data to an excessively long file name, curl could end up removing all contents, making subsequent requests using that file unaware of the HSTS status they should otherwise use. (CVE-2023-46219)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2024-2385.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/curl@7.61.1-12.amzn2.0.1?arch=x86_64&upstream=curl-7.61.1-12.amzn2.0.1.src.rpm&distro=amzn-2&package-id=5faf529a869872aa"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:2edba2bc-8e51-4b9b-b769-92132cc43ed1",
+      "id": "ALAS-2024-2385",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2024-2385.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2024-2385",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2024-2385.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "This flaw allows a malicious HTTP server to set \"super cookies\" in curl that are then passed back to more origins than what is otherwise allowed or possible. This allows a site to set cookies that then would get sent to different and unrelated sites and domains.It could do this by exploiting a mixed case flaw in curl's function that verifies a given cookie domain against the Public Suffix List (PSL). For example a cookie could be set with domain=co.UK when the URL used a lowercase hostname curl.co.uk, even though co.uk is listed as a PSL domain. (CVE-2023-46218)When saving HSTS data to an excessively long file name, curl could end up removing all contents, making subsequent requests using that file unaware of the HSTS status they should otherwise use. (CVE-2023-46219)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2024-2385.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/libcurl@7.61.1-12.amzn2.0.1?arch=x86_64&upstream=curl-7.61.1-12.amzn2.0.1.src.rpm&distro=amzn-2&package-id=1008415a12c5a3d8"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:ef88e0da-c86f-4c85-ae4f-532d3ddd4b30",
+      "id": "ALAS-2024-2400",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2024-2400.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2024-2400",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2024-2400.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "An issue was discovered in compare_digest in Lib/hmac.py in Python through 3.9.1. Constant-time-defeating optimisations were possible in the accumulator variable in hmac.compare_digest. (CVE-2022-48566)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2024-2400.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/python@2.7.16-5.amzn2?arch=x86_64&upstream=python-2.7.16-5.amzn2.src.rpm&distro=amzn-2&package-id=e3d1c4f13c624d72"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:000fcc8b-ed64-476f-b998-e1a8dca8b268",
+      "id": "ALAS-2024-2400",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2024-2400.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2024-2400",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2024-2400.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "An issue was discovered in compare_digest in Lib/hmac.py in Python through 3.9.1. Constant-time-defeating optimisations were possible in the accumulator variable in hmac.compare_digest. (CVE-2022-48566)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2024-2400.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/python-libs@2.7.16-5.amzn2?arch=x86_64&upstream=python-2.7.16-5.amzn2.src.rpm&distro=amzn-2&package-id=648306be89232862"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:503c7e03-7e5e-4c16-8fbd-d4dc65811316",
+      "id": "ALAS-2024-2412",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2024-2412.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2024-2412",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2024-2412.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "There is a heap-based buffer over-read in the _nc_find_entry function in tinfo/comp_hash.c in the terminfo library in ncurses before 6.1-20191012. (CVE-2019-17594)There is a heap-based buffer over-read in the fmt_entry function in tinfo/comp_hash.c in the terminfo library in ncurses before 6.1-20191012. (CVE-2019-17595)Buffer Overflow vulnerability in one_one_mapping function in progs/dump_entry.c:1373 in ncurses 6.1 allows remote attackers to cause a denial of service via crafted command. (CVE-2020-19185)Buffer Overflow vulnerability in _nc_find_entry function in tinfo/comp_hash.c:66 in ncurses 6.1 allows remote attackers to cause a denial of service via crafted command. (CVE-2020-19186)Buffer Overflow vulnerability in fmt_entry function in progs/dump_entry.c:1100 in ncurses 6.1 allows remote attackers to cause a denial of service via crafted command. (CVE-2020-19187)Buffer Overflow vulnerability in fmt_entry function in progs/dump_entry.c:1116 in ncurses 6.1 allows remote attackers to cause a denial of service via crafted command. (CVE-2020-19188)Buffer Overflow vulnerability in postprocess_terminfo function in tinfo/parse_entry.c:997 in ncurses 6.1 allows remote attackers to cause a denial of service via crafted command. (CVE-2020-19189)Buffer Overflow vulnerability in _nc_find_entry in tinfo/comp_hash.c:70 in ncurses 6.1 allows remote attackers to cause a denial of service via crafted command. (CVE-2020-19190)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2024-2412.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/ncurses@6.0-8.20170212.amzn2.1.3?arch=x86_64&upstream=ncurses-6.0-8.20170212.amzn2.1.3.src.rpm&distro=amzn-2&package-id=75d4a654c7033f96"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:e1efc9a4-0bc4-4157-9416-be47639e400b",
+      "id": "ALAS-2024-2412",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2024-2412.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2024-2412",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2024-2412.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "There is a heap-based buffer over-read in the _nc_find_entry function in tinfo/comp_hash.c in the terminfo library in ncurses before 6.1-20191012. (CVE-2019-17594)There is a heap-based buffer over-read in the fmt_entry function in tinfo/comp_hash.c in the terminfo library in ncurses before 6.1-20191012. (CVE-2019-17595)Buffer Overflow vulnerability in one_one_mapping function in progs/dump_entry.c:1373 in ncurses 6.1 allows remote attackers to cause a denial of service via crafted command. (CVE-2020-19185)Buffer Overflow vulnerability in _nc_find_entry function in tinfo/comp_hash.c:66 in ncurses 6.1 allows remote attackers to cause a denial of service via crafted command. (CVE-2020-19186)Buffer Overflow vulnerability in fmt_entry function in progs/dump_entry.c:1100 in ncurses 6.1 allows remote attackers to cause a denial of service via crafted command. (CVE-2020-19187)Buffer Overflow vulnerability in fmt_entry function in progs/dump_entry.c:1116 in ncurses 6.1 allows remote attackers to cause a denial of service via crafted command. (CVE-2020-19188)Buffer Overflow vulnerability in postprocess_terminfo function in tinfo/parse_entry.c:997 in ncurses 6.1 allows remote attackers to cause a denial of service via crafted command. (CVE-2020-19189)Buffer Overflow vulnerability in _nc_find_entry in tinfo/comp_hash.c:70 in ncurses 6.1 allows remote attackers to cause a denial of service via crafted command. (CVE-2020-19190)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2024-2412.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/ncurses-base@6.0-8.20170212.amzn2.1.3?arch=noarch&upstream=ncurses-6.0-8.20170212.amzn2.1.3.src.rpm&distro=amzn-2&package-id=61a93095dd78673e"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:081a1725-2dd8-41c6-ba04-9f03f01a3fd0",
+      "id": "ALAS-2024-2412",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2024-2412.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2024-2412",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2024-2412.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "There is a heap-based buffer over-read in the _nc_find_entry function in tinfo/comp_hash.c in the terminfo library in ncurses before 6.1-20191012. (CVE-2019-17594)There is a heap-based buffer over-read in the fmt_entry function in tinfo/comp_hash.c in the terminfo library in ncurses before 6.1-20191012. (CVE-2019-17595)Buffer Overflow vulnerability in one_one_mapping function in progs/dump_entry.c:1373 in ncurses 6.1 allows remote attackers to cause a denial of service via crafted command. (CVE-2020-19185)Buffer Overflow vulnerability in _nc_find_entry function in tinfo/comp_hash.c:66 in ncurses 6.1 allows remote attackers to cause a denial of service via crafted command. (CVE-2020-19186)Buffer Overflow vulnerability in fmt_entry function in progs/dump_entry.c:1100 in ncurses 6.1 allows remote attackers to cause a denial of service via crafted command. (CVE-2020-19187)Buffer Overflow vulnerability in fmt_entry function in progs/dump_entry.c:1116 in ncurses 6.1 allows remote attackers to cause a denial of service via crafted command. (CVE-2020-19188)Buffer Overflow vulnerability in postprocess_terminfo function in tinfo/parse_entry.c:997 in ncurses 6.1 allows remote attackers to cause a denial of service via crafted command. (CVE-2020-19189)Buffer Overflow vulnerability in _nc_find_entry in tinfo/comp_hash.c:70 in ncurses 6.1 allows remote attackers to cause a denial of service via crafted command. (CVE-2020-19190)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2024-2412.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/ncurses-libs@6.0-8.20170212.amzn2.1.3?arch=x86_64&upstream=ncurses-6.0-8.20170212.amzn2.1.3.src.rpm&distro=amzn-2&package-id=01904aacf5abaf0c"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:b1b6900b-007d-4217-8454-288f4f4cf413",
+      "id": "ALAS-2024-2419",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2024-2419.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2024-2419",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2024-2419.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "It was discovered that the numerical library used in NSS for RSA cryptography leaks information whether high order bits of the RSA decryption result are zero. This information can be used to mount a Bleichenbacher or Manger like attack against all RSA decryption operations. As the leak happens before any padding operations, it affects all padding modes: PKCS#1 v1.5, OAEP, and RSASVP. Both API level calls and TLS server operation are affected. (CVE-2023-5388)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2024-2419.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/nss-softokn@3.44.0-8.amzn2?arch=x86_64&upstream=nss-softokn-3.44.0-8.amzn2.src.rpm&distro=amzn-2&package-id=14b8c1ec2d9bb9a4"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:547c74c9-ef8d-4c31-be7f-ddd524ada2b3",
+      "id": "ALAS-2024-2419",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALAS-2024-2419.html"
+      },
+      "references": [
+        {
+          "id": "ALAS-2024-2419",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALAS-2024-2419.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "It was discovered that the numerical library used in NSS for RSA cryptography leaks information whether high order bits of the RSA decryption result are zero. This information can be used to mount a Bleichenbacher or Manger like attack against all RSA decryption operations. As the leak happens before any padding operations, it affects all padding modes: PKCS#1 v1.5, OAEP, and RSASVP. Both API level calls and TLS server operation are affected. (CVE-2023-5388)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALAS-2024-2419.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/nss-softokn-freebl@3.44.0-8.amzn2?arch=x86_64&upstream=nss-softokn-3.44.0-8.amzn2.src.rpm&distro=amzn-2&package-id=e99013f9b958f96f"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:5858f5a7-44fe-43a4-9fdc-c72bb6b8f8d8",
+      "id": "ALASSELINUX-NG-2023-001",
+      "source": {
+        "name": "amazon-distro-amazonlinux-2",
+        "url": "https://alas.aws.amazon.com/AL2/ALASSELINUX-NG-2023-001.html"
+      },
+      "references": [
+        {
+          "id": "ALASSELINUX-NG-2023-001",
+          "source": {
+            "name": "amazon-distro-amazonlinux-2",
+            "url": "https://alas.aws.amazon.com/AL2/ALASSELINUX-NG-2023-001.html"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "description": "The CIL compiler in SELinux 3.2 has a use-after-free in __cil_verify_classperms (called from __cil_verify_classpermission and __cil_pre_verify_helper). (CVE-2021-36084)The CIL compiler in SELinux 3.2 has a use-after-free in __cil_verify_classperms (called from __verify_map_perm_classperms and hashtab_map). (CVE-2021-36085)The CIL compiler in SELinux 3.2 has a use-after-free in cil_reset_classpermission (called from cil_reset_classperms_set and cil_reset_classperms_list). (CVE-2021-36086)The CIL compiler in SELinux 3.2 has a heap-based buffer over-read in ebitmap_match_any (called indirectly from cil_check_neverallow). This occurs because there is sometimes a lack of checks for invalid statements in an optional block. (CVE-2021-36087)",
+      "advisories": [
+        {
+          "url": "https://alas.aws.amazon.com/AL2/ALASSELINUX-NG-2023-001.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:rpm/amzn/libsepol@2.5-8.1.amzn2.0.2?arch=x86_64&upstream=libsepol-2.5-8.1.amzn2.0.2.src.rpm&distro=amzn-2&package-id=95da3b72e7849acf"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:7a76176a-58d3-4e30-81a8-1daa241beede",
+      "id": "CVE-2007-4559",
+      "source": {
+        "name": "nvd-cpe",
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2007-4559"
+      },
+      "references": [
+        {
+          "id": "CVE-2007-4559",
+          "source": {
+            "name": "nvd-cpe",
+            "url": "https://nvd.nist.gov/vuln/detail/CVE-2007-4559"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "score": 6.8,
+          "severity": "medium",
+          "method": "CVSSv2",
+          "vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P"
+        }
+      ],
+      "description": "Directory traversal vulnerability in the (1) extract and (2) extractall functions in the tarfile module in Python allows user-assisted remote attackers to overwrite arbitrary files via a .. (dot dot) sequence in filenames in a TAR archive, a related issue to CVE-2001-1267.",
+      "advisories": [
+        {
+          "url": "http://mail.python.org/pipermail/python-dev/2007-August/074290.html"
+        },
+        {
+          "url": "http://mail.python.org/pipermail/python-dev/2007-August/074292.html"
+        },
+        {
+          "url": "http://secunia.com/advisories/26623"
+        },
+        {
+          "url": "http://www.vupen.com/english/advisories/2007/3022"
+        },
+        {
+          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=263261"
+        },
+        {
+          "url": "https://security.gentoo.org/glsa/202309-06"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:generic/python@3.7.3?package-id=0969bdfee1fd85b2"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:8ce88821-5847-46d0-951f-f4268b6302b1",
+      "id": "CVE-2013-0340",
+      "source": {
+        "name": "nvd-cpe",
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0340"
+      },
+      "references": [
+        {
+          "id": "CVE-2013-0340",
+          "source": {
+            "name": "nvd-cpe",
+            "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0340"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "score": 6.8,
+          "severity": "medium",
+          "method": "CVSSv2",
+          "vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P"
+        }
+      ],
+      "description": "expat 2.1.0 and earlier does not properly handle entities expansion unless an application developer uses the XML_SetEntityDeclHandler function, which allows remote attackers to cause a denial of service (resource consumption), send HTTP requests to intranet servers, or read arbitrary files via a crafted XML document, aka an XML External Entity (XXE) issue.  NOTE: it could be argued that because expat already provides the ability to disable external entity expansion, the responsibility for resolving this issue lies with application developers; according to this argument, this entry should be REJECTed, and each affected application would need its own CVE.",
+      "advisories": [
+        {
+          "url": "http://openwall.com/lists/oss-security/2013/02/22/3"
+        },
+        {
+          "url": "http://seclists.org/fulldisclosure/2021/Oct/61"
+        },
+        {
+          "url": "http://seclists.org/fulldisclosure/2021/Oct/62"
+        },
+        {
+          "url": "http://seclists.org/fulldisclosure/2021/Oct/63"
+        },
+        {
+          "url": "http://seclists.org/fulldisclosure/2021/Sep/33"
+        },
+        {
+          "url": "http://seclists.org/fulldisclosure/2021/Sep/34"
+        },
+        {
+          "url": "http://seclists.org/fulldisclosure/2021/Sep/35"
+        },
+        {
+          "url": "http://seclists.org/fulldisclosure/2021/Sep/38"
+        },
+        {
+          "url": "http://seclists.org/fulldisclosure/2021/Sep/39"
+        },
+        {
+          "url": "http://seclists.org/fulldisclosure/2021/Sep/40"
+        },
+        {
+          "url": "http://securitytracker.com/id?1028213"
+        },
+        {
+          "url": "http://www.openwall.com/lists/oss-security/2013/04/12/6"
+        },
+        {
+          "url": "http://www.openwall.com/lists/oss-security/2021/10/07/4"
+        },
+        {
+          "url": "http://www.osvdb.org/90634"
+        },
+        {
+          "url": "http://www.securityfocus.com/bid/58233"
+        },
+        {
+          "url": "https://lists.apache.org/thread.html/r41eca5f4f09e74436cbb05dec450fc2bef37b5d3e966aa7cc5fada6d%40%3Cannounce.apache.org%3E"
+        },
+        {
+          "url": "https://lists.apache.org/thread.html/rfb2c193360436e230b85547e85a41bea0916916f96c501f5b6fc4702%40%3Cusers.openoffice.apache.org%3E"
+        },
+        {
+          "url": "https://security.gentoo.org/glsa/201701-21"
+        },
+        {
+          "url": "https://support.apple.com/kb/HT212804"
+        },
+        {
+          "url": "https://support.apple.com/kb/HT212805"
+        },
+        {
+          "url": "https://support.apple.com/kb/HT212807"
+        },
+        {
+          "url": "https://support.apple.com/kb/HT212814"
+        },
+        {
+          "url": "https://support.apple.com/kb/HT212815"
+        },
+        {
+          "url": "https://support.apple.com/kb/HT212819"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:generic/python@3.7.3?package-id=0969bdfee1fd85b2"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:efd4399a-428c-490a-af20-98b841dba8cf",
+      "id": "CVE-2015-20107",
+      "source": {
+        "name": "nvd-cpe",
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2015-20107"
+      },
+      "references": [
+        {
+          "id": "CVE-2015-20107",
+          "source": {
+            "name": "nvd-cpe",
+            "url": "https://nvd.nist.gov/vuln/detail/CVE-2015-20107"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "score": 8,
+          "severity": "high",
+          "method": "CVSSv2",
+          "vector": "AV:N/AC:L/Au:S/C:P/I:C/A:P"
+        },
+        {
+          "score": 7.6,
+          "severity": "high",
+          "method": "CVSSv31",
+          "vector": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:L"
+        }
+      ],
+      "description": "In Python (aka CPython) up to 3.10.8, the mailcap module does not add escape characters into commands discovered in the system mailcap file. This may allow attackers to inject shell commands into applications that call mailcap.findmatch with untrusted input (if they lack validation of user-provided filenames or arguments). The fix is also back-ported to 3.7, 3.8, 3.9",
+      "advisories": [
+        {
+          "url": "https://bugs.python.org/issue24778"
+        },
+        {
+          "url": "https://github.com/python/cpython/issues/68966"
+        },
+        {
+          "url": "https://lists.debian.org/debian-lts-announce/2023/05/msg00024.html"
+        },
+        {
+          "url": "https://lists.debian.org/debian-lts-announce/2023/06/msg00039.html"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/46KWPTI72SSEOF53DOYQBQOCN4QQB2GE/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/53TQZFLS6O3FLIMVSXFEEPZSWLDZLBOX/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/57NECACX333A3BBZM2TR2VZ4ZE3UG3SN/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/5DBVY4YC2P6EPZZ2DROOXHDOWZ4BJFLW/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6QIKVSW3H6W2GQGDE5DTIWLGFNH6KKEW/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/AKGMYDVKI3XNM27B6I6RQ6QV3TVJAUCG/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ERYMM2QVDPOJLX4LYXWYIQN5FOIJLDRY/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/F3LNY2NHM6J22O6Q5ANOE3SZRK3OACKR/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FCIO2W4DUVVMI6L52QCC4TT2B3K5VWHS/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FIRUTX47BJD2HYJDLMI7JJBVCYFAPKAQ/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/GPCLGZZJPVXFWUWVV5WCD5FNUAFLKBDN/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HAI2GBC7WKH7J5NH6J2IW5RT3VF2SF5M/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/IFGV7P2PYFBMK32OKHCAC2ZPJQV5AUDF/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KAY6VBNVEFUXKJF37WFHYXUSRDEK34N3/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MYG3EMFR7ZHC46TDNM7SNWO64A3W7EUF/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ONXSGLASNLGFL57YU6WT6Y5YURSFV43U/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PTTZGLD2YBMMG6U6F5HOTPOGGPBIURMA/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/UIOJUZ5JMEMGSKNISTOVI4PDP36FDL5Y/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/W5664BGZVTA46LQDNTYX5THG6CN4FYJX/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/WXF6MQ74HVIDDSR5AE2UDR24I6D4FEPC/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/XO2H6CKWLRGTTZCGUQVELW6LUH437Q3O/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/Y4E2WBEJ42CGLGDHD6ZXOLZ2W6G3YOVD/"
+        },
+        {
+          "url": "https://python-security.readthedocs.io/vuln/mailcap-shell-injection.html"
+        },
+        {
+          "url": "https://security.gentoo.org/glsa/202305-02"
+        },
+        {
+          "url": "https://security.netapp.com/advisory/ntap-20220616-0001/"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:generic/python@3.7.3?package-id=0969bdfee1fd85b2"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:d1412852-eb68-45ab-b78b-3936ceb552ce",
+      "id": "CVE-2016-3189",
+      "source": {
+        "name": "nvd-cpe",
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2016-3189"
+      },
+      "references": [
+        {
+          "id": "CVE-2016-3189",
+          "source": {
+            "name": "nvd-cpe",
+            "url": "https://nvd.nist.gov/vuln/detail/CVE-2016-3189"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "score": 4.3,
+          "severity": "medium",
+          "method": "CVSSv2",
+          "vector": "AV:N/AC:M/Au:N/C:N/I:N/A:P"
+        },
+        {
+          "score": 6.5,
+          "severity": "medium",
+          "method": "CVSSv31",
+          "vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"
+        }
+      ],
+      "description": "Use-after-free vulnerability in bzip2recover in bzip2 1.0.6 allows remote attackers to cause a denial of service (crash) via a crafted bzip2 file, related to block ends set to before the start of the block.",
+      "advisories": [
+        {
+          "url": "http://packetstormsecurity.com/files/153644/Slackware-Security-Advisory-bzip2-Updates.html"
+        },
+        {
+          "url": "http://packetstormsecurity.com/files/153957/FreeBSD-Security-Advisory-FreeBSD-SA-19-18.bzip2.html"
+        },
+        {
+          "url": "http://www.openwall.com/lists/oss-security/2016/06/20/1"
+        },
+        {
+          "url": "http://www.oracle.com/technetwork/topics/security/bulletinjul2016-3090568.html"
+        },
+        {
+          "url": "http://www.securityfocus.com/bid/91297"
+        },
+        {
+          "url": "http://www.securitytracker.com/id/1036132"
+        },
+        {
+          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1319648"
+        },
+        {
+          "url": "https://lists.apache.org/thread.html/r19b4a70ac52093115fd71d773a7a4f579599e6275a13cfcf6252c3e3%40%3Cjira.kafka.apache.org%3E"
+        },
+        {
+          "url": "https://lists.apache.org/thread.html/r1dc4c9b3bd559301bdb1557245f78b8910146efb1ee534b774c5f6af%40%3Cdev.kafka.apache.org%3E"
+        },
+        {
+          "url": "https://lists.apache.org/thread.html/r481cda41fefb03e04c51484ed14421d812e5ce9e0972edff10f37260%40%3Cjira.kafka.apache.org%3E"
+        },
+        {
+          "url": "https://lists.apache.org/thread.html/r4ad2ea01354e394b7fa8c78a184b7e1634d51be9bc0e9e4d7e6c9305%40%3Cjira.kafka.apache.org%3E"
+        },
+        {
+          "url": "https://lists.apache.org/thread.html/r5f7ac2bd631ccb12ced65b71ff11f94e76d05b22000795e4a7b61203%40%3Cjira.kafka.apache.org%3E"
+        },
+        {
+          "url": "https://lists.apache.org/thread.html/r5f80cf3ade5bb73410643e885fe6b7bf9f0222daf3533e42c7ae240c%40%3Cjira.kafka.apache.org%3E"
+        },
+        {
+          "url": "https://lists.apache.org/thread.html/r6e3962fc9f6a79851f70cffdec5759065969cec9c6708b964464b301%40%3Cjira.kafka.apache.org%3E"
+        },
+        {
+          "url": "https://lists.apache.org/thread.html/ra0adb9653c7de9539b93cc8434143b655f753b9f60580ff260becb2b%40%3Cusers.kafka.apache.org%3E"
+        },
+        {
+          "url": "https://lists.apache.org/thread.html/redf17d8ad16140733b25ca402ae825d6dfa9b85f73d9fb3fd0c75d73%40%3Cdev.kafka.apache.org%3E"
+        },
+        {
+          "url": "https://lists.apache.org/thread.html/rffebcbeaace56ff1fed7916700d2f414ca1366386fb1293e99b3e31e%40%3Cjira.kafka.apache.org%3E"
+        },
+        {
+          "url": "https://lists.debian.org/debian-lts-announce/2019/06/msg00021.html"
+        },
+        {
+          "url": "https://seclists.org/bugtraq/2019/Aug/4"
+        },
+        {
+          "url": "https://seclists.org/bugtraq/2019/Jul/22"
+        },
+        {
+          "url": "https://security.FreeBSD.org/advisories/FreeBSD-SA-19:18.bzip2.asc"
+        },
+        {
+          "url": "https://security.gentoo.org/glsa/201708-08"
+        },
+        {
+          "url": "https://usn.ubuntu.com/4038-1/"
+        },
+        {
+          "url": "https://usn.ubuntu.com/4038-2/"
+        },
+        {
+          "url": "https://www.oracle.com/security-alerts/cpuoct2020.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:generic/python@3.7.3?package-id=0969bdfee1fd85b2"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:6e19b5ed-2b7c-4342-9484-f963ed230a75",
+      "id": "CVE-2018-25032",
+      "source": {
+        "name": "nvd-cpe",
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-25032"
+      },
+      "references": [
+        {
+          "id": "CVE-2018-25032",
+          "source": {
+            "name": "nvd-cpe",
+            "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-25032"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "score": 5,
+          "severity": "high",
+          "method": "CVSSv2",
+          "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:P"
+        },
+        {
+          "score": 7.5,
+          "severity": "high",
+          "method": "CVSSv31",
+          "vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"
+        }
+      ],
+      "description": "zlib before 1.2.12 allows memory corruption when deflating (i.e., when compressing) if the input has many distant matches.",
+      "advisories": [
+        {
+          "url": "http://seclists.org/fulldisclosure/2022/May/33"
+        },
+        {
+          "url": "http://seclists.org/fulldisclosure/2022/May/35"
+        },
+        {
+          "url": "http://seclists.org/fulldisclosure/2022/May/38"
+        },
+        {
+          "url": "http://www.openwall.com/lists/oss-security/2022/03/25/2"
+        },
+        {
+          "url": "http://www.openwall.com/lists/oss-security/2022/03/26/1"
+        },
+        {
+          "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-333517.pdf"
+        },
+        {
+          "url": "https://github.com/madler/zlib/commit/5c44459c3b28a9bd3283aaceab7c615f8020c531"
+        },
+        {
+          "url": "https://github.com/madler/zlib/compare/v1.2.11...v1.2.12"
+        },
+        {
+          "url": "https://github.com/madler/zlib/issues/605"
+        },
+        {
+          "url": "https://lists.debian.org/debian-lts-announce/2022/04/msg00000.html"
+        },
+        {
+          "url": "https://lists.debian.org/debian-lts-announce/2022/05/msg00008.html"
+        },
+        {
+          "url": "https://lists.debian.org/debian-lts-announce/2022/09/msg00023.html"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DCZFIJBJTZ7CL5QXBFKTQ22Q26VINRUF/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DF62MVMH3QUGMBDCB3DY2ERQ6EBHTADB/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/JZZPTWRYQULAOL3AW7RZJNVZ2UONXCV4/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/NS2D2GFPFGOJUL4WQ3DUAY7HF4VWQ77F/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VOKNP2L734AEL47NRYGVZIKEFOUBQY5Y/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/XOKFMSNQ5D5WGMALBNBXU3GE442V74WU/"
+        },
+        {
+          "url": "https://security.gentoo.org/glsa/202210-42"
+        },
+        {
+          "url": "https://security.netapp.com/advisory/ntap-20220526-0009/"
+        },
+        {
+          "url": "https://security.netapp.com/advisory/ntap-20220729-0004/"
+        },
+        {
+          "url": "https://support.apple.com/kb/HT213255"
+        },
+        {
+          "url": "https://support.apple.com/kb/HT213256"
+        },
+        {
+          "url": "https://support.apple.com/kb/HT213257"
+        },
+        {
+          "url": "https://www.debian.org/security/2022/dsa-5111"
+        },
+        {
+          "url": "https://www.openwall.com/lists/oss-security/2022/03/24/1"
+        },
+        {
+          "url": "https://www.openwall.com/lists/oss-security/2022/03/28/1"
+        },
+        {
+          "url": "https://www.openwall.com/lists/oss-security/2022/03/28/3"
+        },
+        {
+          "url": "https://www.oracle.com/security-alerts/cpujul2022.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:generic/python@3.7.3?package-id=0969bdfee1fd85b2"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:44c74053-bea7-46e5-b68b-69329abf8dcc",
+      "id": "CVE-2019-10160",
+      "source": {
+        "name": "nvd-cpe",
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-10160"
+      },
+      "references": [
+        {
+          "id": "CVE-2019-10160",
+          "source": {
+            "name": "nvd-cpe",
+            "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-10160"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "score": 5,
+          "severity": "critical",
+          "method": "CVSSv2",
+          "vector": "AV:N/AC:L/Au:N/C:P/I:N/A:N"
+        },
+        {
+          "score": 9.8,
+          "severity": "critical",
+          "method": "CVSSv3",
+          "vector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"
+        },
+        {
+          "score": 9.8,
+          "severity": "critical",
+          "method": "CVSSv31",
+          "vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"
+        }
+      ],
+      "description": "A security regression of CVE-2019-9636 was discovered in python since commit d537ab0ff9767ef024f26246899728f0116b1ec3 affecting versions 2.7, 3.5, 3.6, 3.7 and from v3.8.0a4 through v3.8.0b1, which still allows an attacker to exploit CVE-2019-9636 by abusing the user and password parts of a URL. When an application parses user-supplied URLs to store cookies, authentication credentials, or other kind of information, it is possible for an attacker to provide specially crafted URLs to make the application locate host-related information (e.g. cookies, authentication data) and send them to a different host than where it should, unlike if the URLs had been correctly parsed. The result of an attack may vary based on the application.",
+      "advisories": [
+        {
+          "url": "http://lists.opensuse.org/opensuse-security-announce/2019-08/msg00042.html"
+        },
+        {
+          "url": "http://lists.opensuse.org/opensuse-security-announce/2020-01/msg00040.html"
+        },
+        {
+          "url": "https://access.redhat.com/errata/RHSA-2019:1587"
+        },
+        {
+          "url": "https://access.redhat.com/errata/RHSA-2019:1700"
+        },
+        {
+          "url": "https://access.redhat.com/errata/RHSA-2019:2437"
+        },
+        {
+          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-10160"
+        },
+        {
+          "url": "https://github.com/python/cpython/commit/250b62acc59921d399f0db47db3b462cd6037e09"
+        },
+        {
+          "url": "https://github.com/python/cpython/commit/8d0ef0b5edeae52960c7ed05ae8a12388324f87e"
+        },
+        {
+          "url": "https://github.com/python/cpython/commit/f61599b050c621386a3fc6bc480359e2d3bb93de"
+        },
+        {
+          "url": "https://github.com/python/cpython/commit/fd1771dbdd28709716bd531580c40ae5ed814468"
+        },
+        {
+          "url": "https://lists.apache.org/thread.html/r1b103833cb5bc8466e24ff0ecc5e75b45a705334ab6a444e64e840a0%40%3Cissues.bookkeeper.apache.org%3E"
+        },
+        {
+          "url": "https://lists.debian.org/debian-lts-announce/2019/06/msg00022.html"
+        },
+        {
+          "url": "https://lists.debian.org/debian-lts-announce/2020/07/msg00011.html"
+        },
+        {
+          "url": "https://lists.debian.org/debian-lts-announce/2020/08/msg00034.html"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/2ORNTF62QPLMJXIQ7KTZQ2776LMIXEKL/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/44TS66GJMO5H3RLMVZEBGEFTB6O2LJJU/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/4X3HW5JRZ7GCPSR7UHJOLD7AWLTQCDVR/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/E2HP37NUVLQSBW3J735A2DQDOZ4ZGBLY/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ER6LONC2B2WYIO56GBQUDU6QTWZDPUNQ/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HQEQLXLOCR3SNM3AA5RRYJFQ5AZBYJ4L/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/JCPGLTTOBB3QEARDX4JOYURP6ELNNA2V/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KRYFIMISZ47NTAU3XWZUOFB7CYL62KES/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/M34WOYCDKTDE5KLUACE2YIEH7D37KHRX/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/NF3DRDGMVIRYNZMSLJIHNW47HOUQYXVG/"
+        },
+        {
+          "url": "https://python-security.readthedocs.io/vuln/urlsplit-nfkc-normalization2.html"
+        },
+        {
+          "url": "https://security.netapp.com/advisory/ntap-20190617-0003/"
+        },
+        {
+          "url": "https://usn.ubuntu.com/4127-1/"
+        },
+        {
+          "url": "https://usn.ubuntu.com/4127-2/"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:generic/python@3.7.3?package-id=0969bdfee1fd85b2"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:d8517d4f-45d5-48b2-a439-16a580fa8378",
+      "id": "CVE-2019-12900",
+      "source": {
+        "name": "nvd-cpe",
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-12900"
+      },
+      "references": [
+        {
+          "id": "CVE-2019-12900",
+          "source": {
+            "name": "nvd-cpe",
+            "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-12900"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "score": 7.5,
+          "severity": "critical",
+          "method": "CVSSv2",
+          "vector": "AV:N/AC:L/Au:N/C:P/I:P/A:P"
+        },
+        {
+          "score": 9.8,
+          "severity": "critical",
+          "method": "CVSSv31",
+          "vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"
+        }
+      ],
+      "description": "BZ2_decompress in decompress.c in bzip2 through 1.0.6 has an out-of-bounds write when there are many selectors.",
+      "advisories": [
+        {
+          "url": "http://lists.opensuse.org/opensuse-security-announce/2019-07/msg00040.html"
+        },
+        {
+          "url": "http://lists.opensuse.org/opensuse-security-announce/2019-08/msg00050.html"
+        },
+        {
+          "url": "http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00078.html"
+        },
+        {
+          "url": "http://lists.opensuse.org/opensuse-security-announce/2019-12/msg00000.html"
+        },
+        {
+          "url": "http://packetstormsecurity.com/files/153644/Slackware-Security-Advisory-bzip2-Updates.html"
+        },
+        {
+          "url": "http://packetstormsecurity.com/files/153957/FreeBSD-Security-Advisory-FreeBSD-SA-19-18.bzip2.html"
+        },
+        {
+          "url": "https://gitlab.com/federicomenaquintero/bzip2/commit/74de1e2e6ffc9d51ef9824db71a8ffee5962cdbc"
+        },
+        {
+          "url": "https://lists.apache.org/thread.html/ra0adb9653c7de9539b93cc8434143b655f753b9f60580ff260becb2b%40%3Cusers.kafka.apache.org%3E"
+        },
+        {
+          "url": "https://lists.apache.org/thread.html/rce8cd8c30f60604b580ea01bebda8a671a25c9a1629f409fc24e7774%40%3Cuser.flink.apache.org%3E"
+        },
+        {
+          "url": "https://lists.apache.org/thread.html/rda98305669476c4d90cc8527c4deda7e449019dd1fe9936b56671dd4%40%3Cuser.flink.apache.org%3E"
+        },
+        {
+          "url": "https://lists.debian.org/debian-lts-announce/2019/06/msg00021.html"
+        },
+        {
+          "url": "https://lists.debian.org/debian-lts-announce/2019/07/msg00014.html"
+        },
+        {
+          "url": "https://lists.debian.org/debian-lts-announce/2019/10/msg00012.html"
+        },
+        {
+          "url": "https://lists.debian.org/debian-lts-announce/2019/10/msg00018.html"
+        },
+        {
+          "url": "https://seclists.org/bugtraq/2019/Aug/4"
+        },
+        {
+          "url": "https://seclists.org/bugtraq/2019/Jul/22"
+        },
+        {
+          "url": "https://security.FreeBSD.org/advisories/FreeBSD-SA-19:18.bzip2.asc"
+        },
+        {
+          "url": "https://support.f5.com/csp/article/K68713584?utm_source=f5support&amp%3Butm_medium=RSS"
+        },
+        {
+          "url": "https://usn.ubuntu.com/4038-1/"
+        },
+        {
+          "url": "https://usn.ubuntu.com/4038-2/"
+        },
+        {
+          "url": "https://usn.ubuntu.com/4146-1/"
+        },
+        {
+          "url": "https://usn.ubuntu.com/4146-2/"
+        },
+        {
+          "url": "https://www.oracle.com/security-alerts/cpuoct2020.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:generic/python@3.7.3?package-id=0969bdfee1fd85b2"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:6f087a18-1b97-426b-a2a5-decbff8f2e0f",
+      "id": "CVE-2019-15903",
+      "source": {
+        "name": "nvd-cpe",
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-15903"
+      },
+      "references": [
+        {
+          "id": "CVE-2019-15903",
+          "source": {
+            "name": "nvd-cpe",
+            "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-15903"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "score": 5,
+          "severity": "high",
+          "method": "CVSSv2",
+          "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:P"
+        },
+        {
+          "score": 7.5,
+          "severity": "high",
+          "method": "CVSSv31",
+          "vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"
+        }
+      ],
+      "description": "In libexpat before 2.2.8, crafted XML input could fool the parser into changing from DTD parsing to document parsing too early; a consecutive call to XML_GetCurrentLineNumber (or XML_GetCurrentColumnNumber) then resulted in a heap-based buffer over-read.",
+      "advisories": [
+        {
+          "url": "http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00080.html"
+        },
+        {
+          "url": "http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00081.html"
+        },
+        {
+          "url": "http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00000.html"
+        },
+        {
+          "url": "http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00002.html"
+        },
+        {
+          "url": "http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00003.html"
+        },
+        {
+          "url": "http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00013.html"
+        },
+        {
+          "url": "http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00016.html"
+        },
+        {
+          "url": "http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00017.html"
+        },
+        {
+          "url": "http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00018.html"
+        },
+        {
+          "url": "http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00019.html"
+        },
+        {
+          "url": "http://lists.opensuse.org/opensuse-security-announce/2020-01/msg00008.html"
+        },
+        {
+          "url": "http://lists.opensuse.org/opensuse-security-announce/2020-01/msg00040.html"
+        },
+        {
+          "url": "http://packetstormsecurity.com/files/154503/Slackware-Security-Advisory-expat-Updates.html"
+        },
+        {
+          "url": "http://packetstormsecurity.com/files/154927/Slackware-Security-Advisory-python-Updates.html"
+        },
+        {
+          "url": "http://packetstormsecurity.com/files/154947/Slackware-Security-Advisory-mozilla-firefox-Updates.html"
+        },
+        {
+          "url": "http://seclists.org/fulldisclosure/2019/Dec/23"
+        },
+        {
+          "url": "http://seclists.org/fulldisclosure/2019/Dec/26"
+        },
+        {
+          "url": "http://seclists.org/fulldisclosure/2019/Dec/27"
+        },
+        {
+          "url": "http://seclists.org/fulldisclosure/2019/Dec/30"
+        },
+        {
+          "url": "https://access.redhat.com/errata/RHSA-2019:3210"
+        },
+        {
+          "url": "https://access.redhat.com/errata/RHSA-2019:3237"
+        },
+        {
+          "url": "https://access.redhat.com/errata/RHSA-2019:3756"
+        },
+        {
+          "url": "https://github.com/libexpat/libexpat/commit/c20b758c332d9a13afbbb276d30db1d183a85d43"
+        },
+        {
+          "url": "https://github.com/libexpat/libexpat/issues/317"
+        },
+        {
+          "url": "https://github.com/libexpat/libexpat/issues/342"
+        },
+        {
+          "url": "https://github.com/libexpat/libexpat/pull/318"
+        },
+        {
+          "url": "https://lists.debian.org/debian-lts-announce/2019/11/msg00006.html"
+        },
+        {
+          "url": "https://lists.debian.org/debian-lts-announce/2019/11/msg00017.html"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/A4TZKPJFTURRLXIGLB34WVKQ5HGY6JJA/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BDUTI5TVQWIGGQXPEVI4T2ENHFSBMIBP/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/S26LGXXQ7YF2BP3RGOWELBFKM6BHF6UG/"
+        },
+        {
+          "url": "https://seclists.org/bugtraq/2019/Dec/17"
+        },
+        {
+          "url": "https://seclists.org/bugtraq/2019/Dec/21"
+        },
+        {
+          "url": "https://seclists.org/bugtraq/2019/Dec/23"
+        },
+        {
+          "url": "https://seclists.org/bugtraq/2019/Nov/1"
+        },
+        {
+          "url": "https://seclists.org/bugtraq/2019/Nov/24"
+        },
+        {
+          "url": "https://seclists.org/bugtraq/2019/Oct/29"
+        },
+        {
+          "url": "https://seclists.org/bugtraq/2019/Sep/30"
+        },
+        {
+          "url": "https://seclists.org/bugtraq/2019/Sep/37"
+        },
+        {
+          "url": "https://security.gentoo.org/glsa/201911-08"
+        },
+        {
+          "url": "https://security.netapp.com/advisory/ntap-20190926-0004/"
+        },
+        {
+          "url": "https://support.apple.com/kb/HT210785"
+        },
+        {
+          "url": "https://support.apple.com/kb/HT210788"
+        },
+        {
+          "url": "https://support.apple.com/kb/HT210789"
+        },
+        {
+          "url": "https://support.apple.com/kb/HT210790"
+        },
+        {
+          "url": "https://support.apple.com/kb/HT210793"
+        },
+        {
+          "url": "https://support.apple.com/kb/HT210794"
+        },
+        {
+          "url": "https://support.apple.com/kb/HT210795"
+        },
+        {
+          "url": "https://usn.ubuntu.com/4132-1/"
+        },
+        {
+          "url": "https://usn.ubuntu.com/4132-2/"
+        },
+        {
+          "url": "https://usn.ubuntu.com/4165-1/"
+        },
+        {
+          "url": "https://usn.ubuntu.com/4202-1/"
+        },
+        {
+          "url": "https://usn.ubuntu.com/4335-1/"
+        },
+        {
+          "url": "https://www.debian.org/security/2019/dsa-4530"
+        },
+        {
+          "url": "https://www.debian.org/security/2019/dsa-4549"
+        },
+        {
+          "url": "https://www.debian.org/security/2019/dsa-4571"
+        },
+        {
+          "url": "https://www.oracle.com/security-alerts/cpuapr2020.html"
+        },
+        {
+          "url": "https://www.oracle.com/security-alerts/cpuoct2020.html"
+        },
+        {
+          "url": "https://www.tenable.com/security/tns-2021-11"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:generic/python@3.7.3?package-id=0969bdfee1fd85b2"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:21fbf1ad-565b-4f69-badf-b178d24ddd34",
+      "id": "CVE-2019-16056",
+      "source": {
+        "name": "nvd-cpe",
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-16056"
+      },
+      "references": [
+        {
+          "id": "CVE-2019-16056",
+          "source": {
+            "name": "nvd-cpe",
+            "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-16056"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "score": 5,
+          "severity": "high",
+          "method": "CVSSv2",
+          "vector": "AV:N/AC:L/Au:N/C:P/I:N/A:N"
+        },
+        {
+          "score": 7.5,
+          "severity": "high",
+          "method": "CVSSv31",
+          "vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"
+        }
+      ],
+      "description": "An issue was discovered in Python through 2.7.16, 3.x through 3.5.7, 3.6.x through 3.6.9, and 3.7.x through 3.7.4. The email module wrongly parses email addresses that contain multiple @ characters. An application that uses the email module and implements some kind of checks on the From/To headers of a message could be tricked into accepting an email address that should be denied. An attack may be the same as in CVE-2019-11340; however, this CVE applies to Python more generally.",
+      "advisories": [
+        {
+          "url": "http://lists.opensuse.org/opensuse-security-announce/2019-10/msg00062.html"
+        },
+        {
+          "url": "http://lists.opensuse.org/opensuse-security-announce/2019-10/msg00063.html"
+        },
+        {
+          "url": "http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00012.html"
+        },
+        {
+          "url": "http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00021.html"
+        },
+        {
+          "url": "http://lists.opensuse.org/opensuse-security-announce/2020-01/msg00040.html"
+        },
+        {
+          "url": "https://access.redhat.com/errata/RHSA-2019:3725"
+        },
+        {
+          "url": "https://access.redhat.com/errata/RHSA-2019:3948"
+        },
+        {
+          "url": "https://bugs.python.org/issue34155"
+        },
+        {
+          "url": "https://github.com/python/cpython/commit/8cb65d1381b027f0b09ee36bfed7f35bb4dec9a9"
+        },
+        {
+          "url": "https://lists.apache.org/thread.html/r1b103833cb5bc8466e24ff0ecc5e75b45a705334ab6a444e64e840a0%40%3Cissues.bookkeeper.apache.org%3E"
+        },
+        {
+          "url": "https://lists.debian.org/debian-lts-announce/2019/09/msg00018.html"
+        },
+        {
+          "url": "https://lists.debian.org/debian-lts-announce/2019/09/msg00019.html"
+        },
+        {
+          "url": "https://lists.debian.org/debian-lts-announce/2020/07/msg00011.html"
+        },
+        {
+          "url": "https://lists.debian.org/debian-lts-announce/2020/08/msg00034.html"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/4X3HW5JRZ7GCPSR7UHJOLD7AWLTQCDVR/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BEARDOTXCYPYELKBD2KWZ27GSPXDI3GQ/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/COATURTCY7G67AYI6UDV5B2JZTBCKIDX/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/E2HP37NUVLQSBW3J735A2DQDOZ4ZGBLY/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ER6LONC2B2WYIO56GBQUDU6QTWZDPUNQ/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/JCPGLTTOBB3QEARDX4JOYURP6ELNNA2V/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/K4KZEFP6E4YPYB52AF4WXCUDSGQOTF37/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/K7HNVIFMETMFWWWUNTB72KYJYXCZOS5V/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/M34WOYCDKTDE5KLUACE2YIEH7D37KHRX/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/NF3DRDGMVIRYNZMSLJIHNW47HOUQYXVG/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/OYGESQSGIHDCIGOBVF7VXCMIE6YDWRYB/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QASRD4E2G65GGEHYKVHYCXB2XWAGTNL4/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QP46PQSUKYPGWTADQ67NOV3BUN6JM34Z/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SDQQ56P7ZZR64XV5DUVWNSNXKKEXUG2J/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZBTGPBUABGXZ7WH7677OEM3NSP6ZEA76/"
+        },
+        {
+          "url": "https://security.netapp.com/advisory/ntap-20190926-0005/"
+        },
+        {
+          "url": "https://usn.ubuntu.com/4151-1/"
+        },
+        {
+          "url": "https://usn.ubuntu.com/4151-2/"
+        },
+        {
+          "url": "https://www.oracle.com/security-alerts/cpuapr2020.html"
+        },
+        {
+          "url": "https://www.oracle.com/security-alerts/cpujul2020.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:generic/python@3.7.3?package-id=0969bdfee1fd85b2"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:cc64f43a-20b6-4741-b8e5-bf873962ba85",
+      "id": "CVE-2019-16935",
+      "source": {
+        "name": "nvd-cpe",
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-16935"
+      },
+      "references": [
+        {
+          "id": "CVE-2019-16935",
+          "source": {
+            "name": "nvd-cpe",
+            "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-16935"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "score": 4.3,
+          "severity": "medium",
+          "method": "CVSSv2",
+          "vector": "AV:N/AC:M/Au:N/C:N/I:P/A:N"
+        },
+        {
+          "score": 6.1,
+          "severity": "medium",
+          "method": "CVSSv31",
+          "vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"
+        }
+      ],
+      "description": "The documentation XML-RPC server in Python through 2.7.16, 3.x through 3.6.9, and 3.7.x through 3.7.4 has XSS via the server_title field. This occurs in Lib/DocXMLRPCServer.py in Python 2.x, and in Lib/xmlrpc/server.py in Python 3.x. If set_server_title is called with untrusted input, arbitrary JavaScript can be delivered to clients that visit the http URL for this server.",
+      "advisories": [
+        {
+          "url": "http://lists.opensuse.org/opensuse-security-announce/2019-10/msg00062.html"
+        },
+        {
+          "url": "http://lists.opensuse.org/opensuse-security-announce/2019-10/msg00063.html"
+        },
+        {
+          "url": "http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00012.html"
+        },
+        {
+          "url": "http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00021.html"
+        },
+        {
+          "url": "http://lists.opensuse.org/opensuse-security-announce/2020-01/msg00040.html"
+        },
+        {
+          "url": "https://bugs.python.org/issue38243"
+        },
+        {
+          "url": "https://github.com/python/cpython/blob/35c0809158be7feae4c4f877a08b93baea2d8291/Lib/xmlrpc/server.py#L897"
+        },
+        {
+          "url": "https://github.com/python/cpython/blob/e007860b8b3609ce0bc62b1780efaa06241520bd/Lib/DocXMLRPCServer.py#L213"
+        },
+        {
+          "url": "https://github.com/python/cpython/pull/16373"
+        },
+        {
+          "url": "https://lists.debian.org/debian-lts-announce/2020/07/msg00011.html"
+        },
+        {
+          "url": "https://lists.debian.org/debian-lts-announce/2021/04/msg00015.html"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/4X3HW5JRZ7GCPSR7UHJOLD7AWLTQCDVR/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BEARDOTXCYPYELKBD2KWZ27GSPXDI3GQ/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/COATURTCY7G67AYI6UDV5B2JZTBCKIDX/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/JCPGLTTOBB3QEARDX4JOYURP6ELNNA2V/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/K7HNVIFMETMFWWWUNTB72KYJYXCZOS5V/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/M34WOYCDKTDE5KLUACE2YIEH7D37KHRX/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/OYGESQSGIHDCIGOBVF7VXCMIE6YDWRYB/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZBTGPBUABGXZ7WH7677OEM3NSP6ZEA76/"
+        },
+        {
+          "url": "https://security.netapp.com/advisory/ntap-20191017-0004/"
+        },
+        {
+          "url": "https://usn.ubuntu.com/4151-1/"
+        },
+        {
+          "url": "https://usn.ubuntu.com/4151-2/"
+        },
+        {
+          "url": "https://www.oracle.com/security-alerts/cpujul2020.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:generic/python@3.7.3?package-id=0969bdfee1fd85b2"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:931b5008-ba24-472e-9b59-a74fda40efc4",
+      "id": "CVE-2019-18348",
+      "source": {
+        "name": "nvd-cpe",
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-18348"
+      },
+      "references": [
+        {
+          "id": "CVE-2019-18348",
+          "source": {
+            "name": "nvd-cpe",
+            "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-18348"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "score": 4.3,
+          "severity": "medium",
+          "method": "CVSSv2",
+          "vector": "AV:N/AC:M/Au:N/C:N/I:P/A:N"
+        },
+        {
+          "score": 6.1,
+          "severity": "medium",
+          "method": "CVSSv31",
+          "vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"
+        }
+      ],
+      "description": "An issue was discovered in urllib2 in Python 2.x through 2.7.17 and urllib in Python 3.x through 3.8.0. CRLF injection is possible if the attacker controls a url parameter, as demonstrated by the first argument to urllib.request.urlopen with \\r\\n (specifically in the host component of a URL) followed by an HTTP header. This is similar to the CVE-2019-9740 query string issue and the CVE-2019-9947 path string issue. (This is not exploitable when glibc has CVE-2016-10739 fixed.). This is fixed in: v2.7.18, v2.7.18rc1; v3.5.10, v3.5.10rc1; v3.6.11, v3.6.11rc1, v3.6.12; v3.7.8, v3.7.8rc1, v3.7.9; v3.8.3, v3.8.3rc1, v3.8.4, v3.8.4rc1, v3.8.5, v3.8.6, v3.8.6rc1.",
+      "advisories": [
+        {
+          "url": "http://lists.opensuse.org/opensuse-security-announce/2020-05/msg00041.html"
+        },
+        {
+          "url": "https://bugs.python.org/issue30458#msg347282"
+        },
+        {
+          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1727276"
+        },
+        {
+          "url": "https://lists.debian.org/debian-lts-announce/2020/07/msg00011.html"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/4X3HW5JRZ7GCPSR7UHJOLD7AWLTQCDVR/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/A5NSAX4SC3V64PGZUPH7PRDLSON34Q5A/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/JCPGLTTOBB3QEARDX4JOYURP6ELNNA2V/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/M34WOYCDKTDE5KLUACE2YIEH7D37KHRX/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/UESGYI5XDAHJBATEZN3MHNDUBDH47AS6/"
+        },
+        {
+          "url": "https://security.netapp.com/advisory/ntap-20191107-0004/"
+        },
+        {
+          "url": "https://usn.ubuntu.com/4333-1/"
+        },
+        {
+          "url": "https://usn.ubuntu.com/4333-2/"
+        },
+        {
+          "url": "https://www.oracle.com/security-alerts/cpuoct2020.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:generic/python@3.7.3?package-id=0969bdfee1fd85b2"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:70a7597d-86d4-4396-a0a6-f6eec4420216",
+      "id": "CVE-2019-20907",
+      "source": {
+        "name": "nvd-cpe",
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-20907"
+      },
+      "references": [
+        {
+          "id": "CVE-2019-20907",
+          "source": {
+            "name": "nvd-cpe",
+            "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-20907"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "score": 5,
+          "severity": "high",
+          "method": "CVSSv2",
+          "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:P"
+        },
+        {
+          "score": 7.5,
+          "severity": "high",
+          "method": "CVSSv31",
+          "vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"
+        }
+      ],
+      "description": "In Lib/tarfile.py in Python through 3.8.3, an attacker is able to craft a TAR archive leading to an infinite loop when opened by tarfile.open, because _proc_pax lacks header validation.",
+      "advisories": [
+        {
+          "url": "http://lists.opensuse.org/opensuse-security-announce/2020-08/msg00051.html"
+        },
+        {
+          "url": "http://lists.opensuse.org/opensuse-security-announce/2020-08/msg00052.html"
+        },
+        {
+          "url": "http://lists.opensuse.org/opensuse-security-announce/2020-08/msg00053.html"
+        },
+        {
+          "url": "http://lists.opensuse.org/opensuse-security-announce/2020-08/msg00056.html"
+        },
+        {
+          "url": "https://bugs.python.org/issue39017"
+        },
+        {
+          "url": "https://github.com/python/cpython/pull/21454"
+        },
+        {
+          "url": "https://lists.debian.org/debian-lts-announce/2020/08/msg00034.html"
+        },
+        {
+          "url": "https://lists.debian.org/debian-lts-announce/2020/11/msg00032.html"
+        },
+        {
+          "url": "https://lists.debian.org/debian-lts-announce/2023/05/msg00024.html"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/36XI3EEQNMHGOZEI63Y7UV6XZRELYEAU/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CAXHCY4V3LPAAJOBCJ26ISZ4NUXQXTUZ/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CNHPQGSP2YM3JAUD2VAMPXTIUQTZ2M2U/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CTUNTBJ3POHONQOTLEZC46POCIYYTAKZ/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LE4O3PNDNNOMSKHNUKZKD3NGHIFUFDPX/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/NTBKKOLFFNHG6CM4ACDX4APHSD5ZX5N4/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/OXI72HIHMXCQFWTULUXDG7VDA2BCYL4Y/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PDKKRXLNVXRF6VGERZSR3OMQR5D5QI6I/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TOGKLGTXZLHQQFBVCAPSUDA6DOOJFNRY/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/V3TALOUBYU2MQD4BPLRTDQUMBKGCAXUA/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/V53P2YOLEQH4J7S5QHXMKMZYFTVVMTMO/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VT4AF72TJ2XNIKCR4WEBR7URBJJ4YZRD/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YILCHHTNLH4GG4GSQBX2MZRKZBXOLCKE/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YSL3XWVDMSMKO23HR74AJQ6VEM3C2NTS/"
+        },
+        {
+          "url": "https://security.gentoo.org/glsa/202008-01"
+        },
+        {
+          "url": "https://security.netapp.com/advisory/ntap-20200731-0002/"
+        },
+        {
+          "url": "https://usn.ubuntu.com/4428-1/"
+        },
+        {
+          "url": "https://www.oracle.com/security-alerts/cpujan2021.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:generic/python@3.7.3?package-id=0969bdfee1fd85b2"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:11882179-4656-4d23-886f-11118dfa68a3",
+      "id": "CVE-2019-9740",
+      "source": {
+        "name": "nvd-cpe",
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-9740"
+      },
+      "references": [
+        {
+          "id": "CVE-2019-9740",
+          "source": {
+            "name": "nvd-cpe",
+            "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-9740"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "score": 4.3,
+          "severity": "medium",
+          "method": "CVSSv2",
+          "vector": "AV:N/AC:M/Au:N/C:N/I:P/A:N"
+        },
+        {
+          "score": 6.1,
+          "severity": "medium",
+          "method": "CVSSv31",
+          "vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"
+        }
+      ],
+      "description": "An issue was discovered in urllib2 in Python 2.x through 2.7.16 and urllib in Python 3.x through 3.7.3. CRLF injection is possible if the attacker controls a url parameter, as demonstrated by the first argument to urllib.request.urlopen with \\r\\n (specifically in the query string after a ? character) followed by an HTTP header or a Redis command. This is fixed in: v2.7.17, v2.7.17rc1, v2.7.18, v2.7.18rc1; v3.5.10, v3.5.10rc1, v3.5.8, v3.5.8rc1, v3.5.8rc2, v3.5.9; v3.6.10, v3.6.10rc1, v3.6.11, v3.6.11rc1, v3.6.12, v3.6.9, v3.6.9rc1; v3.7.4, v3.7.4rc1, v3.7.4rc2, v3.7.5, v3.7.5rc1, v3.7.6, v3.7.6rc1, v3.7.7, v3.7.7rc1, v3.7.8, v3.7.8rc1, v3.7.9.",
+      "advisories": [
+        {
+          "url": "http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00039.html"
+        },
+        {
+          "url": "http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00041.html"
+        },
+        {
+          "url": "http://packetstormsecurity.com/files/154927/Slackware-Security-Advisory-python-Updates.html"
+        },
+        {
+          "url": "http://www.openwall.com/lists/oss-security/2021/02/04/2"
+        },
+        {
+          "url": "http://www.securityfocus.com/bid/107466"
+        },
+        {
+          "url": "https://access.redhat.com/errata/RHSA-2019:1260"
+        },
+        {
+          "url": "https://access.redhat.com/errata/RHSA-2019:2030"
+        },
+        {
+          "url": "https://access.redhat.com/errata/RHSA-2019:3335"
+        },
+        {
+          "url": "https://access.redhat.com/errata/RHSA-2019:3520"
+        },
+        {
+          "url": "https://access.redhat.com/errata/RHSA-2019:3725"
+        },
+        {
+          "url": "https://bugs.python.org/issue36276"
+        },
+        {
+          "url": "https://lists.debian.org/debian-lts-announce/2019/06/msg00022.html"
+        },
+        {
+          "url": "https://lists.debian.org/debian-lts-announce/2019/06/msg00023.html"
+        },
+        {
+          "url": "https://lists.debian.org/debian-lts-announce/2019/06/msg00026.html"
+        },
+        {
+          "url": "https://lists.debian.org/debian-lts-announce/2020/07/msg00011.html"
+        },
+        {
+          "url": "https://lists.debian.org/debian-lts-announce/2020/08/msg00034.html"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/2ORNTF62QPLMJXIQ7KTZQ2776LMIXEKL/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/44TS66GJMO5H3RLMVZEBGEFTB6O2LJJU/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/4X3HW5JRZ7GCPSR7UHJOLD7AWLTQCDVR/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/JCPGLTTOBB3QEARDX4JOYURP6ELNNA2V/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/JMWSKTNOHSUOT3L25QFJAVCFYZX46FYK/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/JXASHCDD4PQFKTMKQN4YOP5ZH366ABN4/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/M34WOYCDKTDE5KLUACE2YIEH7D37KHRX/"
+        },
+        {
+          "url": "https://seclists.org/bugtraq/2019/Oct/29"
+        },
+        {
+          "url": "https://security.gentoo.org/glsa/202003-26"
+        },
+        {
+          "url": "https://security.netapp.com/advisory/ntap-20190619-0005/"
+        },
+        {
+          "url": "https://usn.ubuntu.com/4127-1/"
+        },
+        {
+          "url": "https://usn.ubuntu.com/4127-2/"
+        },
+        {
+          "url": "https://www.oracle.com/security-alerts/cpujul2022.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:generic/python@3.7.3?package-id=0969bdfee1fd85b2"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:91a114f4-28d8-4fb2-9e12-e130873092f8",
+      "id": "CVE-2019-9947",
+      "source": {
+        "name": "nvd-cpe",
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-9947"
+      },
+      "references": [
+        {
+          "id": "CVE-2019-9947",
+          "source": {
+            "name": "nvd-cpe",
+            "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-9947"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "score": 4.3,
+          "severity": "medium",
+          "method": "CVSSv2",
+          "vector": "AV:N/AC:M/Au:N/C:N/I:P/A:N"
+        },
+        {
+          "score": 6.1,
+          "severity": "medium",
+          "method": "CVSSv31",
+          "vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"
+        }
+      ],
+      "description": "An issue was discovered in urllib2 in Python 2.x through 2.7.16 and urllib in Python 3.x through 3.7.3. CRLF injection is possible if the attacker controls a url parameter, as demonstrated by the first argument to urllib.request.urlopen with \\r\\n (specifically in the path component of a URL that lacks a ? character) followed by an HTTP header or a Redis command. This is similar to the CVE-2019-9740 query string issue. This is fixed in: v2.7.17, v2.7.17rc1, v2.7.18, v2.7.18rc1; v3.5.10, v3.5.10rc1, v3.5.8, v3.5.8rc1, v3.5.8rc2, v3.5.9; v3.6.10, v3.6.10rc1, v3.6.11, v3.6.11rc1, v3.6.12, v3.6.9, v3.6.9rc1; v3.7.4, v3.7.4rc1, v3.7.4rc2, v3.7.5, v3.7.5rc1, v3.7.6, v3.7.6rc1, v3.7.7, v3.7.7rc1, v3.7.8, v3.7.8rc1, v3.7.9.",
+      "advisories": [
+        {
+          "url": "http://lists.opensuse.org/opensuse-security-announce/2019-10/msg00062.html"
+        },
+        {
+          "url": "http://lists.opensuse.org/opensuse-security-announce/2019-10/msg00063.html"
+        },
+        {
+          "url": "http://lists.opensuse.org/opensuse-security-announce/2020-01/msg00040.html"
+        },
+        {
+          "url": "http://www.openwall.com/lists/oss-security/2021/02/04/2"
+        },
+        {
+          "url": "https://access.redhat.com/errata/RHSA-2019:1260"
+        },
+        {
+          "url": "https://access.redhat.com/errata/RHSA-2019:2030"
+        },
+        {
+          "url": "https://access.redhat.com/errata/RHSA-2019:3335"
+        },
+        {
+          "url": "https://access.redhat.com/errata/RHSA-2019:3520"
+        },
+        {
+          "url": "https://access.redhat.com/errata/RHSA-2019:3725"
+        },
+        {
+          "url": "https://bugs.python.org/issue35906"
+        },
+        {
+          "url": "https://lists.debian.org/debian-lts-announce/2019/06/msg00022.html"
+        },
+        {
+          "url": "https://lists.debian.org/debian-lts-announce/2019/06/msg00023.html"
+        },
+        {
+          "url": "https://lists.debian.org/debian-lts-announce/2019/06/msg00026.html"
+        },
+        {
+          "url": "https://lists.debian.org/debian-lts-announce/2020/07/msg00011.html"
+        },
+        {
+          "url": "https://lists.debian.org/debian-lts-announce/2020/08/msg00034.html"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/JMWSKTNOHSUOT3L25QFJAVCFYZX46FYK/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/JXASHCDD4PQFKTMKQN4YOP5ZH366ABN4/"
+        },
+        {
+          "url": "https://security.gentoo.org/glsa/202003-26"
+        },
+        {
+          "url": "https://security.netapp.com/advisory/ntap-20190404-0004/"
+        },
+        {
+          "url": "https://usn.ubuntu.com/4127-1/"
+        },
+        {
+          "url": "https://usn.ubuntu.com/4127-2/"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:generic/python@3.7.3?package-id=0969bdfee1fd85b2"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:6d35e298-4393-45ad-be74-a5f82be774b7",
+      "id": "CVE-2019-9948",
+      "source": {
+        "name": "nvd-cpe",
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-9948"
+      },
+      "references": [
+        {
+          "id": "CVE-2019-9948",
+          "source": {
+            "name": "nvd-cpe",
+            "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-9948"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "score": 6.4,
+          "severity": "critical",
+          "method": "CVSSv2",
+          "vector": "AV:N/AC:L/Au:N/C:P/I:P/A:N"
+        },
+        {
+          "score": 9.1,
+          "severity": "critical",
+          "method": "CVSSv31",
+          "vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N"
+        }
+      ],
+      "description": "urllib in Python 2.x through 2.7.16 supports the local_file: scheme, which makes it easier for remote attackers to bypass protection mechanisms that blacklist file: URIs, as demonstrated by triggering a urllib.urlopen('local_file:///etc/passwd') call.",
+      "advisories": [
+        {
+          "url": "http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00092.html"
+        },
+        {
+          "url": "http://lists.opensuse.org/opensuse-security-announce/2019-06/msg00050.html"
+        },
+        {
+          "url": "http://packetstormsecurity.com/files/154927/Slackware-Security-Advisory-python-Updates.html"
+        },
+        {
+          "url": "http://www.securityfocus.com/bid/107549"
+        },
+        {
+          "url": "https://access.redhat.com/errata/RHSA-2019:1700"
+        },
+        {
+          "url": "https://access.redhat.com/errata/RHSA-2019:2030"
+        },
+        {
+          "url": "https://access.redhat.com/errata/RHSA-2019:3335"
+        },
+        {
+          "url": "https://access.redhat.com/errata/RHSA-2019:3520"
+        },
+        {
+          "url": "https://bugs.python.org/issue35907"
+        },
+        {
+          "url": "https://github.com/python/cpython/pull/11842"
+        },
+        {
+          "url": "https://lists.apache.org/thread.html/r1b103833cb5bc8466e24ff0ecc5e75b45a705334ab6a444e64e840a0%40%3Cissues.bookkeeper.apache.org%3E"
+        },
+        {
+          "url": "https://lists.debian.org/debian-lts-announce/2019/06/msg00022.html"
+        },
+        {
+          "url": "https://lists.debian.org/debian-lts-announce/2019/07/msg00011.html"
+        },
+        {
+          "url": "https://lists.debian.org/debian-lts-announce/2020/07/msg00011.html"
+        },
+        {
+          "url": "https://lists.debian.org/debian-lts-announce/2020/08/msg00034.html"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HQEQLXLOCR3SNM3AA5RRYJFQ5AZBYJ4L/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KRYFIMISZ47NTAU3XWZUOFB7CYL62KES/"
+        },
+        {
+          "url": "https://seclists.org/bugtraq/2019/Oct/29"
+        },
+        {
+          "url": "https://security.gentoo.org/glsa/202003-26"
+        },
+        {
+          "url": "https://security.netapp.com/advisory/ntap-20190404-0004/"
+        },
+        {
+          "url": "https://usn.ubuntu.com/4127-1/"
+        },
+        {
+          "url": "https://usn.ubuntu.com/4127-2/"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:generic/python@3.7.3?package-id=0969bdfee1fd85b2"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:7f18548a-b680-472a-b8c8-5c31103e64bc",
+      "id": "CVE-2020-10735",
+      "source": {
+        "name": "nvd-cpe",
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-10735"
+      },
+      "references": [
+        {
+          "id": "CVE-2020-10735",
+          "source": {
+            "name": "nvd-cpe",
+            "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-10735"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "score": 7.5,
+          "severity": "high",
+          "method": "CVSSv31",
+          "vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"
+        }
+      ],
+      "description": "A flaw was found in python. In algorithms with quadratic time complexity using non-binary bases, when using int(\"text\"), a system could take 50ms to parse an int string with 100,000 digits and 5s for 1,000,000 digits (float, decimal, int.from_bytes(), and int() for binary bases 2, 4, 8, 16, and 32 are not affected). The highest threat from this vulnerability is to system availability.",
+      "advisories": [
+        {
+          "url": "http://www.openwall.com/lists/oss-security/2022/09/21/1"
+        },
+        {
+          "url": "http://www.openwall.com/lists/oss-security/2022/09/21/4"
+        },
+        {
+          "url": "https://access.redhat.com/security/cve/CVE-2020-10735"
+        },
+        {
+          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1834423"
+        },
+        {
+          "url": "https://docs.google.com/document/d/1KjuF_aXlzPUxTK4BMgezGJ2Pn7uevfX7g0_mvgHlL7Y"
+        },
+        {
+          "url": "https://github.com/python/cpython/issues/95778"
+        },
+        {
+          "url": "https://lists.debian.org/debian-lts-announce/2023/06/msg00039.html"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/2VCU6EVQDIXNCEDJUCTFIER2WVNNDTYZ/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/32AAQKABEKFCB5DDV5OONRZK6BS23HPW/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/4EWKR2SPX3JORLWCXFY3KN2U5B5CIUQQ/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6XL6E5A3I36TRR73VNBOXNIQP4AMZDFZ/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/76YE7AM37MRU76XJV4M27CWDAMUGNRYK/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HSRPVJZL6DJFWKYRHMNJB7VCEUCBKRF5/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/IFGV7P2PYFBMK32OKHCAC2ZPJQV5AUDF/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/NHC6IUU7CLRQ3QLPWUXLONSG3SXFTR47/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/OKYE2DOI2X7WZXAWTQJZAXYIWM37HDCY/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/OT5U223OE5ZOUHZAZYSYSWVJQIKDE73E/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/OT5WQB7Z3CXOWVBD2AFAHYPA5ONYFFZ4/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PD7FTLJOIGMUSCDR3JAN6WRFHJEE4PH5/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SZYJSGLSCQOKXXFVJVJQAXLEOJBIWGEL/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TD7JDDKJXK6D26XAN3YRFNM2LAJHT5UO/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TMWPRAAJS7I6U3U45V7GZVXWNSECI22M/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/U4ZZV4CDFRMTPDBI7C5L43RFL3XLIGUY/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/UBPDVCDIUCEBE7C4NAGNA2KQJYOTPBAZ/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/V7ZUJDHK7KNG6SLIFXW7MNZ6O2PUJYK6/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/WXF6MQ74HVIDDSR5AE2UDR24I6D4FEPC/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZEOAJWGGY55QU35UM2OVZATBW5MX2OZD/"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:generic/python@3.7.3?package-id=0969bdfee1fd85b2"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:9fb877ce-2b87-4fb2-b85d-731284d0833f",
+      "id": "CVE-2020-14422",
+      "source": {
+        "name": "nvd-cpe",
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-14422"
+      },
+      "references": [
+        {
+          "id": "CVE-2020-14422",
+          "source": {
+            "name": "nvd-cpe",
+            "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-14422"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "score": 4.3,
+          "severity": "medium",
+          "method": "CVSSv2",
+          "vector": "AV:N/AC:M/Au:N/C:N/I:N/A:P"
+        },
+        {
+          "score": 5.9,
+          "severity": "medium",
+          "method": "CVSSv31",
+          "vector": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H"
+        }
+      ],
+      "description": "Lib/ipaddress.py in Python through 3.8.3 improperly computes hash values in the IPv4Interface and IPv6Interface classes, which might allow a remote attacker to cause a denial of service if an application is affected by the performance of a dictionary containing IPv4Interface or IPv6Interface objects, and this attacker can cause many dictionary entries to be created. This is fixed in: v3.5.10, v3.5.10rc1; v3.6.12; v3.7.9; v3.8.4, v3.8.4rc1, v3.8.5, v3.8.6, v3.8.6rc1; v3.9.0, v3.9.0b4, v3.9.0b5, v3.9.0rc1, v3.9.0rc2.",
+      "advisories": [
+        {
+          "url": "http://lists.opensuse.org/opensuse-security-announce/2020-07/msg00003.html"
+        },
+        {
+          "url": "http://lists.opensuse.org/opensuse-security-announce/2020-07/msg00006.html"
+        },
+        {
+          "url": "http://lists.opensuse.org/opensuse-security-announce/2020-07/msg00032.html"
+        },
+        {
+          "url": "http://lists.opensuse.org/opensuse-security-announce/2020-07/msg00041.html"
+        },
+        {
+          "url": "https://bugs.python.org/issue41004"
+        },
+        {
+          "url": "https://github.com/python/cpython/pull/20956"
+        },
+        {
+          "url": "https://lists.debian.org/debian-lts-announce/2020/07/msg00011.html"
+        },
+        {
+          "url": "https://lists.debian.org/debian-lts-announce/2023/05/msg00016.html"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/36XI3EEQNMHGOZEI63Y7UV6XZRELYEAU/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CNHPQGSP2YM3JAUD2VAMPXTIUQTZ2M2U/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CTUNTBJ3POHONQOTLEZC46POCIYYTAKZ/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FCCZTAYZATTNSNEAXWA7U3HCO2OVQKT5/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LE4O3PNDNNOMSKHNUKZKD3NGHIFUFDPX/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/NTBKKOLFFNHG6CM4ACDX4APHSD5ZX5N4/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/OXI72HIHMXCQFWTULUXDG7VDA2BCYL4Y/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/V3TALOUBYU2MQD4BPLRTDQUMBKGCAXUA/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/V53P2YOLEQH4J7S5QHXMKMZYFTVVMTMO/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VT4AF72TJ2XNIKCR4WEBR7URBJJ4YZRD/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/X36Y523UAZY5QFXZAAORNFY63HLBWX7N/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YILCHHTNLH4GG4GSQBX2MZRKZBXOLCKE/"
+        },
+        {
+          "url": "https://security.gentoo.org/glsa/202008-01"
+        },
+        {
+          "url": "https://security.netapp.com/advisory/ntap-20200724-0004/"
+        },
+        {
+          "url": "https://usn.ubuntu.com/4428-1/"
+        },
+        {
+          "url": "https://www.oracle.com/security-alerts/cpujan2021.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:generic/python@3.7.3?package-id=0969bdfee1fd85b2"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:99b67352-baac-4230-b55a-e916f96c5ff9",
+      "id": "CVE-2020-26116",
+      "source": {
+        "name": "nvd-cpe",
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-26116"
+      },
+      "references": [
+        {
+          "id": "CVE-2020-26116",
+          "source": {
+            "name": "nvd-cpe",
+            "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-26116"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "score": 6.4,
+          "severity": "high",
+          "method": "CVSSv2",
+          "vector": "AV:N/AC:L/Au:N/C:P/I:P/A:N"
+        },
+        {
+          "score": 7.2,
+          "severity": "high",
+          "method": "CVSSv31",
+          "vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:N"
+        }
+      ],
+      "description": "http.client in Python 3.x before 3.5.10, 3.6.x before 3.6.12, 3.7.x before 3.7.9, and 3.8.x before 3.8.5 allows CRLF injection if the attacker controls the HTTP request method, as demonstrated by inserting CR and LF control characters in the first argument of HTTPConnection.request.",
+      "advisories": [
+        {
+          "url": "http://lists.opensuse.org/opensuse-security-announce/2020-11/msg00027.html"
+        },
+        {
+          "url": "https://bugs.python.org/issue39603"
+        },
+        {
+          "url": "https://lists.debian.org/debian-lts-announce/2020/11/msg00032.html"
+        },
+        {
+          "url": "https://lists.debian.org/debian-lts-announce/2023/05/msg00024.html"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BW4GCLQISJCOEGQNIMVUZDQMIY6RR6CC/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HDQ2THWU4GPV4Y5H5WW5PFMSWXL2CRFD/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/JWMAVY4T4257AZHTF2RZJKNJNSJFY24O/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/OXI72HIHMXCQFWTULUXDG7VDA2BCYL4Y/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QOX7DGMMWWL6POCRYGAUCISOLR2IG3XV/"
+        },
+        {
+          "url": "https://python-security.readthedocs.io/vuln/http-header-injection-method.html"
+        },
+        {
+          "url": "https://security.gentoo.org/glsa/202101-18"
+        },
+        {
+          "url": "https://security.netapp.com/advisory/ntap-20201023-0001/"
+        },
+        {
+          "url": "https://usn.ubuntu.com/4581-1/"
+        },
+        {
+          "url": "https://www.oracle.com/security-alerts/cpuoct2021.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:generic/python@3.7.3?package-id=0969bdfee1fd85b2"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:76cc70c7-3fa2-48ad-9d65-60da329c6383",
+      "id": "CVE-2020-27619",
+      "source": {
+        "name": "nvd-cpe",
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-27619"
+      },
+      "references": [
+        {
+          "id": "CVE-2020-27619",
+          "source": {
+            "name": "nvd-cpe",
+            "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-27619"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "score": 7.5,
+          "severity": "critical",
+          "method": "CVSSv2",
+          "vector": "AV:N/AC:L/Au:N/C:P/I:P/A:P"
+        },
+        {
+          "score": 9.8,
+          "severity": "critical",
+          "method": "CVSSv31",
+          "vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"
+        }
+      ],
+      "description": "In Python 3 through 3.9.0, the Lib/test/multibytecodec_support.py CJK codec tests call eval() on content retrieved via HTTP.",
+      "advisories": [
+        {
+          "url": "https://bugs.python.org/issue41944"
+        },
+        {
+          "url": "https://github.com/python/cpython/commit/2ef5caa58febc8968e670e39e3d37cf8eef3cab8"
+        },
+        {
+          "url": "https://github.com/python/cpython/commit/43e523103886af66d6c27cd72431b5d9d14cd2a9"
+        },
+        {
+          "url": "https://github.com/python/cpython/commit/6c6c256df3636ff6f6136820afaefa5a10a3ac33"
+        },
+        {
+          "url": "https://github.com/python/cpython/commit/b664a1df4ee71d3760ab937653b10997081b1794"
+        },
+        {
+          "url": "https://github.com/python/cpython/commit/e912e945f2960029d039d3390ea08835ad39374b"
+        },
+        {
+          "url": "https://lists.apache.org/thread.html/r58af02e294bd07f487e2c64ffc0a29b837db5600e33b6e698b9d696b%40%3Cissues.bookkeeper.apache.org%3E"
+        },
+        {
+          "url": "https://lists.apache.org/thread.html/rf4c02775860db415b4955778a131c2795223f61cb8c6a450893651e4%40%3Cissues.bookkeeper.apache.org%3E"
+        },
+        {
+          "url": "https://lists.apache.org/thread.html/rf9fa47ab66495c78bb4120b0754dd9531ca2ff0430f6685ac9b07772%40%3Cdev.mina.apache.org%3E"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/RSLQD5CCM75IZGAMBDGUZEATYU5YSGJ7/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SGIY6I4YS3WOXAK4SXKIEOC2G4VZKIR7/"
+        },
+        {
+          "url": "https://security.netapp.com/advisory/ntap-20201123-0004/"
+        },
+        {
+          "url": "https://www.oracle.com/security-alerts/cpujul2022.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:generic/python@3.7.3?package-id=0969bdfee1fd85b2"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:bd237898-bdfc-4c6c-aec6-d75af81d5b3a",
+      "id": "CVE-2020-8315",
+      "source": {
+        "name": "nvd-cpe",
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-8315"
+      },
+      "references": [
+        {
+          "id": "CVE-2020-8315",
+          "source": {
+            "name": "nvd-cpe",
+            "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-8315"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "score": 4.3,
+          "severity": "medium",
+          "method": "CVSSv2",
+          "vector": "AV:N/AC:M/Au:N/C:N/I:P/A:N"
+        },
+        {
+          "score": 5.5,
+          "severity": "medium",
+          "method": "CVSSv31",
+          "vector": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N"
+        }
+      ],
+      "description": "In Python (CPython) 3.6 through 3.6.10, 3.7 through 3.7.6, and 3.8 through 3.8.1, an insecure dependency load upon launch on Windows 7 may result in an attacker's copy of api-ms-win-core-path-l1-1-0.dll being loaded and used instead of the system's copy. Windows 8 and later are unaffected.",
+      "advisories": [
+        {
+          "url": "https://bugs.python.org/issue39401"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:generic/python@3.7.3?package-id=0969bdfee1fd85b2"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:ed7cbf53-02dd-4941-a657-19b938eb42a1",
+      "id": "CVE-2020-8492",
+      "source": {
+        "name": "nvd-cpe",
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-8492"
+      },
+      "references": [
+        {
+          "id": "CVE-2020-8492",
+          "source": {
+            "name": "nvd-cpe",
+            "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-8492"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "score": 7.1,
+          "severity": "medium",
+          "method": "CVSSv2",
+          "vector": "AV:N/AC:M/Au:N/C:N/I:N/A:C"
+        },
+        {
+          "score": 6.5,
+          "severity": "medium",
+          "method": "CVSSv31",
+          "vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"
+        }
+      ],
+      "description": "Python 2.7 through 2.7.17, 3.5 through 3.5.9, 3.6 through 3.6.10, 3.7 through 3.7.6, and 3.8 through 3.8.1 allows an HTTP server to conduct Regular Expression Denial of Service (ReDoS) attacks against a client because of urllib.request.AbstractBasicAuthHandler catastrophic backtracking.",
+      "advisories": [
+        {
+          "url": "http://lists.opensuse.org/opensuse-security-announce/2020-03/msg00003.html"
+        },
+        {
+          "url": "https://bugs.python.org/issue39503"
+        },
+        {
+          "url": "https://github.com/python/cpython/pull/18284"
+        },
+        {
+          "url": "https://lists.apache.org/thread.html/rdb31a608dd6758c6093fd645aea3fbf022dd25b37109b6aaea5bc0b5%40%3Ccommits.cassandra.apache.org%3E"
+        },
+        {
+          "url": "https://lists.apache.org/thread.html/rfec113c733162b39633fd86a2d0f34bf42ac35f711b3ec1835c774da%40%3Ccommits.cassandra.apache.org%3E"
+        },
+        {
+          "url": "https://lists.debian.org/debian-lts-announce/2020/07/msg00011.html"
+        },
+        {
+          "url": "https://lists.debian.org/debian-lts-announce/2023/05/msg00024.html"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/7WOKDEXLYW5UQ4S7PA7E37IITOC7C56J/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/A5NSAX4SC3V64PGZUPH7PRDLSON34Q5A/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/APGWEMYZIY5VHLCSZ3HD67PA5Z2UQFGH/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/UESGYI5XDAHJBATEZN3MHNDUBDH47AS6/"
+        },
+        {
+          "url": "https://python-security.readthedocs.io/vuln/urllib-basic-auth-regex.html"
+        },
+        {
+          "url": "https://security.gentoo.org/glsa/202005-09"
+        },
+        {
+          "url": "https://security.netapp.com/advisory/ntap-20200221-0001/"
+        },
+        {
+          "url": "https://usn.ubuntu.com/4333-1/"
+        },
+        {
+          "url": "https://usn.ubuntu.com/4333-2/"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:generic/python@3.7.3?package-id=0969bdfee1fd85b2"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:5ddc1d1b-23d2-4e65-bc45-667d2e123cc4",
+      "id": "CVE-2021-23336",
+      "source": {
+        "name": "nvd-cpe",
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-23336"
+      },
+      "references": [
+        {
+          "id": "CVE-2021-23336",
+          "source": {
+            "name": "nvd-cpe",
+            "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-23336"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "score": 4,
+          "severity": "medium",
+          "method": "CVSSv2",
+          "vector": "AV:N/AC:H/Au:N/C:N/I:P/A:P"
+        },
+        {
+          "score": 5.9,
+          "severity": "medium",
+          "method": "CVSSv31",
+          "vector": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:H"
+        },
+        {
+          "score": 5.9,
+          "severity": "medium",
+          "method": "CVSSv31",
+          "vector": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:H"
+        }
+      ],
+      "description": "The package python/cpython from 0 and before 3.6.13, from 3.7.0 and before 3.7.10, from 3.8.0 and before 3.8.8, from 3.9.0 and before 3.9.2 are vulnerable to Web Cache Poisoning via urllib.parse.parse_qsl and urllib.parse.parse_qs by using a vector called parameter cloaking. When the attacker can separate query parameters using a semicolon (;), they can cause a difference in the interpretation of the request between the proxy (running with default configuration) and the server. This can result in malicious requests being cached as completely safe ones, as the proxy would usually not see the semicolon as a separator, and therefore would not include it in a cache key of an unkeyed parameter.",
+      "advisories": [
+        {
+          "url": "http://www.openwall.com/lists/oss-security/2021/02/19/4"
+        },
+        {
+          "url": "http://www.openwall.com/lists/oss-security/2021/05/01/2"
+        },
+        {
+          "url": "https://github.com/python/cpython/pull/24297"
+        },
+        {
+          "url": "https://lists.apache.org/thread.html/ra8ce70088ba291f358e077cafdb14d174b7a1ce9a9d86d1b332d6367%40%3Cusers.airflow.apache.org%3E"
+        },
+        {
+          "url": "https://lists.apache.org/thread.html/rc005f4de9d9b0ba943ceb8ff5a21a5c6ff8a9df52632476698d99432%40%3Cannounce.apache.org%3E"
+        },
+        {
+          "url": "https://lists.apache.org/thread.html/rf9fa47ab66495c78bb4120b0754dd9531ca2ff0430f6685ac9b07772%40%3Cdev.mina.apache.org%3E"
+        },
+        {
+          "url": "https://lists.debian.org/debian-lts-announce/2021/02/msg00030.html"
+        },
+        {
+          "url": "https://lists.debian.org/debian-lts-announce/2021/04/msg00005.html"
+        },
+        {
+          "url": "https://lists.debian.org/debian-lts-announce/2021/04/msg00015.html"
+        },
+        {
+          "url": "https://lists.debian.org/debian-lts-announce/2023/09/msg00022.html"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3EPYWWFDV22CJ5AOH5VCE72DOASZZ255/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3YKKDLXL3UEZ3J426C2XTBS63AHE46SM/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/46N6A52EGSXHJYCZWVMBJJIH4NWIV2B5/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FONHJIOZOFD7CD35KZL6SVBUTMBPGZGA/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HCQTCSP6SCVIYNIRUJC5X7YBVUHPLSC4/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HZTM7KLHFCE3LWSEVO2NAFLUHMGYMCRY/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/IHQDU7NXA7EWAE4W7VO6MURVJIULEPPR/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KJXCMHLY7H3FIYLE4OKDYUILU2CCRUCZ/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LVNH6Z24IG3E67ZCQGGJ46FZB4XFLQNZ/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MNUN5SOMFL2BBKP6ZAICIIUPQKZDMGYO/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MP572OLHMS7MZO4KUPSCIMSZIA5IZZ62/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/N6VXJZSZ6N64AILJX4CTMACYGQGHHD5C/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/NJSCSN722JO2E2AGPWD4NTGVELVRPB4R/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/NODWHDIFBQE5RU5PUWUVE47JOT5VCMJ2/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/OAGSWNGZJ6HQ5ISA67SNMK3CJRKICET7/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/RSLQD5CCM75IZGAMBDGUZEATYU5YSGJ7/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SGIY6I4YS3WOXAK4SXKIEOC2G4VZKIR7/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TFTELUMWZE3KV3JB2H5EE6VFRZFRD5MV/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/W2LSKBEFI5SYEY5FM6ICZVZM5WRQUCS4/"
+        },
+        {
+          "url": "https://security.gentoo.org/glsa/202104-04"
+        },
+        {
+          "url": "https://security.netapp.com/advisory/ntap-20210326-0004/"
+        },
+        {
+          "url": "https://snyk.io/blog/cache-poisoning-in-popular-open-source-packages/"
+        },
+        {
+          "url": "https://snyk.io/vuln/SNYK-UPSTREAM-PYTHONCPYTHON-1074933"
+        },
+        {
+          "url": "https://www.oracle.com//security-alerts/cpujul2021.html"
+        },
+        {
+          "url": "https://www.oracle.com/security-alerts/cpuApr2021.html"
+        },
+        {
+          "url": "https://www.oracle.com/security-alerts/cpujan2022.html"
+        },
+        {
+          "url": "https://www.oracle.com/security-alerts/cpuoct2021.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:generic/python@3.7.3?package-id=0969bdfee1fd85b2"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:2b7e1742-ddc1-431b-b457-9b323df5b5ae",
+      "id": "CVE-2021-28861",
+      "source": {
+        "name": "nvd-cpe",
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-28861"
+      },
+      "references": [
+        {
+          "id": "CVE-2021-28861",
+          "source": {
+            "name": "nvd-cpe",
+            "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-28861"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "score": 7.4,
+          "severity": "high",
+          "method": "CVSSv31",
+          "vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:N"
+        }
+      ],
+      "description": "Python 3.x through 3.10 has an open redirection vulnerability in lib/http/server.py due to no protection against multiple (/) at the beginning of URI path which may leads to information disclosure. NOTE: this is disputed by a third party because the http.server.html documentation page states \"Warning: http.server is not recommended for production. It only implements basic security checks.\"",
+      "advisories": [
+        {
+          "url": "https://bugs.python.org/issue43223"
+        },
+        {
+          "url": "https://github.com/python/cpython/pull/24848"
+        },
+        {
+          "url": "https://github.com/python/cpython/pull/93879"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/2TRINJE3INWDVIHIABW4L2NP3RUSK7BJ/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/5LTSPFIULY2GZJN3QYNFVM4JSU6H4D6J/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/5OABQ5CMPQETJLFHROAXDIDXCMDTNVYG/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DISZAFSIQ7IAPAEQTC7G2Z5QUA2V2PSW/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HPX4XHT2FGVQYLY2STT2MRVENILNZTTU/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/I3MQT5ZE3QH5PVDJMERTBOCILHK35CBE/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/IFGV7P2PYFBMK32OKHCAC2ZPJQV5AUDF/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KRGKPYA5YHIXQAMRIXO5DSCX7D4UUW4Q/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/OKYE2DOI2X7WZXAWTQJZAXYIWM37HDCY/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QLE5INSVJUZJGY5OJXV6JREXWD7UDHYN/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/S7G66SRWUM36ENQ3X6LAIG7HAB27D4XJ/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TZEPOPUFC42KXXSLFPZ47ZZRGPOR7SQE/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/WXF6MQ74HVIDDSR5AE2UDR24I6D4FEPC/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/X46T4EFTIBXZRYTGASBDEZGYJINH2OWV/"
+        },
+        {
+          "url": "https://security.gentoo.org/glsa/202305-02"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:generic/python@3.7.3?package-id=0969bdfee1fd85b2"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:0c835ae0-3a3e-46aa-9394-bf710391e2d3",
+      "id": "CVE-2021-3177",
+      "source": {
+        "name": "nvd-cpe",
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-3177"
+      },
+      "references": [
+        {
+          "id": "CVE-2021-3177",
+          "source": {
+            "name": "nvd-cpe",
+            "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-3177"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "score": 7.5,
+          "severity": "critical",
+          "method": "CVSSv2",
+          "vector": "AV:N/AC:L/Au:N/C:P/I:P/A:P"
+        },
+        {
+          "score": 9.8,
+          "severity": "critical",
+          "method": "CVSSv31",
+          "vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"
+        }
+      ],
+      "description": "Python 3.x through 3.9.1 has a buffer overflow in PyCArg_repr in _ctypes/callproc.c, which may lead to remote code execution in certain Python applications that accept floating-point numbers as untrusted input, as demonstrated by a 1e300 argument to c_double.from_param. This occurs because sprintf is used unsafely.",
+      "advisories": [
+        {
+          "url": "https://bugs.python.org/issue42938"
+        },
+        {
+          "url": "https://github.com/python/cpython/pull/24239"
+        },
+        {
+          "url": "https://lists.apache.org/thread.html/rf9fa47ab66495c78bb4120b0754dd9531ca2ff0430f6685ac9b07772%40%3Cdev.mina.apache.org%3E"
+        },
+        {
+          "url": "https://lists.debian.org/debian-lts-announce/2021/04/msg00005.html"
+        },
+        {
+          "url": "https://lists.debian.org/debian-lts-announce/2022/02/msg00013.html"
+        },
+        {
+          "url": "https://lists.debian.org/debian-lts-announce/2023/05/msg00024.html"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BRHOCQYX3QLDGDQGTWQAUUT2GGIZCZUO/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CCFZMVRQUKCBQIG5F2CBVADK63NFSE4A/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FONHJIOZOFD7CD35KZL6SVBUTMBPGZGA/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FPE7SMXYUIWPOIZV4DQYXODRXMFX3C5E/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HCQTCSP6SCVIYNIRUJC5X7YBVUHPLSC4/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MGSV6BJQLRQ6RKVUXK7JGU7TP4QFGQXC/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MP572OLHMS7MZO4KUPSCIMSZIA5IZZ62/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/NODWHDIFBQE5RU5PUWUVE47JOT5VCMJ2/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/NQPARTLNSFQVMMQHPNBFOCOZOO3TMQNA/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/NXSMBHES3ANXXS2RSO5G6Q24BR4B2PWK/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/V6XJAULOS5JVB2L67NCKKMJ5NTKZJBSD/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/Y4KSYYWMGAKOA2JVCQA422OINT6CKQ7O/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YDTZVGSXQ7HR7OCGSUHTRNTMBG43OMKU/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/Z7GZV74KM72O2PEJN2C4XP3V5Q5MZUOO/"
+        },
+        {
+          "url": "https://news.ycombinator.com/item?id=26185005"
+        },
+        {
+          "url": "https://python-security.readthedocs.io/vuln/ctypes-buffer-overflow-pycarg_repr.html"
+        },
+        {
+          "url": "https://security.gentoo.org/glsa/202101-18"
+        },
+        {
+          "url": "https://security.netapp.com/advisory/ntap-20210226-0003/"
+        },
+        {
+          "url": "https://www.oracle.com//security-alerts/cpujul2021.html"
+        },
+        {
+          "url": "https://www.oracle.com/security-alerts/cpujan2022.html"
+        },
+        {
+          "url": "https://www.oracle.com/security-alerts/cpujul2022.html"
+        },
+        {
+          "url": "https://www.oracle.com/security-alerts/cpuoct2021.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:generic/python@3.7.3?package-id=0969bdfee1fd85b2"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:2c06d81e-fea9-467c-acbe-3b515300f5a2",
+      "id": "CVE-2021-3426",
+      "source": {
+        "name": "nvd-cpe",
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-3426"
+      },
+      "references": [
+        {
+          "id": "CVE-2021-3426",
+          "source": {
+            "name": "nvd-cpe",
+            "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-3426"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "score": 2.7,
+          "severity": "medium",
+          "method": "CVSSv2",
+          "vector": "AV:A/AC:L/Au:S/C:P/I:N/A:N"
+        },
+        {
+          "score": 5.7,
+          "severity": "medium",
+          "method": "CVSSv31",
+          "vector": "CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N"
+        }
+      ],
+      "description": "There's a flaw in Python 3's pydoc. A local or adjacent attacker who discovers or is able to convince another local or adjacent user to start a pydoc server could access the server and use it to disclose sensitive information belonging to the other user that they would not normally be able to access. The highest risk of this flaw is to data confidentiality. This flaw affects Python versions before 3.8.9, Python versions before 3.9.3 and Python versions before 3.10.0a7.",
+      "advisories": [
+        {
+          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1935913"
+        },
+        {
+          "url": "https://lists.debian.org/debian-lts-announce/2021/04/msg00005.html"
+        },
+        {
+          "url": "https://lists.debian.org/debian-lts-announce/2023/06/msg00039.html"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/25HVHLBGO2KNPXJ3G426QEYSSCECJDU5/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BF2K7HEWADHN6P52R3QLIOX27U3DJ4HI/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DQYPUKLLBOZMKFPO7RD7CENTXHUUEUV7/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LM5V4VPLBHBEASSAROYPSHXGXGGPHNOE/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/N6VXJZSZ6N64AILJX4CTMACYGQGHHD5C/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QNGAFMPIYIVJ47FCF2NK2PIX22HUG35B/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VPX7Y5GQDNB4FJTREWONGC4ZSVH7TGHF/"
+        },
+        {
+          "url": "https://security.gentoo.org/glsa/202104-04"
+        },
+        {
+          "url": "https://security.netapp.com/advisory/ntap-20210629-0003/"
+        },
+        {
+          "url": "https://www.oracle.com/security-alerts/cpujan2022.html"
+        },
+        {
+          "url": "https://www.oracle.com/security-alerts/cpuoct2021.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:generic/python@3.7.3?package-id=0969bdfee1fd85b2"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:39c352f7-678e-4016-8ac7-703d837ef9ed",
+      "id": "CVE-2021-3733",
+      "source": {
+        "name": "nvd-cpe",
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-3733"
+      },
+      "references": [
+        {
+          "id": "CVE-2021-3733",
+          "source": {
+            "name": "nvd-cpe",
+            "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-3733"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "score": 4,
+          "severity": "medium",
+          "method": "CVSSv2",
+          "vector": "AV:N/AC:L/Au:S/C:N/I:N/A:P"
+        },
+        {
+          "score": 6.5,
+          "severity": "medium",
+          "method": "CVSSv31",
+          "vector": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"
+        }
+      ],
+      "description": "There's a flaw in urllib's AbstractBasicAuthHandler class. An attacker who controls a malicious HTTP server that an HTTP client (such as web browser) connects to, could trigger a Regular Expression Denial of Service (ReDOS) during an authentication request with a specially crafted payload that is sent by the server to the client. The greatest threat that this flaw poses is to application availability.",
+      "advisories": [
+        {
+          "url": "https://bugs.python.org/issue43075"
+        },
+        {
+          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1995234"
+        },
+        {
+          "url": "https://github.com/python/cpython/commit/7215d1ae25525c92b026166f9d5cac85fb"
+        },
+        {
+          "url": "https://github.com/python/cpython/pull/24391"
+        },
+        {
+          "url": "https://lists.debian.org/debian-lts-announce/2023/05/msg00024.html"
+        },
+        {
+          "url": "https://lists.debian.org/debian-lts-announce/2023/06/msg00039.html"
+        },
+        {
+          "url": "https://security.netapp.com/advisory/ntap-20220407-0001/"
+        },
+        {
+          "url": "https://ubuntu.com/security/CVE-2021-3733"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:generic/python@3.7.3?package-id=0969bdfee1fd85b2"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:c1a50103-d443-4217-a9c3-69f77020491c",
+      "id": "CVE-2021-3737",
+      "source": {
+        "name": "nvd-cpe",
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-3737"
+      },
+      "references": [
+        {
+          "id": "CVE-2021-3737",
+          "source": {
+            "name": "nvd-cpe",
+            "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-3737"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "score": 7.1,
+          "severity": "high",
+          "method": "CVSSv2",
+          "vector": "AV:N/AC:M/Au:N/C:N/I:N/A:C"
+        },
+        {
+          "score": 7.5,
+          "severity": "high",
+          "method": "CVSSv31",
+          "vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"
+        }
+      ],
+      "description": "A flaw was found in python. An improperly handled HTTP response in the HTTP client code of python may allow a remote attacker, who controls the HTTP server, to make the client script enter an infinite loop, consuming CPU time. The highest threat from this vulnerability is to system availability.",
+      "advisories": [
+        {
+          "url": "https://bugs.python.org/issue44022"
+        },
+        {
+          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1995162"
+        },
+        {
+          "url": "https://github.com/python/cpython/pull/25916"
+        },
+        {
+          "url": "https://github.com/python/cpython/pull/26503"
+        },
+        {
+          "url": "https://lists.debian.org/debian-lts-announce/2023/05/msg00024.html"
+        },
+        {
+          "url": "https://lists.debian.org/debian-lts-announce/2023/06/msg00039.html"
+        },
+        {
+          "url": "https://python-security.readthedocs.io/vuln/urllib-100-continue-loop.html"
+        },
+        {
+          "url": "https://security.netapp.com/advisory/ntap-20220407-0009/"
+        },
+        {
+          "url": "https://ubuntu.com/security/CVE-2021-3737"
+        },
+        {
+          "url": "https://www.oracle.com/security-alerts/cpujul2022.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:generic/python@3.7.3?package-id=0969bdfee1fd85b2"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:437be945-337b-4c05-955c-876f32ff28c8",
+      "id": "CVE-2021-4189",
+      "source": {
+        "name": "nvd-cpe",
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-4189"
+      },
+      "references": [
+        {
+          "id": "CVE-2021-4189",
+          "source": {
+            "name": "nvd-cpe",
+            "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-4189"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "score": 5.3,
+          "severity": "medium",
+          "method": "CVSSv31",
+          "vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"
+        }
+      ],
+      "description": "A flaw was found in Python, specifically in the FTP (File Transfer Protocol) client library in PASV (passive) mode. The issue is how the FTP client trusts the host from the PASV response by default. This flaw allows an attacker to set up a malicious FTP server that can trick FTP clients into connecting back to a given IP address and port. This vulnerability could lead to FTP client scanning ports, which otherwise would not have been possible.",
+      "advisories": [
+        {
+          "url": "https://access.redhat.com/security/cve/CVE-2021-4189"
+        },
+        {
+          "url": "https://bugs.python.org/issue43285"
+        },
+        {
+          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2036020"
+        },
+        {
+          "url": "https://github.com/python/cpython/commit/0ab152c6b5d95caa2dc1a30fa96e10258b5f188e"
+        },
+        {
+          "url": "https://lists.debian.org/debian-lts-announce/2023/05/msg00024.html"
+        },
+        {
+          "url": "https://lists.debian.org/debian-lts-announce/2023/06/msg00039.html"
+        },
+        {
+          "url": "https://python-security.readthedocs.io/vuln/ftplib-pasv.html"
+        },
+        {
+          "url": "https://security-tracker.debian.org/tracker/CVE-2021-4189"
+        },
+        {
+          "url": "https://security.netapp.com/advisory/ntap-20221104-0004/"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:generic/python@3.7.3?package-id=0969bdfee1fd85b2"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:2057f028-8331-4bdc-a840-8e4e1b83492b",
+      "id": "CVE-2022-0391",
+      "source": {
+        "name": "nvd-cpe",
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-0391"
+      },
+      "references": [
+        {
+          "id": "CVE-2022-0391",
+          "source": {
+            "name": "nvd-cpe",
+            "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-0391"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "score": 5,
+          "severity": "high",
+          "method": "CVSSv2",
+          "vector": "AV:N/AC:L/Au:N/C:N/I:P/A:N"
+        },
+        {
+          "score": 7.5,
+          "severity": "high",
+          "method": "CVSSv31",
+          "vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N"
+        }
+      ],
+      "description": "A flaw was found in Python, specifically within the urllib.parse module. This module helps break Uniform Resource Locator (URL) strings into components. The issue involves how the urlparse method does not sanitize input and allows characters like '\\r' and '\\n' in the URL path. This flaw allows an attacker to input a crafted URL, leading to injection attacks. This flaw affects Python versions prior to 3.10.0b1, 3.9.5, 3.8.11, 3.7.11 and 3.6.14.",
+      "advisories": [
+        {
+          "url": "https://bugs.python.org/issue43882"
+        },
+        {
+          "url": "https://lists.debian.org/debian-lts-announce/2023/09/msg00022.html"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CSD2YBXP3ZF44E44QMIIAR5VTO35KTRB/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/UDBDBAU6HUPZHISBOARTXZ5GKHF2VH5U/"
+        },
+        {
+          "url": "https://security.gentoo.org/glsa/202305-02"
+        },
+        {
+          "url": "https://security.netapp.com/advisory/ntap-20220225-0009/"
+        },
+        {
+          "url": "https://www.oracle.com/security-alerts/cpuapr2022.html"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:generic/python@3.7.3?package-id=0969bdfee1fd85b2"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:206c0931-5565-49be-a89d-fed14398c940",
+      "id": "CVE-2022-37454",
+      "source": {
+        "name": "nvd-cpe",
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-37454"
+      },
+      "references": [
+        {
+          "id": "CVE-2022-37454",
+          "source": {
+            "name": "nvd-cpe",
+            "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-37454"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "score": 9.8,
+          "severity": "critical",
+          "method": "CVSSv31",
+          "vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"
+        }
+      ],
+      "description": "The Keccak XKCP SHA-3 reference implementation before fdc6fef has an integer overflow and resultant buffer overflow that allows attackers to execute arbitrary code or eliminate expected cryptographic properties. This occurs in the sponge function interface.",
+      "advisories": [
+        {
+          "url": "https://csrc.nist.gov/projects/hash-functions/sha-3-project"
+        },
+        {
+          "url": "https://eprint.iacr.org/2023/331"
+        },
+        {
+          "url": "https://github.com/XKCP/XKCP/security/advisories/GHSA-6w4m-2xhg-2658"
+        },
+        {
+          "url": "https://lists.debian.org/debian-lts-announce/2022/10/msg00041.html"
+        },
+        {
+          "url": "https://lists.debian.org/debian-lts-announce/2022/11/msg00000.html"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3ALQ6BDDPX5HU5YBQOBMDVAA2TSGDKIJ/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CMIEXLMTW5GO36HTFFWIPB3OHZXCT3G4/"
+        },
+        {
+          "url": "https://mouha.be/sha-3-buffer-overflow/"
+        },
+        {
+          "url": "https://news.ycombinator.com/item?id=33281106"
+        },
+        {
+          "url": "https://news.ycombinator.com/item?id=35050307"
+        },
+        {
+          "url": "https://security.gentoo.org/glsa/202305-02"
+        },
+        {
+          "url": "https://www.debian.org/security/2022/dsa-5267"
+        },
+        {
+          "url": "https://www.debian.org/security/2022/dsa-5269"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:generic/python@3.7.3?package-id=0969bdfee1fd85b2"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:5bac5f0a-1f97-4422-b257-5766bc3c2d96",
+      "id": "CVE-2022-42919",
+      "source": {
+        "name": "nvd-cpe",
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-42919"
+      },
+      "references": [
+        {
+          "id": "CVE-2022-42919",
+          "source": {
+            "name": "nvd-cpe",
+            "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-42919"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "score": 7.8,
+          "severity": "high",
+          "method": "CVSSv31",
+          "vector": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"
+        }
+      ],
+      "description": "Python 3.9.x before 3.9.16 and 3.10.x before 3.10.9 on Linux allows local privilege escalation in a non-default configuration. The Python multiprocessing library, when used with the forkserver start method on Linux, allows pickles to be deserialized from any user in the same machine local network namespace, which in many system configurations means any user on the same machine. Pickles can execute arbitrary code. Thus, this allows for local user privilege escalation to the user that any forkserver process is running as. Setting multiprocessing.util.abstract_sockets_supported to False is a workaround. The forkserver start method for multiprocessing is not the default start method. This issue is Linux specific because only Linux supports abstract namespace sockets. CPython before 3.9 does not make use of Linux abstract namespace sockets by default. Support for users manually specifying an abstract namespace socket was added as a bugfix in 3.7.8 and 3.8.3, but users would need to make specific uncommon API calls in order to do that in CPython before 3.9.",
+      "advisories": [
+        {
+          "url": "https://github.com/python/cpython/compare/v3.10.8...v3.10.9"
+        },
+        {
+          "url": "https://github.com/python/cpython/compare/v3.9.15...v3.9.16"
+        },
+        {
+          "url": "https://github.com/python/cpython/issues/97514"
+        },
+        {
+          "url": "https://github.com/python/cpython/issues/97514#issuecomment-1310277840"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FKGCQPIVHEAIJ77R3RSNSQWYBUDVWDKU/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/P2LHWWEI5OBQ6RELULMVU6KMDYG4WZXH/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PI5DYIED6U26BGX5IRZWNCP6TY4M2ZGZ/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QLUGZSEAO3MBWGKCUSMKQIRYJZKJCIOB/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/R6KGIRHSENZ4QAB234Z36HVIDTRJ3MFI/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/RDK3ZZBRYFO47ET3N4BNTKVXN47U6ICY/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VCRKBB5Y5EWTJUNC7LK665WO64DDXSTN/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/XX6LLAXGZVZ327REY6MDZRMMP47LJ53P/"
+        },
+        {
+          "url": "https://security.gentoo.org/glsa/202305-02"
+        },
+        {
+          "url": "https://security.netapp.com/advisory/ntap-20221209-0006/"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:generic/python@3.7.3?package-id=0969bdfee1fd85b2"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:316eb2cf-5de0-4374-ba66-7b1641d19e82",
+      "id": "CVE-2022-45061",
+      "source": {
+        "name": "nvd-cpe",
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-45061"
+      },
+      "references": [
+        {
+          "id": "CVE-2022-45061",
+          "source": {
+            "name": "nvd-cpe",
+            "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-45061"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "score": 7.5,
+          "severity": "high",
+          "method": "CVSSv31",
+          "vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"
+        }
+      ],
+      "description": "An issue was discovered in Python before 3.11.1. An unnecessary quadratic algorithm exists in one path when processing some inputs to the IDNA (RFC 3490) decoder, such that a crafted, unreasonably long name being presented to the decoder could lead to a CPU denial of service. Hostnames are often supplied by remote servers that could be controlled by a malicious actor; in such a scenario, they could trigger excessive CPU consumption on the client attempting to make use of an attacker-supplied supposed hostname. For example, the attack payload could be placed in the Location header of an HTTP response with status code 302. A fix is planned in 3.11.1, 3.10.9, 3.9.16, 3.8.16, and 3.7.16.",
+      "advisories": [
+        {
+          "url": "https://github.com/python/cpython/issues/98433"
+        },
+        {
+          "url": "https://lists.debian.org/debian-lts-announce/2023/05/msg00024.html"
+        },
+        {
+          "url": "https://lists.debian.org/debian-lts-announce/2023/06/msg00039.html"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/2AOUKI72ACV6CHY2QUFO6VK2DNMVJ2MB/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/35YDIWCUMWTMDBWFRAVENFH6BLB65D6S/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/4WBZJNSALFGMPYTINIF57HAAK46U72WQ/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/63FS6VHY4DCS74HBTEINUDOECQ2X6ZCH/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/7WQPHKGNXUJC3TC3BDW5RKGROWRJVSFR/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/B3YI6JYARWU6GULWOHNUROSACT54XFFS/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/B4MYQ3IV6NWA4CKSXEHW45CH2YNDHEPH/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BWJREJHWVRBYDP43YB5WRL3QC7UBA7BR/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/GTPVDZDATRQFE6KAT6B4BQIQ4GRHIIIJ/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/IN26PWZTYG6IF3APLRXQJBVACQHZUPT2/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/JCDJXNBHWXNYUTOEV4H2HCFSRKV3SYL3/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/JTYVESWVBPD57ZJC35G5722Q6TS37WSB/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KNE4GMD45RGC2HWUAAIGTDHT5VJ2E4O4/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LKWAMPURWUV3DCCT4J7VHRF4NT2CFVBR/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/O67LRHDTJWH544KXB6KY4HMHQLYDXFPK/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ORVCQGJCCAVLN4DJDTWGREFCUWXKQRML/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PLQ2BNZVBBAQPV3SPRU24ZD37UYJJS7W/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QCKD4AFBHXIMHS64ZER2U7QRT33HNE7L/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QLUGZSEAO3MBWGKCUSMKQIRYJZKJCIOB/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/RDK3ZZBRYFO47ET3N4BNTKVXN47U6ICY/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/RH57BNT4VQERGEJ5SXNXSVMDYP66YD4H/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/RTN2OOLKYTG34DODUEJGT5MLC2PFGPBA/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/T3D5TX4TDJPXHXD2QICKTY3OCQC3JARP/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/UHVW73QZJMHA4MK7JBT7CXX7XSNYQEGF/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VCMDX6IFKLOA3NXUQEV524L5LHTPI2JI/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/X3EJ6J7PXVQOULBQZQGBXCXY6LFF6LZD/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/XXZJL3CNAFS5PAIR7K4RL62S3Y7THR7O/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YPNWZKXPKTNHS5FVMN7UQZ2UPCSEFJUK/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZB5YCMIRVX35RUB6XPOWKENCVCJEVDRK/"
+        },
+        {
+          "url": "https://security.gentoo.org/glsa/202305-02"
+        },
+        {
+          "url": "https://security.netapp.com/advisory/ntap-20221209-0007/"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:generic/python@3.7.3?package-id=0969bdfee1fd85b2"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:19b97587-b78c-4194-ab6b-5133af1fae93",
+      "id": "CVE-2022-48560",
+      "source": {
+        "name": "nvd-cpe",
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-48560"
+      },
+      "references": [
+        {
+          "id": "CVE-2022-48560",
+          "source": {
+            "name": "nvd-cpe",
+            "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-48560"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "score": 7.5,
+          "severity": "high",
+          "method": "CVSSv31",
+          "vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"
+        }
+      ],
+      "description": "A use-after-free exists in Python through 3.9 via heappushpop in heapq.",
+      "advisories": [
+        {
+          "url": "https://bugs.python.org/issue39421"
+        },
+        {
+          "url": "https://lists.debian.org/debian-lts-announce/2023/09/msg00022.html"
+        },
+        {
+          "url": "https://lists.debian.org/debian-lts-announce/2023/10/msg00017.html"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/JZ5OOBWNYWXFTZDMCGHJVGDLDTHLWITJ/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VO7Y2YZSDK3UYJD2KBGLXRTGNG6T326J/"
+        },
+        {
+          "url": "https://security.netapp.com/advisory/ntap-20230929-0008/"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:generic/python@3.7.3?package-id=0969bdfee1fd85b2"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:8cc87279-908f-4f37-85d7-91c63d49d8d1",
+      "id": "CVE-2022-48564",
+      "source": {
+        "name": "nvd-cpe",
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-48564"
+      },
+      "references": [
+        {
+          "id": "CVE-2022-48564",
+          "source": {
+            "name": "nvd-cpe",
+            "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-48564"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "score": 6.5,
+          "severity": "medium",
+          "method": "CVSSv31",
+          "vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"
+        }
+      ],
+      "description": "read_ints in plistlib.py in Python through 3.9.1 is vulnerable to a potential DoS attack via CPU and RAM exhaustion when processing malformed Apple Property List files in binary format.",
+      "advisories": [
+        {
+          "url": "https://bugs.python.org/issue42103"
+        },
+        {
+          "url": "https://lists.debian.org/debian-lts-announce/2023/10/msg00017.html"
+        },
+        {
+          "url": "https://security.netapp.com/advisory/ntap-20230929-0009/"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:generic/python@3.7.3?package-id=0969bdfee1fd85b2"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:b50cdd94-adc5-46db-b852-43cc83ac1188",
+      "id": "CVE-2022-48565",
+      "source": {
+        "name": "nvd-cpe",
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-48565"
+      },
+      "references": [
+        {
+          "id": "CVE-2022-48565",
+          "source": {
+            "name": "nvd-cpe",
+            "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-48565"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "score": 9.8,
+          "severity": "critical",
+          "method": "CVSSv31",
+          "vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"
+        }
+      ],
+      "description": "An XML External Entity (XXE) issue was discovered in Python through 3.9.1. The plistlib module no longer accepts entity declarations in XML plist files to avoid XML vulnerabilities.",
+      "advisories": [
+        {
+          "url": "https://bugs.python.org/issue42051"
+        },
+        {
+          "url": "https://lists.debian.org/debian-lts-announce/2023/09/msg00022.html"
+        },
+        {
+          "url": "https://lists.debian.org/debian-lts-announce/2023/10/msg00017.html"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/AFHYAGWBFBNUGWU6XWKBHTCV5NH77MB7/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BAYWJD576JUKLHCWKDLMJSUGTRDKPF3M/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KZRZRJHWLZ7MOJNPQBWGJVXMVYDC5BRA/"
+        },
+        {
+          "url": "https://security.netapp.com/advisory/ntap-20231006-0007/"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:generic/python@3.7.3?package-id=0969bdfee1fd85b2"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:2e560190-b51e-480b-9a21-1b5109d50c34",
+      "id": "CVE-2022-48566",
+      "source": {
+        "name": "nvd-cpe",
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-48566"
+      },
+      "references": [
+        {
+          "id": "CVE-2022-48566",
+          "source": {
+            "name": "nvd-cpe",
+            "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-48566"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "score": 5.9,
+          "severity": "medium",
+          "method": "CVSSv31",
+          "vector": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N"
+        }
+      ],
+      "description": "An issue was discovered in compare_digest in Lib/hmac.py in Python through 3.9.1. Constant-time-defeating optimisations were possible in the accumulator variable in hmac.compare_digest.",
+      "advisories": [
+        {
+          "url": "https://bugs.python.org/issue40791"
+        },
+        {
+          "url": "https://lists.debian.org/debian-lts-announce/2023/09/msg00022.html"
+        },
+        {
+          "url": "https://lists.debian.org/debian-lts-announce/2023/10/msg00017.html"
+        },
+        {
+          "url": "https://security.netapp.com/advisory/ntap-20231006-0013/"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:generic/python@3.7.3?package-id=0969bdfee1fd85b2"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:ba4b7093-f992-424f-852e-fac770f75d61",
+      "id": "CVE-2023-24329",
+      "source": {
+        "name": "nvd-cpe",
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-24329"
+      },
+      "references": [
+        {
+          "id": "CVE-2023-24329",
+          "source": {
+            "name": "nvd-cpe",
+            "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-24329"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "score": 7.5,
+          "severity": "high",
+          "method": "CVSSv31",
+          "vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N"
+        }
+      ],
+      "description": "An issue in the urllib.parse component of Python before 3.11.4 allows attackers to bypass blocklisting methods by supplying a URL that starts with blank characters.",
+      "advisories": [
+        {
+          "url": "https://github.com/python/cpython/issues/102153"
+        },
+        {
+          "url": "https://github.com/python/cpython/pull/99421"
+        },
+        {
+          "url": "https://lists.debian.org/debian-lts-announce/2023/09/msg00022.html"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6PEVICI7YNGGMSL3UCMWGE66QFLATH72/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DSL6NSOAXWBJJ67XPLSSC74MNKZF3BBO/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/EM2XLZSTXG44TMFXF4E6VTGKR2MQCW3G/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/F2NY75GFDZ5T6YPN44D3VMFT5SUVTOTG/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/GR5US3BYILYJ4SKBV6YBNPRUBAL5P2CN/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/H23OSKC6UG6IWOQAUPW74YUHWRWVXJP7/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/JZTLGV2HYFF4AMYJL25VDIGAIHCU7UPA/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LWC4WGXER5P6Q75RFGL7QUTPP3N5JR7T/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MZEHSXSCMA4WWQKXT6QV7AAR6SWNZ2VP/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/O5SP4RT3RRS434ZS2HQKQJ3VZW7YPKYR/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/OHHJHJRLEF3TDT2K3676CAUVRDD4CCMR/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PEUN6T22UJFXR7J5F6UUHCXXPKJ2DVHI/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PURM5CFDABEWAIWZFD2MQ7ZJGCPYSQ44/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/Q3J5N24ECS4B6MJDRO6UAYU6GPLYBDCL/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QRQHN7RWJQJHYP6E5EKESOYP5VDSHZG4/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/RA2MBEEES6L46OD64OBSVUUMGKNGMOWW/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/T4IDB5OAR5Y4UK3HLMZBW4WEL2B7YFMJ/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TZH26JGNZ5XYPZ5SAU3NKSBSPRE5OHTG/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/U2MZOJYGFCB5PPT6AKMAU72N7QOYWLBP/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/UONZWLB4QVLQIY5CPDLEUEKH6WX4VQMC/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/WTOAUJNDWZDRWVSXJ354AYZYKRMT56HU/"
+        },
+        {
+          "url": "https://pointernull.com/security/python-url-parse-problem.html"
+        },
+        {
+          "url": "https://security.netapp.com/advisory/ntap-20230324-0004/"
+        },
+        {
+          "url": "https://www.kb.cert.org/vuls/id/127587"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:generic/python@3.7.3?package-id=0969bdfee1fd85b2"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:005f61b9-68f5-46ae-8242-98d576797878",
+      "id": "CVE-2023-27043",
+      "source": {
+        "name": "nvd-cpe",
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-27043"
+      },
+      "references": [
+        {
+          "id": "CVE-2023-27043",
+          "source": {
+            "name": "nvd-cpe",
+            "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-27043"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "score": 5.3,
+          "severity": "medium",
+          "method": "CVSSv31",
+          "vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"
+        }
+      ],
+      "description": "The email module of Python through 3.11.3 incorrectly parses e-mail addresses that contain a special character. The wrong portion of an RFC2822 header is identified as the value of the addr-spec. In some applications, an attacker can bypass a protection mechanism in which application access is granted only after verifying receipt of e-mail to a specific domain (e.g., only @company.example.com addresses may be used for signup). This occurs in email/_parseaddr.py in recent versions of Python.",
+      "advisories": [
+        {
+          "url": "http://python.org"
+        },
+        {
+          "url": "https://github.com/python/cpython/issues/102988"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/4ZAEFSFZDNBNJPNOUTLG5COISGQDLMGV/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/75DTHSTNOFFNAWHXKMDXS7EJWC6W2FUC/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ARI7VDSNTQVXRQFM6IK5GSSLEIYV4VZH/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/N6M5I6OQHJABNEYY555HUMMKX3Y4P25Z/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/NEUNZSZ3CVSM2QWVYH3N2XGOCDWNYUA3/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ORLXS5YTKN65E2Q2NWKXMFS5FWQHRNZW/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/P2MAICLFDDO3QVNHTZ2OCERZQ34R2PIC/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/P2W2BZQIHMCKRI5FNBJERFYMS5PK6TAH/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PHVGRKQAGANCSGFI3QMYOCIMS4IFOZA5/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PU6Y2S5CBN5BWCBDAJFTGIBZLK3S2G3J/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/RDDC2VOX7OQC6OHMYTVD4HLFZIV6PYBC/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SINP4OVYNB2AGDYI2GS37EMW3H3F7XPZ/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SOX7BCN6YL7B3RFPEEXPIU5CMTEHJOKR/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VZXC32CJ7TWDPJO6GY2XIQRO7JZX5FLP/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/XWMBD4LNHWEXRI6YVFWJMTJQUL5WOFTS/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YQVY5C5REXWJIORJIL2FIL3ALOEJEF72/"
+        },
+        {
+          "url": "https://python-security.readthedocs.io/vuln/email-parseaddr-realname.html"
+        },
+        {
+          "url": "https://security.netapp.com/advisory/ntap-20230601-0003/"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:generic/python@3.7.3?package-id=0969bdfee1fd85b2"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:6bcfef70-c2da-432e-a7a9-45fc8ecd6dac",
+      "id": "CVE-2023-36632",
+      "source": {
+        "name": "nvd-cpe",
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-36632"
+      },
+      "references": [
+        {
+          "id": "CVE-2023-36632",
+          "source": {
+            "name": "nvd-cpe",
+            "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-36632"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "score": 7.5,
+          "severity": "high",
+          "method": "CVSSv31",
+          "vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"
+        }
+      ],
+      "description": "The legacy email.utils.parseaddr function in Python through 3.11.4 allows attackers to trigger \"RecursionError: maximum recursion depth exceeded while calling a Python object\" via a crafted argument. This argument is plausibly an untrusted value from an application's input data that was supposed to contain a name and an e-mail address. NOTE: email.utils.parseaddr is categorized as a Legacy API in the documentation of the Python email package. Applications should instead use the email.parser.BytesParser or email.parser.Parser class. NOTE: the vendor's perspective is that this is neither a vulnerability nor a bug. The email package is intended to have size limits and to throw an exception when limits are exceeded; they were exceeded by the example demonstration code.",
+      "advisories": [
+        {
+          "url": "https://docs.python.org/3/library/email.html"
+        },
+        {
+          "url": "https://docs.python.org/3/library/email.utils.html"
+        },
+        {
+          "url": "https://github.com/Daybreak2019/PoC_python3.9_Vul/blob/main/RecursionError-email.utils.parseaddr.py"
+        },
+        {
+          "url": "https://github.com/python/cpython/issues/103800"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:generic/python@3.7.3?package-id=0969bdfee1fd85b2"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:bb9db08e-b05a-4099-b0cd-bfcdf1533e12",
+      "id": "CVE-2023-40217",
+      "source": {
+        "name": "nvd-cpe",
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-40217"
+      },
+      "references": [
+        {
+          "id": "CVE-2023-40217",
+          "source": {
+            "name": "nvd-cpe",
+            "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-40217"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "score": 5.3,
+          "severity": "medium",
+          "method": "CVSSv31",
+          "vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"
+        }
+      ],
+      "description": "An issue was discovered in Python before 3.8.18, 3.9.x before 3.9.18, 3.10.x before 3.10.13, and 3.11.x before 3.11.5. It primarily affects servers (such as HTTP servers) that use TLS client authentication. If a TLS server-side socket is created, receives data into the socket buffer, and then is closed quickly, there is a brief window where the SSLSocket instance will detect the socket as \"not connected\" and won't initiate a handshake, but buffered data will still be readable from the socket buffer. This data will not be authenticated if the server-side TLS peer is expecting client certificate authentication, and is indistinguishable from valid TLS stream data. Data is limited in size to the amount that will fit in the buffer. (The TLS connection cannot directly be used for data exfiltration because the vulnerable code path requires that the connection be closed on initialization of the SSLSocket.)",
+      "advisories": [
+        {
+          "url": "https://lists.debian.org/debian-lts-announce/2023/09/msg00022.html"
+        },
+        {
+          "url": "https://lists.debian.org/debian-lts-announce/2023/10/msg00017.html"
+        },
+        {
+          "url": "https://mail.python.org/archives/list/security-announce%40python.org/thread/PEPLII27KYHLF4AK3ZQGKYNCRERG4YXY/"
+        },
+        {
+          "url": "https://security.netapp.com/advisory/ntap-20231006-0014/"
+        },
+        {
+          "url": "https://www.python.org/dev/security/"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:generic/python@3.7.3?package-id=0969bdfee1fd85b2"
+        }
+      ]
+    }
+  ]
+}
diff --git a/src/graph_notebook/notebooks/02-Neptune-Analytics/03-Sample-Use-Cases/03-Software-Bill-Of-Materials/example_sboms/02/gremlin-console-3-7-1_cydx.json b/src/graph_notebook/notebooks/02-Neptune-Analytics/03-Sample-Use-Cases/03-Software-Bill-Of-Materials/example_sboms/02/gremlin-console-3-7-1_cydx.json
new file mode 100644
index 00000000..94281c8e
--- /dev/null
+++ b/src/graph_notebook/notebooks/02-Neptune-Analytics/03-Sample-Use-Cases/03-Software-Bill-Of-Materials/example_sboms/02/gremlin-console-3-7-1_cydx.json
@@ -0,0 +1,20497 @@
+{
+  "$schema": "http://cyclonedx.org/schema/bom-1.5.schema.json",
+  "bomFormat": "CycloneDX",
+  "specVersion": "1.5",
+  "serialNumber": "urn:uuid:d91354a7-9d6b-46e8-bab8-f79f8cf01e5b",
+  "version": 1,
+  "metadata": {
+    "timestamp": "2024-01-29T09:38:20-09:00",
+    "tools": {
+      "components": [
+        {
+          "type": "application",
+          "author": "anchore",
+          "name": "grype",
+          "version": "0.74.3"
+        }
+      ]
+    },
+    "component": {
+      "bom-ref": "7c3cd9d6cf8db873",
+      "type": "container",
+      "name": "tinkerpop/gremlin-console",
+      "version": "sha256:4f965230983085ee60f63c8176f2d9a887d2e197dcecf95c36e20049f0495992"
+    },
+    "properties": [
+      {
+        "name": "syft:image:labels:maintainer",
+        "value": "dev@tinkerpop.apache.org"
+      }
+    ]
+  },
+  "components": [
+    {
+      "bom-ref": "pkg:apk/alpine/alpine-baselayout@3.4.3-r1?arch=x86_64&distro=alpine-3.18.5&package-id=baca676b3df82a63",
+      "type": "library",
+      "publisher": "Natanael Copa <ncopa@alpinelinux.org>",
+      "name": "alpine-baselayout",
+      "version": "3.4.3-r1",
+      "description": "Alpine base dir structure and init scripts",
+      "licenses": [
+        {
+          "license": {
+            "id": "GPL-2.0-only"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:alpine-baselayout:alpine-baselayout:3.4.3-r1:*:*:*:*:*:*:*",
+      "purl": "pkg:apk/alpine/alpine-baselayout@3.4.3-r1?arch=x86_64&distro=alpine-3.18.5",
+      "externalReferences": [
+        {
+          "url": "https://git.alpinelinux.org/cgit/aports/tree/main/alpine-baselayout",
+          "type": "distribution"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "apk-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "apk"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "apk-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:alpine-baselayout:alpine_baselayout:3.4.3-r1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:alpine_baselayout:alpine-baselayout:3.4.3-r1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:alpine_baselayout:alpine_baselayout:3.4.3-r1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:alpine:alpine-baselayout:3.4.3-r1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:alpine:alpine_baselayout:3.4.3-r1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:17b0acbb0089734604f8e7c44f1bc811a80410e28e4c08d88f3ca17246cbee8f"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/lib/apk/db/installed"
+        },
+        {
+          "name": "syft:metadata:gitCommitOfApkPort",
+          "value": "65502ca9379dd29d1ac4b0bf0dcf03a3dd1b324a"
+        },
+        {
+          "name": "syft:metadata:installedSize",
+          "value": "331776"
+        },
+        {
+          "name": "syft:metadata:originPackage",
+          "value": "alpine-baselayout"
+        },
+        {
+          "name": "syft:metadata:pullChecksum",
+          "value": "Q1zwvKMnYs1b6ZdPTBJ0Z7D5P3jyA="
+        },
+        {
+          "name": "syft:metadata:pullDependencies:0",
+          "value": "alpine-baselayout-data=3.4.3-r1"
+        },
+        {
+          "name": "syft:metadata:pullDependencies:1",
+          "value": "/bin/sh"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "8914"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:apk/alpine/alpine-baselayout-data@3.4.3-r1?arch=x86_64&upstream=alpine-baselayout&distro=alpine-3.18.5&package-id=85e34641ddeca26c",
+      "type": "library",
+      "publisher": "Natanael Copa <ncopa@alpinelinux.org>",
+      "name": "alpine-baselayout-data",
+      "version": "3.4.3-r1",
+      "description": "Alpine base dir structure and init scripts",
+      "licenses": [
+        {
+          "license": {
+            "id": "GPL-2.0-only"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:alpine-baselayout-data:alpine-baselayout-data:3.4.3-r1:*:*:*:*:*:*:*",
+      "purl": "pkg:apk/alpine/alpine-baselayout-data@3.4.3-r1?arch=x86_64&upstream=alpine-baselayout&distro=alpine-3.18.5",
+      "externalReferences": [
+        {
+          "url": "https://git.alpinelinux.org/cgit/aports/tree/main/alpine-baselayout",
+          "type": "distribution"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "apk-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "apk"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "apk-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:alpine-baselayout-data:alpine_baselayout_data:3.4.3-r1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:alpine_baselayout_data:alpine-baselayout-data:3.4.3-r1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:alpine_baselayout_data:alpine_baselayout_data:3.4.3-r1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:alpine-baselayout:alpine-baselayout-data:3.4.3-r1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:alpine-baselayout:alpine_baselayout_data:3.4.3-r1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:alpine_baselayout:alpine-baselayout-data:3.4.3-r1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:alpine_baselayout:alpine_baselayout_data:3.4.3-r1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:alpine:alpine-baselayout-data:3.4.3-r1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:alpine:alpine_baselayout_data:3.4.3-r1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:17b0acbb0089734604f8e7c44f1bc811a80410e28e4c08d88f3ca17246cbee8f"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/lib/apk/db/installed"
+        },
+        {
+          "name": "syft:metadata:gitCommitOfApkPort",
+          "value": "65502ca9379dd29d1ac4b0bf0dcf03a3dd1b324a"
+        },
+        {
+          "name": "syft:metadata:installedSize",
+          "value": "77824"
+        },
+        {
+          "name": "syft:metadata:originPackage",
+          "value": "alpine-baselayout"
+        },
+        {
+          "name": "syft:metadata:pullChecksum",
+          "value": "Q1YCAH7jdO2W816b85sUh9Z8av4Cc="
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "11705"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:apk/alpine/alpine-keys@2.4-r1?arch=x86_64&distro=alpine-3.18.5&package-id=c3e1269ff75aa1d8",
+      "type": "library",
+      "publisher": "Natanael Copa <ncopa@alpinelinux.org>",
+      "name": "alpine-keys",
+      "version": "2.4-r1",
+      "description": "Public keys for Alpine Linux packages",
+      "licenses": [
+        {
+          "license": {
+            "id": "MIT"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:alpine-keys:alpine-keys:2.4-r1:*:*:*:*:*:*:*",
+      "purl": "pkg:apk/alpine/alpine-keys@2.4-r1?arch=x86_64&distro=alpine-3.18.5",
+      "externalReferences": [
+        {
+          "url": "https://alpinelinux.org",
+          "type": "distribution"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "apk-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "apk"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "apk-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:alpine-keys:alpine_keys:2.4-r1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:alpine_keys:alpine-keys:2.4-r1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:alpine_keys:alpine_keys:2.4-r1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:alpine:alpine-keys:2.4-r1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:alpine:alpine_keys:2.4-r1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:17b0acbb0089734604f8e7c44f1bc811a80410e28e4c08d88f3ca17246cbee8f"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/lib/apk/db/installed"
+        },
+        {
+          "name": "syft:metadata:gitCommitOfApkPort",
+          "value": "aab68f8c9ab434a46710de8e12fb3206e2930a59"
+        },
+        {
+          "name": "syft:metadata:installedSize",
+          "value": "159744"
+        },
+        {
+          "name": "syft:metadata:originPackage",
+          "value": "alpine-keys"
+        },
+        {
+          "name": "syft:metadata:pullChecksum",
+          "value": "Q17Do9XvTHoWjQlRYJe7MhnKd8FTQ="
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "13360"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:apk/alpine/alsa-lib@1.2.9-r1?arch=x86_64&distro=alpine-3.18.5&package-id=84af028d92e1ce12",
+      "type": "library",
+      "publisher": "Natanael Copa <ncopa@alpinelinux.org>",
+      "name": "alsa-lib",
+      "version": "1.2.9-r1",
+      "description": "Advanced Linux Sound Architecture (ALSA) library",
+      "licenses": [
+        {
+          "license": {
+            "id": "LGPL-2.1-or-later"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:alsa-project:alsa-lib:1.2.9-r1:*:*:*:*:*:*:*",
+      "purl": "pkg:apk/alpine/alsa-lib@1.2.9-r1?arch=x86_64&distro=alpine-3.18.5",
+      "externalReferences": [
+        {
+          "url": "https://alsa-project.org/",
+          "type": "distribution"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "apk-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "apk"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "apk-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:alsa-project:alsa_lib:1.2.9-r1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:alsa_project:alsa-lib:1.2.9-r1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:alsa_project:alsa_lib:1.2.9-r1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:alsa-lib:alsa-lib:1.2.9-r1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:alsa-lib:alsa_lib:1.2.9-r1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:alsa_lib:alsa-lib:1.2.9-r1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:alsa_lib:alsa_lib:1.2.9-r1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:alsa:alsa-lib:1.2.9-r1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:alsa:alsa_lib:1.2.9-r1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:17b0acbb0089734604f8e7c44f1bc811a80410e28e4c08d88f3ca17246cbee8f"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/lib/apk/db/installed"
+        },
+        {
+          "name": "syft:metadata:gitCommitOfApkPort",
+          "value": "a5d78c0f47ebdd8521f0809ea7bc4b7ef526e1f7"
+        },
+        {
+          "name": "syft:metadata:installedSize",
+          "value": "1470464"
+        },
+        {
+          "name": "syft:metadata:originPackage",
+          "value": "alsa-lib"
+        },
+        {
+          "name": "syft:metadata:provides:0",
+          "value": "so:libasound.so.2=2.0.0"
+        },
+        {
+          "name": "syft:metadata:provides:1",
+          "value": "so:libatopology.so.2=2.0.0"
+        },
+        {
+          "name": "syft:metadata:provides:2",
+          "value": "cmd:aserver=1.2.9-r1"
+        },
+        {
+          "name": "syft:metadata:pullChecksum",
+          "value": "Q1Bid3XFe3LYDX5WrQuAzs8Xlw5wY="
+        },
+        {
+          "name": "syft:metadata:pullDependencies:0",
+          "value": "so:libc.musl-x86_64.so.1"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "467771"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/org.antlr/antlr4-runtime@4.9.1?package-id=4b5d6d14c26b0707",
+      "type": "library",
+      "group": "org.antlr",
+      "name": "antlr4-runtime",
+      "version": "4.9.1",
+      "licenses": [
+        {
+          "license": {
+            "name": "http://www.antlr.org/license.html"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:antlr4-runtime:antlr4-runtime:4.9.1:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/org.antlr/antlr4-runtime@4.9.1",
+      "externalReferences": [
+        {
+          "url": "",
+          "hashes": [
+            {
+              "alg": "SHA-1",
+              "content": "428664f05d2b7f7b7610204b5aa7c1763f62011a"
+            }
+          ],
+          "type": "build-meta"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:antlr4-runtime:antlr4_runtime:4.9.1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:antlr4_runtime:antlr4-runtime:4.9.1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:antlr4_runtime:antlr4_runtime:4.9.1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:antlr4:antlr4-runtime:4.9.1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:antlr4:antlr4_runtime:4.9.1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:antlr:antlr4-runtime:4.9.1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:antlr:antlr4_runtime:4.9.1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:b1dc62eecf8a6672534ff85086bc9d0ea8bb94cfd7e760c53734dad61f36012b"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-console/lib/antlr4-runtime-4.9.1.jar"
+        },
+        {
+          "name": "syft:metadata:-:artifactID",
+          "value": "antlr4-runtime"
+        },
+        {
+          "name": "syft:metadata:-:groupID",
+          "value": "org.antlr"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-console/lib/antlr4-runtime-4.9.1.jar"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:apk/alpine/apk-tools@2.14.0-r2?arch=x86_64&distro=alpine-3.18.5&package-id=e54b9e6921a9482e",
+      "type": "library",
+      "publisher": "Natanael Copa <ncopa@alpinelinux.org>",
+      "name": "apk-tools",
+      "version": "2.14.0-r2",
+      "description": "Alpine Package Keeper - package manager for alpine",
+      "licenses": [
+        {
+          "license": {
+            "id": "GPL-2.0-only"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:apk-tools:apk-tools:2.14.0-r2:*:*:*:*:*:*:*",
+      "purl": "pkg:apk/alpine/apk-tools@2.14.0-r2?arch=x86_64&distro=alpine-3.18.5",
+      "externalReferences": [
+        {
+          "url": "https://gitlab.alpinelinux.org/alpine/apk-tools",
+          "type": "distribution"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "apk-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "apk"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "apk-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:apk-tools:apk_tools:2.14.0-r2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:apk_tools:apk-tools:2.14.0-r2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:apk_tools:apk_tools:2.14.0-r2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:apk:apk-tools:2.14.0-r2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:apk:apk_tools:2.14.0-r2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:17b0acbb0089734604f8e7c44f1bc811a80410e28e4c08d88f3ca17246cbee8f"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/lib/apk/db/installed"
+        },
+        {
+          "name": "syft:metadata:gitCommitOfApkPort",
+          "value": "cbaf845cd82388decc932885aa5b6d695bd8a306"
+        },
+        {
+          "name": "syft:metadata:installedSize",
+          "value": "311296"
+        },
+        {
+          "name": "syft:metadata:originPackage",
+          "value": "apk-tools"
+        },
+        {
+          "name": "syft:metadata:provides:0",
+          "value": "so:libapk.so.2.14.0=2.14.0"
+        },
+        {
+          "name": "syft:metadata:provides:1",
+          "value": "cmd:apk=2.14.0-r2"
+        },
+        {
+          "name": "syft:metadata:pullChecksum",
+          "value": "Q1jN4l8jnr9pHNE1o5VOUZPBrCrhM="
+        },
+        {
+          "name": "syft:metadata:pullDependencies:0",
+          "value": "musl>=1.2.3_git20230424"
+        },
+        {
+          "name": "syft:metadata:pullDependencies:1",
+          "value": "ca-certificates-bundle"
+        },
+        {
+          "name": "syft:metadata:pullDependencies:2",
+          "value": "so:libc.musl-x86_64.so.1"
+        },
+        {
+          "name": "syft:metadata:pullDependencies:3",
+          "value": "so:libcrypto.so.3"
+        },
+        {
+          "name": "syft:metadata:pullDependencies:4",
+          "value": "so:libssl.so.3"
+        },
+        {
+          "name": "syft:metadata:pullDependencies:5",
+          "value": "so:libz.so.1"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "125679"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:apk/alpine/bash@5.2.15-r5?arch=x86_64&distro=alpine-3.18.5&package-id=983290b85e1513d6",
+      "type": "library",
+      "publisher": "Natanael Copa <ncopa@alpinelinux.org>",
+      "name": "bash",
+      "version": "5.2.15-r5",
+      "description": "The GNU Bourne Again shell",
+      "licenses": [
+        {
+          "license": {
+            "id": "GPL-3.0-or-later"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:bash:bash:5.2.15-r5:*:*:*:*:*:*:*",
+      "purl": "pkg:apk/alpine/bash@5.2.15-r5?arch=x86_64&distro=alpine-3.18.5",
+      "externalReferences": [
+        {
+          "url": "https://www.gnu.org/software/bash/bash.html",
+          "type": "distribution"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "apk-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "apk"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "apk-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:gnu:bash:5.2.15-r5:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:17b0acbb0089734604f8e7c44f1bc811a80410e28e4c08d88f3ca17246cbee8f"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/lib/apk/db/installed"
+        },
+        {
+          "name": "syft:metadata:gitCommitOfApkPort",
+          "value": "2aa177cc9c474c6af1015efeb7ef4f83476e631a"
+        },
+        {
+          "name": "syft:metadata:installedSize",
+          "value": "1392640"
+        },
+        {
+          "name": "syft:metadata:originPackage",
+          "value": "bash"
+        },
+        {
+          "name": "syft:metadata:provides:0",
+          "value": "cmd:bash=5.2.15-r5"
+        },
+        {
+          "name": "syft:metadata:pullChecksum",
+          "value": "Q1YHmqduf1TgcoH8ykhzAfbBJpQVs="
+        },
+        {
+          "name": "syft:metadata:pullDependencies:0",
+          "value": "/bin/sh"
+        },
+        {
+          "name": "syft:metadata:pullDependencies:1",
+          "value": "so:libc.musl-x86_64.so.1"
+        },
+        {
+          "name": "syft:metadata:pullDependencies:2",
+          "value": "so:libreadline.so.8"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "457087"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:apk/alpine/brotli-libs@1.0.9-r14?arch=x86_64&upstream=brotli&distro=alpine-3.18.5&package-id=31257dfa21df951d",
+      "type": "library",
+      "publisher": "prspkt <prspkt@protonmail.com>",
+      "name": "brotli-libs",
+      "version": "1.0.9-r14",
+      "description": "Generic lossless compressor (libraries)",
+      "licenses": [
+        {
+          "license": {
+            "id": "MIT"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:brotli-libs:brotli-libs:1.0.9-r14:*:*:*:*:*:*:*",
+      "purl": "pkg:apk/alpine/brotli-libs@1.0.9-r14?arch=x86_64&upstream=brotli&distro=alpine-3.18.5",
+      "externalReferences": [
+        {
+          "url": "https://github.com/google/brotli",
+          "type": "distribution"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "apk-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "apk"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "apk-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:brotli-libs:brotli_libs:1.0.9-r14:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:brotli_libs:brotli-libs:1.0.9-r14:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:brotli_libs:brotli_libs:1.0.9-r14:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:brotli:brotli-libs:1.0.9-r14:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:brotli:brotli_libs:1.0.9-r14:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:google:brotli-libs:1.0.9-r14:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:google:brotli_libs:1.0.9-r14:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:17b0acbb0089734604f8e7c44f1bc811a80410e28e4c08d88f3ca17246cbee8f"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/lib/apk/db/installed"
+        },
+        {
+          "name": "syft:metadata:gitCommitOfApkPort",
+          "value": "0a1208f4924921ba3c0fba5429338a5990f1741c"
+        },
+        {
+          "name": "syft:metadata:installedSize",
+          "value": "806912"
+        },
+        {
+          "name": "syft:metadata:originPackage",
+          "value": "brotli"
+        },
+        {
+          "name": "syft:metadata:provides:0",
+          "value": "so:libbrotlicommon.so.1=1.0.9"
+        },
+        {
+          "name": "syft:metadata:provides:1",
+          "value": "so:libbrotlidec.so.1=1.0.9"
+        },
+        {
+          "name": "syft:metadata:provides:2",
+          "value": "so:libbrotlienc.so.1=1.0.9"
+        },
+        {
+          "name": "syft:metadata:pullChecksum",
+          "value": "Q1SLIAbTXN3oSaGPfK2/rxfJJzEw8="
+        },
+        {
+          "name": "syft:metadata:pullDependencies:0",
+          "value": "so:libc.musl-x86_64.so.1"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "348557"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:apk/alpine/busybox@1.36.1-r5?arch=x86_64&distro=alpine-3.18.5&package-id=c4cadec7a04f67ce",
+      "type": "library",
+      "publisher": "Sören Tempel <soeren+alpine@soeren-tempel.net>",
+      "name": "busybox",
+      "version": "1.36.1-r5",
+      "description": "Size optimized toolbox of many common UNIX utilities",
+      "licenses": [
+        {
+          "license": {
+            "id": "GPL-2.0-only"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:busybox:busybox:1.36.1-r5:*:*:*:*:*:*:*",
+      "purl": "pkg:apk/alpine/busybox@1.36.1-r5?arch=x86_64&distro=alpine-3.18.5",
+      "externalReferences": [
+        {
+          "url": "https://busybox.net/",
+          "type": "distribution"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "apk-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "apk"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "apk-db-entry"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:17b0acbb0089734604f8e7c44f1bc811a80410e28e4c08d88f3ca17246cbee8f"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/lib/apk/db/installed"
+        },
+        {
+          "name": "syft:metadata:gitCommitOfApkPort",
+          "value": "cdf3c00435d52908f962c9ff009fc5c6f2f31f99"
+        },
+        {
+          "name": "syft:metadata:installedSize",
+          "value": "946176"
+        },
+        {
+          "name": "syft:metadata:originPackage",
+          "value": "busybox"
+        },
+        {
+          "name": "syft:metadata:provides:0",
+          "value": "cmd:busybox=1.36.1-r5"
+        },
+        {
+          "name": "syft:metadata:pullChecksum",
+          "value": "Q1aBWv1Kn2ASOLShUeDPoSLaozuMs="
+        },
+        {
+          "name": "syft:metadata:pullDependencies:0",
+          "value": "so:libc.musl-x86_64.so.1"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "510005"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:apk/alpine/busybox-binsh@1.36.1-r5?arch=x86_64&upstream=busybox&distro=alpine-3.18.5&package-id=ea8601e6fdd7765c",
+      "type": "library",
+      "publisher": "Sören Tempel <soeren+alpine@soeren-tempel.net>",
+      "name": "busybox-binsh",
+      "version": "1.36.1-r5",
+      "description": "busybox ash /bin/sh",
+      "licenses": [
+        {
+          "license": {
+            "id": "GPL-2.0-only"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:busybox-binsh:busybox-binsh:1.36.1-r5:*:*:*:*:*:*:*",
+      "purl": "pkg:apk/alpine/busybox-binsh@1.36.1-r5?arch=x86_64&upstream=busybox&distro=alpine-3.18.5",
+      "externalReferences": [
+        {
+          "url": "https://busybox.net/",
+          "type": "distribution"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "apk-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "apk"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "apk-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:busybox-binsh:busybox_binsh:1.36.1-r5:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:busybox_binsh:busybox-binsh:1.36.1-r5:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:busybox_binsh:busybox_binsh:1.36.1-r5:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:busybox:busybox-binsh:1.36.1-r5:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:busybox:busybox_binsh:1.36.1-r5:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:17b0acbb0089734604f8e7c44f1bc811a80410e28e4c08d88f3ca17246cbee8f"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/lib/apk/db/installed"
+        },
+        {
+          "name": "syft:metadata:gitCommitOfApkPort",
+          "value": "cdf3c00435d52908f962c9ff009fc5c6f2f31f99"
+        },
+        {
+          "name": "syft:metadata:installedSize",
+          "value": "8192"
+        },
+        {
+          "name": "syft:metadata:originPackage",
+          "value": "busybox"
+        },
+        {
+          "name": "syft:metadata:provides:0",
+          "value": "/bin/sh"
+        },
+        {
+          "name": "syft:metadata:provides:1",
+          "value": "cmd:sh=1.36.1-r5"
+        },
+        {
+          "name": "syft:metadata:pullChecksum",
+          "value": "Q15fBkcCHhCSy+P6TPSptuqyKrf0Y="
+        },
+        {
+          "name": "syft:metadata:pullDependencies:0",
+          "value": "busybox=1.36.1-r5"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "1541"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:apk/alpine/ca-certificates@20230506-r0?arch=x86_64&distro=alpine-3.18.5&package-id=34619f88311d4e5e",
+      "type": "library",
+      "publisher": "Natanael Copa <ncopa@alpinelinux.org>",
+      "name": "ca-certificates",
+      "version": "20230506-r0",
+      "description": "Common CA certificates PEM files from Mozilla",
+      "licenses": [
+        {
+          "expression": "MPL-2.0 AND MIT"
+        }
+      ],
+      "cpe": "cpe:2.3:a:ca-certificates:ca-certificates:20230506-r0:*:*:*:*:*:*:*",
+      "purl": "pkg:apk/alpine/ca-certificates@20230506-r0?arch=x86_64&distro=alpine-3.18.5",
+      "externalReferences": [
+        {
+          "url": "https://www.mozilla.org/en-US/about/governance/policies/security-group/certs/",
+          "type": "distribution"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "apk-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "apk"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "apk-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:ca-certificates:ca_certificates:20230506-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:ca_certificates:ca-certificates:20230506-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:ca_certificates:ca_certificates:20230506-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:mozilla:ca-certificates:20230506-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:mozilla:ca_certificates:20230506-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:ca:ca-certificates:20230506-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:ca:ca_certificates:20230506-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:17b0acbb0089734604f8e7c44f1bc811a80410e28e4c08d88f3ca17246cbee8f"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/lib/apk/db/installed"
+        },
+        {
+          "name": "syft:metadata:gitCommitOfApkPort",
+          "value": "59534a02716a92a10d177a118c34066162eff4a6"
+        },
+        {
+          "name": "syft:metadata:installedSize",
+          "value": "704512"
+        },
+        {
+          "name": "syft:metadata:originPackage",
+          "value": "ca-certificates"
+        },
+        {
+          "name": "syft:metadata:provides:0",
+          "value": "cmd:c_rehash=20230506-r0"
+        },
+        {
+          "name": "syft:metadata:provides:1",
+          "value": "cmd:update-ca-certificates=20230506-r0"
+        },
+        {
+          "name": "syft:metadata:pullChecksum",
+          "value": "Q1FG8M+7w+dkjV9Vy0mGFWW2t4+Do="
+        },
+        {
+          "name": "syft:metadata:pullDependencies:0",
+          "value": "/bin/sh"
+        },
+        {
+          "name": "syft:metadata:pullDependencies:1",
+          "value": "so:libc.musl-x86_64.so.1"
+        },
+        {
+          "name": "syft:metadata:pullDependencies:2",
+          "value": "so:libcrypto.so.3"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "157021"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:apk/alpine/ca-certificates-bundle@20230506-r0?arch=x86_64&upstream=ca-certificates&distro=alpine-3.18.5&package-id=e6d1b63d5a046c55",
+      "type": "library",
+      "publisher": "Natanael Copa <ncopa@alpinelinux.org>",
+      "name": "ca-certificates-bundle",
+      "version": "20230506-r0",
+      "description": "Pre generated bundle of Mozilla certificates",
+      "licenses": [
+        {
+          "expression": "MPL-2.0 AND MIT"
+        }
+      ],
+      "cpe": "cpe:2.3:a:ca-certificates-bundle:ca-certificates-bundle:20230506-r0:*:*:*:*:*:*:*",
+      "purl": "pkg:apk/alpine/ca-certificates-bundle@20230506-r0?arch=x86_64&upstream=ca-certificates&distro=alpine-3.18.5",
+      "externalReferences": [
+        {
+          "url": "https://www.mozilla.org/en-US/about/governance/policies/security-group/certs/",
+          "type": "distribution"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "apk-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "apk"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "apk-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:ca-certificates-bundle:ca_certificates_bundle:20230506-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:ca_certificates_bundle:ca-certificates-bundle:20230506-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:ca_certificates_bundle:ca_certificates_bundle:20230506-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:ca-certificates:ca-certificates-bundle:20230506-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:ca-certificates:ca_certificates_bundle:20230506-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:ca_certificates:ca-certificates-bundle:20230506-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:ca_certificates:ca_certificates_bundle:20230506-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:mozilla:ca-certificates-bundle:20230506-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:mozilla:ca_certificates_bundle:20230506-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:ca:ca-certificates-bundle:20230506-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:ca:ca_certificates_bundle:20230506-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:17b0acbb0089734604f8e7c44f1bc811a80410e28e4c08d88f3ca17246cbee8f"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/lib/apk/db/installed"
+        },
+        {
+          "name": "syft:metadata:gitCommitOfApkPort",
+          "value": "59534a02716a92a10d177a118c34066162eff4a6"
+        },
+        {
+          "name": "syft:metadata:installedSize",
+          "value": "237568"
+        },
+        {
+          "name": "syft:metadata:originPackage",
+          "value": "ca-certificates"
+        },
+        {
+          "name": "syft:metadata:provides:0",
+          "value": "ca-certificates-cacert=20230506-r0"
+        },
+        {
+          "name": "syft:metadata:pullChecksum",
+          "value": "Q1R/SF0IZwqesh6/EOcK5l3EOrbD0="
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "126311"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/com.github.ben-manes.caffeine/caffeine@2.3.1?package-id=3eb79445f02120ea",
+      "type": "library",
+      "name": "caffeine",
+      "version": "2.3.1",
+      "cpe": "cpe:2.3:a:ben-manes:ben-manes:2.3.1:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/com.github.ben-manes.caffeine/caffeine@2.3.1",
+      "externalReferences": [
+        {
+          "url": "",
+          "hashes": [
+            {
+              "alg": "SHA-1",
+              "content": "d6aec5cbd26313a341ee7c034bd56d604f68bebe"
+            }
+          ],
+          "type": "build-meta"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:ben-manes:ben_manes:2.3.1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:ben_manes:ben-manes:2.3.1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:ben_manes:ben_manes:2.3.1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:ben-manes:caffeine:2.3.1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:ben_manes:caffeine:2.3.1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:caffeine:ben-manes:2.3.1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:caffeine:ben_manes:2.3.1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:caffeine:caffeine:2.3.1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:github:ben-manes:2.3.1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:github:ben_manes:2.3.1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:github:caffeine:2.3.1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:ben:ben-manes:2.3.1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:ben:ben_manes:2.3.1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:ben:caffeine:2.3.1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:b1dc62eecf8a6672534ff85086bc9d0ea8bb94cfd7e760c53734dad61f36012b"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-console/lib/caffeine-2.3.1.jar"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-console/lib/caffeine-2.3.1.jar"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/commons-beanutils/commons-beanutils@1.9.4?package-id=88601ab1c074977d",
+      "type": "library",
+      "group": "commons-beanutils",
+      "name": "commons-beanutils",
+      "version": "1.9.4",
+      "licenses": [
+        {
+          "license": {
+            "name": "https://www.apache.org/licenses/LICENSE-2.0.txt"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:apache:commons-beanutils:1.9.4:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/commons-beanutils/commons-beanutils@1.9.4",
+      "externalReferences": [
+        {
+          "url": "",
+          "hashes": [
+            {
+              "alg": "SHA-1",
+              "content": "d52b9abcd97f38c81342bb7e7ae1eee9b73cba51"
+            }
+          ],
+          "type": "build-meta"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:apache:commons_beanutils:1.9.4:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:apache:commons:1.9.4:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:b1dc62eecf8a6672534ff85086bc9d0ea8bb94cfd7e760c53734dad61f36012b"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-console/lib/commons-beanutils-1.9.4.jar"
+        },
+        {
+          "name": "syft:metadata:-:artifactID",
+          "value": "commons-beanutils"
+        },
+        {
+          "name": "syft:metadata:-:groupID",
+          "value": "commons-beanutils"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-console/lib/commons-beanutils-1.9.4.jar"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/commons-codec/commons-codec@1.15?package-id=330764a1014b83ef",
+      "type": "library",
+      "group": "commons-codec",
+      "name": "commons-codec",
+      "version": "1.15",
+      "licenses": [
+        {
+          "license": {
+            "name": "https://www.apache.org/licenses/LICENSE-2.0.txt"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:apache-software-foundation:commons-codec:1.15:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/commons-codec/commons-codec@1.15",
+      "externalReferences": [
+        {
+          "url": "",
+          "hashes": [
+            {
+              "alg": "SHA-1",
+              "content": "49d94806b6e3dc933dacbd8acb0fdbab8ebd1e5d"
+            }
+          ],
+          "type": "build-meta"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:apache-software-foundation:commons_codec:1.15:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:apache_software_foundation:commons-codec:1.15:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:apache_software_foundation:commons_codec:1.15:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:commons-codec:commons-codec:1.15:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:commons-codec:commons_codec:1.15:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:commons_codec:commons-codec:1.15:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:commons_codec:commons_codec:1.15:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:commons:commons-codec:1.15:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:commons:commons_codec:1.15:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:b1dc62eecf8a6672534ff85086bc9d0ea8bb94cfd7e760c53734dad61f36012b"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-console/lib/commons-codec-1.15.jar"
+        },
+        {
+          "name": "syft:metadata:-:artifactID",
+          "value": "commons-codec"
+        },
+        {
+          "name": "syft:metadata:-:groupID",
+          "value": "commons-codec"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-console/lib/commons-codec-1.15.jar"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/commons-collections/commons-collections@3.2.2?package-id=ca352c1b30dc19c8",
+      "type": "library",
+      "group": "commons-collections",
+      "name": "commons-collections",
+      "version": "3.2.2",
+      "licenses": [
+        {
+          "license": {
+            "name": "http://www.apache.org/licenses/LICENSE-2.0.txt"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:apache:commons-collections:3.2.2:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/commons-collections/commons-collections@3.2.2",
+      "externalReferences": [
+        {
+          "url": "",
+          "hashes": [
+            {
+              "alg": "SHA-1",
+              "content": "8ad72fe39fa8c91eaaf12aadb21e0c3661fe26d5"
+            }
+          ],
+          "type": "build-meta"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:apache:commons_collections:3.2.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:apache:collections:3.2.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:apache:commons:3.2.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:b1dc62eecf8a6672534ff85086bc9d0ea8bb94cfd7e760c53734dad61f36012b"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-console/lib/commons-collections-3.2.2.jar"
+        },
+        {
+          "name": "syft:metadata:-:artifactID",
+          "value": "commons-collections"
+        },
+        {
+          "name": "syft:metadata:-:groupID",
+          "value": "commons-collections"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-console/lib/commons-collections-3.2.2.jar"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/org.apache.commons/commons-configuration2@2.9.0?package-id=a42f8d6906134bdc",
+      "type": "library",
+      "group": "org.apache.commons",
+      "name": "commons-configuration2",
+      "version": "2.9.0",
+      "licenses": [
+        {
+          "license": {
+            "name": "https://www.apache.org/licenses/LICENSE-2.0.txt"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:apache:commons-configuration2:2.9.0:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/org.apache.commons/commons-configuration2@2.9.0",
+      "externalReferences": [
+        {
+          "url": "",
+          "hashes": [
+            {
+              "alg": "SHA-1",
+              "content": "adc3ee6b84fc62a6e75e901d080adacb72aac61e"
+            }
+          ],
+          "type": "build-meta"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:apache:commons_configuration2:2.9.0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:apache:commons:2.9.0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:b1dc62eecf8a6672534ff85086bc9d0ea8bb94cfd7e760c53734dad61f36012b"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-console/lib/commons-configuration2-2.9.0.jar"
+        },
+        {
+          "name": "syft:metadata:-:artifactID",
+          "value": "commons-configuration2"
+        },
+        {
+          "name": "syft:metadata:-:groupID",
+          "value": "org.apache.commons"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-console/lib/commons-configuration2-2.9.0.jar"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/org.apache.commons/commons-lang3@3.12.0?package-id=33b9ea858d722632",
+      "type": "library",
+      "group": "org.apache.commons",
+      "name": "commons-lang3",
+      "version": "3.12.0",
+      "licenses": [
+        {
+          "license": {
+            "name": "https://www.apache.org/licenses/LICENSE-2.0.txt"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:apache:commons-lang3:3.12.0:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/org.apache.commons/commons-lang3@3.12.0",
+      "externalReferences": [
+        {
+          "url": "",
+          "hashes": [
+            {
+              "alg": "SHA-1",
+              "content": "c6842c86792ff03b9f1d1fe2aab8dc23aa6c6f0e"
+            }
+          ],
+          "type": "build-meta"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:apache:commons_lang3:3.12.0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:apache:commons:3.12.0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:apache:lang3:3.12.0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:b1dc62eecf8a6672534ff85086bc9d0ea8bb94cfd7e760c53734dad61f36012b"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-console/lib/commons-lang3-3.12.0.jar"
+        },
+        {
+          "name": "syft:metadata:-:artifactID",
+          "value": "commons-lang3"
+        },
+        {
+          "name": "syft:metadata:-:groupID",
+          "value": "org.apache.commons"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-console/lib/commons-lang3-3.12.0.jar"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/commons-logging/commons-logging@1.2?package-id=81b058f54ef232ff",
+      "type": "library",
+      "group": "commons-logging",
+      "name": "commons-logging",
+      "version": "1.2",
+      "licenses": [
+        {
+          "license": {
+            "name": "http://www.apache.org/licenses/LICENSE-2.0.txt"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:apache-software-foundation:commons-logging:1.2:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/commons-logging/commons-logging@1.2",
+      "externalReferences": [
+        {
+          "url": "",
+          "hashes": [
+            {
+              "alg": "SHA-1",
+              "content": "4bfc12adfe4842bf07b657f0369c4cb522955686"
+            }
+          ],
+          "type": "build-meta"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:apache-software-foundation:commons_logging:1.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:apache_software_foundation:commons-logging:1.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:apache_software_foundation:commons_logging:1.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:commons-logging:commons-logging:1.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:commons-logging:commons_logging:1.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:commons_logging:commons-logging:1.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:commons_logging:commons_logging:1.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:commons:commons-logging:1.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:commons:commons_logging:1.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:b1dc62eecf8a6672534ff85086bc9d0ea8bb94cfd7e760c53734dad61f36012b"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-console/lib/commons-logging-1.2.jar"
+        },
+        {
+          "name": "syft:metadata:-:artifactID",
+          "value": "commons-logging"
+        },
+        {
+          "name": "syft:metadata:-:groupID",
+          "value": "commons-logging"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-console/lib/commons-logging-1.2.jar"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/org.apache.commons/commons-text@1.10.0?package-id=e26b6351505d18c7",
+      "type": "library",
+      "group": "org.apache.commons",
+      "name": "commons-text",
+      "version": "1.10.0",
+      "licenses": [
+        {
+          "license": {
+            "name": "https://www.apache.org/licenses/LICENSE-2.0.txt"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:apache:commons-text:1.10.0:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/org.apache.commons/commons-text@1.10.0",
+      "externalReferences": [
+        {
+          "url": "",
+          "hashes": [
+            {
+              "alg": "SHA-1",
+              "content": "3363381aef8cef2dbc1023b3e3a9433b08b64e01"
+            }
+          ],
+          "type": "build-meta"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:apache:commons_text:1.10.0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:apache:commons:1.10.0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:b1dc62eecf8a6672534ff85086bc9d0ea8bb94cfd7e760c53734dad61f36012b"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-console/lib/commons-text-1.10.0.jar"
+        },
+        {
+          "name": "syft:metadata:-:artifactID",
+          "value": "commons-text"
+        },
+        {
+          "name": "syft:metadata:-:groupID",
+          "value": "org.apache.commons"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-console/lib/commons-text-1.10.0.jar"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/net.objecthunter/exp4j@0.4.8?package-id=1f2f21f6929bd725",
+      "type": "library",
+      "group": "net.objecthunter",
+      "name": "exp4j",
+      "version": "0.4.8",
+      "licenses": [
+        {
+          "license": {
+            "name": "Apache License 2.0",
+            "url": "http://www.apache.org/licenses/LICENSE-2.0"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:objecthunter:exp4j:0.4.8:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/net.objecthunter/exp4j@0.4.8",
+      "externalReferences": [
+        {
+          "url": "",
+          "hashes": [
+            {
+              "alg": "SHA-1",
+              "content": "cf1cfc0f958077d86ac7452c7e36d944689b2ec4"
+            }
+          ],
+          "type": "build-meta"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:exp4j:exp4j:0.4.8:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:b1dc62eecf8a6672534ff85086bc9d0ea8bb94cfd7e760c53734dad61f36012b"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-console/lib/exp4j-0.4.8.jar"
+        },
+        {
+          "name": "syft:metadata:-:artifactID",
+          "value": "exp4j"
+        },
+        {
+          "name": "syft:metadata:-:groupID",
+          "value": "net.objecthunter"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-console/lib/exp4j-0.4.8.jar"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:apk/alpine/freetype@2.13.0-r5?arch=x86_64&distro=alpine-3.18.5&package-id=b888151d4bc51ee8",
+      "type": "library",
+      "publisher": "Carlo Landmeter <clandmeter@alpinelinux.org>",
+      "name": "freetype",
+      "version": "2.13.0-r5",
+      "description": "TrueType font rendering library",
+      "licenses": [
+        {
+          "expression": "FTL OR GPL-2.0-or-later"
+        }
+      ],
+      "cpe": "cpe:2.3:a:freetype:freetype:2.13.0-r5:*:*:*:*:*:*:*",
+      "purl": "pkg:apk/alpine/freetype@2.13.0-r5?arch=x86_64&distro=alpine-3.18.5",
+      "externalReferences": [
+        {
+          "url": "https://www.freetype.org/",
+          "type": "distribution"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "apk-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "apk"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "apk-db-entry"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:17b0acbb0089734604f8e7c44f1bc811a80410e28e4c08d88f3ca17246cbee8f"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/lib/apk/db/installed"
+        },
+        {
+          "name": "syft:metadata:gitCommitOfApkPort",
+          "value": "1cca5140a90f5a2489401d8844043847a49caca6"
+        },
+        {
+          "name": "syft:metadata:installedSize",
+          "value": "741376"
+        },
+        {
+          "name": "syft:metadata:originPackage",
+          "value": "freetype"
+        },
+        {
+          "name": "syft:metadata:provides:0",
+          "value": "so:libfreetype.so.6=6.19.0"
+        },
+        {
+          "name": "syft:metadata:pullChecksum",
+          "value": "Q1f9L6obY4DNikwNaqbozkYqY1fpo="
+        },
+        {
+          "name": "syft:metadata:pullDependencies:0",
+          "value": "so:libbrotlidec.so.1"
+        },
+        {
+          "name": "syft:metadata:pullDependencies:1",
+          "value": "so:libbz2.so.1"
+        },
+        {
+          "name": "syft:metadata:pullDependencies:2",
+          "value": "so:libc.musl-x86_64.so.1"
+        },
+        {
+          "name": "syft:metadata:pullDependencies:3",
+          "value": "so:libpng16.so.16"
+        },
+        {
+          "name": "syft:metadata:pullDependencies:4",
+          "value": "so:libz.so.1"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "358370"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:apk/alpine/giflib@5.2.1-r4?arch=x86_64&distro=alpine-3.18.5&package-id=81c4b631ebed9634",
+      "type": "library",
+      "publisher": "Natanael Copa <ncopa@alpinelinux.org>",
+      "name": "giflib",
+      "version": "5.2.1-r4",
+      "description": "A library for reading and writing GIF images",
+      "licenses": [
+        {
+          "license": {
+            "id": "MIT"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:giflib:giflib:5.2.1-r4:*:*:*:*:*:*:*",
+      "purl": "pkg:apk/alpine/giflib@5.2.1-r4?arch=x86_64&distro=alpine-3.18.5",
+      "externalReferences": [
+        {
+          "url": "https://sourceforge.net/projects/giflib/",
+          "type": "distribution"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "apk-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "apk"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "apk-db-entry"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:17b0acbb0089734604f8e7c44f1bc811a80410e28e4c08d88f3ca17246cbee8f"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/lib/apk/db/installed"
+        },
+        {
+          "name": "syft:metadata:gitCommitOfApkPort",
+          "value": "84a227baf001b6e0208e3352b294e4d7a40e93de"
+        },
+        {
+          "name": "syft:metadata:installedSize",
+          "value": "53248"
+        },
+        {
+          "name": "syft:metadata:originPackage",
+          "value": "giflib"
+        },
+        {
+          "name": "syft:metadata:provides:0",
+          "value": "so:libgif.so.7=7.2.0"
+        },
+        {
+          "name": "syft:metadata:pullChecksum",
+          "value": "Q1+oo1wK4+NAZnYrBGXAuPR0kc9JU="
+        },
+        {
+          "name": "syft:metadata:pullDependencies:0",
+          "value": "so:libc.musl-x86_64.so.1"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "20004"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/org.apache.tinkerpop/gremlin-console@3.7.1?package-id=b167d406c26b2128",
+      "type": "library",
+      "group": "org.apache.tinkerpop",
+      "name": "gremlin-console",
+      "version": "3.7.1",
+      "licenses": [
+        {
+          "license": {
+            "id": "Apache-2.0"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:apache:gremlin-console:3.7.1:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/org.apache.tinkerpop/gremlin-console@3.7.1",
+      "externalReferences": [
+        {
+          "url": "",
+          "hashes": [
+            {
+              "alg": "SHA-1",
+              "content": "a02d40fa2022b7086dbcebcfde62d08549553614"
+            }
+          ],
+          "type": "build-meta"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:apache:gremlin_console:3.7.1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:b1dc62eecf8a6672534ff85086bc9d0ea8bb94cfd7e760c53734dad61f36012b"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-console/lib/gremlin-console-3.7.1.jar"
+        },
+        {
+          "name": "syft:metadata:-:artifactID",
+          "value": "gremlin-console"
+        },
+        {
+          "name": "syft:metadata:-:groupID",
+          "value": "org.apache.tinkerpop"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-console/lib/gremlin-console-3.7.1.jar"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/org.apache.tinkerpop/gremlin-core@3.7.1?package-id=bf338bc6cc5358ca",
+      "type": "library",
+      "group": "org.apache.tinkerpop",
+      "name": "gremlin-core",
+      "version": "3.7.1",
+      "licenses": [
+        {
+          "license": {
+            "id": "Apache-2.0"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:apache:gremlin-core:3.7.1:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/org.apache.tinkerpop/gremlin-core@3.7.1",
+      "externalReferences": [
+        {
+          "url": "",
+          "hashes": [
+            {
+              "alg": "SHA-1",
+              "content": "ad4aef6076f90a46f9fff77ce4199d79dd48c8d8"
+            }
+          ],
+          "type": "build-meta"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:apache:gremlin_core:3.7.1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:b1dc62eecf8a6672534ff85086bc9d0ea8bb94cfd7e760c53734dad61f36012b"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-console/lib/gremlin-core-3.7.1.jar"
+        },
+        {
+          "name": "syft:metadata:-:artifactID",
+          "value": "gremlin-core"
+        },
+        {
+          "name": "syft:metadata:-:groupID",
+          "value": "org.apache.tinkerpop"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-console/lib/gremlin-core-3.7.1.jar"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/org.apache.tinkerpop/gremlin-driver@3.7.1?package-id=84689dc2d8b78e9b",
+      "type": "library",
+      "group": "org.apache.tinkerpop",
+      "name": "gremlin-driver",
+      "version": "3.7.1",
+      "licenses": [
+        {
+          "license": {
+            "id": "Apache-2.0"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:apache:gremlin-driver:3.7.1:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/org.apache.tinkerpop/gremlin-driver@3.7.1",
+      "externalReferences": [
+        {
+          "url": "",
+          "hashes": [
+            {
+              "alg": "SHA-1",
+              "content": "122c809ee064a015ede83d9e4c31f22159d969e4"
+            }
+          ],
+          "type": "build-meta"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:apache:gremlin_driver:3.7.1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:b1dc62eecf8a6672534ff85086bc9d0ea8bb94cfd7e760c53734dad61f36012b"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-console/lib/gremlin-driver-3.7.1.jar"
+        },
+        {
+          "name": "syft:metadata:-:artifactID",
+          "value": "gremlin-driver"
+        },
+        {
+          "name": "syft:metadata:-:groupID",
+          "value": "org.apache.tinkerpop"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-console/lib/gremlin-driver-3.7.1.jar"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/org.apache.tinkerpop/gremlin-groovy@3.7.1?package-id=ad1db5a520b3b9c5",
+      "type": "library",
+      "group": "org.apache.tinkerpop",
+      "name": "gremlin-groovy",
+      "version": "3.7.1",
+      "licenses": [
+        {
+          "license": {
+            "id": "Apache-2.0"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:apache:gremlin-groovy:3.7.1:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/org.apache.tinkerpop/gremlin-groovy@3.7.1",
+      "externalReferences": [
+        {
+          "url": "",
+          "hashes": [
+            {
+              "alg": "SHA-1",
+              "content": "0f018aeae7d75c6e524db3cc2e0ec014118abdb6"
+            }
+          ],
+          "type": "build-meta"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:apache:gremlin_groovy:3.7.1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:b1dc62eecf8a6672534ff85086bc9d0ea8bb94cfd7e760c53734dad61f36012b"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-console/ext/gremlin-groovy/lib/gremlin-groovy-3.7.1.jar"
+        },
+        {
+          "name": "syft:metadata:-:artifactID",
+          "value": "gremlin-groovy"
+        },
+        {
+          "name": "syft:metadata:-:groupID",
+          "value": "org.apache.tinkerpop"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-console/ext/gremlin-groovy/lib/gremlin-groovy-3.7.1.jar"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/org.apache.tinkerpop/gremlin-groovy@3.7.1?package-id=ca183f6a84ad99f6",
+      "type": "library",
+      "group": "org.apache.tinkerpop",
+      "name": "gremlin-groovy",
+      "version": "3.7.1",
+      "licenses": [
+        {
+          "license": {
+            "id": "Apache-2.0"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:apache:gremlin-groovy:3.7.1:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/org.apache.tinkerpop/gremlin-groovy@3.7.1",
+      "externalReferences": [
+        {
+          "url": "",
+          "hashes": [
+            {
+              "alg": "SHA-1",
+              "content": "0f018aeae7d75c6e524db3cc2e0ec014118abdb6"
+            }
+          ],
+          "type": "build-meta"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:apache:gremlin_groovy:3.7.1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:b1dc62eecf8a6672534ff85086bc9d0ea8bb94cfd7e760c53734dad61f36012b"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-console/ext/gremlin-groovy/plugin/gremlin-groovy-3.7.1.jar"
+        },
+        {
+          "name": "syft:metadata:-:artifactID",
+          "value": "gremlin-groovy"
+        },
+        {
+          "name": "syft:metadata:-:groupID",
+          "value": "org.apache.tinkerpop"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-console/ext/gremlin-groovy/plugin/gremlin-groovy-3.7.1.jar"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/org.apache.tinkerpop/gremlin-language@3.7.1?package-id=7b63331822251c11",
+      "type": "library",
+      "group": "org.apache.tinkerpop",
+      "name": "gremlin-language",
+      "version": "3.7.1",
+      "licenses": [
+        {
+          "license": {
+            "id": "Apache-2.0"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:apache:gremlin-language:3.7.1:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/org.apache.tinkerpop/gremlin-language@3.7.1",
+      "externalReferences": [
+        {
+          "url": "",
+          "hashes": [
+            {
+              "alg": "SHA-1",
+              "content": "caf0d1cfe6ed488c978860b284462e9a4f8f780c"
+            }
+          ],
+          "type": "build-meta"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:apache:gremlin_language:3.7.1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:b1dc62eecf8a6672534ff85086bc9d0ea8bb94cfd7e760c53734dad61f36012b"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-console/lib/gremlin-language-3.7.1.jar"
+        },
+        {
+          "name": "syft:metadata:-:artifactID",
+          "value": "gremlin-language"
+        },
+        {
+          "name": "syft:metadata:-:groupID",
+          "value": "org.apache.tinkerpop"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-console/lib/gremlin-language-3.7.1.jar"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/org.apache.tinkerpop/gremlin-shaded@3.7.1?package-id=34becf973a6e1639",
+      "type": "library",
+      "group": "org.apache.tinkerpop",
+      "name": "gremlin-shaded",
+      "version": "3.7.1",
+      "licenses": [
+        {
+          "license": {
+            "id": "Apache-2.0"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:apache:gremlin-shaded:3.7.1:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/org.apache.tinkerpop/gremlin-shaded@3.7.1",
+      "externalReferences": [
+        {
+          "url": "",
+          "hashes": [
+            {
+              "alg": "SHA-1",
+              "content": "581df31ef36dffd606a41820c17a9f2256970700"
+            }
+          ],
+          "type": "build-meta"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:apache:gremlin_shaded:3.7.1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:b1dc62eecf8a6672534ff85086bc9d0ea8bb94cfd7e760c53734dad61f36012b"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-console/lib/gremlin-shaded-3.7.1.jar"
+        },
+        {
+          "name": "syft:metadata:-:artifactID",
+          "value": "gremlin-shaded"
+        },
+        {
+          "name": "syft:metadata:-:groupID",
+          "value": "org.apache.tinkerpop"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-console/lib/gremlin-shaded-3.7.1.jar"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/org.apache.tinkerpop/gremlin-util@3.7.1?package-id=e12d56d01886b978",
+      "type": "library",
+      "group": "org.apache.tinkerpop",
+      "name": "gremlin-util",
+      "version": "3.7.1",
+      "licenses": [
+        {
+          "license": {
+            "id": "Apache-2.0"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:apache:gremlin-util:3.7.1:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/org.apache.tinkerpop/gremlin-util@3.7.1",
+      "externalReferences": [
+        {
+          "url": "",
+          "hashes": [
+            {
+              "alg": "SHA-1",
+              "content": "bea460cf3dfc802aaf695b24f696eb15f020b871"
+            }
+          ],
+          "type": "build-meta"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:apache:gremlin_util:3.7.1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:b1dc62eecf8a6672534ff85086bc9d0ea8bb94cfd7e760c53734dad61f36012b"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-console/lib/gremlin-util-3.7.1.jar"
+        },
+        {
+          "name": "syft:metadata:-:artifactID",
+          "value": "gremlin-util"
+        },
+        {
+          "name": "syft:metadata:-:groupID",
+          "value": "org.apache.tinkerpop"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-console/lib/gremlin-util-3.7.1.jar"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/org.codehaus.groovy/groovy@4.0.9?package-id=d256f7268e81b70e",
+      "type": "library",
+      "name": "groovy",
+      "version": "4.0.9",
+      "licenses": [
+        {
+          "license": {
+            "id": "Apache-2.0"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:apache-software-foundation:groovy:4.0.9:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/org.codehaus.groovy/groovy@4.0.9",
+      "externalReferences": [
+        {
+          "url": "",
+          "hashes": [
+            {
+              "alg": "SHA-1",
+              "content": "80605ad828d16fd5d6349628b8d77e5761b2b4c4"
+            }
+          ],
+          "type": "build-meta"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:apache_software_foundation:groovy:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codehaus:groovy:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:groovy:groovy:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:b1dc62eecf8a6672534ff85086bc9d0ea8bb94cfd7e760c53734dad61f36012b"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-console/lib/groovy-4.0.9.jar"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-console/lib/groovy-4.0.9.jar"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/org.codehaus.groovy/groovy-cli-picocli@4.0.9?package-id=3a13f741fad7b0ee",
+      "type": "library",
+      "name": "groovy-cli-picocli",
+      "version": "4.0.9",
+      "cpe": "cpe:2.3:a:apache-software-foundation:groovy-cli-picocli:4.0.9:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/org.codehaus.groovy/groovy-cli-picocli@4.0.9",
+      "externalReferences": [
+        {
+          "url": "",
+          "hashes": [
+            {
+              "alg": "SHA-1",
+              "content": "fc170c9c2932608960831971947210a251d60c99"
+            }
+          ],
+          "type": "build-meta"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:apache-software-foundation:groovy_cli_picocli:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:apache_software_foundation:groovy-cli-picocli:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:apache_software_foundation:groovy_cli_picocli:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:groovy-cli-picocli:groovy-cli-picocli:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:groovy-cli-picocli:groovy_cli_picocli:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:groovy_cli_picocli:groovy-cli-picocli:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:groovy_cli_picocli:groovy_cli_picocli:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:apache-software-foundation:groovy:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:apache_software_foundation:groovy:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:groovy-cli:groovy-cli-picocli:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:groovy-cli:groovy_cli_picocli:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:groovy_cli:groovy-cli-picocli:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:groovy_cli:groovy_cli_picocli:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codehaus:groovy-cli-picocli:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codehaus:groovy_cli_picocli:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:groovy-cli-picocli:groovy:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:groovy:groovy-cli-picocli:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:groovy:groovy_cli_picocli:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:groovy_cli_picocli:groovy:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:groovy-cli:groovy:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:groovy_cli:groovy:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codehaus:groovy:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:groovy:groovy:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:b1dc62eecf8a6672534ff85086bc9d0ea8bb94cfd7e760c53734dad61f36012b"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-console/lib/groovy-cli-picocli-4.0.9.jar"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-console/lib/groovy-cli-picocli-4.0.9.jar"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/org.codehaus.groovy/groovy-console@4.0.9?package-id=050d638c03c17048",
+      "type": "library",
+      "name": "groovy-console",
+      "version": "4.0.9",
+      "cpe": "cpe:2.3:a:apache-software-foundation:groovy-console:4.0.9:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/org.codehaus.groovy/groovy-console@4.0.9",
+      "externalReferences": [
+        {
+          "url": "",
+          "hashes": [
+            {
+              "alg": "SHA-1",
+              "content": "e0608f73984360bef7c441e63d329cae1c44c7a9"
+            }
+          ],
+          "type": "build-meta"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:apache-software-foundation:groovy_console:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:apache_software_foundation:groovy-console:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:apache_software_foundation:groovy_console:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:apache-software-foundation:groovy:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:apache_software_foundation:groovy:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:groovy-console:groovy-console:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:groovy-console:groovy_console:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:groovy_console:groovy-console:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:groovy_console:groovy_console:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codehaus:groovy-console:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codehaus:groovy_console:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:groovy-console:groovy:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:groovy:groovy-console:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:groovy:groovy_console:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:groovy_console:groovy:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codehaus:groovy:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:groovy:groovy:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:b1dc62eecf8a6672534ff85086bc9d0ea8bb94cfd7e760c53734dad61f36012b"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-console/lib/groovy-console-4.0.9.jar"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-console/lib/groovy-console-4.0.9.jar"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/org.codehaus.groovy/groovy-groovysh@4.0.9?package-id=d5ec526efbb87ebb",
+      "type": "library",
+      "name": "groovy-groovysh",
+      "version": "4.0.9",
+      "cpe": "cpe:2.3:a:apache-software-foundation:groovy-groovysh:4.0.9:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/org.codehaus.groovy/groovy-groovysh@4.0.9",
+      "externalReferences": [
+        {
+          "url": "",
+          "hashes": [
+            {
+              "alg": "SHA-1",
+              "content": "bd2f17d38feae19b0fcbca701f9a585de9d7593d"
+            }
+          ],
+          "type": "build-meta"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:apache-software-foundation:groovy_groovysh:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:apache_software_foundation:groovy-groovysh:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:apache_software_foundation:groovy_groovysh:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:apache-software-foundation:groovy:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:apache_software_foundation:groovy:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:groovy-groovysh:groovy-groovysh:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:groovy-groovysh:groovy_groovysh:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:groovy_groovysh:groovy-groovysh:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:groovy_groovysh:groovy_groovysh:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codehaus:groovy-groovysh:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codehaus:groovy_groovysh:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:groovy-groovysh:groovy:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:groovy:groovy-groovysh:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:groovy:groovy_groovysh:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:groovy_groovysh:groovy:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codehaus:groovy:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:groovy:groovy:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:b1dc62eecf8a6672534ff85086bc9d0ea8bb94cfd7e760c53734dad61f36012b"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-console/lib/groovy-groovysh-4.0.9.jar"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-console/lib/groovy-groovysh-4.0.9.jar"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/org.codehaus.groovy/groovy-json@4.0.9?package-id=a081f2374ef39f6a",
+      "type": "library",
+      "name": "groovy-json",
+      "version": "4.0.9",
+      "cpe": "cpe:2.3:a:apache-software-foundation:groovy-json:4.0.9:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/org.codehaus.groovy/groovy-json@4.0.9",
+      "externalReferences": [
+        {
+          "url": "",
+          "hashes": [
+            {
+              "alg": "SHA-1",
+              "content": "122759fca67c3ef87ea7d48a3057af362a360089"
+            }
+          ],
+          "type": "build-meta"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:apache-software-foundation:groovy_json:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:apache_software_foundation:groovy-json:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:apache_software_foundation:groovy_json:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:apache-software-foundation:groovy:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:apache_software_foundation:groovy:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:groovy-json:groovy-json:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:groovy-json:groovy_json:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:groovy_json:groovy-json:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:groovy_json:groovy_json:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codehaus:groovy-json:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codehaus:groovy_json:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:groovy-json:groovy:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:groovy:groovy-json:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:groovy:groovy_json:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:groovy_json:groovy:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codehaus:groovy:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:groovy:groovy:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:b1dc62eecf8a6672534ff85086bc9d0ea8bb94cfd7e760c53734dad61f36012b"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-console/lib/groovy-json-4.0.9.jar"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-console/lib/groovy-json-4.0.9.jar"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/org.codehaus.groovy/groovy-jsr223@4.0.9?package-id=264038951e2e38d4",
+      "type": "library",
+      "name": "groovy-jsr223",
+      "version": "4.0.9",
+      "cpe": "cpe:2.3:a:apache-software-foundation:groovy-jsr223:4.0.9:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/org.codehaus.groovy/groovy-jsr223@4.0.9",
+      "externalReferences": [
+        {
+          "url": "",
+          "hashes": [
+            {
+              "alg": "SHA-1",
+              "content": "9cc08b3ea303b514628ca2b75724c8883c515397"
+            }
+          ],
+          "type": "build-meta"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:apache-software-foundation:groovy_jsr223:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:apache_software_foundation:groovy-jsr223:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:apache_software_foundation:groovy_jsr223:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:apache-software-foundation:groovy:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:apache_software_foundation:groovy:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:groovy-jsr223:groovy-jsr223:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:groovy-jsr223:groovy_jsr223:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:groovy_jsr223:groovy-jsr223:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:groovy_jsr223:groovy_jsr223:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codehaus:groovy-jsr223:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codehaus:groovy_jsr223:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:groovy-jsr223:groovy:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:groovy:groovy-jsr223:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:groovy:groovy_jsr223:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:groovy_jsr223:groovy:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codehaus:groovy:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:groovy:groovy:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:b1dc62eecf8a6672534ff85086bc9d0ea8bb94cfd7e760c53734dad61f36012b"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-console/lib/groovy-jsr223-4.0.9.jar"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-console/lib/groovy-jsr223-4.0.9.jar"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/org.codehaus.groovy/groovy-swing@4.0.9?package-id=e093ac4f04b257e4",
+      "type": "library",
+      "name": "groovy-swing",
+      "version": "4.0.9",
+      "cpe": "cpe:2.3:a:apache-software-foundation:groovy-swing:4.0.9:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/org.codehaus.groovy/groovy-swing@4.0.9",
+      "externalReferences": [
+        {
+          "url": "",
+          "hashes": [
+            {
+              "alg": "SHA-1",
+              "content": "68d014c3f05a75b340543a8db69511ded445435f"
+            }
+          ],
+          "type": "build-meta"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:apache-software-foundation:groovy_swing:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:apache_software_foundation:groovy-swing:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:apache_software_foundation:groovy_swing:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:apache-software-foundation:groovy:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:apache_software_foundation:groovy:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:groovy-swing:groovy-swing:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:groovy-swing:groovy_swing:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:groovy_swing:groovy-swing:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:groovy_swing:groovy_swing:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codehaus:groovy-swing:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codehaus:groovy_swing:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:groovy-swing:groovy:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:groovy:groovy-swing:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:groovy:groovy_swing:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:groovy_swing:groovy:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codehaus:groovy:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:groovy:groovy:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:b1dc62eecf8a6672534ff85086bc9d0ea8bb94cfd7e760c53734dad61f36012b"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-console/lib/groovy-swing-4.0.9.jar"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-console/lib/groovy-swing-4.0.9.jar"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/org.codehaus.groovy/groovy-templates@4.0.9?package-id=e8b4d182b8afac0e",
+      "type": "library",
+      "name": "groovy-templates",
+      "version": "4.0.9",
+      "cpe": "cpe:2.3:a:apache-software-foundation:groovy-templates:4.0.9:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/org.codehaus.groovy/groovy-templates@4.0.9",
+      "externalReferences": [
+        {
+          "url": "",
+          "hashes": [
+            {
+              "alg": "SHA-1",
+              "content": "0f5f3ebbd60ac461bd3624d6723bb15c140bcb36"
+            }
+          ],
+          "type": "build-meta"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:apache-software-foundation:groovy_templates:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:apache_software_foundation:groovy-templates:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:apache_software_foundation:groovy_templates:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:apache-software-foundation:groovy:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:apache_software_foundation:groovy:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:groovy-templates:groovy-templates:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:groovy-templates:groovy_templates:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:groovy_templates:groovy-templates:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:groovy_templates:groovy_templates:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codehaus:groovy-templates:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codehaus:groovy_templates:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:groovy-templates:groovy:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:groovy:groovy-templates:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:groovy:groovy_templates:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:groovy_templates:groovy:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codehaus:groovy:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:groovy:groovy:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:b1dc62eecf8a6672534ff85086bc9d0ea8bb94cfd7e760c53734dad61f36012b"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-console/lib/groovy-templates-4.0.9.jar"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-console/lib/groovy-templates-4.0.9.jar"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/org.codehaus.groovy/groovy-xml@4.0.9?package-id=54c1386d50bcff7a",
+      "type": "library",
+      "name": "groovy-xml",
+      "version": "4.0.9",
+      "cpe": "cpe:2.3:a:apache-software-foundation:groovy-xml:4.0.9:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/org.codehaus.groovy/groovy-xml@4.0.9",
+      "externalReferences": [
+        {
+          "url": "",
+          "hashes": [
+            {
+              "alg": "SHA-1",
+              "content": "b22d2ae189670d4ccc58bc4ef003d922b85cb0d5"
+            }
+          ],
+          "type": "build-meta"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:apache-software-foundation:groovy_xml:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:apache_software_foundation:groovy-xml:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:apache_software_foundation:groovy_xml:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:apache-software-foundation:groovy:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:apache_software_foundation:groovy:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:groovy-xml:groovy-xml:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:groovy-xml:groovy_xml:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:groovy_xml:groovy-xml:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:groovy_xml:groovy_xml:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codehaus:groovy-xml:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codehaus:groovy_xml:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:groovy-xml:groovy:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:groovy:groovy-xml:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:groovy:groovy_xml:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:groovy_xml:groovy:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codehaus:groovy:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:groovy:groovy:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:b1dc62eecf8a6672534ff85086bc9d0ea8bb94cfd7e760c53734dad61f36012b"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-console/lib/groovy-xml-4.0.9.jar"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-console/lib/groovy-xml-4.0.9.jar"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/org.fusesource.hawtjni/hawtjni-runtime@1.16?package-id=be71061529543f9d",
+      "type": "library",
+      "group": "org.fusesource.hawtjni",
+      "name": "hawtjni-runtime",
+      "version": "1.16",
+      "cpe": "cpe:2.3:a:hawtjni-runtime:hawtjni-runtime:1.16:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/org.fusesource.hawtjni/hawtjni-runtime@1.16",
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:hawtjni-runtime:hawtjni_runtime:1.16:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:hawtjni_runtime:hawtjni-runtime:1.16:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:hawtjni_runtime:hawtjni_runtime:1.16:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:fusesource:hawtjni-runtime:1.16:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:fusesource:hawtjni_runtime:1.16:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:hawtjni-runtime:hawtjni:1.16:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:hawtjni:hawtjni-runtime:1.16:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:hawtjni:hawtjni_runtime:1.16:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:hawtjni_runtime:hawtjni:1.16:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:fusesource:hawtjni:1.16:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:hawtjni:hawtjni:1.16:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:b1dc62eecf8a6672534ff85086bc9d0ea8bb94cfd7e760c53734dad61f36012b"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-console/lib/jansi-1.17.1.jar"
+        },
+        {
+          "name": "syft:metadata:-:artifactID",
+          "value": "hawtjni-runtime"
+        },
+        {
+          "name": "syft:metadata:-:groupID",
+          "value": "org.fusesource.hawtjni"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-console/lib/jansi-1.17.1.jar:org.fusesource.hawtjni:hawtjni-runtime"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/com.carrotsearch/hppc@0.7.1?package-id=edcaf22d1b2c932a",
+      "type": "library",
+      "group": "com.carrotsearch",
+      "name": "hppc",
+      "version": "0.7.1",
+      "cpe": "cpe:2.3:a:carrotsearch:hppc:0.7.1:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/com.carrotsearch/hppc@0.7.1",
+      "externalReferences": [
+        {
+          "url": "",
+          "hashes": [
+            {
+              "alg": "SHA-1",
+              "content": "8b5057f74ea378c0150a1860874a3ebdcb713767"
+            }
+          ],
+          "type": "build-meta"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:hppc:hppc:0.7.1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:b1dc62eecf8a6672534ff85086bc9d0ea8bb94cfd7e760c53734dad61f36012b"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-console/lib/hppc-0.7.1.jar"
+        },
+        {
+          "name": "syft:metadata:-:artifactID",
+          "value": "hppc"
+        },
+        {
+          "name": "syft:metadata:-:groupID",
+          "value": "com.carrotsearch"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-console/lib/hppc-0.7.1.jar"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/org.apache.httpcomponents/httpclient@4.5.13?package-id=5918b09feb45a7ef",
+      "type": "library",
+      "group": "org.apache.httpcomponents",
+      "name": "httpclient",
+      "version": "4.5.13",
+      "licenses": [
+        {
+          "license": {
+            "id": "Apache-2.0"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:apache:httpclient:4.5.13:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/org.apache.httpcomponents/httpclient@4.5.13",
+      "externalReferences": [
+        {
+          "url": "",
+          "hashes": [
+            {
+              "alg": "SHA-1",
+              "content": "e5f6cae5ca7ecaac1ec2827a9e2d65ae2869cada"
+            }
+          ],
+          "type": "build-meta"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:b1dc62eecf8a6672534ff85086bc9d0ea8bb94cfd7e760c53734dad61f36012b"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-console/lib/httpclient-4.5.13.jar"
+        },
+        {
+          "name": "syft:metadata:-:artifactID",
+          "value": "httpclient"
+        },
+        {
+          "name": "syft:metadata:-:groupID",
+          "value": "org.apache.httpcomponents"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-console/lib/httpclient-4.5.13.jar"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/org.apache.httpcomponents/httpcore@4.4.13?package-id=8130b396897cea51",
+      "type": "library",
+      "group": "org.apache.httpcomponents",
+      "name": "httpcore",
+      "version": "4.4.13",
+      "licenses": [
+        {
+          "license": {
+            "id": "Apache-2.0"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:apache:httpcore:4.4.13:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/org.apache.httpcomponents/httpcore@4.4.13",
+      "externalReferences": [
+        {
+          "url": "",
+          "hashes": [
+            {
+              "alg": "SHA-1",
+              "content": "853b96d3afbb7bf8cc303fe27ee96836a10c1834"
+            }
+          ],
+          "type": "build-meta"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:b1dc62eecf8a6672534ff85086bc9d0ea8bb94cfd7e760c53734dad61f36012b"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-console/lib/httpcore-4.4.13.jar"
+        },
+        {
+          "name": "syft:metadata:-:artifactID",
+          "value": "httpcore"
+        },
+        {
+          "name": "syft:metadata:-:groupID",
+          "value": "org.apache.httpcomponents"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-console/lib/httpcore-4.4.13.jar"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/org.apache/ivy@2.5.1?package-id=27ed63a88bc3e3b7",
+      "type": "library",
+      "name": "ivy",
+      "version": "2.5.1",
+      "licenses": [
+        {
+          "license": {
+            "id": "Apache-2.0"
+          }
+        },
+        {
+          "license": {
+            "id": "BSD-3-Clause"
+          }
+        },
+        {
+          "license": {
+            "id": "MIT"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:apache:ivy:2.5.1:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/org.apache/ivy@2.5.1",
+      "externalReferences": [
+        {
+          "url": "",
+          "hashes": [
+            {
+              "alg": "SHA-1",
+              "content": "7fac35f24f89776e7b78ec98658d8bc8f22f7e89"
+            }
+          ],
+          "type": "build-meta"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:b1dc62eecf8a6672534ff85086bc9d0ea8bb94cfd7e760c53734dad61f36012b"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-console/lib/ivy-2.5.1.jar"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-console/lib/ivy-2.5.1.jar"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/com.fasterxml.jackson.core/jackson-annotations@2.15.2?package-id=4196412ba7b050a0",
+      "type": "library",
+      "group": "com.fasterxml.jackson.core",
+      "name": "jackson-annotations",
+      "version": "2.15.2",
+      "licenses": [
+        {
+          "license": {
+            "name": "The Apache Software License, Version 2.0",
+            "url": "https://www.apache.org/licenses/LICENSE-2.0.txt"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:jackson-annotations:jackson-annotations:2.15.2:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/com.fasterxml.jackson.core/jackson-annotations@2.15.2",
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:jackson-annotations:jackson_annotations:2.15.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:jackson_annotations:jackson-annotations:2.15.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:jackson_annotations:jackson_annotations:2.15.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:fasterxml:jackson-annotations:2.15.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:fasterxml:jackson_annotations:2.15.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:jackson-annotations:jackson:2.15.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:jackson:jackson-annotations:2.15.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:jackson:jackson_annotations:2.15.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:jackson_annotations:jackson:2.15.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:core:jackson-annotations:2.15.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:core:jackson_annotations:2.15.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:fasterxml:jackson:2.15.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:jackson:jackson:2.15.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:core:jackson:2.15.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:b1dc62eecf8a6672534ff85086bc9d0ea8bb94cfd7e760c53734dad61f36012b"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-console/lib/gremlin-shaded-3.7.1.jar"
+        },
+        {
+          "name": "syft:metadata:-:artifactID",
+          "value": "jackson-annotations"
+        },
+        {
+          "name": "syft:metadata:-:groupID",
+          "value": "com.fasterxml.jackson.core"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-console/lib/gremlin-shaded-3.7.1.jar:com.fasterxml.jackson.core:jackson-annotations"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/com.fasterxml.jackson.core/jackson-core@2.15.2?package-id=7a0274fa1722b663",
+      "type": "library",
+      "group": "com.fasterxml.jackson.core",
+      "name": "jackson-core",
+      "version": "2.15.2",
+      "licenses": [
+        {
+          "license": {
+            "name": "The Apache Software License, Version 2.0",
+            "url": "https://www.apache.org/licenses/LICENSE-2.0.txt"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:jackson-core:jackson-core:2.15.2:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/com.fasterxml.jackson.core/jackson-core@2.15.2",
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:jackson-core:jackson_core:2.15.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:jackson_core:jackson-core:2.15.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:jackson_core:jackson_core:2.15.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:fasterxml:jackson-core:2.15.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:fasterxml:jackson_core:2.15.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:jackson-core:jackson:2.15.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:jackson:jackson-core:2.15.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:jackson:jackson_core:2.15.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:jackson_core:jackson:2.15.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:core:jackson-core:2.15.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:core:jackson_core:2.15.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:fasterxml:jackson:2.15.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:jackson-core:core:2.15.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:jackson_core:core:2.15.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:jackson:jackson:2.15.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:fasterxml:core:2.15.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:core:jackson:2.15.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:jackson:core:2.15.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:core:core:2.15.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:b1dc62eecf8a6672534ff85086bc9d0ea8bb94cfd7e760c53734dad61f36012b"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-console/lib/gremlin-shaded-3.7.1.jar"
+        },
+        {
+          "name": "syft:metadata:-:artifactID",
+          "value": "jackson-core"
+        },
+        {
+          "name": "syft:metadata:-:groupID",
+          "value": "com.fasterxml.jackson.core"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-console/lib/gremlin-shaded-3.7.1.jar:com.fasterxml.jackson.core:jackson-core"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/com.fasterxml.jackson.core/jackson-databind@2.15.2?package-id=030752e648e33fc6",
+      "type": "library",
+      "group": "com.fasterxml.jackson.core",
+      "name": "jackson-databind",
+      "version": "2.15.2",
+      "licenses": [
+        {
+          "license": {
+            "name": "The Apache Software License, Version 2.0",
+            "url": "https://www.apache.org/licenses/LICENSE-2.0.txt"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:jackson-databind:jackson-databind:2.15.2:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/com.fasterxml.jackson.core/jackson-databind@2.15.2",
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:jackson-databind:jackson_databind:2.15.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:jackson_databind:jackson-databind:2.15.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:jackson_databind:jackson_databind:2.15.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:fasterxml:jackson-databind:2.15.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:fasterxml:jackson_databind:2.15.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:jackson-databind:jackson:2.15.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:jackson:jackson-databind:2.15.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:jackson:jackson_databind:2.15.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:jackson_databind:jackson:2.15.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:core:jackson-databind:2.15.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:core:jackson_databind:2.15.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:fasterxml:jackson:2.15.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:jackson:jackson:2.15.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:core:jackson:2.15.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:b1dc62eecf8a6672534ff85086bc9d0ea8bb94cfd7e760c53734dad61f36012b"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-console/lib/gremlin-shaded-3.7.1.jar"
+        },
+        {
+          "name": "syft:metadata:-:artifactID",
+          "value": "jackson-databind"
+        },
+        {
+          "name": "syft:metadata:-:groupID",
+          "value": "com.fasterxml.jackson.core"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-console/lib/gremlin-shaded-3.7.1.jar:com.fasterxml.jackson.core:jackson-databind"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/org.fusesource.jansi/jansi@1.17.1?package-id=8070b72510777af5",
+      "type": "library",
+      "group": "org.fusesource.jansi",
+      "name": "jansi",
+      "version": "1.17.1",
+      "cpe": "cpe:2.3:a:fusesource:jansi:1.17.1:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/org.fusesource.jansi/jansi@1.17.1",
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:jansi:jansi:1.17.1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:b1dc62eecf8a6672534ff85086bc9d0ea8bb94cfd7e760c53734dad61f36012b"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-console/lib/jansi-1.17.1.jar"
+        },
+        {
+          "name": "syft:metadata:-:artifactID",
+          "value": "jansi"
+        },
+        {
+          "name": "syft:metadata:-:groupID",
+          "value": "org.fusesource.jansi"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-console/lib/jansi-1.17.1.jar:org.fusesource.jansi:jansi"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/org.fusesource.jansi/jansi-freebsd32@1.8?package-id=4814f185f07b1a64",
+      "type": "library",
+      "group": "org.fusesource.jansi",
+      "name": "jansi-freebsd32",
+      "version": "1.8",
+      "licenses": [
+        {
+          "license": {
+            "name": "The Apache Software License, Version 2.0",
+            "url": "http://www.apache.org/licenses/LICENSE-2.0.txt"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:jansi-freebsd32:jansi-freebsd32:1.8:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/org.fusesource.jansi/jansi-freebsd32@1.8",
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:jansi-freebsd32:jansi_freebsd32:1.8:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:jansi_freebsd32:jansi-freebsd32:1.8:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:jansi_freebsd32:jansi_freebsd32:1.8:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:fusesource:jansi-freebsd32:1.8:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:fusesource:jansi_freebsd32:1.8:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:jansi-freebsd32:jansi:1.8:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:jansi:jansi-freebsd32:1.8:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:jansi:jansi_freebsd32:1.8:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:jansi_freebsd32:jansi:1.8:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:fusesource:jansi:1.8:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:jansi:jansi:1.8:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:b1dc62eecf8a6672534ff85086bc9d0ea8bb94cfd7e760c53734dad61f36012b"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-console/lib/jansi-1.17.1.jar"
+        },
+        {
+          "name": "syft:metadata:-:artifactID",
+          "value": "jansi-freebsd32"
+        },
+        {
+          "name": "syft:metadata:-:groupID",
+          "value": "org.fusesource.jansi"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-console/lib/jansi-1.17.1.jar:org.fusesource.jansi:jansi-freebsd32"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/org.fusesource.jansi/jansi-freebsd64@1.8?package-id=564ce754f2f3245f",
+      "type": "library",
+      "group": "org.fusesource.jansi",
+      "name": "jansi-freebsd64",
+      "version": "1.8",
+      "licenses": [
+        {
+          "license": {
+            "name": "The Apache Software License, Version 2.0",
+            "url": "http://www.apache.org/licenses/LICENSE-2.0.txt"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:jansi-freebsd64:jansi-freebsd64:1.8:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/org.fusesource.jansi/jansi-freebsd64@1.8",
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:jansi-freebsd64:jansi_freebsd64:1.8:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:jansi_freebsd64:jansi-freebsd64:1.8:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:jansi_freebsd64:jansi_freebsd64:1.8:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:fusesource:jansi-freebsd64:1.8:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:fusesource:jansi_freebsd64:1.8:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:jansi-freebsd64:jansi:1.8:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:jansi:jansi-freebsd64:1.8:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:jansi:jansi_freebsd64:1.8:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:jansi_freebsd64:jansi:1.8:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:fusesource:jansi:1.8:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:jansi:jansi:1.8:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:b1dc62eecf8a6672534ff85086bc9d0ea8bb94cfd7e760c53734dad61f36012b"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-console/lib/jansi-1.17.1.jar"
+        },
+        {
+          "name": "syft:metadata:-:artifactID",
+          "value": "jansi-freebsd64"
+        },
+        {
+          "name": "syft:metadata:-:groupID",
+          "value": "org.fusesource.jansi"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-console/lib/jansi-1.17.1.jar:org.fusesource.jansi:jansi-freebsd64"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/org.fusesource.jansi/jansi-linux32@1.8?package-id=de739a065ce6f25e",
+      "type": "library",
+      "group": "org.fusesource.jansi",
+      "name": "jansi-linux32",
+      "version": "1.8",
+      "licenses": [
+        {
+          "license": {
+            "name": "The Apache Software License, Version 2.0",
+            "url": "http://www.apache.org/licenses/LICENSE-2.0.txt"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:jansi-linux32:jansi-linux32:1.8:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/org.fusesource.jansi/jansi-linux32@1.8",
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:jansi-linux32:jansi_linux32:1.8:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:jansi_linux32:jansi-linux32:1.8:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:jansi_linux32:jansi_linux32:1.8:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:fusesource:jansi-linux32:1.8:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:fusesource:jansi_linux32:1.8:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:jansi-linux32:jansi:1.8:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:jansi:jansi-linux32:1.8:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:jansi:jansi_linux32:1.8:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:jansi_linux32:jansi:1.8:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:fusesource:jansi:1.8:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:jansi:jansi:1.8:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:b1dc62eecf8a6672534ff85086bc9d0ea8bb94cfd7e760c53734dad61f36012b"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-console/lib/jansi-1.17.1.jar"
+        },
+        {
+          "name": "syft:metadata:-:artifactID",
+          "value": "jansi-linux32"
+        },
+        {
+          "name": "syft:metadata:-:groupID",
+          "value": "org.fusesource.jansi"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-console/lib/jansi-1.17.1.jar:org.fusesource.jansi:jansi-linux32"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/org.fusesource.jansi/jansi-linux64@1.8?package-id=e1a9f5c7cc1ce415",
+      "type": "library",
+      "group": "org.fusesource.jansi",
+      "name": "jansi-linux64",
+      "version": "1.8",
+      "licenses": [
+        {
+          "license": {
+            "name": "The Apache Software License, Version 2.0",
+            "url": "http://www.apache.org/licenses/LICENSE-2.0.txt"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:jansi-linux64:jansi-linux64:1.8:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/org.fusesource.jansi/jansi-linux64@1.8",
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:jansi-linux64:jansi_linux64:1.8:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:jansi_linux64:jansi-linux64:1.8:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:jansi_linux64:jansi_linux64:1.8:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:fusesource:jansi-linux64:1.8:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:fusesource:jansi_linux64:1.8:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:jansi-linux64:jansi:1.8:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:jansi:jansi-linux64:1.8:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:jansi:jansi_linux64:1.8:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:jansi_linux64:jansi:1.8:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:fusesource:jansi:1.8:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:jansi:jansi:1.8:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:b1dc62eecf8a6672534ff85086bc9d0ea8bb94cfd7e760c53734dad61f36012b"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-console/lib/jansi-1.17.1.jar"
+        },
+        {
+          "name": "syft:metadata:-:artifactID",
+          "value": "jansi-linux64"
+        },
+        {
+          "name": "syft:metadata:-:groupID",
+          "value": "org.fusesource.jansi"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-console/lib/jansi-1.17.1.jar:org.fusesource.jansi:jansi-linux64"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/org.fusesource.jansi/jansi-native@1.8?package-id=17f1daf0f28885a6",
+      "type": "library",
+      "group": "org.fusesource.jansi",
+      "name": "jansi-native",
+      "version": "1.8",
+      "licenses": [
+        {
+          "license": {
+            "name": "http://www.apache.org/licenses/LICENSE-2.0.txt"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:fusesource\\,-corp-:jansi-native:1.8:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/org.fusesource.jansi/jansi-native@1.8",
+      "externalReferences": [
+        {
+          "url": "",
+          "hashes": [
+            {
+              "alg": "SHA-1",
+              "content": "e90caa31c9b8d748359450d7487f76b05549ae65"
+            }
+          ],
+          "type": "build-meta"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:fusesource\\,-corp-:jansi_native:1.8:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:fusesource\\,_corp_:jansi-native:1.8:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:fusesource\\,_corp_:jansi_native:1.8:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:jansi-native:jansi-native:1.8:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:jansi-native:jansi_native:1.8:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:jansi_native:jansi-native:1.8:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:jansi_native:jansi_native:1.8:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:fusesource\\,-corp-:jansi:1.8:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:fusesource\\,_corp_:jansi:1.8:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:fusesource:jansi-native:1.8:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:fusesource:jansi_native:1.8:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:jansi-native:jansi:1.8:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:jansi:jansi-native:1.8:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:jansi:jansi_native:1.8:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:jansi_native:jansi:1.8:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:fusesource:jansi:1.8:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:jansi:jansi:1.8:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:b1dc62eecf8a6672534ff85086bc9d0ea8bb94cfd7e760c53734dad61f36012b"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-console/lib/jansi-1.17.1.jar"
+        },
+        {
+          "name": "syft:metadata:-:artifactID",
+          "value": "jansi-native"
+        },
+        {
+          "name": "syft:metadata:-:groupID",
+          "value": "org.fusesource.jansi"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-console/lib/jansi-1.17.1.jar"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/org.fusesource.jansi/jansi-osx@1.8?package-id=7536b749d2b55c64",
+      "type": "library",
+      "group": "org.fusesource.jansi",
+      "name": "jansi-osx",
+      "version": "1.8",
+      "licenses": [
+        {
+          "license": {
+            "name": "The Apache Software License, Version 2.0",
+            "url": "http://www.apache.org/licenses/LICENSE-2.0.txt"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:fusesource:jansi-osx:1.8:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/org.fusesource.jansi/jansi-osx@1.8",
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:fusesource:jansi_osx:1.8:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:jansi-osx:jansi-osx:1.8:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:jansi-osx:jansi_osx:1.8:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:jansi_osx:jansi-osx:1.8:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:jansi_osx:jansi_osx:1.8:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:fusesource:jansi:1.8:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:jansi-osx:jansi:1.8:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:jansi:jansi-osx:1.8:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:jansi:jansi_osx:1.8:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:jansi_osx:jansi:1.8:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:jansi:jansi:1.8:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:b1dc62eecf8a6672534ff85086bc9d0ea8bb94cfd7e760c53734dad61f36012b"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-console/lib/jansi-1.17.1.jar"
+        },
+        {
+          "name": "syft:metadata:-:artifactID",
+          "value": "jansi-osx"
+        },
+        {
+          "name": "syft:metadata:-:groupID",
+          "value": "org.fusesource.jansi"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-console/lib/jansi-1.17.1.jar:org.fusesource.jansi:jansi-osx"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/org.fusesource.jansi/jansi-windows32@1.8?package-id=d3a166b4eaa79784",
+      "type": "library",
+      "group": "org.fusesource.jansi",
+      "name": "jansi-windows32",
+      "version": "1.8",
+      "licenses": [
+        {
+          "license": {
+            "name": "The Apache Software License, Version 2.0",
+            "url": "http://www.apache.org/licenses/LICENSE-2.0.txt"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:jansi-windows32:jansi-windows32:1.8:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/org.fusesource.jansi/jansi-windows32@1.8",
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:jansi-windows32:jansi_windows32:1.8:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:jansi_windows32:jansi-windows32:1.8:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:jansi_windows32:jansi_windows32:1.8:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:fusesource:jansi-windows32:1.8:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:fusesource:jansi_windows32:1.8:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:jansi-windows32:jansi:1.8:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:jansi:jansi-windows32:1.8:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:jansi:jansi_windows32:1.8:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:jansi_windows32:jansi:1.8:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:fusesource:jansi:1.8:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:jansi:jansi:1.8:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:b1dc62eecf8a6672534ff85086bc9d0ea8bb94cfd7e760c53734dad61f36012b"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-console/lib/jansi-1.17.1.jar"
+        },
+        {
+          "name": "syft:metadata:-:artifactID",
+          "value": "jansi-windows32"
+        },
+        {
+          "name": "syft:metadata:-:groupID",
+          "value": "org.fusesource.jansi"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-console/lib/jansi-1.17.1.jar:org.fusesource.jansi:jansi-windows32"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/org.fusesource.jansi/jansi-windows64@1.8?package-id=5de9ccc56fba1b75",
+      "type": "library",
+      "group": "org.fusesource.jansi",
+      "name": "jansi-windows64",
+      "version": "1.8",
+      "licenses": [
+        {
+          "license": {
+            "name": "The Apache Software License, Version 2.0",
+            "url": "http://www.apache.org/licenses/LICENSE-2.0.txt"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:jansi-windows64:jansi-windows64:1.8:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/org.fusesource.jansi/jansi-windows64@1.8",
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:jansi-windows64:jansi_windows64:1.8:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:jansi_windows64:jansi-windows64:1.8:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:jansi_windows64:jansi_windows64:1.8:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:fusesource:jansi-windows64:1.8:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:fusesource:jansi_windows64:1.8:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:jansi-windows64:jansi:1.8:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:jansi:jansi-windows64:1.8:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:jansi:jansi_windows64:1.8:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:jansi_windows64:jansi:1.8:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:fusesource:jansi:1.8:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:jansi:jansi:1.8:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:b1dc62eecf8a6672534ff85086bc9d0ea8bb94cfd7e760c53734dad61f36012b"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-console/lib/jansi-1.17.1.jar"
+        },
+        {
+          "name": "syft:metadata:-:artifactID",
+          "value": "jansi-windows64"
+        },
+        {
+          "name": "syft:metadata:-:groupID",
+          "value": "org.fusesource.jansi"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-console/lib/jansi-1.17.1.jar:org.fusesource.jansi:jansi-windows64"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:apk/alpine/java-cacerts@1.0-r1?arch=x86_64&distro=alpine-3.18.5&package-id=abd7dc90169ab0fe",
+      "type": "library",
+      "publisher": "Natanael Copa <ncopa@alpinelinux.org>",
+      "name": "java-cacerts",
+      "version": "1.0-r1",
+      "description": "Script to update java cacerts store",
+      "licenses": [
+        {
+          "license": {
+            "id": "MIT"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:java-cacerts:java-cacerts:1.0-r1:*:*:*:*:*:*:*",
+      "purl": "pkg:apk/alpine/java-cacerts@1.0-r1?arch=x86_64&distro=alpine-3.18.5",
+      "externalReferences": [
+        {
+          "url": "https://git.alpinelinux.org/aports/tree/community/java-cacerts",
+          "type": "distribution"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "apk-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "apk"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "apk-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:java-cacerts:java_cacerts:1.0-r1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:java_cacerts:java-cacerts:1.0-r1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:java_cacerts:java_cacerts:1.0-r1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:java:java-cacerts:1.0-r1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:java:java_cacerts:1.0-r1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:17b0acbb0089734604f8e7c44f1bc811a80410e28e4c08d88f3ca17246cbee8f"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/lib/apk/db/installed"
+        },
+        {
+          "name": "syft:metadata:gitCommitOfApkPort",
+          "value": "a48221f096bb8ee4f536eab05bce93879490e29a"
+        },
+        {
+          "name": "syft:metadata:installedSize",
+          "value": "32768"
+        },
+        {
+          "name": "syft:metadata:originPackage",
+          "value": "java-cacerts"
+        },
+        {
+          "name": "syft:metadata:pullChecksum",
+          "value": "Q1/PXn/eLtpP0gqqqHNmWPbJga4DE="
+        },
+        {
+          "name": "syft:metadata:pullDependencies:0",
+          "value": "p11-kit"
+        },
+        {
+          "name": "syft:metadata:pullDependencies:1",
+          "value": "p11-kit-trust"
+        },
+        {
+          "name": "syft:metadata:pullDependencies:2",
+          "value": "ca-certificates"
+        },
+        {
+          "name": "syft:metadata:pullDependencies:3",
+          "value": "/bin/sh"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "1937"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:apk/alpine/java-common@0.5-r0?arch=x86_64&distro=alpine-3.18.5&package-id=854cda365d24a3ac",
+      "type": "library",
+      "publisher": "Timo Teras <timo.teras@iki.fi>",
+      "name": "java-common",
+      "version": "0.5-r0",
+      "description": "Java common (updates java links)",
+      "licenses": [
+        {
+          "license": {
+            "id": "GPL-2.0-or-later"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:java-common:java-common:0.5-r0:*:*:*:*:*:*:*",
+      "purl": "pkg:apk/alpine/java-common@0.5-r0?arch=x86_64&distro=alpine-3.18.5",
+      "externalReferences": [
+        {
+          "url": "https://git.alpinelinux.org/aports/",
+          "type": "distribution"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "apk-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "apk"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "apk-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:java-common:java_common:0.5-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:java_common:java-common:0.5-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:java_common:java_common:0.5-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:java:java-common:0.5-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:java:java_common:0.5-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:17b0acbb0089734604f8e7c44f1bc811a80410e28e4c08d88f3ca17246cbee8f"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/lib/apk/db/installed"
+        },
+        {
+          "name": "syft:metadata:gitCommitOfApkPort",
+          "value": "6ca399011e3c9f1aea0856c3428fe7badb09a664"
+        },
+        {
+          "name": "syft:metadata:installedSize",
+          "value": "12288"
+        },
+        {
+          "name": "syft:metadata:originPackage",
+          "value": "java-common"
+        },
+        {
+          "name": "syft:metadata:pullChecksum",
+          "value": "Q1PqrV8HwNSLfJSrDLgwPZoBcAMwA="
+        },
+        {
+          "name": "syft:metadata:pullDependencies:0",
+          "value": "/bin/sh"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "3666"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/com.github.javaparser/javaparser-core@3.25.0?package-id=f1bd56683dcf4fd1",
+      "type": "library",
+      "group": "com.github.javaparser",
+      "name": "javaparser-core",
+      "version": "3.25.0",
+      "licenses": [
+        {
+          "license": {
+            "name": "\"GNU Lesser General Public License\";link=\"http://www.gnu.org/licenses/lgpl-3.0.html\",\"Apache License, Version 2.0\";link=\"http://www.apache.org/licenses/LICENSE-2.0.txt\";description=\"A business-friendly OSS license\""
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:javaparser-core:javaparser-core:3.25.0:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/com.github.javaparser/javaparser-core@3.25.0",
+      "externalReferences": [
+        {
+          "url": "",
+          "hashes": [
+            {
+              "alg": "SHA-1",
+              "content": "1d12acafa1e4d542ca766737d7bf2ac7bc74190e"
+            }
+          ],
+          "type": "build-meta"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:javaparser-core:javaparser_core:3.25.0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:javaparser_core:javaparser-core:3.25.0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:javaparser_core:javaparser_core:3.25.0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:javaparser-core:javaparser:3.25.0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:javaparser:javaparser-core:3.25.0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:javaparser:javaparser_core:3.25.0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:javaparser_core:javaparser:3.25.0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:github:javaparser-core:3.25.0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:github:javaparser_core:3.25.0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:javaparser:javaparser:3.25.0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:github:javaparser:3.25.0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:b1dc62eecf8a6672534ff85086bc9d0ea8bb94cfd7e760c53734dad61f36012b"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-console/lib/javaparser-core-3.25.0.jar"
+        },
+        {
+          "name": "syft:metadata:-:artifactID",
+          "value": "javaparser-core"
+        },
+        {
+          "name": "syft:metadata:-:groupID",
+          "value": "com.github.javaparser"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-console/lib/javaparser-core-3.25.0.jar"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/com.squareup/javapoet@1.13.0?package-id=bffba65a155471a6",
+      "type": "library",
+      "group": "com.squareup",
+      "name": "javapoet",
+      "version": "1.13.0",
+      "licenses": [
+        {
+          "license": {
+            "name": "Apache 2.0",
+            "url": "http://www.apache.org/licenses/LICENSE-2.0.txt"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:javapoet:javapoet:1.13.0:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/com.squareup/javapoet@1.13.0",
+      "externalReferences": [
+        {
+          "url": "",
+          "hashes": [
+            {
+              "alg": "SHA-1",
+              "content": "d6562d385049f35eb50403fa86bb11cce76b866a"
+            }
+          ],
+          "type": "build-meta"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:squareup:javapoet:1.13.0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:b1dc62eecf8a6672534ff85086bc9d0ea8bb94cfd7e760c53734dad61f36012b"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-console/lib/javapoet-1.13.0.jar"
+        },
+        {
+          "name": "syft:metadata:-:artifactID",
+          "value": "javapoet"
+        },
+        {
+          "name": "syft:metadata:-:groupID",
+          "value": "com.squareup"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-console/lib/javapoet-1.13.0.jar"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/org.javatuples/javatuples@1.2?package-id=6a7fa765cd273fca",
+      "type": "library",
+      "group": "org.javatuples",
+      "name": "javatuples",
+      "version": "1.2",
+      "licenses": [
+        {
+          "license": {
+            "name": "The Apache Software License, Version 2.0",
+            "url": "http://www.apache.org/licenses/LICENSE-2.0.txt"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:javatuples:javatuples:1.2:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/org.javatuples/javatuples@1.2",
+      "externalReferences": [
+        {
+          "url": "",
+          "hashes": [
+            {
+              "alg": "SHA-1",
+              "content": "507312ac4b601204a72a83380badbca82683dd36"
+            }
+          ],
+          "type": "build-meta"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:b1dc62eecf8a6672534ff85086bc9d0ea8bb94cfd7e760c53734dad61f36012b"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-console/lib/javatuples-1.2.jar"
+        },
+        {
+          "name": "syft:metadata:-:artifactID",
+          "value": "javatuples"
+        },
+        {
+          "name": "syft:metadata:-:groupID",
+          "value": "org.javatuples"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-console/lib/javatuples-1.2.jar"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/org.mindrot/jbcrypt@0.4?package-id=0572244850683c66",
+      "type": "library",
+      "group": "org.mindrot",
+      "name": "jbcrypt",
+      "version": "0.4",
+      "licenses": [
+        {
+          "license": {
+            "id": "ISC",
+            "url": "https://opensource.org/licenses/isc-license"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:jbcrypt:jbcrypt:0.4:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/org.mindrot/jbcrypt@0.4",
+      "externalReferences": [
+        {
+          "url": "",
+          "hashes": [
+            {
+              "alg": "SHA-1",
+              "content": "af7e61017f73abb18ac4e036954f9f28c6366c07"
+            }
+          ],
+          "type": "build-meta"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:mindrot:jbcrypt:0.4:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:b1dc62eecf8a6672534ff85086bc9d0ea8bb94cfd7e760c53734dad61f36012b"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-console/lib/jbcrypt-0.4.jar"
+        },
+        {
+          "name": "syft:metadata:-:artifactID",
+          "value": "jbcrypt"
+        },
+        {
+          "name": "syft:metadata:-:groupID",
+          "value": "org.mindrot"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-console/lib/jbcrypt-0.4.jar"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/org.slf4j/jcl-over-slf4j@1.7.33?package-id=e88df5126e6b0898",
+      "type": "library",
+      "group": "org.slf4j",
+      "name": "jcl-over-slf4j",
+      "version": "1.7.33",
+      "licenses": [
+        {
+          "license": {
+            "name": "Apache License, Version 2.0",
+            "url": "https://www.apache.org/licenses/LICENSE-2.0.txt"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:apache:jcl-over-slf4j:1.7.33:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/org.slf4j/jcl-over-slf4j@1.7.33",
+      "externalReferences": [
+        {
+          "url": "",
+          "hashes": [
+            {
+              "alg": "SHA-1",
+              "content": "28c441128bc81b6d95cc2857ae5bb46ae5bf658b"
+            }
+          ],
+          "type": "build-meta"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:apache:jcl_over_slf4j:1.7.33:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:b1dc62eecf8a6672534ff85086bc9d0ea8bb94cfd7e760c53734dad61f36012b"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-console/lib/jcl-over-slf4j-1.7.33.jar"
+        },
+        {
+          "name": "syft:metadata:-:artifactID",
+          "value": "jcl-over-slf4j"
+        },
+        {
+          "name": "syft:metadata:-:groupID",
+          "value": "org.slf4j"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-console/lib/jcl-over-slf4j-1.7.33.jar"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/org.jctools/jctools-core@3.1.0?package-id=94a8527dbfbf290e",
+      "type": "library",
+      "group": "org.jctools",
+      "name": "jctools-core",
+      "version": "3.1.0",
+      "licenses": [
+        {
+          "license": {
+            "name": "Apache License, Version 2.0",
+            "url": "http://www.apache.org/licenses/LICENSE-2.0.txt"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:jctools-core:jctools-core:3.1.0:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/org.jctools/jctools-core@3.1.0",
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:jctools-core:jctools_core:3.1.0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:jctools_core:jctools-core:3.1.0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:jctools_core:jctools_core:3.1.0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:jctools:jctools-core:3.1.0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:jctools:jctools_core:3.1.0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:b1dc62eecf8a6672534ff85086bc9d0ea8bb94cfd7e760c53734dad61f36012b"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-console/lib/netty-common-4.1.96.Final.jar"
+        },
+        {
+          "name": "syft:metadata:-:artifactID",
+          "value": "jctools-core"
+        },
+        {
+          "name": "syft:metadata:-:groupID",
+          "value": "org.jctools"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-console/lib/netty-common-4.1.96.Final.jar:org.jctools:jctools-core"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/jline/jline@2.14.6?package-id=cea69ece35e47918",
+      "type": "library",
+      "group": "jline",
+      "name": "jline",
+      "version": "2.14.6",
+      "licenses": [
+        {
+          "license": {
+            "name": "http://www.opensource.org/licenses/bsd-license.php"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:jline:jline:2.14.6:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/jline/jline@2.14.6",
+      "externalReferences": [
+        {
+          "url": "",
+          "hashes": [
+            {
+              "alg": "SHA-1",
+              "content": "c3aeac59c022bdc497c8c48ed86fa50450e4896a"
+            }
+          ],
+          "type": "build-meta"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:b1dc62eecf8a6672534ff85086bc9d0ea8bb94cfd7e760c53734dad61f36012b"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-console/lib/jline-2.14.6.jar"
+        },
+        {
+          "name": "syft:metadata:-:artifactID",
+          "value": "jline"
+        },
+        {
+          "name": "syft:metadata:-:groupID",
+          "value": "jline"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-console/lib/jline-2.14.6.jar"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/jrt-fs/jrt-fs@11.0.21?package-id=fd5b417f66288ba1",
+      "type": "library",
+      "name": "jrt-fs",
+      "version": "11.0.21",
+      "cpe": "cpe:2.3:a:oracle-corporation:jrt-fs:11.0.21:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/jrt-fs/jrt-fs@11.0.21",
+      "externalReferences": [
+        {
+          "url": "",
+          "hashes": [
+            {
+              "alg": "SHA-1",
+              "content": "171bf0b5f4ba21bba153b8e6f6d4b37eff0372a6"
+            }
+          ],
+          "type": "build-meta"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:oracle-corporation:jrt_fs:11.0.21:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:oracle_corporation:jrt-fs:11.0.21:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:oracle_corporation:jrt_fs:11.0.21:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:alpine:jrt-fs:11.0.21:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:alpine:jrt_fs:11.0.21:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:jrt-fs:jrt-fs:11.0.21:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:jrt-fs:jrt_fs:11.0.21:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:jrt_fs:jrt-fs:11.0.21:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:jrt_fs:jrt_fs:11.0.21:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:jrt:jrt-fs:11.0.21:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:jrt:jrt_fs:11.0.21:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:17b0acbb0089734604f8e7c44f1bc811a80410e28e4c08d88f3ca17246cbee8f"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/usr/lib/jvm/java-11-openjdk/lib/jrt-fs.jar"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/usr/lib/jvm/java-11-openjdk/lib/jrt-fs.jar"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/com.esotericsoftware/kryo-shaded@3.0.3?package-id=f73f1ac6ffc42651",
+      "type": "library",
+      "group": "com.esotericsoftware",
+      "name": "kryo-shaded",
+      "version": "3.0.3",
+      "licenses": [
+        {
+          "license": {
+            "name": "New BSD License",
+            "url": "http://www.opensource.org/licenses/bsd-license.php"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:esotericsoftware:kryo-shaded:3.0.3:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/com.esotericsoftware/kryo-shaded@3.0.3",
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:esotericsoftware:kryo_shaded:3.0.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:kryo-shaded:kryo-shaded:3.0.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:kryo-shaded:kryo_shaded:3.0.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:kryo_shaded:kryo-shaded:3.0.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:kryo_shaded:kryo_shaded:3.0.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:sonatype:kryo-shaded:3.0.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:sonatype:kryo_shaded:3.0.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:kryo:kryo-shaded:3.0.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:kryo:kryo_shaded:3.0.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:oss:kryo-shaded:3.0.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:oss:kryo_shaded:3.0.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:b1dc62eecf8a6672534ff85086bc9d0ea8bb94cfd7e760c53734dad61f36012b"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-console/lib/gremlin-shaded-3.7.1.jar"
+        },
+        {
+          "name": "syft:metadata:-:artifactID",
+          "value": "kryo-shaded"
+        },
+        {
+          "name": "syft:metadata:-:groupID",
+          "value": "com.esotericsoftware"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-console/lib/gremlin-shaded-3.7.1.jar:com.esotericsoftware:kryo-shaded"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:apk/alpine/lcms2@2.15-r2?arch=x86_64&distro=alpine-3.18.5&package-id=761e2c68d5f5fab4",
+      "type": "library",
+      "publisher": "Natanael Copa <ncopa@alpinelinux.org>",
+      "name": "lcms2",
+      "version": "2.15-r2",
+      "description": "Color Management Engine",
+      "licenses": [
+        {
+          "license": {
+            "id": "MIT"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:lcms2:lcms2:2.15-r2:*:*:*:*:*:*:*",
+      "purl": "pkg:apk/alpine/lcms2@2.15-r2?arch=x86_64&distro=alpine-3.18.5",
+      "externalReferences": [
+        {
+          "url": "https://www.littlecms.com",
+          "type": "distribution"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "apk-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "apk"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "apk-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:lcms2:lcms:2.15-r2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:lcms:lcms2:2.15-r2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:lcms:lcms:2.15-r2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:17b0acbb0089734604f8e7c44f1bc811a80410e28e4c08d88f3ca17246cbee8f"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/lib/apk/db/installed"
+        },
+        {
+          "name": "syft:metadata:gitCommitOfApkPort",
+          "value": "6230740e6722f541f75e1ca2ce6b5f6e53a3211d"
+        },
+        {
+          "name": "syft:metadata:installedSize",
+          "value": "344064"
+        },
+        {
+          "name": "syft:metadata:originPackage",
+          "value": "lcms2"
+        },
+        {
+          "name": "syft:metadata:provides:0",
+          "value": "so:liblcms2.so.2=2.0.15"
+        },
+        {
+          "name": "syft:metadata:pullChecksum",
+          "value": "Q1wwKFdTt4AFYhsUR9R9VOai9RwY4="
+        },
+        {
+          "name": "syft:metadata:pullDependencies:0",
+          "value": "so:libc.musl-x86_64.so.1"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "148638"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:apk/alpine/libbsd@0.11.7-r1?arch=x86_64&distro=alpine-3.18.5&package-id=be56281be99ee143",
+      "type": "library",
+      "publisher": "Drew DeVault <sir@cmpwn.com>",
+      "name": "libbsd",
+      "version": "0.11.7-r1",
+      "description": "commonly-used BSD functions not implemented by all libcs",
+      "licenses": [
+        {
+          "license": {
+            "id": "BSD-3-Clause"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:libbsd:libbsd:0.11.7-r1:*:*:*:*:*:*:*",
+      "purl": "pkg:apk/alpine/libbsd@0.11.7-r1?arch=x86_64&distro=alpine-3.18.5",
+      "externalReferences": [
+        {
+          "url": "https://libbsd.freedesktop.org/",
+          "type": "distribution"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "apk-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "apk"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "apk-db-entry"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:17b0acbb0089734604f8e7c44f1bc811a80410e28e4c08d88f3ca17246cbee8f"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/lib/apk/db/installed"
+        },
+        {
+          "name": "syft:metadata:gitCommitOfApkPort",
+          "value": "61912ace73a5f4d3e13a8ed157ed39b2c6d54c3e"
+        },
+        {
+          "name": "syft:metadata:installedSize",
+          "value": "86016"
+        },
+        {
+          "name": "syft:metadata:originPackage",
+          "value": "libbsd"
+        },
+        {
+          "name": "syft:metadata:provides:0",
+          "value": "so:libbsd.so.0=0.11.7"
+        },
+        {
+          "name": "syft:metadata:pullChecksum",
+          "value": "Q1+j7EAyk6annhsRDfB05DkHY1LLM="
+        },
+        {
+          "name": "syft:metadata:pullDependencies:0",
+          "value": "musl"
+        },
+        {
+          "name": "syft:metadata:pullDependencies:1",
+          "value": "so:libc.musl-x86_64.so.1"
+        },
+        {
+          "name": "syft:metadata:pullDependencies:2",
+          "value": "so:libmd.so.0"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "34014"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:apk/alpine/libbz2@1.0.8-r5?arch=x86_64&upstream=bzip2&distro=alpine-3.18.5&package-id=18e5911103cbf51c",
+      "type": "library",
+      "publisher": "Natanael Copa <ncopa@alpinelinux.org>",
+      "name": "libbz2",
+      "version": "1.0.8-r5",
+      "description": "Shared library for bz2",
+      "licenses": [
+        {
+          "license": {
+            "id": "bzip2-1.0.6"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:libbz2:libbz2:1.0.8-r5:*:*:*:*:*:*:*",
+      "purl": "pkg:apk/alpine/libbz2@1.0.8-r5?arch=x86_64&upstream=bzip2&distro=alpine-3.18.5",
+      "externalReferences": [
+        {
+          "url": "https://sourceware.org/bzip2/",
+          "type": "distribution"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "apk-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "apk"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "apk-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:libbz2:libbz:1.0.8-r5:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:libbz:libbz2:1.0.8-r5:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:libbz:libbz:1.0.8-r5:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:17b0acbb0089734604f8e7c44f1bc811a80410e28e4c08d88f3ca17246cbee8f"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/lib/apk/db/installed"
+        },
+        {
+          "name": "syft:metadata:gitCommitOfApkPort",
+          "value": "84a227baf001b6e0208e3352b294e4d7a40e93de"
+        },
+        {
+          "name": "syft:metadata:installedSize",
+          "value": "90112"
+        },
+        {
+          "name": "syft:metadata:originPackage",
+          "value": "bzip2"
+        },
+        {
+          "name": "syft:metadata:provides:0",
+          "value": "so:libbz2.so.1=1.0.8"
+        },
+        {
+          "name": "syft:metadata:pullChecksum",
+          "value": "Q1v13gWmLEhB4wJ6i0S77ZTIkSSDU="
+        },
+        {
+          "name": "syft:metadata:pullDependencies:0",
+          "value": "so:libc.musl-x86_64.so.1"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "33557"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:apk/alpine/libc-utils@0.7.2-r5?arch=x86_64&upstream=libc-dev&distro=alpine-3.18.5&package-id=caef79f1fe0b500a",
+      "type": "library",
+      "publisher": "Natanael Copa <ncopa@alpinelinux.org>",
+      "name": "libc-utils",
+      "version": "0.7.2-r5",
+      "description": "Meta package to pull in correct libc",
+      "licenses": [
+        {
+          "expression": "BSD-2-Clause AND BSD-3-Clause"
+        }
+      ],
+      "cpe": "cpe:2.3:a:libc-utils:libc-utils:0.7.2-r5:*:*:*:*:*:*:*",
+      "purl": "pkg:apk/alpine/libc-utils@0.7.2-r5?arch=x86_64&upstream=libc-dev&distro=alpine-3.18.5",
+      "externalReferences": [
+        {
+          "url": "https://alpinelinux.org",
+          "type": "distribution"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "apk-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "apk"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "apk-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:libc-utils:libc_utils:0.7.2-r5:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:libc_utils:libc-utils:0.7.2-r5:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:libc_utils:libc_utils:0.7.2-r5:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:libc:libc-utils:0.7.2-r5:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:libc:libc_utils:0.7.2-r5:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:17b0acbb0089734604f8e7c44f1bc811a80410e28e4c08d88f3ca17246cbee8f"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/lib/apk/db/installed"
+        },
+        {
+          "name": "syft:metadata:gitCommitOfApkPort",
+          "value": "988f183cc9d6699930c3e18ccf4a9e36010afb56"
+        },
+        {
+          "name": "syft:metadata:installedSize",
+          "value": "4096"
+        },
+        {
+          "name": "syft:metadata:originPackage",
+          "value": "libc-dev"
+        },
+        {
+          "name": "syft:metadata:pullChecksum",
+          "value": "Q1Llna/ri8oHhlQIRsaG8SGug0ikI="
+        },
+        {
+          "name": "syft:metadata:pullDependencies:0",
+          "value": "musl-utils"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "1484"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:apk/alpine/libcrypto3@3.1.4-r1?arch=x86_64&upstream=openssl&distro=alpine-3.18.5&package-id=e37b0015aff83d58",
+      "type": "library",
+      "publisher": "Ariadne Conill <ariadne@dereferenced.org>",
+      "name": "libcrypto3",
+      "version": "3.1.4-r1",
+      "description": "Crypto library from openssl",
+      "licenses": [
+        {
+          "license": {
+            "id": "Apache-2.0"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:libcrypto3:libcrypto3:3.1.4-r1:*:*:*:*:*:*:*",
+      "purl": "pkg:apk/alpine/libcrypto3@3.1.4-r1?arch=x86_64&upstream=openssl&distro=alpine-3.18.5",
+      "externalReferences": [
+        {
+          "url": "https://www.openssl.org/",
+          "type": "distribution"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "apk-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "apk"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "apk-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:libcrypto3:libcrypto:3.1.4-r1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:libcrypto:libcrypto3:3.1.4-r1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:libcrypto:libcrypto:3.1.4-r1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:17b0acbb0089734604f8e7c44f1bc811a80410e28e4c08d88f3ca17246cbee8f"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/lib/apk/db/installed"
+        },
+        {
+          "name": "syft:metadata:gitCommitOfApkPort",
+          "value": "ff71ec30ae47b5871c761e55af0a8850d253d828"
+        },
+        {
+          "name": "syft:metadata:installedSize",
+          "value": "4579328"
+        },
+        {
+          "name": "syft:metadata:originPackage",
+          "value": "openssl"
+        },
+        {
+          "name": "syft:metadata:provides:0",
+          "value": "so:libcrypto.so.3=3"
+        },
+        {
+          "name": "syft:metadata:pullChecksum",
+          "value": "Q1o+vFJMnZukduV7Y+lgb7DvYwlJo="
+        },
+        {
+          "name": "syft:metadata:pullDependencies:0",
+          "value": "so:libc.musl-x86_64.so.1"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "1743954"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:apk/alpine/libffi@3.4.4-r2?arch=x86_64&distro=alpine-3.18.5&package-id=4398410e101bab31",
+      "type": "library",
+      "publisher": "Natanael Copa <ncopa@alpinelinux.org>",
+      "name": "libffi",
+      "version": "3.4.4-r2",
+      "description": "portable, high level programming interface to various calling conventions.",
+      "licenses": [
+        {
+          "license": {
+            "id": "MIT"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:libffi:libffi:3.4.4-r2:*:*:*:*:*:*:*",
+      "purl": "pkg:apk/alpine/libffi@3.4.4-r2?arch=x86_64&distro=alpine-3.18.5",
+      "externalReferences": [
+        {
+          "url": "https://sourceware.org/libffi/",
+          "type": "distribution"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "apk-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "apk"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "apk-db-entry"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:17b0acbb0089734604f8e7c44f1bc811a80410e28e4c08d88f3ca17246cbee8f"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/lib/apk/db/installed"
+        },
+        {
+          "name": "syft:metadata:gitCommitOfApkPort",
+          "value": "84a227baf001b6e0208e3352b294e4d7a40e93de"
+        },
+        {
+          "name": "syft:metadata:installedSize",
+          "value": "53248"
+        },
+        {
+          "name": "syft:metadata:originPackage",
+          "value": "libffi"
+        },
+        {
+          "name": "syft:metadata:provides:0",
+          "value": "so:libffi.so.8=8.1.2"
+        },
+        {
+          "name": "syft:metadata:pullChecksum",
+          "value": "Q1xtictLb2KgBtjl6nDymcUhtVZy8="
+        },
+        {
+          "name": "syft:metadata:pullDependencies:0",
+          "value": "so:libc.musl-x86_64.so.1"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "18623"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:apk/alpine/libjpeg-turbo@2.1.5.1-r3?arch=x86_64&distro=alpine-3.18.5&package-id=cb5c16be818a9da1",
+      "type": "library",
+      "publisher": "Natanael Copa <ncopa@alpinelinux.org>",
+      "name": "libjpeg-turbo",
+      "version": "2.1.5.1-r3",
+      "description": "Accelerated baseline JPEG compression and decompression library",
+      "licenses": [
+        {
+          "expression": "BSD-3-Clause AND IJG AND Zlib"
+        }
+      ],
+      "cpe": "cpe:2.3:a:libjpeg-turbo:libjpeg-turbo:2.1.5.1-r3:*:*:*:*:*:*:*",
+      "purl": "pkg:apk/alpine/libjpeg-turbo@2.1.5.1-r3?arch=x86_64&distro=alpine-3.18.5",
+      "externalReferences": [
+        {
+          "url": "https://libjpeg-turbo.org/",
+          "type": "distribution"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "apk-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "apk"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "apk-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:libjpeg-turbo:libjpeg_turbo:2.1.5.1-r3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:libjpeg_turbo:libjpeg-turbo:2.1.5.1-r3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:libjpeg_turbo:libjpeg_turbo:2.1.5.1-r3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:libjpeg:libjpeg-turbo:2.1.5.1-r3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:libjpeg:libjpeg_turbo:2.1.5.1-r3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:17b0acbb0089734604f8e7c44f1bc811a80410e28e4c08d88f3ca17246cbee8f"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/lib/apk/db/installed"
+        },
+        {
+          "name": "syft:metadata:gitCommitOfApkPort",
+          "value": "706ef5050047b417e440d017ddae08a5f2680b1b"
+        },
+        {
+          "name": "syft:metadata:installedSize",
+          "value": "1138688"
+        },
+        {
+          "name": "syft:metadata:originPackage",
+          "value": "libjpeg-turbo"
+        },
+        {
+          "name": "syft:metadata:provides:0",
+          "value": "so:libjpeg.so.8=8.2.2"
+        },
+        {
+          "name": "syft:metadata:provides:1",
+          "value": "so:libturbojpeg.so.0=0.2.0"
+        },
+        {
+          "name": "syft:metadata:pullChecksum",
+          "value": "Q10BzQUhBki2TnToBm3a47rxTPsgI="
+        },
+        {
+          "name": "syft:metadata:pullDependencies:0",
+          "value": "so:libc.musl-x86_64.so.1"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "328155"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:apk/alpine/libmd@1.0.4-r2?arch=x86_64&distro=alpine-3.18.5&package-id=3cad17c3657f9a8c",
+      "type": "library",
+      "publisher": "omni <omni+alpine@hack.org>",
+      "name": "libmd",
+      "version": "1.0.4-r2",
+      "description": "Message Digest functions from BSD systems",
+      "licenses": [
+        {
+          "license": {
+            "id": "BSD-2-Clause"
+          }
+        },
+        {
+          "license": {
+            "id": "BSD-3-Clause"
+          }
+        },
+        {
+          "license": {
+            "id": "Beerware"
+          }
+        },
+        {
+          "license": {
+            "id": "ISC"
+          }
+        },
+        {
+          "license": {
+            "name": "AND"
+          }
+        },
+        {
+          "license": {
+            "name": "Domain"
+          }
+        },
+        {
+          "license": {
+            "name": "Public"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:libmd:libmd:1.0.4-r2:*:*:*:*:*:*:*",
+      "purl": "pkg:apk/alpine/libmd@1.0.4-r2?arch=x86_64&distro=alpine-3.18.5",
+      "externalReferences": [
+        {
+          "url": "https://www.hadrons.org/software/libmd/",
+          "type": "distribution"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "apk-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "apk"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "apk-db-entry"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:17b0acbb0089734604f8e7c44f1bc811a80410e28e4c08d88f3ca17246cbee8f"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/lib/apk/db/installed"
+        },
+        {
+          "name": "syft:metadata:gitCommitOfApkPort",
+          "value": "84a227baf001b6e0208e3352b294e4d7a40e93de"
+        },
+        {
+          "name": "syft:metadata:installedSize",
+          "value": "57344"
+        },
+        {
+          "name": "syft:metadata:originPackage",
+          "value": "libmd"
+        },
+        {
+          "name": "syft:metadata:provides:0",
+          "value": "so:libmd.so.0=0.0.5"
+        },
+        {
+          "name": "syft:metadata:pullChecksum",
+          "value": "Q1mYm9gKamc63xWl0cKagc8M+KxOQ="
+        },
+        {
+          "name": "syft:metadata:pullDependencies:0",
+          "value": "so:libc.musl-x86_64.so.1"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "19937"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:apk/alpine/libncursesw@6.4_p20230506-r0?arch=x86_64&upstream=ncurses&distro=alpine-3.18.5&package-id=fecedb8a52a992aa",
+      "type": "library",
+      "publisher": "Natanael Copa <ncopa@alpinelinux.org>",
+      "name": "libncursesw",
+      "version": "6.4_p20230506-r0",
+      "description": "Console display library (libncursesw)",
+      "licenses": [
+        {
+          "license": {
+            "id": "X11"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:libncursesw:libncursesw:6.4_p20230506-r0:*:*:*:*:*:*:*",
+      "purl": "pkg:apk/alpine/libncursesw@6.4_p20230506-r0?arch=x86_64&upstream=ncurses&distro=alpine-3.18.5",
+      "externalReferences": [
+        {
+          "url": "https://invisible-island.net/ncurses/",
+          "type": "distribution"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "apk-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "apk"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "apk-db-entry"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:17b0acbb0089734604f8e7c44f1bc811a80410e28e4c08d88f3ca17246cbee8f"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/lib/apk/db/installed"
+        },
+        {
+          "name": "syft:metadata:gitCommitOfApkPort",
+          "value": "e20fdedcf90182080424bba81c1f8deffb199872"
+        },
+        {
+          "name": "syft:metadata:installedSize",
+          "value": "352256"
+        },
+        {
+          "name": "syft:metadata:originPackage",
+          "value": "ncurses"
+        },
+        {
+          "name": "syft:metadata:provides:0",
+          "value": "so:libncursesw.so.6=6.4"
+        },
+        {
+          "name": "syft:metadata:pullChecksum",
+          "value": "Q1dD0p75kd/SeiqiNdbcrVT0ZTiOY="
+        },
+        {
+          "name": "syft:metadata:pullDependencies:0",
+          "value": "ncurses-terminfo-base=6.4_p20230506-r0"
+        },
+        {
+          "name": "syft:metadata:pullDependencies:1",
+          "value": "so:libc.musl-x86_64.so.1"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "161980"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:apk/alpine/libpng@1.6.39-r3?arch=x86_64&distro=alpine-3.18.5&package-id=fae14a749f94b4a9",
+      "type": "library",
+      "publisher": "Natanael Copa <ncopa@alpinelinux.org>",
+      "name": "libpng",
+      "version": "1.6.39-r3",
+      "description": "Portable Network Graphics library",
+      "licenses": [
+        {
+          "license": {
+            "id": "Libpng"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:libpng:libpng:1.6.39-r3:*:*:*:*:*:*:*",
+      "purl": "pkg:apk/alpine/libpng@1.6.39-r3?arch=x86_64&distro=alpine-3.18.5",
+      "externalReferences": [
+        {
+          "url": "http://www.libpng.org",
+          "type": "distribution"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "apk-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "apk"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "apk-db-entry"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:17b0acbb0089734604f8e7c44f1bc811a80410e28e4c08d88f3ca17246cbee8f"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/lib/apk/db/installed"
+        },
+        {
+          "name": "syft:metadata:gitCommitOfApkPort",
+          "value": "84a227baf001b6e0208e3352b294e4d7a40e93de"
+        },
+        {
+          "name": "syft:metadata:installedSize",
+          "value": "208896"
+        },
+        {
+          "name": "syft:metadata:originPackage",
+          "value": "libpng"
+        },
+        {
+          "name": "syft:metadata:provides:0",
+          "value": "so:libpng16.so.16=16.39.0"
+        },
+        {
+          "name": "syft:metadata:pullChecksum",
+          "value": "Q1NT0nQEiWmw9qZ2lo87z+ZOmd/SY="
+        },
+        {
+          "name": "syft:metadata:pullDependencies:0",
+          "value": "so:libc.musl-x86_64.so.1"
+        },
+        {
+          "name": "syft:metadata:pullDependencies:1",
+          "value": "so:libz.so.1"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "98037"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:apk/alpine/libssl3@3.1.4-r1?arch=x86_64&upstream=openssl&distro=alpine-3.18.5&package-id=8dd02cc858a89430",
+      "type": "library",
+      "publisher": "Ariadne Conill <ariadne@dereferenced.org>",
+      "name": "libssl3",
+      "version": "3.1.4-r1",
+      "description": "SSL shared libraries",
+      "licenses": [
+        {
+          "license": {
+            "id": "Apache-2.0"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:libssl3:libssl3:3.1.4-r1:*:*:*:*:*:*:*",
+      "purl": "pkg:apk/alpine/libssl3@3.1.4-r1?arch=x86_64&upstream=openssl&distro=alpine-3.18.5",
+      "externalReferences": [
+        {
+          "url": "https://www.openssl.org/",
+          "type": "distribution"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "apk-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "apk"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "apk-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:libssl3:libssl:3.1.4-r1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:libssl:libssl3:3.1.4-r1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:libssl:libssl:3.1.4-r1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:17b0acbb0089734604f8e7c44f1bc811a80410e28e4c08d88f3ca17246cbee8f"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/lib/apk/db/installed"
+        },
+        {
+          "name": "syft:metadata:gitCommitOfApkPort",
+          "value": "ff71ec30ae47b5871c761e55af0a8850d253d828"
+        },
+        {
+          "name": "syft:metadata:installedSize",
+          "value": "565248"
+        },
+        {
+          "name": "syft:metadata:originPackage",
+          "value": "openssl"
+        },
+        {
+          "name": "syft:metadata:provides:0",
+          "value": "so:libssl.so.3=3"
+        },
+        {
+          "name": "syft:metadata:pullChecksum",
+          "value": "Q1o47c8bt1FJzVuhEX26C7/lIsPmY="
+        },
+        {
+          "name": "syft:metadata:pullDependencies:0",
+          "value": "so:libc.musl-x86_64.so.1"
+        },
+        {
+          "name": "syft:metadata:pullDependencies:1",
+          "value": "so:libcrypto.so.3"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "235948"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:apk/alpine/libtasn1@4.19.0-r1?arch=x86_64&distro=alpine-3.18.5&package-id=dab129c365cfba5f",
+      "type": "library",
+      "publisher": "Natanael Copa <ncopa@alpinelinux.org>",
+      "name": "libtasn1",
+      "version": "4.19.0-r1",
+      "description": "The ASN.1 library used in GNUTLS",
+      "licenses": [
+        {
+          "license": {
+            "id": "LGPL-2.1-or-later"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:libtasn1:libtasn1:4.19.0-r1:*:*:*:*:*:*:*",
+      "purl": "pkg:apk/alpine/libtasn1@4.19.0-r1?arch=x86_64&distro=alpine-3.18.5",
+      "externalReferences": [
+        {
+          "url": "https://www.gnu.org/software/gnutls/",
+          "type": "distribution"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "apk-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "apk"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "apk-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:libtasn1:libtasn:4.19.0-r1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:libtasn:libtasn1:4.19.0-r1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:libtasn:libtasn:4.19.0-r1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:gnu:libtasn1:4.19.0-r1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:gnu:libtasn:4.19.0-r1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:17b0acbb0089734604f8e7c44f1bc811a80410e28e4c08d88f3ca17246cbee8f"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/lib/apk/db/installed"
+        },
+        {
+          "name": "syft:metadata:gitCommitOfApkPort",
+          "value": "1bbe496e91a18009491b42a72d93d8feae795d09"
+        },
+        {
+          "name": "syft:metadata:installedSize",
+          "value": "81920"
+        },
+        {
+          "name": "syft:metadata:originPackage",
+          "value": "libtasn1"
+        },
+        {
+          "name": "syft:metadata:provides:0",
+          "value": "so:libtasn1.so.6=6.6.3"
+        },
+        {
+          "name": "syft:metadata:pullChecksum",
+          "value": "Q1w2qKnZZzBlyL9gIEA6EebD/BXZw="
+        },
+        {
+          "name": "syft:metadata:pullDependencies:0",
+          "value": "so:libc.musl-x86_64.so.1"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "33630"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:apk/alpine/libx11@1.8.7-r0?arch=x86_64&distro=alpine-3.18.5&package-id=0ca45a0d92ec397a",
+      "type": "library",
+      "publisher": "Natanael Copa <ncopa@alpinelinux.org>",
+      "name": "libx11",
+      "version": "1.8.7-r0",
+      "description": "X11 client-side library",
+      "licenses": [
+        {
+          "license": {
+            "id": "X11"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:libx11:libx11:1.8.7-r0:*:*:*:*:*:*:*",
+      "purl": "pkg:apk/alpine/libx11@1.8.7-r0?arch=x86_64&distro=alpine-3.18.5",
+      "externalReferences": [
+        {
+          "url": "https://xorg.freedesktop.org/",
+          "type": "distribution"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "apk-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "apk"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "apk-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:libx11:libx:1.8.7-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:libx:libx11:1.8.7-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:libx:libx:1.8.7-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:17b0acbb0089734604f8e7c44f1bc811a80410e28e4c08d88f3ca17246cbee8f"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/lib/apk/db/installed"
+        },
+        {
+          "name": "syft:metadata:gitCommitOfApkPort",
+          "value": "659ef3a25fa07768ad1cd89570951dee794fc8bf"
+        },
+        {
+          "name": "syft:metadata:installedSize",
+          "value": "3166208"
+        },
+        {
+          "name": "syft:metadata:originPackage",
+          "value": "libx11"
+        },
+        {
+          "name": "syft:metadata:provides:0",
+          "value": "so:libX11-xcb.so.1=1.0.0"
+        },
+        {
+          "name": "syft:metadata:provides:1",
+          "value": "so:libX11.so.6=6.4.0"
+        },
+        {
+          "name": "syft:metadata:pullChecksum",
+          "value": "Q1DMQKcWxWmoBfIOm7zpjHGN2CZuU="
+        },
+        {
+          "name": "syft:metadata:pullDependencies:0",
+          "value": "so:libc.musl-x86_64.so.1"
+        },
+        {
+          "name": "syft:metadata:pullDependencies:1",
+          "value": "so:libxcb.so.1"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "876770"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:apk/alpine/libxau@1.0.11-r2?arch=x86_64&distro=alpine-3.18.5&package-id=bfc32cdeb41f936d",
+      "type": "library",
+      "publisher": "Natanael Copa <ncopa@alpinelinux.org>",
+      "name": "libxau",
+      "version": "1.0.11-r2",
+      "description": "X11 authorisation library",
+      "licenses": [
+        {
+          "license": {
+            "id": "MIT"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:libxau:libxau:1.0.11-r2:*:*:*:*:*:*:*",
+      "purl": "pkg:apk/alpine/libxau@1.0.11-r2?arch=x86_64&distro=alpine-3.18.5",
+      "externalReferences": [
+        {
+          "url": "https://xorg.freedesktop.org/",
+          "type": "distribution"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "apk-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "apk"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "apk-db-entry"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:17b0acbb0089734604f8e7c44f1bc811a80410e28e4c08d88f3ca17246cbee8f"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/lib/apk/db/installed"
+        },
+        {
+          "name": "syft:metadata:gitCommitOfApkPort",
+          "value": "b24a4cdf2a2e4b41de4d78979aa9aae0d1383ebc"
+        },
+        {
+          "name": "syft:metadata:installedSize",
+          "value": "28672"
+        },
+        {
+          "name": "syft:metadata:originPackage",
+          "value": "libxau"
+        },
+        {
+          "name": "syft:metadata:provides:0",
+          "value": "so:libXau.so.6=6.0.0"
+        },
+        {
+          "name": "syft:metadata:pullChecksum",
+          "value": "Q1ALudeKtug4gWfx7jA1oi97Q7cAE="
+        },
+        {
+          "name": "syft:metadata:pullDependencies:0",
+          "value": "so:libc.musl-x86_64.so.1"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "5905"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:apk/alpine/libxcb@1.15-r1?arch=x86_64&distro=alpine-3.18.5&package-id=c1b8a0b48dc24735",
+      "type": "library",
+      "publisher": "Natanael Copa <ncopa@alpinelinux.org>",
+      "name": "libxcb",
+      "version": "1.15-r1",
+      "description": "X11 client-side library",
+      "licenses": [
+        {
+          "license": {
+            "id": "MIT"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:libxcb:libxcb:1.15-r1:*:*:*:*:*:*:*",
+      "purl": "pkg:apk/alpine/libxcb@1.15-r1?arch=x86_64&distro=alpine-3.18.5",
+      "externalReferences": [
+        {
+          "url": "https://xcb.freedesktop.org",
+          "type": "distribution"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "apk-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "apk"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "apk-db-entry"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:17b0acbb0089734604f8e7c44f1bc811a80410e28e4c08d88f3ca17246cbee8f"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/lib/apk/db/installed"
+        },
+        {
+          "name": "syft:metadata:gitCommitOfApkPort",
+          "value": "84a227baf001b6e0208e3352b294e4d7a40e93de"
+        },
+        {
+          "name": "syft:metadata:installedSize",
+          "value": "1003520"
+        },
+        {
+          "name": "syft:metadata:originPackage",
+          "value": "libxcb"
+        },
+        {
+          "name": "syft:metadata:provides:0",
+          "value": "so:libxcb-composite.so.0=0.0.0"
+        },
+        {
+          "name": "syft:metadata:provides:1",
+          "value": "so:libxcb-damage.so.0=0.0.0"
+        },
+        {
+          "name": "syft:metadata:provides:10",
+          "value": "so:libxcb-res.so.0=0.0.0"
+        },
+        {
+          "name": "syft:metadata:provides:11",
+          "value": "so:libxcb-screensaver.so.0=0.0.0"
+        },
+        {
+          "name": "syft:metadata:provides:12",
+          "value": "so:libxcb-shape.so.0=0.0.0"
+        },
+        {
+          "name": "syft:metadata:provides:13",
+          "value": "so:libxcb-shm.so.0=0.0.0"
+        },
+        {
+          "name": "syft:metadata:provides:14",
+          "value": "so:libxcb-sync.so.1=1.0.0"
+        },
+        {
+          "name": "syft:metadata:provides:15",
+          "value": "so:libxcb-xf86dri.so.0=0.0.0"
+        },
+        {
+          "name": "syft:metadata:provides:16",
+          "value": "so:libxcb-xfixes.so.0=0.0.0"
+        },
+        {
+          "name": "syft:metadata:provides:17",
+          "value": "so:libxcb-xinerama.so.0=0.0.0"
+        },
+        {
+          "name": "syft:metadata:provides:18",
+          "value": "so:libxcb-xinput.so.0=0.1.0"
+        },
+        {
+          "name": "syft:metadata:provides:19",
+          "value": "so:libxcb-xkb.so.1=1.0.0"
+        },
+        {
+          "name": "syft:metadata:provides:2",
+          "value": "so:libxcb-dpms.so.0=0.0.0"
+        },
+        {
+          "name": "syft:metadata:provides:20",
+          "value": "so:libxcb-xtest.so.0=0.0.0"
+        },
+        {
+          "name": "syft:metadata:provides:21",
+          "value": "so:libxcb-xv.so.0=0.0.0"
+        },
+        {
+          "name": "syft:metadata:provides:22",
+          "value": "so:libxcb-xvmc.so.0=0.0.0"
+        },
+        {
+          "name": "syft:metadata:provides:23",
+          "value": "so:libxcb.so.1=1.1.0"
+        },
+        {
+          "name": "syft:metadata:provides:3",
+          "value": "so:libxcb-dri2.so.0=0.0.0"
+        },
+        {
+          "name": "syft:metadata:provides:4",
+          "value": "so:libxcb-dri3.so.0=0.1.0"
+        },
+        {
+          "name": "syft:metadata:provides:5",
+          "value": "so:libxcb-glx.so.0=0.0.0"
+        },
+        {
+          "name": "syft:metadata:provides:6",
+          "value": "so:libxcb-present.so.0=0.0.0"
+        },
+        {
+          "name": "syft:metadata:provides:7",
+          "value": "so:libxcb-randr.so.0=0.1.0"
+        },
+        {
+          "name": "syft:metadata:provides:8",
+          "value": "so:libxcb-record.so.0=0.0.0"
+        },
+        {
+          "name": "syft:metadata:provides:9",
+          "value": "so:libxcb-render.so.0=0.0.0"
+        },
+        {
+          "name": "syft:metadata:pullChecksum",
+          "value": "Q1ojJM6xVv5Ob//8P/oQtTIIX9UhY="
+        },
+        {
+          "name": "syft:metadata:pullDependencies:0",
+          "value": "so:libXau.so.6"
+        },
+        {
+          "name": "syft:metadata:pullDependencies:1",
+          "value": "so:libXdmcp.so.6"
+        },
+        {
+          "name": "syft:metadata:pullDependencies:2",
+          "value": "so:libc.musl-x86_64.so.1"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "238101"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:apk/alpine/libxdmcp@1.1.4-r2?arch=x86_64&distro=alpine-3.18.5&package-id=b27c714be4aa474b",
+      "type": "library",
+      "publisher": "Natanael Copa <ncopa@alpinelinux.org>",
+      "name": "libxdmcp",
+      "version": "1.1.4-r2",
+      "description": "X11 Display Manager Control Protocol library",
+      "licenses": [
+        {
+          "license": {
+            "id": "MIT"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:libxdmcp:libxdmcp:1.1.4-r2:*:*:*:*:*:*:*",
+      "purl": "pkg:apk/alpine/libxdmcp@1.1.4-r2?arch=x86_64&distro=alpine-3.18.5",
+      "externalReferences": [
+        {
+          "url": "https://xorg.freedesktop.org/",
+          "type": "distribution"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "apk-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "apk"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "apk-db-entry"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:17b0acbb0089734604f8e7c44f1bc811a80410e28e4c08d88f3ca17246cbee8f"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/lib/apk/db/installed"
+        },
+        {
+          "name": "syft:metadata:gitCommitOfApkPort",
+          "value": "b24a4cdf2a2e4b41de4d78979aa9aae0d1383ebc"
+        },
+        {
+          "name": "syft:metadata:installedSize",
+          "value": "40960"
+        },
+        {
+          "name": "syft:metadata:originPackage",
+          "value": "libxdmcp"
+        },
+        {
+          "name": "syft:metadata:provides:0",
+          "value": "so:libXdmcp.so.6=6.0.0"
+        },
+        {
+          "name": "syft:metadata:pullChecksum",
+          "value": "Q1xqF/h+wrMkxMCfm5qTreTGHp2XE="
+        },
+        {
+          "name": "syft:metadata:pullDependencies:0",
+          "value": "so:libbsd.so.0"
+        },
+        {
+          "name": "syft:metadata:pullDependencies:1",
+          "value": "so:libc.musl-x86_64.so.1"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "9767"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:apk/alpine/libxext@1.3.5-r2?arch=x86_64&distro=alpine-3.18.5&package-id=8796daa88f7456f5",
+      "type": "library",
+      "publisher": "Natanael Copa <ncopa@alpinelinux.org>",
+      "name": "libxext",
+      "version": "1.3.5-r2",
+      "description": "X11 miscellaneous extensions library",
+      "licenses": [
+        {
+          "license": {
+            "id": "MIT"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:libxext:libxext:1.3.5-r2:*:*:*:*:*:*:*",
+      "purl": "pkg:apk/alpine/libxext@1.3.5-r2?arch=x86_64&distro=alpine-3.18.5",
+      "externalReferences": [
+        {
+          "url": "https://xorg.freedesktop.org/",
+          "type": "distribution"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "apk-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "apk"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "apk-db-entry"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:17b0acbb0089734604f8e7c44f1bc811a80410e28e4c08d88f3ca17246cbee8f"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/lib/apk/db/installed"
+        },
+        {
+          "name": "syft:metadata:gitCommitOfApkPort",
+          "value": "b24a4cdf2a2e4b41de4d78979aa9aae0d1383ebc"
+        },
+        {
+          "name": "syft:metadata:installedSize",
+          "value": "81920"
+        },
+        {
+          "name": "syft:metadata:originPackage",
+          "value": "libxext"
+        },
+        {
+          "name": "syft:metadata:provides:0",
+          "value": "so:libXext.so.6=6.4.0"
+        },
+        {
+          "name": "syft:metadata:pullChecksum",
+          "value": "Q1kECNgDsp9ny2jUTJaXpgArtGnUg="
+        },
+        {
+          "name": "syft:metadata:pullDependencies:0",
+          "value": "so:libX11.so.6"
+        },
+        {
+          "name": "syft:metadata:pullDependencies:1",
+          "value": "so:libc.musl-x86_64.so.1"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "25944"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:apk/alpine/libxi@1.8.1-r0?arch=x86_64&distro=alpine-3.18.5&package-id=797b290ab96926c4",
+      "type": "library",
+      "publisher": "Natanael Copa <ncopa@alpinelinux.org>",
+      "name": "libxi",
+      "version": "1.8.1-r0",
+      "description": "X11 Input extension library",
+      "licenses": [
+        {
+          "expression": "MIT AND X11"
+        }
+      ],
+      "cpe": "cpe:2.3:a:libxi:libxi:1.8.1-r0:*:*:*:*:*:*:*",
+      "purl": "pkg:apk/alpine/libxi@1.8.1-r0?arch=x86_64&distro=alpine-3.18.5",
+      "externalReferences": [
+        {
+          "url": "https://www.x.org",
+          "type": "distribution"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "apk-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "apk"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "apk-db-entry"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:17b0acbb0089734604f8e7c44f1bc811a80410e28e4c08d88f3ca17246cbee8f"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/lib/apk/db/installed"
+        },
+        {
+          "name": "syft:metadata:gitCommitOfApkPort",
+          "value": "dcfdf41b1c70d6084c087b765adb22058f431ce1"
+        },
+        {
+          "name": "syft:metadata:installedSize",
+          "value": "77824"
+        },
+        {
+          "name": "syft:metadata:originPackage",
+          "value": "libxi"
+        },
+        {
+          "name": "syft:metadata:provides:0",
+          "value": "so:libXi.so.6=6.1.0"
+        },
+        {
+          "name": "syft:metadata:pullChecksum",
+          "value": "Q181/Dg7rJvdVSuVJLnozvOX0at0Q="
+        },
+        {
+          "name": "syft:metadata:pullDependencies:0",
+          "value": "so:libX11.so.6"
+        },
+        {
+          "name": "syft:metadata:pullDependencies:1",
+          "value": "so:libXext.so.6"
+        },
+        {
+          "name": "syft:metadata:pullDependencies:2",
+          "value": "so:libc.musl-x86_64.so.1"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "27427"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:apk/alpine/libxrender@0.9.11-r3?arch=x86_64&distro=alpine-3.18.5&package-id=f8718eabf47ab91f",
+      "type": "library",
+      "publisher": "Natanael Copa <ncopa@alpinelinux.org>",
+      "name": "libxrender",
+      "version": "0.9.11-r3",
+      "description": "X Rendering Extension client library",
+      "licenses": [
+        {
+          "license": {
+            "id": "MIT"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:libxrender:libxrender:0.9.11-r3:*:*:*:*:*:*:*",
+      "purl": "pkg:apk/alpine/libxrender@0.9.11-r3?arch=x86_64&distro=alpine-3.18.5",
+      "externalReferences": [
+        {
+          "url": "https://xorg.freedesktop.org/",
+          "type": "distribution"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "apk-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "apk"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "apk-db-entry"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:17b0acbb0089734604f8e7c44f1bc811a80410e28e4c08d88f3ca17246cbee8f"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/lib/apk/db/installed"
+        },
+        {
+          "name": "syft:metadata:gitCommitOfApkPort",
+          "value": "b24a4cdf2a2e4b41de4d78979aa9aae0d1383ebc"
+        },
+        {
+          "name": "syft:metadata:installedSize",
+          "value": "57344"
+        },
+        {
+          "name": "syft:metadata:originPackage",
+          "value": "libxrender"
+        },
+        {
+          "name": "syft:metadata:provides:0",
+          "value": "so:libXrender.so.1=1.3.0"
+        },
+        {
+          "name": "syft:metadata:pullChecksum",
+          "value": "Q1iPqLhF9l+Qcnt2oSQQXHQa1wd5k="
+        },
+        {
+          "name": "syft:metadata:pullDependencies:0",
+          "value": "so:libX11.so.6"
+        },
+        {
+          "name": "syft:metadata:pullDependencies:1",
+          "value": "so:libc.musl-x86_64.so.1"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "16510"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:apk/alpine/libxtst@1.2.4-r2?arch=x86_64&distro=alpine-3.18.5&package-id=89f76e217990632b",
+      "type": "library",
+      "publisher": "Natanael Copa <ncopa@alpinelinux.org>",
+      "name": "libxtst",
+      "version": "1.2.4-r2",
+      "description": "X11 Testing -- Resource extension library",
+      "licenses": [
+        {
+          "license": {
+            "id": "MIT"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:libxtst:libxtst:1.2.4-r2:*:*:*:*:*:*:*",
+      "purl": "pkg:apk/alpine/libxtst@1.2.4-r2?arch=x86_64&distro=alpine-3.18.5",
+      "externalReferences": [
+        {
+          "url": "https://wiki.freedesktop.org/xorg/",
+          "type": "distribution"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "apk-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "apk"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "apk-db-entry"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:17b0acbb0089734604f8e7c44f1bc811a80410e28e4c08d88f3ca17246cbee8f"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/lib/apk/db/installed"
+        },
+        {
+          "name": "syft:metadata:gitCommitOfApkPort",
+          "value": "84a227baf001b6e0208e3352b294e4d7a40e93de"
+        },
+        {
+          "name": "syft:metadata:installedSize",
+          "value": "40960"
+        },
+        {
+          "name": "syft:metadata:originPackage",
+          "value": "libxtst"
+        },
+        {
+          "name": "syft:metadata:provides:0",
+          "value": "so:libXtst.so.6=6.1.0"
+        },
+        {
+          "name": "syft:metadata:pullChecksum",
+          "value": "Q1dhkDCHJleqyKLeWm4IW3yGD5FLU="
+        },
+        {
+          "name": "syft:metadata:pullDependencies:0",
+          "value": "so:libX11.so.6"
+        },
+        {
+          "name": "syft:metadata:pullDependencies:1",
+          "value": "so:libXext.so.6"
+        },
+        {
+          "name": "syft:metadata:pullDependencies:2",
+          "value": "so:libc.musl-x86_64.so.1"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "10140"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/ch.qos.logback/logback-classic@1.2.11?package-id=aea70248c5c9b0ce",
+      "type": "library",
+      "group": "ch.qos.logback",
+      "name": "logback-classic",
+      "version": "1.2.11",
+      "licenses": [
+        {
+          "license": {
+            "name": "http://www.eclipse.org/legal/epl-v10.html, http://www.gnu.org/licenses/old-licenses/lgpl-2.1.html"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:logback-classic:logback-classic:1.2.11:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/ch.qos.logback/logback-classic@1.2.11",
+      "externalReferences": [
+        {
+          "url": "",
+          "hashes": [
+            {
+              "alg": "SHA-1",
+              "content": "4741689214e9d1e8408b206506cbe76d1c6a7d60"
+            }
+          ],
+          "type": "build-meta"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:logback-classic:logback_classic:1.2.11:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:logback_classic:logback-classic:1.2.11:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:logback_classic:logback_classic:1.2.11:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:logback:logback-classic:1.2.11:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:logback:logback_classic:1.2.11:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:b1dc62eecf8a6672534ff85086bc9d0ea8bb94cfd7e760c53734dad61f36012b"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-console/lib/logback-classic-1.2.11.jar"
+        },
+        {
+          "name": "syft:metadata:-:artifactID",
+          "value": "logback-classic"
+        },
+        {
+          "name": "syft:metadata:-:groupID",
+          "value": "ch.qos.logback"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-console/lib/logback-classic-1.2.11.jar"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/ch.qos.logback/logback-core@1.2.11?package-id=3500ab4d757ec85b",
+      "type": "library",
+      "group": "ch.qos.logback",
+      "name": "logback-core",
+      "version": "1.2.11",
+      "licenses": [
+        {
+          "license": {
+            "name": "http://www.eclipse.org/legal/epl-v10.html, http://www.gnu.org/licenses/old-licenses/lgpl-2.1.html"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:logback-core:logback-core:1.2.11:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/ch.qos.logback/logback-core@1.2.11",
+      "externalReferences": [
+        {
+          "url": "",
+          "hashes": [
+            {
+              "alg": "SHA-1",
+              "content": "a01230df5ca5c34540cdaa3ad5efb012f1f1f792"
+            }
+          ],
+          "type": "build-meta"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:logback-core:logback_core:1.2.11:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:logback_core:logback-core:1.2.11:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:logback_core:logback_core:1.2.11:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:logback:logback-core:1.2.11:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:logback:logback_core:1.2.11:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:b1dc62eecf8a6672534ff85086bc9d0ea8bb94cfd7e760c53734dad61f36012b"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-console/lib/logback-core-1.2.11.jar"
+        },
+        {
+          "name": "syft:metadata:-:artifactID",
+          "value": "logback-core"
+        },
+        {
+          "name": "syft:metadata:-:groupID",
+          "value": "ch.qos.logback"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-console/lib/logback-core-1.2.11.jar"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/com.esotericsoftware/minlog@1.3.0?package-id=28ba66fda944f215",
+      "type": "library",
+      "group": "com.esotericsoftware",
+      "name": "minlog",
+      "version": "1.3.0",
+      "licenses": [
+        {
+          "license": {
+            "name": "New BSD License",
+            "url": "http://www.opensource.org/licenses/bsd-license.php"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:esotericsoftware:minlog:1.3.0:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/com.esotericsoftware/minlog@1.3.0",
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:sonatype:minlog:1.3.0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:minlog:minlog:1.3.0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:oss:minlog:1.3.0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:b1dc62eecf8a6672534ff85086bc9d0ea8bb94cfd7e760c53734dad61f36012b"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-console/lib/gremlin-shaded-3.7.1.jar"
+        },
+        {
+          "name": "syft:metadata:-:artifactID",
+          "value": "minlog"
+        },
+        {
+          "name": "syft:metadata:-:groupID",
+          "value": "com.esotericsoftware"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-console/lib/gremlin-shaded-3.7.1.jar:com.esotericsoftware:minlog"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:apk/alpine/musl@1.2.4-r2?arch=x86_64&distro=alpine-3.18.5&package-id=ac337824ccfe44f2",
+      "type": "library",
+      "publisher": "Timo Teräs <timo.teras@iki.fi>",
+      "name": "musl",
+      "version": "1.2.4-r2",
+      "description": "the musl c library (libc) implementation",
+      "licenses": [
+        {
+          "license": {
+            "id": "MIT"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:musl-libc:musl:1.2.4-r2:*:*:*:*:*:*:*",
+      "purl": "pkg:apk/alpine/musl@1.2.4-r2?arch=x86_64&distro=alpine-3.18.5",
+      "externalReferences": [
+        {
+          "url": "https://musl.libc.org/",
+          "type": "distribution"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "apk-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "apk"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "apk-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:musl_libc:musl:1.2.4-r2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:musl:musl:1.2.4-r2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:17b0acbb0089734604f8e7c44f1bc811a80410e28e4c08d88f3ca17246cbee8f"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/lib/apk/db/installed"
+        },
+        {
+          "name": "syft:metadata:gitCommitOfApkPort",
+          "value": "d82f20546c93252a8c94b262f7100bc8b74d6050"
+        },
+        {
+          "name": "syft:metadata:installedSize",
+          "value": "634880"
+        },
+        {
+          "name": "syft:metadata:originPackage",
+          "value": "musl"
+        },
+        {
+          "name": "syft:metadata:provides:0",
+          "value": "so:libc.musl-x86_64.so.1=1"
+        },
+        {
+          "name": "syft:metadata:pullChecksum",
+          "value": "Q1odtIYtKyOCg6suF/cDaYpygL7hw="
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "390427"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:apk/alpine/musl-utils@1.2.4-r2?arch=x86_64&upstream=musl&distro=alpine-3.18.5&package-id=58216dd6469af95a",
+      "type": "library",
+      "publisher": "Timo Teräs <timo.teras@iki.fi>",
+      "name": "musl-utils",
+      "version": "1.2.4-r2",
+      "description": "the musl c library (libc) implementation",
+      "licenses": [
+        {
+          "expression": "MIT AND BSD-2-Clause AND GPL-2.0-or-later"
+        }
+      ],
+      "cpe": "cpe:2.3:a:musl-utils:musl-utils:1.2.4-r2:*:*:*:*:*:*:*",
+      "purl": "pkg:apk/alpine/musl-utils@1.2.4-r2?arch=x86_64&upstream=musl&distro=alpine-3.18.5",
+      "externalReferences": [
+        {
+          "url": "https://musl.libc.org/",
+          "type": "distribution"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "apk-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "apk"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "apk-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:musl-utils:musl_utils:1.2.4-r2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:musl_utils:musl-utils:1.2.4-r2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:musl_utils:musl_utils:1.2.4-r2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:musl-libc:musl-utils:1.2.4-r2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:musl-libc:musl_utils:1.2.4-r2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:musl:musl-utils:1.2.4-r2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:musl:musl_utils:1.2.4-r2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:17b0acbb0089734604f8e7c44f1bc811a80410e28e4c08d88f3ca17246cbee8f"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/lib/apk/db/installed"
+        },
+        {
+          "name": "syft:metadata:gitCommitOfApkPort",
+          "value": "d82f20546c93252a8c94b262f7100bc8b74d6050"
+        },
+        {
+          "name": "syft:metadata:installedSize",
+          "value": "135168"
+        },
+        {
+          "name": "syft:metadata:originPackage",
+          "value": "musl"
+        },
+        {
+          "name": "syft:metadata:provides:0",
+          "value": "cmd:getconf=1.2.4-r2"
+        },
+        {
+          "name": "syft:metadata:provides:1",
+          "value": "cmd:getent=1.2.4-r2"
+        },
+        {
+          "name": "syft:metadata:provides:2",
+          "value": "cmd:iconv=1.2.4-r2"
+        },
+        {
+          "name": "syft:metadata:provides:3",
+          "value": "cmd:ldconfig=1.2.4-r2"
+        },
+        {
+          "name": "syft:metadata:provides:4",
+          "value": "cmd:ldd=1.2.4-r2"
+        },
+        {
+          "name": "syft:metadata:pullChecksum",
+          "value": "Q159PXSLXVmwMBA0V/FmvrBJobpak="
+        },
+        {
+          "name": "syft:metadata:pullDependencies:0",
+          "value": "scanelf"
+        },
+        {
+          "name": "syft:metadata:pullDependencies:1",
+          "value": "so:libc.musl-x86_64.so.1"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "36694"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:apk/alpine/ncurses-terminfo-base@6.4_p20230506-r0?arch=x86_64&upstream=ncurses&distro=alpine-3.18.5&package-id=e8554058cb4c7d6d",
+      "type": "library",
+      "publisher": "Natanael Copa <ncopa@alpinelinux.org>",
+      "name": "ncurses-terminfo-base",
+      "version": "6.4_p20230506-r0",
+      "description": "Descriptions of common terminals",
+      "licenses": [
+        {
+          "license": {
+            "id": "X11"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:ncurses-terminfo-base:ncurses-terminfo-base:6.4_p20230506-r0:*:*:*:*:*:*:*",
+      "purl": "pkg:apk/alpine/ncurses-terminfo-base@6.4_p20230506-r0?arch=x86_64&upstream=ncurses&distro=alpine-3.18.5",
+      "externalReferences": [
+        {
+          "url": "https://invisible-island.net/ncurses/",
+          "type": "distribution"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "apk-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "apk"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "apk-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:ncurses-terminfo-base:ncurses_terminfo_base:6.4_p20230506-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:ncurses_terminfo_base:ncurses-terminfo-base:6.4_p20230506-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:ncurses_terminfo_base:ncurses_terminfo_base:6.4_p20230506-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:ncurses-terminfo:ncurses-terminfo-base:6.4_p20230506-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:ncurses-terminfo:ncurses_terminfo_base:6.4_p20230506-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:ncurses_terminfo:ncurses-terminfo-base:6.4_p20230506-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:ncurses_terminfo:ncurses_terminfo_base:6.4_p20230506-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:ncurses:ncurses-terminfo-base:6.4_p20230506-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:ncurses:ncurses_terminfo_base:6.4_p20230506-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:17b0acbb0089734604f8e7c44f1bc811a80410e28e4c08d88f3ca17246cbee8f"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/lib/apk/db/installed"
+        },
+        {
+          "name": "syft:metadata:gitCommitOfApkPort",
+          "value": "e20fdedcf90182080424bba81c1f8deffb199872"
+        },
+        {
+          "name": "syft:metadata:installedSize",
+          "value": "221184"
+        },
+        {
+          "name": "syft:metadata:originPackage",
+          "value": "ncurses"
+        },
+        {
+          "name": "syft:metadata:pullChecksum",
+          "value": "Q10a6n6U74hqvF5n9KAe2AjnhuN9g="
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "22927"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/io.netty/netty-all@4.1.96.Final?package-id=1bc1bb6db574eb3f",
+      "type": "library",
+      "group": "io.netty",
+      "name": "netty-all",
+      "version": "4.1.96.Final",
+      "licenses": [
+        {
+          "license": {
+            "name": "https://www.apache.org/licenses/LICENSE-2.0"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:netty-project:netty-all:4.1.96.Final:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/io.netty/netty-all@4.1.96.Final",
+      "externalReferences": [
+        {
+          "url": "",
+          "hashes": [
+            {
+              "alg": "SHA-1",
+              "content": "2145ec747511965e4a57099767654cf9083ce8a7"
+            }
+          ],
+          "type": "build-meta"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:netty_all:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:netty-all:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:netty_all:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-all:netty-all:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-all:netty_all:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_all:netty-all:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_all:netty_all:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:all:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:all:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:netty-all:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:netty_all:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:all:netty-all:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:all:netty_all:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-all:all:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_all:all:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:all:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:all:all:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:b1dc62eecf8a6672534ff85086bc9d0ea8bb94cfd7e760c53734dad61f36012b"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-console/lib/netty-all-4.1.96.Final.jar"
+        },
+        {
+          "name": "syft:metadata:-:artifactID",
+          "value": "netty-all"
+        },
+        {
+          "name": "syft:metadata:-:groupID",
+          "value": "io.netty"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-console/lib/netty-all-4.1.96.Final.jar"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/io.netty/netty-buffer@4.1.96.Final?package-id=64b68f95b5c5a556",
+      "type": "library",
+      "group": "io.netty",
+      "name": "netty-buffer",
+      "version": "4.1.96.Final",
+      "licenses": [
+        {
+          "license": {
+            "name": "https://www.apache.org/licenses/LICENSE-2.0"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:netty-project:netty-buffer:4.1.96.Final:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/io.netty/netty-buffer@4.1.96.Final",
+      "externalReferences": [
+        {
+          "url": "",
+          "hashes": [
+            {
+              "alg": "SHA-1",
+              "content": "4b80fffbe77485b457bf844289bf1801f61b9e91"
+            }
+          ],
+          "type": "build-meta"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:netty_buffer:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:netty-buffer:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:netty_buffer:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-buffer:netty-buffer:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-buffer:netty_buffer:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_buffer:netty-buffer:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_buffer:netty_buffer:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:buffer:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:buffer:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:buffer:netty-buffer:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:buffer:netty_buffer:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-buffer:buffer:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_buffer:buffer:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:netty-buffer:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:netty_buffer:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:buffer:buffer:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:buffer:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:b1dc62eecf8a6672534ff85086bc9d0ea8bb94cfd7e760c53734dad61f36012b"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-console/lib/netty-buffer-4.1.96.Final.jar"
+        },
+        {
+          "name": "syft:metadata:-:artifactID",
+          "value": "netty-buffer"
+        },
+        {
+          "name": "syft:metadata:-:groupID",
+          "value": "io.netty"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-console/lib/netty-buffer-4.1.96.Final.jar"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/io.netty/netty-codec@4.1.96.Final?package-id=34487e3759dedebc",
+      "type": "library",
+      "group": "io.netty",
+      "name": "netty-codec",
+      "version": "4.1.96.Final",
+      "licenses": [
+        {
+          "license": {
+            "name": "https://www.apache.org/licenses/LICENSE-2.0"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:netty-project:netty-codec:4.1.96.Final:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/io.netty/netty-codec@4.1.96.Final",
+      "externalReferences": [
+        {
+          "url": "",
+          "hashes": [
+            {
+              "alg": "SHA-1",
+              "content": "9cfe430f8b14e7ba86969d8e1126aa0aae4d18f0"
+            }
+          ],
+          "type": "build-meta"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:netty_codec:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:netty-codec:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:netty_codec:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-codec:netty-codec:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-codec:netty_codec:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec:netty-codec:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec:netty_codec:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:codec:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:codec:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec:netty-codec:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec:netty_codec:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-codec:codec:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:netty-codec:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:netty_codec:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec:codec:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec:codec:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:codec:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:b1dc62eecf8a6672534ff85086bc9d0ea8bb94cfd7e760c53734dad61f36012b"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-console/lib/netty-codec-4.1.96.Final.jar"
+        },
+        {
+          "name": "syft:metadata:-:artifactID",
+          "value": "netty-codec"
+        },
+        {
+          "name": "syft:metadata:-:groupID",
+          "value": "io.netty"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-console/lib/netty-codec-4.1.96.Final.jar"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/io.netty/netty-codec-dns@4.1.96.Final?package-id=4b54201dca09b4c5",
+      "type": "library",
+      "group": "io.netty",
+      "name": "netty-codec-dns",
+      "version": "4.1.96.Final",
+      "licenses": [
+        {
+          "license": {
+            "name": "https://www.apache.org/licenses/LICENSE-2.0"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:netty-codec-dns:netty-codec-dns:4.1.96.Final:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/io.netty/netty-codec-dns@4.1.96.Final",
+      "externalReferences": [
+        {
+          "url": "",
+          "hashes": [
+            {
+              "alg": "SHA-1",
+              "content": "afd90dc0e164be74b4a3e1a899890557fce98567"
+            }
+          ],
+          "type": "build-meta"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-codec-dns:netty_codec_dns:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec_dns:netty-codec-dns:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec_dns:netty_codec_dns:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:netty-codec-dns:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:netty_codec_dns:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:netty-codec-dns:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:netty_codec_dns:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-codec:netty-codec-dns:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-codec:netty_codec_dns:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec:netty-codec-dns:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec:netty_codec_dns:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec-dns:netty-codec-dns:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec-dns:netty_codec_dns:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec_dns:netty-codec-dns:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec_dns:netty_codec_dns:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-codec-dns:codec-dns:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-codec-dns:codec_dns:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec_dns:codec-dns:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec_dns:codec_dns:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:codec-dns:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:codec_dns:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:codec-dns:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:codec_dns:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec:netty-codec-dns:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec:netty_codec_dns:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-codec:codec-dns:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-codec:codec_dns:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:netty-codec-dns:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:netty_codec_dns:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec:codec-dns:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec:codec_dns:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec-dns:codec-dns:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec-dns:codec_dns:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec_dns:codec-dns:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec_dns:codec_dns:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec:codec-dns:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec:codec_dns:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:codec-dns:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:codec_dns:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:b1dc62eecf8a6672534ff85086bc9d0ea8bb94cfd7e760c53734dad61f36012b"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-console/lib/netty-codec-dns-4.1.96.Final.jar"
+        },
+        {
+          "name": "syft:metadata:-:artifactID",
+          "value": "netty-codec-dns"
+        },
+        {
+          "name": "syft:metadata:-:groupID",
+          "value": "io.netty"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-console/lib/netty-codec-dns-4.1.96.Final.jar"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/io.netty/netty-codec-haproxy@4.1.96.Final?package-id=28ac77e5a36afb50",
+      "type": "library",
+      "group": "io.netty",
+      "name": "netty-codec-haproxy",
+      "version": "4.1.96.Final",
+      "licenses": [
+        {
+          "license": {
+            "name": "https://www.apache.org/licenses/LICENSE-2.0"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:netty-codec-haproxy:netty-codec-haproxy:4.1.96.Final:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/io.netty/netty-codec-haproxy@4.1.96.Final",
+      "externalReferences": [
+        {
+          "url": "",
+          "hashes": [
+            {
+              "alg": "SHA-1",
+              "content": "b1e6c0ef649ad700e2c55c5c82ed3cf54e94288a"
+            }
+          ],
+          "type": "build-meta"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-codec-haproxy:netty_codec_haproxy:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec_haproxy:netty-codec-haproxy:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec_haproxy:netty_codec_haproxy:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec-haproxy:netty-codec-haproxy:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec-haproxy:netty_codec_haproxy:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec_haproxy:netty-codec-haproxy:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec_haproxy:netty_codec_haproxy:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-codec-haproxy:codec-haproxy:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-codec-haproxy:codec_haproxy:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:netty-codec-haproxy:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:netty_codec_haproxy:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec_haproxy:codec-haproxy:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec_haproxy:codec_haproxy:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:netty-codec-haproxy:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:netty_codec_haproxy:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-codec:netty-codec-haproxy:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-codec:netty_codec_haproxy:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec:netty-codec-haproxy:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec:netty_codec_haproxy:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec-haproxy:codec-haproxy:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec-haproxy:codec_haproxy:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec_haproxy:codec-haproxy:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec_haproxy:codec_haproxy:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:codec-haproxy:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:codec_haproxy:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:codec-haproxy:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:codec_haproxy:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec:netty-codec-haproxy:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec:netty_codec_haproxy:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-codec:codec-haproxy:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-codec:codec_haproxy:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:netty-codec-haproxy:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:netty_codec_haproxy:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec:codec-haproxy:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec:codec_haproxy:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec:codec-haproxy:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec:codec_haproxy:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:codec-haproxy:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:codec_haproxy:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:b1dc62eecf8a6672534ff85086bc9d0ea8bb94cfd7e760c53734dad61f36012b"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-console/lib/netty-codec-haproxy-4.1.96.Final.jar"
+        },
+        {
+          "name": "syft:metadata:-:artifactID",
+          "value": "netty-codec-haproxy"
+        },
+        {
+          "name": "syft:metadata:-:groupID",
+          "value": "io.netty"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-console/lib/netty-codec-haproxy-4.1.96.Final.jar"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/io.netty/netty-codec-http@4.1.96.Final?package-id=0f6039962bc83b6d",
+      "type": "library",
+      "group": "io.netty",
+      "name": "netty-codec-http",
+      "version": "4.1.96.Final",
+      "licenses": [
+        {
+          "license": {
+            "name": "https://www.apache.org/licenses/LICENSE-2.0"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:netty-codec-http:netty-codec-http:4.1.96.Final:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/io.netty/netty-codec-http@4.1.96.Final",
+      "externalReferences": [
+        {
+          "url": "",
+          "hashes": [
+            {
+              "alg": "SHA-1",
+              "content": "a4d0d95df5026965c454902ef3d6d84b81f89626"
+            }
+          ],
+          "type": "build-meta"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-codec-http:netty_codec_http:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec_http:netty-codec-http:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec_http:netty_codec_http:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:netty-codec-http:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:netty_codec_http:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:netty-codec-http:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:netty_codec_http:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-codec:netty-codec-http:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-codec:netty_codec_http:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec:netty-codec-http:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec:netty_codec_http:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec-http:netty-codec-http:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec-http:netty_codec_http:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec_http:netty-codec-http:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec_http:netty_codec_http:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-codec-http:codec-http:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-codec-http:codec_http:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec_http:codec-http:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec_http:codec_http:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:codec-http:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:codec_http:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:codec-http:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:codec_http:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec:netty-codec-http:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec:netty_codec_http:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-codec:codec-http:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-codec:codec_http:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:netty-codec-http:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:netty_codec_http:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec:codec-http:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec:codec_http:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec-http:codec-http:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec-http:codec_http:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec_http:codec-http:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec_http:codec_http:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec:codec-http:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec:codec_http:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:codec-http:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:codec_http:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:b1dc62eecf8a6672534ff85086bc9d0ea8bb94cfd7e760c53734dad61f36012b"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-console/lib/netty-codec-http-4.1.96.Final.jar"
+        },
+        {
+          "name": "syft:metadata:-:artifactID",
+          "value": "netty-codec-http"
+        },
+        {
+          "name": "syft:metadata:-:groupID",
+          "value": "io.netty"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-console/lib/netty-codec-http-4.1.96.Final.jar"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/io.netty/netty-codec-http2@4.1.96.Final?package-id=b08bf9e672932f3b",
+      "type": "library",
+      "group": "io.netty",
+      "name": "netty-codec-http2",
+      "version": "4.1.96.Final",
+      "licenses": [
+        {
+          "license": {
+            "name": "https://www.apache.org/licenses/LICENSE-2.0"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:netty-codec-http2:netty-codec-http2:4.1.96.Final:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/io.netty/netty-codec-http2@4.1.96.Final",
+      "externalReferences": [
+        {
+          "url": "",
+          "hashes": [
+            {
+              "alg": "SHA-1",
+              "content": "cc8baf4ff67c1bcc0cde60bc5c2bb9447d92d9e6"
+            }
+          ],
+          "type": "build-meta"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-codec-http2:netty_codec_http2:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec_http2:netty-codec-http2:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec_http2:netty_codec_http2:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:netty-codec-http2:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:netty_codec_http2:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:netty-codec-http2:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:netty_codec_http2:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec-http2:netty-codec-http2:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec-http2:netty_codec_http2:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec_http2:netty-codec-http2:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec_http2:netty_codec_http2:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-codec-http2:codec-http2:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-codec-http2:codec_http2:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-codec:netty-codec-http2:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-codec:netty_codec_http2:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec:netty-codec-http2:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec:netty_codec_http2:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec_http2:codec-http2:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec_http2:codec_http2:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:codec-http2:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:codec_http2:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:codec-http2:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:codec_http2:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec-http2:codec-http2:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec-http2:codec_http2:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec:netty-codec-http2:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec:netty_codec_http2:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec_http2:codec-http2:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec_http2:codec_http2:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-codec:codec-http2:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-codec:codec_http2:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:netty-codec-http2:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:netty_codec_http2:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec:codec-http2:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec:codec_http2:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec:codec-http2:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec:codec_http2:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:codec-http2:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:codec_http2:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:b1dc62eecf8a6672534ff85086bc9d0ea8bb94cfd7e760c53734dad61f36012b"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-console/lib/netty-codec-http2-4.1.96.Final.jar"
+        },
+        {
+          "name": "syft:metadata:-:artifactID",
+          "value": "netty-codec-http2"
+        },
+        {
+          "name": "syft:metadata:-:groupID",
+          "value": "io.netty"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-console/lib/netty-codec-http2-4.1.96.Final.jar"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/io.netty/netty-codec-memcache@4.1.96.Final?package-id=d1c6d0ae0e89942e",
+      "type": "library",
+      "group": "io.netty",
+      "name": "netty-codec-memcache",
+      "version": "4.1.96.Final",
+      "licenses": [
+        {
+          "license": {
+            "name": "https://www.apache.org/licenses/LICENSE-2.0"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:netty-codec-memcache:netty-codec-memcache:4.1.96.Final:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/io.netty/netty-codec-memcache@4.1.96.Final",
+      "externalReferences": [
+        {
+          "url": "",
+          "hashes": [
+            {
+              "alg": "SHA-1",
+              "content": "d341e07cc0d6156ceca3c29c62a18e35f2bef534"
+            }
+          ],
+          "type": "build-meta"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-codec-memcache:netty_codec_memcache:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec_memcache:netty-codec-memcache:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec_memcache:netty_codec_memcache:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec-memcache:netty-codec-memcache:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec-memcache:netty_codec_memcache:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec_memcache:netty-codec-memcache:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec_memcache:netty_codec_memcache:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-codec-memcache:codec-memcache:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-codec-memcache:codec_memcache:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec_memcache:codec-memcache:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec_memcache:codec_memcache:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:netty-codec-memcache:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:netty_codec_memcache:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:netty-codec-memcache:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:netty_codec_memcache:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-codec:netty-codec-memcache:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-codec:netty_codec_memcache:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec:netty-codec-memcache:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec:netty_codec_memcache:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec-memcache:codec-memcache:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec-memcache:codec_memcache:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec_memcache:codec-memcache:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec_memcache:codec_memcache:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:codec-memcache:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:codec_memcache:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:codec-memcache:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:codec_memcache:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec:netty-codec-memcache:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec:netty_codec_memcache:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-codec:codec-memcache:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-codec:codec_memcache:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:netty-codec-memcache:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:netty_codec_memcache:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec:codec-memcache:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec:codec_memcache:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec:codec-memcache:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec:codec_memcache:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:codec-memcache:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:codec_memcache:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:b1dc62eecf8a6672534ff85086bc9d0ea8bb94cfd7e760c53734dad61f36012b"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-console/lib/netty-codec-memcache-4.1.96.Final.jar"
+        },
+        {
+          "name": "syft:metadata:-:artifactID",
+          "value": "netty-codec-memcache"
+        },
+        {
+          "name": "syft:metadata:-:groupID",
+          "value": "io.netty"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-console/lib/netty-codec-memcache-4.1.96.Final.jar"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/io.netty/netty-codec-mqtt@4.1.96.Final?package-id=af8ade1007767c1e",
+      "type": "library",
+      "group": "io.netty",
+      "name": "netty-codec-mqtt",
+      "version": "4.1.96.Final",
+      "licenses": [
+        {
+          "license": {
+            "name": "https://www.apache.org/licenses/LICENSE-2.0"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:netty-codec-mqtt:netty-codec-mqtt:4.1.96.Final:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/io.netty/netty-codec-mqtt@4.1.96.Final",
+      "externalReferences": [
+        {
+          "url": "",
+          "hashes": [
+            {
+              "alg": "SHA-1",
+              "content": "259108dcf91f17405850135e049cd1ed171986b7"
+            }
+          ],
+          "type": "build-meta"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-codec-mqtt:netty_codec_mqtt:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec_mqtt:netty-codec-mqtt:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec_mqtt:netty_codec_mqtt:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:netty-codec-mqtt:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:netty_codec_mqtt:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:netty-codec-mqtt:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:netty_codec_mqtt:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-codec:netty-codec-mqtt:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-codec:netty_codec_mqtt:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec:netty-codec-mqtt:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec:netty_codec_mqtt:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec-mqtt:netty-codec-mqtt:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec-mqtt:netty_codec_mqtt:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec_mqtt:netty-codec-mqtt:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec_mqtt:netty_codec_mqtt:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-codec-mqtt:codec-mqtt:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-codec-mqtt:codec_mqtt:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec_mqtt:codec-mqtt:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec_mqtt:codec_mqtt:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:codec-mqtt:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:codec_mqtt:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:codec-mqtt:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:codec_mqtt:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec:netty-codec-mqtt:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec:netty_codec_mqtt:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-codec:codec-mqtt:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-codec:codec_mqtt:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:netty-codec-mqtt:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:netty_codec_mqtt:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec:codec-mqtt:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec:codec_mqtt:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec-mqtt:codec-mqtt:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec-mqtt:codec_mqtt:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec_mqtt:codec-mqtt:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec_mqtt:codec_mqtt:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec:codec-mqtt:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec:codec_mqtt:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:codec-mqtt:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:codec_mqtt:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:b1dc62eecf8a6672534ff85086bc9d0ea8bb94cfd7e760c53734dad61f36012b"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-console/lib/netty-codec-mqtt-4.1.96.Final.jar"
+        },
+        {
+          "name": "syft:metadata:-:artifactID",
+          "value": "netty-codec-mqtt"
+        },
+        {
+          "name": "syft:metadata:-:groupID",
+          "value": "io.netty"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-console/lib/netty-codec-mqtt-4.1.96.Final.jar"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/io.netty/netty-codec-redis@4.1.96.Final?package-id=e7415cdd8227f1e5",
+      "type": "library",
+      "group": "io.netty",
+      "name": "netty-codec-redis",
+      "version": "4.1.96.Final",
+      "licenses": [
+        {
+          "license": {
+            "name": "https://www.apache.org/licenses/LICENSE-2.0"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:netty-codec-redis:netty-codec-redis:4.1.96.Final:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/io.netty/netty-codec-redis@4.1.96.Final",
+      "externalReferences": [
+        {
+          "url": "",
+          "hashes": [
+            {
+              "alg": "SHA-1",
+              "content": "fa41ff54516754f5e311481b1d5695509993abaf"
+            }
+          ],
+          "type": "build-meta"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-codec-redis:netty_codec_redis:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec_redis:netty-codec-redis:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec_redis:netty_codec_redis:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:netty-codec-redis:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:netty_codec_redis:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:netty-codec-redis:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:netty_codec_redis:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec-redis:netty-codec-redis:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec-redis:netty_codec_redis:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec_redis:netty-codec-redis:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec_redis:netty_codec_redis:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-codec-redis:codec-redis:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-codec-redis:codec_redis:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-codec:netty-codec-redis:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-codec:netty_codec_redis:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec:netty-codec-redis:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec:netty_codec_redis:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec_redis:codec-redis:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec_redis:codec_redis:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:codec-redis:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:codec_redis:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:codec-redis:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:codec_redis:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec-redis:codec-redis:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec-redis:codec_redis:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec:netty-codec-redis:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec:netty_codec_redis:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec_redis:codec-redis:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec_redis:codec_redis:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-codec:codec-redis:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-codec:codec_redis:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:netty-codec-redis:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:netty_codec_redis:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec:codec-redis:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec:codec_redis:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec:codec-redis:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec:codec_redis:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:codec-redis:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:codec_redis:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:b1dc62eecf8a6672534ff85086bc9d0ea8bb94cfd7e760c53734dad61f36012b"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-console/lib/netty-codec-redis-4.1.96.Final.jar"
+        },
+        {
+          "name": "syft:metadata:-:artifactID",
+          "value": "netty-codec-redis"
+        },
+        {
+          "name": "syft:metadata:-:groupID",
+          "value": "io.netty"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-console/lib/netty-codec-redis-4.1.96.Final.jar"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.96.Final?package-id=061d661632977c25",
+      "type": "library",
+      "group": "io.netty",
+      "name": "netty-codec-smtp",
+      "version": "4.1.96.Final",
+      "licenses": [
+        {
+          "license": {
+            "name": "https://www.apache.org/licenses/LICENSE-2.0"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:netty-codec-smtp:netty-codec-smtp:4.1.96.Final:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/io.netty/netty-codec-smtp@4.1.96.Final",
+      "externalReferences": [
+        {
+          "url": "",
+          "hashes": [
+            {
+              "alg": "SHA-1",
+              "content": "efbed5bc985955c4712b3204c55690693055384e"
+            }
+          ],
+          "type": "build-meta"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-codec-smtp:netty_codec_smtp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec_smtp:netty-codec-smtp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec_smtp:netty_codec_smtp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:netty-codec-smtp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:netty_codec_smtp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:netty-codec-smtp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:netty_codec_smtp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-codec:netty-codec-smtp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-codec:netty_codec_smtp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec:netty-codec-smtp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec:netty_codec_smtp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec-smtp:netty-codec-smtp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec-smtp:netty_codec_smtp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec_smtp:netty-codec-smtp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec_smtp:netty_codec_smtp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-codec-smtp:codec-smtp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-codec-smtp:codec_smtp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec_smtp:codec-smtp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec_smtp:codec_smtp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:codec-smtp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:codec_smtp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:codec-smtp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:codec_smtp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec:netty-codec-smtp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec:netty_codec_smtp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-codec:codec-smtp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-codec:codec_smtp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:netty-codec-smtp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:netty_codec_smtp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec:codec-smtp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec:codec_smtp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec-smtp:codec-smtp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec-smtp:codec_smtp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec_smtp:codec-smtp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec_smtp:codec_smtp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec:codec-smtp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec:codec_smtp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:codec-smtp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:codec_smtp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:b1dc62eecf8a6672534ff85086bc9d0ea8bb94cfd7e760c53734dad61f36012b"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-console/lib/netty-codec-smtp-4.1.96.Final.jar"
+        },
+        {
+          "name": "syft:metadata:-:artifactID",
+          "value": "netty-codec-smtp"
+        },
+        {
+          "name": "syft:metadata:-:groupID",
+          "value": "io.netty"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-console/lib/netty-codec-smtp-4.1.96.Final.jar"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/io.netty/netty-codec-socks@4.1.96.Final?package-id=949c07a64e94e247",
+      "type": "library",
+      "group": "io.netty",
+      "name": "netty-codec-socks",
+      "version": "4.1.96.Final",
+      "licenses": [
+        {
+          "license": {
+            "name": "https://www.apache.org/licenses/LICENSE-2.0"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:netty-codec-socks:netty-codec-socks:4.1.96.Final:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/io.netty/netty-codec-socks@4.1.96.Final",
+      "externalReferences": [
+        {
+          "url": "",
+          "hashes": [
+            {
+              "alg": "SHA-1",
+              "content": "f53c52dbddaa4a02a51430405792d3f30a89b147"
+            }
+          ],
+          "type": "build-meta"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-codec-socks:netty_codec_socks:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec_socks:netty-codec-socks:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec_socks:netty_codec_socks:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:netty-codec-socks:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:netty_codec_socks:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:netty-codec-socks:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:netty_codec_socks:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec-socks:netty-codec-socks:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec-socks:netty_codec_socks:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec_socks:netty-codec-socks:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec_socks:netty_codec_socks:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-codec-socks:codec-socks:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-codec-socks:codec_socks:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-codec:netty-codec-socks:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-codec:netty_codec_socks:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec:netty-codec-socks:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec:netty_codec_socks:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec_socks:codec-socks:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec_socks:codec_socks:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:codec-socks:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:codec_socks:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:codec-socks:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:codec_socks:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec-socks:codec-socks:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec-socks:codec_socks:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec:netty-codec-socks:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec:netty_codec_socks:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec_socks:codec-socks:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec_socks:codec_socks:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-codec:codec-socks:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-codec:codec_socks:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:netty-codec-socks:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:netty_codec_socks:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec:codec-socks:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec:codec_socks:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec:codec-socks:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec:codec_socks:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:codec-socks:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:codec_socks:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:b1dc62eecf8a6672534ff85086bc9d0ea8bb94cfd7e760c53734dad61f36012b"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-console/lib/netty-codec-socks-4.1.96.Final.jar"
+        },
+        {
+          "name": "syft:metadata:-:artifactID",
+          "value": "netty-codec-socks"
+        },
+        {
+          "name": "syft:metadata:-:groupID",
+          "value": "io.netty"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-console/lib/netty-codec-socks-4.1.96.Final.jar"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/io.netty/netty-codec-stomp@4.1.96.Final?package-id=38e078ae4657a2ef",
+      "type": "library",
+      "group": "io.netty",
+      "name": "netty-codec-stomp",
+      "version": "4.1.96.Final",
+      "licenses": [
+        {
+          "license": {
+            "name": "https://www.apache.org/licenses/LICENSE-2.0"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:netty-codec-stomp:netty-codec-stomp:4.1.96.Final:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/io.netty/netty-codec-stomp@4.1.96.Final",
+      "externalReferences": [
+        {
+          "url": "",
+          "hashes": [
+            {
+              "alg": "SHA-1",
+              "content": "b87137afca2ab2604b96a01b3c4364b4e982835a"
+            }
+          ],
+          "type": "build-meta"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-codec-stomp:netty_codec_stomp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec_stomp:netty-codec-stomp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec_stomp:netty_codec_stomp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:netty-codec-stomp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:netty_codec_stomp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:netty-codec-stomp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:netty_codec_stomp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec-stomp:netty-codec-stomp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec-stomp:netty_codec_stomp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec_stomp:netty-codec-stomp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec_stomp:netty_codec_stomp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-codec-stomp:codec-stomp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-codec-stomp:codec_stomp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-codec:netty-codec-stomp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-codec:netty_codec_stomp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec:netty-codec-stomp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec:netty_codec_stomp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec_stomp:codec-stomp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec_stomp:codec_stomp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:codec-stomp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:codec_stomp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:codec-stomp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:codec_stomp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec-stomp:codec-stomp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec-stomp:codec_stomp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec:netty-codec-stomp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec:netty_codec_stomp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec_stomp:codec-stomp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec_stomp:codec_stomp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-codec:codec-stomp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-codec:codec_stomp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:netty-codec-stomp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:netty_codec_stomp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec:codec-stomp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec:codec_stomp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec:codec-stomp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec:codec_stomp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:codec-stomp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:codec_stomp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:b1dc62eecf8a6672534ff85086bc9d0ea8bb94cfd7e760c53734dad61f36012b"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-console/lib/netty-codec-stomp-4.1.96.Final.jar"
+        },
+        {
+          "name": "syft:metadata:-:artifactID",
+          "value": "netty-codec-stomp"
+        },
+        {
+          "name": "syft:metadata:-:groupID",
+          "value": "io.netty"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-console/lib/netty-codec-stomp-4.1.96.Final.jar"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/io.netty/netty-codec-xml@4.1.96.Final?package-id=a58b8adee60253dd",
+      "type": "library",
+      "group": "io.netty",
+      "name": "netty-codec-xml",
+      "version": "4.1.96.Final",
+      "licenses": [
+        {
+          "license": {
+            "name": "https://www.apache.org/licenses/LICENSE-2.0"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:netty-codec-xml:netty-codec-xml:4.1.96.Final:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/io.netty/netty-codec-xml@4.1.96.Final",
+      "externalReferences": [
+        {
+          "url": "",
+          "hashes": [
+            {
+              "alg": "SHA-1",
+              "content": "5e455e00816972f05fb676eae0eb933189ad385f"
+            }
+          ],
+          "type": "build-meta"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-codec-xml:netty_codec_xml:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec_xml:netty-codec-xml:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec_xml:netty_codec_xml:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:netty-codec-xml:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:netty_codec_xml:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:netty-codec-xml:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:netty_codec_xml:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-codec:netty-codec-xml:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-codec:netty_codec_xml:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec:netty-codec-xml:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec:netty_codec_xml:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec-xml:netty-codec-xml:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec-xml:netty_codec_xml:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec_xml:netty-codec-xml:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec_xml:netty_codec_xml:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-codec-xml:codec-xml:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-codec-xml:codec_xml:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec_xml:codec-xml:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec_xml:codec_xml:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:codec-xml:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:codec_xml:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:codec-xml:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:codec_xml:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec:netty-codec-xml:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec:netty_codec_xml:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-codec:codec-xml:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-codec:codec_xml:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:netty-codec-xml:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:netty_codec_xml:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec:codec-xml:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec:codec_xml:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec-xml:codec-xml:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec-xml:codec_xml:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec_xml:codec-xml:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec_xml:codec_xml:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec:codec-xml:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec:codec_xml:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:codec-xml:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:codec_xml:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:b1dc62eecf8a6672534ff85086bc9d0ea8bb94cfd7e760c53734dad61f36012b"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-console/lib/netty-codec-xml-4.1.96.Final.jar"
+        },
+        {
+          "name": "syft:metadata:-:artifactID",
+          "value": "netty-codec-xml"
+        },
+        {
+          "name": "syft:metadata:-:groupID",
+          "value": "io.netty"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-console/lib/netty-codec-xml-4.1.96.Final.jar"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/io.netty/netty-common@4.1.96.Final?package-id=a8d2ba9a19fab2ed",
+      "type": "library",
+      "group": "io.netty",
+      "name": "netty-common",
+      "version": "4.1.96.Final",
+      "licenses": [
+        {
+          "license": {
+            "name": "https://www.apache.org/licenses/LICENSE-2.0"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:netty-project:netty-common:4.1.96.Final:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/io.netty/netty-common@4.1.96.Final",
+      "externalReferences": [
+        {
+          "url": "",
+          "hashes": [
+            {
+              "alg": "SHA-1",
+              "content": "d10c167623cbc471753f950846df241d1021655c"
+            }
+          ],
+          "type": "build-meta"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:netty_common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:netty-common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:netty_common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-common:netty-common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-common:netty_common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_common:netty-common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_common:netty_common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:common:netty-common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:common:netty_common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-common:common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_common:common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:netty-common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:netty_common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:common:common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:b1dc62eecf8a6672534ff85086bc9d0ea8bb94cfd7e760c53734dad61f36012b"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-console/lib/netty-common-4.1.96.Final.jar"
+        },
+        {
+          "name": "syft:metadata:-:artifactID",
+          "value": "netty-common"
+        },
+        {
+          "name": "syft:metadata:-:groupID",
+          "value": "io.netty"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-console/lib/netty-common-4.1.96.Final.jar"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/io.netty/netty-handler@4.1.96.Final?package-id=8c7af430e8c594b4",
+      "type": "library",
+      "group": "io.netty",
+      "name": "netty-handler",
+      "version": "4.1.96.Final",
+      "licenses": [
+        {
+          "license": {
+            "name": "https://www.apache.org/licenses/LICENSE-2.0"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:netty-handler:netty-handler:4.1.96.Final:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/io.netty/netty-handler@4.1.96.Final",
+      "externalReferences": [
+        {
+          "url": "",
+          "hashes": [
+            {
+              "alg": "SHA-1",
+              "content": "7840d7523d709e02961b647546f9d9dde1699306"
+            }
+          ],
+          "type": "build-meta"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-handler:netty_handler:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:netty-handler:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:netty_handler:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_handler:netty-handler:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_handler:netty_handler:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:netty-handler:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:netty_handler:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:handler:netty-handler:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:handler:netty_handler:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-handler:handler:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:handler:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_handler:handler:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:handler:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:netty-handler:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:netty_handler:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:handler:handler:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:handler:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:b1dc62eecf8a6672534ff85086bc9d0ea8bb94cfd7e760c53734dad61f36012b"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-console/lib/netty-handler-4.1.96.Final.jar"
+        },
+        {
+          "name": "syft:metadata:-:artifactID",
+          "value": "netty-handler"
+        },
+        {
+          "name": "syft:metadata:-:groupID",
+          "value": "io.netty"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-console/lib/netty-handler-4.1.96.Final.jar"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/io.netty/netty-handler-proxy@4.1.96.Final?package-id=82e23a801acdad79",
+      "type": "library",
+      "group": "io.netty",
+      "name": "netty-handler-proxy",
+      "version": "4.1.96.Final",
+      "licenses": [
+        {
+          "license": {
+            "name": "https://www.apache.org/licenses/LICENSE-2.0"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:netty-handler-proxy:netty-handler-proxy:4.1.96.Final:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/io.netty/netty-handler-proxy@4.1.96.Final",
+      "externalReferences": [
+        {
+          "url": "",
+          "hashes": [
+            {
+              "alg": "SHA-1",
+              "content": "dcabd63f4aaec2b4cad7588bfdd4cd2c82287e38"
+            }
+          ],
+          "type": "build-meta"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-handler-proxy:netty_handler_proxy:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_handler_proxy:netty-handler-proxy:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_handler_proxy:netty_handler_proxy:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:handler-proxy:netty-handler-proxy:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:handler-proxy:netty_handler_proxy:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:handler_proxy:netty-handler-proxy:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:handler_proxy:netty_handler_proxy:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-handler-proxy:handler-proxy:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-handler-proxy:handler_proxy:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-handler:netty-handler-proxy:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-handler:netty_handler_proxy:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:netty-handler-proxy:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:netty_handler_proxy:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_handler:netty-handler-proxy:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_handler:netty_handler_proxy:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_handler_proxy:handler-proxy:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_handler_proxy:handler_proxy:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:netty-handler-proxy:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:netty_handler_proxy:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:handler-proxy:handler-proxy:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:handler-proxy:handler_proxy:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:handler:netty-handler-proxy:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:handler:netty_handler_proxy:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:handler_proxy:handler-proxy:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:handler_proxy:handler_proxy:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-handler:handler-proxy:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-handler:handler_proxy:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:handler-proxy:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:handler_proxy:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_handler:handler-proxy:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_handler:handler_proxy:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:handler-proxy:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:handler_proxy:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:netty-handler-proxy:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:netty_handler_proxy:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:handler:handler-proxy:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:handler:handler_proxy:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:handler-proxy:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:handler_proxy:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:b1dc62eecf8a6672534ff85086bc9d0ea8bb94cfd7e760c53734dad61f36012b"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-console/lib/netty-handler-proxy-4.1.96.Final.jar"
+        },
+        {
+          "name": "syft:metadata:-:artifactID",
+          "value": "netty-handler-proxy"
+        },
+        {
+          "name": "syft:metadata:-:groupID",
+          "value": "io.netty"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-console/lib/netty-handler-proxy-4.1.96.Final.jar"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/io.netty/netty-handler-ssl-ocsp@4.1.96.Final?package-id=55d2b183c392e19f",
+      "type": "library",
+      "group": "io.netty",
+      "name": "netty-handler-ssl-ocsp",
+      "version": "4.1.96.Final",
+      "licenses": [
+        {
+          "license": {
+            "name": "https://www.apache.org/licenses/LICENSE-2.0"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:netty-handler-ssl-ocsp:netty-handler-ssl-ocsp:4.1.96.Final:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/io.netty/netty-handler-ssl-ocsp@4.1.96.Final",
+      "externalReferences": [
+        {
+          "url": "",
+          "hashes": [
+            {
+              "alg": "SHA-1",
+              "content": "7e659738edbb67b03310852eddda0a1001ea1f6e"
+            }
+          ],
+          "type": "build-meta"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-handler-ssl-ocsp:netty_handler_ssl_ocsp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_handler_ssl_ocsp:netty-handler-ssl-ocsp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_handler_ssl_ocsp:netty_handler_ssl_ocsp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-handler-ssl:netty-handler-ssl-ocsp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-handler-ssl:netty_handler_ssl_ocsp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_handler_ssl:netty-handler-ssl-ocsp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_handler_ssl:netty_handler_ssl_ocsp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:handler-ssl-ocsp:netty-handler-ssl-ocsp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:handler-ssl-ocsp:netty_handler_ssl_ocsp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:handler_ssl_ocsp:netty-handler-ssl-ocsp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:handler_ssl_ocsp:netty_handler_ssl_ocsp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-handler-ssl-ocsp:handler-ssl-ocsp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-handler-ssl-ocsp:handler_ssl_ocsp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_handler_ssl_ocsp:handler-ssl-ocsp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_handler_ssl_ocsp:handler_ssl_ocsp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-handler:netty-handler-ssl-ocsp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-handler:netty_handler_ssl_ocsp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:netty-handler-ssl-ocsp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:netty_handler_ssl_ocsp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_handler:netty-handler-ssl-ocsp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_handler:netty_handler_ssl_ocsp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:netty-handler-ssl-ocsp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:netty_handler_ssl_ocsp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:handler-ssl:netty-handler-ssl-ocsp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:handler-ssl:netty_handler_ssl_ocsp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:handler_ssl:netty-handler-ssl-ocsp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:handler_ssl:netty_handler_ssl_ocsp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-handler-ssl:handler-ssl-ocsp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-handler-ssl:handler_ssl_ocsp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_handler_ssl:handler-ssl-ocsp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_handler_ssl:handler_ssl_ocsp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:handler-ssl-ocsp:handler-ssl-ocsp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:handler-ssl-ocsp:handler_ssl_ocsp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:handler_ssl_ocsp:handler-ssl-ocsp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:handler_ssl_ocsp:handler_ssl_ocsp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:handler:netty-handler-ssl-ocsp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:handler:netty_handler_ssl_ocsp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-handler:handler-ssl-ocsp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-handler:handler_ssl_ocsp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:handler-ssl-ocsp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:handler_ssl_ocsp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_handler:handler-ssl-ocsp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_handler:handler_ssl_ocsp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:handler-ssl-ocsp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:handler_ssl_ocsp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:handler-ssl:handler-ssl-ocsp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:handler-ssl:handler_ssl_ocsp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:handler_ssl:handler-ssl-ocsp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:handler_ssl:handler_ssl_ocsp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:netty-handler-ssl-ocsp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:netty_handler_ssl_ocsp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:handler:handler-ssl-ocsp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:handler:handler_ssl_ocsp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:handler-ssl-ocsp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:handler_ssl_ocsp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:b1dc62eecf8a6672534ff85086bc9d0ea8bb94cfd7e760c53734dad61f36012b"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-console/lib/netty-handler-ssl-ocsp-4.1.96.Final.jar"
+        },
+        {
+          "name": "syft:metadata:-:artifactID",
+          "value": "netty-handler-ssl-ocsp"
+        },
+        {
+          "name": "syft:metadata:-:groupID",
+          "value": "io.netty"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-console/lib/netty-handler-ssl-ocsp-4.1.96.Final.jar"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/io.netty/netty-resolver@4.1.96.Final?package-id=478edca9062645f4",
+      "type": "library",
+      "group": "io.netty",
+      "name": "netty-resolver",
+      "version": "4.1.96.Final",
+      "licenses": [
+        {
+          "license": {
+            "name": "https://www.apache.org/licenses/LICENSE-2.0"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:netty-resolver:netty-resolver:4.1.96.Final:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/io.netty/netty-resolver@4.1.96.Final",
+      "externalReferences": [
+        {
+          "url": "",
+          "hashes": [
+            {
+              "alg": "SHA-1",
+              "content": "0e51db5568a881e0f9b013b35617c597dc32f130"
+            }
+          ],
+          "type": "build-meta"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-resolver:netty_resolver:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_resolver:netty-resolver:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_resolver:netty_resolver:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:netty-resolver:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:netty_resolver:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:netty-resolver:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:netty_resolver:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-resolver:resolver:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_resolver:resolver:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver:netty-resolver:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver:netty_resolver:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:resolver:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:resolver:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:netty-resolver:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:netty_resolver:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver:resolver:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:resolver:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:b1dc62eecf8a6672534ff85086bc9d0ea8bb94cfd7e760c53734dad61f36012b"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-console/lib/netty-resolver-4.1.96.Final.jar"
+        },
+        {
+          "name": "syft:metadata:-:artifactID",
+          "value": "netty-resolver"
+        },
+        {
+          "name": "syft:metadata:-:groupID",
+          "value": "io.netty"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-console/lib/netty-resolver-4.1.96.Final.jar"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/io.netty/netty-resolver-dns@4.1.96.Final?package-id=c38bc2bac6989824",
+      "type": "library",
+      "group": "io.netty",
+      "name": "netty-resolver-dns",
+      "version": "4.1.96.Final",
+      "licenses": [
+        {
+          "license": {
+            "name": "https://www.apache.org/licenses/LICENSE-2.0"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:netty-resolver-dns:netty-resolver-dns:4.1.96.Final:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/io.netty/netty-resolver-dns@4.1.96.Final",
+      "externalReferences": [
+        {
+          "url": "",
+          "hashes": [
+            {
+              "alg": "SHA-1",
+              "content": "0095023cc667af76578c9be326a6d54e3e1de52c"
+            }
+          ],
+          "type": "build-meta"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-resolver-dns:netty_resolver_dns:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_resolver_dns:netty-resolver-dns:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_resolver_dns:netty_resolver_dns:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-resolver:netty-resolver-dns:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-resolver:netty_resolver_dns:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_resolver:netty-resolver-dns:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_resolver:netty_resolver_dns:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:netty-resolver-dns:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:netty_resolver_dns:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:netty-resolver-dns:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:netty_resolver_dns:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-resolver-dns:resolver-dns:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-resolver-dns:resolver_dns:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_resolver_dns:resolver-dns:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_resolver_dns:resolver_dns:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver-dns:netty-resolver-dns:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver-dns:netty_resolver_dns:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver_dns:netty-resolver-dns:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver_dns:netty_resolver_dns:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-resolver:resolver-dns:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-resolver:resolver_dns:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_resolver:resolver-dns:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_resolver:resolver_dns:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver:netty-resolver-dns:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver:netty_resolver_dns:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:resolver-dns:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:resolver_dns:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:resolver-dns:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:resolver_dns:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver-dns:resolver-dns:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver-dns:resolver_dns:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver_dns:resolver-dns:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver_dns:resolver_dns:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:netty-resolver-dns:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:netty_resolver_dns:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver:resolver-dns:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver:resolver_dns:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:resolver-dns:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:resolver_dns:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:b1dc62eecf8a6672534ff85086bc9d0ea8bb94cfd7e760c53734dad61f36012b"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-console/lib/netty-resolver-dns-4.1.96.Final.jar"
+        },
+        {
+          "name": "syft:metadata:-:artifactID",
+          "value": "netty-resolver-dns"
+        },
+        {
+          "name": "syft:metadata:-:groupID",
+          "value": "io.netty"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-console/lib/netty-resolver-dns-4.1.96.Final.jar"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/io.netty/netty-resolver-dns-classes-macos@4.1.96.Final?package-id=7c69f0b22b022f72",
+      "type": "library",
+      "group": "io.netty",
+      "name": "netty-resolver-dns-classes-macos",
+      "version": "4.1.96.Final",
+      "licenses": [
+        {
+          "license": {
+            "name": "https://www.apache.org/licenses/LICENSE-2.0"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:netty-resolver-dns-classes-macos:netty-resolver-dns-classes-macos:4.1.96.Final:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/io.netty/netty-resolver-dns-classes-macos@4.1.96.Final",
+      "externalReferences": [
+        {
+          "url": "",
+          "hashes": [
+            {
+              "alg": "SHA-1",
+              "content": "99d66697cc3d32314e84eea46ffea2038621af88"
+            }
+          ],
+          "type": "build-meta"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-resolver-dns-classes-macos:netty_resolver_dns_classes_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_resolver_dns_classes_macos:netty-resolver-dns-classes-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_resolver_dns_classes_macos:netty_resolver_dns_classes_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-resolver-dns-classes-macos:resolver-dns-classes-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-resolver-dns-classes-macos:resolver_dns_classes_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-resolver-dns-classes:netty-resolver-dns-classes-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-resolver-dns-classes:netty_resolver_dns_classes_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_resolver_dns_classes:netty-resolver-dns-classes-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_resolver_dns_classes:netty_resolver_dns_classes_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_resolver_dns_classes_macos:resolver-dns-classes-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_resolver_dns_classes_macos:resolver_dns_classes_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver-dns-classes-macos:netty-resolver-dns-classes-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver-dns-classes-macos:netty_resolver_dns_classes_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver_dns_classes_macos:netty-resolver-dns-classes-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver_dns_classes_macos:netty_resolver_dns_classes_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-resolver-dns-classes:resolver-dns-classes-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-resolver-dns-classes:resolver_dns_classes_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_resolver_dns_classes:resolver-dns-classes-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_resolver_dns_classes:resolver_dns_classes_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver-dns-classes-macos:resolver-dns-classes-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver-dns-classes-macos:resolver_dns_classes_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver-dns-classes:netty-resolver-dns-classes-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver-dns-classes:netty_resolver_dns_classes_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver_dns_classes:netty-resolver-dns-classes-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver_dns_classes:netty_resolver_dns_classes_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver_dns_classes_macos:resolver-dns-classes-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver_dns_classes_macos:resolver_dns_classes_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-resolver-dns:netty-resolver-dns-classes-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-resolver-dns:netty_resolver_dns_classes_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_resolver_dns:netty-resolver-dns-classes-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_resolver_dns:netty_resolver_dns_classes_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-resolver:netty-resolver-dns-classes-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-resolver:netty_resolver_dns_classes_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_resolver:netty-resolver-dns-classes-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_resolver:netty_resolver_dns_classes_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver-dns-classes:resolver-dns-classes-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver-dns-classes:resolver_dns_classes_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver_dns_classes:resolver-dns-classes-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver_dns_classes:resolver_dns_classes_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:netty-resolver-dns-classes-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:netty_resolver_dns_classes_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:netty-resolver-dns-classes-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:netty_resolver_dns_classes_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-resolver-dns:resolver-dns-classes-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-resolver-dns:resolver_dns_classes_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_resolver_dns:resolver-dns-classes-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_resolver_dns:resolver_dns_classes_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver-dns:netty-resolver-dns-classes-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver-dns:netty_resolver_dns_classes_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver_dns:netty-resolver-dns-classes-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver_dns:netty_resolver_dns_classes_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-resolver:resolver-dns-classes-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-resolver:resolver_dns_classes_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_resolver:resolver-dns-classes-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_resolver:resolver_dns_classes_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver:netty-resolver-dns-classes-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver:netty_resolver_dns_classes_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:resolver-dns-classes-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:resolver_dns_classes_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:resolver-dns-classes-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:resolver_dns_classes_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver-dns:resolver-dns-classes-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver-dns:resolver_dns_classes_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver_dns:resolver-dns-classes-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver_dns:resolver_dns_classes_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:netty-resolver-dns-classes-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:netty_resolver_dns_classes_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver:resolver-dns-classes-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver:resolver_dns_classes_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:resolver-dns-classes-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:resolver_dns_classes_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:b1dc62eecf8a6672534ff85086bc9d0ea8bb94cfd7e760c53734dad61f36012b"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-console/lib/netty-resolver-dns-classes-macos-4.1.96.Final.jar"
+        },
+        {
+          "name": "syft:metadata:-:artifactID",
+          "value": "netty-resolver-dns-classes-macos"
+        },
+        {
+          "name": "syft:metadata:-:groupID",
+          "value": "io.netty"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-console/lib/netty-resolver-dns-classes-macos-4.1.96.Final.jar"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/io.netty/netty-resolver-dns-native-macos@4.1.96.Final?package-id=529315c2798c073e",
+      "type": "library",
+      "group": "io.netty",
+      "name": "netty-resolver-dns-native-macos",
+      "version": "4.1.96.Final",
+      "licenses": [
+        {
+          "license": {
+            "name": "https://www.apache.org/licenses/LICENSE-2.0"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:netty-resolver-dns-native-macos:netty-resolver-dns-native-macos:4.1.96.Final:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/io.netty/netty-resolver-dns-native-macos@4.1.96.Final",
+      "externalReferences": [
+        {
+          "url": "",
+          "hashes": [
+            {
+              "alg": "SHA-1",
+              "content": "a4538d887fa1b61b50eb411e10465df36ac22998"
+            }
+          ],
+          "type": "build-meta"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-resolver-dns-native-macos:netty_resolver_dns_native_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_resolver_dns_native_macos:netty-resolver-dns-native-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_resolver_dns_native_macos:netty_resolver_dns_native_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-resolver-dns-native-macos:resolver-dns-native-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-resolver-dns-native-macos:resolver_dns_native_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-resolver-dns-native:netty-resolver-dns-native-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-resolver-dns-native:netty_resolver_dns_native_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_resolver_dns_native:netty-resolver-dns-native-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_resolver_dns_native:netty_resolver_dns_native_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_resolver_dns_native_macos:resolver-dns-native-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_resolver_dns_native_macos:resolver_dns_native_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver-dns-native-macos:netty-resolver-dns-native-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver-dns-native-macos:netty_resolver_dns_native_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver_dns_native_macos:netty-resolver-dns-native-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver_dns_native_macos:netty_resolver_dns_native_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-resolver-dns-native:resolver-dns-native-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-resolver-dns-native:resolver_dns_native_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_resolver_dns_native:resolver-dns-native-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_resolver_dns_native:resolver_dns_native_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver-dns-native-macos:resolver-dns-native-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver-dns-native-macos:resolver_dns_native_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver-dns-native:netty-resolver-dns-native-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver-dns-native:netty_resolver_dns_native_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver_dns_native:netty-resolver-dns-native-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver_dns_native:netty_resolver_dns_native_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver_dns_native_macos:resolver-dns-native-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver_dns_native_macos:resolver_dns_native_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-resolver-dns:netty-resolver-dns-native-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-resolver-dns:netty_resolver_dns_native_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_resolver_dns:netty-resolver-dns-native-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_resolver_dns:netty_resolver_dns_native_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-resolver:netty-resolver-dns-native-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-resolver:netty_resolver_dns_native_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_resolver:netty-resolver-dns-native-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_resolver:netty_resolver_dns_native_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:netty-resolver-dns-native-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:netty_resolver_dns_native_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:netty-resolver-dns-native-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:netty_resolver_dns_native_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver-dns-native:resolver-dns-native-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver-dns-native:resolver_dns_native_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver_dns_native:resolver-dns-native-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver_dns_native:resolver_dns_native_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-resolver-dns:resolver-dns-native-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-resolver-dns:resolver_dns_native_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_resolver_dns:resolver-dns-native-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_resolver_dns:resolver_dns_native_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver-dns:netty-resolver-dns-native-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver-dns:netty_resolver_dns_native_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver_dns:netty-resolver-dns-native-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver_dns:netty_resolver_dns_native_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-resolver:resolver-dns-native-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-resolver:resolver_dns_native_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_resolver:resolver-dns-native-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_resolver:resolver_dns_native_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver:netty-resolver-dns-native-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver:netty_resolver_dns_native_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:resolver-dns-native-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:resolver_dns_native_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:resolver-dns-native-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:resolver_dns_native_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver-dns:resolver-dns-native-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver-dns:resolver_dns_native_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver_dns:resolver-dns-native-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver_dns:resolver_dns_native_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:netty-resolver-dns-native-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:netty_resolver_dns_native_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver:resolver-dns-native-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver:resolver_dns_native_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:resolver-dns-native-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:resolver_dns_native_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:b1dc62eecf8a6672534ff85086bc9d0ea8bb94cfd7e760c53734dad61f36012b"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-console/lib/netty-resolver-dns-native-macos-4.1.96.Final-osx-aarch_64.jar"
+        },
+        {
+          "name": "syft:metadata:-:artifactID",
+          "value": "netty-resolver-dns-native-macos"
+        },
+        {
+          "name": "syft:metadata:-:groupID",
+          "value": "io.netty"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-console/lib/netty-resolver-dns-native-macos-4.1.96.Final-osx-aarch_64.jar"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/io.netty/netty-resolver-dns-native-macos@4.1.96.Final?package-id=9a14050a8a54f78a",
+      "type": "library",
+      "group": "io.netty",
+      "name": "netty-resolver-dns-native-macos",
+      "version": "4.1.96.Final",
+      "licenses": [
+        {
+          "license": {
+            "name": "https://www.apache.org/licenses/LICENSE-2.0"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:netty-resolver-dns-native-macos:netty-resolver-dns-native-macos:4.1.96.Final:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/io.netty/netty-resolver-dns-native-macos@4.1.96.Final",
+      "externalReferences": [
+        {
+          "url": "",
+          "hashes": [
+            {
+              "alg": "SHA-1",
+              "content": "a44188cd424c9c920a27d55b7571cd06608d09f8"
+            }
+          ],
+          "type": "build-meta"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-resolver-dns-native-macos:netty_resolver_dns_native_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_resolver_dns_native_macos:netty-resolver-dns-native-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_resolver_dns_native_macos:netty_resolver_dns_native_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-resolver-dns-native-macos:resolver-dns-native-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-resolver-dns-native-macos:resolver_dns_native_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-resolver-dns-native:netty-resolver-dns-native-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-resolver-dns-native:netty_resolver_dns_native_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_resolver_dns_native:netty-resolver-dns-native-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_resolver_dns_native:netty_resolver_dns_native_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_resolver_dns_native_macos:resolver-dns-native-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_resolver_dns_native_macos:resolver_dns_native_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver-dns-native-macos:netty-resolver-dns-native-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver-dns-native-macos:netty_resolver_dns_native_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver_dns_native_macos:netty-resolver-dns-native-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver_dns_native_macos:netty_resolver_dns_native_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-resolver-dns-native:resolver-dns-native-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-resolver-dns-native:resolver_dns_native_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_resolver_dns_native:resolver-dns-native-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_resolver_dns_native:resolver_dns_native_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver-dns-native-macos:resolver-dns-native-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver-dns-native-macos:resolver_dns_native_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver-dns-native:netty-resolver-dns-native-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver-dns-native:netty_resolver_dns_native_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver_dns_native:netty-resolver-dns-native-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver_dns_native:netty_resolver_dns_native_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver_dns_native_macos:resolver-dns-native-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver_dns_native_macos:resolver_dns_native_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-resolver-dns:netty-resolver-dns-native-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-resolver-dns:netty_resolver_dns_native_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_resolver_dns:netty-resolver-dns-native-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_resolver_dns:netty_resolver_dns_native_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-resolver:netty-resolver-dns-native-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-resolver:netty_resolver_dns_native_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_resolver:netty-resolver-dns-native-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_resolver:netty_resolver_dns_native_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:netty-resolver-dns-native-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:netty_resolver_dns_native_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:netty-resolver-dns-native-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:netty_resolver_dns_native_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver-dns-native:resolver-dns-native-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver-dns-native:resolver_dns_native_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver_dns_native:resolver-dns-native-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver_dns_native:resolver_dns_native_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-resolver-dns:resolver-dns-native-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-resolver-dns:resolver_dns_native_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_resolver_dns:resolver-dns-native-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_resolver_dns:resolver_dns_native_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver-dns:netty-resolver-dns-native-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver-dns:netty_resolver_dns_native_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver_dns:netty-resolver-dns-native-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver_dns:netty_resolver_dns_native_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-resolver:resolver-dns-native-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-resolver:resolver_dns_native_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_resolver:resolver-dns-native-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_resolver:resolver_dns_native_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver:netty-resolver-dns-native-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver:netty_resolver_dns_native_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:resolver-dns-native-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:resolver_dns_native_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:resolver-dns-native-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:resolver_dns_native_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver-dns:resolver-dns-native-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver-dns:resolver_dns_native_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver_dns:resolver-dns-native-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver_dns:resolver_dns_native_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:netty-resolver-dns-native-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:netty_resolver_dns_native_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver:resolver-dns-native-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver:resolver_dns_native_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:resolver-dns-native-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:resolver_dns_native_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:b1dc62eecf8a6672534ff85086bc9d0ea8bb94cfd7e760c53734dad61f36012b"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-console/lib/netty-resolver-dns-native-macos-4.1.96.Final-osx-x86_64.jar"
+        },
+        {
+          "name": "syft:metadata:-:artifactID",
+          "value": "netty-resolver-dns-native-macos"
+        },
+        {
+          "name": "syft:metadata:-:groupID",
+          "value": "io.netty"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-console/lib/netty-resolver-dns-native-macos-4.1.96.Final-osx-x86_64.jar"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/io.netty/netty-transport@4.1.96.Final?package-id=d02c1bebe565a02a",
+      "type": "library",
+      "group": "io.netty",
+      "name": "netty-transport",
+      "version": "4.1.96.Final",
+      "licenses": [
+        {
+          "license": {
+            "name": "https://www.apache.org/licenses/LICENSE-2.0"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:netty-transport:netty-transport:4.1.96.Final:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/io.netty/netty-transport@4.1.96.Final",
+      "externalReferences": [
+        {
+          "url": "",
+          "hashes": [
+            {
+              "alg": "SHA-1",
+              "content": "dbd15ca244be28e1a98ed29b9d755edbfa737e02"
+            }
+          ],
+          "type": "build-meta"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport:netty_transport:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport:netty-transport:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport:netty_transport:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:netty-transport:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:netty_transport:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:netty-transport:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:netty_transport:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport:transport:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport:transport:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport:netty-transport:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport:netty_transport:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:transport:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:transport:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:netty-transport:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:netty_transport:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport:transport:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:transport:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:b1dc62eecf8a6672534ff85086bc9d0ea8bb94cfd7e760c53734dad61f36012b"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-console/lib/netty-transport-4.1.96.Final.jar"
+        },
+        {
+          "name": "syft:metadata:-:artifactID",
+          "value": "netty-transport"
+        },
+        {
+          "name": "syft:metadata:-:groupID",
+          "value": "io.netty"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-console/lib/netty-transport-4.1.96.Final.jar"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/io.netty/netty-transport-classes-epoll@4.1.96.Final?package-id=cf62a9d6bde78409",
+      "type": "library",
+      "group": "io.netty",
+      "name": "netty-transport-classes-epoll",
+      "version": "4.1.96.Final",
+      "licenses": [
+        {
+          "license": {
+            "name": "https://www.apache.org/licenses/LICENSE-2.0"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:netty-transport-classes-epoll:netty-transport-classes-epoll:4.1.96.Final:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/io.netty/netty-transport-classes-epoll@4.1.96.Final",
+      "externalReferences": [
+        {
+          "url": "",
+          "hashes": [
+            {
+              "alg": "SHA-1",
+              "content": "b0369501645f6e71f89ff7f77b5c5f52510a2e31"
+            }
+          ],
+          "type": "build-meta"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport-classes-epoll:netty_transport_classes_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport_classes_epoll:netty-transport-classes-epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport_classes_epoll:netty_transport_classes_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport-classes-epoll:transport-classes-epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport-classes-epoll:transport_classes_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport-classes:netty-transport-classes-epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport-classes:netty_transport_classes_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport_classes:netty-transport-classes-epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport_classes:netty_transport_classes_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport_classes_epoll:transport-classes-epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport_classes_epoll:transport_classes_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport-classes-epoll:netty-transport-classes-epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport-classes-epoll:netty_transport_classes_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport_classes_epoll:netty-transport-classes-epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport_classes_epoll:netty_transport_classes_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport-classes:transport-classes-epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport-classes:transport_classes_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport_classes:transport-classes-epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport_classes:transport_classes_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport-classes-epoll:transport-classes-epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport-classes-epoll:transport_classes_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport-classes:netty-transport-classes-epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport-classes:netty_transport_classes_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport_classes:netty-transport-classes-epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport_classes:netty_transport_classes_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport_classes_epoll:transport-classes-epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport_classes_epoll:transport_classes_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport:netty-transport-classes-epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport:netty_transport_classes_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport:netty-transport-classes-epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport:netty_transport_classes_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:netty-transport-classes-epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:netty_transport_classes_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:netty-transport-classes-epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:netty_transport_classes_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport-classes:transport-classes-epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport-classes:transport_classes_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport_classes:transport-classes-epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport_classes:transport_classes_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport:transport-classes-epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport:transport_classes_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport:transport-classes-epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport:transport_classes_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport:netty-transport-classes-epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport:netty_transport_classes_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:transport-classes-epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:transport_classes_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:transport-classes-epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:transport_classes_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:netty-transport-classes-epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:netty_transport_classes_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport:transport-classes-epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport:transport_classes_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:transport-classes-epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:transport_classes_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:b1dc62eecf8a6672534ff85086bc9d0ea8bb94cfd7e760c53734dad61f36012b"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-console/lib/netty-transport-classes-epoll-4.1.96.Final.jar"
+        },
+        {
+          "name": "syft:metadata:-:artifactID",
+          "value": "netty-transport-classes-epoll"
+        },
+        {
+          "name": "syft:metadata:-:groupID",
+          "value": "io.netty"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-console/lib/netty-transport-classes-epoll-4.1.96.Final.jar"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/io.netty/netty-transport-classes-kqueue@4.1.96.Final?package-id=f3e67ebdbf93889f",
+      "type": "library",
+      "group": "io.netty",
+      "name": "netty-transport-classes-kqueue",
+      "version": "4.1.96.Final",
+      "licenses": [
+        {
+          "license": {
+            "name": "https://www.apache.org/licenses/LICENSE-2.0"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:netty-transport-classes-kqueue:netty-transport-classes-kqueue:4.1.96.Final:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/io.netty/netty-transport-classes-kqueue@4.1.96.Final",
+      "externalReferences": [
+        {
+          "url": "",
+          "hashes": [
+            {
+              "alg": "SHA-1",
+              "content": "782f6bbb8dd5401599d272ea0fb81d1356bdffb2"
+            }
+          ],
+          "type": "build-meta"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport-classes-kqueue:netty_transport_classes_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport_classes_kqueue:netty-transport-classes-kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport_classes_kqueue:netty_transport_classes_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport-classes-kqueue:transport-classes-kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport-classes-kqueue:transport_classes_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport_classes_kqueue:transport-classes-kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport_classes_kqueue:transport_classes_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport-classes-kqueue:netty-transport-classes-kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport-classes-kqueue:netty_transport_classes_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport_classes_kqueue:netty-transport-classes-kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport_classes_kqueue:netty_transport_classes_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport-classes:netty-transport-classes-kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport-classes:netty_transport_classes_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport_classes:netty-transport-classes-kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport_classes:netty_transport_classes_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport-classes-kqueue:transport-classes-kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport-classes-kqueue:transport_classes_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport_classes_kqueue:transport-classes-kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport_classes_kqueue:transport_classes_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport-classes:transport-classes-kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport-classes:transport_classes_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport_classes:transport-classes-kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport_classes:transport_classes_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport-classes:netty-transport-classes-kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport-classes:netty_transport_classes_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport_classes:netty-transport-classes-kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport_classes:netty_transport_classes_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport:netty-transport-classes-kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport:netty_transport_classes_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport:netty-transport-classes-kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport:netty_transport_classes_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:netty-transport-classes-kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:netty_transport_classes_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:netty-transport-classes-kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:netty_transport_classes_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport-classes:transport-classes-kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport-classes:transport_classes_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport_classes:transport-classes-kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport_classes:transport_classes_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport:transport-classes-kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport:transport_classes_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport:transport-classes-kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport:transport_classes_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport:netty-transport-classes-kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport:netty_transport_classes_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:transport-classes-kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:transport_classes_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:transport-classes-kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:transport_classes_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:netty-transport-classes-kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:netty_transport_classes_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport:transport-classes-kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport:transport_classes_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:transport-classes-kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:transport_classes_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:b1dc62eecf8a6672534ff85086bc9d0ea8bb94cfd7e760c53734dad61f36012b"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-console/lib/netty-transport-classes-kqueue-4.1.96.Final.jar"
+        },
+        {
+          "name": "syft:metadata:-:artifactID",
+          "value": "netty-transport-classes-kqueue"
+        },
+        {
+          "name": "syft:metadata:-:groupID",
+          "value": "io.netty"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-console/lib/netty-transport-classes-kqueue-4.1.96.Final.jar"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/io.netty/netty-transport-native-epoll@4.1.96.Final?package-id=136fde8cd44d1ebe",
+      "type": "library",
+      "group": "io.netty",
+      "name": "netty-transport-native-epoll",
+      "version": "4.1.96.Final",
+      "licenses": [
+        {
+          "license": {
+            "name": "https://www.apache.org/licenses/LICENSE-2.0"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:netty-transport-native-epoll:netty-transport-native-epoll:4.1.96.Final:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/io.netty/netty-transport-native-epoll@4.1.96.Final",
+      "externalReferences": [
+        {
+          "url": "",
+          "hashes": [
+            {
+              "alg": "SHA-1",
+              "content": "cae778ab150745432a90d4f26f6174fe564f56fc"
+            }
+          ],
+          "type": "build-meta"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport-native-epoll:netty_transport_native_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport_native_epoll:netty-transport-native-epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport_native_epoll:netty_transport_native_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport-native-epoll:transport-native-epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport-native-epoll:transport_native_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport-native:netty-transport-native-epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport-native:netty_transport_native_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport_native:netty-transport-native-epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport_native:netty_transport_native_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport_native_epoll:transport-native-epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport_native_epoll:transport_native_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport-native-epoll:netty-transport-native-epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport-native-epoll:netty_transport_native_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport_native_epoll:netty-transport-native-epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport_native_epoll:netty_transport_native_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport-native:transport-native-epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport-native:transport_native_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport_native:transport-native-epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport_native:transport_native_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport-native-epoll:transport-native-epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport-native-epoll:transport_native_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport-native:netty-transport-native-epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport-native:netty_transport_native_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport_native:netty-transport-native-epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport_native:netty_transport_native_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport_native_epoll:transport-native-epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport_native_epoll:transport_native_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport:netty-transport-native-epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport:netty_transport_native_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport:netty-transport-native-epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport:netty_transport_native_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:netty-transport-native-epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:netty_transport_native_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:netty-transport-native-epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:netty_transport_native_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport-native:transport-native-epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport-native:transport_native_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport_native:transport-native-epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport_native:transport_native_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport:transport-native-epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport:transport_native_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport:transport-native-epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport:transport_native_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport:netty-transport-native-epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport:netty_transport_native_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:transport-native-epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:transport_native_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:transport-native-epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:transport_native_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:netty-transport-native-epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:netty_transport_native_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport:transport-native-epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport:transport_native_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:transport-native-epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:transport_native_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:b1dc62eecf8a6672534ff85086bc9d0ea8bb94cfd7e760c53734dad61f36012b"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-console/lib/netty-transport-native-epoll-4.1.96.Final-linux-aarch_64.jar"
+        },
+        {
+          "name": "syft:metadata:-:artifactID",
+          "value": "netty-transport-native-epoll"
+        },
+        {
+          "name": "syft:metadata:-:groupID",
+          "value": "io.netty"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-console/lib/netty-transport-native-epoll-4.1.96.Final-linux-aarch_64.jar"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/io.netty/netty-transport-native-epoll@4.1.96.Final?package-id=c42843c09dc23197",
+      "type": "library",
+      "group": "io.netty",
+      "name": "netty-transport-native-epoll",
+      "version": "4.1.96.Final",
+      "licenses": [
+        {
+          "license": {
+            "name": "https://www.apache.org/licenses/LICENSE-2.0"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:netty-transport-native-epoll:netty-transport-native-epoll:4.1.96.Final:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/io.netty/netty-transport-native-epoll@4.1.96.Final",
+      "externalReferences": [
+        {
+          "url": "",
+          "hashes": [
+            {
+              "alg": "SHA-1",
+              "content": "3f8904e072cfc9a8d67c6fe567c39bcbce5c9c55"
+            }
+          ],
+          "type": "build-meta"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport-native-epoll:netty_transport_native_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport_native_epoll:netty-transport-native-epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport_native_epoll:netty_transport_native_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport-native-epoll:transport-native-epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport-native-epoll:transport_native_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport-native:netty-transport-native-epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport-native:netty_transport_native_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport_native:netty-transport-native-epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport_native:netty_transport_native_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport_native_epoll:transport-native-epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport_native_epoll:transport_native_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport-native-epoll:netty-transport-native-epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport-native-epoll:netty_transport_native_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport_native_epoll:netty-transport-native-epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport_native_epoll:netty_transport_native_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport-native:transport-native-epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport-native:transport_native_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport_native:transport-native-epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport_native:transport_native_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport-native-epoll:transport-native-epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport-native-epoll:transport_native_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport-native:netty-transport-native-epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport-native:netty_transport_native_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport_native:netty-transport-native-epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport_native:netty_transport_native_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport_native_epoll:transport-native-epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport_native_epoll:transport_native_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport:netty-transport-native-epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport:netty_transport_native_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport:netty-transport-native-epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport:netty_transport_native_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:netty-transport-native-epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:netty_transport_native_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:netty-transport-native-epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:netty_transport_native_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport-native:transport-native-epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport-native:transport_native_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport_native:transport-native-epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport_native:transport_native_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport:transport-native-epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport:transport_native_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport:transport-native-epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport:transport_native_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport:netty-transport-native-epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport:netty_transport_native_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:transport-native-epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:transport_native_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:transport-native-epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:transport_native_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:netty-transport-native-epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:netty_transport_native_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport:transport-native-epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport:transport_native_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:transport-native-epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:transport_native_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:b1dc62eecf8a6672534ff85086bc9d0ea8bb94cfd7e760c53734dad61f36012b"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-console/lib/netty-transport-native-epoll-4.1.96.Final-linux-x86_64.jar"
+        },
+        {
+          "name": "syft:metadata:-:artifactID",
+          "value": "netty-transport-native-epoll"
+        },
+        {
+          "name": "syft:metadata:-:groupID",
+          "value": "io.netty"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-console/lib/netty-transport-native-epoll-4.1.96.Final-linux-x86_64.jar"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/io.netty/netty-transport-native-kqueue@4.1.96.Final?package-id=5b3ca3bcf0d93dcc",
+      "type": "library",
+      "group": "io.netty",
+      "name": "netty-transport-native-kqueue",
+      "version": "4.1.96.Final",
+      "licenses": [
+        {
+          "license": {
+            "name": "https://www.apache.org/licenses/LICENSE-2.0"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:netty-transport-native-kqueue:netty-transport-native-kqueue:4.1.96.Final:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/io.netty/netty-transport-native-kqueue@4.1.96.Final",
+      "externalReferences": [
+        {
+          "url": "",
+          "hashes": [
+            {
+              "alg": "SHA-1",
+              "content": "070b3e957eec0cd78637c3bd15a8a4b24e653f87"
+            }
+          ],
+          "type": "build-meta"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport-native-kqueue:netty_transport_native_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport_native_kqueue:netty-transport-native-kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport_native_kqueue:netty_transport_native_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport-native-kqueue:transport-native-kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport-native-kqueue:transport_native_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport_native_kqueue:transport-native-kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport_native_kqueue:transport_native_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport-native-kqueue:netty-transport-native-kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport-native-kqueue:netty_transport_native_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport_native_kqueue:netty-transport-native-kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport_native_kqueue:netty_transport_native_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport-native:netty-transport-native-kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport-native:netty_transport_native_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport_native:netty-transport-native-kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport_native:netty_transport_native_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport-native-kqueue:transport-native-kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport-native-kqueue:transport_native_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport_native_kqueue:transport-native-kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport_native_kqueue:transport_native_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport-native:transport-native-kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport-native:transport_native_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport_native:transport-native-kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport_native:transport_native_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport-native:netty-transport-native-kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport-native:netty_transport_native_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport_native:netty-transport-native-kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport_native:netty_transport_native_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport:netty-transport-native-kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport:netty_transport_native_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport:netty-transport-native-kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport:netty_transport_native_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:netty-transport-native-kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:netty_transport_native_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:netty-transport-native-kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:netty_transport_native_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport-native:transport-native-kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport-native:transport_native_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport_native:transport-native-kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport_native:transport_native_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport:transport-native-kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport:transport_native_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport:transport-native-kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport:transport_native_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport:netty-transport-native-kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport:netty_transport_native_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:transport-native-kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:transport_native_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:transport-native-kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:transport_native_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:netty-transport-native-kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:netty_transport_native_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport:transport-native-kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport:transport_native_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:transport-native-kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:transport_native_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:b1dc62eecf8a6672534ff85086bc9d0ea8bb94cfd7e760c53734dad61f36012b"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-console/lib/netty-transport-native-kqueue-4.1.96.Final-osx-aarch_64.jar"
+        },
+        {
+          "name": "syft:metadata:-:artifactID",
+          "value": "netty-transport-native-kqueue"
+        },
+        {
+          "name": "syft:metadata:-:groupID",
+          "value": "io.netty"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-console/lib/netty-transport-native-kqueue-4.1.96.Final-osx-aarch_64.jar"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/io.netty/netty-transport-native-kqueue@4.1.96.Final?package-id=583b7e8641fb5b0b",
+      "type": "library",
+      "group": "io.netty",
+      "name": "netty-transport-native-kqueue",
+      "version": "4.1.96.Final",
+      "licenses": [
+        {
+          "license": {
+            "name": "https://www.apache.org/licenses/LICENSE-2.0"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:netty-transport-native-kqueue:netty-transport-native-kqueue:4.1.96.Final:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/io.netty/netty-transport-native-kqueue@4.1.96.Final",
+      "externalReferences": [
+        {
+          "url": "",
+          "hashes": [
+            {
+              "alg": "SHA-1",
+              "content": "c127ed313fc80cf2cb366dccfded1daddc89a8ef"
+            }
+          ],
+          "type": "build-meta"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport-native-kqueue:netty_transport_native_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport_native_kqueue:netty-transport-native-kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport_native_kqueue:netty_transport_native_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport-native-kqueue:transport-native-kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport-native-kqueue:transport_native_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport_native_kqueue:transport-native-kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport_native_kqueue:transport_native_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport-native-kqueue:netty-transport-native-kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport-native-kqueue:netty_transport_native_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport_native_kqueue:netty-transport-native-kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport_native_kqueue:netty_transport_native_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport-native:netty-transport-native-kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport-native:netty_transport_native_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport_native:netty-transport-native-kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport_native:netty_transport_native_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport-native-kqueue:transport-native-kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport-native-kqueue:transport_native_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport_native_kqueue:transport-native-kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport_native_kqueue:transport_native_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport-native:transport-native-kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport-native:transport_native_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport_native:transport-native-kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport_native:transport_native_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport-native:netty-transport-native-kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport-native:netty_transport_native_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport_native:netty-transport-native-kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport_native:netty_transport_native_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport:netty-transport-native-kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport:netty_transport_native_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport:netty-transport-native-kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport:netty_transport_native_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:netty-transport-native-kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:netty_transport_native_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:netty-transport-native-kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:netty_transport_native_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport-native:transport-native-kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport-native:transport_native_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport_native:transport-native-kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport_native:transport_native_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport:transport-native-kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport:transport_native_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport:transport-native-kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport:transport_native_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport:netty-transport-native-kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport:netty_transport_native_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:transport-native-kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:transport_native_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:transport-native-kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:transport_native_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:netty-transport-native-kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:netty_transport_native_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport:transport-native-kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport:transport_native_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:transport-native-kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:transport_native_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:b1dc62eecf8a6672534ff85086bc9d0ea8bb94cfd7e760c53734dad61f36012b"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-console/lib/netty-transport-native-kqueue-4.1.96.Final-osx-x86_64.jar"
+        },
+        {
+          "name": "syft:metadata:-:artifactID",
+          "value": "netty-transport-native-kqueue"
+        },
+        {
+          "name": "syft:metadata:-:groupID",
+          "value": "io.netty"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-console/lib/netty-transport-native-kqueue-4.1.96.Final-osx-x86_64.jar"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/io.netty/netty-transport-native-unix-common@4.1.96.Final?package-id=a0410a4bf1f3477a",
+      "type": "library",
+      "group": "io.netty",
+      "name": "netty-transport-native-unix-common",
+      "version": "4.1.96.Final",
+      "licenses": [
+        {
+          "license": {
+            "name": "https://www.apache.org/licenses/LICENSE-2.0"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:netty-transport-native-unix-common:netty-transport-native-unix-common:4.1.96.Final:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/io.netty/netty-transport-native-unix-common@4.1.96.Final",
+      "externalReferences": [
+        {
+          "url": "",
+          "hashes": [
+            {
+              "alg": "SHA-1",
+              "content": "daf8578cade63a01525ee9d70371fa78e6e91094"
+            }
+          ],
+          "type": "build-meta"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport-native-unix-common:netty_transport_native_unix_common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport_native_unix_common:netty-transport-native-unix-common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport_native_unix_common:netty_transport_native_unix_common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport-native-unix-common:transport-native-unix-common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport-native-unix-common:transport_native_unix_common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport_native_unix_common:transport-native-unix-common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport_native_unix_common:transport_native_unix_common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport-native-unix-common:netty-transport-native-unix-common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport-native-unix-common:netty_transport_native_unix_common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport_native_unix_common:netty-transport-native-unix-common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport_native_unix_common:netty_transport_native_unix_common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport-native-unix:netty-transport-native-unix-common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport-native-unix:netty_transport_native_unix_common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport_native_unix:netty-transport-native-unix-common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport_native_unix:netty_transport_native_unix_common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport-native:netty-transport-native-unix-common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport-native:netty_transport_native_unix_common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport_native:netty-transport-native-unix-common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport_native:netty_transport_native_unix_common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport-native-unix-common:transport-native-unix-common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport-native-unix-common:transport_native_unix_common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport_native_unix_common:transport-native-unix-common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport_native_unix_common:transport_native_unix_common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport-native-unix:transport-native-unix-common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport-native-unix:transport_native_unix_common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport_native_unix:transport-native-unix-common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport_native_unix:transport_native_unix_common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport-native-unix:netty-transport-native-unix-common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport-native-unix:netty_transport_native_unix_common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport_native_unix:netty-transport-native-unix-common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport_native_unix:netty_transport_native_unix_common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport-native:transport-native-unix-common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport-native:transport_native_unix_common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport_native:transport-native-unix-common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport_native:transport_native_unix_common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport-native:netty-transport-native-unix-common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport-native:netty_transport_native_unix_common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport_native:netty-transport-native-unix-common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport_native:netty_transport_native_unix_common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport:netty-transport-native-unix-common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport:netty_transport_native_unix_common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport:netty-transport-native-unix-common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport:netty_transport_native_unix_common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport-native-unix:transport-native-unix-common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport-native-unix:transport_native_unix_common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport_native_unix:transport-native-unix-common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport_native_unix:transport_native_unix_common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:netty-transport-native-unix-common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:netty_transport_native_unix_common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:netty-transport-native-unix-common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:netty_transport_native_unix_common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport-native:transport-native-unix-common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport-native:transport_native_unix_common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport_native:transport-native-unix-common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport_native:transport_native_unix_common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport:transport-native-unix-common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport:transport_native_unix_common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport:transport-native-unix-common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport:transport_native_unix_common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport:netty-transport-native-unix-common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport:netty_transport_native_unix_common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:transport-native-unix-common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:transport_native_unix_common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:transport-native-unix-common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:transport_native_unix_common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:netty-transport-native-unix-common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:netty_transport_native_unix_common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport:transport-native-unix-common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport:transport_native_unix_common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:transport-native-unix-common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:transport_native_unix_common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:b1dc62eecf8a6672534ff85086bc9d0ea8bb94cfd7e760c53734dad61f36012b"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-console/lib/netty-transport-native-unix-common-4.1.96.Final.jar"
+        },
+        {
+          "name": "syft:metadata:-:artifactID",
+          "value": "netty-transport-native-unix-common"
+        },
+        {
+          "name": "syft:metadata:-:groupID",
+          "value": "io.netty"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-console/lib/netty-transport-native-unix-common-4.1.96.Final.jar"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/io.netty/netty-transport-rxtx@4.1.96.Final?package-id=1c304fec0533a92e",
+      "type": "library",
+      "group": "io.netty",
+      "name": "netty-transport-rxtx",
+      "version": "4.1.96.Final",
+      "licenses": [
+        {
+          "license": {
+            "name": "https://www.apache.org/licenses/LICENSE-2.0"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:netty-transport-rxtx:netty-transport-rxtx:4.1.96.Final:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/io.netty/netty-transport-rxtx@4.1.96.Final",
+      "externalReferences": [
+        {
+          "url": "",
+          "hashes": [
+            {
+              "alg": "SHA-1",
+              "content": "eafb5b0a5a42cd60a8434d063c0ce7930decc70b"
+            }
+          ],
+          "type": "build-meta"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport-rxtx:netty_transport_rxtx:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport_rxtx:netty-transport-rxtx:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport_rxtx:netty_transport_rxtx:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport:netty-transport-rxtx:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport:netty_transport_rxtx:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport:netty-transport-rxtx:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport:netty_transport_rxtx:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport-rxtx:transport-rxtx:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport-rxtx:transport_rxtx:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport_rxtx:transport-rxtx:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport_rxtx:transport_rxtx:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport-rxtx:netty-transport-rxtx:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport-rxtx:netty_transport_rxtx:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport_rxtx:netty-transport-rxtx:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport_rxtx:netty_transport_rxtx:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:netty-transport-rxtx:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:netty_transport_rxtx:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:netty-transport-rxtx:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:netty_transport_rxtx:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport:transport-rxtx:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport:transport_rxtx:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport:transport-rxtx:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport:transport_rxtx:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport:netty-transport-rxtx:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport:netty_transport_rxtx:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport-rxtx:transport-rxtx:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport-rxtx:transport_rxtx:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport_rxtx:transport-rxtx:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport_rxtx:transport_rxtx:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:transport-rxtx:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:transport_rxtx:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:transport-rxtx:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:transport_rxtx:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:netty-transport-rxtx:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:netty_transport_rxtx:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport:transport-rxtx:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport:transport_rxtx:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:transport-rxtx:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:transport_rxtx:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:b1dc62eecf8a6672534ff85086bc9d0ea8bb94cfd7e760c53734dad61f36012b"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-console/lib/netty-transport-rxtx-4.1.96.Final.jar"
+        },
+        {
+          "name": "syft:metadata:-:artifactID",
+          "value": "netty-transport-rxtx"
+        },
+        {
+          "name": "syft:metadata:-:groupID",
+          "value": "io.netty"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-console/lib/netty-transport-rxtx-4.1.96.Final.jar"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/io.netty/netty-transport-sctp@4.1.96.Final?package-id=60b0ac6d80cce30b",
+      "type": "library",
+      "group": "io.netty",
+      "name": "netty-transport-sctp",
+      "version": "4.1.96.Final",
+      "licenses": [
+        {
+          "license": {
+            "name": "https://www.apache.org/licenses/LICENSE-2.0"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:netty-transport-sctp:netty-transport-sctp:4.1.96.Final:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/io.netty/netty-transport-sctp@4.1.96.Final",
+      "externalReferences": [
+        {
+          "url": "",
+          "hashes": [
+            {
+              "alg": "SHA-1",
+              "content": "4e6c8455a9b2163d059dbdd903d66cae25212ec0"
+            }
+          ],
+          "type": "build-meta"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport-sctp:netty_transport_sctp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport_sctp:netty-transport-sctp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport_sctp:netty_transport_sctp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport:netty-transport-sctp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport:netty_transport_sctp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport:netty-transport-sctp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport:netty_transport_sctp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport-sctp:transport-sctp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport-sctp:transport_sctp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport_sctp:transport-sctp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport_sctp:transport_sctp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport-sctp:netty-transport-sctp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport-sctp:netty_transport_sctp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport_sctp:netty-transport-sctp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport_sctp:netty_transport_sctp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:netty-transport-sctp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:netty_transport_sctp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:netty-transport-sctp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:netty_transport_sctp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport:transport-sctp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport:transport_sctp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport:transport-sctp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport:transport_sctp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport:netty-transport-sctp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport:netty_transport_sctp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport-sctp:transport-sctp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport-sctp:transport_sctp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport_sctp:transport-sctp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport_sctp:transport_sctp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:transport-sctp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:transport_sctp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:transport-sctp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:transport_sctp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:netty-transport-sctp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:netty_transport_sctp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport:transport-sctp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport:transport_sctp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:transport-sctp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:transport_sctp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:b1dc62eecf8a6672534ff85086bc9d0ea8bb94cfd7e760c53734dad61f36012b"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-console/lib/netty-transport-sctp-4.1.96.Final.jar"
+        },
+        {
+          "name": "syft:metadata:-:artifactID",
+          "value": "netty-transport-sctp"
+        },
+        {
+          "name": "syft:metadata:-:groupID",
+          "value": "io.netty"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-console/lib/netty-transport-sctp-4.1.96.Final.jar"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/io.netty/netty-transport-udt@4.1.96.Final?package-id=0ce19cc2ebe32db4",
+      "type": "library",
+      "group": "io.netty",
+      "name": "netty-transport-udt",
+      "version": "4.1.96.Final",
+      "licenses": [
+        {
+          "license": {
+            "name": "https://www.apache.org/licenses/LICENSE-2.0"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:netty-transport-udt:netty-transport-udt:4.1.96.Final:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/io.netty/netty-transport-udt@4.1.96.Final",
+      "externalReferences": [
+        {
+          "url": "",
+          "hashes": [
+            {
+              "alg": "SHA-1",
+              "content": "d0077b6b5080db347f6ff1785d8f2ea69c708001"
+            }
+          ],
+          "type": "build-meta"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport-udt:netty_transport_udt:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport_udt:netty-transport-udt:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport_udt:netty_transport_udt:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport:netty-transport-udt:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport:netty_transport_udt:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport:netty-transport-udt:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport:netty_transport_udt:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:netty-transport-udt:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:netty_transport_udt:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport-udt:transport-udt:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport-udt:transport_udt:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:netty-transport-udt:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:netty_transport_udt:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport_udt:transport-udt:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport_udt:transport_udt:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport-udt:netty-transport-udt:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport-udt:netty_transport_udt:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport_udt:netty-transport-udt:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport_udt:netty_transport_udt:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport:transport-udt:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport:transport_udt:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport:transport-udt:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport:transport_udt:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport:netty-transport-udt:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport:netty_transport_udt:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:transport-udt:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:transport_udt:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:transport-udt:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:transport_udt:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport-udt:transport-udt:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport-udt:transport_udt:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport_udt:transport-udt:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport_udt:transport_udt:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:netty-transport-udt:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:netty_transport_udt:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport:transport-udt:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport:transport_udt:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:transport-udt:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:transport_udt:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:b1dc62eecf8a6672534ff85086bc9d0ea8bb94cfd7e760c53734dad61f36012b"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-console/lib/netty-transport-udt-4.1.96.Final.jar"
+        },
+        {
+          "name": "syft:metadata:-:artifactID",
+          "value": "netty-transport-udt"
+        },
+        {
+          "name": "syft:metadata:-:groupID",
+          "value": "io.netty"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-console/lib/netty-transport-udt-4.1.96.Final.jar"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:apk/alpine/openjdk11-jdk@11.0.21_p9-r0?arch=x86_64&upstream=openjdk11&distro=alpine-3.18.5&package-id=f4c8aaccc90d995e",
+      "type": "library",
+      "publisher": "Simon Frankenberger <simon-alpine@fraho.eu>",
+      "name": "openjdk11-jdk",
+      "version": "11.0.21_p9-r0",
+      "description": "Oracle OpenJDK 11 (JDK)",
+      "licenses": [
+        {
+          "license": {
+            "id": "GPL-2.0-with-classpath-exception"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:openjdk11-jdk:openjdk11-jdk:11.0.21_p9-r0:*:*:*:*:*:*:*",
+      "purl": "pkg:apk/alpine/openjdk11-jdk@11.0.21_p9-r0?arch=x86_64&upstream=openjdk11&distro=alpine-3.18.5",
+      "externalReferences": [
+        {
+          "url": "https://github.com/openjdk/jdk11u",
+          "type": "distribution"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "apk-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "apk"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "apk-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk11-jdk:openjdk11_jdk:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk11_jdk:openjdk11-jdk:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk11_jdk:openjdk11_jdk:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk-jdk:openjdk11-jdk:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk-jdk:openjdk11_jdk:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk11-jdk:openjdk-jdk:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk11-jdk:openjdk_jdk:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk11_jdk:openjdk-jdk:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk11_jdk:openjdk_jdk:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk_jdk:openjdk11-jdk:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk_jdk:openjdk11_jdk:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk-jdk:openjdk-jdk:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk-jdk:openjdk_jdk:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk11:openjdk11-jdk:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk11:openjdk11_jdk:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk_jdk:openjdk-jdk:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk_jdk:openjdk_jdk:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk11:openjdk-jdk:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk11:openjdk_jdk:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk:openjdk11-jdk:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk:openjdk11_jdk:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk:openjdk-jdk:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk:openjdk_jdk:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:17b0acbb0089734604f8e7c44f1bc811a80410e28e4c08d88f3ca17246cbee8f"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/lib/apk/db/installed"
+        },
+        {
+          "name": "syft:metadata:gitCommitOfApkPort",
+          "value": "d2e17ed0f58fe8bef042fa7ce03da72e6f934c41"
+        },
+        {
+          "name": "syft:metadata:installedSize",
+          "value": "5120000"
+        },
+        {
+          "name": "syft:metadata:originPackage",
+          "value": "openjdk11"
+        },
+        {
+          "name": "syft:metadata:provides:0",
+          "value": "java-jdk"
+        },
+        {
+          "name": "syft:metadata:pullChecksum",
+          "value": "Q1r0I9R2XVQ/AYwlGik/qqxxo/6uk="
+        },
+        {
+          "name": "syft:metadata:pullDependencies:0",
+          "value": "openjdk11-jre"
+        },
+        {
+          "name": "syft:metadata:pullDependencies:1",
+          "value": "openjdk11-jmods"
+        },
+        {
+          "name": "syft:metadata:pullDependencies:2",
+          "value": "so:libc.musl-x86_64.so.1"
+        },
+        {
+          "name": "syft:metadata:pullDependencies:3",
+          "value": "so:openjdk11:libjli.so"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "3476665"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:apk/alpine/openjdk11-jmods@11.0.21_p9-r0?arch=x86_64&upstream=openjdk11&distro=alpine-3.18.5&package-id=ca527a5de9a8839a",
+      "type": "library",
+      "publisher": "Simon Frankenberger <simon-alpine@fraho.eu>",
+      "name": "openjdk11-jmods",
+      "version": "11.0.21_p9-r0",
+      "description": "Oracle OpenJDK 11 (jmods)",
+      "licenses": [
+        {
+          "license": {
+            "id": "GPL-2.0-with-classpath-exception"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:openjdk11-jmods:openjdk11-jmods:11.0.21_p9-r0:*:*:*:*:*:*:*",
+      "purl": "pkg:apk/alpine/openjdk11-jmods@11.0.21_p9-r0?arch=x86_64&upstream=openjdk11&distro=alpine-3.18.5",
+      "externalReferences": [
+        {
+          "url": "https://github.com/openjdk/jdk11u",
+          "type": "distribution"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "apk-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "apk"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "apk-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk11-jmods:openjdk11_jmods:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk11_jmods:openjdk11-jmods:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk11_jmods:openjdk11_jmods:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk-jmods:openjdk11-jmods:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk-jmods:openjdk11_jmods:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk11-jmods:openjdk-jmods:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk11-jmods:openjdk_jmods:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk11_jmods:openjdk-jmods:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk11_jmods:openjdk_jmods:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk_jmods:openjdk11-jmods:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk_jmods:openjdk11_jmods:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk-jmods:openjdk-jmods:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk-jmods:openjdk_jmods:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk_jmods:openjdk-jmods:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk_jmods:openjdk_jmods:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk11:openjdk11-jmods:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk11:openjdk11_jmods:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk11:openjdk-jmods:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk11:openjdk_jmods:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk:openjdk11-jmods:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk:openjdk11_jmods:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk:openjdk-jmods:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk:openjdk_jmods:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:17b0acbb0089734604f8e7c44f1bc811a80410e28e4c08d88f3ca17246cbee8f"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/lib/apk/db/installed"
+        },
+        {
+          "name": "syft:metadata:gitCommitOfApkPort",
+          "value": "d2e17ed0f58fe8bef042fa7ce03da72e6f934c41"
+        },
+        {
+          "name": "syft:metadata:installedSize",
+          "value": "80351232"
+        },
+        {
+          "name": "syft:metadata:originPackage",
+          "value": "openjdk11"
+        },
+        {
+          "name": "syft:metadata:pullChecksum",
+          "value": "Q1VndgfY+TnMqOrvshdlnKjJOzQTg="
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "74982249"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:apk/alpine/openjdk11-jre@11.0.21_p9-r0?arch=x86_64&upstream=openjdk11&distro=alpine-3.18.5&package-id=d34cbfbd5f8e3526",
+      "type": "library",
+      "publisher": "Simon Frankenberger <simon-alpine@fraho.eu>",
+      "name": "openjdk11-jre",
+      "version": "11.0.21_p9-r0",
+      "description": "Oracle OpenJDK 11 (JRE)",
+      "licenses": [
+        {
+          "license": {
+            "id": "GPL-2.0-with-classpath-exception"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:openjdk11-jre:openjdk11-jre:11.0.21_p9-r0:*:*:*:*:*:*:*",
+      "purl": "pkg:apk/alpine/openjdk11-jre@11.0.21_p9-r0?arch=x86_64&upstream=openjdk11&distro=alpine-3.18.5",
+      "externalReferences": [
+        {
+          "url": "https://github.com/openjdk/jdk11u",
+          "type": "distribution"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "apk-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "apk"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "apk-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk11-jre:openjdk11_jre:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk11_jre:openjdk11-jre:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk11_jre:openjdk11_jre:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk-jre:openjdk11-jre:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk-jre:openjdk11_jre:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk11-jre:openjdk-jre:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk11-jre:openjdk_jre:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk11_jre:openjdk-jre:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk11_jre:openjdk_jre:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk_jre:openjdk11-jre:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk_jre:openjdk11_jre:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk-jre:openjdk-jre:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk-jre:openjdk_jre:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk11:openjdk11-jre:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk11:openjdk11_jre:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk_jre:openjdk-jre:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk_jre:openjdk_jre:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk11:openjdk-jre:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk11:openjdk_jre:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk:openjdk11-jre:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk:openjdk11_jre:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk:openjdk-jre:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk:openjdk_jre:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:17b0acbb0089734604f8e7c44f1bc811a80410e28e4c08d88f3ca17246cbee8f"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/lib/apk/db/installed"
+        },
+        {
+          "name": "syft:metadata:gitCommitOfApkPort",
+          "value": "d2e17ed0f58fe8bef042fa7ce03da72e6f934c41"
+        },
+        {
+          "name": "syft:metadata:installedSize",
+          "value": "2863104"
+        },
+        {
+          "name": "syft:metadata:originPackage",
+          "value": "openjdk11"
+        },
+        {
+          "name": "syft:metadata:provides:0",
+          "value": "java-jre"
+        },
+        {
+          "name": "syft:metadata:provides:1",
+          "value": "so:openjdk11:libawt_xawt.so=0"
+        },
+        {
+          "name": "syft:metadata:provides:2",
+          "value": "so:openjdk11:libfontmanager.so=0"
+        },
+        {
+          "name": "syft:metadata:provides:3",
+          "value": "so:openjdk11:libjavajpeg.so=0"
+        },
+        {
+          "name": "syft:metadata:provides:4",
+          "value": "so:openjdk11:libjawt.so=0"
+        },
+        {
+          "name": "syft:metadata:provides:5",
+          "value": "so:openjdk11:libjsound.so=0"
+        },
+        {
+          "name": "syft:metadata:provides:6",
+          "value": "so:openjdk11:liblcms.so=0"
+        },
+        {
+          "name": "syft:metadata:provides:7",
+          "value": "so:openjdk11:libsplashscreen.so=0"
+        },
+        {
+          "name": "syft:metadata:pullChecksum",
+          "value": "Q1b8t5895sLiG2tiohV6LEWbiF070="
+        },
+        {
+          "name": "syft:metadata:pullDependencies:0",
+          "value": "openjdk11-jre-headless"
+        },
+        {
+          "name": "syft:metadata:pullDependencies:1",
+          "value": "so:libX11.so.6"
+        },
+        {
+          "name": "syft:metadata:pullDependencies:10",
+          "value": "so:libjpeg.so.8"
+        },
+        {
+          "name": "syft:metadata:pullDependencies:11",
+          "value": "so:liblcms2.so.2"
+        },
+        {
+          "name": "syft:metadata:pullDependencies:12",
+          "value": "so:libpng16.so.16"
+        },
+        {
+          "name": "syft:metadata:pullDependencies:13",
+          "value": "so:openjdk11:libawt.so"
+        },
+        {
+          "name": "syft:metadata:pullDependencies:14",
+          "value": "so:openjdk11:libjava.so"
+        },
+        {
+          "name": "syft:metadata:pullDependencies:2",
+          "value": "so:libXext.so.6"
+        },
+        {
+          "name": "syft:metadata:pullDependencies:3",
+          "value": "so:libXi.so.6"
+        },
+        {
+          "name": "syft:metadata:pullDependencies:4",
+          "value": "so:libXrender.so.1"
+        },
+        {
+          "name": "syft:metadata:pullDependencies:5",
+          "value": "so:libXtst.so.6"
+        },
+        {
+          "name": "syft:metadata:pullDependencies:6",
+          "value": "so:libasound.so.2"
+        },
+        {
+          "name": "syft:metadata:pullDependencies:7",
+          "value": "so:libc.musl-x86_64.so.1"
+        },
+        {
+          "name": "syft:metadata:pullDependencies:8",
+          "value": "so:libfreetype.so.6"
+        },
+        {
+          "name": "syft:metadata:pullDependencies:9",
+          "value": "so:libgif.so.7"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "1302271"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:apk/alpine/openjdk11-jre-headless@11.0.21_p9-r0?arch=x86_64&upstream=openjdk11&distro=alpine-3.18.5&package-id=34fd74d73b447e27",
+      "type": "library",
+      "publisher": "Simon Frankenberger <simon-alpine@fraho.eu>",
+      "name": "openjdk11-jre-headless",
+      "version": "11.0.21_p9-r0",
+      "description": "Oracle OpenJDK 11 (JRE headless)",
+      "licenses": [
+        {
+          "license": {
+            "id": "GPL-2.0-with-classpath-exception"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:openjdk11-jre-headless:openjdk11-jre-headless:11.0.21_p9-r0:*:*:*:*:*:*:*",
+      "purl": "pkg:apk/alpine/openjdk11-jre-headless@11.0.21_p9-r0?arch=x86_64&upstream=openjdk11&distro=alpine-3.18.5",
+      "externalReferences": [
+        {
+          "url": "https://github.com/openjdk/jdk11u",
+          "type": "distribution"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "apk-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "apk"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "apk-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk11-jre-headless:openjdk11_jre_headless:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk11_jre_headless:openjdk11-jre-headless:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk11_jre_headless:openjdk11_jre_headless:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk-jre-headless:openjdk11-jre-headless:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk-jre-headless:openjdk11_jre_headless:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk11-jre-headless:openjdk-jre-headless:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk11-jre-headless:openjdk_jre_headless:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk11_jre_headless:openjdk-jre-headless:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk11_jre_headless:openjdk_jre_headless:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk_jre_headless:openjdk11-jre-headless:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk_jre_headless:openjdk11_jre_headless:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk-jre-headless:openjdk-jre-headless:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk-jre-headless:openjdk_jre_headless:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk_jre_headless:openjdk-jre-headless:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk_jre_headless:openjdk_jre_headless:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk11-jre:openjdk11-jre-headless:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk11-jre:openjdk11_jre_headless:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk11_jre:openjdk11-jre-headless:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk11_jre:openjdk11_jre_headless:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk-jre:openjdk11-jre-headless:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk-jre:openjdk11_jre_headless:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk11-jre:openjdk-jre-headless:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk11-jre:openjdk_jre_headless:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk11_jre:openjdk-jre-headless:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk11_jre:openjdk_jre_headless:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk_jre:openjdk11-jre-headless:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk_jre:openjdk11_jre_headless:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk-jre:openjdk-jre-headless:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk-jre:openjdk_jre_headless:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk11:openjdk11-jre-headless:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk11:openjdk11_jre_headless:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk_jre:openjdk-jre-headless:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk_jre:openjdk_jre_headless:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk11:openjdk-jre-headless:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk11:openjdk_jre_headless:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk:openjdk11-jre-headless:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk:openjdk11_jre_headless:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk:openjdk-jre-headless:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk:openjdk_jre_headless:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:17b0acbb0089734604f8e7c44f1bc811a80410e28e4c08d88f3ca17246cbee8f"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/lib/apk/db/installed"
+        },
+        {
+          "name": "syft:metadata:gitCommitOfApkPort",
+          "value": "d2e17ed0f58fe8bef042fa7ce03da72e6f934c41"
+        },
+        {
+          "name": "syft:metadata:installedSize",
+          "value": "159186944"
+        },
+        {
+          "name": "syft:metadata:originPackage",
+          "value": "openjdk11"
+        },
+        {
+          "name": "syft:metadata:provides:0",
+          "value": "java-jre-headless"
+        },
+        {
+          "name": "syft:metadata:provides:1",
+          "value": "so:openjdk11:libattach.so=0"
+        },
+        {
+          "name": "syft:metadata:provides:10",
+          "value": "so:openjdk11:libjaas.so=0"
+        },
+        {
+          "name": "syft:metadata:provides:11",
+          "value": "so:openjdk11:libjava.so=0"
+        },
+        {
+          "name": "syft:metadata:provides:12",
+          "value": "so:openjdk11:libjdwp.so=0"
+        },
+        {
+          "name": "syft:metadata:provides:13",
+          "value": "so:openjdk11:libjimage.so=0"
+        },
+        {
+          "name": "syft:metadata:provides:14",
+          "value": "so:openjdk11:libjli.so=0"
+        },
+        {
+          "name": "syft:metadata:provides:15",
+          "value": "so:openjdk11:libjsig.so=0"
+        },
+        {
+          "name": "syft:metadata:provides:16",
+          "value": "so:openjdk11:libjvm.so=0"
+        },
+        {
+          "name": "syft:metadata:provides:17",
+          "value": "so:openjdk11:libmanagement.so=0"
+        },
+        {
+          "name": "syft:metadata:provides:18",
+          "value": "so:openjdk11:libmanagement_agent.so=0"
+        },
+        {
+          "name": "syft:metadata:provides:19",
+          "value": "so:openjdk11:libmanagement_ext.so=0"
+        },
+        {
+          "name": "syft:metadata:provides:2",
+          "value": "so:openjdk11:libawt.so=0"
+        },
+        {
+          "name": "syft:metadata:provides:20",
+          "value": "so:openjdk11:libmlib_image.so=0"
+        },
+        {
+          "name": "syft:metadata:provides:21",
+          "value": "so:openjdk11:libnet.so=0"
+        },
+        {
+          "name": "syft:metadata:provides:22",
+          "value": "so:openjdk11:libnio.so=0"
+        },
+        {
+          "name": "syft:metadata:provides:23",
+          "value": "so:openjdk11:libprefs.so=0"
+        },
+        {
+          "name": "syft:metadata:provides:24",
+          "value": "so:openjdk11:librmi.so=0"
+        },
+        {
+          "name": "syft:metadata:provides:25",
+          "value": "so:openjdk11:libsctp.so=0"
+        },
+        {
+          "name": "syft:metadata:provides:26",
+          "value": "so:openjdk11:libsunec.so=0"
+        },
+        {
+          "name": "syft:metadata:provides:27",
+          "value": "so:openjdk11:libunpack.so=0"
+        },
+        {
+          "name": "syft:metadata:provides:28",
+          "value": "so:openjdk11:libverify.so=0"
+        },
+        {
+          "name": "syft:metadata:provides:29",
+          "value": "so:openjdk11:libzip.so=0"
+        },
+        {
+          "name": "syft:metadata:provides:3",
+          "value": "so:openjdk11:libawt_headless.so=0"
+        },
+        {
+          "name": "syft:metadata:provides:4",
+          "value": "so:openjdk11:libdt_socket.so=0"
+        },
+        {
+          "name": "syft:metadata:provides:5",
+          "value": "so:openjdk11:libextnet.so=0"
+        },
+        {
+          "name": "syft:metadata:provides:6",
+          "value": "so:openjdk11:libinstrument.so=0"
+        },
+        {
+          "name": "syft:metadata:provides:7",
+          "value": "so:openjdk11:libj2gss.so=0"
+        },
+        {
+          "name": "syft:metadata:provides:8",
+          "value": "so:openjdk11:libj2pcsc.so=0"
+        },
+        {
+          "name": "syft:metadata:provides:9",
+          "value": "so:openjdk11:libj2pkcs11.so=0"
+        },
+        {
+          "name": "syft:metadata:pullChecksum",
+          "value": "Q1J8OOqiwgufFqBpGTEK7P7VRrOLw="
+        },
+        {
+          "name": "syft:metadata:pullDependencies:0",
+          "value": "java-common"
+        },
+        {
+          "name": "syft:metadata:pullDependencies:1",
+          "value": "java-cacerts"
+        },
+        {
+          "name": "syft:metadata:pullDependencies:2",
+          "value": "so:libc.musl-x86_64.so.1"
+        },
+        {
+          "name": "syft:metadata:pullDependencies:3",
+          "value": "so:libz.so.1"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "53771952"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/org.abego.treelayout/org.abego.treelayout.core@1.0.3?package-id=1363b87ba0f7a4ab",
+      "type": "library",
+      "group": "org.abego.treelayout",
+      "name": "org.abego.treelayout.core",
+      "version": "1.0.3",
+      "licenses": [
+        {
+          "license": {
+            "name": "http://www.abego-software.de/legal/apl-v10.html"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:abego-software-gmbh\\,-germany:org.abego.treelayout.core:1.0.3:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/org.abego.treelayout/org.abego.treelayout.core@1.0.3",
+      "externalReferences": [
+        {
+          "url": "",
+          "hashes": [
+            {
+              "alg": "SHA-1",
+              "content": "457216e8e6578099ae63667bb1e4439235892028"
+            }
+          ],
+          "type": "build-meta"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:abego_software_gmbh\\,_germany:org.abego.treelayout.core:1.0.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:org.abego.treelayout.core:org.abego.treelayout.core:1.0.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:abego-software-gmbh\\,-germany:treelayout:1.0.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:abego_software_gmbh\\,_germany:treelayout:1.0.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:org.abego.treelayout.core:treelayout:1.0.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:treelayout:org.abego.treelayout.core:1.0.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:abego-software-gmbh\\,-germany:core:1.0.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:abego_software_gmbh\\,_germany:core:1.0.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:abego:org.abego.treelayout.core:1.0.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:core:org.abego.treelayout.core:1.0.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:org.abego.treelayout.core:core:1.0.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:treelayout:treelayout:1.0.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:abego:treelayout:1.0.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:core:treelayout:1.0.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:treelayout:core:1.0.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:abego:core:1.0.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:core:core:1.0.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:b1dc62eecf8a6672534ff85086bc9d0ea8bb94cfd7e760c53734dad61f36012b"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-console/lib/org.abego.treelayout.core-1.0.3.jar"
+        },
+        {
+          "name": "syft:metadata:-:artifactID",
+          "value": "org.abego.treelayout.core"
+        },
+        {
+          "name": "syft:metadata:-:groupID",
+          "value": "org.abego.treelayout"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-console/lib/org.abego.treelayout.core-1.0.3.jar"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:apk/alpine/p11-kit@0.24.1-r2?arch=x86_64&distro=alpine-3.18.5&package-id=8409881a29df5d99",
+      "type": "library",
+      "publisher": "Fabian Affolter <fabian@affolter-engineering.ch>",
+      "name": "p11-kit",
+      "version": "0.24.1-r2",
+      "description": "Library for loading and sharing PKCS#11 modules",
+      "licenses": [
+        {
+          "license": {
+            "id": "BSD-3-Clause"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:p11-kit:p11-kit:0.24.1-r2:*:*:*:*:*:*:*",
+      "purl": "pkg:apk/alpine/p11-kit@0.24.1-r2?arch=x86_64&distro=alpine-3.18.5",
+      "externalReferences": [
+        {
+          "url": "https://p11-glue.freedesktop.org/",
+          "type": "distribution"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "apk-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "apk"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "apk-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:p11-kit:p11_kit:0.24.1-r2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:p11_kit:p11-kit:0.24.1-r2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:p11_kit:p11_kit:0.24.1-r2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:p-kit:p11-kit:0.24.1-r2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:p-kit:p11_kit:0.24.1-r2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:p11-kit:p-kit:0.24.1-r2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:p11-kit:p_kit:0.24.1-r2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:p11_kit:p-kit:0.24.1-r2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:p11_kit:p_kit:0.24.1-r2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:p_kit:p11-kit:0.24.1-r2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:p_kit:p11_kit:0.24.1-r2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:p-kit:p-kit:0.24.1-r2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:p-kit:p_kit:0.24.1-r2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:p11:p11-kit:0.24.1-r2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:p11:p11_kit:0.24.1-r2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:p_kit:p-kit:0.24.1-r2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:p_kit:p_kit:0.24.1-r2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:p11:p-kit:0.24.1-r2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:p11:p_kit:0.24.1-r2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:p:p11-kit:0.24.1-r2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:p:p11_kit:0.24.1-r2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:p:p-kit:0.24.1-r2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:p:p_kit:0.24.1-r2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:17b0acbb0089734604f8e7c44f1bc811a80410e28e4c08d88f3ca17246cbee8f"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/lib/apk/db/installed"
+        },
+        {
+          "name": "syft:metadata:gitCommitOfApkPort",
+          "value": "84a227baf001b6e0208e3352b294e4d7a40e93de"
+        },
+        {
+          "name": "syft:metadata:installedSize",
+          "value": "1036288"
+        },
+        {
+          "name": "syft:metadata:originPackage",
+          "value": "p11-kit"
+        },
+        {
+          "name": "syft:metadata:provides:0",
+          "value": "so:libp11-kit.so.0=0.3.0"
+        },
+        {
+          "name": "syft:metadata:provides:1",
+          "value": "cmd:p11-kit=0.24.1-r2"
+        },
+        {
+          "name": "syft:metadata:pullChecksum",
+          "value": "Q1qSXa3oERcftRSd+MMYwefTEEfwc="
+        },
+        {
+          "name": "syft:metadata:pullDependencies:0",
+          "value": "so:libc.musl-x86_64.so.1"
+        },
+        {
+          "name": "syft:metadata:pullDependencies:1",
+          "value": "so:libffi.so.8"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "258911"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:apk/alpine/p11-kit-trust@0.24.1-r2?arch=x86_64&upstream=p11-kit&distro=alpine-3.18.5&package-id=e63dedeb4498fbaa",
+      "type": "library",
+      "publisher": "Fabian Affolter <fabian@affolter-engineering.ch>",
+      "name": "p11-kit-trust",
+      "version": "0.24.1-r2",
+      "description": "System trust module from p11-kit",
+      "licenses": [
+        {
+          "license": {
+            "id": "BSD-3-Clause"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:p11-kit-trust:p11-kit-trust:0.24.1-r2:*:*:*:*:*:*:*",
+      "purl": "pkg:apk/alpine/p11-kit-trust@0.24.1-r2?arch=x86_64&upstream=p11-kit&distro=alpine-3.18.5",
+      "externalReferences": [
+        {
+          "url": "https://p11-glue.freedesktop.org/",
+          "type": "distribution"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "apk-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "apk"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "apk-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:p11-kit-trust:p11_kit_trust:0.24.1-r2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:p11_kit_trust:p11-kit-trust:0.24.1-r2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:p11_kit_trust:p11_kit_trust:0.24.1-r2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:p-kit-trust:p11-kit-trust:0.24.1-r2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:p-kit-trust:p11_kit_trust:0.24.1-r2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:p11-kit-trust:p-kit-trust:0.24.1-r2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:p11-kit-trust:p_kit_trust:0.24.1-r2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:p11_kit_trust:p-kit-trust:0.24.1-r2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:p11_kit_trust:p_kit_trust:0.24.1-r2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:p_kit_trust:p11-kit-trust:0.24.1-r2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:p_kit_trust:p11_kit_trust:0.24.1-r2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:p-kit-trust:p-kit-trust:0.24.1-r2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:p-kit-trust:p_kit_trust:0.24.1-r2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:p_kit_trust:p-kit-trust:0.24.1-r2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:p_kit_trust:p_kit_trust:0.24.1-r2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:p11-kit:p11-kit-trust:0.24.1-r2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:p11-kit:p11_kit_trust:0.24.1-r2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:p11_kit:p11-kit-trust:0.24.1-r2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:p11_kit:p11_kit_trust:0.24.1-r2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:p-kit:p11-kit-trust:0.24.1-r2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:p-kit:p11_kit_trust:0.24.1-r2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:p11-kit:p-kit-trust:0.24.1-r2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:p11-kit:p_kit_trust:0.24.1-r2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:p11_kit:p-kit-trust:0.24.1-r2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:p11_kit:p_kit_trust:0.24.1-r2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:p_kit:p11-kit-trust:0.24.1-r2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:p_kit:p11_kit_trust:0.24.1-r2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:p-kit:p-kit-trust:0.24.1-r2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:p-kit:p_kit_trust:0.24.1-r2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:p11:p11-kit-trust:0.24.1-r2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:p11:p11_kit_trust:0.24.1-r2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:p_kit:p-kit-trust:0.24.1-r2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:p_kit:p_kit_trust:0.24.1-r2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:p11:p-kit-trust:0.24.1-r2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:p11:p_kit_trust:0.24.1-r2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:p:p11-kit-trust:0.24.1-r2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:p:p11_kit_trust:0.24.1-r2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:p:p-kit-trust:0.24.1-r2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:p:p_kit_trust:0.24.1-r2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:17b0acbb0089734604f8e7c44f1bc811a80410e28e4c08d88f3ca17246cbee8f"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/lib/apk/db/installed"
+        },
+        {
+          "name": "syft:metadata:gitCommitOfApkPort",
+          "value": "84a227baf001b6e0208e3352b294e4d7a40e93de"
+        },
+        {
+          "name": "syft:metadata:installedSize",
+          "value": "364544"
+        },
+        {
+          "name": "syft:metadata:originPackage",
+          "value": "p11-kit"
+        },
+        {
+          "name": "syft:metadata:provides:0",
+          "value": "cmd:trust=0.24.1-r2"
+        },
+        {
+          "name": "syft:metadata:pullChecksum",
+          "value": "Q1ji5VlcWuLXWavErRkq8M4LsdabU="
+        },
+        {
+          "name": "syft:metadata:pullDependencies:0",
+          "value": "so:libc.musl-x86_64.so.1"
+        },
+        {
+          "name": "syft:metadata:pullDependencies:1",
+          "value": "so:libp11-kit.so.0"
+        },
+        {
+          "name": "syft:metadata:pullDependencies:2",
+          "value": "so:libtasn1.so.6"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "128744"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/picocli/picocli@4.7.0?package-id=11d305154bf04257",
+      "type": "library",
+      "name": "picocli",
+      "version": "4.7.0",
+      "cpe": "cpe:2.3:a:remko-popma:picocli:4.7.0:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/picocli/picocli@4.7.0",
+      "externalReferences": [
+        {
+          "url": "",
+          "hashes": [
+            {
+              "alg": "SHA-1",
+              "content": "dcdde55edcb523af7814ba47e57a8a097daa208d"
+            }
+          ],
+          "type": "build-meta"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:remko_popma:picocli:4.7.0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:picocli:picocli:4.7.0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:b1dc62eecf8a6672534ff85086bc9d0ea8bb94cfd7e760c53734dad61f36012b"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-console/lib/picocli-4.7.0.jar"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-console/lib/picocli-4.7.0.jar"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:apk/alpine/readline@8.2.1-r1?arch=x86_64&distro=alpine-3.18.5&package-id=78533b9a80a3c727",
+      "type": "library",
+      "publisher": "Natanael Copa <ncopa@alpinelinux.org>",
+      "name": "readline",
+      "version": "8.2.1-r1",
+      "description": "GNU readline library",
+      "licenses": [
+        {
+          "license": {
+            "id": "GPL-2.0-or-later"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:readline:readline:8.2.1-r1:*:*:*:*:*:*:*",
+      "purl": "pkg:apk/alpine/readline@8.2.1-r1?arch=x86_64&distro=alpine-3.18.5",
+      "externalReferences": [
+        {
+          "url": "https://tiswww.cwru.edu/php/chet/readline/rltop.html",
+          "type": "distribution"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "apk-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "apk"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "apk-db-entry"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:17b0acbb0089734604f8e7c44f1bc811a80410e28e4c08d88f3ca17246cbee8f"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/lib/apk/db/installed"
+        },
+        {
+          "name": "syft:metadata:gitCommitOfApkPort",
+          "value": "84a227baf001b6e0208e3352b294e4d7a40e93de"
+        },
+        {
+          "name": "syft:metadata:installedSize",
+          "value": "307200"
+        },
+        {
+          "name": "syft:metadata:originPackage",
+          "value": "readline"
+        },
+        {
+          "name": "syft:metadata:provides:0",
+          "value": "so:libreadline.so.8=8.2"
+        },
+        {
+          "name": "syft:metadata:pullChecksum",
+          "value": "Q1nCcvep9N4MNO9aY8W8z6c3YV+eQ="
+        },
+        {
+          "name": "syft:metadata:pullDependencies:0",
+          "value": "so:libc.musl-x86_64.so.1"
+        },
+        {
+          "name": "syft:metadata:pullDependencies:1",
+          "value": "so:libncursesw.so.6"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "124162"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/com.esotericsoftware/reflectasm@1.10.1?package-id=b1a89fc1417d49f3",
+      "type": "library",
+      "group": "com.esotericsoftware",
+      "name": "reflectasm",
+      "version": "1.10.1",
+      "licenses": [
+        {
+          "license": {
+            "name": "New BSD License",
+            "url": "http://www.opensource.org/licenses/bsd-license.php"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:esotericsoftware:reflectasm:1.10.1:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/com.esotericsoftware/reflectasm@1.10.1",
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:reflectasm:reflectasm:1.10.1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:sonatype:reflectasm:1.10.1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:oss:reflectasm:1.10.1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:b1dc62eecf8a6672534ff85086bc9d0ea8bb94cfd7e760c53734dad61f36012b"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-console/lib/gremlin-shaded-3.7.1.jar"
+        },
+        {
+          "name": "syft:metadata:-:artifactID",
+          "value": "reflectasm"
+        },
+        {
+          "name": "syft:metadata:-:groupID",
+          "value": "com.esotericsoftware"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-console/lib/gremlin-shaded-3.7.1.jar:com.esotericsoftware:reflectasm"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:apk/alpine/scanelf@1.3.7-r1?arch=x86_64&upstream=pax-utils&distro=alpine-3.18.5&package-id=701300eef0967970",
+      "type": "library",
+      "publisher": "Natanael Copa <ncopa@alpinelinux.org>",
+      "name": "scanelf",
+      "version": "1.3.7-r1",
+      "description": "Scan ELF binaries for stuff",
+      "licenses": [
+        {
+          "license": {
+            "id": "GPL-2.0-only"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:scanelf:scanelf:1.3.7-r1:*:*:*:*:*:*:*",
+      "purl": "pkg:apk/alpine/scanelf@1.3.7-r1?arch=x86_64&upstream=pax-utils&distro=alpine-3.18.5",
+      "externalReferences": [
+        {
+          "url": "https://wiki.gentoo.org/wiki/Hardened/PaX_Utilities",
+          "type": "distribution"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "apk-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "apk"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "apk-db-entry"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:17b0acbb0089734604f8e7c44f1bc811a80410e28e4c08d88f3ca17246cbee8f"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/lib/apk/db/installed"
+        },
+        {
+          "name": "syft:metadata:gitCommitOfApkPort",
+          "value": "84a227baf001b6e0208e3352b294e4d7a40e93de"
+        },
+        {
+          "name": "syft:metadata:installedSize",
+          "value": "90112"
+        },
+        {
+          "name": "syft:metadata:originPackage",
+          "value": "pax-utils"
+        },
+        {
+          "name": "syft:metadata:provides:0",
+          "value": "cmd:scanelf=1.3.7-r1"
+        },
+        {
+          "name": "syft:metadata:pullChecksum",
+          "value": "Q14nq9o4+uo2NaLbTVDQB3UeooC0M="
+        },
+        {
+          "name": "syft:metadata:pullDependencies:0",
+          "value": "so:libc.musl-x86_64.so.1"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "35664"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/org.slf4j/slf4j-api@1.7.33?package-id=c76425e1b56cba3d",
+      "type": "library",
+      "group": "org.slf4j",
+      "name": "slf4j-api",
+      "version": "1.7.33",
+      "cpe": "cpe:2.3:a:slf4j-api:slf4j-api:1.7.33:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/org.slf4j/slf4j-api@1.7.33",
+      "externalReferences": [
+        {
+          "url": "",
+          "hashes": [
+            {
+              "alg": "SHA-1",
+              "content": "d375aa1b98d34d5ddf73a3f19eaad66e98975b12"
+            }
+          ],
+          "type": "build-meta"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:slf4j-api:slf4j_api:1.7.33:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:slf4j_api:slf4j-api:1.7.33:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:slf4j_api:slf4j_api:1.7.33:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:slf4j:slf4j-api:1.7.33:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:slf4j:slf4j_api:1.7.33:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:b1dc62eecf8a6672534ff85086bc9d0ea8bb94cfd7e760c53734dad61f36012b"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-console/lib/slf4j-api-1.7.33.jar"
+        },
+        {
+          "name": "syft:metadata:-:artifactID",
+          "value": "slf4j-api"
+        },
+        {
+          "name": "syft:metadata:-:groupID",
+          "value": "org.slf4j"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-console/lib/slf4j-api-1.7.33.jar"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/org.yaml/snakeyaml@2.0?package-id=fdca23df4a79ab87",
+      "type": "library",
+      "group": "org.yaml",
+      "name": "snakeyaml",
+      "version": "2.0",
+      "licenses": [
+        {
+          "license": {
+            "name": "http://www.apache.org/licenses/LICENSE-2.0.txt"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:snakeyaml:snakeyaml:2.0:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/org.yaml/snakeyaml@2.0",
+      "externalReferences": [
+        {
+          "url": "",
+          "hashes": [
+            {
+              "alg": "SHA-1",
+              "content": "3aab2116756442bf0d4cd1c089b24d34c3baa253"
+            }
+          ],
+          "type": "build-meta"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:yaml:snakeyaml:2.0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:b1dc62eecf8a6672534ff85086bc9d0ea8bb94cfd7e760c53734dad61f36012b"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-console/lib/snakeyaml-2.0.jar"
+        },
+        {
+          "name": "syft:metadata:-:artifactID",
+          "value": "snakeyaml"
+        },
+        {
+          "name": "syft:metadata:-:groupID",
+          "value": "org.yaml"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-console/lib/snakeyaml-2.0.jar"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:apk/alpine/ssl_client@1.36.1-r5?arch=x86_64&upstream=busybox&distro=alpine-3.18.5&package-id=9a41fe1896e4ce46",
+      "type": "library",
+      "publisher": "Sören Tempel <soeren+alpine@soeren-tempel.net>",
+      "name": "ssl_client",
+      "version": "1.36.1-r5",
+      "description": "EXternal ssl_client for busybox wget",
+      "licenses": [
+        {
+          "license": {
+            "id": "GPL-2.0-only"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:ssl-client:ssl-client:1.36.1-r5:*:*:*:*:*:*:*",
+      "purl": "pkg:apk/alpine/ssl_client@1.36.1-r5?arch=x86_64&upstream=busybox&distro=alpine-3.18.5",
+      "externalReferences": [
+        {
+          "url": "https://busybox.net/",
+          "type": "distribution"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "apk-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "apk"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "apk-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:ssl-client:ssl_client:1.36.1-r5:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:ssl_client:ssl-client:1.36.1-r5:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:ssl_client:ssl_client:1.36.1-r5:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:ssl:ssl-client:1.36.1-r5:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:ssl:ssl_client:1.36.1-r5:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:17b0acbb0089734604f8e7c44f1bc811a80410e28e4c08d88f3ca17246cbee8f"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/lib/apk/db/installed"
+        },
+        {
+          "name": "syft:metadata:gitCommitOfApkPort",
+          "value": "cdf3c00435d52908f962c9ff009fc5c6f2f31f99"
+        },
+        {
+          "name": "syft:metadata:installedSize",
+          "value": "28672"
+        },
+        {
+          "name": "syft:metadata:originPackage",
+          "value": "busybox"
+        },
+        {
+          "name": "syft:metadata:provides:0",
+          "value": "cmd:ssl_client=1.36.1-r5"
+        },
+        {
+          "name": "syft:metadata:pullChecksum",
+          "value": "Q12KNylQ9b6XW3cN6rwXzZu80Gcho="
+        },
+        {
+          "name": "syft:metadata:pullDependencies:0",
+          "value": "so:libc.musl-x86_64.so.1"
+        },
+        {
+          "name": "syft:metadata:pullDependencies:1",
+          "value": "so:libcrypto.so.3"
+        },
+        {
+          "name": "syft:metadata:pullDependencies:2",
+          "value": "so:libssl.so.3"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "4940"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/org.apache.tinkerpop/tinkergraph-gremlin@3.7.1?package-id=72ae6f346f88a2d5",
+      "type": "library",
+      "group": "org.apache.tinkerpop",
+      "name": "tinkergraph-gremlin",
+      "version": "3.7.1",
+      "licenses": [
+        {
+          "license": {
+            "id": "Apache-2.0"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:apache:tinkergraph-gremlin:3.7.1:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/org.apache.tinkerpop/tinkergraph-gremlin@3.7.1",
+      "externalReferences": [
+        {
+          "url": "",
+          "hashes": [
+            {
+              "alg": "SHA-1",
+              "content": "4ff96a791c896eb3a0ead907f9ed465d50bfdd02"
+            }
+          ],
+          "type": "build-meta"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:apache:tinkergraph_gremlin:3.7.1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:b1dc62eecf8a6672534ff85086bc9d0ea8bb94cfd7e760c53734dad61f36012b"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-console/ext/tinkergraph-gremlin/lib/tinkergraph-gremlin-3.7.1.jar"
+        },
+        {
+          "name": "syft:metadata:-:artifactID",
+          "value": "tinkergraph-gremlin"
+        },
+        {
+          "name": "syft:metadata:-:groupID",
+          "value": "org.apache.tinkerpop"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-console/ext/tinkergraph-gremlin/lib/tinkergraph-gremlin-3.7.1.jar"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/org.apache.tinkerpop/tinkergraph-gremlin@3.7.1?package-id=50d6780c617fee3d",
+      "type": "library",
+      "group": "org.apache.tinkerpop",
+      "name": "tinkergraph-gremlin",
+      "version": "3.7.1",
+      "licenses": [
+        {
+          "license": {
+            "id": "Apache-2.0"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:apache:tinkergraph-gremlin:3.7.1:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/org.apache.tinkerpop/tinkergraph-gremlin@3.7.1",
+      "externalReferences": [
+        {
+          "url": "",
+          "hashes": [
+            {
+              "alg": "SHA-1",
+              "content": "4ff96a791c896eb3a0ead907f9ed465d50bfdd02"
+            }
+          ],
+          "type": "build-meta"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:apache:tinkergraph_gremlin:3.7.1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:b1dc62eecf8a6672534ff85086bc9d0ea8bb94cfd7e760c53734dad61f36012b"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-console/ext/tinkergraph-gremlin/plugin/tinkergraph-gremlin-3.7.1.jar"
+        },
+        {
+          "name": "syft:metadata:-:artifactID",
+          "value": "tinkergraph-gremlin"
+        },
+        {
+          "name": "syft:metadata:-:groupID",
+          "value": "org.apache.tinkerpop"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-console/ext/tinkergraph-gremlin/plugin/tinkergraph-gremlin-3.7.1.jar"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:apk/alpine/zlib@1.2.13-r1?arch=x86_64&distro=alpine-3.18.5&package-id=c8e7fc9f117e52bc",
+      "type": "library",
+      "publisher": "Natanael Copa <ncopa@alpinelinux.org>",
+      "name": "zlib",
+      "version": "1.2.13-r1",
+      "description": "A compression/decompression Library",
+      "licenses": [
+        {
+          "license": {
+            "id": "Zlib"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:zlib:zlib:1.2.13-r1:*:*:*:*:*:*:*",
+      "purl": "pkg:apk/alpine/zlib@1.2.13-r1?arch=x86_64&distro=alpine-3.18.5",
+      "externalReferences": [
+        {
+          "url": "https://zlib.net/",
+          "type": "distribution"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "apk-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "apk"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "apk-db-entry"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:17b0acbb0089734604f8e7c44f1bc811a80410e28e4c08d88f3ca17246cbee8f"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/lib/apk/db/installed"
+        },
+        {
+          "name": "syft:metadata:gitCommitOfApkPort",
+          "value": "84a227baf001b6e0208e3352b294e4d7a40e93de"
+        },
+        {
+          "name": "syft:metadata:installedSize",
+          "value": "110592"
+        },
+        {
+          "name": "syft:metadata:originPackage",
+          "value": "zlib"
+        },
+        {
+          "name": "syft:metadata:provides:0",
+          "value": "so:libz.so.1=1.2.13"
+        },
+        {
+          "name": "syft:metadata:pullChecksum",
+          "value": "Q1JlboSJkrN4qkDcokr4zenpcWEXQ="
+        },
+        {
+          "name": "syft:metadata:pullDependencies:0",
+          "value": "so:libc.musl-x86_64.so.1"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "54253"
+        }
+      ]
+    },
+    {
+      "type": "operating-system",
+      "name": "alpine",
+      "version": "3.18.5",
+      "description": "Alpine Linux v3.18",
+      "swid": {
+        "tagId": "alpine",
+        "name": "alpine",
+        "version": "3.18.5"
+      },
+      "externalReferences": [
+        {
+          "url": "https://gitlab.alpinelinux.org/alpine/aports/-/issues",
+          "type": "issue-tracker"
+        },
+        {
+          "url": "https://alpinelinux.org/",
+          "type": "website"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:distro:id",
+          "value": "alpine"
+        },
+        {
+          "name": "syft:distro:prettyName",
+          "value": "Alpine Linux v3.18"
+        },
+        {
+          "name": "syft:distro:versionID",
+          "value": "3.18.5"
+        }
+      ]
+    }
+  ],
+  "dependencies": [
+    {
+      "ref": "pkg:apk/alpine/alpine-baselayout@3.4.3-r1?arch=x86_64&distro=alpine-3.18.5&package-id=baca676b3df82a63",
+      "dependsOn": [
+        "pkg:apk/alpine/alpine-baselayout-data@3.4.3-r1?arch=x86_64&upstream=alpine-baselayout&distro=alpine-3.18.5&package-id=85e34641ddeca26c",
+        "pkg:apk/alpine/busybox-binsh@1.36.1-r5?arch=x86_64&upstream=busybox&distro=alpine-3.18.5&package-id=ea8601e6fdd7765c"
+      ]
+    },
+    {
+      "ref": "pkg:apk/alpine/alsa-lib@1.2.9-r1?arch=x86_64&distro=alpine-3.18.5&package-id=84af028d92e1ce12",
+      "dependsOn": [
+        "pkg:apk/alpine/musl@1.2.4-r2?arch=x86_64&distro=alpine-3.18.5&package-id=ac337824ccfe44f2"
+      ]
+    },
+    {
+      "ref": "pkg:apk/alpine/apk-tools@2.14.0-r2?arch=x86_64&distro=alpine-3.18.5&package-id=e54b9e6921a9482e",
+      "dependsOn": [
+        "pkg:apk/alpine/ca-certificates-bundle@20230506-r0?arch=x86_64&upstream=ca-certificates&distro=alpine-3.18.5&package-id=e6d1b63d5a046c55",
+        "pkg:apk/alpine/libcrypto3@3.1.4-r1?arch=x86_64&upstream=openssl&distro=alpine-3.18.5&package-id=e37b0015aff83d58",
+        "pkg:apk/alpine/libssl3@3.1.4-r1?arch=x86_64&upstream=openssl&distro=alpine-3.18.5&package-id=8dd02cc858a89430",
+        "pkg:apk/alpine/musl@1.2.4-r2?arch=x86_64&distro=alpine-3.18.5&package-id=ac337824ccfe44f2",
+        "pkg:apk/alpine/zlib@1.2.13-r1?arch=x86_64&distro=alpine-3.18.5&package-id=c8e7fc9f117e52bc"
+      ]
+    },
+    {
+      "ref": "pkg:apk/alpine/bash@5.2.15-r5?arch=x86_64&distro=alpine-3.18.5&package-id=983290b85e1513d6",
+      "dependsOn": [
+        "pkg:apk/alpine/busybox-binsh@1.36.1-r5?arch=x86_64&upstream=busybox&distro=alpine-3.18.5&package-id=ea8601e6fdd7765c",
+        "pkg:apk/alpine/musl@1.2.4-r2?arch=x86_64&distro=alpine-3.18.5&package-id=ac337824ccfe44f2",
+        "pkg:apk/alpine/readline@8.2.1-r1?arch=x86_64&distro=alpine-3.18.5&package-id=78533b9a80a3c727"
+      ]
+    },
+    {
+      "ref": "pkg:apk/alpine/brotli-libs@1.0.9-r14?arch=x86_64&upstream=brotli&distro=alpine-3.18.5&package-id=31257dfa21df951d",
+      "dependsOn": [
+        "pkg:apk/alpine/musl@1.2.4-r2?arch=x86_64&distro=alpine-3.18.5&package-id=ac337824ccfe44f2"
+      ]
+    },
+    {
+      "ref": "pkg:apk/alpine/busybox-binsh@1.36.1-r5?arch=x86_64&upstream=busybox&distro=alpine-3.18.5&package-id=ea8601e6fdd7765c",
+      "dependsOn": [
+        "pkg:apk/alpine/busybox@1.36.1-r5?arch=x86_64&distro=alpine-3.18.5&package-id=c4cadec7a04f67ce"
+      ]
+    },
+    {
+      "ref": "pkg:apk/alpine/busybox@1.36.1-r5?arch=x86_64&distro=alpine-3.18.5&package-id=c4cadec7a04f67ce",
+      "dependsOn": [
+        "pkg:apk/alpine/musl@1.2.4-r2?arch=x86_64&distro=alpine-3.18.5&package-id=ac337824ccfe44f2"
+      ]
+    },
+    {
+      "ref": "pkg:apk/alpine/ca-certificates@20230506-r0?arch=x86_64&distro=alpine-3.18.5&package-id=34619f88311d4e5e",
+      "dependsOn": [
+        "pkg:apk/alpine/busybox-binsh@1.36.1-r5?arch=x86_64&upstream=busybox&distro=alpine-3.18.5&package-id=ea8601e6fdd7765c",
+        "pkg:apk/alpine/libcrypto3@3.1.4-r1?arch=x86_64&upstream=openssl&distro=alpine-3.18.5&package-id=e37b0015aff83d58",
+        "pkg:apk/alpine/musl@1.2.4-r2?arch=x86_64&distro=alpine-3.18.5&package-id=ac337824ccfe44f2"
+      ]
+    },
+    {
+      "ref": "pkg:apk/alpine/freetype@2.13.0-r5?arch=x86_64&distro=alpine-3.18.5&package-id=b888151d4bc51ee8",
+      "dependsOn": [
+        "pkg:apk/alpine/brotli-libs@1.0.9-r14?arch=x86_64&upstream=brotli&distro=alpine-3.18.5&package-id=31257dfa21df951d",
+        "pkg:apk/alpine/libbz2@1.0.8-r5?arch=x86_64&upstream=bzip2&distro=alpine-3.18.5&package-id=18e5911103cbf51c",
+        "pkg:apk/alpine/libpng@1.6.39-r3?arch=x86_64&distro=alpine-3.18.5&package-id=fae14a749f94b4a9",
+        "pkg:apk/alpine/musl@1.2.4-r2?arch=x86_64&distro=alpine-3.18.5&package-id=ac337824ccfe44f2",
+        "pkg:apk/alpine/zlib@1.2.13-r1?arch=x86_64&distro=alpine-3.18.5&package-id=c8e7fc9f117e52bc"
+      ]
+    },
+    {
+      "ref": "pkg:apk/alpine/giflib@5.2.1-r4?arch=x86_64&distro=alpine-3.18.5&package-id=81c4b631ebed9634",
+      "dependsOn": [
+        "pkg:apk/alpine/musl@1.2.4-r2?arch=x86_64&distro=alpine-3.18.5&package-id=ac337824ccfe44f2"
+      ]
+    },
+    {
+      "ref": "pkg:apk/alpine/java-cacerts@1.0-r1?arch=x86_64&distro=alpine-3.18.5&package-id=abd7dc90169ab0fe",
+      "dependsOn": [
+        "pkg:apk/alpine/busybox-binsh@1.36.1-r5?arch=x86_64&upstream=busybox&distro=alpine-3.18.5&package-id=ea8601e6fdd7765c",
+        "pkg:apk/alpine/ca-certificates@20230506-r0?arch=x86_64&distro=alpine-3.18.5&package-id=34619f88311d4e5e",
+        "pkg:apk/alpine/p11-kit-trust@0.24.1-r2?arch=x86_64&upstream=p11-kit&distro=alpine-3.18.5&package-id=e63dedeb4498fbaa",
+        "pkg:apk/alpine/p11-kit@0.24.1-r2?arch=x86_64&distro=alpine-3.18.5&package-id=8409881a29df5d99"
+      ]
+    },
+    {
+      "ref": "pkg:apk/alpine/java-common@0.5-r0?arch=x86_64&distro=alpine-3.18.5&package-id=854cda365d24a3ac",
+      "dependsOn": [
+        "pkg:apk/alpine/busybox-binsh@1.36.1-r5?arch=x86_64&upstream=busybox&distro=alpine-3.18.5&package-id=ea8601e6fdd7765c"
+      ]
+    },
+    {
+      "ref": "pkg:apk/alpine/lcms2@2.15-r2?arch=x86_64&distro=alpine-3.18.5&package-id=761e2c68d5f5fab4",
+      "dependsOn": [
+        "pkg:apk/alpine/musl@1.2.4-r2?arch=x86_64&distro=alpine-3.18.5&package-id=ac337824ccfe44f2"
+      ]
+    },
+    {
+      "ref": "pkg:apk/alpine/libbsd@0.11.7-r1?arch=x86_64&distro=alpine-3.18.5&package-id=be56281be99ee143",
+      "dependsOn": [
+        "pkg:apk/alpine/libmd@1.0.4-r2?arch=x86_64&distro=alpine-3.18.5&package-id=3cad17c3657f9a8c",
+        "pkg:apk/alpine/musl@1.2.4-r2?arch=x86_64&distro=alpine-3.18.5&package-id=ac337824ccfe44f2"
+      ]
+    },
+    {
+      "ref": "pkg:apk/alpine/libbz2@1.0.8-r5?arch=x86_64&upstream=bzip2&distro=alpine-3.18.5&package-id=18e5911103cbf51c",
+      "dependsOn": [
+        "pkg:apk/alpine/musl@1.2.4-r2?arch=x86_64&distro=alpine-3.18.5&package-id=ac337824ccfe44f2"
+      ]
+    },
+    {
+      "ref": "pkg:apk/alpine/libc-utils@0.7.2-r5?arch=x86_64&upstream=libc-dev&distro=alpine-3.18.5&package-id=caef79f1fe0b500a",
+      "dependsOn": [
+        "pkg:apk/alpine/musl-utils@1.2.4-r2?arch=x86_64&upstream=musl&distro=alpine-3.18.5&package-id=58216dd6469af95a"
+      ]
+    },
+    {
+      "ref": "pkg:apk/alpine/libcrypto3@3.1.4-r1?arch=x86_64&upstream=openssl&distro=alpine-3.18.5&package-id=e37b0015aff83d58",
+      "dependsOn": [
+        "pkg:apk/alpine/musl@1.2.4-r2?arch=x86_64&distro=alpine-3.18.5&package-id=ac337824ccfe44f2"
+      ]
+    },
+    {
+      "ref": "pkg:apk/alpine/libffi@3.4.4-r2?arch=x86_64&distro=alpine-3.18.5&package-id=4398410e101bab31",
+      "dependsOn": [
+        "pkg:apk/alpine/musl@1.2.4-r2?arch=x86_64&distro=alpine-3.18.5&package-id=ac337824ccfe44f2"
+      ]
+    },
+    {
+      "ref": "pkg:apk/alpine/libjpeg-turbo@2.1.5.1-r3?arch=x86_64&distro=alpine-3.18.5&package-id=cb5c16be818a9da1",
+      "dependsOn": [
+        "pkg:apk/alpine/musl@1.2.4-r2?arch=x86_64&distro=alpine-3.18.5&package-id=ac337824ccfe44f2"
+      ]
+    },
+    {
+      "ref": "pkg:apk/alpine/libmd@1.0.4-r2?arch=x86_64&distro=alpine-3.18.5&package-id=3cad17c3657f9a8c",
+      "dependsOn": [
+        "pkg:apk/alpine/musl@1.2.4-r2?arch=x86_64&distro=alpine-3.18.5&package-id=ac337824ccfe44f2"
+      ]
+    },
+    {
+      "ref": "pkg:apk/alpine/libncursesw@6.4_p20230506-r0?arch=x86_64&upstream=ncurses&distro=alpine-3.18.5&package-id=fecedb8a52a992aa",
+      "dependsOn": [
+        "pkg:apk/alpine/musl@1.2.4-r2?arch=x86_64&distro=alpine-3.18.5&package-id=ac337824ccfe44f2",
+        "pkg:apk/alpine/ncurses-terminfo-base@6.4_p20230506-r0?arch=x86_64&upstream=ncurses&distro=alpine-3.18.5&package-id=e8554058cb4c7d6d"
+      ]
+    },
+    {
+      "ref": "pkg:apk/alpine/libpng@1.6.39-r3?arch=x86_64&distro=alpine-3.18.5&package-id=fae14a749f94b4a9",
+      "dependsOn": [
+        "pkg:apk/alpine/musl@1.2.4-r2?arch=x86_64&distro=alpine-3.18.5&package-id=ac337824ccfe44f2",
+        "pkg:apk/alpine/zlib@1.2.13-r1?arch=x86_64&distro=alpine-3.18.5&package-id=c8e7fc9f117e52bc"
+      ]
+    },
+    {
+      "ref": "pkg:apk/alpine/libssl3@3.1.4-r1?arch=x86_64&upstream=openssl&distro=alpine-3.18.5&package-id=8dd02cc858a89430",
+      "dependsOn": [
+        "pkg:apk/alpine/libcrypto3@3.1.4-r1?arch=x86_64&upstream=openssl&distro=alpine-3.18.5&package-id=e37b0015aff83d58",
+        "pkg:apk/alpine/musl@1.2.4-r2?arch=x86_64&distro=alpine-3.18.5&package-id=ac337824ccfe44f2"
+      ]
+    },
+    {
+      "ref": "pkg:apk/alpine/libtasn1@4.19.0-r1?arch=x86_64&distro=alpine-3.18.5&package-id=dab129c365cfba5f",
+      "dependsOn": [
+        "pkg:apk/alpine/musl@1.2.4-r2?arch=x86_64&distro=alpine-3.18.5&package-id=ac337824ccfe44f2"
+      ]
+    },
+    {
+      "ref": "pkg:apk/alpine/libx11@1.8.7-r0?arch=x86_64&distro=alpine-3.18.5&package-id=0ca45a0d92ec397a",
+      "dependsOn": [
+        "pkg:apk/alpine/libxcb@1.15-r1?arch=x86_64&distro=alpine-3.18.5&package-id=c1b8a0b48dc24735",
+        "pkg:apk/alpine/musl@1.2.4-r2?arch=x86_64&distro=alpine-3.18.5&package-id=ac337824ccfe44f2"
+      ]
+    },
+    {
+      "ref": "pkg:apk/alpine/libxau@1.0.11-r2?arch=x86_64&distro=alpine-3.18.5&package-id=bfc32cdeb41f936d",
+      "dependsOn": [
+        "pkg:apk/alpine/musl@1.2.4-r2?arch=x86_64&distro=alpine-3.18.5&package-id=ac337824ccfe44f2"
+      ]
+    },
+    {
+      "ref": "pkg:apk/alpine/libxcb@1.15-r1?arch=x86_64&distro=alpine-3.18.5&package-id=c1b8a0b48dc24735",
+      "dependsOn": [
+        "pkg:apk/alpine/libxau@1.0.11-r2?arch=x86_64&distro=alpine-3.18.5&package-id=bfc32cdeb41f936d",
+        "pkg:apk/alpine/libxdmcp@1.1.4-r2?arch=x86_64&distro=alpine-3.18.5&package-id=b27c714be4aa474b",
+        "pkg:apk/alpine/musl@1.2.4-r2?arch=x86_64&distro=alpine-3.18.5&package-id=ac337824ccfe44f2"
+      ]
+    },
+    {
+      "ref": "pkg:apk/alpine/libxdmcp@1.1.4-r2?arch=x86_64&distro=alpine-3.18.5&package-id=b27c714be4aa474b",
+      "dependsOn": [
+        "pkg:apk/alpine/libbsd@0.11.7-r1?arch=x86_64&distro=alpine-3.18.5&package-id=be56281be99ee143",
+        "pkg:apk/alpine/musl@1.2.4-r2?arch=x86_64&distro=alpine-3.18.5&package-id=ac337824ccfe44f2"
+      ]
+    },
+    {
+      "ref": "pkg:apk/alpine/libxext@1.3.5-r2?arch=x86_64&distro=alpine-3.18.5&package-id=8796daa88f7456f5",
+      "dependsOn": [
+        "pkg:apk/alpine/libx11@1.8.7-r0?arch=x86_64&distro=alpine-3.18.5&package-id=0ca45a0d92ec397a",
+        "pkg:apk/alpine/musl@1.2.4-r2?arch=x86_64&distro=alpine-3.18.5&package-id=ac337824ccfe44f2"
+      ]
+    },
+    {
+      "ref": "pkg:apk/alpine/libxi@1.8.1-r0?arch=x86_64&distro=alpine-3.18.5&package-id=797b290ab96926c4",
+      "dependsOn": [
+        "pkg:apk/alpine/libx11@1.8.7-r0?arch=x86_64&distro=alpine-3.18.5&package-id=0ca45a0d92ec397a",
+        "pkg:apk/alpine/libxext@1.3.5-r2?arch=x86_64&distro=alpine-3.18.5&package-id=8796daa88f7456f5",
+        "pkg:apk/alpine/musl@1.2.4-r2?arch=x86_64&distro=alpine-3.18.5&package-id=ac337824ccfe44f2"
+      ]
+    },
+    {
+      "ref": "pkg:apk/alpine/libxrender@0.9.11-r3?arch=x86_64&distro=alpine-3.18.5&package-id=f8718eabf47ab91f",
+      "dependsOn": [
+        "pkg:apk/alpine/libx11@1.8.7-r0?arch=x86_64&distro=alpine-3.18.5&package-id=0ca45a0d92ec397a",
+        "pkg:apk/alpine/musl@1.2.4-r2?arch=x86_64&distro=alpine-3.18.5&package-id=ac337824ccfe44f2"
+      ]
+    },
+    {
+      "ref": "pkg:apk/alpine/libxtst@1.2.4-r2?arch=x86_64&distro=alpine-3.18.5&package-id=89f76e217990632b",
+      "dependsOn": [
+        "pkg:apk/alpine/libx11@1.8.7-r0?arch=x86_64&distro=alpine-3.18.5&package-id=0ca45a0d92ec397a",
+        "pkg:apk/alpine/libxext@1.3.5-r2?arch=x86_64&distro=alpine-3.18.5&package-id=8796daa88f7456f5",
+        "pkg:apk/alpine/musl@1.2.4-r2?arch=x86_64&distro=alpine-3.18.5&package-id=ac337824ccfe44f2"
+      ]
+    },
+    {
+      "ref": "pkg:apk/alpine/musl-utils@1.2.4-r2?arch=x86_64&upstream=musl&distro=alpine-3.18.5&package-id=58216dd6469af95a",
+      "dependsOn": [
+        "pkg:apk/alpine/musl@1.2.4-r2?arch=x86_64&distro=alpine-3.18.5&package-id=ac337824ccfe44f2",
+        "pkg:apk/alpine/scanelf@1.3.7-r1?arch=x86_64&upstream=pax-utils&distro=alpine-3.18.5&package-id=701300eef0967970"
+      ]
+    },
+    {
+      "ref": "pkg:apk/alpine/openjdk11-jdk@11.0.21_p9-r0?arch=x86_64&upstream=openjdk11&distro=alpine-3.18.5&package-id=f4c8aaccc90d995e",
+      "dependsOn": [
+        "pkg:apk/alpine/musl@1.2.4-r2?arch=x86_64&distro=alpine-3.18.5&package-id=ac337824ccfe44f2",
+        "pkg:apk/alpine/openjdk11-jmods@11.0.21_p9-r0?arch=x86_64&upstream=openjdk11&distro=alpine-3.18.5&package-id=ca527a5de9a8839a",
+        "pkg:apk/alpine/openjdk11-jre-headless@11.0.21_p9-r0?arch=x86_64&upstream=openjdk11&distro=alpine-3.18.5&package-id=34fd74d73b447e27",
+        "pkg:apk/alpine/openjdk11-jre@11.0.21_p9-r0?arch=x86_64&upstream=openjdk11&distro=alpine-3.18.5&package-id=d34cbfbd5f8e3526"
+      ]
+    },
+    {
+      "ref": "pkg:apk/alpine/openjdk11-jre-headless@11.0.21_p9-r0?arch=x86_64&upstream=openjdk11&distro=alpine-3.18.5&package-id=34fd74d73b447e27",
+      "dependsOn": [
+        "pkg:apk/alpine/java-cacerts@1.0-r1?arch=x86_64&distro=alpine-3.18.5&package-id=abd7dc90169ab0fe",
+        "pkg:apk/alpine/java-common@0.5-r0?arch=x86_64&distro=alpine-3.18.5&package-id=854cda365d24a3ac",
+        "pkg:apk/alpine/musl@1.2.4-r2?arch=x86_64&distro=alpine-3.18.5&package-id=ac337824ccfe44f2",
+        "pkg:apk/alpine/zlib@1.2.13-r1?arch=x86_64&distro=alpine-3.18.5&package-id=c8e7fc9f117e52bc"
+      ]
+    },
+    {
+      "ref": "pkg:apk/alpine/openjdk11-jre@11.0.21_p9-r0?arch=x86_64&upstream=openjdk11&distro=alpine-3.18.5&package-id=d34cbfbd5f8e3526",
+      "dependsOn": [
+        "pkg:apk/alpine/alsa-lib@1.2.9-r1?arch=x86_64&distro=alpine-3.18.5&package-id=84af028d92e1ce12",
+        "pkg:apk/alpine/freetype@2.13.0-r5?arch=x86_64&distro=alpine-3.18.5&package-id=b888151d4bc51ee8",
+        "pkg:apk/alpine/giflib@5.2.1-r4?arch=x86_64&distro=alpine-3.18.5&package-id=81c4b631ebed9634",
+        "pkg:apk/alpine/lcms2@2.15-r2?arch=x86_64&distro=alpine-3.18.5&package-id=761e2c68d5f5fab4",
+        "pkg:apk/alpine/libjpeg-turbo@2.1.5.1-r3?arch=x86_64&distro=alpine-3.18.5&package-id=cb5c16be818a9da1",
+        "pkg:apk/alpine/libpng@1.6.39-r3?arch=x86_64&distro=alpine-3.18.5&package-id=fae14a749f94b4a9",
+        "pkg:apk/alpine/libx11@1.8.7-r0?arch=x86_64&distro=alpine-3.18.5&package-id=0ca45a0d92ec397a",
+        "pkg:apk/alpine/libxext@1.3.5-r2?arch=x86_64&distro=alpine-3.18.5&package-id=8796daa88f7456f5",
+        "pkg:apk/alpine/libxi@1.8.1-r0?arch=x86_64&distro=alpine-3.18.5&package-id=797b290ab96926c4",
+        "pkg:apk/alpine/libxrender@0.9.11-r3?arch=x86_64&distro=alpine-3.18.5&package-id=f8718eabf47ab91f",
+        "pkg:apk/alpine/libxtst@1.2.4-r2?arch=x86_64&distro=alpine-3.18.5&package-id=89f76e217990632b",
+        "pkg:apk/alpine/musl@1.2.4-r2?arch=x86_64&distro=alpine-3.18.5&package-id=ac337824ccfe44f2",
+        "pkg:apk/alpine/openjdk11-jre-headless@11.0.21_p9-r0?arch=x86_64&upstream=openjdk11&distro=alpine-3.18.5&package-id=34fd74d73b447e27"
+      ]
+    },
+    {
+      "ref": "pkg:apk/alpine/p11-kit-trust@0.24.1-r2?arch=x86_64&upstream=p11-kit&distro=alpine-3.18.5&package-id=e63dedeb4498fbaa",
+      "dependsOn": [
+        "pkg:apk/alpine/libtasn1@4.19.0-r1?arch=x86_64&distro=alpine-3.18.5&package-id=dab129c365cfba5f",
+        "pkg:apk/alpine/musl@1.2.4-r2?arch=x86_64&distro=alpine-3.18.5&package-id=ac337824ccfe44f2",
+        "pkg:apk/alpine/p11-kit@0.24.1-r2?arch=x86_64&distro=alpine-3.18.5&package-id=8409881a29df5d99"
+      ]
+    },
+    {
+      "ref": "pkg:apk/alpine/p11-kit@0.24.1-r2?arch=x86_64&distro=alpine-3.18.5&package-id=8409881a29df5d99",
+      "dependsOn": [
+        "pkg:apk/alpine/libffi@3.4.4-r2?arch=x86_64&distro=alpine-3.18.5&package-id=4398410e101bab31",
+        "pkg:apk/alpine/musl@1.2.4-r2?arch=x86_64&distro=alpine-3.18.5&package-id=ac337824ccfe44f2"
+      ]
+    },
+    {
+      "ref": "pkg:apk/alpine/readline@8.2.1-r1?arch=x86_64&distro=alpine-3.18.5&package-id=78533b9a80a3c727",
+      "dependsOn": [
+        "pkg:apk/alpine/libncursesw@6.4_p20230506-r0?arch=x86_64&upstream=ncurses&distro=alpine-3.18.5&package-id=fecedb8a52a992aa",
+        "pkg:apk/alpine/musl@1.2.4-r2?arch=x86_64&distro=alpine-3.18.5&package-id=ac337824ccfe44f2"
+      ]
+    },
+    {
+      "ref": "pkg:apk/alpine/scanelf@1.3.7-r1?arch=x86_64&upstream=pax-utils&distro=alpine-3.18.5&package-id=701300eef0967970",
+      "dependsOn": [
+        "pkg:apk/alpine/musl@1.2.4-r2?arch=x86_64&distro=alpine-3.18.5&package-id=ac337824ccfe44f2"
+      ]
+    },
+    {
+      "ref": "pkg:apk/alpine/ssl_client@1.36.1-r5?arch=x86_64&upstream=busybox&distro=alpine-3.18.5&package-id=9a41fe1896e4ce46",
+      "dependsOn": [
+        "pkg:apk/alpine/libcrypto3@3.1.4-r1?arch=x86_64&upstream=openssl&distro=alpine-3.18.5&package-id=e37b0015aff83d58",
+        "pkg:apk/alpine/libssl3@3.1.4-r1?arch=x86_64&upstream=openssl&distro=alpine-3.18.5&package-id=8dd02cc858a89430",
+        "pkg:apk/alpine/musl@1.2.4-r2?arch=x86_64&distro=alpine-3.18.5&package-id=ac337824ccfe44f2"
+      ]
+    },
+    {
+      "ref": "pkg:apk/alpine/zlib@1.2.13-r1?arch=x86_64&distro=alpine-3.18.5&package-id=c8e7fc9f117e52bc",
+      "dependsOn": [
+        "pkg:apk/alpine/musl@1.2.4-r2?arch=x86_64&distro=alpine-3.18.5&package-id=ac337824ccfe44f2"
+      ]
+    }
+  ],
+  "vulnerabilities": [
+    {
+      "bom-ref": "urn:uuid:ae86c814-63ce-466d-a0c1-fbb7a8f56050",
+      "id": "CVE-2023-42363",
+      "source": {
+        "name": "nvd-cpe",
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-42363"
+      },
+      "references": [
+        {
+          "id": "CVE-2023-42363",
+          "source": {
+            "name": "nvd-cpe",
+            "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-42363"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "score": 5.5,
+          "severity": "medium",
+          "method": "CVSSv31",
+          "vector": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"
+        }
+      ],
+      "description": "A use-after-free vulnerability was discovered in xasprintf function in xfuncs_printf.c:344 in BusyBox v.1.36.1.",
+      "advisories": [
+        {
+          "url": "https://bugs.busybox.net/show_bug.cgi?id=15865"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:apk/alpine/busybox@1.36.1-r5?arch=x86_64&distro=alpine-3.18.5&package-id=c4cadec7a04f67ce"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:a139cc2a-fd82-4524-9646-cb6f5a50f3b8",
+      "id": "CVE-2023-42363",
+      "source": {
+        "name": "nvd-cpe",
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-42363"
+      },
+      "references": [
+        {
+          "id": "CVE-2023-42363",
+          "source": {
+            "name": "nvd-cpe",
+            "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-42363"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "score": 5.5,
+          "severity": "medium",
+          "method": "CVSSv31",
+          "vector": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"
+        }
+      ],
+      "description": "A use-after-free vulnerability was discovered in xasprintf function in xfuncs_printf.c:344 in BusyBox v.1.36.1.",
+      "advisories": [
+        {
+          "url": "https://bugs.busybox.net/show_bug.cgi?id=15865"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:apk/alpine/busybox-binsh@1.36.1-r5?arch=x86_64&upstream=busybox&distro=alpine-3.18.5&package-id=ea8601e6fdd7765c"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:c969ab4a-5414-424e-a1ee-e1e5af50f07e",
+      "id": "CVE-2023-42363",
+      "source": {
+        "name": "nvd-cpe",
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-42363"
+      },
+      "references": [
+        {
+          "id": "CVE-2023-42363",
+          "source": {
+            "name": "nvd-cpe",
+            "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-42363"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "score": 5.5,
+          "severity": "medium",
+          "method": "CVSSv31",
+          "vector": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"
+        }
+      ],
+      "description": "A use-after-free vulnerability was discovered in xasprintf function in xfuncs_printf.c:344 in BusyBox v.1.36.1.",
+      "advisories": [
+        {
+          "url": "https://bugs.busybox.net/show_bug.cgi?id=15865"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:apk/alpine/ssl_client@1.36.1-r5?arch=x86_64&upstream=busybox&distro=alpine-3.18.5&package-id=9a41fe1896e4ce46"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:270f2fd4-4452-4e48-9a93-24774a443099",
+      "id": "CVE-2023-42364",
+      "source": {
+        "name": "nvd-cpe",
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-42364"
+      },
+      "references": [
+        {
+          "id": "CVE-2023-42364",
+          "source": {
+            "name": "nvd-cpe",
+            "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-42364"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "score": 5.5,
+          "severity": "medium",
+          "method": "CVSSv31",
+          "vector": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"
+        }
+      ],
+      "description": "A use-after-free vulnerability in BusyBox v.1.36.1 allows attackers to cause a denial of service via a crafted awk pattern in the awk.c evaluate function.",
+      "advisories": [
+        {
+          "url": "https://bugs.busybox.net/show_bug.cgi?id=15868"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:apk/alpine/busybox@1.36.1-r5?arch=x86_64&distro=alpine-3.18.5&package-id=c4cadec7a04f67ce"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:2bad7ef6-a7fe-413d-b6bf-ccd16b4fe5f8",
+      "id": "CVE-2023-42364",
+      "source": {
+        "name": "nvd-cpe",
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-42364"
+      },
+      "references": [
+        {
+          "id": "CVE-2023-42364",
+          "source": {
+            "name": "nvd-cpe",
+            "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-42364"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "score": 5.5,
+          "severity": "medium",
+          "method": "CVSSv31",
+          "vector": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"
+        }
+      ],
+      "description": "A use-after-free vulnerability in BusyBox v.1.36.1 allows attackers to cause a denial of service via a crafted awk pattern in the awk.c evaluate function.",
+      "advisories": [
+        {
+          "url": "https://bugs.busybox.net/show_bug.cgi?id=15868"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:apk/alpine/busybox-binsh@1.36.1-r5?arch=x86_64&upstream=busybox&distro=alpine-3.18.5&package-id=ea8601e6fdd7765c"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:d379cb83-ab4c-41d6-afbe-26a52cc1c9b2",
+      "id": "CVE-2023-42364",
+      "source": {
+        "name": "nvd-cpe",
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-42364"
+      },
+      "references": [
+        {
+          "id": "CVE-2023-42364",
+          "source": {
+            "name": "nvd-cpe",
+            "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-42364"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "score": 5.5,
+          "severity": "medium",
+          "method": "CVSSv31",
+          "vector": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"
+        }
+      ],
+      "description": "A use-after-free vulnerability in BusyBox v.1.36.1 allows attackers to cause a denial of service via a crafted awk pattern in the awk.c evaluate function.",
+      "advisories": [
+        {
+          "url": "https://bugs.busybox.net/show_bug.cgi?id=15868"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:apk/alpine/ssl_client@1.36.1-r5?arch=x86_64&upstream=busybox&distro=alpine-3.18.5&package-id=9a41fe1896e4ce46"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:1cc2bf6b-cab6-41b4-ab0b-348e070dc40e",
+      "id": "CVE-2023-42365",
+      "source": {
+        "name": "nvd-cpe",
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-42365"
+      },
+      "references": [
+        {
+          "id": "CVE-2023-42365",
+          "source": {
+            "name": "nvd-cpe",
+            "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-42365"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "score": 5.5,
+          "severity": "medium",
+          "method": "CVSSv31",
+          "vector": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"
+        }
+      ],
+      "description": "A use-after-free vulnerability was discovered in BusyBox v.1.36.1 via a crafted awk pattern in the awk.c copyvar function.",
+      "advisories": [
+        {
+          "url": "https://bugs.busybox.net/show_bug.cgi?id=15871"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:apk/alpine/busybox@1.36.1-r5?arch=x86_64&distro=alpine-3.18.5&package-id=c4cadec7a04f67ce"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:a0121472-34c5-4980-b1ef-4bc57f1c163a",
+      "id": "CVE-2023-42365",
+      "source": {
+        "name": "nvd-cpe",
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-42365"
+      },
+      "references": [
+        {
+          "id": "CVE-2023-42365",
+          "source": {
+            "name": "nvd-cpe",
+            "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-42365"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "score": 5.5,
+          "severity": "medium",
+          "method": "CVSSv31",
+          "vector": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"
+        }
+      ],
+      "description": "A use-after-free vulnerability was discovered in BusyBox v.1.36.1 via a crafted awk pattern in the awk.c copyvar function.",
+      "advisories": [
+        {
+          "url": "https://bugs.busybox.net/show_bug.cgi?id=15871"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:apk/alpine/busybox-binsh@1.36.1-r5?arch=x86_64&upstream=busybox&distro=alpine-3.18.5&package-id=ea8601e6fdd7765c"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:d47fb43b-ae71-46fa-9bc9-ed14a7a0872e",
+      "id": "CVE-2023-42365",
+      "source": {
+        "name": "nvd-cpe",
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-42365"
+      },
+      "references": [
+        {
+          "id": "CVE-2023-42365",
+          "source": {
+            "name": "nvd-cpe",
+            "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-42365"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "score": 5.5,
+          "severity": "medium",
+          "method": "CVSSv31",
+          "vector": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"
+        }
+      ],
+      "description": "A use-after-free vulnerability was discovered in BusyBox v.1.36.1 via a crafted awk pattern in the awk.c copyvar function.",
+      "advisories": [
+        {
+          "url": "https://bugs.busybox.net/show_bug.cgi?id=15871"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:apk/alpine/ssl_client@1.36.1-r5?arch=x86_64&upstream=busybox&distro=alpine-3.18.5&package-id=9a41fe1896e4ce46"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:2978a025-c7e7-46ae-aa66-8f9ed9ec53b3",
+      "id": "CVE-2023-42366",
+      "source": {
+        "name": "nvd-cpe",
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-42366"
+      },
+      "references": [
+        {
+          "id": "CVE-2023-42366",
+          "source": {
+            "name": "nvd-cpe",
+            "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-42366"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "score": 5.5,
+          "severity": "medium",
+          "method": "CVSSv31",
+          "vector": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"
+        }
+      ],
+      "description": "A heap-buffer-overflow was discovered in BusyBox v.1.36.1 in the next_token function at awk.c:1159.",
+      "advisories": [
+        {
+          "url": "https://bugs.busybox.net/show_bug.cgi?id=15874"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:apk/alpine/busybox@1.36.1-r5?arch=x86_64&distro=alpine-3.18.5&package-id=c4cadec7a04f67ce"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:c827cb22-9827-4821-a403-ee6d471cd796",
+      "id": "CVE-2023-42366",
+      "source": {
+        "name": "nvd-cpe",
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-42366"
+      },
+      "references": [
+        {
+          "id": "CVE-2023-42366",
+          "source": {
+            "name": "nvd-cpe",
+            "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-42366"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "score": 5.5,
+          "severity": "medium",
+          "method": "CVSSv31",
+          "vector": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"
+        }
+      ],
+      "description": "A heap-buffer-overflow was discovered in BusyBox v.1.36.1 in the next_token function at awk.c:1159.",
+      "advisories": [
+        {
+          "url": "https://bugs.busybox.net/show_bug.cgi?id=15874"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:apk/alpine/busybox-binsh@1.36.1-r5?arch=x86_64&upstream=busybox&distro=alpine-3.18.5&package-id=ea8601e6fdd7765c"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:f5333def-08da-4b35-bc6a-288c82f190be",
+      "id": "CVE-2023-42366",
+      "source": {
+        "name": "nvd-cpe",
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-42366"
+      },
+      "references": [
+        {
+          "id": "CVE-2023-42366",
+          "source": {
+            "name": "nvd-cpe",
+            "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-42366"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "score": 5.5,
+          "severity": "medium",
+          "method": "CVSSv31",
+          "vector": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"
+        }
+      ],
+      "description": "A heap-buffer-overflow was discovered in BusyBox v.1.36.1 in the next_token function at awk.c:1159.",
+      "advisories": [
+        {
+          "url": "https://bugs.busybox.net/show_bug.cgi?id=15874"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:apk/alpine/ssl_client@1.36.1-r5?arch=x86_64&upstream=busybox&distro=alpine-3.18.5&package-id=9a41fe1896e4ce46"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:163a07e4-6188-4876-a1c1-54723e7032e1",
+      "id": "CVE-2023-6129",
+      "source": {
+        "name": "alpine-distro-alpine-3.18",
+        "url": "https://www.cve.org/CVERecord?id=CVE-2023-6129"
+      },
+      "references": [
+        {
+          "id": "CVE-2023-6129",
+          "source": {
+            "name": "alpine-distro-alpine-3.18",
+            "url": "https://www.cve.org/CVERecord?id=CVE-2023-6129"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "advisories": [
+        {
+          "url": "https://www.cve.org/CVERecord?id=CVE-2023-6129"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:apk/alpine/libcrypto3@3.1.4-r1?arch=x86_64&upstream=openssl&distro=alpine-3.18.5&package-id=e37b0015aff83d58"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:cb40c259-c1f7-411d-b5a8-59966924a041",
+      "id": "CVE-2023-6129",
+      "source": {
+        "name": "alpine-distro-alpine-3.18",
+        "url": "https://www.cve.org/CVERecord?id=CVE-2023-6129"
+      },
+      "references": [
+        {
+          "id": "CVE-2023-6129",
+          "source": {
+            "name": "alpine-distro-alpine-3.18",
+            "url": "https://www.cve.org/CVERecord?id=CVE-2023-6129"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "advisories": [
+        {
+          "url": "https://www.cve.org/CVERecord?id=CVE-2023-6129"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:apk/alpine/libssl3@3.1.4-r1?arch=x86_64&upstream=openssl&distro=alpine-3.18.5&package-id=8dd02cc858a89430"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:edad1065-ab16-4377-a0da-c9b4bf0913fe",
+      "id": "CVE-2023-6237",
+      "source": {
+        "name": "alpine-distro-alpine-3.18",
+        "url": "https://www.cve.org/CVERecord?id=CVE-2023-6237"
+      },
+      "references": [
+        {
+          "id": "CVE-2023-6237",
+          "source": {
+            "name": "alpine-distro-alpine-3.18",
+            "url": "https://www.cve.org/CVERecord?id=CVE-2023-6237"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "unknown"
+        }
+      ],
+      "advisories": [
+        {
+          "url": "https://www.cve.org/CVERecord?id=CVE-2023-6237"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:apk/alpine/libcrypto3@3.1.4-r1?arch=x86_64&upstream=openssl&distro=alpine-3.18.5&package-id=e37b0015aff83d58"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:ca1f9ae2-e66c-4a9e-9b5f-aa324f76a83b",
+      "id": "CVE-2023-6237",
+      "source": {
+        "name": "alpine-distro-alpine-3.18",
+        "url": "https://www.cve.org/CVERecord?id=CVE-2023-6237"
+      },
+      "references": [
+        {
+          "id": "CVE-2023-6237",
+          "source": {
+            "name": "alpine-distro-alpine-3.18",
+            "url": "https://www.cve.org/CVERecord?id=CVE-2023-6237"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "unknown"
+        }
+      ],
+      "advisories": [
+        {
+          "url": "https://www.cve.org/CVERecord?id=CVE-2023-6237"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:apk/alpine/libssl3@3.1.4-r1?arch=x86_64&upstream=openssl&distro=alpine-3.18.5&package-id=8dd02cc858a89430"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:4273c89e-a5ad-4a46-b5ad-d18dfaf43099",
+      "id": "CVE-2024-0727",
+      "source": {
+        "name": "alpine-distro-alpine-3.18",
+        "url": "https://www.cve.org/CVERecord?id=CVE-2024-0727"
+      },
+      "references": [
+        {
+          "id": "CVE-2024-0727",
+          "source": {
+            "name": "alpine-distro-alpine-3.18",
+            "url": "https://www.cve.org/CVERecord?id=CVE-2024-0727"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "unknown"
+        }
+      ],
+      "advisories": [
+        {
+          "url": "https://www.cve.org/CVERecord?id=CVE-2024-0727"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:apk/alpine/libcrypto3@3.1.4-r1?arch=x86_64&upstream=openssl&distro=alpine-3.18.5&package-id=e37b0015aff83d58"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:8550d35c-ba20-45cb-ac58-4bb61867d757",
+      "id": "CVE-2024-0727",
+      "source": {
+        "name": "alpine-distro-alpine-3.18",
+        "url": "https://www.cve.org/CVERecord?id=CVE-2024-0727"
+      },
+      "references": [
+        {
+          "id": "CVE-2024-0727",
+          "source": {
+            "name": "alpine-distro-alpine-3.18",
+            "url": "https://www.cve.org/CVERecord?id=CVE-2024-0727"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "unknown"
+        }
+      ],
+      "advisories": [
+        {
+          "url": "https://www.cve.org/CVERecord?id=CVE-2024-0727"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:apk/alpine/libssl3@3.1.4-r1?arch=x86_64&upstream=openssl&distro=alpine-3.18.5&package-id=8dd02cc858a89430"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:cb647e4c-d813-4fce-b6b6-e254da10d4ae",
+      "id": "CVE-2024-20918",
+      "source": {
+        "name": "alpine-distro-alpine-3.18",
+        "url": "https://www.cve.org/CVERecord?id=CVE-2024-20918"
+      },
+      "references": [
+        {
+          "id": "CVE-2024-20918",
+          "source": {
+            "name": "alpine-distro-alpine-3.18",
+            "url": "https://www.cve.org/CVERecord?id=CVE-2024-20918"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "high"
+        }
+      ],
+      "advisories": [
+        {
+          "url": "https://www.cve.org/CVERecord?id=CVE-2024-20918"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:apk/alpine/openjdk11-jdk@11.0.21_p9-r0?arch=x86_64&upstream=openjdk11&distro=alpine-3.18.5&package-id=f4c8aaccc90d995e"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:7b6e6537-7b8c-4f4d-873f-50ae861ca9ef",
+      "id": "CVE-2024-20918",
+      "source": {
+        "name": "alpine-distro-alpine-3.18",
+        "url": "https://www.cve.org/CVERecord?id=CVE-2024-20918"
+      },
+      "references": [
+        {
+          "id": "CVE-2024-20918",
+          "source": {
+            "name": "alpine-distro-alpine-3.18",
+            "url": "https://www.cve.org/CVERecord?id=CVE-2024-20918"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "high"
+        }
+      ],
+      "advisories": [
+        {
+          "url": "https://www.cve.org/CVERecord?id=CVE-2024-20918"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:apk/alpine/openjdk11-jmods@11.0.21_p9-r0?arch=x86_64&upstream=openjdk11&distro=alpine-3.18.5&package-id=ca527a5de9a8839a"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:0bb66a3d-0891-4776-9742-2465908d73ff",
+      "id": "CVE-2024-20918",
+      "source": {
+        "name": "alpine-distro-alpine-3.18",
+        "url": "https://www.cve.org/CVERecord?id=CVE-2024-20918"
+      },
+      "references": [
+        {
+          "id": "CVE-2024-20918",
+          "source": {
+            "name": "alpine-distro-alpine-3.18",
+            "url": "https://www.cve.org/CVERecord?id=CVE-2024-20918"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "high"
+        }
+      ],
+      "advisories": [
+        {
+          "url": "https://www.cve.org/CVERecord?id=CVE-2024-20918"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:apk/alpine/openjdk11-jre@11.0.21_p9-r0?arch=x86_64&upstream=openjdk11&distro=alpine-3.18.5&package-id=d34cbfbd5f8e3526"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:4864619e-85d7-4a9d-9b29-b12144af862d",
+      "id": "CVE-2024-20918",
+      "source": {
+        "name": "alpine-distro-alpine-3.18",
+        "url": "https://www.cve.org/CVERecord?id=CVE-2024-20918"
+      },
+      "references": [
+        {
+          "id": "CVE-2024-20918",
+          "source": {
+            "name": "alpine-distro-alpine-3.18",
+            "url": "https://www.cve.org/CVERecord?id=CVE-2024-20918"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "high"
+        }
+      ],
+      "advisories": [
+        {
+          "url": "https://www.cve.org/CVERecord?id=CVE-2024-20918"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:apk/alpine/openjdk11-jre-headless@11.0.21_p9-r0?arch=x86_64&upstream=openjdk11&distro=alpine-3.18.5&package-id=34fd74d73b447e27"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:29856993-5513-4949-80a0-54a2717cf114",
+      "id": "CVE-2024-20919",
+      "source": {
+        "name": "alpine-distro-alpine-3.18",
+        "url": "https://www.cve.org/CVERecord?id=CVE-2024-20919"
+      },
+      "references": [
+        {
+          "id": "CVE-2024-20919",
+          "source": {
+            "name": "alpine-distro-alpine-3.18",
+            "url": "https://www.cve.org/CVERecord?id=CVE-2024-20919"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "unknown"
+        }
+      ],
+      "advisories": [
+        {
+          "url": "https://www.cve.org/CVERecord?id=CVE-2024-20919"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:apk/alpine/openjdk11-jdk@11.0.21_p9-r0?arch=x86_64&upstream=openjdk11&distro=alpine-3.18.5&package-id=f4c8aaccc90d995e"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:83641233-422f-4079-b627-43b912891bab",
+      "id": "CVE-2024-20919",
+      "source": {
+        "name": "alpine-distro-alpine-3.18",
+        "url": "https://www.cve.org/CVERecord?id=CVE-2024-20919"
+      },
+      "references": [
+        {
+          "id": "CVE-2024-20919",
+          "source": {
+            "name": "alpine-distro-alpine-3.18",
+            "url": "https://www.cve.org/CVERecord?id=CVE-2024-20919"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "unknown"
+        }
+      ],
+      "advisories": [
+        {
+          "url": "https://www.cve.org/CVERecord?id=CVE-2024-20919"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:apk/alpine/openjdk11-jmods@11.0.21_p9-r0?arch=x86_64&upstream=openjdk11&distro=alpine-3.18.5&package-id=ca527a5de9a8839a"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:1b499c85-ea32-4ddc-9075-932e69084487",
+      "id": "CVE-2024-20919",
+      "source": {
+        "name": "alpine-distro-alpine-3.18",
+        "url": "https://www.cve.org/CVERecord?id=CVE-2024-20919"
+      },
+      "references": [
+        {
+          "id": "CVE-2024-20919",
+          "source": {
+            "name": "alpine-distro-alpine-3.18",
+            "url": "https://www.cve.org/CVERecord?id=CVE-2024-20919"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "unknown"
+        }
+      ],
+      "advisories": [
+        {
+          "url": "https://www.cve.org/CVERecord?id=CVE-2024-20919"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:apk/alpine/openjdk11-jre@11.0.21_p9-r0?arch=x86_64&upstream=openjdk11&distro=alpine-3.18.5&package-id=d34cbfbd5f8e3526"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:c395f03d-d3e5-4a8b-9dd9-bcedf0011d82",
+      "id": "CVE-2024-20919",
+      "source": {
+        "name": "alpine-distro-alpine-3.18",
+        "url": "https://www.cve.org/CVERecord?id=CVE-2024-20919"
+      },
+      "references": [
+        {
+          "id": "CVE-2024-20919",
+          "source": {
+            "name": "alpine-distro-alpine-3.18",
+            "url": "https://www.cve.org/CVERecord?id=CVE-2024-20919"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "unknown"
+        }
+      ],
+      "advisories": [
+        {
+          "url": "https://www.cve.org/CVERecord?id=CVE-2024-20919"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:apk/alpine/openjdk11-jre-headless@11.0.21_p9-r0?arch=x86_64&upstream=openjdk11&distro=alpine-3.18.5&package-id=34fd74d73b447e27"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:3cac74db-1363-4940-83c8-b4226a3a4c4b",
+      "id": "CVE-2024-20921",
+      "source": {
+        "name": "alpine-distro-alpine-3.18",
+        "url": "https://www.cve.org/CVERecord?id=CVE-2024-20921"
+      },
+      "references": [
+        {
+          "id": "CVE-2024-20921",
+          "source": {
+            "name": "alpine-distro-alpine-3.18",
+            "url": "https://www.cve.org/CVERecord?id=CVE-2024-20921"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "unknown"
+        }
+      ],
+      "advisories": [
+        {
+          "url": "https://www.cve.org/CVERecord?id=CVE-2024-20921"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:apk/alpine/openjdk11-jdk@11.0.21_p9-r0?arch=x86_64&upstream=openjdk11&distro=alpine-3.18.5&package-id=f4c8aaccc90d995e"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:cf0da513-6c83-4a20-8b8b-2ef234322e9f",
+      "id": "CVE-2024-20921",
+      "source": {
+        "name": "alpine-distro-alpine-3.18",
+        "url": "https://www.cve.org/CVERecord?id=CVE-2024-20921"
+      },
+      "references": [
+        {
+          "id": "CVE-2024-20921",
+          "source": {
+            "name": "alpine-distro-alpine-3.18",
+            "url": "https://www.cve.org/CVERecord?id=CVE-2024-20921"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "unknown"
+        }
+      ],
+      "advisories": [
+        {
+          "url": "https://www.cve.org/CVERecord?id=CVE-2024-20921"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:apk/alpine/openjdk11-jmods@11.0.21_p9-r0?arch=x86_64&upstream=openjdk11&distro=alpine-3.18.5&package-id=ca527a5de9a8839a"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:5c72ed45-1fab-45dc-98c3-2e63bfe9064a",
+      "id": "CVE-2024-20921",
+      "source": {
+        "name": "alpine-distro-alpine-3.18",
+        "url": "https://www.cve.org/CVERecord?id=CVE-2024-20921"
+      },
+      "references": [
+        {
+          "id": "CVE-2024-20921",
+          "source": {
+            "name": "alpine-distro-alpine-3.18",
+            "url": "https://www.cve.org/CVERecord?id=CVE-2024-20921"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "unknown"
+        }
+      ],
+      "advisories": [
+        {
+          "url": "https://www.cve.org/CVERecord?id=CVE-2024-20921"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:apk/alpine/openjdk11-jre@11.0.21_p9-r0?arch=x86_64&upstream=openjdk11&distro=alpine-3.18.5&package-id=d34cbfbd5f8e3526"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:4c1b9f4f-405f-477f-9e7e-b0a59348ad55",
+      "id": "CVE-2024-20921",
+      "source": {
+        "name": "alpine-distro-alpine-3.18",
+        "url": "https://www.cve.org/CVERecord?id=CVE-2024-20921"
+      },
+      "references": [
+        {
+          "id": "CVE-2024-20921",
+          "source": {
+            "name": "alpine-distro-alpine-3.18",
+            "url": "https://www.cve.org/CVERecord?id=CVE-2024-20921"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "unknown"
+        }
+      ],
+      "advisories": [
+        {
+          "url": "https://www.cve.org/CVERecord?id=CVE-2024-20921"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:apk/alpine/openjdk11-jre-headless@11.0.21_p9-r0?arch=x86_64&upstream=openjdk11&distro=alpine-3.18.5&package-id=34fd74d73b447e27"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:6123d80e-0a5c-4e2e-a050-78d6afbe58c2",
+      "id": "CVE-2024-20926",
+      "source": {
+        "name": "alpine-distro-alpine-3.18",
+        "url": "https://www.cve.org/CVERecord?id=CVE-2024-20926"
+      },
+      "references": [
+        {
+          "id": "CVE-2024-20926",
+          "source": {
+            "name": "alpine-distro-alpine-3.18",
+            "url": "https://www.cve.org/CVERecord?id=CVE-2024-20926"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "advisories": [
+        {
+          "url": "https://www.cve.org/CVERecord?id=CVE-2024-20926"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:apk/alpine/openjdk11-jdk@11.0.21_p9-r0?arch=x86_64&upstream=openjdk11&distro=alpine-3.18.5&package-id=f4c8aaccc90d995e"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:34c8e183-103b-4eeb-b877-62e6b2b086f9",
+      "id": "CVE-2024-20926",
+      "source": {
+        "name": "alpine-distro-alpine-3.18",
+        "url": "https://www.cve.org/CVERecord?id=CVE-2024-20926"
+      },
+      "references": [
+        {
+          "id": "CVE-2024-20926",
+          "source": {
+            "name": "alpine-distro-alpine-3.18",
+            "url": "https://www.cve.org/CVERecord?id=CVE-2024-20926"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "advisories": [
+        {
+          "url": "https://www.cve.org/CVERecord?id=CVE-2024-20926"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:apk/alpine/openjdk11-jmods@11.0.21_p9-r0?arch=x86_64&upstream=openjdk11&distro=alpine-3.18.5&package-id=ca527a5de9a8839a"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:6f3a34c7-7523-4852-a9e6-ad8e45eb5052",
+      "id": "CVE-2024-20926",
+      "source": {
+        "name": "alpine-distro-alpine-3.18",
+        "url": "https://www.cve.org/CVERecord?id=CVE-2024-20926"
+      },
+      "references": [
+        {
+          "id": "CVE-2024-20926",
+          "source": {
+            "name": "alpine-distro-alpine-3.18",
+            "url": "https://www.cve.org/CVERecord?id=CVE-2024-20926"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "advisories": [
+        {
+          "url": "https://www.cve.org/CVERecord?id=CVE-2024-20926"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:apk/alpine/openjdk11-jre@11.0.21_p9-r0?arch=x86_64&upstream=openjdk11&distro=alpine-3.18.5&package-id=d34cbfbd5f8e3526"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:0e7bdb8c-7f92-4d5a-a8c2-a9ae43e12e8c",
+      "id": "CVE-2024-20926",
+      "source": {
+        "name": "alpine-distro-alpine-3.18",
+        "url": "https://www.cve.org/CVERecord?id=CVE-2024-20926"
+      },
+      "references": [
+        {
+          "id": "CVE-2024-20926",
+          "source": {
+            "name": "alpine-distro-alpine-3.18",
+            "url": "https://www.cve.org/CVERecord?id=CVE-2024-20926"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "advisories": [
+        {
+          "url": "https://www.cve.org/CVERecord?id=CVE-2024-20926"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:apk/alpine/openjdk11-jre-headless@11.0.21_p9-r0?arch=x86_64&upstream=openjdk11&distro=alpine-3.18.5&package-id=34fd74d73b447e27"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:f87cc646-3dc5-4896-b11e-0e64cce9c142",
+      "id": "CVE-2024-20945",
+      "source": {
+        "name": "alpine-distro-alpine-3.18",
+        "url": "https://www.cve.org/CVERecord?id=CVE-2024-20945"
+      },
+      "references": [
+        {
+          "id": "CVE-2024-20945",
+          "source": {
+            "name": "alpine-distro-alpine-3.18",
+            "url": "https://www.cve.org/CVERecord?id=CVE-2024-20945"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "unknown"
+        }
+      ],
+      "advisories": [
+        {
+          "url": "https://www.cve.org/CVERecord?id=CVE-2024-20945"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:apk/alpine/openjdk11-jdk@11.0.21_p9-r0?arch=x86_64&upstream=openjdk11&distro=alpine-3.18.5&package-id=f4c8aaccc90d995e"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:b17eb2f7-48f3-4217-8672-9b085fd65325",
+      "id": "CVE-2024-20945",
+      "source": {
+        "name": "alpine-distro-alpine-3.18",
+        "url": "https://www.cve.org/CVERecord?id=CVE-2024-20945"
+      },
+      "references": [
+        {
+          "id": "CVE-2024-20945",
+          "source": {
+            "name": "alpine-distro-alpine-3.18",
+            "url": "https://www.cve.org/CVERecord?id=CVE-2024-20945"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "unknown"
+        }
+      ],
+      "advisories": [
+        {
+          "url": "https://www.cve.org/CVERecord?id=CVE-2024-20945"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:apk/alpine/openjdk11-jmods@11.0.21_p9-r0?arch=x86_64&upstream=openjdk11&distro=alpine-3.18.5&package-id=ca527a5de9a8839a"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:907aca39-58de-4b18-82f3-8f7e5a863f1d",
+      "id": "CVE-2024-20945",
+      "source": {
+        "name": "alpine-distro-alpine-3.18",
+        "url": "https://www.cve.org/CVERecord?id=CVE-2024-20945"
+      },
+      "references": [
+        {
+          "id": "CVE-2024-20945",
+          "source": {
+            "name": "alpine-distro-alpine-3.18",
+            "url": "https://www.cve.org/CVERecord?id=CVE-2024-20945"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "unknown"
+        }
+      ],
+      "advisories": [
+        {
+          "url": "https://www.cve.org/CVERecord?id=CVE-2024-20945"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:apk/alpine/openjdk11-jre@11.0.21_p9-r0?arch=x86_64&upstream=openjdk11&distro=alpine-3.18.5&package-id=d34cbfbd5f8e3526"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:cae699b3-4006-4405-8c18-7b0215a7c950",
+      "id": "CVE-2024-20945",
+      "source": {
+        "name": "alpine-distro-alpine-3.18",
+        "url": "https://www.cve.org/CVERecord?id=CVE-2024-20945"
+      },
+      "references": [
+        {
+          "id": "CVE-2024-20945",
+          "source": {
+            "name": "alpine-distro-alpine-3.18",
+            "url": "https://www.cve.org/CVERecord?id=CVE-2024-20945"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "unknown"
+        }
+      ],
+      "advisories": [
+        {
+          "url": "https://www.cve.org/CVERecord?id=CVE-2024-20945"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:apk/alpine/openjdk11-jre-headless@11.0.21_p9-r0?arch=x86_64&upstream=openjdk11&distro=alpine-3.18.5&package-id=34fd74d73b447e27"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:25d56216-d69d-4ba3-910e-eada9643cd69",
+      "id": "CVE-2024-20952",
+      "source": {
+        "name": "alpine-distro-alpine-3.18",
+        "url": "https://www.cve.org/CVERecord?id=CVE-2024-20952"
+      },
+      "references": [
+        {
+          "id": "CVE-2024-20952",
+          "source": {
+            "name": "alpine-distro-alpine-3.18",
+            "url": "https://www.cve.org/CVERecord?id=CVE-2024-20952"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "high"
+        }
+      ],
+      "advisories": [
+        {
+          "url": "https://www.cve.org/CVERecord?id=CVE-2024-20952"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:apk/alpine/openjdk11-jdk@11.0.21_p9-r0?arch=x86_64&upstream=openjdk11&distro=alpine-3.18.5&package-id=f4c8aaccc90d995e"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:a1dacb29-fb11-4244-ab00-7b99e2a4533f",
+      "id": "CVE-2024-20952",
+      "source": {
+        "name": "alpine-distro-alpine-3.18",
+        "url": "https://www.cve.org/CVERecord?id=CVE-2024-20952"
+      },
+      "references": [
+        {
+          "id": "CVE-2024-20952",
+          "source": {
+            "name": "alpine-distro-alpine-3.18",
+            "url": "https://www.cve.org/CVERecord?id=CVE-2024-20952"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "high"
+        }
+      ],
+      "advisories": [
+        {
+          "url": "https://www.cve.org/CVERecord?id=CVE-2024-20952"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:apk/alpine/openjdk11-jmods@11.0.21_p9-r0?arch=x86_64&upstream=openjdk11&distro=alpine-3.18.5&package-id=ca527a5de9a8839a"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:cbf71b3e-c645-4bd9-85a7-654d63ac91ea",
+      "id": "CVE-2024-20952",
+      "source": {
+        "name": "alpine-distro-alpine-3.18",
+        "url": "https://www.cve.org/CVERecord?id=CVE-2024-20952"
+      },
+      "references": [
+        {
+          "id": "CVE-2024-20952",
+          "source": {
+            "name": "alpine-distro-alpine-3.18",
+            "url": "https://www.cve.org/CVERecord?id=CVE-2024-20952"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "high"
+        }
+      ],
+      "advisories": [
+        {
+          "url": "https://www.cve.org/CVERecord?id=CVE-2024-20952"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:apk/alpine/openjdk11-jre@11.0.21_p9-r0?arch=x86_64&upstream=openjdk11&distro=alpine-3.18.5&package-id=d34cbfbd5f8e3526"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:089b0c5a-9448-400c-8254-f12703a478a2",
+      "id": "CVE-2024-20952",
+      "source": {
+        "name": "alpine-distro-alpine-3.18",
+        "url": "https://www.cve.org/CVERecord?id=CVE-2024-20952"
+      },
+      "references": [
+        {
+          "id": "CVE-2024-20952",
+          "source": {
+            "name": "alpine-distro-alpine-3.18",
+            "url": "https://www.cve.org/CVERecord?id=CVE-2024-20952"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "high"
+        }
+      ],
+      "advisories": [
+        {
+          "url": "https://www.cve.org/CVERecord?id=CVE-2024-20952"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:apk/alpine/openjdk11-jre-headless@11.0.21_p9-r0?arch=x86_64&upstream=openjdk11&distro=alpine-3.18.5&package-id=34fd74d73b447e27"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:3d8cc48d-8d50-4690-b1a6-40cc9ed20818",
+      "id": "GHSA-vmq6-5m68-f53m",
+      "source": {
+        "name": "github-language-java",
+        "url": "https://github.com/advisories/GHSA-vmq6-5m68-f53m"
+      },
+      "references": [
+        {
+          "id": "GHSA-vmq6-5m68-f53m",
+          "source": {
+            "name": "github-language-java",
+            "url": "https://github.com/advisories/GHSA-vmq6-5m68-f53m"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "score": 7.1,
+          "severity": "high",
+          "method": "CVSSv31",
+          "vector": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H"
+        }
+      ],
+      "description": "logback serialization vulnerability",
+      "advisories": [
+        {
+          "url": "https://github.com/advisories/GHSA-vmq6-5m68-f53m"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:maven/ch.qos.logback/logback-classic@1.2.11?package-id=aea70248c5c9b0ce"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:8760fd53-3de8-4116-8c7f-38394a8e076b",
+      "id": "GHSA-vmq6-5m68-f53m",
+      "source": {
+        "name": "github-language-java",
+        "url": "https://github.com/advisories/GHSA-vmq6-5m68-f53m"
+      },
+      "references": [
+        {
+          "id": "GHSA-vmq6-5m68-f53m",
+          "source": {
+            "name": "github-language-java",
+            "url": "https://github.com/advisories/GHSA-vmq6-5m68-f53m"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "score": 7.1,
+          "severity": "high",
+          "method": "CVSSv31",
+          "vector": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H"
+        }
+      ],
+      "description": "logback serialization vulnerability",
+      "advisories": [
+        {
+          "url": "https://github.com/advisories/GHSA-vmq6-5m68-f53m"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:maven/ch.qos.logback/logback-core@1.2.11?package-id=3500ab4d757ec85b"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:ea77a0f0-6ec9-47a8-b0fb-941a0e9170d2",
+      "id": "GHSA-xpw8-rcwv-8f8p",
+      "source": {
+        "name": "github-language-java",
+        "url": "https://github.com/advisories/GHSA-xpw8-rcwv-8f8p"
+      },
+      "references": [
+        {
+          "id": "GHSA-xpw8-rcwv-8f8p",
+          "source": {
+            "name": "github-language-java",
+            "url": "https://github.com/advisories/GHSA-xpw8-rcwv-8f8p"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "score": 7.5,
+          "severity": "high",
+          "method": "CVSSv31",
+          "vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"
+        }
+      ],
+      "description": "io.netty:netty-codec-http2 vulnerable to HTTP/2 Rapid Reset Attack",
+      "advisories": [
+        {
+          "url": "https://github.com/advisories/GHSA-xpw8-rcwv-8f8p"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:maven/io.netty/netty-codec-http2@4.1.96.Final?package-id=b08bf9e672932f3b"
+        }
+      ]
+    }
+  ]
+}
diff --git a/src/graph_notebook/notebooks/02-Neptune-Analytics/03-Sample-Use-Cases/03-Software-Bill-Of-Materials/example_sboms/02/gremlin-server-3-7-1-cydx.json b/src/graph_notebook/notebooks/02-Neptune-Analytics/03-Sample-Use-Cases/03-Software-Bill-Of-Materials/example_sboms/02/gremlin-server-3-7-1-cydx.json
new file mode 100644
index 00000000..d641c227
--- /dev/null
+++ b/src/graph_notebook/notebooks/02-Neptune-Analytics/03-Sample-Use-Cases/03-Software-Bill-Of-Materials/example_sboms/02/gremlin-server-3-7-1-cydx.json
@@ -0,0 +1,19473 @@
+{
+  "$schema": "http://cyclonedx.org/schema/bom-1.5.schema.json",
+  "bomFormat": "CycloneDX",
+  "specVersion": "1.5",
+  "serialNumber": "urn:uuid:a3d94727-df1b-4963-8915-c078ae2f5dde",
+  "version": 1,
+  "metadata": {
+    "timestamp": "2024-01-29T09:29:45-09:00",
+    "tools": {
+      "components": [
+        {
+          "type": "application",
+          "author": "anchore",
+          "name": "grype",
+          "version": "0.74.3"
+        }
+      ]
+    },
+    "component": {
+      "bom-ref": "ec71c063789ffb2e",
+      "type": "container",
+      "name": "tinkerpop/gremlin-server",
+      "version": "sha256:8c130c445a176a98cd4f31ecca614c61adb46bf3ea3840f08184987fd15f00d8"
+    },
+    "properties": [
+      {
+        "name": "syft:image:labels:maintainer",
+        "value": "dev@tinkerpop.apache.org"
+      }
+    ]
+  },
+  "components": [
+    {
+      "bom-ref": "pkg:apk/alpine/alpine-baselayout@3.4.3-r1?arch=x86_64&distro=alpine-3.18.5&package-id=baca676b3df82a63",
+      "type": "library",
+      "publisher": "Natanael Copa <ncopa@alpinelinux.org>",
+      "name": "alpine-baselayout",
+      "version": "3.4.3-r1",
+      "description": "Alpine base dir structure and init scripts",
+      "licenses": [
+        {
+          "license": {
+            "id": "GPL-2.0-only"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:alpine-baselayout:alpine-baselayout:3.4.3-r1:*:*:*:*:*:*:*",
+      "purl": "pkg:apk/alpine/alpine-baselayout@3.4.3-r1?arch=x86_64&distro=alpine-3.18.5",
+      "externalReferences": [
+        {
+          "url": "https://git.alpinelinux.org/cgit/aports/tree/main/alpine-baselayout",
+          "type": "distribution"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "apk-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "apk"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "apk-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:alpine-baselayout:alpine_baselayout:3.4.3-r1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:alpine_baselayout:alpine-baselayout:3.4.3-r1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:alpine_baselayout:alpine_baselayout:3.4.3-r1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:alpine:alpine-baselayout:3.4.3-r1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:alpine:alpine_baselayout:3.4.3-r1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:040ab99b6ccfaee2ade0def5bb35be6512e03860bd46bb9752a6c47709997f24"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/lib/apk/db/installed"
+        },
+        {
+          "name": "syft:metadata:gitCommitOfApkPort",
+          "value": "65502ca9379dd29d1ac4b0bf0dcf03a3dd1b324a"
+        },
+        {
+          "name": "syft:metadata:installedSize",
+          "value": "331776"
+        },
+        {
+          "name": "syft:metadata:originPackage",
+          "value": "alpine-baselayout"
+        },
+        {
+          "name": "syft:metadata:pullChecksum",
+          "value": "Q1zwvKMnYs1b6ZdPTBJ0Z7D5P3jyA="
+        },
+        {
+          "name": "syft:metadata:pullDependencies:0",
+          "value": "alpine-baselayout-data=3.4.3-r1"
+        },
+        {
+          "name": "syft:metadata:pullDependencies:1",
+          "value": "/bin/sh"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "8914"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:apk/alpine/alpine-baselayout-data@3.4.3-r1?arch=x86_64&upstream=alpine-baselayout&distro=alpine-3.18.5&package-id=85e34641ddeca26c",
+      "type": "library",
+      "publisher": "Natanael Copa <ncopa@alpinelinux.org>",
+      "name": "alpine-baselayout-data",
+      "version": "3.4.3-r1",
+      "description": "Alpine base dir structure and init scripts",
+      "licenses": [
+        {
+          "license": {
+            "id": "GPL-2.0-only"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:alpine-baselayout-data:alpine-baselayout-data:3.4.3-r1:*:*:*:*:*:*:*",
+      "purl": "pkg:apk/alpine/alpine-baselayout-data@3.4.3-r1?arch=x86_64&upstream=alpine-baselayout&distro=alpine-3.18.5",
+      "externalReferences": [
+        {
+          "url": "https://git.alpinelinux.org/cgit/aports/tree/main/alpine-baselayout",
+          "type": "distribution"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "apk-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "apk"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "apk-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:alpine-baselayout-data:alpine_baselayout_data:3.4.3-r1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:alpine_baselayout_data:alpine-baselayout-data:3.4.3-r1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:alpine_baselayout_data:alpine_baselayout_data:3.4.3-r1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:alpine-baselayout:alpine-baselayout-data:3.4.3-r1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:alpine-baselayout:alpine_baselayout_data:3.4.3-r1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:alpine_baselayout:alpine-baselayout-data:3.4.3-r1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:alpine_baselayout:alpine_baselayout_data:3.4.3-r1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:alpine:alpine-baselayout-data:3.4.3-r1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:alpine:alpine_baselayout_data:3.4.3-r1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:040ab99b6ccfaee2ade0def5bb35be6512e03860bd46bb9752a6c47709997f24"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/lib/apk/db/installed"
+        },
+        {
+          "name": "syft:metadata:gitCommitOfApkPort",
+          "value": "65502ca9379dd29d1ac4b0bf0dcf03a3dd1b324a"
+        },
+        {
+          "name": "syft:metadata:installedSize",
+          "value": "77824"
+        },
+        {
+          "name": "syft:metadata:originPackage",
+          "value": "alpine-baselayout"
+        },
+        {
+          "name": "syft:metadata:pullChecksum",
+          "value": "Q1YCAH7jdO2W816b85sUh9Z8av4Cc="
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "11705"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:apk/alpine/alpine-keys@2.4-r1?arch=x86_64&distro=alpine-3.18.5&package-id=c3e1269ff75aa1d8",
+      "type": "library",
+      "publisher": "Natanael Copa <ncopa@alpinelinux.org>",
+      "name": "alpine-keys",
+      "version": "2.4-r1",
+      "description": "Public keys for Alpine Linux packages",
+      "licenses": [
+        {
+          "license": {
+            "id": "MIT"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:alpine-keys:alpine-keys:2.4-r1:*:*:*:*:*:*:*",
+      "purl": "pkg:apk/alpine/alpine-keys@2.4-r1?arch=x86_64&distro=alpine-3.18.5",
+      "externalReferences": [
+        {
+          "url": "https://alpinelinux.org",
+          "type": "distribution"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "apk-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "apk"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "apk-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:alpine-keys:alpine_keys:2.4-r1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:alpine_keys:alpine-keys:2.4-r1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:alpine_keys:alpine_keys:2.4-r1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:alpine:alpine-keys:2.4-r1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:alpine:alpine_keys:2.4-r1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:040ab99b6ccfaee2ade0def5bb35be6512e03860bd46bb9752a6c47709997f24"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/lib/apk/db/installed"
+        },
+        {
+          "name": "syft:metadata:gitCommitOfApkPort",
+          "value": "aab68f8c9ab434a46710de8e12fb3206e2930a59"
+        },
+        {
+          "name": "syft:metadata:installedSize",
+          "value": "159744"
+        },
+        {
+          "name": "syft:metadata:originPackage",
+          "value": "alpine-keys"
+        },
+        {
+          "name": "syft:metadata:pullChecksum",
+          "value": "Q17Do9XvTHoWjQlRYJe7MhnKd8FTQ="
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "13360"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:apk/alpine/alsa-lib@1.2.9-r1?arch=x86_64&distro=alpine-3.18.5&package-id=84af028d92e1ce12",
+      "type": "library",
+      "publisher": "Natanael Copa <ncopa@alpinelinux.org>",
+      "name": "alsa-lib",
+      "version": "1.2.9-r1",
+      "description": "Advanced Linux Sound Architecture (ALSA) library",
+      "licenses": [
+        {
+          "license": {
+            "id": "LGPL-2.1-or-later"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:alsa-project:alsa-lib:1.2.9-r1:*:*:*:*:*:*:*",
+      "purl": "pkg:apk/alpine/alsa-lib@1.2.9-r1?arch=x86_64&distro=alpine-3.18.5",
+      "externalReferences": [
+        {
+          "url": "https://alsa-project.org/",
+          "type": "distribution"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "apk-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "apk"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "apk-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:alsa-project:alsa_lib:1.2.9-r1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:alsa_project:alsa-lib:1.2.9-r1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:alsa_project:alsa_lib:1.2.9-r1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:alsa-lib:alsa-lib:1.2.9-r1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:alsa-lib:alsa_lib:1.2.9-r1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:alsa_lib:alsa-lib:1.2.9-r1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:alsa_lib:alsa_lib:1.2.9-r1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:alsa:alsa-lib:1.2.9-r1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:alsa:alsa_lib:1.2.9-r1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:040ab99b6ccfaee2ade0def5bb35be6512e03860bd46bb9752a6c47709997f24"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/lib/apk/db/installed"
+        },
+        {
+          "name": "syft:metadata:gitCommitOfApkPort",
+          "value": "a5d78c0f47ebdd8521f0809ea7bc4b7ef526e1f7"
+        },
+        {
+          "name": "syft:metadata:installedSize",
+          "value": "1470464"
+        },
+        {
+          "name": "syft:metadata:originPackage",
+          "value": "alsa-lib"
+        },
+        {
+          "name": "syft:metadata:provides:0",
+          "value": "so:libasound.so.2=2.0.0"
+        },
+        {
+          "name": "syft:metadata:provides:1",
+          "value": "so:libatopology.so.2=2.0.0"
+        },
+        {
+          "name": "syft:metadata:provides:2",
+          "value": "cmd:aserver=1.2.9-r1"
+        },
+        {
+          "name": "syft:metadata:pullChecksum",
+          "value": "Q1Bid3XFe3LYDX5WrQuAzs8Xlw5wY="
+        },
+        {
+          "name": "syft:metadata:pullDependencies:0",
+          "value": "so:libc.musl-x86_64.so.1"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "467771"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/org.antlr/antlr4-runtime@4.9.1?package-id=2b8ed8aa56a0c104",
+      "type": "library",
+      "group": "org.antlr",
+      "name": "antlr4-runtime",
+      "version": "4.9.1",
+      "licenses": [
+        {
+          "license": {
+            "name": "http://www.antlr.org/license.html"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:antlr4-runtime:antlr4-runtime:4.9.1:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/org.antlr/antlr4-runtime@4.9.1",
+      "externalReferences": [
+        {
+          "url": "",
+          "hashes": [
+            {
+              "alg": "SHA-1",
+              "content": "428664f05d2b7f7b7610204b5aa7c1763f62011a"
+            }
+          ],
+          "type": "build-meta"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:antlr4-runtime:antlr4_runtime:4.9.1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:antlr4_runtime:antlr4-runtime:4.9.1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:antlr4_runtime:antlr4_runtime:4.9.1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:antlr4:antlr4-runtime:4.9.1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:antlr4:antlr4_runtime:4.9.1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:antlr:antlr4-runtime:4.9.1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:antlr:antlr4_runtime:4.9.1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:9168aa9edf57e27178cf19177cd017cbde863db4b32b192859f2e4e224236750"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-server/lib/antlr4-runtime-4.9.1.jar"
+        },
+        {
+          "name": "syft:metadata:-:artifactID",
+          "value": "antlr4-runtime"
+        },
+        {
+          "name": "syft:metadata:-:groupID",
+          "value": "org.antlr"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-server/lib/antlr4-runtime-4.9.1.jar"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:apk/alpine/apk-tools@2.14.0-r2?arch=x86_64&distro=alpine-3.18.5&package-id=e54b9e6921a9482e",
+      "type": "library",
+      "publisher": "Natanael Copa <ncopa@alpinelinux.org>",
+      "name": "apk-tools",
+      "version": "2.14.0-r2",
+      "description": "Alpine Package Keeper - package manager for alpine",
+      "licenses": [
+        {
+          "license": {
+            "id": "GPL-2.0-only"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:apk-tools:apk-tools:2.14.0-r2:*:*:*:*:*:*:*",
+      "purl": "pkg:apk/alpine/apk-tools@2.14.0-r2?arch=x86_64&distro=alpine-3.18.5",
+      "externalReferences": [
+        {
+          "url": "https://gitlab.alpinelinux.org/alpine/apk-tools",
+          "type": "distribution"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "apk-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "apk"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "apk-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:apk-tools:apk_tools:2.14.0-r2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:apk_tools:apk-tools:2.14.0-r2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:apk_tools:apk_tools:2.14.0-r2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:apk:apk-tools:2.14.0-r2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:apk:apk_tools:2.14.0-r2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:040ab99b6ccfaee2ade0def5bb35be6512e03860bd46bb9752a6c47709997f24"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/lib/apk/db/installed"
+        },
+        {
+          "name": "syft:metadata:gitCommitOfApkPort",
+          "value": "cbaf845cd82388decc932885aa5b6d695bd8a306"
+        },
+        {
+          "name": "syft:metadata:installedSize",
+          "value": "311296"
+        },
+        {
+          "name": "syft:metadata:originPackage",
+          "value": "apk-tools"
+        },
+        {
+          "name": "syft:metadata:provides:0",
+          "value": "so:libapk.so.2.14.0=2.14.0"
+        },
+        {
+          "name": "syft:metadata:provides:1",
+          "value": "cmd:apk=2.14.0-r2"
+        },
+        {
+          "name": "syft:metadata:pullChecksum",
+          "value": "Q1jN4l8jnr9pHNE1o5VOUZPBrCrhM="
+        },
+        {
+          "name": "syft:metadata:pullDependencies:0",
+          "value": "musl>=1.2.3_git20230424"
+        },
+        {
+          "name": "syft:metadata:pullDependencies:1",
+          "value": "ca-certificates-bundle"
+        },
+        {
+          "name": "syft:metadata:pullDependencies:2",
+          "value": "so:libc.musl-x86_64.so.1"
+        },
+        {
+          "name": "syft:metadata:pullDependencies:3",
+          "value": "so:libcrypto.so.3"
+        },
+        {
+          "name": "syft:metadata:pullDependencies:4",
+          "value": "so:libssl.so.3"
+        },
+        {
+          "name": "syft:metadata:pullDependencies:5",
+          "value": "so:libz.so.1"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "125679"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:apk/alpine/bash@5.2.15-r5?arch=x86_64&distro=alpine-3.18.5&package-id=983290b85e1513d6",
+      "type": "library",
+      "publisher": "Natanael Copa <ncopa@alpinelinux.org>",
+      "name": "bash",
+      "version": "5.2.15-r5",
+      "description": "The GNU Bourne Again shell",
+      "licenses": [
+        {
+          "license": {
+            "id": "GPL-3.0-or-later"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:bash:bash:5.2.15-r5:*:*:*:*:*:*:*",
+      "purl": "pkg:apk/alpine/bash@5.2.15-r5?arch=x86_64&distro=alpine-3.18.5",
+      "externalReferences": [
+        {
+          "url": "https://www.gnu.org/software/bash/bash.html",
+          "type": "distribution"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "apk-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "apk"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "apk-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:gnu:bash:5.2.15-r5:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:040ab99b6ccfaee2ade0def5bb35be6512e03860bd46bb9752a6c47709997f24"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/lib/apk/db/installed"
+        },
+        {
+          "name": "syft:metadata:gitCommitOfApkPort",
+          "value": "2aa177cc9c474c6af1015efeb7ef4f83476e631a"
+        },
+        {
+          "name": "syft:metadata:installedSize",
+          "value": "1392640"
+        },
+        {
+          "name": "syft:metadata:originPackage",
+          "value": "bash"
+        },
+        {
+          "name": "syft:metadata:provides:0",
+          "value": "cmd:bash=5.2.15-r5"
+        },
+        {
+          "name": "syft:metadata:pullChecksum",
+          "value": "Q1YHmqduf1TgcoH8ykhzAfbBJpQVs="
+        },
+        {
+          "name": "syft:metadata:pullDependencies:0",
+          "value": "/bin/sh"
+        },
+        {
+          "name": "syft:metadata:pullDependencies:1",
+          "value": "so:libc.musl-x86_64.so.1"
+        },
+        {
+          "name": "syft:metadata:pullDependencies:2",
+          "value": "so:libreadline.so.8"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "457087"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:apk/alpine/brotli-libs@1.0.9-r14?arch=x86_64&upstream=brotli&distro=alpine-3.18.5&package-id=31257dfa21df951d",
+      "type": "library",
+      "publisher": "prspkt <prspkt@protonmail.com>",
+      "name": "brotli-libs",
+      "version": "1.0.9-r14",
+      "description": "Generic lossless compressor (libraries)",
+      "licenses": [
+        {
+          "license": {
+            "id": "MIT"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:brotli-libs:brotli-libs:1.0.9-r14:*:*:*:*:*:*:*",
+      "purl": "pkg:apk/alpine/brotli-libs@1.0.9-r14?arch=x86_64&upstream=brotli&distro=alpine-3.18.5",
+      "externalReferences": [
+        {
+          "url": "https://github.com/google/brotli",
+          "type": "distribution"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "apk-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "apk"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "apk-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:brotli-libs:brotli_libs:1.0.9-r14:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:brotli_libs:brotli-libs:1.0.9-r14:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:brotli_libs:brotli_libs:1.0.9-r14:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:brotli:brotli-libs:1.0.9-r14:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:brotli:brotli_libs:1.0.9-r14:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:google:brotli-libs:1.0.9-r14:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:google:brotli_libs:1.0.9-r14:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:040ab99b6ccfaee2ade0def5bb35be6512e03860bd46bb9752a6c47709997f24"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/lib/apk/db/installed"
+        },
+        {
+          "name": "syft:metadata:gitCommitOfApkPort",
+          "value": "0a1208f4924921ba3c0fba5429338a5990f1741c"
+        },
+        {
+          "name": "syft:metadata:installedSize",
+          "value": "806912"
+        },
+        {
+          "name": "syft:metadata:originPackage",
+          "value": "brotli"
+        },
+        {
+          "name": "syft:metadata:provides:0",
+          "value": "so:libbrotlicommon.so.1=1.0.9"
+        },
+        {
+          "name": "syft:metadata:provides:1",
+          "value": "so:libbrotlidec.so.1=1.0.9"
+        },
+        {
+          "name": "syft:metadata:provides:2",
+          "value": "so:libbrotlienc.so.1=1.0.9"
+        },
+        {
+          "name": "syft:metadata:pullChecksum",
+          "value": "Q1SLIAbTXN3oSaGPfK2/rxfJJzEw8="
+        },
+        {
+          "name": "syft:metadata:pullDependencies:0",
+          "value": "so:libc.musl-x86_64.so.1"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "348557"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:apk/alpine/busybox@1.36.1-r5?arch=x86_64&distro=alpine-3.18.5&package-id=c4cadec7a04f67ce",
+      "type": "library",
+      "publisher": "Sören Tempel <soeren+alpine@soeren-tempel.net>",
+      "name": "busybox",
+      "version": "1.36.1-r5",
+      "description": "Size optimized toolbox of many common UNIX utilities",
+      "licenses": [
+        {
+          "license": {
+            "id": "GPL-2.0-only"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:busybox:busybox:1.36.1-r5:*:*:*:*:*:*:*",
+      "purl": "pkg:apk/alpine/busybox@1.36.1-r5?arch=x86_64&distro=alpine-3.18.5",
+      "externalReferences": [
+        {
+          "url": "https://busybox.net/",
+          "type": "distribution"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "apk-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "apk"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "apk-db-entry"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:040ab99b6ccfaee2ade0def5bb35be6512e03860bd46bb9752a6c47709997f24"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/lib/apk/db/installed"
+        },
+        {
+          "name": "syft:metadata:gitCommitOfApkPort",
+          "value": "cdf3c00435d52908f962c9ff009fc5c6f2f31f99"
+        },
+        {
+          "name": "syft:metadata:installedSize",
+          "value": "946176"
+        },
+        {
+          "name": "syft:metadata:originPackage",
+          "value": "busybox"
+        },
+        {
+          "name": "syft:metadata:provides:0",
+          "value": "cmd:busybox=1.36.1-r5"
+        },
+        {
+          "name": "syft:metadata:pullChecksum",
+          "value": "Q1aBWv1Kn2ASOLShUeDPoSLaozuMs="
+        },
+        {
+          "name": "syft:metadata:pullDependencies:0",
+          "value": "so:libc.musl-x86_64.so.1"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "510005"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:apk/alpine/busybox-binsh@1.36.1-r5?arch=x86_64&upstream=busybox&distro=alpine-3.18.5&package-id=ea8601e6fdd7765c",
+      "type": "library",
+      "publisher": "Sören Tempel <soeren+alpine@soeren-tempel.net>",
+      "name": "busybox-binsh",
+      "version": "1.36.1-r5",
+      "description": "busybox ash /bin/sh",
+      "licenses": [
+        {
+          "license": {
+            "id": "GPL-2.0-only"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:busybox-binsh:busybox-binsh:1.36.1-r5:*:*:*:*:*:*:*",
+      "purl": "pkg:apk/alpine/busybox-binsh@1.36.1-r5?arch=x86_64&upstream=busybox&distro=alpine-3.18.5",
+      "externalReferences": [
+        {
+          "url": "https://busybox.net/",
+          "type": "distribution"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "apk-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "apk"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "apk-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:busybox-binsh:busybox_binsh:1.36.1-r5:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:busybox_binsh:busybox-binsh:1.36.1-r5:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:busybox_binsh:busybox_binsh:1.36.1-r5:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:busybox:busybox-binsh:1.36.1-r5:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:busybox:busybox_binsh:1.36.1-r5:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:040ab99b6ccfaee2ade0def5bb35be6512e03860bd46bb9752a6c47709997f24"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/lib/apk/db/installed"
+        },
+        {
+          "name": "syft:metadata:gitCommitOfApkPort",
+          "value": "cdf3c00435d52908f962c9ff009fc5c6f2f31f99"
+        },
+        {
+          "name": "syft:metadata:installedSize",
+          "value": "8192"
+        },
+        {
+          "name": "syft:metadata:originPackage",
+          "value": "busybox"
+        },
+        {
+          "name": "syft:metadata:provides:0",
+          "value": "/bin/sh"
+        },
+        {
+          "name": "syft:metadata:provides:1",
+          "value": "cmd:sh=1.36.1-r5"
+        },
+        {
+          "name": "syft:metadata:pullChecksum",
+          "value": "Q15fBkcCHhCSy+P6TPSptuqyKrf0Y="
+        },
+        {
+          "name": "syft:metadata:pullDependencies:0",
+          "value": "busybox=1.36.1-r5"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "1541"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:apk/alpine/ca-certificates@20230506-r0?arch=x86_64&distro=alpine-3.18.5&package-id=34619f88311d4e5e",
+      "type": "library",
+      "publisher": "Natanael Copa <ncopa@alpinelinux.org>",
+      "name": "ca-certificates",
+      "version": "20230506-r0",
+      "description": "Common CA certificates PEM files from Mozilla",
+      "licenses": [
+        {
+          "expression": "MPL-2.0 AND MIT"
+        }
+      ],
+      "cpe": "cpe:2.3:a:ca-certificates:ca-certificates:20230506-r0:*:*:*:*:*:*:*",
+      "purl": "pkg:apk/alpine/ca-certificates@20230506-r0?arch=x86_64&distro=alpine-3.18.5",
+      "externalReferences": [
+        {
+          "url": "https://www.mozilla.org/en-US/about/governance/policies/security-group/certs/",
+          "type": "distribution"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "apk-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "apk"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "apk-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:ca-certificates:ca_certificates:20230506-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:ca_certificates:ca-certificates:20230506-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:ca_certificates:ca_certificates:20230506-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:mozilla:ca-certificates:20230506-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:mozilla:ca_certificates:20230506-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:ca:ca-certificates:20230506-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:ca:ca_certificates:20230506-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:040ab99b6ccfaee2ade0def5bb35be6512e03860bd46bb9752a6c47709997f24"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/lib/apk/db/installed"
+        },
+        {
+          "name": "syft:metadata:gitCommitOfApkPort",
+          "value": "59534a02716a92a10d177a118c34066162eff4a6"
+        },
+        {
+          "name": "syft:metadata:installedSize",
+          "value": "704512"
+        },
+        {
+          "name": "syft:metadata:originPackage",
+          "value": "ca-certificates"
+        },
+        {
+          "name": "syft:metadata:provides:0",
+          "value": "cmd:c_rehash=20230506-r0"
+        },
+        {
+          "name": "syft:metadata:provides:1",
+          "value": "cmd:update-ca-certificates=20230506-r0"
+        },
+        {
+          "name": "syft:metadata:pullChecksum",
+          "value": "Q1FG8M+7w+dkjV9Vy0mGFWW2t4+Do="
+        },
+        {
+          "name": "syft:metadata:pullDependencies:0",
+          "value": "/bin/sh"
+        },
+        {
+          "name": "syft:metadata:pullDependencies:1",
+          "value": "so:libc.musl-x86_64.so.1"
+        },
+        {
+          "name": "syft:metadata:pullDependencies:2",
+          "value": "so:libcrypto.so.3"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "157021"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:apk/alpine/ca-certificates-bundle@20230506-r0?arch=x86_64&upstream=ca-certificates&distro=alpine-3.18.5&package-id=e6d1b63d5a046c55",
+      "type": "library",
+      "publisher": "Natanael Copa <ncopa@alpinelinux.org>",
+      "name": "ca-certificates-bundle",
+      "version": "20230506-r0",
+      "description": "Pre generated bundle of Mozilla certificates",
+      "licenses": [
+        {
+          "expression": "MPL-2.0 AND MIT"
+        }
+      ],
+      "cpe": "cpe:2.3:a:ca-certificates-bundle:ca-certificates-bundle:20230506-r0:*:*:*:*:*:*:*",
+      "purl": "pkg:apk/alpine/ca-certificates-bundle@20230506-r0?arch=x86_64&upstream=ca-certificates&distro=alpine-3.18.5",
+      "externalReferences": [
+        {
+          "url": "https://www.mozilla.org/en-US/about/governance/policies/security-group/certs/",
+          "type": "distribution"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "apk-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "apk"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "apk-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:ca-certificates-bundle:ca_certificates_bundle:20230506-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:ca_certificates_bundle:ca-certificates-bundle:20230506-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:ca_certificates_bundle:ca_certificates_bundle:20230506-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:ca-certificates:ca-certificates-bundle:20230506-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:ca-certificates:ca_certificates_bundle:20230506-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:ca_certificates:ca-certificates-bundle:20230506-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:ca_certificates:ca_certificates_bundle:20230506-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:mozilla:ca-certificates-bundle:20230506-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:mozilla:ca_certificates_bundle:20230506-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:ca:ca-certificates-bundle:20230506-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:ca:ca_certificates_bundle:20230506-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:040ab99b6ccfaee2ade0def5bb35be6512e03860bd46bb9752a6c47709997f24"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/lib/apk/db/installed"
+        },
+        {
+          "name": "syft:metadata:gitCommitOfApkPort",
+          "value": "59534a02716a92a10d177a118c34066162eff4a6"
+        },
+        {
+          "name": "syft:metadata:installedSize",
+          "value": "237568"
+        },
+        {
+          "name": "syft:metadata:originPackage",
+          "value": "ca-certificates"
+        },
+        {
+          "name": "syft:metadata:provides:0",
+          "value": "ca-certificates-cacert=20230506-r0"
+        },
+        {
+          "name": "syft:metadata:pullChecksum",
+          "value": "Q1R/SF0IZwqesh6/EOcK5l3EOrbD0="
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "126311"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/com.github.ben-manes.caffeine/caffeine@2.3.1?package-id=4452d31a8b565c5c",
+      "type": "library",
+      "name": "caffeine",
+      "version": "2.3.1",
+      "cpe": "cpe:2.3:a:ben-manes:ben-manes:2.3.1:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/com.github.ben-manes.caffeine/caffeine@2.3.1",
+      "externalReferences": [
+        {
+          "url": "",
+          "hashes": [
+            {
+              "alg": "SHA-1",
+              "content": "d6aec5cbd26313a341ee7c034bd56d604f68bebe"
+            }
+          ],
+          "type": "build-meta"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:ben-manes:ben_manes:2.3.1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:ben_manes:ben-manes:2.3.1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:ben_manes:ben_manes:2.3.1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:ben-manes:caffeine:2.3.1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:ben_manes:caffeine:2.3.1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:caffeine:ben-manes:2.3.1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:caffeine:ben_manes:2.3.1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:caffeine:caffeine:2.3.1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:github:ben-manes:2.3.1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:github:ben_manes:2.3.1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:github:caffeine:2.3.1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:ben:ben-manes:2.3.1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:ben:ben_manes:2.3.1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:ben:caffeine:2.3.1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:9168aa9edf57e27178cf19177cd017cbde863db4b32b192859f2e4e224236750"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-server/lib/caffeine-2.3.1.jar"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-server/lib/caffeine-2.3.1.jar"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/commons-beanutils/commons-beanutils@1.9.4?package-id=60c8bc717b281b88",
+      "type": "library",
+      "group": "commons-beanutils",
+      "name": "commons-beanutils",
+      "version": "1.9.4",
+      "licenses": [
+        {
+          "license": {
+            "name": "https://www.apache.org/licenses/LICENSE-2.0.txt"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:apache:commons-beanutils:1.9.4:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/commons-beanutils/commons-beanutils@1.9.4",
+      "externalReferences": [
+        {
+          "url": "",
+          "hashes": [
+            {
+              "alg": "SHA-1",
+              "content": "d52b9abcd97f38c81342bb7e7ae1eee9b73cba51"
+            }
+          ],
+          "type": "build-meta"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:apache:commons_beanutils:1.9.4:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:apache:commons:1.9.4:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:9168aa9edf57e27178cf19177cd017cbde863db4b32b192859f2e4e224236750"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-server/lib/commons-beanutils-1.9.4.jar"
+        },
+        {
+          "name": "syft:metadata:-:artifactID",
+          "value": "commons-beanutils"
+        },
+        {
+          "name": "syft:metadata:-:groupID",
+          "value": "commons-beanutils"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-server/lib/commons-beanutils-1.9.4.jar"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/commons-collections/commons-collections@3.2.2?package-id=5664f757fa65eefc",
+      "type": "library",
+      "group": "commons-collections",
+      "name": "commons-collections",
+      "version": "3.2.2",
+      "licenses": [
+        {
+          "license": {
+            "name": "http://www.apache.org/licenses/LICENSE-2.0.txt"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:apache:commons-collections:3.2.2:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/commons-collections/commons-collections@3.2.2",
+      "externalReferences": [
+        {
+          "url": "",
+          "hashes": [
+            {
+              "alg": "SHA-1",
+              "content": "8ad72fe39fa8c91eaaf12aadb21e0c3661fe26d5"
+            }
+          ],
+          "type": "build-meta"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:apache:commons_collections:3.2.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:apache:collections:3.2.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:apache:commons:3.2.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:9168aa9edf57e27178cf19177cd017cbde863db4b32b192859f2e4e224236750"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-server/lib/commons-collections-3.2.2.jar"
+        },
+        {
+          "name": "syft:metadata:-:artifactID",
+          "value": "commons-collections"
+        },
+        {
+          "name": "syft:metadata:-:groupID",
+          "value": "commons-collections"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-server/lib/commons-collections-3.2.2.jar"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/org.apache.commons/commons-configuration2@2.9.0?package-id=e3fe306c9b72428c",
+      "type": "library",
+      "group": "org.apache.commons",
+      "name": "commons-configuration2",
+      "version": "2.9.0",
+      "licenses": [
+        {
+          "license": {
+            "name": "https://www.apache.org/licenses/LICENSE-2.0.txt"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:apache:commons-configuration2:2.9.0:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/org.apache.commons/commons-configuration2@2.9.0",
+      "externalReferences": [
+        {
+          "url": "",
+          "hashes": [
+            {
+              "alg": "SHA-1",
+              "content": "adc3ee6b84fc62a6e75e901d080adacb72aac61e"
+            }
+          ],
+          "type": "build-meta"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:apache:commons_configuration2:2.9.0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:apache:commons:2.9.0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:9168aa9edf57e27178cf19177cd017cbde863db4b32b192859f2e4e224236750"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-server/lib/commons-configuration2-2.9.0.jar"
+        },
+        {
+          "name": "syft:metadata:-:artifactID",
+          "value": "commons-configuration2"
+        },
+        {
+          "name": "syft:metadata:-:groupID",
+          "value": "org.apache.commons"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-server/lib/commons-configuration2-2.9.0.jar"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/org.apache.commons/commons-lang3@3.12.0?package-id=a749c484fca80ec0",
+      "type": "library",
+      "group": "org.apache.commons",
+      "name": "commons-lang3",
+      "version": "3.12.0",
+      "licenses": [
+        {
+          "license": {
+            "name": "https://www.apache.org/licenses/LICENSE-2.0.txt"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:apache:commons-lang3:3.12.0:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/org.apache.commons/commons-lang3@3.12.0",
+      "externalReferences": [
+        {
+          "url": "",
+          "hashes": [
+            {
+              "alg": "SHA-1",
+              "content": "c6842c86792ff03b9f1d1fe2aab8dc23aa6c6f0e"
+            }
+          ],
+          "type": "build-meta"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:apache:commons_lang3:3.12.0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:apache:commons:3.12.0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:apache:lang3:3.12.0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:9168aa9edf57e27178cf19177cd017cbde863db4b32b192859f2e4e224236750"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-server/lib/commons-lang3-3.12.0.jar"
+        },
+        {
+          "name": "syft:metadata:-:artifactID",
+          "value": "commons-lang3"
+        },
+        {
+          "name": "syft:metadata:-:groupID",
+          "value": "org.apache.commons"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-server/lib/commons-lang3-3.12.0.jar"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/commons-logging/commons-logging@1.2?package-id=da4791e785296d51",
+      "type": "library",
+      "group": "commons-logging",
+      "name": "commons-logging",
+      "version": "1.2",
+      "licenses": [
+        {
+          "license": {
+            "name": "http://www.apache.org/licenses/LICENSE-2.0.txt"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:apache-software-foundation:commons-logging:1.2:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/commons-logging/commons-logging@1.2",
+      "externalReferences": [
+        {
+          "url": "",
+          "hashes": [
+            {
+              "alg": "SHA-1",
+              "content": "4bfc12adfe4842bf07b657f0369c4cb522955686"
+            }
+          ],
+          "type": "build-meta"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:apache-software-foundation:commons_logging:1.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:apache_software_foundation:commons-logging:1.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:apache_software_foundation:commons_logging:1.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:commons-logging:commons-logging:1.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:commons-logging:commons_logging:1.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:commons_logging:commons-logging:1.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:commons_logging:commons_logging:1.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:commons:commons-logging:1.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:commons:commons_logging:1.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:9168aa9edf57e27178cf19177cd017cbde863db4b32b192859f2e4e224236750"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-server/lib/commons-logging-1.2.jar"
+        },
+        {
+          "name": "syft:metadata:-:artifactID",
+          "value": "commons-logging"
+        },
+        {
+          "name": "syft:metadata:-:groupID",
+          "value": "commons-logging"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-server/lib/commons-logging-1.2.jar"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/org.apache.commons/commons-text@1.10.0?package-id=6a947539ff6366ce",
+      "type": "library",
+      "group": "org.apache.commons",
+      "name": "commons-text",
+      "version": "1.10.0",
+      "licenses": [
+        {
+          "license": {
+            "name": "https://www.apache.org/licenses/LICENSE-2.0.txt"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:apache:commons-text:1.10.0:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/org.apache.commons/commons-text@1.10.0",
+      "externalReferences": [
+        {
+          "url": "",
+          "hashes": [
+            {
+              "alg": "SHA-1",
+              "content": "3363381aef8cef2dbc1023b3e3a9433b08b64e01"
+            }
+          ],
+          "type": "build-meta"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:apache:commons_text:1.10.0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:apache:commons:1.10.0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:9168aa9edf57e27178cf19177cd017cbde863db4b32b192859f2e4e224236750"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-server/lib/commons-text-1.10.0.jar"
+        },
+        {
+          "name": "syft:metadata:-:artifactID",
+          "value": "commons-text"
+        },
+        {
+          "name": "syft:metadata:-:groupID",
+          "value": "org.apache.commons"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-server/lib/commons-text-1.10.0.jar"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/net.objecthunter/exp4j@0.4.8?package-id=2399b864076a36fe",
+      "type": "library",
+      "group": "net.objecthunter",
+      "name": "exp4j",
+      "version": "0.4.8",
+      "licenses": [
+        {
+          "license": {
+            "name": "Apache License 2.0",
+            "url": "http://www.apache.org/licenses/LICENSE-2.0"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:objecthunter:exp4j:0.4.8:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/net.objecthunter/exp4j@0.4.8",
+      "externalReferences": [
+        {
+          "url": "",
+          "hashes": [
+            {
+              "alg": "SHA-1",
+              "content": "cf1cfc0f958077d86ac7452c7e36d944689b2ec4"
+            }
+          ],
+          "type": "build-meta"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:exp4j:exp4j:0.4.8:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:9168aa9edf57e27178cf19177cd017cbde863db4b32b192859f2e4e224236750"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-server/lib/exp4j-0.4.8.jar"
+        },
+        {
+          "name": "syft:metadata:-:artifactID",
+          "value": "exp4j"
+        },
+        {
+          "name": "syft:metadata:-:groupID",
+          "value": "net.objecthunter"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-server/lib/exp4j-0.4.8.jar"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:apk/alpine/freetype@2.13.0-r5?arch=x86_64&distro=alpine-3.18.5&package-id=b888151d4bc51ee8",
+      "type": "library",
+      "publisher": "Carlo Landmeter <clandmeter@alpinelinux.org>",
+      "name": "freetype",
+      "version": "2.13.0-r5",
+      "description": "TrueType font rendering library",
+      "licenses": [
+        {
+          "expression": "FTL OR GPL-2.0-or-later"
+        }
+      ],
+      "cpe": "cpe:2.3:a:freetype:freetype:2.13.0-r5:*:*:*:*:*:*:*",
+      "purl": "pkg:apk/alpine/freetype@2.13.0-r5?arch=x86_64&distro=alpine-3.18.5",
+      "externalReferences": [
+        {
+          "url": "https://www.freetype.org/",
+          "type": "distribution"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "apk-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "apk"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "apk-db-entry"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:040ab99b6ccfaee2ade0def5bb35be6512e03860bd46bb9752a6c47709997f24"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/lib/apk/db/installed"
+        },
+        {
+          "name": "syft:metadata:gitCommitOfApkPort",
+          "value": "1cca5140a90f5a2489401d8844043847a49caca6"
+        },
+        {
+          "name": "syft:metadata:installedSize",
+          "value": "741376"
+        },
+        {
+          "name": "syft:metadata:originPackage",
+          "value": "freetype"
+        },
+        {
+          "name": "syft:metadata:provides:0",
+          "value": "so:libfreetype.so.6=6.19.0"
+        },
+        {
+          "name": "syft:metadata:pullChecksum",
+          "value": "Q1f9L6obY4DNikwNaqbozkYqY1fpo="
+        },
+        {
+          "name": "syft:metadata:pullDependencies:0",
+          "value": "so:libbrotlidec.so.1"
+        },
+        {
+          "name": "syft:metadata:pullDependencies:1",
+          "value": "so:libbz2.so.1"
+        },
+        {
+          "name": "syft:metadata:pullDependencies:2",
+          "value": "so:libc.musl-x86_64.so.1"
+        },
+        {
+          "name": "syft:metadata:pullDependencies:3",
+          "value": "so:libpng16.so.16"
+        },
+        {
+          "name": "syft:metadata:pullDependencies:4",
+          "value": "so:libz.so.1"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "358370"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:apk/alpine/giflib@5.2.1-r4?arch=x86_64&distro=alpine-3.18.5&package-id=81c4b631ebed9634",
+      "type": "library",
+      "publisher": "Natanael Copa <ncopa@alpinelinux.org>",
+      "name": "giflib",
+      "version": "5.2.1-r4",
+      "description": "A library for reading and writing GIF images",
+      "licenses": [
+        {
+          "license": {
+            "id": "MIT"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:giflib:giflib:5.2.1-r4:*:*:*:*:*:*:*",
+      "purl": "pkg:apk/alpine/giflib@5.2.1-r4?arch=x86_64&distro=alpine-3.18.5",
+      "externalReferences": [
+        {
+          "url": "https://sourceforge.net/projects/giflib/",
+          "type": "distribution"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "apk-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "apk"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "apk-db-entry"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:040ab99b6ccfaee2ade0def5bb35be6512e03860bd46bb9752a6c47709997f24"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/lib/apk/db/installed"
+        },
+        {
+          "name": "syft:metadata:gitCommitOfApkPort",
+          "value": "84a227baf001b6e0208e3352b294e4d7a40e93de"
+        },
+        {
+          "name": "syft:metadata:installedSize",
+          "value": "53248"
+        },
+        {
+          "name": "syft:metadata:originPackage",
+          "value": "giflib"
+        },
+        {
+          "name": "syft:metadata:provides:0",
+          "value": "so:libgif.so.7=7.2.0"
+        },
+        {
+          "name": "syft:metadata:pullChecksum",
+          "value": "Q1+oo1wK4+NAZnYrBGXAuPR0kc9JU="
+        },
+        {
+          "name": "syft:metadata:pullDependencies:0",
+          "value": "so:libc.musl-x86_64.so.1"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "20004"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/org.apache.tinkerpop/gremlin-core@3.7.1?package-id=58862f38ceabae34",
+      "type": "library",
+      "group": "org.apache.tinkerpop",
+      "name": "gremlin-core",
+      "version": "3.7.1",
+      "licenses": [
+        {
+          "license": {
+            "id": "Apache-2.0"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:apache:gremlin-core:3.7.1:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/org.apache.tinkerpop/gremlin-core@3.7.1",
+      "externalReferences": [
+        {
+          "url": "",
+          "hashes": [
+            {
+              "alg": "SHA-1",
+              "content": "ad4aef6076f90a46f9fff77ce4199d79dd48c8d8"
+            }
+          ],
+          "type": "build-meta"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:apache:gremlin_core:3.7.1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:9168aa9edf57e27178cf19177cd017cbde863db4b32b192859f2e4e224236750"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-server/lib/gremlin-core-3.7.1.jar"
+        },
+        {
+          "name": "syft:metadata:-:artifactID",
+          "value": "gremlin-core"
+        },
+        {
+          "name": "syft:metadata:-:groupID",
+          "value": "org.apache.tinkerpop"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-server/lib/gremlin-core-3.7.1.jar"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/org.apache.tinkerpop/gremlin-groovy@3.7.1?package-id=69b86d04ecbfdc29",
+      "type": "library",
+      "group": "org.apache.tinkerpop",
+      "name": "gremlin-groovy",
+      "version": "3.7.1",
+      "licenses": [
+        {
+          "license": {
+            "id": "Apache-2.0"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:apache:gremlin-groovy:3.7.1:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/org.apache.tinkerpop/gremlin-groovy@3.7.1",
+      "externalReferences": [
+        {
+          "url": "",
+          "hashes": [
+            {
+              "alg": "SHA-1",
+              "content": "0f018aeae7d75c6e524db3cc2e0ec014118abdb6"
+            }
+          ],
+          "type": "build-meta"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:apache:gremlin_groovy:3.7.1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:9168aa9edf57e27178cf19177cd017cbde863db4b32b192859f2e4e224236750"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-server/ext/gremlin-groovy/lib/gremlin-groovy-3.7.1.jar"
+        },
+        {
+          "name": "syft:metadata:-:artifactID",
+          "value": "gremlin-groovy"
+        },
+        {
+          "name": "syft:metadata:-:groupID",
+          "value": "org.apache.tinkerpop"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-server/ext/gremlin-groovy/lib/gremlin-groovy-3.7.1.jar"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/org.apache.tinkerpop/gremlin-groovy@3.7.1?package-id=9f2800b57fc82de6",
+      "type": "library",
+      "group": "org.apache.tinkerpop",
+      "name": "gremlin-groovy",
+      "version": "3.7.1",
+      "licenses": [
+        {
+          "license": {
+            "id": "Apache-2.0"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:apache:gremlin-groovy:3.7.1:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/org.apache.tinkerpop/gremlin-groovy@3.7.1",
+      "externalReferences": [
+        {
+          "url": "",
+          "hashes": [
+            {
+              "alg": "SHA-1",
+              "content": "0f018aeae7d75c6e524db3cc2e0ec014118abdb6"
+            }
+          ],
+          "type": "build-meta"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:apache:gremlin_groovy:3.7.1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:9168aa9edf57e27178cf19177cd017cbde863db4b32b192859f2e4e224236750"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-server/ext/gremlin-groovy/plugin/gremlin-groovy-3.7.1.jar"
+        },
+        {
+          "name": "syft:metadata:-:artifactID",
+          "value": "gremlin-groovy"
+        },
+        {
+          "name": "syft:metadata:-:groupID",
+          "value": "org.apache.tinkerpop"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-server/ext/gremlin-groovy/plugin/gremlin-groovy-3.7.1.jar"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/org.apache.tinkerpop/gremlin-language@3.7.1?package-id=f520063e7da15dc7",
+      "type": "library",
+      "group": "org.apache.tinkerpop",
+      "name": "gremlin-language",
+      "version": "3.7.1",
+      "licenses": [
+        {
+          "license": {
+            "id": "Apache-2.0"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:apache:gremlin-language:3.7.1:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/org.apache.tinkerpop/gremlin-language@3.7.1",
+      "externalReferences": [
+        {
+          "url": "",
+          "hashes": [
+            {
+              "alg": "SHA-1",
+              "content": "caf0d1cfe6ed488c978860b284462e9a4f8f780c"
+            }
+          ],
+          "type": "build-meta"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:apache:gremlin_language:3.7.1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:9168aa9edf57e27178cf19177cd017cbde863db4b32b192859f2e4e224236750"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-server/lib/gremlin-language-3.7.1.jar"
+        },
+        {
+          "name": "syft:metadata:-:artifactID",
+          "value": "gremlin-language"
+        },
+        {
+          "name": "syft:metadata:-:groupID",
+          "value": "org.apache.tinkerpop"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-server/lib/gremlin-language-3.7.1.jar"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/org.apache.tinkerpop/gremlin-server@3.7.1?package-id=73283563468024db",
+      "type": "library",
+      "group": "org.apache.tinkerpop",
+      "name": "gremlin-server",
+      "version": "3.7.1",
+      "licenses": [
+        {
+          "license": {
+            "id": "Apache-2.0"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:apache:gremlin-server:3.7.1:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/org.apache.tinkerpop/gremlin-server@3.7.1",
+      "externalReferences": [
+        {
+          "url": "",
+          "hashes": [
+            {
+              "alg": "SHA-1",
+              "content": "9125c9b65fc30f519e9d44867be29e235d4a30be"
+            }
+          ],
+          "type": "build-meta"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:apache:gremlin_server:3.7.1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:9168aa9edf57e27178cf19177cd017cbde863db4b32b192859f2e4e224236750"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-server/lib/gremlin-server-3.7.1.jar"
+        },
+        {
+          "name": "syft:metadata:-:artifactID",
+          "value": "gremlin-server"
+        },
+        {
+          "name": "syft:metadata:-:groupID",
+          "value": "org.apache.tinkerpop"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-server/lib/gremlin-server-3.7.1.jar"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/org.apache.tinkerpop/gremlin-shaded@3.7.1?package-id=f5e31bd93c4b2a62",
+      "type": "library",
+      "group": "org.apache.tinkerpop",
+      "name": "gremlin-shaded",
+      "version": "3.7.1",
+      "licenses": [
+        {
+          "license": {
+            "id": "Apache-2.0"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:apache:gremlin-shaded:3.7.1:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/org.apache.tinkerpop/gremlin-shaded@3.7.1",
+      "externalReferences": [
+        {
+          "url": "",
+          "hashes": [
+            {
+              "alg": "SHA-1",
+              "content": "581df31ef36dffd606a41820c17a9f2256970700"
+            }
+          ],
+          "type": "build-meta"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:apache:gremlin_shaded:3.7.1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:9168aa9edf57e27178cf19177cd017cbde863db4b32b192859f2e4e224236750"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-server/lib/gremlin-shaded-3.7.1.jar"
+        },
+        {
+          "name": "syft:metadata:-:artifactID",
+          "value": "gremlin-shaded"
+        },
+        {
+          "name": "syft:metadata:-:groupID",
+          "value": "org.apache.tinkerpop"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-server/lib/gremlin-shaded-3.7.1.jar"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/org.apache.tinkerpop/gremlin-util@3.7.1?package-id=024e065809aa5834",
+      "type": "library",
+      "group": "org.apache.tinkerpop",
+      "name": "gremlin-util",
+      "version": "3.7.1",
+      "licenses": [
+        {
+          "license": {
+            "id": "Apache-2.0"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:apache:gremlin-util:3.7.1:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/org.apache.tinkerpop/gremlin-util@3.7.1",
+      "externalReferences": [
+        {
+          "url": "",
+          "hashes": [
+            {
+              "alg": "SHA-1",
+              "content": "bea460cf3dfc802aaf695b24f696eb15f020b871"
+            }
+          ],
+          "type": "build-meta"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:apache:gremlin_util:3.7.1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:9168aa9edf57e27178cf19177cd017cbde863db4b32b192859f2e4e224236750"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-server/lib/gremlin-util-3.7.1.jar"
+        },
+        {
+          "name": "syft:metadata:-:artifactID",
+          "value": "gremlin-util"
+        },
+        {
+          "name": "syft:metadata:-:groupID",
+          "value": "org.apache.tinkerpop"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-server/lib/gremlin-util-3.7.1.jar"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/org.codehaus.groovy/groovy@4.0.9?package-id=1aedce66acc26948",
+      "type": "library",
+      "name": "groovy",
+      "version": "4.0.9",
+      "licenses": [
+        {
+          "license": {
+            "id": "Apache-2.0"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:apache-software-foundation:groovy:4.0.9:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/org.codehaus.groovy/groovy@4.0.9",
+      "externalReferences": [
+        {
+          "url": "",
+          "hashes": [
+            {
+              "alg": "SHA-1",
+              "content": "80605ad828d16fd5d6349628b8d77e5761b2b4c4"
+            }
+          ],
+          "type": "build-meta"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:apache_software_foundation:groovy:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codehaus:groovy:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:groovy:groovy:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:9168aa9edf57e27178cf19177cd017cbde863db4b32b192859f2e4e224236750"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-server/lib/groovy-4.0.9.jar"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-server/lib/groovy-4.0.9.jar"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/org.codehaus.groovy/groovy-console@4.0.9?package-id=3f99c4e87d23c5e8",
+      "type": "library",
+      "name": "groovy-console",
+      "version": "4.0.9",
+      "cpe": "cpe:2.3:a:apache-software-foundation:groovy-console:4.0.9:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/org.codehaus.groovy/groovy-console@4.0.9",
+      "externalReferences": [
+        {
+          "url": "",
+          "hashes": [
+            {
+              "alg": "SHA-1",
+              "content": "e0608f73984360bef7c441e63d329cae1c44c7a9"
+            }
+          ],
+          "type": "build-meta"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:apache-software-foundation:groovy_console:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:apache_software_foundation:groovy-console:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:apache_software_foundation:groovy_console:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:apache-software-foundation:groovy:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:apache_software_foundation:groovy:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:groovy-console:groovy-console:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:groovy-console:groovy_console:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:groovy_console:groovy-console:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:groovy_console:groovy_console:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codehaus:groovy-console:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codehaus:groovy_console:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:groovy-console:groovy:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:groovy:groovy-console:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:groovy:groovy_console:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:groovy_console:groovy:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codehaus:groovy:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:groovy:groovy:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:9168aa9edf57e27178cf19177cd017cbde863db4b32b192859f2e4e224236750"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-server/lib/groovy-console-4.0.9.jar"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-server/lib/groovy-console-4.0.9.jar"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/org.codehaus.groovy/groovy-groovysh@4.0.9?package-id=6cbf3eaadd6a600e",
+      "type": "library",
+      "name": "groovy-groovysh",
+      "version": "4.0.9",
+      "cpe": "cpe:2.3:a:apache-software-foundation:groovy-groovysh:4.0.9:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/org.codehaus.groovy/groovy-groovysh@4.0.9",
+      "externalReferences": [
+        {
+          "url": "",
+          "hashes": [
+            {
+              "alg": "SHA-1",
+              "content": "bd2f17d38feae19b0fcbca701f9a585de9d7593d"
+            }
+          ],
+          "type": "build-meta"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:apache-software-foundation:groovy_groovysh:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:apache_software_foundation:groovy-groovysh:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:apache_software_foundation:groovy_groovysh:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:apache-software-foundation:groovy:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:apache_software_foundation:groovy:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:groovy-groovysh:groovy-groovysh:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:groovy-groovysh:groovy_groovysh:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:groovy_groovysh:groovy-groovysh:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:groovy_groovysh:groovy_groovysh:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codehaus:groovy-groovysh:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codehaus:groovy_groovysh:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:groovy-groovysh:groovy:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:groovy:groovy-groovysh:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:groovy:groovy_groovysh:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:groovy_groovysh:groovy:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codehaus:groovy:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:groovy:groovy:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:9168aa9edf57e27178cf19177cd017cbde863db4b32b192859f2e4e224236750"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-server/lib/groovy-groovysh-4.0.9.jar"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-server/lib/groovy-groovysh-4.0.9.jar"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/org.codehaus.groovy/groovy-json@4.0.9?package-id=8d61d105375e72b2",
+      "type": "library",
+      "name": "groovy-json",
+      "version": "4.0.9",
+      "cpe": "cpe:2.3:a:apache-software-foundation:groovy-json:4.0.9:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/org.codehaus.groovy/groovy-json@4.0.9",
+      "externalReferences": [
+        {
+          "url": "",
+          "hashes": [
+            {
+              "alg": "SHA-1",
+              "content": "122759fca67c3ef87ea7d48a3057af362a360089"
+            }
+          ],
+          "type": "build-meta"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:apache-software-foundation:groovy_json:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:apache_software_foundation:groovy-json:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:apache_software_foundation:groovy_json:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:apache-software-foundation:groovy:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:apache_software_foundation:groovy:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:groovy-json:groovy-json:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:groovy-json:groovy_json:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:groovy_json:groovy-json:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:groovy_json:groovy_json:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codehaus:groovy-json:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codehaus:groovy_json:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:groovy-json:groovy:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:groovy:groovy-json:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:groovy:groovy_json:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:groovy_json:groovy:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codehaus:groovy:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:groovy:groovy:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:9168aa9edf57e27178cf19177cd017cbde863db4b32b192859f2e4e224236750"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-server/lib/groovy-json-4.0.9.jar"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-server/lib/groovy-json-4.0.9.jar"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/org.codehaus.groovy/groovy-jsr223@4.0.9?package-id=76a2dfe294bdda78",
+      "type": "library",
+      "name": "groovy-jsr223",
+      "version": "4.0.9",
+      "cpe": "cpe:2.3:a:apache-software-foundation:groovy-jsr223:4.0.9:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/org.codehaus.groovy/groovy-jsr223@4.0.9",
+      "externalReferences": [
+        {
+          "url": "",
+          "hashes": [
+            {
+              "alg": "SHA-1",
+              "content": "9cc08b3ea303b514628ca2b75724c8883c515397"
+            }
+          ],
+          "type": "build-meta"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:apache-software-foundation:groovy_jsr223:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:apache_software_foundation:groovy-jsr223:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:apache_software_foundation:groovy_jsr223:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:apache-software-foundation:groovy:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:apache_software_foundation:groovy:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:groovy-jsr223:groovy-jsr223:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:groovy-jsr223:groovy_jsr223:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:groovy_jsr223:groovy-jsr223:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:groovy_jsr223:groovy_jsr223:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codehaus:groovy-jsr223:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codehaus:groovy_jsr223:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:groovy-jsr223:groovy:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:groovy:groovy-jsr223:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:groovy:groovy_jsr223:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:groovy_jsr223:groovy:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codehaus:groovy:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:groovy:groovy:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:9168aa9edf57e27178cf19177cd017cbde863db4b32b192859f2e4e224236750"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-server/lib/groovy-jsr223-4.0.9.jar"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-server/lib/groovy-jsr223-4.0.9.jar"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/org.codehaus.groovy/groovy-swing@4.0.9?package-id=7c626688fe246003",
+      "type": "library",
+      "name": "groovy-swing",
+      "version": "4.0.9",
+      "cpe": "cpe:2.3:a:apache-software-foundation:groovy-swing:4.0.9:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/org.codehaus.groovy/groovy-swing@4.0.9",
+      "externalReferences": [
+        {
+          "url": "",
+          "hashes": [
+            {
+              "alg": "SHA-1",
+              "content": "68d014c3f05a75b340543a8db69511ded445435f"
+            }
+          ],
+          "type": "build-meta"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:apache-software-foundation:groovy_swing:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:apache_software_foundation:groovy-swing:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:apache_software_foundation:groovy_swing:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:apache-software-foundation:groovy:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:apache_software_foundation:groovy:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:groovy-swing:groovy-swing:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:groovy-swing:groovy_swing:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:groovy_swing:groovy-swing:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:groovy_swing:groovy_swing:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codehaus:groovy-swing:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codehaus:groovy_swing:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:groovy-swing:groovy:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:groovy:groovy-swing:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:groovy:groovy_swing:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:groovy_swing:groovy:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codehaus:groovy:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:groovy:groovy:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:9168aa9edf57e27178cf19177cd017cbde863db4b32b192859f2e4e224236750"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-server/lib/groovy-swing-4.0.9.jar"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-server/lib/groovy-swing-4.0.9.jar"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/org.codehaus.groovy/groovy-templates@4.0.9?package-id=f50a09ac99fe417c",
+      "type": "library",
+      "name": "groovy-templates",
+      "version": "4.0.9",
+      "cpe": "cpe:2.3:a:apache-software-foundation:groovy-templates:4.0.9:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/org.codehaus.groovy/groovy-templates@4.0.9",
+      "externalReferences": [
+        {
+          "url": "",
+          "hashes": [
+            {
+              "alg": "SHA-1",
+              "content": "0f5f3ebbd60ac461bd3624d6723bb15c140bcb36"
+            }
+          ],
+          "type": "build-meta"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:apache-software-foundation:groovy_templates:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:apache_software_foundation:groovy-templates:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:apache_software_foundation:groovy_templates:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:apache-software-foundation:groovy:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:apache_software_foundation:groovy:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:groovy-templates:groovy-templates:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:groovy-templates:groovy_templates:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:groovy_templates:groovy-templates:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:groovy_templates:groovy_templates:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codehaus:groovy-templates:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codehaus:groovy_templates:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:groovy-templates:groovy:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:groovy:groovy-templates:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:groovy:groovy_templates:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:groovy_templates:groovy:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codehaus:groovy:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:groovy:groovy:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:9168aa9edf57e27178cf19177cd017cbde863db4b32b192859f2e4e224236750"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-server/lib/groovy-templates-4.0.9.jar"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-server/lib/groovy-templates-4.0.9.jar"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/org.codehaus.groovy/groovy-xml@4.0.9?package-id=bae92134891d37ce",
+      "type": "library",
+      "name": "groovy-xml",
+      "version": "4.0.9",
+      "cpe": "cpe:2.3:a:apache-software-foundation:groovy-xml:4.0.9:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/org.codehaus.groovy/groovy-xml@4.0.9",
+      "externalReferences": [
+        {
+          "url": "",
+          "hashes": [
+            {
+              "alg": "SHA-1",
+              "content": "b22d2ae189670d4ccc58bc4ef003d922b85cb0d5"
+            }
+          ],
+          "type": "build-meta"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:apache-software-foundation:groovy_xml:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:apache_software_foundation:groovy-xml:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:apache_software_foundation:groovy_xml:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:apache-software-foundation:groovy:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:apache_software_foundation:groovy:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:groovy-xml:groovy-xml:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:groovy-xml:groovy_xml:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:groovy_xml:groovy-xml:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:groovy_xml:groovy_xml:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codehaus:groovy-xml:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codehaus:groovy_xml:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:groovy-xml:groovy:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:groovy:groovy-xml:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:groovy:groovy_xml:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:groovy_xml:groovy:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codehaus:groovy:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:groovy:groovy:4.0.9:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:9168aa9edf57e27178cf19177cd017cbde863db4b32b192859f2e4e224236750"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-server/lib/groovy-xml-4.0.9.jar"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-server/lib/groovy-xml-4.0.9.jar"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/com.carrotsearch/hppc@0.7.1?package-id=52e8fe14ead504e7",
+      "type": "library",
+      "group": "com.carrotsearch",
+      "name": "hppc",
+      "version": "0.7.1",
+      "cpe": "cpe:2.3:a:carrotsearch:hppc:0.7.1:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/com.carrotsearch/hppc@0.7.1",
+      "externalReferences": [
+        {
+          "url": "",
+          "hashes": [
+            {
+              "alg": "SHA-1",
+              "content": "8b5057f74ea378c0150a1860874a3ebdcb713767"
+            }
+          ],
+          "type": "build-meta"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:hppc:hppc:0.7.1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:9168aa9edf57e27178cf19177cd017cbde863db4b32b192859f2e4e224236750"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-server/lib/hppc-0.7.1.jar"
+        },
+        {
+          "name": "syft:metadata:-:artifactID",
+          "value": "hppc"
+        },
+        {
+          "name": "syft:metadata:-:groupID",
+          "value": "com.carrotsearch"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-server/lib/hppc-0.7.1.jar"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/org.apache/ivy@2.5.1?package-id=c42937c32c0b515c",
+      "type": "library",
+      "name": "ivy",
+      "version": "2.5.1",
+      "licenses": [
+        {
+          "license": {
+            "id": "Apache-2.0"
+          }
+        },
+        {
+          "license": {
+            "id": "BSD-3-Clause"
+          }
+        },
+        {
+          "license": {
+            "id": "MIT"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:apache:ivy:2.5.1:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/org.apache/ivy@2.5.1",
+      "externalReferences": [
+        {
+          "url": "",
+          "hashes": [
+            {
+              "alg": "SHA-1",
+              "content": "7fac35f24f89776e7b78ec98658d8bc8f22f7e89"
+            }
+          ],
+          "type": "build-meta"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:9168aa9edf57e27178cf19177cd017cbde863db4b32b192859f2e4e224236750"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-server/lib/ivy-2.5.1.jar"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-server/lib/ivy-2.5.1.jar"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/com.fasterxml.jackson.core/jackson-annotations@2.15.2?package-id=13b0d51e5623411a",
+      "type": "library",
+      "group": "com.fasterxml.jackson.core",
+      "name": "jackson-annotations",
+      "version": "2.15.2",
+      "licenses": [
+        {
+          "license": {
+            "name": "The Apache Software License, Version 2.0",
+            "url": "https://www.apache.org/licenses/LICENSE-2.0.txt"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:jackson-annotations:jackson-annotations:2.15.2:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/com.fasterxml.jackson.core/jackson-annotations@2.15.2",
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:jackson-annotations:jackson_annotations:2.15.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:jackson_annotations:jackson-annotations:2.15.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:jackson_annotations:jackson_annotations:2.15.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:fasterxml:jackson-annotations:2.15.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:fasterxml:jackson_annotations:2.15.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:jackson-annotations:jackson:2.15.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:jackson:jackson-annotations:2.15.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:jackson:jackson_annotations:2.15.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:jackson_annotations:jackson:2.15.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:core:jackson-annotations:2.15.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:core:jackson_annotations:2.15.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:fasterxml:jackson:2.15.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:jackson:jackson:2.15.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:core:jackson:2.15.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:9168aa9edf57e27178cf19177cd017cbde863db4b32b192859f2e4e224236750"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-server/lib/gremlin-shaded-3.7.1.jar"
+        },
+        {
+          "name": "syft:metadata:-:artifactID",
+          "value": "jackson-annotations"
+        },
+        {
+          "name": "syft:metadata:-:groupID",
+          "value": "com.fasterxml.jackson.core"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-server/lib/gremlin-shaded-3.7.1.jar:com.fasterxml.jackson.core:jackson-annotations"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/com.fasterxml.jackson.core/jackson-core@2.15.2?package-id=de9d0c763ede62e0",
+      "type": "library",
+      "group": "com.fasterxml.jackson.core",
+      "name": "jackson-core",
+      "version": "2.15.2",
+      "licenses": [
+        {
+          "license": {
+            "name": "The Apache Software License, Version 2.0",
+            "url": "https://www.apache.org/licenses/LICENSE-2.0.txt"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:jackson-core:jackson-core:2.15.2:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/com.fasterxml.jackson.core/jackson-core@2.15.2",
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:jackson-core:jackson_core:2.15.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:jackson_core:jackson-core:2.15.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:jackson_core:jackson_core:2.15.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:fasterxml:jackson-core:2.15.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:fasterxml:jackson_core:2.15.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:jackson-core:jackson:2.15.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:jackson:jackson-core:2.15.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:jackson:jackson_core:2.15.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:jackson_core:jackson:2.15.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:core:jackson-core:2.15.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:core:jackson_core:2.15.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:fasterxml:jackson:2.15.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:jackson-core:core:2.15.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:jackson_core:core:2.15.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:jackson:jackson:2.15.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:fasterxml:core:2.15.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:core:jackson:2.15.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:jackson:core:2.15.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:core:core:2.15.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:9168aa9edf57e27178cf19177cd017cbde863db4b32b192859f2e4e224236750"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-server/lib/gremlin-shaded-3.7.1.jar"
+        },
+        {
+          "name": "syft:metadata:-:artifactID",
+          "value": "jackson-core"
+        },
+        {
+          "name": "syft:metadata:-:groupID",
+          "value": "com.fasterxml.jackson.core"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-server/lib/gremlin-shaded-3.7.1.jar:com.fasterxml.jackson.core:jackson-core"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/com.fasterxml.jackson.core/jackson-databind@2.15.2?package-id=c6b5533de0091a8a",
+      "type": "library",
+      "group": "com.fasterxml.jackson.core",
+      "name": "jackson-databind",
+      "version": "2.15.2",
+      "licenses": [
+        {
+          "license": {
+            "name": "The Apache Software License, Version 2.0",
+            "url": "https://www.apache.org/licenses/LICENSE-2.0.txt"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:jackson-databind:jackson-databind:2.15.2:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/com.fasterxml.jackson.core/jackson-databind@2.15.2",
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:jackson-databind:jackson_databind:2.15.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:jackson_databind:jackson-databind:2.15.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:jackson_databind:jackson_databind:2.15.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:fasterxml:jackson-databind:2.15.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:fasterxml:jackson_databind:2.15.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:jackson-databind:jackson:2.15.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:jackson:jackson-databind:2.15.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:jackson:jackson_databind:2.15.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:jackson_databind:jackson:2.15.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:core:jackson-databind:2.15.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:core:jackson_databind:2.15.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:fasterxml:jackson:2.15.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:jackson:jackson:2.15.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:core:jackson:2.15.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:9168aa9edf57e27178cf19177cd017cbde863db4b32b192859f2e4e224236750"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-server/lib/gremlin-shaded-3.7.1.jar"
+        },
+        {
+          "name": "syft:metadata:-:artifactID",
+          "value": "jackson-databind"
+        },
+        {
+          "name": "syft:metadata:-:groupID",
+          "value": "com.fasterxml.jackson.core"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-server/lib/gremlin-shaded-3.7.1.jar:com.fasterxml.jackson.core:jackson-databind"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:apk/alpine/java-cacerts@1.0-r1?arch=x86_64&distro=alpine-3.18.5&package-id=abd7dc90169ab0fe",
+      "type": "library",
+      "publisher": "Natanael Copa <ncopa@alpinelinux.org>",
+      "name": "java-cacerts",
+      "version": "1.0-r1",
+      "description": "Script to update java cacerts store",
+      "licenses": [
+        {
+          "license": {
+            "id": "MIT"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:java-cacerts:java-cacerts:1.0-r1:*:*:*:*:*:*:*",
+      "purl": "pkg:apk/alpine/java-cacerts@1.0-r1?arch=x86_64&distro=alpine-3.18.5",
+      "externalReferences": [
+        {
+          "url": "https://git.alpinelinux.org/aports/tree/community/java-cacerts",
+          "type": "distribution"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "apk-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "apk"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "apk-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:java-cacerts:java_cacerts:1.0-r1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:java_cacerts:java-cacerts:1.0-r1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:java_cacerts:java_cacerts:1.0-r1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:java:java-cacerts:1.0-r1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:java:java_cacerts:1.0-r1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:040ab99b6ccfaee2ade0def5bb35be6512e03860bd46bb9752a6c47709997f24"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/lib/apk/db/installed"
+        },
+        {
+          "name": "syft:metadata:gitCommitOfApkPort",
+          "value": "a48221f096bb8ee4f536eab05bce93879490e29a"
+        },
+        {
+          "name": "syft:metadata:installedSize",
+          "value": "32768"
+        },
+        {
+          "name": "syft:metadata:originPackage",
+          "value": "java-cacerts"
+        },
+        {
+          "name": "syft:metadata:pullChecksum",
+          "value": "Q1/PXn/eLtpP0gqqqHNmWPbJga4DE="
+        },
+        {
+          "name": "syft:metadata:pullDependencies:0",
+          "value": "p11-kit"
+        },
+        {
+          "name": "syft:metadata:pullDependencies:1",
+          "value": "p11-kit-trust"
+        },
+        {
+          "name": "syft:metadata:pullDependencies:2",
+          "value": "ca-certificates"
+        },
+        {
+          "name": "syft:metadata:pullDependencies:3",
+          "value": "/bin/sh"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "1937"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:apk/alpine/java-common@0.5-r0?arch=x86_64&distro=alpine-3.18.5&package-id=854cda365d24a3ac",
+      "type": "library",
+      "publisher": "Timo Teras <timo.teras@iki.fi>",
+      "name": "java-common",
+      "version": "0.5-r0",
+      "description": "Java common (updates java links)",
+      "licenses": [
+        {
+          "license": {
+            "id": "GPL-2.0-or-later"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:java-common:java-common:0.5-r0:*:*:*:*:*:*:*",
+      "purl": "pkg:apk/alpine/java-common@0.5-r0?arch=x86_64&distro=alpine-3.18.5",
+      "externalReferences": [
+        {
+          "url": "https://git.alpinelinux.org/aports/",
+          "type": "distribution"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "apk-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "apk"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "apk-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:java-common:java_common:0.5-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:java_common:java-common:0.5-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:java_common:java_common:0.5-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:java:java-common:0.5-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:java:java_common:0.5-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:040ab99b6ccfaee2ade0def5bb35be6512e03860bd46bb9752a6c47709997f24"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/lib/apk/db/installed"
+        },
+        {
+          "name": "syft:metadata:gitCommitOfApkPort",
+          "value": "6ca399011e3c9f1aea0856c3428fe7badb09a664"
+        },
+        {
+          "name": "syft:metadata:installedSize",
+          "value": "12288"
+        },
+        {
+          "name": "syft:metadata:originPackage",
+          "value": "java-common"
+        },
+        {
+          "name": "syft:metadata:pullChecksum",
+          "value": "Q1PqrV8HwNSLfJSrDLgwPZoBcAMwA="
+        },
+        {
+          "name": "syft:metadata:pullDependencies:0",
+          "value": "/bin/sh"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "3666"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/com.github.javaparser/javaparser-core@3.25.0?package-id=5d75b7a9bc52393d",
+      "type": "library",
+      "group": "com.github.javaparser",
+      "name": "javaparser-core",
+      "version": "3.25.0",
+      "licenses": [
+        {
+          "license": {
+            "name": "\"GNU Lesser General Public License\";link=\"http://www.gnu.org/licenses/lgpl-3.0.html\",\"Apache License, Version 2.0\";link=\"http://www.apache.org/licenses/LICENSE-2.0.txt\";description=\"A business-friendly OSS license\""
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:javaparser-core:javaparser-core:3.25.0:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/com.github.javaparser/javaparser-core@3.25.0",
+      "externalReferences": [
+        {
+          "url": "",
+          "hashes": [
+            {
+              "alg": "SHA-1",
+              "content": "1d12acafa1e4d542ca766737d7bf2ac7bc74190e"
+            }
+          ],
+          "type": "build-meta"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:javaparser-core:javaparser_core:3.25.0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:javaparser_core:javaparser-core:3.25.0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:javaparser_core:javaparser_core:3.25.0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:javaparser-core:javaparser:3.25.0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:javaparser:javaparser-core:3.25.0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:javaparser:javaparser_core:3.25.0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:javaparser_core:javaparser:3.25.0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:github:javaparser-core:3.25.0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:github:javaparser_core:3.25.0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:javaparser:javaparser:3.25.0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:github:javaparser:3.25.0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:9168aa9edf57e27178cf19177cd017cbde863db4b32b192859f2e4e224236750"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-server/lib/javaparser-core-3.25.0.jar"
+        },
+        {
+          "name": "syft:metadata:-:artifactID",
+          "value": "javaparser-core"
+        },
+        {
+          "name": "syft:metadata:-:groupID",
+          "value": "com.github.javaparser"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-server/lib/javaparser-core-3.25.0.jar"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/com.squareup/javapoet@1.13.0?package-id=c791436c044c761c",
+      "type": "library",
+      "group": "com.squareup",
+      "name": "javapoet",
+      "version": "1.13.0",
+      "licenses": [
+        {
+          "license": {
+            "name": "Apache 2.0",
+            "url": "http://www.apache.org/licenses/LICENSE-2.0.txt"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:javapoet:javapoet:1.13.0:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/com.squareup/javapoet@1.13.0",
+      "externalReferences": [
+        {
+          "url": "",
+          "hashes": [
+            {
+              "alg": "SHA-1",
+              "content": "d6562d385049f35eb50403fa86bb11cce76b866a"
+            }
+          ],
+          "type": "build-meta"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:squareup:javapoet:1.13.0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:9168aa9edf57e27178cf19177cd017cbde863db4b32b192859f2e4e224236750"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-server/lib/javapoet-1.13.0.jar"
+        },
+        {
+          "name": "syft:metadata:-:artifactID",
+          "value": "javapoet"
+        },
+        {
+          "name": "syft:metadata:-:groupID",
+          "value": "com.squareup"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-server/lib/javapoet-1.13.0.jar"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/org.javatuples/javatuples@1.2?package-id=7c08845d85bfa01b",
+      "type": "library",
+      "group": "org.javatuples",
+      "name": "javatuples",
+      "version": "1.2",
+      "licenses": [
+        {
+          "license": {
+            "name": "The Apache Software License, Version 2.0",
+            "url": "http://www.apache.org/licenses/LICENSE-2.0.txt"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:javatuples:javatuples:1.2:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/org.javatuples/javatuples@1.2",
+      "externalReferences": [
+        {
+          "url": "",
+          "hashes": [
+            {
+              "alg": "SHA-1",
+              "content": "507312ac4b601204a72a83380badbca82683dd36"
+            }
+          ],
+          "type": "build-meta"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:9168aa9edf57e27178cf19177cd017cbde863db4b32b192859f2e4e224236750"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-server/lib/javatuples-1.2.jar"
+        },
+        {
+          "name": "syft:metadata:-:artifactID",
+          "value": "javatuples"
+        },
+        {
+          "name": "syft:metadata:-:groupID",
+          "value": "org.javatuples"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-server/lib/javatuples-1.2.jar"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/org.mindrot/jbcrypt@0.4?package-id=8ed226f013fc81c0",
+      "type": "library",
+      "group": "org.mindrot",
+      "name": "jbcrypt",
+      "version": "0.4",
+      "licenses": [
+        {
+          "license": {
+            "id": "ISC",
+            "url": "https://opensource.org/licenses/isc-license"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:jbcrypt:jbcrypt:0.4:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/org.mindrot/jbcrypt@0.4",
+      "externalReferences": [
+        {
+          "url": "",
+          "hashes": [
+            {
+              "alg": "SHA-1",
+              "content": "af7e61017f73abb18ac4e036954f9f28c6366c07"
+            }
+          ],
+          "type": "build-meta"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:mindrot:jbcrypt:0.4:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:9168aa9edf57e27178cf19177cd017cbde863db4b32b192859f2e4e224236750"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-server/lib/jbcrypt-0.4.jar"
+        },
+        {
+          "name": "syft:metadata:-:artifactID",
+          "value": "jbcrypt"
+        },
+        {
+          "name": "syft:metadata:-:groupID",
+          "value": "org.mindrot"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-server/lib/jbcrypt-0.4.jar"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/org.slf4j/jcl-over-slf4j@1.7.33?package-id=32642bbb43d844e5",
+      "type": "library",
+      "group": "org.slf4j",
+      "name": "jcl-over-slf4j",
+      "version": "1.7.33",
+      "licenses": [
+        {
+          "license": {
+            "name": "Apache License, Version 2.0",
+            "url": "https://www.apache.org/licenses/LICENSE-2.0.txt"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:apache:jcl-over-slf4j:1.7.33:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/org.slf4j/jcl-over-slf4j@1.7.33",
+      "externalReferences": [
+        {
+          "url": "",
+          "hashes": [
+            {
+              "alg": "SHA-1",
+              "content": "28c441128bc81b6d95cc2857ae5bb46ae5bf658b"
+            }
+          ],
+          "type": "build-meta"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:apache:jcl_over_slf4j:1.7.33:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:9168aa9edf57e27178cf19177cd017cbde863db4b32b192859f2e4e224236750"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-server/lib/jcl-over-slf4j-1.7.33.jar"
+        },
+        {
+          "name": "syft:metadata:-:artifactID",
+          "value": "jcl-over-slf4j"
+        },
+        {
+          "name": "syft:metadata:-:groupID",
+          "value": "org.slf4j"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-server/lib/jcl-over-slf4j-1.7.33.jar"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/org.jctools/jctools-core@3.1.0?package-id=3a515383f282bbe8",
+      "type": "library",
+      "group": "org.jctools",
+      "name": "jctools-core",
+      "version": "3.1.0",
+      "licenses": [
+        {
+          "license": {
+            "name": "Apache License, Version 2.0",
+            "url": "http://www.apache.org/licenses/LICENSE-2.0.txt"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:jctools-core:jctools-core:3.1.0:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/org.jctools/jctools-core@3.1.0",
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:jctools-core:jctools_core:3.1.0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:jctools_core:jctools-core:3.1.0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:jctools_core:jctools_core:3.1.0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:jctools:jctools-core:3.1.0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:jctools:jctools_core:3.1.0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:9168aa9edf57e27178cf19177cd017cbde863db4b32b192859f2e4e224236750"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-server/lib/netty-common-4.1.96.Final.jar"
+        },
+        {
+          "name": "syft:metadata:-:artifactID",
+          "value": "jctools-core"
+        },
+        {
+          "name": "syft:metadata:-:groupID",
+          "value": "org.jctools"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-server/lib/netty-common-4.1.96.Final.jar:org.jctools:jctools-core"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/jline/jline@2.14.6?package-id=a01ff3c9360ce6d9",
+      "type": "library",
+      "group": "jline",
+      "name": "jline",
+      "version": "2.14.6",
+      "licenses": [
+        {
+          "license": {
+            "name": "http://www.opensource.org/licenses/bsd-license.php"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:jline:jline:2.14.6:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/jline/jline@2.14.6",
+      "externalReferences": [
+        {
+          "url": "",
+          "hashes": [
+            {
+              "alg": "SHA-1",
+              "content": "c3aeac59c022bdc497c8c48ed86fa50450e4896a"
+            }
+          ],
+          "type": "build-meta"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:9168aa9edf57e27178cf19177cd017cbde863db4b32b192859f2e4e224236750"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-server/lib/jline-2.14.6.jar"
+        },
+        {
+          "name": "syft:metadata:-:artifactID",
+          "value": "jline"
+        },
+        {
+          "name": "syft:metadata:-:groupID",
+          "value": "jline"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-server/lib/jline-2.14.6.jar"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/jrt-fs/jrt-fs@11.0.21?package-id=fd5b417f66288ba1",
+      "type": "library",
+      "name": "jrt-fs",
+      "version": "11.0.21",
+      "cpe": "cpe:2.3:a:oracle-corporation:jrt-fs:11.0.21:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/jrt-fs/jrt-fs@11.0.21",
+      "externalReferences": [
+        {
+          "url": "",
+          "hashes": [
+            {
+              "alg": "SHA-1",
+              "content": "171bf0b5f4ba21bba153b8e6f6d4b37eff0372a6"
+            }
+          ],
+          "type": "build-meta"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:oracle-corporation:jrt_fs:11.0.21:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:oracle_corporation:jrt-fs:11.0.21:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:oracle_corporation:jrt_fs:11.0.21:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:alpine:jrt-fs:11.0.21:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:alpine:jrt_fs:11.0.21:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:jrt-fs:jrt-fs:11.0.21:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:jrt-fs:jrt_fs:11.0.21:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:jrt_fs:jrt-fs:11.0.21:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:jrt_fs:jrt_fs:11.0.21:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:jrt:jrt-fs:11.0.21:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:jrt:jrt_fs:11.0.21:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:040ab99b6ccfaee2ade0def5bb35be6512e03860bd46bb9752a6c47709997f24"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/usr/lib/jvm/java-11-openjdk/lib/jrt-fs.jar"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/usr/lib/jvm/java-11-openjdk/lib/jrt-fs.jar"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/com.esotericsoftware/kryo-shaded@3.0.3?package-id=c99f3a454abee40c",
+      "type": "library",
+      "group": "com.esotericsoftware",
+      "name": "kryo-shaded",
+      "version": "3.0.3",
+      "licenses": [
+        {
+          "license": {
+            "name": "New BSD License",
+            "url": "http://www.opensource.org/licenses/bsd-license.php"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:esotericsoftware:kryo-shaded:3.0.3:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/com.esotericsoftware/kryo-shaded@3.0.3",
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:esotericsoftware:kryo_shaded:3.0.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:kryo-shaded:kryo-shaded:3.0.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:kryo-shaded:kryo_shaded:3.0.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:kryo_shaded:kryo-shaded:3.0.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:kryo_shaded:kryo_shaded:3.0.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:sonatype:kryo-shaded:3.0.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:sonatype:kryo_shaded:3.0.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:kryo:kryo-shaded:3.0.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:kryo:kryo_shaded:3.0.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:oss:kryo-shaded:3.0.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:oss:kryo_shaded:3.0.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:9168aa9edf57e27178cf19177cd017cbde863db4b32b192859f2e4e224236750"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-server/lib/gremlin-shaded-3.7.1.jar"
+        },
+        {
+          "name": "syft:metadata:-:artifactID",
+          "value": "kryo-shaded"
+        },
+        {
+          "name": "syft:metadata:-:groupID",
+          "value": "com.esotericsoftware"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-server/lib/gremlin-shaded-3.7.1.jar:com.esotericsoftware:kryo-shaded"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:apk/alpine/lcms2@2.15-r2?arch=x86_64&distro=alpine-3.18.5&package-id=761e2c68d5f5fab4",
+      "type": "library",
+      "publisher": "Natanael Copa <ncopa@alpinelinux.org>",
+      "name": "lcms2",
+      "version": "2.15-r2",
+      "description": "Color Management Engine",
+      "licenses": [
+        {
+          "license": {
+            "id": "MIT"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:lcms2:lcms2:2.15-r2:*:*:*:*:*:*:*",
+      "purl": "pkg:apk/alpine/lcms2@2.15-r2?arch=x86_64&distro=alpine-3.18.5",
+      "externalReferences": [
+        {
+          "url": "https://www.littlecms.com",
+          "type": "distribution"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "apk-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "apk"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "apk-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:lcms2:lcms:2.15-r2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:lcms:lcms2:2.15-r2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:lcms:lcms:2.15-r2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:040ab99b6ccfaee2ade0def5bb35be6512e03860bd46bb9752a6c47709997f24"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/lib/apk/db/installed"
+        },
+        {
+          "name": "syft:metadata:gitCommitOfApkPort",
+          "value": "6230740e6722f541f75e1ca2ce6b5f6e53a3211d"
+        },
+        {
+          "name": "syft:metadata:installedSize",
+          "value": "344064"
+        },
+        {
+          "name": "syft:metadata:originPackage",
+          "value": "lcms2"
+        },
+        {
+          "name": "syft:metadata:provides:0",
+          "value": "so:liblcms2.so.2=2.0.15"
+        },
+        {
+          "name": "syft:metadata:pullChecksum",
+          "value": "Q1wwKFdTt4AFYhsUR9R9VOai9RwY4="
+        },
+        {
+          "name": "syft:metadata:pullDependencies:0",
+          "value": "so:libc.musl-x86_64.so.1"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "148638"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:apk/alpine/libbsd@0.11.7-r1?arch=x86_64&distro=alpine-3.18.5&package-id=be56281be99ee143",
+      "type": "library",
+      "publisher": "Drew DeVault <sir@cmpwn.com>",
+      "name": "libbsd",
+      "version": "0.11.7-r1",
+      "description": "commonly-used BSD functions not implemented by all libcs",
+      "licenses": [
+        {
+          "license": {
+            "id": "BSD-3-Clause"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:libbsd:libbsd:0.11.7-r1:*:*:*:*:*:*:*",
+      "purl": "pkg:apk/alpine/libbsd@0.11.7-r1?arch=x86_64&distro=alpine-3.18.5",
+      "externalReferences": [
+        {
+          "url": "https://libbsd.freedesktop.org/",
+          "type": "distribution"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "apk-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "apk"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "apk-db-entry"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:040ab99b6ccfaee2ade0def5bb35be6512e03860bd46bb9752a6c47709997f24"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/lib/apk/db/installed"
+        },
+        {
+          "name": "syft:metadata:gitCommitOfApkPort",
+          "value": "61912ace73a5f4d3e13a8ed157ed39b2c6d54c3e"
+        },
+        {
+          "name": "syft:metadata:installedSize",
+          "value": "86016"
+        },
+        {
+          "name": "syft:metadata:originPackage",
+          "value": "libbsd"
+        },
+        {
+          "name": "syft:metadata:provides:0",
+          "value": "so:libbsd.so.0=0.11.7"
+        },
+        {
+          "name": "syft:metadata:pullChecksum",
+          "value": "Q1+j7EAyk6annhsRDfB05DkHY1LLM="
+        },
+        {
+          "name": "syft:metadata:pullDependencies:0",
+          "value": "musl"
+        },
+        {
+          "name": "syft:metadata:pullDependencies:1",
+          "value": "so:libc.musl-x86_64.so.1"
+        },
+        {
+          "name": "syft:metadata:pullDependencies:2",
+          "value": "so:libmd.so.0"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "34014"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:apk/alpine/libbz2@1.0.8-r5?arch=x86_64&upstream=bzip2&distro=alpine-3.18.5&package-id=18e5911103cbf51c",
+      "type": "library",
+      "publisher": "Natanael Copa <ncopa@alpinelinux.org>",
+      "name": "libbz2",
+      "version": "1.0.8-r5",
+      "description": "Shared library for bz2",
+      "licenses": [
+        {
+          "license": {
+            "id": "bzip2-1.0.6"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:libbz2:libbz2:1.0.8-r5:*:*:*:*:*:*:*",
+      "purl": "pkg:apk/alpine/libbz2@1.0.8-r5?arch=x86_64&upstream=bzip2&distro=alpine-3.18.5",
+      "externalReferences": [
+        {
+          "url": "https://sourceware.org/bzip2/",
+          "type": "distribution"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "apk-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "apk"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "apk-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:libbz2:libbz:1.0.8-r5:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:libbz:libbz2:1.0.8-r5:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:libbz:libbz:1.0.8-r5:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:040ab99b6ccfaee2ade0def5bb35be6512e03860bd46bb9752a6c47709997f24"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/lib/apk/db/installed"
+        },
+        {
+          "name": "syft:metadata:gitCommitOfApkPort",
+          "value": "84a227baf001b6e0208e3352b294e4d7a40e93de"
+        },
+        {
+          "name": "syft:metadata:installedSize",
+          "value": "90112"
+        },
+        {
+          "name": "syft:metadata:originPackage",
+          "value": "bzip2"
+        },
+        {
+          "name": "syft:metadata:provides:0",
+          "value": "so:libbz2.so.1=1.0.8"
+        },
+        {
+          "name": "syft:metadata:pullChecksum",
+          "value": "Q1v13gWmLEhB4wJ6i0S77ZTIkSSDU="
+        },
+        {
+          "name": "syft:metadata:pullDependencies:0",
+          "value": "so:libc.musl-x86_64.so.1"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "33557"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:apk/alpine/libc-utils@0.7.2-r5?arch=x86_64&upstream=libc-dev&distro=alpine-3.18.5&package-id=caef79f1fe0b500a",
+      "type": "library",
+      "publisher": "Natanael Copa <ncopa@alpinelinux.org>",
+      "name": "libc-utils",
+      "version": "0.7.2-r5",
+      "description": "Meta package to pull in correct libc",
+      "licenses": [
+        {
+          "expression": "BSD-2-Clause AND BSD-3-Clause"
+        }
+      ],
+      "cpe": "cpe:2.3:a:libc-utils:libc-utils:0.7.2-r5:*:*:*:*:*:*:*",
+      "purl": "pkg:apk/alpine/libc-utils@0.7.2-r5?arch=x86_64&upstream=libc-dev&distro=alpine-3.18.5",
+      "externalReferences": [
+        {
+          "url": "https://alpinelinux.org",
+          "type": "distribution"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "apk-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "apk"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "apk-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:libc-utils:libc_utils:0.7.2-r5:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:libc_utils:libc-utils:0.7.2-r5:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:libc_utils:libc_utils:0.7.2-r5:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:libc:libc-utils:0.7.2-r5:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:libc:libc_utils:0.7.2-r5:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:040ab99b6ccfaee2ade0def5bb35be6512e03860bd46bb9752a6c47709997f24"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/lib/apk/db/installed"
+        },
+        {
+          "name": "syft:metadata:gitCommitOfApkPort",
+          "value": "988f183cc9d6699930c3e18ccf4a9e36010afb56"
+        },
+        {
+          "name": "syft:metadata:installedSize",
+          "value": "4096"
+        },
+        {
+          "name": "syft:metadata:originPackage",
+          "value": "libc-dev"
+        },
+        {
+          "name": "syft:metadata:pullChecksum",
+          "value": "Q1Llna/ri8oHhlQIRsaG8SGug0ikI="
+        },
+        {
+          "name": "syft:metadata:pullDependencies:0",
+          "value": "musl-utils"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "1484"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:apk/alpine/libcrypto3@3.1.4-r1?arch=x86_64&upstream=openssl&distro=alpine-3.18.5&package-id=e37b0015aff83d58",
+      "type": "library",
+      "publisher": "Ariadne Conill <ariadne@dereferenced.org>",
+      "name": "libcrypto3",
+      "version": "3.1.4-r1",
+      "description": "Crypto library from openssl",
+      "licenses": [
+        {
+          "license": {
+            "id": "Apache-2.0"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:libcrypto3:libcrypto3:3.1.4-r1:*:*:*:*:*:*:*",
+      "purl": "pkg:apk/alpine/libcrypto3@3.1.4-r1?arch=x86_64&upstream=openssl&distro=alpine-3.18.5",
+      "externalReferences": [
+        {
+          "url": "https://www.openssl.org/",
+          "type": "distribution"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "apk-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "apk"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "apk-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:libcrypto3:libcrypto:3.1.4-r1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:libcrypto:libcrypto3:3.1.4-r1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:libcrypto:libcrypto:3.1.4-r1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:040ab99b6ccfaee2ade0def5bb35be6512e03860bd46bb9752a6c47709997f24"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/lib/apk/db/installed"
+        },
+        {
+          "name": "syft:metadata:gitCommitOfApkPort",
+          "value": "ff71ec30ae47b5871c761e55af0a8850d253d828"
+        },
+        {
+          "name": "syft:metadata:installedSize",
+          "value": "4579328"
+        },
+        {
+          "name": "syft:metadata:originPackage",
+          "value": "openssl"
+        },
+        {
+          "name": "syft:metadata:provides:0",
+          "value": "so:libcrypto.so.3=3"
+        },
+        {
+          "name": "syft:metadata:pullChecksum",
+          "value": "Q1o+vFJMnZukduV7Y+lgb7DvYwlJo="
+        },
+        {
+          "name": "syft:metadata:pullDependencies:0",
+          "value": "so:libc.musl-x86_64.so.1"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "1743954"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:apk/alpine/libffi@3.4.4-r2?arch=x86_64&distro=alpine-3.18.5&package-id=4398410e101bab31",
+      "type": "library",
+      "publisher": "Natanael Copa <ncopa@alpinelinux.org>",
+      "name": "libffi",
+      "version": "3.4.4-r2",
+      "description": "portable, high level programming interface to various calling conventions.",
+      "licenses": [
+        {
+          "license": {
+            "id": "MIT"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:libffi:libffi:3.4.4-r2:*:*:*:*:*:*:*",
+      "purl": "pkg:apk/alpine/libffi@3.4.4-r2?arch=x86_64&distro=alpine-3.18.5",
+      "externalReferences": [
+        {
+          "url": "https://sourceware.org/libffi/",
+          "type": "distribution"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "apk-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "apk"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "apk-db-entry"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:040ab99b6ccfaee2ade0def5bb35be6512e03860bd46bb9752a6c47709997f24"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/lib/apk/db/installed"
+        },
+        {
+          "name": "syft:metadata:gitCommitOfApkPort",
+          "value": "84a227baf001b6e0208e3352b294e4d7a40e93de"
+        },
+        {
+          "name": "syft:metadata:installedSize",
+          "value": "53248"
+        },
+        {
+          "name": "syft:metadata:originPackage",
+          "value": "libffi"
+        },
+        {
+          "name": "syft:metadata:provides:0",
+          "value": "so:libffi.so.8=8.1.2"
+        },
+        {
+          "name": "syft:metadata:pullChecksum",
+          "value": "Q1xtictLb2KgBtjl6nDymcUhtVZy8="
+        },
+        {
+          "name": "syft:metadata:pullDependencies:0",
+          "value": "so:libc.musl-x86_64.so.1"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "18623"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:apk/alpine/libjpeg-turbo@2.1.5.1-r3?arch=x86_64&distro=alpine-3.18.5&package-id=cb5c16be818a9da1",
+      "type": "library",
+      "publisher": "Natanael Copa <ncopa@alpinelinux.org>",
+      "name": "libjpeg-turbo",
+      "version": "2.1.5.1-r3",
+      "description": "Accelerated baseline JPEG compression and decompression library",
+      "licenses": [
+        {
+          "expression": "BSD-3-Clause AND IJG AND Zlib"
+        }
+      ],
+      "cpe": "cpe:2.3:a:libjpeg-turbo:libjpeg-turbo:2.1.5.1-r3:*:*:*:*:*:*:*",
+      "purl": "pkg:apk/alpine/libjpeg-turbo@2.1.5.1-r3?arch=x86_64&distro=alpine-3.18.5",
+      "externalReferences": [
+        {
+          "url": "https://libjpeg-turbo.org/",
+          "type": "distribution"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "apk-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "apk"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "apk-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:libjpeg-turbo:libjpeg_turbo:2.1.5.1-r3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:libjpeg_turbo:libjpeg-turbo:2.1.5.1-r3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:libjpeg_turbo:libjpeg_turbo:2.1.5.1-r3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:libjpeg:libjpeg-turbo:2.1.5.1-r3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:libjpeg:libjpeg_turbo:2.1.5.1-r3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:040ab99b6ccfaee2ade0def5bb35be6512e03860bd46bb9752a6c47709997f24"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/lib/apk/db/installed"
+        },
+        {
+          "name": "syft:metadata:gitCommitOfApkPort",
+          "value": "706ef5050047b417e440d017ddae08a5f2680b1b"
+        },
+        {
+          "name": "syft:metadata:installedSize",
+          "value": "1138688"
+        },
+        {
+          "name": "syft:metadata:originPackage",
+          "value": "libjpeg-turbo"
+        },
+        {
+          "name": "syft:metadata:provides:0",
+          "value": "so:libjpeg.so.8=8.2.2"
+        },
+        {
+          "name": "syft:metadata:provides:1",
+          "value": "so:libturbojpeg.so.0=0.2.0"
+        },
+        {
+          "name": "syft:metadata:pullChecksum",
+          "value": "Q10BzQUhBki2TnToBm3a47rxTPsgI="
+        },
+        {
+          "name": "syft:metadata:pullDependencies:0",
+          "value": "so:libc.musl-x86_64.so.1"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "328155"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:apk/alpine/libmd@1.0.4-r2?arch=x86_64&distro=alpine-3.18.5&package-id=3cad17c3657f9a8c",
+      "type": "library",
+      "publisher": "omni <omni+alpine@hack.org>",
+      "name": "libmd",
+      "version": "1.0.4-r2",
+      "description": "Message Digest functions from BSD systems",
+      "licenses": [
+        {
+          "license": {
+            "id": "BSD-2-Clause"
+          }
+        },
+        {
+          "license": {
+            "id": "BSD-3-Clause"
+          }
+        },
+        {
+          "license": {
+            "id": "Beerware"
+          }
+        },
+        {
+          "license": {
+            "id": "ISC"
+          }
+        },
+        {
+          "license": {
+            "name": "AND"
+          }
+        },
+        {
+          "license": {
+            "name": "Domain"
+          }
+        },
+        {
+          "license": {
+            "name": "Public"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:libmd:libmd:1.0.4-r2:*:*:*:*:*:*:*",
+      "purl": "pkg:apk/alpine/libmd@1.0.4-r2?arch=x86_64&distro=alpine-3.18.5",
+      "externalReferences": [
+        {
+          "url": "https://www.hadrons.org/software/libmd/",
+          "type": "distribution"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "apk-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "apk"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "apk-db-entry"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:040ab99b6ccfaee2ade0def5bb35be6512e03860bd46bb9752a6c47709997f24"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/lib/apk/db/installed"
+        },
+        {
+          "name": "syft:metadata:gitCommitOfApkPort",
+          "value": "84a227baf001b6e0208e3352b294e4d7a40e93de"
+        },
+        {
+          "name": "syft:metadata:installedSize",
+          "value": "57344"
+        },
+        {
+          "name": "syft:metadata:originPackage",
+          "value": "libmd"
+        },
+        {
+          "name": "syft:metadata:provides:0",
+          "value": "so:libmd.so.0=0.0.5"
+        },
+        {
+          "name": "syft:metadata:pullChecksum",
+          "value": "Q1mYm9gKamc63xWl0cKagc8M+KxOQ="
+        },
+        {
+          "name": "syft:metadata:pullDependencies:0",
+          "value": "so:libc.musl-x86_64.so.1"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "19937"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:apk/alpine/libncursesw@6.4_p20230506-r0?arch=x86_64&upstream=ncurses&distro=alpine-3.18.5&package-id=fecedb8a52a992aa",
+      "type": "library",
+      "publisher": "Natanael Copa <ncopa@alpinelinux.org>",
+      "name": "libncursesw",
+      "version": "6.4_p20230506-r0",
+      "description": "Console display library (libncursesw)",
+      "licenses": [
+        {
+          "license": {
+            "id": "X11"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:libncursesw:libncursesw:6.4_p20230506-r0:*:*:*:*:*:*:*",
+      "purl": "pkg:apk/alpine/libncursesw@6.4_p20230506-r0?arch=x86_64&upstream=ncurses&distro=alpine-3.18.5",
+      "externalReferences": [
+        {
+          "url": "https://invisible-island.net/ncurses/",
+          "type": "distribution"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "apk-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "apk"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "apk-db-entry"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:040ab99b6ccfaee2ade0def5bb35be6512e03860bd46bb9752a6c47709997f24"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/lib/apk/db/installed"
+        },
+        {
+          "name": "syft:metadata:gitCommitOfApkPort",
+          "value": "e20fdedcf90182080424bba81c1f8deffb199872"
+        },
+        {
+          "name": "syft:metadata:installedSize",
+          "value": "352256"
+        },
+        {
+          "name": "syft:metadata:originPackage",
+          "value": "ncurses"
+        },
+        {
+          "name": "syft:metadata:provides:0",
+          "value": "so:libncursesw.so.6=6.4"
+        },
+        {
+          "name": "syft:metadata:pullChecksum",
+          "value": "Q1dD0p75kd/SeiqiNdbcrVT0ZTiOY="
+        },
+        {
+          "name": "syft:metadata:pullDependencies:0",
+          "value": "ncurses-terminfo-base=6.4_p20230506-r0"
+        },
+        {
+          "name": "syft:metadata:pullDependencies:1",
+          "value": "so:libc.musl-x86_64.so.1"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "161980"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:apk/alpine/libpng@1.6.39-r3?arch=x86_64&distro=alpine-3.18.5&package-id=fae14a749f94b4a9",
+      "type": "library",
+      "publisher": "Natanael Copa <ncopa@alpinelinux.org>",
+      "name": "libpng",
+      "version": "1.6.39-r3",
+      "description": "Portable Network Graphics library",
+      "licenses": [
+        {
+          "license": {
+            "id": "Libpng"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:libpng:libpng:1.6.39-r3:*:*:*:*:*:*:*",
+      "purl": "pkg:apk/alpine/libpng@1.6.39-r3?arch=x86_64&distro=alpine-3.18.5",
+      "externalReferences": [
+        {
+          "url": "http://www.libpng.org",
+          "type": "distribution"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "apk-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "apk"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "apk-db-entry"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:040ab99b6ccfaee2ade0def5bb35be6512e03860bd46bb9752a6c47709997f24"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/lib/apk/db/installed"
+        },
+        {
+          "name": "syft:metadata:gitCommitOfApkPort",
+          "value": "84a227baf001b6e0208e3352b294e4d7a40e93de"
+        },
+        {
+          "name": "syft:metadata:installedSize",
+          "value": "208896"
+        },
+        {
+          "name": "syft:metadata:originPackage",
+          "value": "libpng"
+        },
+        {
+          "name": "syft:metadata:provides:0",
+          "value": "so:libpng16.so.16=16.39.0"
+        },
+        {
+          "name": "syft:metadata:pullChecksum",
+          "value": "Q1NT0nQEiWmw9qZ2lo87z+ZOmd/SY="
+        },
+        {
+          "name": "syft:metadata:pullDependencies:0",
+          "value": "so:libc.musl-x86_64.so.1"
+        },
+        {
+          "name": "syft:metadata:pullDependencies:1",
+          "value": "so:libz.so.1"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "98037"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:apk/alpine/libssl3@3.1.4-r1?arch=x86_64&upstream=openssl&distro=alpine-3.18.5&package-id=8dd02cc858a89430",
+      "type": "library",
+      "publisher": "Ariadne Conill <ariadne@dereferenced.org>",
+      "name": "libssl3",
+      "version": "3.1.4-r1",
+      "description": "SSL shared libraries",
+      "licenses": [
+        {
+          "license": {
+            "id": "Apache-2.0"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:libssl3:libssl3:3.1.4-r1:*:*:*:*:*:*:*",
+      "purl": "pkg:apk/alpine/libssl3@3.1.4-r1?arch=x86_64&upstream=openssl&distro=alpine-3.18.5",
+      "externalReferences": [
+        {
+          "url": "https://www.openssl.org/",
+          "type": "distribution"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "apk-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "apk"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "apk-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:libssl3:libssl:3.1.4-r1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:libssl:libssl3:3.1.4-r1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:libssl:libssl:3.1.4-r1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:040ab99b6ccfaee2ade0def5bb35be6512e03860bd46bb9752a6c47709997f24"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/lib/apk/db/installed"
+        },
+        {
+          "name": "syft:metadata:gitCommitOfApkPort",
+          "value": "ff71ec30ae47b5871c761e55af0a8850d253d828"
+        },
+        {
+          "name": "syft:metadata:installedSize",
+          "value": "565248"
+        },
+        {
+          "name": "syft:metadata:originPackage",
+          "value": "openssl"
+        },
+        {
+          "name": "syft:metadata:provides:0",
+          "value": "so:libssl.so.3=3"
+        },
+        {
+          "name": "syft:metadata:pullChecksum",
+          "value": "Q1o47c8bt1FJzVuhEX26C7/lIsPmY="
+        },
+        {
+          "name": "syft:metadata:pullDependencies:0",
+          "value": "so:libc.musl-x86_64.so.1"
+        },
+        {
+          "name": "syft:metadata:pullDependencies:1",
+          "value": "so:libcrypto.so.3"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "235948"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:apk/alpine/libtasn1@4.19.0-r1?arch=x86_64&distro=alpine-3.18.5&package-id=dab129c365cfba5f",
+      "type": "library",
+      "publisher": "Natanael Copa <ncopa@alpinelinux.org>",
+      "name": "libtasn1",
+      "version": "4.19.0-r1",
+      "description": "The ASN.1 library used in GNUTLS",
+      "licenses": [
+        {
+          "license": {
+            "id": "LGPL-2.1-or-later"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:libtasn1:libtasn1:4.19.0-r1:*:*:*:*:*:*:*",
+      "purl": "pkg:apk/alpine/libtasn1@4.19.0-r1?arch=x86_64&distro=alpine-3.18.5",
+      "externalReferences": [
+        {
+          "url": "https://www.gnu.org/software/gnutls/",
+          "type": "distribution"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "apk-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "apk"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "apk-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:libtasn1:libtasn:4.19.0-r1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:libtasn:libtasn1:4.19.0-r1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:libtasn:libtasn:4.19.0-r1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:gnu:libtasn1:4.19.0-r1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:gnu:libtasn:4.19.0-r1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:040ab99b6ccfaee2ade0def5bb35be6512e03860bd46bb9752a6c47709997f24"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/lib/apk/db/installed"
+        },
+        {
+          "name": "syft:metadata:gitCommitOfApkPort",
+          "value": "1bbe496e91a18009491b42a72d93d8feae795d09"
+        },
+        {
+          "name": "syft:metadata:installedSize",
+          "value": "81920"
+        },
+        {
+          "name": "syft:metadata:originPackage",
+          "value": "libtasn1"
+        },
+        {
+          "name": "syft:metadata:provides:0",
+          "value": "so:libtasn1.so.6=6.6.3"
+        },
+        {
+          "name": "syft:metadata:pullChecksum",
+          "value": "Q1w2qKnZZzBlyL9gIEA6EebD/BXZw="
+        },
+        {
+          "name": "syft:metadata:pullDependencies:0",
+          "value": "so:libc.musl-x86_64.so.1"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "33630"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:apk/alpine/libx11@1.8.7-r0?arch=x86_64&distro=alpine-3.18.5&package-id=0ca45a0d92ec397a",
+      "type": "library",
+      "publisher": "Natanael Copa <ncopa@alpinelinux.org>",
+      "name": "libx11",
+      "version": "1.8.7-r0",
+      "description": "X11 client-side library",
+      "licenses": [
+        {
+          "license": {
+            "id": "X11"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:libx11:libx11:1.8.7-r0:*:*:*:*:*:*:*",
+      "purl": "pkg:apk/alpine/libx11@1.8.7-r0?arch=x86_64&distro=alpine-3.18.5",
+      "externalReferences": [
+        {
+          "url": "https://xorg.freedesktop.org/",
+          "type": "distribution"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "apk-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "apk"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "apk-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:libx11:libx:1.8.7-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:libx:libx11:1.8.7-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:libx:libx:1.8.7-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:040ab99b6ccfaee2ade0def5bb35be6512e03860bd46bb9752a6c47709997f24"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/lib/apk/db/installed"
+        },
+        {
+          "name": "syft:metadata:gitCommitOfApkPort",
+          "value": "659ef3a25fa07768ad1cd89570951dee794fc8bf"
+        },
+        {
+          "name": "syft:metadata:installedSize",
+          "value": "3166208"
+        },
+        {
+          "name": "syft:metadata:originPackage",
+          "value": "libx11"
+        },
+        {
+          "name": "syft:metadata:provides:0",
+          "value": "so:libX11-xcb.so.1=1.0.0"
+        },
+        {
+          "name": "syft:metadata:provides:1",
+          "value": "so:libX11.so.6=6.4.0"
+        },
+        {
+          "name": "syft:metadata:pullChecksum",
+          "value": "Q1DMQKcWxWmoBfIOm7zpjHGN2CZuU="
+        },
+        {
+          "name": "syft:metadata:pullDependencies:0",
+          "value": "so:libc.musl-x86_64.so.1"
+        },
+        {
+          "name": "syft:metadata:pullDependencies:1",
+          "value": "so:libxcb.so.1"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "876770"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:apk/alpine/libxau@1.0.11-r2?arch=x86_64&distro=alpine-3.18.5&package-id=bfc32cdeb41f936d",
+      "type": "library",
+      "publisher": "Natanael Copa <ncopa@alpinelinux.org>",
+      "name": "libxau",
+      "version": "1.0.11-r2",
+      "description": "X11 authorisation library",
+      "licenses": [
+        {
+          "license": {
+            "id": "MIT"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:libxau:libxau:1.0.11-r2:*:*:*:*:*:*:*",
+      "purl": "pkg:apk/alpine/libxau@1.0.11-r2?arch=x86_64&distro=alpine-3.18.5",
+      "externalReferences": [
+        {
+          "url": "https://xorg.freedesktop.org/",
+          "type": "distribution"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "apk-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "apk"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "apk-db-entry"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:040ab99b6ccfaee2ade0def5bb35be6512e03860bd46bb9752a6c47709997f24"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/lib/apk/db/installed"
+        },
+        {
+          "name": "syft:metadata:gitCommitOfApkPort",
+          "value": "b24a4cdf2a2e4b41de4d78979aa9aae0d1383ebc"
+        },
+        {
+          "name": "syft:metadata:installedSize",
+          "value": "28672"
+        },
+        {
+          "name": "syft:metadata:originPackage",
+          "value": "libxau"
+        },
+        {
+          "name": "syft:metadata:provides:0",
+          "value": "so:libXau.so.6=6.0.0"
+        },
+        {
+          "name": "syft:metadata:pullChecksum",
+          "value": "Q1ALudeKtug4gWfx7jA1oi97Q7cAE="
+        },
+        {
+          "name": "syft:metadata:pullDependencies:0",
+          "value": "so:libc.musl-x86_64.so.1"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "5905"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:apk/alpine/libxcb@1.15-r1?arch=x86_64&distro=alpine-3.18.5&package-id=c1b8a0b48dc24735",
+      "type": "library",
+      "publisher": "Natanael Copa <ncopa@alpinelinux.org>",
+      "name": "libxcb",
+      "version": "1.15-r1",
+      "description": "X11 client-side library",
+      "licenses": [
+        {
+          "license": {
+            "id": "MIT"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:libxcb:libxcb:1.15-r1:*:*:*:*:*:*:*",
+      "purl": "pkg:apk/alpine/libxcb@1.15-r1?arch=x86_64&distro=alpine-3.18.5",
+      "externalReferences": [
+        {
+          "url": "https://xcb.freedesktop.org",
+          "type": "distribution"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "apk-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "apk"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "apk-db-entry"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:040ab99b6ccfaee2ade0def5bb35be6512e03860bd46bb9752a6c47709997f24"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/lib/apk/db/installed"
+        },
+        {
+          "name": "syft:metadata:gitCommitOfApkPort",
+          "value": "84a227baf001b6e0208e3352b294e4d7a40e93de"
+        },
+        {
+          "name": "syft:metadata:installedSize",
+          "value": "1003520"
+        },
+        {
+          "name": "syft:metadata:originPackage",
+          "value": "libxcb"
+        },
+        {
+          "name": "syft:metadata:provides:0",
+          "value": "so:libxcb-composite.so.0=0.0.0"
+        },
+        {
+          "name": "syft:metadata:provides:1",
+          "value": "so:libxcb-damage.so.0=0.0.0"
+        },
+        {
+          "name": "syft:metadata:provides:10",
+          "value": "so:libxcb-res.so.0=0.0.0"
+        },
+        {
+          "name": "syft:metadata:provides:11",
+          "value": "so:libxcb-screensaver.so.0=0.0.0"
+        },
+        {
+          "name": "syft:metadata:provides:12",
+          "value": "so:libxcb-shape.so.0=0.0.0"
+        },
+        {
+          "name": "syft:metadata:provides:13",
+          "value": "so:libxcb-shm.so.0=0.0.0"
+        },
+        {
+          "name": "syft:metadata:provides:14",
+          "value": "so:libxcb-sync.so.1=1.0.0"
+        },
+        {
+          "name": "syft:metadata:provides:15",
+          "value": "so:libxcb-xf86dri.so.0=0.0.0"
+        },
+        {
+          "name": "syft:metadata:provides:16",
+          "value": "so:libxcb-xfixes.so.0=0.0.0"
+        },
+        {
+          "name": "syft:metadata:provides:17",
+          "value": "so:libxcb-xinerama.so.0=0.0.0"
+        },
+        {
+          "name": "syft:metadata:provides:18",
+          "value": "so:libxcb-xinput.so.0=0.1.0"
+        },
+        {
+          "name": "syft:metadata:provides:19",
+          "value": "so:libxcb-xkb.so.1=1.0.0"
+        },
+        {
+          "name": "syft:metadata:provides:2",
+          "value": "so:libxcb-dpms.so.0=0.0.0"
+        },
+        {
+          "name": "syft:metadata:provides:20",
+          "value": "so:libxcb-xtest.so.0=0.0.0"
+        },
+        {
+          "name": "syft:metadata:provides:21",
+          "value": "so:libxcb-xv.so.0=0.0.0"
+        },
+        {
+          "name": "syft:metadata:provides:22",
+          "value": "so:libxcb-xvmc.so.0=0.0.0"
+        },
+        {
+          "name": "syft:metadata:provides:23",
+          "value": "so:libxcb.so.1=1.1.0"
+        },
+        {
+          "name": "syft:metadata:provides:3",
+          "value": "so:libxcb-dri2.so.0=0.0.0"
+        },
+        {
+          "name": "syft:metadata:provides:4",
+          "value": "so:libxcb-dri3.so.0=0.1.0"
+        },
+        {
+          "name": "syft:metadata:provides:5",
+          "value": "so:libxcb-glx.so.0=0.0.0"
+        },
+        {
+          "name": "syft:metadata:provides:6",
+          "value": "so:libxcb-present.so.0=0.0.0"
+        },
+        {
+          "name": "syft:metadata:provides:7",
+          "value": "so:libxcb-randr.so.0=0.1.0"
+        },
+        {
+          "name": "syft:metadata:provides:8",
+          "value": "so:libxcb-record.so.0=0.0.0"
+        },
+        {
+          "name": "syft:metadata:provides:9",
+          "value": "so:libxcb-render.so.0=0.0.0"
+        },
+        {
+          "name": "syft:metadata:pullChecksum",
+          "value": "Q1ojJM6xVv5Ob//8P/oQtTIIX9UhY="
+        },
+        {
+          "name": "syft:metadata:pullDependencies:0",
+          "value": "so:libXau.so.6"
+        },
+        {
+          "name": "syft:metadata:pullDependencies:1",
+          "value": "so:libXdmcp.so.6"
+        },
+        {
+          "name": "syft:metadata:pullDependencies:2",
+          "value": "so:libc.musl-x86_64.so.1"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "238101"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:apk/alpine/libxdmcp@1.1.4-r2?arch=x86_64&distro=alpine-3.18.5&package-id=b27c714be4aa474b",
+      "type": "library",
+      "publisher": "Natanael Copa <ncopa@alpinelinux.org>",
+      "name": "libxdmcp",
+      "version": "1.1.4-r2",
+      "description": "X11 Display Manager Control Protocol library",
+      "licenses": [
+        {
+          "license": {
+            "id": "MIT"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:libxdmcp:libxdmcp:1.1.4-r2:*:*:*:*:*:*:*",
+      "purl": "pkg:apk/alpine/libxdmcp@1.1.4-r2?arch=x86_64&distro=alpine-3.18.5",
+      "externalReferences": [
+        {
+          "url": "https://xorg.freedesktop.org/",
+          "type": "distribution"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "apk-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "apk"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "apk-db-entry"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:040ab99b6ccfaee2ade0def5bb35be6512e03860bd46bb9752a6c47709997f24"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/lib/apk/db/installed"
+        },
+        {
+          "name": "syft:metadata:gitCommitOfApkPort",
+          "value": "b24a4cdf2a2e4b41de4d78979aa9aae0d1383ebc"
+        },
+        {
+          "name": "syft:metadata:installedSize",
+          "value": "40960"
+        },
+        {
+          "name": "syft:metadata:originPackage",
+          "value": "libxdmcp"
+        },
+        {
+          "name": "syft:metadata:provides:0",
+          "value": "so:libXdmcp.so.6=6.0.0"
+        },
+        {
+          "name": "syft:metadata:pullChecksum",
+          "value": "Q1xqF/h+wrMkxMCfm5qTreTGHp2XE="
+        },
+        {
+          "name": "syft:metadata:pullDependencies:0",
+          "value": "so:libbsd.so.0"
+        },
+        {
+          "name": "syft:metadata:pullDependencies:1",
+          "value": "so:libc.musl-x86_64.so.1"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "9767"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:apk/alpine/libxext@1.3.5-r2?arch=x86_64&distro=alpine-3.18.5&package-id=8796daa88f7456f5",
+      "type": "library",
+      "publisher": "Natanael Copa <ncopa@alpinelinux.org>",
+      "name": "libxext",
+      "version": "1.3.5-r2",
+      "description": "X11 miscellaneous extensions library",
+      "licenses": [
+        {
+          "license": {
+            "id": "MIT"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:libxext:libxext:1.3.5-r2:*:*:*:*:*:*:*",
+      "purl": "pkg:apk/alpine/libxext@1.3.5-r2?arch=x86_64&distro=alpine-3.18.5",
+      "externalReferences": [
+        {
+          "url": "https://xorg.freedesktop.org/",
+          "type": "distribution"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "apk-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "apk"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "apk-db-entry"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:040ab99b6ccfaee2ade0def5bb35be6512e03860bd46bb9752a6c47709997f24"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/lib/apk/db/installed"
+        },
+        {
+          "name": "syft:metadata:gitCommitOfApkPort",
+          "value": "b24a4cdf2a2e4b41de4d78979aa9aae0d1383ebc"
+        },
+        {
+          "name": "syft:metadata:installedSize",
+          "value": "81920"
+        },
+        {
+          "name": "syft:metadata:originPackage",
+          "value": "libxext"
+        },
+        {
+          "name": "syft:metadata:provides:0",
+          "value": "so:libXext.so.6=6.4.0"
+        },
+        {
+          "name": "syft:metadata:pullChecksum",
+          "value": "Q1kECNgDsp9ny2jUTJaXpgArtGnUg="
+        },
+        {
+          "name": "syft:metadata:pullDependencies:0",
+          "value": "so:libX11.so.6"
+        },
+        {
+          "name": "syft:metadata:pullDependencies:1",
+          "value": "so:libc.musl-x86_64.so.1"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "25944"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:apk/alpine/libxi@1.8.1-r0?arch=x86_64&distro=alpine-3.18.5&package-id=797b290ab96926c4",
+      "type": "library",
+      "publisher": "Natanael Copa <ncopa@alpinelinux.org>",
+      "name": "libxi",
+      "version": "1.8.1-r0",
+      "description": "X11 Input extension library",
+      "licenses": [
+        {
+          "expression": "MIT AND X11"
+        }
+      ],
+      "cpe": "cpe:2.3:a:libxi:libxi:1.8.1-r0:*:*:*:*:*:*:*",
+      "purl": "pkg:apk/alpine/libxi@1.8.1-r0?arch=x86_64&distro=alpine-3.18.5",
+      "externalReferences": [
+        {
+          "url": "https://www.x.org",
+          "type": "distribution"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "apk-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "apk"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "apk-db-entry"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:040ab99b6ccfaee2ade0def5bb35be6512e03860bd46bb9752a6c47709997f24"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/lib/apk/db/installed"
+        },
+        {
+          "name": "syft:metadata:gitCommitOfApkPort",
+          "value": "dcfdf41b1c70d6084c087b765adb22058f431ce1"
+        },
+        {
+          "name": "syft:metadata:installedSize",
+          "value": "77824"
+        },
+        {
+          "name": "syft:metadata:originPackage",
+          "value": "libxi"
+        },
+        {
+          "name": "syft:metadata:provides:0",
+          "value": "so:libXi.so.6=6.1.0"
+        },
+        {
+          "name": "syft:metadata:pullChecksum",
+          "value": "Q181/Dg7rJvdVSuVJLnozvOX0at0Q="
+        },
+        {
+          "name": "syft:metadata:pullDependencies:0",
+          "value": "so:libX11.so.6"
+        },
+        {
+          "name": "syft:metadata:pullDependencies:1",
+          "value": "so:libXext.so.6"
+        },
+        {
+          "name": "syft:metadata:pullDependencies:2",
+          "value": "so:libc.musl-x86_64.so.1"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "27427"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:apk/alpine/libxrender@0.9.11-r3?arch=x86_64&distro=alpine-3.18.5&package-id=f8718eabf47ab91f",
+      "type": "library",
+      "publisher": "Natanael Copa <ncopa@alpinelinux.org>",
+      "name": "libxrender",
+      "version": "0.9.11-r3",
+      "description": "X Rendering Extension client library",
+      "licenses": [
+        {
+          "license": {
+            "id": "MIT"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:libxrender:libxrender:0.9.11-r3:*:*:*:*:*:*:*",
+      "purl": "pkg:apk/alpine/libxrender@0.9.11-r3?arch=x86_64&distro=alpine-3.18.5",
+      "externalReferences": [
+        {
+          "url": "https://xorg.freedesktop.org/",
+          "type": "distribution"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "apk-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "apk"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "apk-db-entry"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:040ab99b6ccfaee2ade0def5bb35be6512e03860bd46bb9752a6c47709997f24"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/lib/apk/db/installed"
+        },
+        {
+          "name": "syft:metadata:gitCommitOfApkPort",
+          "value": "b24a4cdf2a2e4b41de4d78979aa9aae0d1383ebc"
+        },
+        {
+          "name": "syft:metadata:installedSize",
+          "value": "57344"
+        },
+        {
+          "name": "syft:metadata:originPackage",
+          "value": "libxrender"
+        },
+        {
+          "name": "syft:metadata:provides:0",
+          "value": "so:libXrender.so.1=1.3.0"
+        },
+        {
+          "name": "syft:metadata:pullChecksum",
+          "value": "Q1iPqLhF9l+Qcnt2oSQQXHQa1wd5k="
+        },
+        {
+          "name": "syft:metadata:pullDependencies:0",
+          "value": "so:libX11.so.6"
+        },
+        {
+          "name": "syft:metadata:pullDependencies:1",
+          "value": "so:libc.musl-x86_64.so.1"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "16510"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:apk/alpine/libxtst@1.2.4-r2?arch=x86_64&distro=alpine-3.18.5&package-id=89f76e217990632b",
+      "type": "library",
+      "publisher": "Natanael Copa <ncopa@alpinelinux.org>",
+      "name": "libxtst",
+      "version": "1.2.4-r2",
+      "description": "X11 Testing -- Resource extension library",
+      "licenses": [
+        {
+          "license": {
+            "id": "MIT"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:libxtst:libxtst:1.2.4-r2:*:*:*:*:*:*:*",
+      "purl": "pkg:apk/alpine/libxtst@1.2.4-r2?arch=x86_64&distro=alpine-3.18.5",
+      "externalReferences": [
+        {
+          "url": "https://wiki.freedesktop.org/xorg/",
+          "type": "distribution"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "apk-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "apk"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "apk-db-entry"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:040ab99b6ccfaee2ade0def5bb35be6512e03860bd46bb9752a6c47709997f24"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/lib/apk/db/installed"
+        },
+        {
+          "name": "syft:metadata:gitCommitOfApkPort",
+          "value": "84a227baf001b6e0208e3352b294e4d7a40e93de"
+        },
+        {
+          "name": "syft:metadata:installedSize",
+          "value": "40960"
+        },
+        {
+          "name": "syft:metadata:originPackage",
+          "value": "libxtst"
+        },
+        {
+          "name": "syft:metadata:provides:0",
+          "value": "so:libXtst.so.6=6.1.0"
+        },
+        {
+          "name": "syft:metadata:pullChecksum",
+          "value": "Q1dhkDCHJleqyKLeWm4IW3yGD5FLU="
+        },
+        {
+          "name": "syft:metadata:pullDependencies:0",
+          "value": "so:libX11.so.6"
+        },
+        {
+          "name": "syft:metadata:pullDependencies:1",
+          "value": "so:libXext.so.6"
+        },
+        {
+          "name": "syft:metadata:pullDependencies:2",
+          "value": "so:libc.musl-x86_64.so.1"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "10140"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/ch.qos.logback/logback-classic@1.2.11?package-id=d4b244158479a3ec",
+      "type": "library",
+      "group": "ch.qos.logback",
+      "name": "logback-classic",
+      "version": "1.2.11",
+      "licenses": [
+        {
+          "license": {
+            "name": "http://www.eclipse.org/legal/epl-v10.html, http://www.gnu.org/licenses/old-licenses/lgpl-2.1.html"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:logback-classic:logback-classic:1.2.11:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/ch.qos.logback/logback-classic@1.2.11",
+      "externalReferences": [
+        {
+          "url": "",
+          "hashes": [
+            {
+              "alg": "SHA-1",
+              "content": "4741689214e9d1e8408b206506cbe76d1c6a7d60"
+            }
+          ],
+          "type": "build-meta"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:logback-classic:logback_classic:1.2.11:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:logback_classic:logback-classic:1.2.11:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:logback_classic:logback_classic:1.2.11:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:logback:logback-classic:1.2.11:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:logback:logback_classic:1.2.11:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:9168aa9edf57e27178cf19177cd017cbde863db4b32b192859f2e4e224236750"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-server/lib/logback-classic-1.2.11.jar"
+        },
+        {
+          "name": "syft:metadata:-:artifactID",
+          "value": "logback-classic"
+        },
+        {
+          "name": "syft:metadata:-:groupID",
+          "value": "ch.qos.logback"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-server/lib/logback-classic-1.2.11.jar"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/ch.qos.logback/logback-core@1.2.11?package-id=7001209f42b8b100",
+      "type": "library",
+      "group": "ch.qos.logback",
+      "name": "logback-core",
+      "version": "1.2.11",
+      "licenses": [
+        {
+          "license": {
+            "name": "http://www.eclipse.org/legal/epl-v10.html, http://www.gnu.org/licenses/old-licenses/lgpl-2.1.html"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:logback-core:logback-core:1.2.11:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/ch.qos.logback/logback-core@1.2.11",
+      "externalReferences": [
+        {
+          "url": "",
+          "hashes": [
+            {
+              "alg": "SHA-1",
+              "content": "a01230df5ca5c34540cdaa3ad5efb012f1f1f792"
+            }
+          ],
+          "type": "build-meta"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:logback-core:logback_core:1.2.11:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:logback_core:logback-core:1.2.11:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:logback_core:logback_core:1.2.11:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:logback:logback-core:1.2.11:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:logback:logback_core:1.2.11:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:9168aa9edf57e27178cf19177cd017cbde863db4b32b192859f2e4e224236750"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-server/lib/logback-core-1.2.11.jar"
+        },
+        {
+          "name": "syft:metadata:-:artifactID",
+          "value": "logback-core"
+        },
+        {
+          "name": "syft:metadata:-:groupID",
+          "value": "ch.qos.logback"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-server/lib/logback-core-1.2.11.jar"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/com.codahale.metrics/metrics-core@3.0.2?package-id=d5f63abfe43fff71",
+      "type": "library",
+      "group": "com.codahale.metrics",
+      "name": "metrics-core",
+      "version": "3.0.2",
+      "licenses": [
+        {
+          "license": {
+            "name": "http://www.apache.org/licenses/LICENSE-2.0.html"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:metrics-core:metrics-core:3.0.2:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/com.codahale.metrics/metrics-core@3.0.2",
+      "externalReferences": [
+        {
+          "url": "",
+          "hashes": [
+            {
+              "alg": "SHA-1",
+              "content": "c6a7fb32776e984b64ff1a548e3044238ea5a931"
+            }
+          ],
+          "type": "build-meta"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:metrics-core:metrics_core:3.0.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:metrics_core:metrics-core:3.0.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:metrics_core:metrics_core:3.0.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codahale:metrics-core:3.0.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codahale:metrics_core:3.0.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:metrics-core:metrics:3.0.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:metrics:metrics-core:3.0.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:metrics:metrics_core:3.0.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:metrics_core:metrics:3.0.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:core:metrics-core:3.0.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:core:metrics_core:3.0.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:metrics-core:core:3.0.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:metrics_core:core:3.0.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codahale:metrics:3.0.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:metrics:metrics:3.0.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codahale:core:3.0.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:core:metrics:3.0.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:metrics:core:3.0.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:core:core:3.0.2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:9168aa9edf57e27178cf19177cd017cbde863db4b32b192859f2e4e224236750"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-server/lib/metrics-core-3.0.2.jar"
+        },
+        {
+          "name": "syft:metadata:-:artifactID",
+          "value": "metrics-core"
+        },
+        {
+          "name": "syft:metadata:-:groupID",
+          "value": "com.codahale.metrics"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-server/lib/metrics-core-3.0.2.jar"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/com.esotericsoftware/minlog@1.3.0?package-id=9b1b7d9b969da891",
+      "type": "library",
+      "group": "com.esotericsoftware",
+      "name": "minlog",
+      "version": "1.3.0",
+      "licenses": [
+        {
+          "license": {
+            "name": "New BSD License",
+            "url": "http://www.opensource.org/licenses/bsd-license.php"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:esotericsoftware:minlog:1.3.0:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/com.esotericsoftware/minlog@1.3.0",
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:sonatype:minlog:1.3.0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:minlog:minlog:1.3.0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:oss:minlog:1.3.0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:9168aa9edf57e27178cf19177cd017cbde863db4b32b192859f2e4e224236750"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-server/lib/gremlin-shaded-3.7.1.jar"
+        },
+        {
+          "name": "syft:metadata:-:artifactID",
+          "value": "minlog"
+        },
+        {
+          "name": "syft:metadata:-:groupID",
+          "value": "com.esotericsoftware"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-server/lib/gremlin-shaded-3.7.1.jar:com.esotericsoftware:minlog"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:apk/alpine/musl@1.2.4-r2?arch=x86_64&distro=alpine-3.18.5&package-id=ac337824ccfe44f2",
+      "type": "library",
+      "publisher": "Timo Teräs <timo.teras@iki.fi>",
+      "name": "musl",
+      "version": "1.2.4-r2",
+      "description": "the musl c library (libc) implementation",
+      "licenses": [
+        {
+          "license": {
+            "id": "MIT"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:musl-libc:musl:1.2.4-r2:*:*:*:*:*:*:*",
+      "purl": "pkg:apk/alpine/musl@1.2.4-r2?arch=x86_64&distro=alpine-3.18.5",
+      "externalReferences": [
+        {
+          "url": "https://musl.libc.org/",
+          "type": "distribution"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "apk-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "apk"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "apk-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:musl_libc:musl:1.2.4-r2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:musl:musl:1.2.4-r2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:040ab99b6ccfaee2ade0def5bb35be6512e03860bd46bb9752a6c47709997f24"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/lib/apk/db/installed"
+        },
+        {
+          "name": "syft:metadata:gitCommitOfApkPort",
+          "value": "d82f20546c93252a8c94b262f7100bc8b74d6050"
+        },
+        {
+          "name": "syft:metadata:installedSize",
+          "value": "634880"
+        },
+        {
+          "name": "syft:metadata:originPackage",
+          "value": "musl"
+        },
+        {
+          "name": "syft:metadata:provides:0",
+          "value": "so:libc.musl-x86_64.so.1=1"
+        },
+        {
+          "name": "syft:metadata:pullChecksum",
+          "value": "Q1odtIYtKyOCg6suF/cDaYpygL7hw="
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "390427"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:apk/alpine/musl-utils@1.2.4-r2?arch=x86_64&upstream=musl&distro=alpine-3.18.5&package-id=58216dd6469af95a",
+      "type": "library",
+      "publisher": "Timo Teräs <timo.teras@iki.fi>",
+      "name": "musl-utils",
+      "version": "1.2.4-r2",
+      "description": "the musl c library (libc) implementation",
+      "licenses": [
+        {
+          "expression": "MIT AND BSD-2-Clause AND GPL-2.0-or-later"
+        }
+      ],
+      "cpe": "cpe:2.3:a:musl-utils:musl-utils:1.2.4-r2:*:*:*:*:*:*:*",
+      "purl": "pkg:apk/alpine/musl-utils@1.2.4-r2?arch=x86_64&upstream=musl&distro=alpine-3.18.5",
+      "externalReferences": [
+        {
+          "url": "https://musl.libc.org/",
+          "type": "distribution"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "apk-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "apk"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "apk-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:musl-utils:musl_utils:1.2.4-r2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:musl_utils:musl-utils:1.2.4-r2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:musl_utils:musl_utils:1.2.4-r2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:musl-libc:musl-utils:1.2.4-r2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:musl-libc:musl_utils:1.2.4-r2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:musl:musl-utils:1.2.4-r2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:musl:musl_utils:1.2.4-r2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:040ab99b6ccfaee2ade0def5bb35be6512e03860bd46bb9752a6c47709997f24"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/lib/apk/db/installed"
+        },
+        {
+          "name": "syft:metadata:gitCommitOfApkPort",
+          "value": "d82f20546c93252a8c94b262f7100bc8b74d6050"
+        },
+        {
+          "name": "syft:metadata:installedSize",
+          "value": "135168"
+        },
+        {
+          "name": "syft:metadata:originPackage",
+          "value": "musl"
+        },
+        {
+          "name": "syft:metadata:provides:0",
+          "value": "cmd:getconf=1.2.4-r2"
+        },
+        {
+          "name": "syft:metadata:provides:1",
+          "value": "cmd:getent=1.2.4-r2"
+        },
+        {
+          "name": "syft:metadata:provides:2",
+          "value": "cmd:iconv=1.2.4-r2"
+        },
+        {
+          "name": "syft:metadata:provides:3",
+          "value": "cmd:ldconfig=1.2.4-r2"
+        },
+        {
+          "name": "syft:metadata:provides:4",
+          "value": "cmd:ldd=1.2.4-r2"
+        },
+        {
+          "name": "syft:metadata:pullChecksum",
+          "value": "Q159PXSLXVmwMBA0V/FmvrBJobpak="
+        },
+        {
+          "name": "syft:metadata:pullDependencies:0",
+          "value": "scanelf"
+        },
+        {
+          "name": "syft:metadata:pullDependencies:1",
+          "value": "so:libc.musl-x86_64.so.1"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "36694"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:apk/alpine/ncurses-terminfo-base@6.4_p20230506-r0?arch=x86_64&upstream=ncurses&distro=alpine-3.18.5&package-id=e8554058cb4c7d6d",
+      "type": "library",
+      "publisher": "Natanael Copa <ncopa@alpinelinux.org>",
+      "name": "ncurses-terminfo-base",
+      "version": "6.4_p20230506-r0",
+      "description": "Descriptions of common terminals",
+      "licenses": [
+        {
+          "license": {
+            "id": "X11"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:ncurses-terminfo-base:ncurses-terminfo-base:6.4_p20230506-r0:*:*:*:*:*:*:*",
+      "purl": "pkg:apk/alpine/ncurses-terminfo-base@6.4_p20230506-r0?arch=x86_64&upstream=ncurses&distro=alpine-3.18.5",
+      "externalReferences": [
+        {
+          "url": "https://invisible-island.net/ncurses/",
+          "type": "distribution"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "apk-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "apk"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "apk-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:ncurses-terminfo-base:ncurses_terminfo_base:6.4_p20230506-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:ncurses_terminfo_base:ncurses-terminfo-base:6.4_p20230506-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:ncurses_terminfo_base:ncurses_terminfo_base:6.4_p20230506-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:ncurses-terminfo:ncurses-terminfo-base:6.4_p20230506-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:ncurses-terminfo:ncurses_terminfo_base:6.4_p20230506-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:ncurses_terminfo:ncurses-terminfo-base:6.4_p20230506-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:ncurses_terminfo:ncurses_terminfo_base:6.4_p20230506-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:ncurses:ncurses-terminfo-base:6.4_p20230506-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:ncurses:ncurses_terminfo_base:6.4_p20230506-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:040ab99b6ccfaee2ade0def5bb35be6512e03860bd46bb9752a6c47709997f24"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/lib/apk/db/installed"
+        },
+        {
+          "name": "syft:metadata:gitCommitOfApkPort",
+          "value": "e20fdedcf90182080424bba81c1f8deffb199872"
+        },
+        {
+          "name": "syft:metadata:installedSize",
+          "value": "221184"
+        },
+        {
+          "name": "syft:metadata:originPackage",
+          "value": "ncurses"
+        },
+        {
+          "name": "syft:metadata:pullChecksum",
+          "value": "Q10a6n6U74hqvF5n9KAe2AjnhuN9g="
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "22927"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/io.netty/netty-all@4.1.96.Final?package-id=94b247b32c89c236",
+      "type": "library",
+      "group": "io.netty",
+      "name": "netty-all",
+      "version": "4.1.96.Final",
+      "licenses": [
+        {
+          "license": {
+            "name": "https://www.apache.org/licenses/LICENSE-2.0"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:netty-project:netty-all:4.1.96.Final:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/io.netty/netty-all@4.1.96.Final",
+      "externalReferences": [
+        {
+          "url": "",
+          "hashes": [
+            {
+              "alg": "SHA-1",
+              "content": "2145ec747511965e4a57099767654cf9083ce8a7"
+            }
+          ],
+          "type": "build-meta"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:netty_all:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:netty-all:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:netty_all:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-all:netty-all:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-all:netty_all:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_all:netty-all:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_all:netty_all:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:all:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:all:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:netty-all:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:netty_all:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:all:netty-all:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:all:netty_all:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-all:all:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_all:all:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:all:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:all:all:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:9168aa9edf57e27178cf19177cd017cbde863db4b32b192859f2e4e224236750"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-server/lib/netty-all-4.1.96.Final.jar"
+        },
+        {
+          "name": "syft:metadata:-:artifactID",
+          "value": "netty-all"
+        },
+        {
+          "name": "syft:metadata:-:groupID",
+          "value": "io.netty"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-server/lib/netty-all-4.1.96.Final.jar"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/io.netty/netty-buffer@4.1.96.Final?package-id=27dd7b8f2d23780a",
+      "type": "library",
+      "group": "io.netty",
+      "name": "netty-buffer",
+      "version": "4.1.96.Final",
+      "licenses": [
+        {
+          "license": {
+            "name": "https://www.apache.org/licenses/LICENSE-2.0"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:netty-project:netty-buffer:4.1.96.Final:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/io.netty/netty-buffer@4.1.96.Final",
+      "externalReferences": [
+        {
+          "url": "",
+          "hashes": [
+            {
+              "alg": "SHA-1",
+              "content": "4b80fffbe77485b457bf844289bf1801f61b9e91"
+            }
+          ],
+          "type": "build-meta"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:netty_buffer:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:netty-buffer:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:netty_buffer:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-buffer:netty-buffer:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-buffer:netty_buffer:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_buffer:netty-buffer:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_buffer:netty_buffer:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:buffer:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:buffer:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:buffer:netty-buffer:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:buffer:netty_buffer:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-buffer:buffer:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_buffer:buffer:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:netty-buffer:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:netty_buffer:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:buffer:buffer:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:buffer:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:9168aa9edf57e27178cf19177cd017cbde863db4b32b192859f2e4e224236750"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-server/lib/netty-buffer-4.1.96.Final.jar"
+        },
+        {
+          "name": "syft:metadata:-:artifactID",
+          "value": "netty-buffer"
+        },
+        {
+          "name": "syft:metadata:-:groupID",
+          "value": "io.netty"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-server/lib/netty-buffer-4.1.96.Final.jar"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/io.netty/netty-codec@4.1.96.Final?package-id=57082749fdd412ad",
+      "type": "library",
+      "group": "io.netty",
+      "name": "netty-codec",
+      "version": "4.1.96.Final",
+      "licenses": [
+        {
+          "license": {
+            "name": "https://www.apache.org/licenses/LICENSE-2.0"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:netty-project:netty-codec:4.1.96.Final:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/io.netty/netty-codec@4.1.96.Final",
+      "externalReferences": [
+        {
+          "url": "",
+          "hashes": [
+            {
+              "alg": "SHA-1",
+              "content": "9cfe430f8b14e7ba86969d8e1126aa0aae4d18f0"
+            }
+          ],
+          "type": "build-meta"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:netty_codec:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:netty-codec:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:netty_codec:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-codec:netty-codec:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-codec:netty_codec:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec:netty-codec:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec:netty_codec:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:codec:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:codec:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec:netty-codec:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec:netty_codec:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-codec:codec:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:netty-codec:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:netty_codec:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec:codec:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec:codec:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:codec:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:9168aa9edf57e27178cf19177cd017cbde863db4b32b192859f2e4e224236750"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-server/lib/netty-codec-4.1.96.Final.jar"
+        },
+        {
+          "name": "syft:metadata:-:artifactID",
+          "value": "netty-codec"
+        },
+        {
+          "name": "syft:metadata:-:groupID",
+          "value": "io.netty"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-server/lib/netty-codec-4.1.96.Final.jar"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/io.netty/netty-codec-dns@4.1.96.Final?package-id=49113a993ea441f9",
+      "type": "library",
+      "group": "io.netty",
+      "name": "netty-codec-dns",
+      "version": "4.1.96.Final",
+      "licenses": [
+        {
+          "license": {
+            "name": "https://www.apache.org/licenses/LICENSE-2.0"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:netty-codec-dns:netty-codec-dns:4.1.96.Final:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/io.netty/netty-codec-dns@4.1.96.Final",
+      "externalReferences": [
+        {
+          "url": "",
+          "hashes": [
+            {
+              "alg": "SHA-1",
+              "content": "afd90dc0e164be74b4a3e1a899890557fce98567"
+            }
+          ],
+          "type": "build-meta"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-codec-dns:netty_codec_dns:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec_dns:netty-codec-dns:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec_dns:netty_codec_dns:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:netty-codec-dns:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:netty_codec_dns:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:netty-codec-dns:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:netty_codec_dns:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-codec:netty-codec-dns:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-codec:netty_codec_dns:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec:netty-codec-dns:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec:netty_codec_dns:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec-dns:netty-codec-dns:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec-dns:netty_codec_dns:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec_dns:netty-codec-dns:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec_dns:netty_codec_dns:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-codec-dns:codec-dns:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-codec-dns:codec_dns:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec_dns:codec-dns:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec_dns:codec_dns:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:codec-dns:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:codec_dns:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:codec-dns:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:codec_dns:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec:netty-codec-dns:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec:netty_codec_dns:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-codec:codec-dns:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-codec:codec_dns:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:netty-codec-dns:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:netty_codec_dns:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec:codec-dns:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec:codec_dns:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec-dns:codec-dns:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec-dns:codec_dns:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec_dns:codec-dns:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec_dns:codec_dns:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec:codec-dns:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec:codec_dns:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:codec-dns:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:codec_dns:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:9168aa9edf57e27178cf19177cd017cbde863db4b32b192859f2e4e224236750"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-server/lib/netty-codec-dns-4.1.96.Final.jar"
+        },
+        {
+          "name": "syft:metadata:-:artifactID",
+          "value": "netty-codec-dns"
+        },
+        {
+          "name": "syft:metadata:-:groupID",
+          "value": "io.netty"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-server/lib/netty-codec-dns-4.1.96.Final.jar"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/io.netty/netty-codec-haproxy@4.1.96.Final?package-id=14cae2d1335098f4",
+      "type": "library",
+      "group": "io.netty",
+      "name": "netty-codec-haproxy",
+      "version": "4.1.96.Final",
+      "licenses": [
+        {
+          "license": {
+            "name": "https://www.apache.org/licenses/LICENSE-2.0"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:netty-codec-haproxy:netty-codec-haproxy:4.1.96.Final:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/io.netty/netty-codec-haproxy@4.1.96.Final",
+      "externalReferences": [
+        {
+          "url": "",
+          "hashes": [
+            {
+              "alg": "SHA-1",
+              "content": "b1e6c0ef649ad700e2c55c5c82ed3cf54e94288a"
+            }
+          ],
+          "type": "build-meta"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-codec-haproxy:netty_codec_haproxy:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec_haproxy:netty-codec-haproxy:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec_haproxy:netty_codec_haproxy:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec-haproxy:netty-codec-haproxy:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec-haproxy:netty_codec_haproxy:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec_haproxy:netty-codec-haproxy:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec_haproxy:netty_codec_haproxy:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-codec-haproxy:codec-haproxy:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-codec-haproxy:codec_haproxy:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:netty-codec-haproxy:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:netty_codec_haproxy:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec_haproxy:codec-haproxy:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec_haproxy:codec_haproxy:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:netty-codec-haproxy:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:netty_codec_haproxy:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-codec:netty-codec-haproxy:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-codec:netty_codec_haproxy:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec:netty-codec-haproxy:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec:netty_codec_haproxy:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec-haproxy:codec-haproxy:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec-haproxy:codec_haproxy:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec_haproxy:codec-haproxy:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec_haproxy:codec_haproxy:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:codec-haproxy:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:codec_haproxy:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:codec-haproxy:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:codec_haproxy:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec:netty-codec-haproxy:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec:netty_codec_haproxy:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-codec:codec-haproxy:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-codec:codec_haproxy:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:netty-codec-haproxy:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:netty_codec_haproxy:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec:codec-haproxy:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec:codec_haproxy:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec:codec-haproxy:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec:codec_haproxy:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:codec-haproxy:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:codec_haproxy:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:9168aa9edf57e27178cf19177cd017cbde863db4b32b192859f2e4e224236750"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-server/lib/netty-codec-haproxy-4.1.96.Final.jar"
+        },
+        {
+          "name": "syft:metadata:-:artifactID",
+          "value": "netty-codec-haproxy"
+        },
+        {
+          "name": "syft:metadata:-:groupID",
+          "value": "io.netty"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-server/lib/netty-codec-haproxy-4.1.96.Final.jar"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/io.netty/netty-codec-http@4.1.96.Final?package-id=f3ec9b60706bde1b",
+      "type": "library",
+      "group": "io.netty",
+      "name": "netty-codec-http",
+      "version": "4.1.96.Final",
+      "licenses": [
+        {
+          "license": {
+            "name": "https://www.apache.org/licenses/LICENSE-2.0"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:netty-codec-http:netty-codec-http:4.1.96.Final:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/io.netty/netty-codec-http@4.1.96.Final",
+      "externalReferences": [
+        {
+          "url": "",
+          "hashes": [
+            {
+              "alg": "SHA-1",
+              "content": "a4d0d95df5026965c454902ef3d6d84b81f89626"
+            }
+          ],
+          "type": "build-meta"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-codec-http:netty_codec_http:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec_http:netty-codec-http:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec_http:netty_codec_http:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:netty-codec-http:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:netty_codec_http:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:netty-codec-http:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:netty_codec_http:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-codec:netty-codec-http:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-codec:netty_codec_http:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec:netty-codec-http:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec:netty_codec_http:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec-http:netty-codec-http:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec-http:netty_codec_http:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec_http:netty-codec-http:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec_http:netty_codec_http:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-codec-http:codec-http:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-codec-http:codec_http:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec_http:codec-http:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec_http:codec_http:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:codec-http:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:codec_http:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:codec-http:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:codec_http:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec:netty-codec-http:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec:netty_codec_http:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-codec:codec-http:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-codec:codec_http:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:netty-codec-http:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:netty_codec_http:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec:codec-http:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec:codec_http:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec-http:codec-http:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec-http:codec_http:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec_http:codec-http:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec_http:codec_http:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec:codec-http:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec:codec_http:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:codec-http:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:codec_http:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:9168aa9edf57e27178cf19177cd017cbde863db4b32b192859f2e4e224236750"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-server/lib/netty-codec-http-4.1.96.Final.jar"
+        },
+        {
+          "name": "syft:metadata:-:artifactID",
+          "value": "netty-codec-http"
+        },
+        {
+          "name": "syft:metadata:-:groupID",
+          "value": "io.netty"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-server/lib/netty-codec-http-4.1.96.Final.jar"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/io.netty/netty-codec-http2@4.1.96.Final?package-id=a6474e7b3a95f1dc",
+      "type": "library",
+      "group": "io.netty",
+      "name": "netty-codec-http2",
+      "version": "4.1.96.Final",
+      "licenses": [
+        {
+          "license": {
+            "name": "https://www.apache.org/licenses/LICENSE-2.0"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:netty-codec-http2:netty-codec-http2:4.1.96.Final:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/io.netty/netty-codec-http2@4.1.96.Final",
+      "externalReferences": [
+        {
+          "url": "",
+          "hashes": [
+            {
+              "alg": "SHA-1",
+              "content": "cc8baf4ff67c1bcc0cde60bc5c2bb9447d92d9e6"
+            }
+          ],
+          "type": "build-meta"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-codec-http2:netty_codec_http2:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec_http2:netty-codec-http2:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec_http2:netty_codec_http2:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:netty-codec-http2:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:netty_codec_http2:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:netty-codec-http2:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:netty_codec_http2:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec-http2:netty-codec-http2:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec-http2:netty_codec_http2:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec_http2:netty-codec-http2:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec_http2:netty_codec_http2:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-codec-http2:codec-http2:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-codec-http2:codec_http2:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-codec:netty-codec-http2:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-codec:netty_codec_http2:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec:netty-codec-http2:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec:netty_codec_http2:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec_http2:codec-http2:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec_http2:codec_http2:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:codec-http2:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:codec_http2:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:codec-http2:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:codec_http2:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec-http2:codec-http2:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec-http2:codec_http2:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec:netty-codec-http2:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec:netty_codec_http2:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec_http2:codec-http2:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec_http2:codec_http2:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-codec:codec-http2:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-codec:codec_http2:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:netty-codec-http2:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:netty_codec_http2:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec:codec-http2:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec:codec_http2:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec:codec-http2:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec:codec_http2:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:codec-http2:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:codec_http2:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:9168aa9edf57e27178cf19177cd017cbde863db4b32b192859f2e4e224236750"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-server/lib/netty-codec-http2-4.1.96.Final.jar"
+        },
+        {
+          "name": "syft:metadata:-:artifactID",
+          "value": "netty-codec-http2"
+        },
+        {
+          "name": "syft:metadata:-:groupID",
+          "value": "io.netty"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-server/lib/netty-codec-http2-4.1.96.Final.jar"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/io.netty/netty-codec-memcache@4.1.96.Final?package-id=41b3910782c405d1",
+      "type": "library",
+      "group": "io.netty",
+      "name": "netty-codec-memcache",
+      "version": "4.1.96.Final",
+      "licenses": [
+        {
+          "license": {
+            "name": "https://www.apache.org/licenses/LICENSE-2.0"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:netty-codec-memcache:netty-codec-memcache:4.1.96.Final:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/io.netty/netty-codec-memcache@4.1.96.Final",
+      "externalReferences": [
+        {
+          "url": "",
+          "hashes": [
+            {
+              "alg": "SHA-1",
+              "content": "d341e07cc0d6156ceca3c29c62a18e35f2bef534"
+            }
+          ],
+          "type": "build-meta"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-codec-memcache:netty_codec_memcache:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec_memcache:netty-codec-memcache:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec_memcache:netty_codec_memcache:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec-memcache:netty-codec-memcache:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec-memcache:netty_codec_memcache:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec_memcache:netty-codec-memcache:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec_memcache:netty_codec_memcache:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-codec-memcache:codec-memcache:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-codec-memcache:codec_memcache:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec_memcache:codec-memcache:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec_memcache:codec_memcache:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:netty-codec-memcache:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:netty_codec_memcache:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:netty-codec-memcache:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:netty_codec_memcache:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-codec:netty-codec-memcache:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-codec:netty_codec_memcache:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec:netty-codec-memcache:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec:netty_codec_memcache:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec-memcache:codec-memcache:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec-memcache:codec_memcache:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec_memcache:codec-memcache:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec_memcache:codec_memcache:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:codec-memcache:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:codec_memcache:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:codec-memcache:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:codec_memcache:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec:netty-codec-memcache:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec:netty_codec_memcache:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-codec:codec-memcache:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-codec:codec_memcache:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:netty-codec-memcache:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:netty_codec_memcache:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec:codec-memcache:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec:codec_memcache:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec:codec-memcache:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec:codec_memcache:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:codec-memcache:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:codec_memcache:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:9168aa9edf57e27178cf19177cd017cbde863db4b32b192859f2e4e224236750"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-server/lib/netty-codec-memcache-4.1.96.Final.jar"
+        },
+        {
+          "name": "syft:metadata:-:artifactID",
+          "value": "netty-codec-memcache"
+        },
+        {
+          "name": "syft:metadata:-:groupID",
+          "value": "io.netty"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-server/lib/netty-codec-memcache-4.1.96.Final.jar"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/io.netty/netty-codec-mqtt@4.1.96.Final?package-id=66a728b693d637c4",
+      "type": "library",
+      "group": "io.netty",
+      "name": "netty-codec-mqtt",
+      "version": "4.1.96.Final",
+      "licenses": [
+        {
+          "license": {
+            "name": "https://www.apache.org/licenses/LICENSE-2.0"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:netty-codec-mqtt:netty-codec-mqtt:4.1.96.Final:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/io.netty/netty-codec-mqtt@4.1.96.Final",
+      "externalReferences": [
+        {
+          "url": "",
+          "hashes": [
+            {
+              "alg": "SHA-1",
+              "content": "259108dcf91f17405850135e049cd1ed171986b7"
+            }
+          ],
+          "type": "build-meta"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-codec-mqtt:netty_codec_mqtt:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec_mqtt:netty-codec-mqtt:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec_mqtt:netty_codec_mqtt:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:netty-codec-mqtt:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:netty_codec_mqtt:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:netty-codec-mqtt:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:netty_codec_mqtt:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-codec:netty-codec-mqtt:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-codec:netty_codec_mqtt:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec:netty-codec-mqtt:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec:netty_codec_mqtt:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec-mqtt:netty-codec-mqtt:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec-mqtt:netty_codec_mqtt:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec_mqtt:netty-codec-mqtt:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec_mqtt:netty_codec_mqtt:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-codec-mqtt:codec-mqtt:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-codec-mqtt:codec_mqtt:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec_mqtt:codec-mqtt:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec_mqtt:codec_mqtt:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:codec-mqtt:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:codec_mqtt:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:codec-mqtt:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:codec_mqtt:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec:netty-codec-mqtt:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec:netty_codec_mqtt:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-codec:codec-mqtt:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-codec:codec_mqtt:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:netty-codec-mqtt:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:netty_codec_mqtt:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec:codec-mqtt:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec:codec_mqtt:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec-mqtt:codec-mqtt:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec-mqtt:codec_mqtt:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec_mqtt:codec-mqtt:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec_mqtt:codec_mqtt:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec:codec-mqtt:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec:codec_mqtt:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:codec-mqtt:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:codec_mqtt:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:9168aa9edf57e27178cf19177cd017cbde863db4b32b192859f2e4e224236750"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-server/lib/netty-codec-mqtt-4.1.96.Final.jar"
+        },
+        {
+          "name": "syft:metadata:-:artifactID",
+          "value": "netty-codec-mqtt"
+        },
+        {
+          "name": "syft:metadata:-:groupID",
+          "value": "io.netty"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-server/lib/netty-codec-mqtt-4.1.96.Final.jar"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/io.netty/netty-codec-redis@4.1.96.Final?package-id=1185205e5f9aaf58",
+      "type": "library",
+      "group": "io.netty",
+      "name": "netty-codec-redis",
+      "version": "4.1.96.Final",
+      "licenses": [
+        {
+          "license": {
+            "name": "https://www.apache.org/licenses/LICENSE-2.0"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:netty-codec-redis:netty-codec-redis:4.1.96.Final:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/io.netty/netty-codec-redis@4.1.96.Final",
+      "externalReferences": [
+        {
+          "url": "",
+          "hashes": [
+            {
+              "alg": "SHA-1",
+              "content": "fa41ff54516754f5e311481b1d5695509993abaf"
+            }
+          ],
+          "type": "build-meta"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-codec-redis:netty_codec_redis:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec_redis:netty-codec-redis:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec_redis:netty_codec_redis:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:netty-codec-redis:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:netty_codec_redis:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:netty-codec-redis:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:netty_codec_redis:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec-redis:netty-codec-redis:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec-redis:netty_codec_redis:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec_redis:netty-codec-redis:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec_redis:netty_codec_redis:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-codec-redis:codec-redis:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-codec-redis:codec_redis:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-codec:netty-codec-redis:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-codec:netty_codec_redis:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec:netty-codec-redis:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec:netty_codec_redis:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec_redis:codec-redis:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec_redis:codec_redis:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:codec-redis:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:codec_redis:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:codec-redis:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:codec_redis:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec-redis:codec-redis:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec-redis:codec_redis:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec:netty-codec-redis:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec:netty_codec_redis:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec_redis:codec-redis:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec_redis:codec_redis:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-codec:codec-redis:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-codec:codec_redis:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:netty-codec-redis:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:netty_codec_redis:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec:codec-redis:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec:codec_redis:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec:codec-redis:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec:codec_redis:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:codec-redis:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:codec_redis:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:9168aa9edf57e27178cf19177cd017cbde863db4b32b192859f2e4e224236750"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-server/lib/netty-codec-redis-4.1.96.Final.jar"
+        },
+        {
+          "name": "syft:metadata:-:artifactID",
+          "value": "netty-codec-redis"
+        },
+        {
+          "name": "syft:metadata:-:groupID",
+          "value": "io.netty"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-server/lib/netty-codec-redis-4.1.96.Final.jar"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.96.Final?package-id=ec53eaadbb5798d7",
+      "type": "library",
+      "group": "io.netty",
+      "name": "netty-codec-smtp",
+      "version": "4.1.96.Final",
+      "licenses": [
+        {
+          "license": {
+            "name": "https://www.apache.org/licenses/LICENSE-2.0"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:netty-codec-smtp:netty-codec-smtp:4.1.96.Final:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/io.netty/netty-codec-smtp@4.1.96.Final",
+      "externalReferences": [
+        {
+          "url": "",
+          "hashes": [
+            {
+              "alg": "SHA-1",
+              "content": "efbed5bc985955c4712b3204c55690693055384e"
+            }
+          ],
+          "type": "build-meta"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-codec-smtp:netty_codec_smtp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec_smtp:netty-codec-smtp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec_smtp:netty_codec_smtp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:netty-codec-smtp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:netty_codec_smtp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:netty-codec-smtp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:netty_codec_smtp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-codec:netty-codec-smtp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-codec:netty_codec_smtp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec:netty-codec-smtp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec:netty_codec_smtp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec-smtp:netty-codec-smtp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec-smtp:netty_codec_smtp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec_smtp:netty-codec-smtp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec_smtp:netty_codec_smtp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-codec-smtp:codec-smtp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-codec-smtp:codec_smtp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec_smtp:codec-smtp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec_smtp:codec_smtp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:codec-smtp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:codec_smtp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:codec-smtp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:codec_smtp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec:netty-codec-smtp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec:netty_codec_smtp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-codec:codec-smtp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-codec:codec_smtp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:netty-codec-smtp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:netty_codec_smtp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec:codec-smtp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec:codec_smtp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec-smtp:codec-smtp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec-smtp:codec_smtp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec_smtp:codec-smtp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec_smtp:codec_smtp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec:codec-smtp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec:codec_smtp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:codec-smtp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:codec_smtp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:9168aa9edf57e27178cf19177cd017cbde863db4b32b192859f2e4e224236750"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-server/lib/netty-codec-smtp-4.1.96.Final.jar"
+        },
+        {
+          "name": "syft:metadata:-:artifactID",
+          "value": "netty-codec-smtp"
+        },
+        {
+          "name": "syft:metadata:-:groupID",
+          "value": "io.netty"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-server/lib/netty-codec-smtp-4.1.96.Final.jar"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/io.netty/netty-codec-socks@4.1.96.Final?package-id=f023295847522812",
+      "type": "library",
+      "group": "io.netty",
+      "name": "netty-codec-socks",
+      "version": "4.1.96.Final",
+      "licenses": [
+        {
+          "license": {
+            "name": "https://www.apache.org/licenses/LICENSE-2.0"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:netty-codec-socks:netty-codec-socks:4.1.96.Final:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/io.netty/netty-codec-socks@4.1.96.Final",
+      "externalReferences": [
+        {
+          "url": "",
+          "hashes": [
+            {
+              "alg": "SHA-1",
+              "content": "f53c52dbddaa4a02a51430405792d3f30a89b147"
+            }
+          ],
+          "type": "build-meta"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-codec-socks:netty_codec_socks:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec_socks:netty-codec-socks:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec_socks:netty_codec_socks:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:netty-codec-socks:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:netty_codec_socks:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:netty-codec-socks:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:netty_codec_socks:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec-socks:netty-codec-socks:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec-socks:netty_codec_socks:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec_socks:netty-codec-socks:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec_socks:netty_codec_socks:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-codec-socks:codec-socks:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-codec-socks:codec_socks:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-codec:netty-codec-socks:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-codec:netty_codec_socks:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec:netty-codec-socks:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec:netty_codec_socks:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec_socks:codec-socks:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec_socks:codec_socks:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:codec-socks:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:codec_socks:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:codec-socks:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:codec_socks:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec-socks:codec-socks:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec-socks:codec_socks:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec:netty-codec-socks:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec:netty_codec_socks:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec_socks:codec-socks:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec_socks:codec_socks:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-codec:codec-socks:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-codec:codec_socks:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:netty-codec-socks:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:netty_codec_socks:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec:codec-socks:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec:codec_socks:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec:codec-socks:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec:codec_socks:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:codec-socks:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:codec_socks:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:9168aa9edf57e27178cf19177cd017cbde863db4b32b192859f2e4e224236750"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-server/lib/netty-codec-socks-4.1.96.Final.jar"
+        },
+        {
+          "name": "syft:metadata:-:artifactID",
+          "value": "netty-codec-socks"
+        },
+        {
+          "name": "syft:metadata:-:groupID",
+          "value": "io.netty"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-server/lib/netty-codec-socks-4.1.96.Final.jar"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/io.netty/netty-codec-stomp@4.1.96.Final?package-id=f8058c3f115506a8",
+      "type": "library",
+      "group": "io.netty",
+      "name": "netty-codec-stomp",
+      "version": "4.1.96.Final",
+      "licenses": [
+        {
+          "license": {
+            "name": "https://www.apache.org/licenses/LICENSE-2.0"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:netty-codec-stomp:netty-codec-stomp:4.1.96.Final:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/io.netty/netty-codec-stomp@4.1.96.Final",
+      "externalReferences": [
+        {
+          "url": "",
+          "hashes": [
+            {
+              "alg": "SHA-1",
+              "content": "b87137afca2ab2604b96a01b3c4364b4e982835a"
+            }
+          ],
+          "type": "build-meta"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-codec-stomp:netty_codec_stomp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec_stomp:netty-codec-stomp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec_stomp:netty_codec_stomp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:netty-codec-stomp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:netty_codec_stomp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:netty-codec-stomp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:netty_codec_stomp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec-stomp:netty-codec-stomp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec-stomp:netty_codec_stomp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec_stomp:netty-codec-stomp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec_stomp:netty_codec_stomp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-codec-stomp:codec-stomp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-codec-stomp:codec_stomp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-codec:netty-codec-stomp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-codec:netty_codec_stomp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec:netty-codec-stomp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec:netty_codec_stomp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec_stomp:codec-stomp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec_stomp:codec_stomp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:codec-stomp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:codec_stomp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:codec-stomp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:codec_stomp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec-stomp:codec-stomp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec-stomp:codec_stomp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec:netty-codec-stomp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec:netty_codec_stomp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec_stomp:codec-stomp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec_stomp:codec_stomp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-codec:codec-stomp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-codec:codec_stomp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:netty-codec-stomp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:netty_codec_stomp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec:codec-stomp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec:codec_stomp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec:codec-stomp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec:codec_stomp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:codec-stomp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:codec_stomp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:9168aa9edf57e27178cf19177cd017cbde863db4b32b192859f2e4e224236750"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-server/lib/netty-codec-stomp-4.1.96.Final.jar"
+        },
+        {
+          "name": "syft:metadata:-:artifactID",
+          "value": "netty-codec-stomp"
+        },
+        {
+          "name": "syft:metadata:-:groupID",
+          "value": "io.netty"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-server/lib/netty-codec-stomp-4.1.96.Final.jar"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/io.netty/netty-codec-xml@4.1.96.Final?package-id=70bf6207ed97aa73",
+      "type": "library",
+      "group": "io.netty",
+      "name": "netty-codec-xml",
+      "version": "4.1.96.Final",
+      "licenses": [
+        {
+          "license": {
+            "name": "https://www.apache.org/licenses/LICENSE-2.0"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:netty-codec-xml:netty-codec-xml:4.1.96.Final:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/io.netty/netty-codec-xml@4.1.96.Final",
+      "externalReferences": [
+        {
+          "url": "",
+          "hashes": [
+            {
+              "alg": "SHA-1",
+              "content": "5e455e00816972f05fb676eae0eb933189ad385f"
+            }
+          ],
+          "type": "build-meta"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-codec-xml:netty_codec_xml:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec_xml:netty-codec-xml:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec_xml:netty_codec_xml:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:netty-codec-xml:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:netty_codec_xml:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:netty-codec-xml:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:netty_codec_xml:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-codec:netty-codec-xml:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-codec:netty_codec_xml:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec:netty-codec-xml:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec:netty_codec_xml:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec-xml:netty-codec-xml:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec-xml:netty_codec_xml:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec_xml:netty-codec-xml:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec_xml:netty_codec_xml:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-codec-xml:codec-xml:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-codec-xml:codec_xml:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec_xml:codec-xml:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec_xml:codec_xml:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:codec-xml:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:codec_xml:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:codec-xml:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:codec_xml:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec:netty-codec-xml:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec:netty_codec_xml:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-codec:codec-xml:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-codec:codec_xml:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:netty-codec-xml:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:netty_codec_xml:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec:codec-xml:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_codec:codec_xml:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec-xml:codec-xml:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec-xml:codec_xml:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec_xml:codec-xml:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec_xml:codec_xml:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec:codec-xml:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:codec:codec_xml:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:codec-xml:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:codec_xml:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:9168aa9edf57e27178cf19177cd017cbde863db4b32b192859f2e4e224236750"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-server/lib/netty-codec-xml-4.1.96.Final.jar"
+        },
+        {
+          "name": "syft:metadata:-:artifactID",
+          "value": "netty-codec-xml"
+        },
+        {
+          "name": "syft:metadata:-:groupID",
+          "value": "io.netty"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-server/lib/netty-codec-xml-4.1.96.Final.jar"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/io.netty/netty-common@4.1.96.Final?package-id=30263cfc6c6d1925",
+      "type": "library",
+      "group": "io.netty",
+      "name": "netty-common",
+      "version": "4.1.96.Final",
+      "licenses": [
+        {
+          "license": {
+            "name": "https://www.apache.org/licenses/LICENSE-2.0"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:netty-project:netty-common:4.1.96.Final:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/io.netty/netty-common@4.1.96.Final",
+      "externalReferences": [
+        {
+          "url": "",
+          "hashes": [
+            {
+              "alg": "SHA-1",
+              "content": "d10c167623cbc471753f950846df241d1021655c"
+            }
+          ],
+          "type": "build-meta"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:netty_common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:netty-common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:netty_common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-common:netty-common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-common:netty_common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_common:netty-common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_common:netty_common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:common:netty-common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:common:netty_common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-common:common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_common:common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:netty-common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:netty_common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:common:common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:9168aa9edf57e27178cf19177cd017cbde863db4b32b192859f2e4e224236750"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-server/lib/netty-common-4.1.96.Final.jar"
+        },
+        {
+          "name": "syft:metadata:-:artifactID",
+          "value": "netty-common"
+        },
+        {
+          "name": "syft:metadata:-:groupID",
+          "value": "io.netty"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-server/lib/netty-common-4.1.96.Final.jar"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/io.netty/netty-handler@4.1.96.Final?package-id=1042b8aabf25aac9",
+      "type": "library",
+      "group": "io.netty",
+      "name": "netty-handler",
+      "version": "4.1.96.Final",
+      "licenses": [
+        {
+          "license": {
+            "name": "https://www.apache.org/licenses/LICENSE-2.0"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:netty-handler:netty-handler:4.1.96.Final:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/io.netty/netty-handler@4.1.96.Final",
+      "externalReferences": [
+        {
+          "url": "",
+          "hashes": [
+            {
+              "alg": "SHA-1",
+              "content": "7840d7523d709e02961b647546f9d9dde1699306"
+            }
+          ],
+          "type": "build-meta"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-handler:netty_handler:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:netty-handler:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:netty_handler:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_handler:netty-handler:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_handler:netty_handler:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:netty-handler:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:netty_handler:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:handler:netty-handler:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:handler:netty_handler:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-handler:handler:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:handler:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_handler:handler:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:handler:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:netty-handler:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:netty_handler:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:handler:handler:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:handler:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:9168aa9edf57e27178cf19177cd017cbde863db4b32b192859f2e4e224236750"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-server/lib/netty-handler-4.1.96.Final.jar"
+        },
+        {
+          "name": "syft:metadata:-:artifactID",
+          "value": "netty-handler"
+        },
+        {
+          "name": "syft:metadata:-:groupID",
+          "value": "io.netty"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-server/lib/netty-handler-4.1.96.Final.jar"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/io.netty/netty-handler-proxy@4.1.96.Final?package-id=940c5232893fbf7d",
+      "type": "library",
+      "group": "io.netty",
+      "name": "netty-handler-proxy",
+      "version": "4.1.96.Final",
+      "licenses": [
+        {
+          "license": {
+            "name": "https://www.apache.org/licenses/LICENSE-2.0"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:netty-handler-proxy:netty-handler-proxy:4.1.96.Final:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/io.netty/netty-handler-proxy@4.1.96.Final",
+      "externalReferences": [
+        {
+          "url": "",
+          "hashes": [
+            {
+              "alg": "SHA-1",
+              "content": "dcabd63f4aaec2b4cad7588bfdd4cd2c82287e38"
+            }
+          ],
+          "type": "build-meta"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-handler-proxy:netty_handler_proxy:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_handler_proxy:netty-handler-proxy:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_handler_proxy:netty_handler_proxy:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:handler-proxy:netty-handler-proxy:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:handler-proxy:netty_handler_proxy:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:handler_proxy:netty-handler-proxy:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:handler_proxy:netty_handler_proxy:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-handler-proxy:handler-proxy:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-handler-proxy:handler_proxy:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-handler:netty-handler-proxy:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-handler:netty_handler_proxy:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:netty-handler-proxy:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:netty_handler_proxy:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_handler:netty-handler-proxy:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_handler:netty_handler_proxy:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_handler_proxy:handler-proxy:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_handler_proxy:handler_proxy:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:netty-handler-proxy:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:netty_handler_proxy:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:handler-proxy:handler-proxy:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:handler-proxy:handler_proxy:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:handler:netty-handler-proxy:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:handler:netty_handler_proxy:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:handler_proxy:handler-proxy:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:handler_proxy:handler_proxy:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-handler:handler-proxy:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-handler:handler_proxy:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:handler-proxy:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:handler_proxy:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_handler:handler-proxy:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_handler:handler_proxy:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:handler-proxy:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:handler_proxy:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:netty-handler-proxy:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:netty_handler_proxy:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:handler:handler-proxy:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:handler:handler_proxy:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:handler-proxy:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:handler_proxy:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:9168aa9edf57e27178cf19177cd017cbde863db4b32b192859f2e4e224236750"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-server/lib/netty-handler-proxy-4.1.96.Final.jar"
+        },
+        {
+          "name": "syft:metadata:-:artifactID",
+          "value": "netty-handler-proxy"
+        },
+        {
+          "name": "syft:metadata:-:groupID",
+          "value": "io.netty"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-server/lib/netty-handler-proxy-4.1.96.Final.jar"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/io.netty/netty-handler-ssl-ocsp@4.1.96.Final?package-id=c1be5d3f9931d1f0",
+      "type": "library",
+      "group": "io.netty",
+      "name": "netty-handler-ssl-ocsp",
+      "version": "4.1.96.Final",
+      "licenses": [
+        {
+          "license": {
+            "name": "https://www.apache.org/licenses/LICENSE-2.0"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:netty-handler-ssl-ocsp:netty-handler-ssl-ocsp:4.1.96.Final:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/io.netty/netty-handler-ssl-ocsp@4.1.96.Final",
+      "externalReferences": [
+        {
+          "url": "",
+          "hashes": [
+            {
+              "alg": "SHA-1",
+              "content": "7e659738edbb67b03310852eddda0a1001ea1f6e"
+            }
+          ],
+          "type": "build-meta"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-handler-ssl-ocsp:netty_handler_ssl_ocsp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_handler_ssl_ocsp:netty-handler-ssl-ocsp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_handler_ssl_ocsp:netty_handler_ssl_ocsp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-handler-ssl:netty-handler-ssl-ocsp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-handler-ssl:netty_handler_ssl_ocsp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_handler_ssl:netty-handler-ssl-ocsp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_handler_ssl:netty_handler_ssl_ocsp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:handler-ssl-ocsp:netty-handler-ssl-ocsp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:handler-ssl-ocsp:netty_handler_ssl_ocsp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:handler_ssl_ocsp:netty-handler-ssl-ocsp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:handler_ssl_ocsp:netty_handler_ssl_ocsp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-handler-ssl-ocsp:handler-ssl-ocsp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-handler-ssl-ocsp:handler_ssl_ocsp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_handler_ssl_ocsp:handler-ssl-ocsp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_handler_ssl_ocsp:handler_ssl_ocsp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-handler:netty-handler-ssl-ocsp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-handler:netty_handler_ssl_ocsp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:netty-handler-ssl-ocsp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:netty_handler_ssl_ocsp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_handler:netty-handler-ssl-ocsp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_handler:netty_handler_ssl_ocsp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:netty-handler-ssl-ocsp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:netty_handler_ssl_ocsp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:handler-ssl:netty-handler-ssl-ocsp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:handler-ssl:netty_handler_ssl_ocsp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:handler_ssl:netty-handler-ssl-ocsp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:handler_ssl:netty_handler_ssl_ocsp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-handler-ssl:handler-ssl-ocsp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-handler-ssl:handler_ssl_ocsp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_handler_ssl:handler-ssl-ocsp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_handler_ssl:handler_ssl_ocsp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:handler-ssl-ocsp:handler-ssl-ocsp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:handler-ssl-ocsp:handler_ssl_ocsp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:handler_ssl_ocsp:handler-ssl-ocsp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:handler_ssl_ocsp:handler_ssl_ocsp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:handler:netty-handler-ssl-ocsp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:handler:netty_handler_ssl_ocsp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-handler:handler-ssl-ocsp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-handler:handler_ssl_ocsp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:handler-ssl-ocsp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:handler_ssl_ocsp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_handler:handler-ssl-ocsp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_handler:handler_ssl_ocsp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:handler-ssl-ocsp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:handler_ssl_ocsp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:handler-ssl:handler-ssl-ocsp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:handler-ssl:handler_ssl_ocsp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:handler_ssl:handler-ssl-ocsp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:handler_ssl:handler_ssl_ocsp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:netty-handler-ssl-ocsp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:netty_handler_ssl_ocsp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:handler:handler-ssl-ocsp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:handler:handler_ssl_ocsp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:handler-ssl-ocsp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:handler_ssl_ocsp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:9168aa9edf57e27178cf19177cd017cbde863db4b32b192859f2e4e224236750"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-server/lib/netty-handler-ssl-ocsp-4.1.96.Final.jar"
+        },
+        {
+          "name": "syft:metadata:-:artifactID",
+          "value": "netty-handler-ssl-ocsp"
+        },
+        {
+          "name": "syft:metadata:-:groupID",
+          "value": "io.netty"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-server/lib/netty-handler-ssl-ocsp-4.1.96.Final.jar"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/io.netty/netty-resolver@4.1.96.Final?package-id=59afee3faeb53d17",
+      "type": "library",
+      "group": "io.netty",
+      "name": "netty-resolver",
+      "version": "4.1.96.Final",
+      "licenses": [
+        {
+          "license": {
+            "name": "https://www.apache.org/licenses/LICENSE-2.0"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:netty-resolver:netty-resolver:4.1.96.Final:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/io.netty/netty-resolver@4.1.96.Final",
+      "externalReferences": [
+        {
+          "url": "",
+          "hashes": [
+            {
+              "alg": "SHA-1",
+              "content": "0e51db5568a881e0f9b013b35617c597dc32f130"
+            }
+          ],
+          "type": "build-meta"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-resolver:netty_resolver:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_resolver:netty-resolver:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_resolver:netty_resolver:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:netty-resolver:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:netty_resolver:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:netty-resolver:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:netty_resolver:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-resolver:resolver:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_resolver:resolver:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver:netty-resolver:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver:netty_resolver:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:resolver:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:resolver:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:netty-resolver:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:netty_resolver:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver:resolver:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:resolver:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:9168aa9edf57e27178cf19177cd017cbde863db4b32b192859f2e4e224236750"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-server/lib/netty-resolver-4.1.96.Final.jar"
+        },
+        {
+          "name": "syft:metadata:-:artifactID",
+          "value": "netty-resolver"
+        },
+        {
+          "name": "syft:metadata:-:groupID",
+          "value": "io.netty"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-server/lib/netty-resolver-4.1.96.Final.jar"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/io.netty/netty-resolver-dns@4.1.96.Final?package-id=166ed44393e5a923",
+      "type": "library",
+      "group": "io.netty",
+      "name": "netty-resolver-dns",
+      "version": "4.1.96.Final",
+      "licenses": [
+        {
+          "license": {
+            "name": "https://www.apache.org/licenses/LICENSE-2.0"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:netty-resolver-dns:netty-resolver-dns:4.1.96.Final:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/io.netty/netty-resolver-dns@4.1.96.Final",
+      "externalReferences": [
+        {
+          "url": "",
+          "hashes": [
+            {
+              "alg": "SHA-1",
+              "content": "0095023cc667af76578c9be326a6d54e3e1de52c"
+            }
+          ],
+          "type": "build-meta"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-resolver-dns:netty_resolver_dns:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_resolver_dns:netty-resolver-dns:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_resolver_dns:netty_resolver_dns:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-resolver:netty-resolver-dns:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-resolver:netty_resolver_dns:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_resolver:netty-resolver-dns:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_resolver:netty_resolver_dns:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:netty-resolver-dns:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:netty_resolver_dns:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:netty-resolver-dns:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:netty_resolver_dns:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-resolver-dns:resolver-dns:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-resolver-dns:resolver_dns:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_resolver_dns:resolver-dns:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_resolver_dns:resolver_dns:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver-dns:netty-resolver-dns:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver-dns:netty_resolver_dns:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver_dns:netty-resolver-dns:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver_dns:netty_resolver_dns:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-resolver:resolver-dns:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-resolver:resolver_dns:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_resolver:resolver-dns:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_resolver:resolver_dns:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver:netty-resolver-dns:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver:netty_resolver_dns:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:resolver-dns:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:resolver_dns:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:resolver-dns:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:resolver_dns:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver-dns:resolver-dns:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver-dns:resolver_dns:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver_dns:resolver-dns:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver_dns:resolver_dns:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:netty-resolver-dns:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:netty_resolver_dns:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver:resolver-dns:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver:resolver_dns:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:resolver-dns:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:resolver_dns:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:9168aa9edf57e27178cf19177cd017cbde863db4b32b192859f2e4e224236750"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-server/lib/netty-resolver-dns-4.1.96.Final.jar"
+        },
+        {
+          "name": "syft:metadata:-:artifactID",
+          "value": "netty-resolver-dns"
+        },
+        {
+          "name": "syft:metadata:-:groupID",
+          "value": "io.netty"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-server/lib/netty-resolver-dns-4.1.96.Final.jar"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/io.netty/netty-resolver-dns-classes-macos@4.1.96.Final?package-id=712c7e49f491a15b",
+      "type": "library",
+      "group": "io.netty",
+      "name": "netty-resolver-dns-classes-macos",
+      "version": "4.1.96.Final",
+      "licenses": [
+        {
+          "license": {
+            "name": "https://www.apache.org/licenses/LICENSE-2.0"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:netty-resolver-dns-classes-macos:netty-resolver-dns-classes-macos:4.1.96.Final:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/io.netty/netty-resolver-dns-classes-macos@4.1.96.Final",
+      "externalReferences": [
+        {
+          "url": "",
+          "hashes": [
+            {
+              "alg": "SHA-1",
+              "content": "99d66697cc3d32314e84eea46ffea2038621af88"
+            }
+          ],
+          "type": "build-meta"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-resolver-dns-classes-macos:netty_resolver_dns_classes_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_resolver_dns_classes_macos:netty-resolver-dns-classes-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_resolver_dns_classes_macos:netty_resolver_dns_classes_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-resolver-dns-classes-macos:resolver-dns-classes-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-resolver-dns-classes-macos:resolver_dns_classes_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-resolver-dns-classes:netty-resolver-dns-classes-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-resolver-dns-classes:netty_resolver_dns_classes_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_resolver_dns_classes:netty-resolver-dns-classes-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_resolver_dns_classes:netty_resolver_dns_classes_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_resolver_dns_classes_macos:resolver-dns-classes-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_resolver_dns_classes_macos:resolver_dns_classes_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver-dns-classes-macos:netty-resolver-dns-classes-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver-dns-classes-macos:netty_resolver_dns_classes_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver_dns_classes_macos:netty-resolver-dns-classes-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver_dns_classes_macos:netty_resolver_dns_classes_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-resolver-dns-classes:resolver-dns-classes-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-resolver-dns-classes:resolver_dns_classes_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_resolver_dns_classes:resolver-dns-classes-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_resolver_dns_classes:resolver_dns_classes_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver-dns-classes-macos:resolver-dns-classes-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver-dns-classes-macos:resolver_dns_classes_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver-dns-classes:netty-resolver-dns-classes-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver-dns-classes:netty_resolver_dns_classes_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver_dns_classes:netty-resolver-dns-classes-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver_dns_classes:netty_resolver_dns_classes_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver_dns_classes_macos:resolver-dns-classes-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver_dns_classes_macos:resolver_dns_classes_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-resolver-dns:netty-resolver-dns-classes-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-resolver-dns:netty_resolver_dns_classes_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_resolver_dns:netty-resolver-dns-classes-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_resolver_dns:netty_resolver_dns_classes_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-resolver:netty-resolver-dns-classes-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-resolver:netty_resolver_dns_classes_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_resolver:netty-resolver-dns-classes-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_resolver:netty_resolver_dns_classes_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver-dns-classes:resolver-dns-classes-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver-dns-classes:resolver_dns_classes_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver_dns_classes:resolver-dns-classes-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver_dns_classes:resolver_dns_classes_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:netty-resolver-dns-classes-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:netty_resolver_dns_classes_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:netty-resolver-dns-classes-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:netty_resolver_dns_classes_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-resolver-dns:resolver-dns-classes-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-resolver-dns:resolver_dns_classes_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_resolver_dns:resolver-dns-classes-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_resolver_dns:resolver_dns_classes_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver-dns:netty-resolver-dns-classes-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver-dns:netty_resolver_dns_classes_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver_dns:netty-resolver-dns-classes-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver_dns:netty_resolver_dns_classes_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-resolver:resolver-dns-classes-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-resolver:resolver_dns_classes_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_resolver:resolver-dns-classes-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_resolver:resolver_dns_classes_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver:netty-resolver-dns-classes-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver:netty_resolver_dns_classes_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:resolver-dns-classes-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:resolver_dns_classes_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:resolver-dns-classes-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:resolver_dns_classes_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver-dns:resolver-dns-classes-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver-dns:resolver_dns_classes_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver_dns:resolver-dns-classes-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver_dns:resolver_dns_classes_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:netty-resolver-dns-classes-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:netty_resolver_dns_classes_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver:resolver-dns-classes-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver:resolver_dns_classes_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:resolver-dns-classes-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:resolver_dns_classes_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:9168aa9edf57e27178cf19177cd017cbde863db4b32b192859f2e4e224236750"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-server/lib/netty-resolver-dns-classes-macos-4.1.96.Final.jar"
+        },
+        {
+          "name": "syft:metadata:-:artifactID",
+          "value": "netty-resolver-dns-classes-macos"
+        },
+        {
+          "name": "syft:metadata:-:groupID",
+          "value": "io.netty"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-server/lib/netty-resolver-dns-classes-macos-4.1.96.Final.jar"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/io.netty/netty-resolver-dns-native-macos@4.1.96.Final?package-id=882377a6fb2f547e",
+      "type": "library",
+      "group": "io.netty",
+      "name": "netty-resolver-dns-native-macos",
+      "version": "4.1.96.Final",
+      "licenses": [
+        {
+          "license": {
+            "name": "https://www.apache.org/licenses/LICENSE-2.0"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:netty-resolver-dns-native-macos:netty-resolver-dns-native-macos:4.1.96.Final:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/io.netty/netty-resolver-dns-native-macos@4.1.96.Final",
+      "externalReferences": [
+        {
+          "url": "",
+          "hashes": [
+            {
+              "alg": "SHA-1",
+              "content": "a4538d887fa1b61b50eb411e10465df36ac22998"
+            }
+          ],
+          "type": "build-meta"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-resolver-dns-native-macos:netty_resolver_dns_native_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_resolver_dns_native_macos:netty-resolver-dns-native-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_resolver_dns_native_macos:netty_resolver_dns_native_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-resolver-dns-native-macos:resolver-dns-native-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-resolver-dns-native-macos:resolver_dns_native_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-resolver-dns-native:netty-resolver-dns-native-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-resolver-dns-native:netty_resolver_dns_native_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_resolver_dns_native:netty-resolver-dns-native-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_resolver_dns_native:netty_resolver_dns_native_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_resolver_dns_native_macos:resolver-dns-native-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_resolver_dns_native_macos:resolver_dns_native_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver-dns-native-macos:netty-resolver-dns-native-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver-dns-native-macos:netty_resolver_dns_native_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver_dns_native_macos:netty-resolver-dns-native-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver_dns_native_macos:netty_resolver_dns_native_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-resolver-dns-native:resolver-dns-native-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-resolver-dns-native:resolver_dns_native_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_resolver_dns_native:resolver-dns-native-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_resolver_dns_native:resolver_dns_native_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver-dns-native-macos:resolver-dns-native-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver-dns-native-macos:resolver_dns_native_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver-dns-native:netty-resolver-dns-native-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver-dns-native:netty_resolver_dns_native_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver_dns_native:netty-resolver-dns-native-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver_dns_native:netty_resolver_dns_native_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver_dns_native_macos:resolver-dns-native-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver_dns_native_macos:resolver_dns_native_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-resolver-dns:netty-resolver-dns-native-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-resolver-dns:netty_resolver_dns_native_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_resolver_dns:netty-resolver-dns-native-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_resolver_dns:netty_resolver_dns_native_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-resolver:netty-resolver-dns-native-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-resolver:netty_resolver_dns_native_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_resolver:netty-resolver-dns-native-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_resolver:netty_resolver_dns_native_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:netty-resolver-dns-native-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:netty_resolver_dns_native_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:netty-resolver-dns-native-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:netty_resolver_dns_native_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver-dns-native:resolver-dns-native-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver-dns-native:resolver_dns_native_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver_dns_native:resolver-dns-native-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver_dns_native:resolver_dns_native_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-resolver-dns:resolver-dns-native-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-resolver-dns:resolver_dns_native_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_resolver_dns:resolver-dns-native-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_resolver_dns:resolver_dns_native_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver-dns:netty-resolver-dns-native-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver-dns:netty_resolver_dns_native_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver_dns:netty-resolver-dns-native-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver_dns:netty_resolver_dns_native_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-resolver:resolver-dns-native-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-resolver:resolver_dns_native_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_resolver:resolver-dns-native-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_resolver:resolver_dns_native_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver:netty-resolver-dns-native-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver:netty_resolver_dns_native_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:resolver-dns-native-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:resolver_dns_native_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:resolver-dns-native-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:resolver_dns_native_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver-dns:resolver-dns-native-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver-dns:resolver_dns_native_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver_dns:resolver-dns-native-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver_dns:resolver_dns_native_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:netty-resolver-dns-native-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:netty_resolver_dns_native_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver:resolver-dns-native-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver:resolver_dns_native_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:resolver-dns-native-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:resolver_dns_native_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:9168aa9edf57e27178cf19177cd017cbde863db4b32b192859f2e4e224236750"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-server/lib/netty-resolver-dns-native-macos-4.1.96.Final-osx-aarch_64.jar"
+        },
+        {
+          "name": "syft:metadata:-:artifactID",
+          "value": "netty-resolver-dns-native-macos"
+        },
+        {
+          "name": "syft:metadata:-:groupID",
+          "value": "io.netty"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-server/lib/netty-resolver-dns-native-macos-4.1.96.Final-osx-aarch_64.jar"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/io.netty/netty-resolver-dns-native-macos@4.1.96.Final?package-id=1e4f8f6b620b2fc8",
+      "type": "library",
+      "group": "io.netty",
+      "name": "netty-resolver-dns-native-macos",
+      "version": "4.1.96.Final",
+      "licenses": [
+        {
+          "license": {
+            "name": "https://www.apache.org/licenses/LICENSE-2.0"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:netty-resolver-dns-native-macos:netty-resolver-dns-native-macos:4.1.96.Final:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/io.netty/netty-resolver-dns-native-macos@4.1.96.Final",
+      "externalReferences": [
+        {
+          "url": "",
+          "hashes": [
+            {
+              "alg": "SHA-1",
+              "content": "a44188cd424c9c920a27d55b7571cd06608d09f8"
+            }
+          ],
+          "type": "build-meta"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-resolver-dns-native-macos:netty_resolver_dns_native_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_resolver_dns_native_macos:netty-resolver-dns-native-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_resolver_dns_native_macos:netty_resolver_dns_native_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-resolver-dns-native-macos:resolver-dns-native-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-resolver-dns-native-macos:resolver_dns_native_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-resolver-dns-native:netty-resolver-dns-native-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-resolver-dns-native:netty_resolver_dns_native_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_resolver_dns_native:netty-resolver-dns-native-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_resolver_dns_native:netty_resolver_dns_native_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_resolver_dns_native_macos:resolver-dns-native-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_resolver_dns_native_macos:resolver_dns_native_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver-dns-native-macos:netty-resolver-dns-native-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver-dns-native-macos:netty_resolver_dns_native_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver_dns_native_macos:netty-resolver-dns-native-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver_dns_native_macos:netty_resolver_dns_native_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-resolver-dns-native:resolver-dns-native-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-resolver-dns-native:resolver_dns_native_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_resolver_dns_native:resolver-dns-native-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_resolver_dns_native:resolver_dns_native_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver-dns-native-macos:resolver-dns-native-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver-dns-native-macos:resolver_dns_native_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver-dns-native:netty-resolver-dns-native-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver-dns-native:netty_resolver_dns_native_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver_dns_native:netty-resolver-dns-native-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver_dns_native:netty_resolver_dns_native_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver_dns_native_macos:resolver-dns-native-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver_dns_native_macos:resolver_dns_native_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-resolver-dns:netty-resolver-dns-native-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-resolver-dns:netty_resolver_dns_native_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_resolver_dns:netty-resolver-dns-native-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_resolver_dns:netty_resolver_dns_native_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-resolver:netty-resolver-dns-native-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-resolver:netty_resolver_dns_native_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_resolver:netty-resolver-dns-native-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_resolver:netty_resolver_dns_native_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:netty-resolver-dns-native-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:netty_resolver_dns_native_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:netty-resolver-dns-native-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:netty_resolver_dns_native_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver-dns-native:resolver-dns-native-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver-dns-native:resolver_dns_native_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver_dns_native:resolver-dns-native-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver_dns_native:resolver_dns_native_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-resolver-dns:resolver-dns-native-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-resolver-dns:resolver_dns_native_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_resolver_dns:resolver-dns-native-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_resolver_dns:resolver_dns_native_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver-dns:netty-resolver-dns-native-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver-dns:netty_resolver_dns_native_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver_dns:netty-resolver-dns-native-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver_dns:netty_resolver_dns_native_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-resolver:resolver-dns-native-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-resolver:resolver_dns_native_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_resolver:resolver-dns-native-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_resolver:resolver_dns_native_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver:netty-resolver-dns-native-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver:netty_resolver_dns_native_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:resolver-dns-native-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:resolver_dns_native_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:resolver-dns-native-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:resolver_dns_native_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver-dns:resolver-dns-native-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver-dns:resolver_dns_native_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver_dns:resolver-dns-native-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver_dns:resolver_dns_native_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:netty-resolver-dns-native-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:netty_resolver_dns_native_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver:resolver-dns-native-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:resolver:resolver_dns_native_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:resolver-dns-native-macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:resolver_dns_native_macos:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:9168aa9edf57e27178cf19177cd017cbde863db4b32b192859f2e4e224236750"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-server/lib/netty-resolver-dns-native-macos-4.1.96.Final-osx-x86_64.jar"
+        },
+        {
+          "name": "syft:metadata:-:artifactID",
+          "value": "netty-resolver-dns-native-macos"
+        },
+        {
+          "name": "syft:metadata:-:groupID",
+          "value": "io.netty"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-server/lib/netty-resolver-dns-native-macos-4.1.96.Final-osx-x86_64.jar"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/io.netty/netty-transport@4.1.96.Final?package-id=d816d1592789aa4e",
+      "type": "library",
+      "group": "io.netty",
+      "name": "netty-transport",
+      "version": "4.1.96.Final",
+      "licenses": [
+        {
+          "license": {
+            "name": "https://www.apache.org/licenses/LICENSE-2.0"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:netty-transport:netty-transport:4.1.96.Final:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/io.netty/netty-transport@4.1.96.Final",
+      "externalReferences": [
+        {
+          "url": "",
+          "hashes": [
+            {
+              "alg": "SHA-1",
+              "content": "dbd15ca244be28e1a98ed29b9d755edbfa737e02"
+            }
+          ],
+          "type": "build-meta"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport:netty_transport:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport:netty-transport:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport:netty_transport:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:netty-transport:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:netty_transport:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:netty-transport:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:netty_transport:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport:transport:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport:transport:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport:netty-transport:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport:netty_transport:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:transport:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:transport:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:netty-transport:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:netty_transport:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport:transport:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:transport:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:9168aa9edf57e27178cf19177cd017cbde863db4b32b192859f2e4e224236750"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-server/lib/netty-transport-4.1.96.Final.jar"
+        },
+        {
+          "name": "syft:metadata:-:artifactID",
+          "value": "netty-transport"
+        },
+        {
+          "name": "syft:metadata:-:groupID",
+          "value": "io.netty"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-server/lib/netty-transport-4.1.96.Final.jar"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/io.netty/netty-transport-classes-epoll@4.1.96.Final?package-id=7037ca5486e487dd",
+      "type": "library",
+      "group": "io.netty",
+      "name": "netty-transport-classes-epoll",
+      "version": "4.1.96.Final",
+      "licenses": [
+        {
+          "license": {
+            "name": "https://www.apache.org/licenses/LICENSE-2.0"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:netty-transport-classes-epoll:netty-transport-classes-epoll:4.1.96.Final:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/io.netty/netty-transport-classes-epoll@4.1.96.Final",
+      "externalReferences": [
+        {
+          "url": "",
+          "hashes": [
+            {
+              "alg": "SHA-1",
+              "content": "b0369501645f6e71f89ff7f77b5c5f52510a2e31"
+            }
+          ],
+          "type": "build-meta"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport-classes-epoll:netty_transport_classes_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport_classes_epoll:netty-transport-classes-epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport_classes_epoll:netty_transport_classes_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport-classes-epoll:transport-classes-epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport-classes-epoll:transport_classes_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport-classes:netty-transport-classes-epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport-classes:netty_transport_classes_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport_classes:netty-transport-classes-epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport_classes:netty_transport_classes_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport_classes_epoll:transport-classes-epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport_classes_epoll:transport_classes_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport-classes-epoll:netty-transport-classes-epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport-classes-epoll:netty_transport_classes_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport_classes_epoll:netty-transport-classes-epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport_classes_epoll:netty_transport_classes_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport-classes:transport-classes-epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport-classes:transport_classes_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport_classes:transport-classes-epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport_classes:transport_classes_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport-classes-epoll:transport-classes-epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport-classes-epoll:transport_classes_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport-classes:netty-transport-classes-epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport-classes:netty_transport_classes_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport_classes:netty-transport-classes-epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport_classes:netty_transport_classes_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport_classes_epoll:transport-classes-epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport_classes_epoll:transport_classes_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport:netty-transport-classes-epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport:netty_transport_classes_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport:netty-transport-classes-epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport:netty_transport_classes_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:netty-transport-classes-epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:netty_transport_classes_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:netty-transport-classes-epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:netty_transport_classes_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport-classes:transport-classes-epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport-classes:transport_classes_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport_classes:transport-classes-epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport_classes:transport_classes_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport:transport-classes-epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport:transport_classes_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport:transport-classes-epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport:transport_classes_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport:netty-transport-classes-epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport:netty_transport_classes_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:transport-classes-epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:transport_classes_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:transport-classes-epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:transport_classes_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:netty-transport-classes-epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:netty_transport_classes_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport:transport-classes-epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport:transport_classes_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:transport-classes-epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:transport_classes_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:9168aa9edf57e27178cf19177cd017cbde863db4b32b192859f2e4e224236750"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-server/lib/netty-transport-classes-epoll-4.1.96.Final.jar"
+        },
+        {
+          "name": "syft:metadata:-:artifactID",
+          "value": "netty-transport-classes-epoll"
+        },
+        {
+          "name": "syft:metadata:-:groupID",
+          "value": "io.netty"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-server/lib/netty-transport-classes-epoll-4.1.96.Final.jar"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/io.netty/netty-transport-classes-kqueue@4.1.96.Final?package-id=9e9a4b370836b14f",
+      "type": "library",
+      "group": "io.netty",
+      "name": "netty-transport-classes-kqueue",
+      "version": "4.1.96.Final",
+      "licenses": [
+        {
+          "license": {
+            "name": "https://www.apache.org/licenses/LICENSE-2.0"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:netty-transport-classes-kqueue:netty-transport-classes-kqueue:4.1.96.Final:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/io.netty/netty-transport-classes-kqueue@4.1.96.Final",
+      "externalReferences": [
+        {
+          "url": "",
+          "hashes": [
+            {
+              "alg": "SHA-1",
+              "content": "782f6bbb8dd5401599d272ea0fb81d1356bdffb2"
+            }
+          ],
+          "type": "build-meta"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport-classes-kqueue:netty_transport_classes_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport_classes_kqueue:netty-transport-classes-kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport_classes_kqueue:netty_transport_classes_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport-classes-kqueue:transport-classes-kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport-classes-kqueue:transport_classes_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport_classes_kqueue:transport-classes-kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport_classes_kqueue:transport_classes_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport-classes-kqueue:netty-transport-classes-kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport-classes-kqueue:netty_transport_classes_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport_classes_kqueue:netty-transport-classes-kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport_classes_kqueue:netty_transport_classes_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport-classes:netty-transport-classes-kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport-classes:netty_transport_classes_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport_classes:netty-transport-classes-kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport_classes:netty_transport_classes_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport-classes-kqueue:transport-classes-kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport-classes-kqueue:transport_classes_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport_classes_kqueue:transport-classes-kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport_classes_kqueue:transport_classes_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport-classes:transport-classes-kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport-classes:transport_classes_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport_classes:transport-classes-kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport_classes:transport_classes_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport-classes:netty-transport-classes-kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport-classes:netty_transport_classes_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport_classes:netty-transport-classes-kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport_classes:netty_transport_classes_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport:netty-transport-classes-kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport:netty_transport_classes_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport:netty-transport-classes-kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport:netty_transport_classes_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:netty-transport-classes-kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:netty_transport_classes_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:netty-transport-classes-kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:netty_transport_classes_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport-classes:transport-classes-kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport-classes:transport_classes_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport_classes:transport-classes-kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport_classes:transport_classes_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport:transport-classes-kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport:transport_classes_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport:transport-classes-kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport:transport_classes_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport:netty-transport-classes-kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport:netty_transport_classes_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:transport-classes-kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:transport_classes_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:transport-classes-kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:transport_classes_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:netty-transport-classes-kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:netty_transport_classes_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport:transport-classes-kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport:transport_classes_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:transport-classes-kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:transport_classes_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:9168aa9edf57e27178cf19177cd017cbde863db4b32b192859f2e4e224236750"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-server/lib/netty-transport-classes-kqueue-4.1.96.Final.jar"
+        },
+        {
+          "name": "syft:metadata:-:artifactID",
+          "value": "netty-transport-classes-kqueue"
+        },
+        {
+          "name": "syft:metadata:-:groupID",
+          "value": "io.netty"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-server/lib/netty-transport-classes-kqueue-4.1.96.Final.jar"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/io.netty/netty-transport-native-epoll@4.1.96.Final?package-id=95816462b0f71fae",
+      "type": "library",
+      "group": "io.netty",
+      "name": "netty-transport-native-epoll",
+      "version": "4.1.96.Final",
+      "licenses": [
+        {
+          "license": {
+            "name": "https://www.apache.org/licenses/LICENSE-2.0"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:netty-transport-native-epoll:netty-transport-native-epoll:4.1.96.Final:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/io.netty/netty-transport-native-epoll@4.1.96.Final",
+      "externalReferences": [
+        {
+          "url": "",
+          "hashes": [
+            {
+              "alg": "SHA-1",
+              "content": "cae778ab150745432a90d4f26f6174fe564f56fc"
+            }
+          ],
+          "type": "build-meta"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport-native-epoll:netty_transport_native_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport_native_epoll:netty-transport-native-epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport_native_epoll:netty_transport_native_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport-native-epoll:transport-native-epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport-native-epoll:transport_native_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport-native:netty-transport-native-epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport-native:netty_transport_native_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport_native:netty-transport-native-epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport_native:netty_transport_native_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport_native_epoll:transport-native-epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport_native_epoll:transport_native_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport-native-epoll:netty-transport-native-epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport-native-epoll:netty_transport_native_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport_native_epoll:netty-transport-native-epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport_native_epoll:netty_transport_native_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport-native:transport-native-epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport-native:transport_native_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport_native:transport-native-epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport_native:transport_native_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport-native-epoll:transport-native-epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport-native-epoll:transport_native_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport-native:netty-transport-native-epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport-native:netty_transport_native_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport_native:netty-transport-native-epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport_native:netty_transport_native_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport_native_epoll:transport-native-epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport_native_epoll:transport_native_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport:netty-transport-native-epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport:netty_transport_native_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport:netty-transport-native-epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport:netty_transport_native_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:netty-transport-native-epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:netty_transport_native_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:netty-transport-native-epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:netty_transport_native_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport-native:transport-native-epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport-native:transport_native_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport_native:transport-native-epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport_native:transport_native_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport:transport-native-epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport:transport_native_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport:transport-native-epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport:transport_native_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport:netty-transport-native-epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport:netty_transport_native_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:transport-native-epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:transport_native_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:transport-native-epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:transport_native_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:netty-transport-native-epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:netty_transport_native_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport:transport-native-epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport:transport_native_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:transport-native-epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:transport_native_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:9168aa9edf57e27178cf19177cd017cbde863db4b32b192859f2e4e224236750"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-server/lib/netty-transport-native-epoll-4.1.96.Final-linux-aarch_64.jar"
+        },
+        {
+          "name": "syft:metadata:-:artifactID",
+          "value": "netty-transport-native-epoll"
+        },
+        {
+          "name": "syft:metadata:-:groupID",
+          "value": "io.netty"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-server/lib/netty-transport-native-epoll-4.1.96.Final-linux-aarch_64.jar"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/io.netty/netty-transport-native-epoll@4.1.96.Final?package-id=f3f4e4dee438aa8f",
+      "type": "library",
+      "group": "io.netty",
+      "name": "netty-transport-native-epoll",
+      "version": "4.1.96.Final",
+      "licenses": [
+        {
+          "license": {
+            "name": "https://www.apache.org/licenses/LICENSE-2.0"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:netty-transport-native-epoll:netty-transport-native-epoll:4.1.96.Final:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/io.netty/netty-transport-native-epoll@4.1.96.Final",
+      "externalReferences": [
+        {
+          "url": "",
+          "hashes": [
+            {
+              "alg": "SHA-1",
+              "content": "3f8904e072cfc9a8d67c6fe567c39bcbce5c9c55"
+            }
+          ],
+          "type": "build-meta"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport-native-epoll:netty_transport_native_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport_native_epoll:netty-transport-native-epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport_native_epoll:netty_transport_native_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport-native-epoll:transport-native-epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport-native-epoll:transport_native_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport-native:netty-transport-native-epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport-native:netty_transport_native_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport_native:netty-transport-native-epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport_native:netty_transport_native_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport_native_epoll:transport-native-epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport_native_epoll:transport_native_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport-native-epoll:netty-transport-native-epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport-native-epoll:netty_transport_native_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport_native_epoll:netty-transport-native-epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport_native_epoll:netty_transport_native_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport-native:transport-native-epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport-native:transport_native_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport_native:transport-native-epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport_native:transport_native_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport-native-epoll:transport-native-epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport-native-epoll:transport_native_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport-native:netty-transport-native-epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport-native:netty_transport_native_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport_native:netty-transport-native-epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport_native:netty_transport_native_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport_native_epoll:transport-native-epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport_native_epoll:transport_native_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport:netty-transport-native-epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport:netty_transport_native_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport:netty-transport-native-epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport:netty_transport_native_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:netty-transport-native-epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:netty_transport_native_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:netty-transport-native-epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:netty_transport_native_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport-native:transport-native-epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport-native:transport_native_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport_native:transport-native-epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport_native:transport_native_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport:transport-native-epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport:transport_native_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport:transport-native-epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport:transport_native_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport:netty-transport-native-epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport:netty_transport_native_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:transport-native-epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:transport_native_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:transport-native-epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:transport_native_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:netty-transport-native-epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:netty_transport_native_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport:transport-native-epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport:transport_native_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:transport-native-epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:transport_native_epoll:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:9168aa9edf57e27178cf19177cd017cbde863db4b32b192859f2e4e224236750"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-server/lib/netty-transport-native-epoll-4.1.96.Final-linux-x86_64.jar"
+        },
+        {
+          "name": "syft:metadata:-:artifactID",
+          "value": "netty-transport-native-epoll"
+        },
+        {
+          "name": "syft:metadata:-:groupID",
+          "value": "io.netty"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-server/lib/netty-transport-native-epoll-4.1.96.Final-linux-x86_64.jar"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/io.netty/netty-transport-native-kqueue@4.1.96.Final?package-id=1e703c6df3679e60",
+      "type": "library",
+      "group": "io.netty",
+      "name": "netty-transport-native-kqueue",
+      "version": "4.1.96.Final",
+      "licenses": [
+        {
+          "license": {
+            "name": "https://www.apache.org/licenses/LICENSE-2.0"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:netty-transport-native-kqueue:netty-transport-native-kqueue:4.1.96.Final:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/io.netty/netty-transport-native-kqueue@4.1.96.Final",
+      "externalReferences": [
+        {
+          "url": "",
+          "hashes": [
+            {
+              "alg": "SHA-1",
+              "content": "070b3e957eec0cd78637c3bd15a8a4b24e653f87"
+            }
+          ],
+          "type": "build-meta"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport-native-kqueue:netty_transport_native_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport_native_kqueue:netty-transport-native-kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport_native_kqueue:netty_transport_native_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport-native-kqueue:transport-native-kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport-native-kqueue:transport_native_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport_native_kqueue:transport-native-kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport_native_kqueue:transport_native_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport-native-kqueue:netty-transport-native-kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport-native-kqueue:netty_transport_native_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport_native_kqueue:netty-transport-native-kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport_native_kqueue:netty_transport_native_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport-native:netty-transport-native-kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport-native:netty_transport_native_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport_native:netty-transport-native-kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport_native:netty_transport_native_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport-native-kqueue:transport-native-kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport-native-kqueue:transport_native_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport_native_kqueue:transport-native-kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport_native_kqueue:transport_native_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport-native:transport-native-kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport-native:transport_native_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport_native:transport-native-kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport_native:transport_native_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport-native:netty-transport-native-kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport-native:netty_transport_native_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport_native:netty-transport-native-kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport_native:netty_transport_native_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport:netty-transport-native-kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport:netty_transport_native_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport:netty-transport-native-kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport:netty_transport_native_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:netty-transport-native-kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:netty_transport_native_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:netty-transport-native-kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:netty_transport_native_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport-native:transport-native-kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport-native:transport_native_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport_native:transport-native-kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport_native:transport_native_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport:transport-native-kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport:transport_native_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport:transport-native-kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport:transport_native_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport:netty-transport-native-kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport:netty_transport_native_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:transport-native-kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:transport_native_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:transport-native-kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:transport_native_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:netty-transport-native-kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:netty_transport_native_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport:transport-native-kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport:transport_native_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:transport-native-kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:transport_native_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:9168aa9edf57e27178cf19177cd017cbde863db4b32b192859f2e4e224236750"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-server/lib/netty-transport-native-kqueue-4.1.96.Final-osx-aarch_64.jar"
+        },
+        {
+          "name": "syft:metadata:-:artifactID",
+          "value": "netty-transport-native-kqueue"
+        },
+        {
+          "name": "syft:metadata:-:groupID",
+          "value": "io.netty"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-server/lib/netty-transport-native-kqueue-4.1.96.Final-osx-aarch_64.jar"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/io.netty/netty-transport-native-kqueue@4.1.96.Final?package-id=3fd89cc5d9902377",
+      "type": "library",
+      "group": "io.netty",
+      "name": "netty-transport-native-kqueue",
+      "version": "4.1.96.Final",
+      "licenses": [
+        {
+          "license": {
+            "name": "https://www.apache.org/licenses/LICENSE-2.0"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:netty-transport-native-kqueue:netty-transport-native-kqueue:4.1.96.Final:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/io.netty/netty-transport-native-kqueue@4.1.96.Final",
+      "externalReferences": [
+        {
+          "url": "",
+          "hashes": [
+            {
+              "alg": "SHA-1",
+              "content": "c127ed313fc80cf2cb366dccfded1daddc89a8ef"
+            }
+          ],
+          "type": "build-meta"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport-native-kqueue:netty_transport_native_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport_native_kqueue:netty-transport-native-kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport_native_kqueue:netty_transport_native_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport-native-kqueue:transport-native-kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport-native-kqueue:transport_native_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport_native_kqueue:transport-native-kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport_native_kqueue:transport_native_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport-native-kqueue:netty-transport-native-kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport-native-kqueue:netty_transport_native_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport_native_kqueue:netty-transport-native-kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport_native_kqueue:netty_transport_native_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport-native:netty-transport-native-kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport-native:netty_transport_native_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport_native:netty-transport-native-kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport_native:netty_transport_native_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport-native-kqueue:transport-native-kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport-native-kqueue:transport_native_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport_native_kqueue:transport-native-kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport_native_kqueue:transport_native_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport-native:transport-native-kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport-native:transport_native_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport_native:transport-native-kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport_native:transport_native_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport-native:netty-transport-native-kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport-native:netty_transport_native_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport_native:netty-transport-native-kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport_native:netty_transport_native_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport:netty-transport-native-kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport:netty_transport_native_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport:netty-transport-native-kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport:netty_transport_native_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:netty-transport-native-kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:netty_transport_native_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:netty-transport-native-kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:netty_transport_native_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport-native:transport-native-kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport-native:transport_native_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport_native:transport-native-kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport_native:transport_native_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport:transport-native-kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport:transport_native_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport:transport-native-kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport:transport_native_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport:netty-transport-native-kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport:netty_transport_native_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:transport-native-kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:transport_native_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:transport-native-kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:transport_native_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:netty-transport-native-kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:netty_transport_native_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport:transport-native-kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport:transport_native_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:transport-native-kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:transport_native_kqueue:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:9168aa9edf57e27178cf19177cd017cbde863db4b32b192859f2e4e224236750"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-server/lib/netty-transport-native-kqueue-4.1.96.Final-osx-x86_64.jar"
+        },
+        {
+          "name": "syft:metadata:-:artifactID",
+          "value": "netty-transport-native-kqueue"
+        },
+        {
+          "name": "syft:metadata:-:groupID",
+          "value": "io.netty"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-server/lib/netty-transport-native-kqueue-4.1.96.Final-osx-x86_64.jar"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/io.netty/netty-transport-native-unix-common@4.1.96.Final?package-id=6c14554ad06a8e27",
+      "type": "library",
+      "group": "io.netty",
+      "name": "netty-transport-native-unix-common",
+      "version": "4.1.96.Final",
+      "licenses": [
+        {
+          "license": {
+            "name": "https://www.apache.org/licenses/LICENSE-2.0"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:netty-transport-native-unix-common:netty-transport-native-unix-common:4.1.96.Final:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/io.netty/netty-transport-native-unix-common@4.1.96.Final",
+      "externalReferences": [
+        {
+          "url": "",
+          "hashes": [
+            {
+              "alg": "SHA-1",
+              "content": "daf8578cade63a01525ee9d70371fa78e6e91094"
+            }
+          ],
+          "type": "build-meta"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport-native-unix-common:netty_transport_native_unix_common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport_native_unix_common:netty-transport-native-unix-common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport_native_unix_common:netty_transport_native_unix_common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport-native-unix-common:transport-native-unix-common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport-native-unix-common:transport_native_unix_common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport_native_unix_common:transport-native-unix-common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport_native_unix_common:transport_native_unix_common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport-native-unix-common:netty-transport-native-unix-common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport-native-unix-common:netty_transport_native_unix_common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport_native_unix_common:netty-transport-native-unix-common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport_native_unix_common:netty_transport_native_unix_common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport-native-unix:netty-transport-native-unix-common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport-native-unix:netty_transport_native_unix_common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport_native_unix:netty-transport-native-unix-common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport_native_unix:netty_transport_native_unix_common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport-native:netty-transport-native-unix-common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport-native:netty_transport_native_unix_common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport_native:netty-transport-native-unix-common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport_native:netty_transport_native_unix_common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport-native-unix-common:transport-native-unix-common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport-native-unix-common:transport_native_unix_common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport_native_unix_common:transport-native-unix-common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport_native_unix_common:transport_native_unix_common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport-native-unix:transport-native-unix-common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport-native-unix:transport_native_unix_common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport_native_unix:transport-native-unix-common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport_native_unix:transport_native_unix_common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport-native-unix:netty-transport-native-unix-common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport-native-unix:netty_transport_native_unix_common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport_native_unix:netty-transport-native-unix-common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport_native_unix:netty_transport_native_unix_common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport-native:transport-native-unix-common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport-native:transport_native_unix_common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport_native:transport-native-unix-common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport_native:transport_native_unix_common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport-native:netty-transport-native-unix-common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport-native:netty_transport_native_unix_common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport_native:netty-transport-native-unix-common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport_native:netty_transport_native_unix_common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport:netty-transport-native-unix-common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport:netty_transport_native_unix_common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport:netty-transport-native-unix-common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport:netty_transport_native_unix_common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport-native-unix:transport-native-unix-common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport-native-unix:transport_native_unix_common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport_native_unix:transport-native-unix-common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport_native_unix:transport_native_unix_common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:netty-transport-native-unix-common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:netty_transport_native_unix_common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:netty-transport-native-unix-common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:netty_transport_native_unix_common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport-native:transport-native-unix-common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport-native:transport_native_unix_common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport_native:transport-native-unix-common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport_native:transport_native_unix_common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport:transport-native-unix-common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport:transport_native_unix_common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport:transport-native-unix-common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport:transport_native_unix_common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport:netty-transport-native-unix-common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport:netty_transport_native_unix_common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:transport-native-unix-common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:transport_native_unix_common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:transport-native-unix-common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:transport_native_unix_common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:netty-transport-native-unix-common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:netty_transport_native_unix_common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport:transport-native-unix-common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport:transport_native_unix_common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:transport-native-unix-common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:transport_native_unix_common:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:9168aa9edf57e27178cf19177cd017cbde863db4b32b192859f2e4e224236750"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-server/lib/netty-transport-native-unix-common-4.1.96.Final.jar"
+        },
+        {
+          "name": "syft:metadata:-:artifactID",
+          "value": "netty-transport-native-unix-common"
+        },
+        {
+          "name": "syft:metadata:-:groupID",
+          "value": "io.netty"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-server/lib/netty-transport-native-unix-common-4.1.96.Final.jar"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/io.netty/netty-transport-rxtx@4.1.96.Final?package-id=e87c59fb17aea612",
+      "type": "library",
+      "group": "io.netty",
+      "name": "netty-transport-rxtx",
+      "version": "4.1.96.Final",
+      "licenses": [
+        {
+          "license": {
+            "name": "https://www.apache.org/licenses/LICENSE-2.0"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:netty-transport-rxtx:netty-transport-rxtx:4.1.96.Final:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/io.netty/netty-transport-rxtx@4.1.96.Final",
+      "externalReferences": [
+        {
+          "url": "",
+          "hashes": [
+            {
+              "alg": "SHA-1",
+              "content": "eafb5b0a5a42cd60a8434d063c0ce7930decc70b"
+            }
+          ],
+          "type": "build-meta"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport-rxtx:netty_transport_rxtx:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport_rxtx:netty-transport-rxtx:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport_rxtx:netty_transport_rxtx:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport:netty-transport-rxtx:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport:netty_transport_rxtx:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport:netty-transport-rxtx:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport:netty_transport_rxtx:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport-rxtx:transport-rxtx:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport-rxtx:transport_rxtx:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport_rxtx:transport-rxtx:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport_rxtx:transport_rxtx:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport-rxtx:netty-transport-rxtx:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport-rxtx:netty_transport_rxtx:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport_rxtx:netty-transport-rxtx:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport_rxtx:netty_transport_rxtx:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:netty-transport-rxtx:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:netty_transport_rxtx:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:netty-transport-rxtx:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:netty_transport_rxtx:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport:transport-rxtx:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport:transport_rxtx:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport:transport-rxtx:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport:transport_rxtx:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport:netty-transport-rxtx:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport:netty_transport_rxtx:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport-rxtx:transport-rxtx:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport-rxtx:transport_rxtx:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport_rxtx:transport-rxtx:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport_rxtx:transport_rxtx:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:transport-rxtx:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:transport_rxtx:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:transport-rxtx:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:transport_rxtx:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:netty-transport-rxtx:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:netty_transport_rxtx:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport:transport-rxtx:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport:transport_rxtx:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:transport-rxtx:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:transport_rxtx:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:9168aa9edf57e27178cf19177cd017cbde863db4b32b192859f2e4e224236750"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-server/lib/netty-transport-rxtx-4.1.96.Final.jar"
+        },
+        {
+          "name": "syft:metadata:-:artifactID",
+          "value": "netty-transport-rxtx"
+        },
+        {
+          "name": "syft:metadata:-:groupID",
+          "value": "io.netty"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-server/lib/netty-transport-rxtx-4.1.96.Final.jar"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/io.netty/netty-transport-sctp@4.1.96.Final?package-id=757f23a7be981b29",
+      "type": "library",
+      "group": "io.netty",
+      "name": "netty-transport-sctp",
+      "version": "4.1.96.Final",
+      "licenses": [
+        {
+          "license": {
+            "name": "https://www.apache.org/licenses/LICENSE-2.0"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:netty-transport-sctp:netty-transport-sctp:4.1.96.Final:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/io.netty/netty-transport-sctp@4.1.96.Final",
+      "externalReferences": [
+        {
+          "url": "",
+          "hashes": [
+            {
+              "alg": "SHA-1",
+              "content": "4e6c8455a9b2163d059dbdd903d66cae25212ec0"
+            }
+          ],
+          "type": "build-meta"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport-sctp:netty_transport_sctp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport_sctp:netty-transport-sctp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport_sctp:netty_transport_sctp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport:netty-transport-sctp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport:netty_transport_sctp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport:netty-transport-sctp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport:netty_transport_sctp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport-sctp:transport-sctp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport-sctp:transport_sctp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport_sctp:transport-sctp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport_sctp:transport_sctp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport-sctp:netty-transport-sctp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport-sctp:netty_transport_sctp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport_sctp:netty-transport-sctp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport_sctp:netty_transport_sctp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:netty-transport-sctp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:netty_transport_sctp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:netty-transport-sctp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:netty_transport_sctp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport:transport-sctp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport:transport_sctp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport:transport-sctp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport:transport_sctp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport:netty-transport-sctp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport:netty_transport_sctp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport-sctp:transport-sctp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport-sctp:transport_sctp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport_sctp:transport-sctp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport_sctp:transport_sctp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:transport-sctp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:transport_sctp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:transport-sctp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:transport_sctp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:netty-transport-sctp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:netty_transport_sctp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport:transport-sctp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport:transport_sctp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:transport-sctp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:transport_sctp:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:9168aa9edf57e27178cf19177cd017cbde863db4b32b192859f2e4e224236750"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-server/lib/netty-transport-sctp-4.1.96.Final.jar"
+        },
+        {
+          "name": "syft:metadata:-:artifactID",
+          "value": "netty-transport-sctp"
+        },
+        {
+          "name": "syft:metadata:-:groupID",
+          "value": "io.netty"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-server/lib/netty-transport-sctp-4.1.96.Final.jar"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/io.netty/netty-transport-udt@4.1.96.Final?package-id=e4a203f0c6692b68",
+      "type": "library",
+      "group": "io.netty",
+      "name": "netty-transport-udt",
+      "version": "4.1.96.Final",
+      "licenses": [
+        {
+          "license": {
+            "name": "https://www.apache.org/licenses/LICENSE-2.0"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:netty-transport-udt:netty-transport-udt:4.1.96.Final:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/io.netty/netty-transport-udt@4.1.96.Final",
+      "externalReferences": [
+        {
+          "url": "",
+          "hashes": [
+            {
+              "alg": "SHA-1",
+              "content": "d0077b6b5080db347f6ff1785d8f2ea69c708001"
+            }
+          ],
+          "type": "build-meta"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport-udt:netty_transport_udt:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport_udt:netty-transport-udt:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport_udt:netty_transport_udt:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport:netty-transport-udt:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport:netty_transport_udt:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport:netty-transport-udt:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport:netty_transport_udt:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:netty-transport-udt:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:netty_transport_udt:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport-udt:transport-udt:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport-udt:transport_udt:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:netty-transport-udt:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:netty_transport_udt:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport_udt:transport-udt:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport_udt:transport_udt:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport-udt:netty-transport-udt:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport-udt:netty_transport_udt:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport_udt:netty-transport-udt:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport_udt:netty_transport_udt:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport:transport-udt:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-transport:transport_udt:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport:transport-udt:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_transport:transport_udt:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport:netty-transport-udt:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport:netty_transport_udt:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:transport-udt:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty-project:transport_udt:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:transport-udt:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty_project:transport_udt:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport-udt:transport-udt:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport-udt:transport_udt:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport_udt:transport-udt:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport_udt:transport_udt:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:netty-transport-udt:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:netty_transport_udt:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport:transport-udt:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:transport:transport_udt:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:transport-udt:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:netty:transport_udt:4.1.96.Final:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:9168aa9edf57e27178cf19177cd017cbde863db4b32b192859f2e4e224236750"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-server/lib/netty-transport-udt-4.1.96.Final.jar"
+        },
+        {
+          "name": "syft:metadata:-:artifactID",
+          "value": "netty-transport-udt"
+        },
+        {
+          "name": "syft:metadata:-:groupID",
+          "value": "io.netty"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-server/lib/netty-transport-udt-4.1.96.Final.jar"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:apk/alpine/openjdk11-jdk@11.0.21_p9-r0?arch=x86_64&upstream=openjdk11&distro=alpine-3.18.5&package-id=f4c8aaccc90d995e",
+      "type": "library",
+      "publisher": "Simon Frankenberger <simon-alpine@fraho.eu>",
+      "name": "openjdk11-jdk",
+      "version": "11.0.21_p9-r0",
+      "description": "Oracle OpenJDK 11 (JDK)",
+      "licenses": [
+        {
+          "license": {
+            "id": "GPL-2.0-with-classpath-exception"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:openjdk11-jdk:openjdk11-jdk:11.0.21_p9-r0:*:*:*:*:*:*:*",
+      "purl": "pkg:apk/alpine/openjdk11-jdk@11.0.21_p9-r0?arch=x86_64&upstream=openjdk11&distro=alpine-3.18.5",
+      "externalReferences": [
+        {
+          "url": "https://github.com/openjdk/jdk11u",
+          "type": "distribution"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "apk-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "apk"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "apk-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk11-jdk:openjdk11_jdk:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk11_jdk:openjdk11-jdk:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk11_jdk:openjdk11_jdk:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk-jdk:openjdk11-jdk:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk-jdk:openjdk11_jdk:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk11-jdk:openjdk-jdk:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk11-jdk:openjdk_jdk:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk11_jdk:openjdk-jdk:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk11_jdk:openjdk_jdk:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk_jdk:openjdk11-jdk:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk_jdk:openjdk11_jdk:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk-jdk:openjdk-jdk:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk-jdk:openjdk_jdk:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk11:openjdk11-jdk:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk11:openjdk11_jdk:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk_jdk:openjdk-jdk:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk_jdk:openjdk_jdk:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk11:openjdk-jdk:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk11:openjdk_jdk:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk:openjdk11-jdk:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk:openjdk11_jdk:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk:openjdk-jdk:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk:openjdk_jdk:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:040ab99b6ccfaee2ade0def5bb35be6512e03860bd46bb9752a6c47709997f24"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/lib/apk/db/installed"
+        },
+        {
+          "name": "syft:metadata:gitCommitOfApkPort",
+          "value": "d2e17ed0f58fe8bef042fa7ce03da72e6f934c41"
+        },
+        {
+          "name": "syft:metadata:installedSize",
+          "value": "5120000"
+        },
+        {
+          "name": "syft:metadata:originPackage",
+          "value": "openjdk11"
+        },
+        {
+          "name": "syft:metadata:provides:0",
+          "value": "java-jdk"
+        },
+        {
+          "name": "syft:metadata:pullChecksum",
+          "value": "Q1r0I9R2XVQ/AYwlGik/qqxxo/6uk="
+        },
+        {
+          "name": "syft:metadata:pullDependencies:0",
+          "value": "openjdk11-jre"
+        },
+        {
+          "name": "syft:metadata:pullDependencies:1",
+          "value": "openjdk11-jmods"
+        },
+        {
+          "name": "syft:metadata:pullDependencies:2",
+          "value": "so:libc.musl-x86_64.so.1"
+        },
+        {
+          "name": "syft:metadata:pullDependencies:3",
+          "value": "so:openjdk11:libjli.so"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "3476665"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:apk/alpine/openjdk11-jmods@11.0.21_p9-r0?arch=x86_64&upstream=openjdk11&distro=alpine-3.18.5&package-id=ca527a5de9a8839a",
+      "type": "library",
+      "publisher": "Simon Frankenberger <simon-alpine@fraho.eu>",
+      "name": "openjdk11-jmods",
+      "version": "11.0.21_p9-r0",
+      "description": "Oracle OpenJDK 11 (jmods)",
+      "licenses": [
+        {
+          "license": {
+            "id": "GPL-2.0-with-classpath-exception"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:openjdk11-jmods:openjdk11-jmods:11.0.21_p9-r0:*:*:*:*:*:*:*",
+      "purl": "pkg:apk/alpine/openjdk11-jmods@11.0.21_p9-r0?arch=x86_64&upstream=openjdk11&distro=alpine-3.18.5",
+      "externalReferences": [
+        {
+          "url": "https://github.com/openjdk/jdk11u",
+          "type": "distribution"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "apk-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "apk"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "apk-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk11-jmods:openjdk11_jmods:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk11_jmods:openjdk11-jmods:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk11_jmods:openjdk11_jmods:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk-jmods:openjdk11-jmods:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk-jmods:openjdk11_jmods:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk11-jmods:openjdk-jmods:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk11-jmods:openjdk_jmods:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk11_jmods:openjdk-jmods:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk11_jmods:openjdk_jmods:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk_jmods:openjdk11-jmods:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk_jmods:openjdk11_jmods:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk-jmods:openjdk-jmods:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk-jmods:openjdk_jmods:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk_jmods:openjdk-jmods:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk_jmods:openjdk_jmods:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk11:openjdk11-jmods:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk11:openjdk11_jmods:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk11:openjdk-jmods:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk11:openjdk_jmods:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk:openjdk11-jmods:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk:openjdk11_jmods:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk:openjdk-jmods:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk:openjdk_jmods:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:040ab99b6ccfaee2ade0def5bb35be6512e03860bd46bb9752a6c47709997f24"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/lib/apk/db/installed"
+        },
+        {
+          "name": "syft:metadata:gitCommitOfApkPort",
+          "value": "d2e17ed0f58fe8bef042fa7ce03da72e6f934c41"
+        },
+        {
+          "name": "syft:metadata:installedSize",
+          "value": "80351232"
+        },
+        {
+          "name": "syft:metadata:originPackage",
+          "value": "openjdk11"
+        },
+        {
+          "name": "syft:metadata:pullChecksum",
+          "value": "Q1VndgfY+TnMqOrvshdlnKjJOzQTg="
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "74982249"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:apk/alpine/openjdk11-jre@11.0.21_p9-r0?arch=x86_64&upstream=openjdk11&distro=alpine-3.18.5&package-id=d34cbfbd5f8e3526",
+      "type": "library",
+      "publisher": "Simon Frankenberger <simon-alpine@fraho.eu>",
+      "name": "openjdk11-jre",
+      "version": "11.0.21_p9-r0",
+      "description": "Oracle OpenJDK 11 (JRE)",
+      "licenses": [
+        {
+          "license": {
+            "id": "GPL-2.0-with-classpath-exception"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:openjdk11-jre:openjdk11-jre:11.0.21_p9-r0:*:*:*:*:*:*:*",
+      "purl": "pkg:apk/alpine/openjdk11-jre@11.0.21_p9-r0?arch=x86_64&upstream=openjdk11&distro=alpine-3.18.5",
+      "externalReferences": [
+        {
+          "url": "https://github.com/openjdk/jdk11u",
+          "type": "distribution"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "apk-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "apk"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "apk-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk11-jre:openjdk11_jre:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk11_jre:openjdk11-jre:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk11_jre:openjdk11_jre:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk-jre:openjdk11-jre:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk-jre:openjdk11_jre:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk11-jre:openjdk-jre:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk11-jre:openjdk_jre:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk11_jre:openjdk-jre:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk11_jre:openjdk_jre:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk_jre:openjdk11-jre:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk_jre:openjdk11_jre:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk-jre:openjdk-jre:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk-jre:openjdk_jre:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk11:openjdk11-jre:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk11:openjdk11_jre:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk_jre:openjdk-jre:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk_jre:openjdk_jre:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk11:openjdk-jre:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk11:openjdk_jre:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk:openjdk11-jre:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk:openjdk11_jre:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk:openjdk-jre:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk:openjdk_jre:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:040ab99b6ccfaee2ade0def5bb35be6512e03860bd46bb9752a6c47709997f24"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/lib/apk/db/installed"
+        },
+        {
+          "name": "syft:metadata:gitCommitOfApkPort",
+          "value": "d2e17ed0f58fe8bef042fa7ce03da72e6f934c41"
+        },
+        {
+          "name": "syft:metadata:installedSize",
+          "value": "2863104"
+        },
+        {
+          "name": "syft:metadata:originPackage",
+          "value": "openjdk11"
+        },
+        {
+          "name": "syft:metadata:provides:0",
+          "value": "java-jre"
+        },
+        {
+          "name": "syft:metadata:provides:1",
+          "value": "so:openjdk11:libawt_xawt.so=0"
+        },
+        {
+          "name": "syft:metadata:provides:2",
+          "value": "so:openjdk11:libfontmanager.so=0"
+        },
+        {
+          "name": "syft:metadata:provides:3",
+          "value": "so:openjdk11:libjavajpeg.so=0"
+        },
+        {
+          "name": "syft:metadata:provides:4",
+          "value": "so:openjdk11:libjawt.so=0"
+        },
+        {
+          "name": "syft:metadata:provides:5",
+          "value": "so:openjdk11:libjsound.so=0"
+        },
+        {
+          "name": "syft:metadata:provides:6",
+          "value": "so:openjdk11:liblcms.so=0"
+        },
+        {
+          "name": "syft:metadata:provides:7",
+          "value": "so:openjdk11:libsplashscreen.so=0"
+        },
+        {
+          "name": "syft:metadata:pullChecksum",
+          "value": "Q1b8t5895sLiG2tiohV6LEWbiF070="
+        },
+        {
+          "name": "syft:metadata:pullDependencies:0",
+          "value": "openjdk11-jre-headless"
+        },
+        {
+          "name": "syft:metadata:pullDependencies:1",
+          "value": "so:libX11.so.6"
+        },
+        {
+          "name": "syft:metadata:pullDependencies:10",
+          "value": "so:libjpeg.so.8"
+        },
+        {
+          "name": "syft:metadata:pullDependencies:11",
+          "value": "so:liblcms2.so.2"
+        },
+        {
+          "name": "syft:metadata:pullDependencies:12",
+          "value": "so:libpng16.so.16"
+        },
+        {
+          "name": "syft:metadata:pullDependencies:13",
+          "value": "so:openjdk11:libawt.so"
+        },
+        {
+          "name": "syft:metadata:pullDependencies:14",
+          "value": "so:openjdk11:libjava.so"
+        },
+        {
+          "name": "syft:metadata:pullDependencies:2",
+          "value": "so:libXext.so.6"
+        },
+        {
+          "name": "syft:metadata:pullDependencies:3",
+          "value": "so:libXi.so.6"
+        },
+        {
+          "name": "syft:metadata:pullDependencies:4",
+          "value": "so:libXrender.so.1"
+        },
+        {
+          "name": "syft:metadata:pullDependencies:5",
+          "value": "so:libXtst.so.6"
+        },
+        {
+          "name": "syft:metadata:pullDependencies:6",
+          "value": "so:libasound.so.2"
+        },
+        {
+          "name": "syft:metadata:pullDependencies:7",
+          "value": "so:libc.musl-x86_64.so.1"
+        },
+        {
+          "name": "syft:metadata:pullDependencies:8",
+          "value": "so:libfreetype.so.6"
+        },
+        {
+          "name": "syft:metadata:pullDependencies:9",
+          "value": "so:libgif.so.7"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "1302271"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:apk/alpine/openjdk11-jre-headless@11.0.21_p9-r0?arch=x86_64&upstream=openjdk11&distro=alpine-3.18.5&package-id=34fd74d73b447e27",
+      "type": "library",
+      "publisher": "Simon Frankenberger <simon-alpine@fraho.eu>",
+      "name": "openjdk11-jre-headless",
+      "version": "11.0.21_p9-r0",
+      "description": "Oracle OpenJDK 11 (JRE headless)",
+      "licenses": [
+        {
+          "license": {
+            "id": "GPL-2.0-with-classpath-exception"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:openjdk11-jre-headless:openjdk11-jre-headless:11.0.21_p9-r0:*:*:*:*:*:*:*",
+      "purl": "pkg:apk/alpine/openjdk11-jre-headless@11.0.21_p9-r0?arch=x86_64&upstream=openjdk11&distro=alpine-3.18.5",
+      "externalReferences": [
+        {
+          "url": "https://github.com/openjdk/jdk11u",
+          "type": "distribution"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "apk-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "apk"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "apk-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk11-jre-headless:openjdk11_jre_headless:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk11_jre_headless:openjdk11-jre-headless:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk11_jre_headless:openjdk11_jre_headless:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk-jre-headless:openjdk11-jre-headless:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk-jre-headless:openjdk11_jre_headless:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk11-jre-headless:openjdk-jre-headless:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk11-jre-headless:openjdk_jre_headless:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk11_jre_headless:openjdk-jre-headless:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk11_jre_headless:openjdk_jre_headless:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk_jre_headless:openjdk11-jre-headless:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk_jre_headless:openjdk11_jre_headless:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk-jre-headless:openjdk-jre-headless:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk-jre-headless:openjdk_jre_headless:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk_jre_headless:openjdk-jre-headless:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk_jre_headless:openjdk_jre_headless:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk11-jre:openjdk11-jre-headless:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk11-jre:openjdk11_jre_headless:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk11_jre:openjdk11-jre-headless:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk11_jre:openjdk11_jre_headless:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk-jre:openjdk11-jre-headless:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk-jre:openjdk11_jre_headless:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk11-jre:openjdk-jre-headless:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk11-jre:openjdk_jre_headless:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk11_jre:openjdk-jre-headless:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk11_jre:openjdk_jre_headless:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk_jre:openjdk11-jre-headless:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk_jre:openjdk11_jre_headless:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk-jre:openjdk-jre-headless:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk-jre:openjdk_jre_headless:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk11:openjdk11-jre-headless:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk11:openjdk11_jre_headless:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk_jre:openjdk-jre-headless:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk_jre:openjdk_jre_headless:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk11:openjdk-jre-headless:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk11:openjdk_jre_headless:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk:openjdk11-jre-headless:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk:openjdk11_jre_headless:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk:openjdk-jre-headless:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:openjdk:openjdk_jre_headless:11.0.21_p9-r0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:040ab99b6ccfaee2ade0def5bb35be6512e03860bd46bb9752a6c47709997f24"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/lib/apk/db/installed"
+        },
+        {
+          "name": "syft:metadata:gitCommitOfApkPort",
+          "value": "d2e17ed0f58fe8bef042fa7ce03da72e6f934c41"
+        },
+        {
+          "name": "syft:metadata:installedSize",
+          "value": "159186944"
+        },
+        {
+          "name": "syft:metadata:originPackage",
+          "value": "openjdk11"
+        },
+        {
+          "name": "syft:metadata:provides:0",
+          "value": "java-jre-headless"
+        },
+        {
+          "name": "syft:metadata:provides:1",
+          "value": "so:openjdk11:libattach.so=0"
+        },
+        {
+          "name": "syft:metadata:provides:10",
+          "value": "so:openjdk11:libjaas.so=0"
+        },
+        {
+          "name": "syft:metadata:provides:11",
+          "value": "so:openjdk11:libjava.so=0"
+        },
+        {
+          "name": "syft:metadata:provides:12",
+          "value": "so:openjdk11:libjdwp.so=0"
+        },
+        {
+          "name": "syft:metadata:provides:13",
+          "value": "so:openjdk11:libjimage.so=0"
+        },
+        {
+          "name": "syft:metadata:provides:14",
+          "value": "so:openjdk11:libjli.so=0"
+        },
+        {
+          "name": "syft:metadata:provides:15",
+          "value": "so:openjdk11:libjsig.so=0"
+        },
+        {
+          "name": "syft:metadata:provides:16",
+          "value": "so:openjdk11:libjvm.so=0"
+        },
+        {
+          "name": "syft:metadata:provides:17",
+          "value": "so:openjdk11:libmanagement.so=0"
+        },
+        {
+          "name": "syft:metadata:provides:18",
+          "value": "so:openjdk11:libmanagement_agent.so=0"
+        },
+        {
+          "name": "syft:metadata:provides:19",
+          "value": "so:openjdk11:libmanagement_ext.so=0"
+        },
+        {
+          "name": "syft:metadata:provides:2",
+          "value": "so:openjdk11:libawt.so=0"
+        },
+        {
+          "name": "syft:metadata:provides:20",
+          "value": "so:openjdk11:libmlib_image.so=0"
+        },
+        {
+          "name": "syft:metadata:provides:21",
+          "value": "so:openjdk11:libnet.so=0"
+        },
+        {
+          "name": "syft:metadata:provides:22",
+          "value": "so:openjdk11:libnio.so=0"
+        },
+        {
+          "name": "syft:metadata:provides:23",
+          "value": "so:openjdk11:libprefs.so=0"
+        },
+        {
+          "name": "syft:metadata:provides:24",
+          "value": "so:openjdk11:librmi.so=0"
+        },
+        {
+          "name": "syft:metadata:provides:25",
+          "value": "so:openjdk11:libsctp.so=0"
+        },
+        {
+          "name": "syft:metadata:provides:26",
+          "value": "so:openjdk11:libsunec.so=0"
+        },
+        {
+          "name": "syft:metadata:provides:27",
+          "value": "so:openjdk11:libunpack.so=0"
+        },
+        {
+          "name": "syft:metadata:provides:28",
+          "value": "so:openjdk11:libverify.so=0"
+        },
+        {
+          "name": "syft:metadata:provides:29",
+          "value": "so:openjdk11:libzip.so=0"
+        },
+        {
+          "name": "syft:metadata:provides:3",
+          "value": "so:openjdk11:libawt_headless.so=0"
+        },
+        {
+          "name": "syft:metadata:provides:4",
+          "value": "so:openjdk11:libdt_socket.so=0"
+        },
+        {
+          "name": "syft:metadata:provides:5",
+          "value": "so:openjdk11:libextnet.so=0"
+        },
+        {
+          "name": "syft:metadata:provides:6",
+          "value": "so:openjdk11:libinstrument.so=0"
+        },
+        {
+          "name": "syft:metadata:provides:7",
+          "value": "so:openjdk11:libj2gss.so=0"
+        },
+        {
+          "name": "syft:metadata:provides:8",
+          "value": "so:openjdk11:libj2pcsc.so=0"
+        },
+        {
+          "name": "syft:metadata:provides:9",
+          "value": "so:openjdk11:libj2pkcs11.so=0"
+        },
+        {
+          "name": "syft:metadata:pullChecksum",
+          "value": "Q1J8OOqiwgufFqBpGTEK7P7VRrOLw="
+        },
+        {
+          "name": "syft:metadata:pullDependencies:0",
+          "value": "java-common"
+        },
+        {
+          "name": "syft:metadata:pullDependencies:1",
+          "value": "java-cacerts"
+        },
+        {
+          "name": "syft:metadata:pullDependencies:2",
+          "value": "so:libc.musl-x86_64.so.1"
+        },
+        {
+          "name": "syft:metadata:pullDependencies:3",
+          "value": "so:libz.so.1"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "53771952"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/org.abego.treelayout/org.abego.treelayout.core@1.0.3?package-id=e95b1065a78ee6bf",
+      "type": "library",
+      "group": "org.abego.treelayout",
+      "name": "org.abego.treelayout.core",
+      "version": "1.0.3",
+      "licenses": [
+        {
+          "license": {
+            "name": "http://www.abego-software.de/legal/apl-v10.html"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:abego-software-gmbh\\,-germany:org.abego.treelayout.core:1.0.3:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/org.abego.treelayout/org.abego.treelayout.core@1.0.3",
+      "externalReferences": [
+        {
+          "url": "",
+          "hashes": [
+            {
+              "alg": "SHA-1",
+              "content": "457216e8e6578099ae63667bb1e4439235892028"
+            }
+          ],
+          "type": "build-meta"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:abego_software_gmbh\\,_germany:org.abego.treelayout.core:1.0.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:org.abego.treelayout.core:org.abego.treelayout.core:1.0.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:abego-software-gmbh\\,-germany:treelayout:1.0.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:abego_software_gmbh\\,_germany:treelayout:1.0.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:org.abego.treelayout.core:treelayout:1.0.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:treelayout:org.abego.treelayout.core:1.0.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:abego-software-gmbh\\,-germany:core:1.0.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:abego_software_gmbh\\,_germany:core:1.0.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:abego:org.abego.treelayout.core:1.0.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:core:org.abego.treelayout.core:1.0.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:org.abego.treelayout.core:core:1.0.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:treelayout:treelayout:1.0.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:abego:treelayout:1.0.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:core:treelayout:1.0.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:treelayout:core:1.0.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:abego:core:1.0.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:core:core:1.0.3:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:9168aa9edf57e27178cf19177cd017cbde863db4b32b192859f2e4e224236750"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-server/lib/org.abego.treelayout.core-1.0.3.jar"
+        },
+        {
+          "name": "syft:metadata:-:artifactID",
+          "value": "org.abego.treelayout.core"
+        },
+        {
+          "name": "syft:metadata:-:groupID",
+          "value": "org.abego.treelayout"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-server/lib/org.abego.treelayout.core-1.0.3.jar"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:apk/alpine/p11-kit@0.24.1-r2?arch=x86_64&distro=alpine-3.18.5&package-id=8409881a29df5d99",
+      "type": "library",
+      "publisher": "Fabian Affolter <fabian@affolter-engineering.ch>",
+      "name": "p11-kit",
+      "version": "0.24.1-r2",
+      "description": "Library for loading and sharing PKCS#11 modules",
+      "licenses": [
+        {
+          "license": {
+            "id": "BSD-3-Clause"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:p11-kit:p11-kit:0.24.1-r2:*:*:*:*:*:*:*",
+      "purl": "pkg:apk/alpine/p11-kit@0.24.1-r2?arch=x86_64&distro=alpine-3.18.5",
+      "externalReferences": [
+        {
+          "url": "https://p11-glue.freedesktop.org/",
+          "type": "distribution"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "apk-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "apk"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "apk-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:p11-kit:p11_kit:0.24.1-r2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:p11_kit:p11-kit:0.24.1-r2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:p11_kit:p11_kit:0.24.1-r2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:p-kit:p11-kit:0.24.1-r2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:p-kit:p11_kit:0.24.1-r2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:p11-kit:p-kit:0.24.1-r2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:p11-kit:p_kit:0.24.1-r2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:p11_kit:p-kit:0.24.1-r2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:p11_kit:p_kit:0.24.1-r2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:p_kit:p11-kit:0.24.1-r2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:p_kit:p11_kit:0.24.1-r2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:p-kit:p-kit:0.24.1-r2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:p-kit:p_kit:0.24.1-r2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:p11:p11-kit:0.24.1-r2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:p11:p11_kit:0.24.1-r2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:p_kit:p-kit:0.24.1-r2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:p_kit:p_kit:0.24.1-r2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:p11:p-kit:0.24.1-r2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:p11:p_kit:0.24.1-r2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:p:p11-kit:0.24.1-r2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:p:p11_kit:0.24.1-r2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:p:p-kit:0.24.1-r2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:p:p_kit:0.24.1-r2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:040ab99b6ccfaee2ade0def5bb35be6512e03860bd46bb9752a6c47709997f24"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/lib/apk/db/installed"
+        },
+        {
+          "name": "syft:metadata:gitCommitOfApkPort",
+          "value": "84a227baf001b6e0208e3352b294e4d7a40e93de"
+        },
+        {
+          "name": "syft:metadata:installedSize",
+          "value": "1036288"
+        },
+        {
+          "name": "syft:metadata:originPackage",
+          "value": "p11-kit"
+        },
+        {
+          "name": "syft:metadata:provides:0",
+          "value": "so:libp11-kit.so.0=0.3.0"
+        },
+        {
+          "name": "syft:metadata:provides:1",
+          "value": "cmd:p11-kit=0.24.1-r2"
+        },
+        {
+          "name": "syft:metadata:pullChecksum",
+          "value": "Q1qSXa3oERcftRSd+MMYwefTEEfwc="
+        },
+        {
+          "name": "syft:metadata:pullDependencies:0",
+          "value": "so:libc.musl-x86_64.so.1"
+        },
+        {
+          "name": "syft:metadata:pullDependencies:1",
+          "value": "so:libffi.so.8"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "258911"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:apk/alpine/p11-kit-trust@0.24.1-r2?arch=x86_64&upstream=p11-kit&distro=alpine-3.18.5&package-id=e63dedeb4498fbaa",
+      "type": "library",
+      "publisher": "Fabian Affolter <fabian@affolter-engineering.ch>",
+      "name": "p11-kit-trust",
+      "version": "0.24.1-r2",
+      "description": "System trust module from p11-kit",
+      "licenses": [
+        {
+          "license": {
+            "id": "BSD-3-Clause"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:p11-kit-trust:p11-kit-trust:0.24.1-r2:*:*:*:*:*:*:*",
+      "purl": "pkg:apk/alpine/p11-kit-trust@0.24.1-r2?arch=x86_64&upstream=p11-kit&distro=alpine-3.18.5",
+      "externalReferences": [
+        {
+          "url": "https://p11-glue.freedesktop.org/",
+          "type": "distribution"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "apk-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "apk"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "apk-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:p11-kit-trust:p11_kit_trust:0.24.1-r2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:p11_kit_trust:p11-kit-trust:0.24.1-r2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:p11_kit_trust:p11_kit_trust:0.24.1-r2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:p-kit-trust:p11-kit-trust:0.24.1-r2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:p-kit-trust:p11_kit_trust:0.24.1-r2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:p11-kit-trust:p-kit-trust:0.24.1-r2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:p11-kit-trust:p_kit_trust:0.24.1-r2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:p11_kit_trust:p-kit-trust:0.24.1-r2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:p11_kit_trust:p_kit_trust:0.24.1-r2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:p_kit_trust:p11-kit-trust:0.24.1-r2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:p_kit_trust:p11_kit_trust:0.24.1-r2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:p-kit-trust:p-kit-trust:0.24.1-r2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:p-kit-trust:p_kit_trust:0.24.1-r2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:p_kit_trust:p-kit-trust:0.24.1-r2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:p_kit_trust:p_kit_trust:0.24.1-r2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:p11-kit:p11-kit-trust:0.24.1-r2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:p11-kit:p11_kit_trust:0.24.1-r2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:p11_kit:p11-kit-trust:0.24.1-r2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:p11_kit:p11_kit_trust:0.24.1-r2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:p-kit:p11-kit-trust:0.24.1-r2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:p-kit:p11_kit_trust:0.24.1-r2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:p11-kit:p-kit-trust:0.24.1-r2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:p11-kit:p_kit_trust:0.24.1-r2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:p11_kit:p-kit-trust:0.24.1-r2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:p11_kit:p_kit_trust:0.24.1-r2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:p_kit:p11-kit-trust:0.24.1-r2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:p_kit:p11_kit_trust:0.24.1-r2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:p-kit:p-kit-trust:0.24.1-r2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:p-kit:p_kit_trust:0.24.1-r2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:p11:p11-kit-trust:0.24.1-r2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:p11:p11_kit_trust:0.24.1-r2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:p_kit:p-kit-trust:0.24.1-r2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:p_kit:p_kit_trust:0.24.1-r2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:p11:p-kit-trust:0.24.1-r2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:p11:p_kit_trust:0.24.1-r2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:p:p11-kit-trust:0.24.1-r2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:p:p11_kit_trust:0.24.1-r2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:p:p-kit-trust:0.24.1-r2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:p:p_kit_trust:0.24.1-r2:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:040ab99b6ccfaee2ade0def5bb35be6512e03860bd46bb9752a6c47709997f24"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/lib/apk/db/installed"
+        },
+        {
+          "name": "syft:metadata:gitCommitOfApkPort",
+          "value": "84a227baf001b6e0208e3352b294e4d7a40e93de"
+        },
+        {
+          "name": "syft:metadata:installedSize",
+          "value": "364544"
+        },
+        {
+          "name": "syft:metadata:originPackage",
+          "value": "p11-kit"
+        },
+        {
+          "name": "syft:metadata:provides:0",
+          "value": "cmd:trust=0.24.1-r2"
+        },
+        {
+          "name": "syft:metadata:pullChecksum",
+          "value": "Q1ji5VlcWuLXWavErRkq8M4LsdabU="
+        },
+        {
+          "name": "syft:metadata:pullDependencies:0",
+          "value": "so:libc.musl-x86_64.so.1"
+        },
+        {
+          "name": "syft:metadata:pullDependencies:1",
+          "value": "so:libp11-kit.so.0"
+        },
+        {
+          "name": "syft:metadata:pullDependencies:2",
+          "value": "so:libtasn1.so.6"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "128744"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:apk/alpine/perl@5.36.2-r0?arch=x86_64&distro=alpine-3.18.5&package-id=c5ed3402efe8f143",
+      "type": "library",
+      "publisher": "Natanael Copa <ncopa@alpinelinux.org>",
+      "name": "perl",
+      "version": "5.36.2-r0",
+      "description": "Larry Wall's Practical Extraction and Report Language",
+      "licenses": [
+        {
+          "license": {
+            "id": "GPL-1.0-or-later"
+          }
+        },
+        {
+          "license": {
+            "name": "Artistic-Perl"
+          }
+        },
+        {
+          "license": {
+            "name": "OR"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:perl:perl:5.36.2-r0:*:*:*:*:*:*:*",
+      "purl": "pkg:apk/alpine/perl@5.36.2-r0?arch=x86_64&distro=alpine-3.18.5",
+      "externalReferences": [
+        {
+          "url": "https://www.perl.org/",
+          "type": "distribution"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "apk-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "apk"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "apk-db-entry"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:040ab99b6ccfaee2ade0def5bb35be6512e03860bd46bb9752a6c47709997f24"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/lib/apk/db/installed"
+        },
+        {
+          "name": "syft:metadata:gitCommitOfApkPort",
+          "value": "0509d1b314a949001e201df77d20f3b77a314ab5"
+        },
+        {
+          "name": "syft:metadata:installedSize",
+          "value": "39907328"
+        },
+        {
+          "name": "syft:metadata:originPackage",
+          "value": "perl"
+        },
+        {
+          "name": "syft:metadata:provides:0",
+          "value": "perl-scalar-list-utils=5.36.2-r0"
+        },
+        {
+          "name": "syft:metadata:provides:1",
+          "value": "so:libperl.so=0"
+        },
+        {
+          "name": "syft:metadata:provides:10",
+          "value": "cmd:streamzip=5.36.2-r0"
+        },
+        {
+          "name": "syft:metadata:provides:2",
+          "value": "cmd:perl5.36.2=5.36.2-r0"
+        },
+        {
+          "name": "syft:metadata:provides:3",
+          "value": "cmd:perl=5.36.2-r0"
+        },
+        {
+          "name": "syft:metadata:provides:4",
+          "value": "cmd:perldoc=5.36.2-r0"
+        },
+        {
+          "name": "syft:metadata:provides:5",
+          "value": "cmd:pod2html=5.36.2-r0"
+        },
+        {
+          "name": "syft:metadata:provides:6",
+          "value": "cmd:pod2man=5.36.2-r0"
+        },
+        {
+          "name": "syft:metadata:provides:7",
+          "value": "cmd:pod2text=5.36.2-r0"
+        },
+        {
+          "name": "syft:metadata:provides:8",
+          "value": "cmd:pod2usage=5.36.2-r0"
+        },
+        {
+          "name": "syft:metadata:provides:9",
+          "value": "cmd:podchecker=5.36.2-r0"
+        },
+        {
+          "name": "syft:metadata:pullChecksum",
+          "value": "Q1QOcfxbtFOOyNmQeoqBk1KEXsiJ0="
+        },
+        {
+          "name": "syft:metadata:pullDependencies:0",
+          "value": "so:libbz2.so.1"
+        },
+        {
+          "name": "syft:metadata:pullDependencies:1",
+          "value": "so:libc.musl-x86_64.so.1"
+        },
+        {
+          "name": "syft:metadata:pullDependencies:2",
+          "value": "so:libz.so.1"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "9045837"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:apk/alpine/readline@8.2.1-r1?arch=x86_64&distro=alpine-3.18.5&package-id=78533b9a80a3c727",
+      "type": "library",
+      "publisher": "Natanael Copa <ncopa@alpinelinux.org>",
+      "name": "readline",
+      "version": "8.2.1-r1",
+      "description": "GNU readline library",
+      "licenses": [
+        {
+          "license": {
+            "id": "GPL-2.0-or-later"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:readline:readline:8.2.1-r1:*:*:*:*:*:*:*",
+      "purl": "pkg:apk/alpine/readline@8.2.1-r1?arch=x86_64&distro=alpine-3.18.5",
+      "externalReferences": [
+        {
+          "url": "https://tiswww.cwru.edu/php/chet/readline/rltop.html",
+          "type": "distribution"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "apk-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "apk"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "apk-db-entry"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:040ab99b6ccfaee2ade0def5bb35be6512e03860bd46bb9752a6c47709997f24"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/lib/apk/db/installed"
+        },
+        {
+          "name": "syft:metadata:gitCommitOfApkPort",
+          "value": "84a227baf001b6e0208e3352b294e4d7a40e93de"
+        },
+        {
+          "name": "syft:metadata:installedSize",
+          "value": "307200"
+        },
+        {
+          "name": "syft:metadata:originPackage",
+          "value": "readline"
+        },
+        {
+          "name": "syft:metadata:provides:0",
+          "value": "so:libreadline.so.8=8.2"
+        },
+        {
+          "name": "syft:metadata:pullChecksum",
+          "value": "Q1nCcvep9N4MNO9aY8W8z6c3YV+eQ="
+        },
+        {
+          "name": "syft:metadata:pullDependencies:0",
+          "value": "so:libc.musl-x86_64.so.1"
+        },
+        {
+          "name": "syft:metadata:pullDependencies:1",
+          "value": "so:libncursesw.so.6"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "124162"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/com.esotericsoftware/reflectasm@1.10.1?package-id=c0d7dfe49fb03daa",
+      "type": "library",
+      "group": "com.esotericsoftware",
+      "name": "reflectasm",
+      "version": "1.10.1",
+      "licenses": [
+        {
+          "license": {
+            "name": "New BSD License",
+            "url": "http://www.opensource.org/licenses/bsd-license.php"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:esotericsoftware:reflectasm:1.10.1:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/com.esotericsoftware/reflectasm@1.10.1",
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:reflectasm:reflectasm:1.10.1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:sonatype:reflectasm:1.10.1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:oss:reflectasm:1.10.1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:9168aa9edf57e27178cf19177cd017cbde863db4b32b192859f2e4e224236750"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-server/lib/gremlin-shaded-3.7.1.jar"
+        },
+        {
+          "name": "syft:metadata:-:artifactID",
+          "value": "reflectasm"
+        },
+        {
+          "name": "syft:metadata:-:groupID",
+          "value": "com.esotericsoftware"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-server/lib/gremlin-shaded-3.7.1.jar:com.esotericsoftware:reflectasm"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:apk/alpine/scanelf@1.3.7-r1?arch=x86_64&upstream=pax-utils&distro=alpine-3.18.5&package-id=701300eef0967970",
+      "type": "library",
+      "publisher": "Natanael Copa <ncopa@alpinelinux.org>",
+      "name": "scanelf",
+      "version": "1.3.7-r1",
+      "description": "Scan ELF binaries for stuff",
+      "licenses": [
+        {
+          "license": {
+            "id": "GPL-2.0-only"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:scanelf:scanelf:1.3.7-r1:*:*:*:*:*:*:*",
+      "purl": "pkg:apk/alpine/scanelf@1.3.7-r1?arch=x86_64&upstream=pax-utils&distro=alpine-3.18.5",
+      "externalReferences": [
+        {
+          "url": "https://wiki.gentoo.org/wiki/Hardened/PaX_Utilities",
+          "type": "distribution"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "apk-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "apk"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "apk-db-entry"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:040ab99b6ccfaee2ade0def5bb35be6512e03860bd46bb9752a6c47709997f24"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/lib/apk/db/installed"
+        },
+        {
+          "name": "syft:metadata:gitCommitOfApkPort",
+          "value": "84a227baf001b6e0208e3352b294e4d7a40e93de"
+        },
+        {
+          "name": "syft:metadata:installedSize",
+          "value": "90112"
+        },
+        {
+          "name": "syft:metadata:originPackage",
+          "value": "pax-utils"
+        },
+        {
+          "name": "syft:metadata:provides:0",
+          "value": "cmd:scanelf=1.3.7-r1"
+        },
+        {
+          "name": "syft:metadata:pullChecksum",
+          "value": "Q14nq9o4+uo2NaLbTVDQB3UeooC0M="
+        },
+        {
+          "name": "syft:metadata:pullDependencies:0",
+          "value": "so:libc.musl-x86_64.so.1"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "35664"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/org.slf4j/slf4j-api@1.7.33?package-id=7db5d5661ee0db3e",
+      "type": "library",
+      "group": "org.slf4j",
+      "name": "slf4j-api",
+      "version": "1.7.33",
+      "cpe": "cpe:2.3:a:slf4j-api:slf4j-api:1.7.33:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/org.slf4j/slf4j-api@1.7.33",
+      "externalReferences": [
+        {
+          "url": "",
+          "hashes": [
+            {
+              "alg": "SHA-1",
+              "content": "d375aa1b98d34d5ddf73a3f19eaad66e98975b12"
+            }
+          ],
+          "type": "build-meta"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:slf4j-api:slf4j_api:1.7.33:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:slf4j_api:slf4j-api:1.7.33:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:slf4j_api:slf4j_api:1.7.33:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:slf4j:slf4j-api:1.7.33:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:slf4j:slf4j_api:1.7.33:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:9168aa9edf57e27178cf19177cd017cbde863db4b32b192859f2e4e224236750"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-server/lib/slf4j-api-1.7.33.jar"
+        },
+        {
+          "name": "syft:metadata:-:artifactID",
+          "value": "slf4j-api"
+        },
+        {
+          "name": "syft:metadata:-:groupID",
+          "value": "org.slf4j"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-server/lib/slf4j-api-1.7.33.jar"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/org.yaml/snakeyaml@2.0?package-id=0bea97afc27258b3",
+      "type": "library",
+      "group": "org.yaml",
+      "name": "snakeyaml",
+      "version": "2.0",
+      "licenses": [
+        {
+          "license": {
+            "name": "http://www.apache.org/licenses/LICENSE-2.0.txt"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:snakeyaml:snakeyaml:2.0:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/org.yaml/snakeyaml@2.0",
+      "externalReferences": [
+        {
+          "url": "",
+          "hashes": [
+            {
+              "alg": "SHA-1",
+              "content": "3aab2116756442bf0d4cd1c089b24d34c3baa253"
+            }
+          ],
+          "type": "build-meta"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:yaml:snakeyaml:2.0:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:9168aa9edf57e27178cf19177cd017cbde863db4b32b192859f2e4e224236750"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-server/lib/snakeyaml-2.0.jar"
+        },
+        {
+          "name": "syft:metadata:-:artifactID",
+          "value": "snakeyaml"
+        },
+        {
+          "name": "syft:metadata:-:groupID",
+          "value": "org.yaml"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-server/lib/snakeyaml-2.0.jar"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:apk/alpine/ssl_client@1.36.1-r5?arch=x86_64&upstream=busybox&distro=alpine-3.18.5&package-id=9a41fe1896e4ce46",
+      "type": "library",
+      "publisher": "Sören Tempel <soeren+alpine@soeren-tempel.net>",
+      "name": "ssl_client",
+      "version": "1.36.1-r5",
+      "description": "EXternal ssl_client for busybox wget",
+      "licenses": [
+        {
+          "license": {
+            "id": "GPL-2.0-only"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:ssl-client:ssl-client:1.36.1-r5:*:*:*:*:*:*:*",
+      "purl": "pkg:apk/alpine/ssl_client@1.36.1-r5?arch=x86_64&upstream=busybox&distro=alpine-3.18.5",
+      "externalReferences": [
+        {
+          "url": "https://busybox.net/",
+          "type": "distribution"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "apk-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "apk"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "apk-db-entry"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:ssl-client:ssl_client:1.36.1-r5:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:ssl_client:ssl-client:1.36.1-r5:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:ssl_client:ssl_client:1.36.1-r5:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:ssl:ssl-client:1.36.1-r5:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:ssl:ssl_client:1.36.1-r5:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:040ab99b6ccfaee2ade0def5bb35be6512e03860bd46bb9752a6c47709997f24"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/lib/apk/db/installed"
+        },
+        {
+          "name": "syft:metadata:gitCommitOfApkPort",
+          "value": "cdf3c00435d52908f962c9ff009fc5c6f2f31f99"
+        },
+        {
+          "name": "syft:metadata:installedSize",
+          "value": "28672"
+        },
+        {
+          "name": "syft:metadata:originPackage",
+          "value": "busybox"
+        },
+        {
+          "name": "syft:metadata:provides:0",
+          "value": "cmd:ssl_client=1.36.1-r5"
+        },
+        {
+          "name": "syft:metadata:pullChecksum",
+          "value": "Q12KNylQ9b6XW3cN6rwXzZu80Gcho="
+        },
+        {
+          "name": "syft:metadata:pullDependencies:0",
+          "value": "so:libc.musl-x86_64.so.1"
+        },
+        {
+          "name": "syft:metadata:pullDependencies:1",
+          "value": "so:libcrypto.so.3"
+        },
+        {
+          "name": "syft:metadata:pullDependencies:2",
+          "value": "so:libssl.so.3"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "4940"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/org.apache.tinkerpop/tinkergraph-gremlin@3.7.1?package-id=493ffec829cc1e3d",
+      "type": "library",
+      "group": "org.apache.tinkerpop",
+      "name": "tinkergraph-gremlin",
+      "version": "3.7.1",
+      "licenses": [
+        {
+          "license": {
+            "id": "Apache-2.0"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:apache:tinkergraph-gremlin:3.7.1:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/org.apache.tinkerpop/tinkergraph-gremlin@3.7.1",
+      "externalReferences": [
+        {
+          "url": "",
+          "hashes": [
+            {
+              "alg": "SHA-1",
+              "content": "4ff96a791c896eb3a0ead907f9ed465d50bfdd02"
+            }
+          ],
+          "type": "build-meta"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:apache:tinkergraph_gremlin:3.7.1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:9168aa9edf57e27178cf19177cd017cbde863db4b32b192859f2e4e224236750"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-server/ext/tinkergraph-gremlin/lib/tinkergraph-gremlin-3.7.1.jar"
+        },
+        {
+          "name": "syft:metadata:-:artifactID",
+          "value": "tinkergraph-gremlin"
+        },
+        {
+          "name": "syft:metadata:-:groupID",
+          "value": "org.apache.tinkerpop"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-server/ext/tinkergraph-gremlin/lib/tinkergraph-gremlin-3.7.1.jar"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:maven/org.apache.tinkerpop/tinkergraph-gremlin@3.7.1?package-id=a515a4429cef9d83",
+      "type": "library",
+      "group": "org.apache.tinkerpop",
+      "name": "tinkergraph-gremlin",
+      "version": "3.7.1",
+      "licenses": [
+        {
+          "license": {
+            "id": "Apache-2.0"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:apache:tinkergraph-gremlin:3.7.1:*:*:*:*:*:*:*",
+      "purl": "pkg:maven/org.apache.tinkerpop/tinkergraph-gremlin@3.7.1",
+      "externalReferences": [
+        {
+          "url": "",
+          "hashes": [
+            {
+              "alg": "SHA-1",
+              "content": "4ff96a791c896eb3a0ead907f9ed465d50bfdd02"
+            }
+          ],
+          "type": "build-meta"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "java-archive-cataloger"
+        },
+        {
+          "name": "syft:package:language",
+          "value": "java"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "java-archive"
+        },
+        {
+          "name": "syft:cpe23",
+          "value": "cpe:2.3:a:apache:tinkergraph_gremlin:3.7.1:*:*:*:*:*:*:*"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:9168aa9edf57e27178cf19177cd017cbde863db4b32b192859f2e4e224236750"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/opt/gremlin-server/ext/tinkergraph-gremlin/plugin/tinkergraph-gremlin-3.7.1.jar"
+        },
+        {
+          "name": "syft:metadata:-:artifactID",
+          "value": "tinkergraph-gremlin"
+        },
+        {
+          "name": "syft:metadata:-:groupID",
+          "value": "org.apache.tinkerpop"
+        },
+        {
+          "name": "syft:metadata:virtualPath",
+          "value": "/opt/gremlin-server/ext/tinkergraph-gremlin/plugin/tinkergraph-gremlin-3.7.1.jar"
+        }
+      ]
+    },
+    {
+      "bom-ref": "pkg:apk/alpine/zlib@1.2.13-r1?arch=x86_64&distro=alpine-3.18.5&package-id=c8e7fc9f117e52bc",
+      "type": "library",
+      "publisher": "Natanael Copa <ncopa@alpinelinux.org>",
+      "name": "zlib",
+      "version": "1.2.13-r1",
+      "description": "A compression/decompression Library",
+      "licenses": [
+        {
+          "license": {
+            "id": "Zlib"
+          }
+        }
+      ],
+      "cpe": "cpe:2.3:a:zlib:zlib:1.2.13-r1:*:*:*:*:*:*:*",
+      "purl": "pkg:apk/alpine/zlib@1.2.13-r1?arch=x86_64&distro=alpine-3.18.5",
+      "externalReferences": [
+        {
+          "url": "https://zlib.net/",
+          "type": "distribution"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:package:foundBy",
+          "value": "apk-db-cataloger"
+        },
+        {
+          "name": "syft:package:type",
+          "value": "apk"
+        },
+        {
+          "name": "syft:package:metadataType",
+          "value": "apk-db-entry"
+        },
+        {
+          "name": "syft:location:0:layerID",
+          "value": "sha256:040ab99b6ccfaee2ade0def5bb35be6512e03860bd46bb9752a6c47709997f24"
+        },
+        {
+          "name": "syft:location:0:path",
+          "value": "/lib/apk/db/installed"
+        },
+        {
+          "name": "syft:metadata:gitCommitOfApkPort",
+          "value": "84a227baf001b6e0208e3352b294e4d7a40e93de"
+        },
+        {
+          "name": "syft:metadata:installedSize",
+          "value": "110592"
+        },
+        {
+          "name": "syft:metadata:originPackage",
+          "value": "zlib"
+        },
+        {
+          "name": "syft:metadata:provides:0",
+          "value": "so:libz.so.1=1.2.13"
+        },
+        {
+          "name": "syft:metadata:pullChecksum",
+          "value": "Q1JlboSJkrN4qkDcokr4zenpcWEXQ="
+        },
+        {
+          "name": "syft:metadata:pullDependencies:0",
+          "value": "so:libc.musl-x86_64.so.1"
+        },
+        {
+          "name": "syft:metadata:size",
+          "value": "54253"
+        }
+      ]
+    },
+    {
+      "type": "operating-system",
+      "name": "alpine",
+      "version": "3.18.5",
+      "description": "Alpine Linux v3.18",
+      "swid": {
+        "tagId": "alpine",
+        "name": "alpine",
+        "version": "3.18.5"
+      },
+      "externalReferences": [
+        {
+          "url": "https://gitlab.alpinelinux.org/alpine/aports/-/issues",
+          "type": "issue-tracker"
+        },
+        {
+          "url": "https://alpinelinux.org/",
+          "type": "website"
+        }
+      ],
+      "properties": [
+        {
+          "name": "syft:distro:id",
+          "value": "alpine"
+        },
+        {
+          "name": "syft:distro:prettyName",
+          "value": "Alpine Linux v3.18"
+        },
+        {
+          "name": "syft:distro:versionID",
+          "value": "3.18.5"
+        }
+      ]
+    }
+  ],
+  "dependencies": [
+    {
+      "ref": "pkg:apk/alpine/alpine-baselayout@3.4.3-r1?arch=x86_64&distro=alpine-3.18.5&package-id=baca676b3df82a63",
+      "dependsOn": [
+        "pkg:apk/alpine/alpine-baselayout-data@3.4.3-r1?arch=x86_64&upstream=alpine-baselayout&distro=alpine-3.18.5&package-id=85e34641ddeca26c",
+        "pkg:apk/alpine/busybox-binsh@1.36.1-r5?arch=x86_64&upstream=busybox&distro=alpine-3.18.5&package-id=ea8601e6fdd7765c"
+      ]
+    },
+    {
+      "ref": "pkg:apk/alpine/alsa-lib@1.2.9-r1?arch=x86_64&distro=alpine-3.18.5&package-id=84af028d92e1ce12",
+      "dependsOn": [
+        "pkg:apk/alpine/musl@1.2.4-r2?arch=x86_64&distro=alpine-3.18.5&package-id=ac337824ccfe44f2"
+      ]
+    },
+    {
+      "ref": "pkg:apk/alpine/apk-tools@2.14.0-r2?arch=x86_64&distro=alpine-3.18.5&package-id=e54b9e6921a9482e",
+      "dependsOn": [
+        "pkg:apk/alpine/ca-certificates-bundle@20230506-r0?arch=x86_64&upstream=ca-certificates&distro=alpine-3.18.5&package-id=e6d1b63d5a046c55",
+        "pkg:apk/alpine/libcrypto3@3.1.4-r1?arch=x86_64&upstream=openssl&distro=alpine-3.18.5&package-id=e37b0015aff83d58",
+        "pkg:apk/alpine/libssl3@3.1.4-r1?arch=x86_64&upstream=openssl&distro=alpine-3.18.5&package-id=8dd02cc858a89430",
+        "pkg:apk/alpine/musl@1.2.4-r2?arch=x86_64&distro=alpine-3.18.5&package-id=ac337824ccfe44f2",
+        "pkg:apk/alpine/zlib@1.2.13-r1?arch=x86_64&distro=alpine-3.18.5&package-id=c8e7fc9f117e52bc"
+      ]
+    },
+    {
+      "ref": "pkg:apk/alpine/bash@5.2.15-r5?arch=x86_64&distro=alpine-3.18.5&package-id=983290b85e1513d6",
+      "dependsOn": [
+        "pkg:apk/alpine/busybox-binsh@1.36.1-r5?arch=x86_64&upstream=busybox&distro=alpine-3.18.5&package-id=ea8601e6fdd7765c",
+        "pkg:apk/alpine/musl@1.2.4-r2?arch=x86_64&distro=alpine-3.18.5&package-id=ac337824ccfe44f2",
+        "pkg:apk/alpine/readline@8.2.1-r1?arch=x86_64&distro=alpine-3.18.5&package-id=78533b9a80a3c727"
+      ]
+    },
+    {
+      "ref": "pkg:apk/alpine/brotli-libs@1.0.9-r14?arch=x86_64&upstream=brotli&distro=alpine-3.18.5&package-id=31257dfa21df951d",
+      "dependsOn": [
+        "pkg:apk/alpine/musl@1.2.4-r2?arch=x86_64&distro=alpine-3.18.5&package-id=ac337824ccfe44f2"
+      ]
+    },
+    {
+      "ref": "pkg:apk/alpine/busybox-binsh@1.36.1-r5?arch=x86_64&upstream=busybox&distro=alpine-3.18.5&package-id=ea8601e6fdd7765c",
+      "dependsOn": [
+        "pkg:apk/alpine/busybox@1.36.1-r5?arch=x86_64&distro=alpine-3.18.5&package-id=c4cadec7a04f67ce"
+      ]
+    },
+    {
+      "ref": "pkg:apk/alpine/busybox@1.36.1-r5?arch=x86_64&distro=alpine-3.18.5&package-id=c4cadec7a04f67ce",
+      "dependsOn": [
+        "pkg:apk/alpine/musl@1.2.4-r2?arch=x86_64&distro=alpine-3.18.5&package-id=ac337824ccfe44f2"
+      ]
+    },
+    {
+      "ref": "pkg:apk/alpine/ca-certificates@20230506-r0?arch=x86_64&distro=alpine-3.18.5&package-id=34619f88311d4e5e",
+      "dependsOn": [
+        "pkg:apk/alpine/busybox-binsh@1.36.1-r5?arch=x86_64&upstream=busybox&distro=alpine-3.18.5&package-id=ea8601e6fdd7765c",
+        "pkg:apk/alpine/libcrypto3@3.1.4-r1?arch=x86_64&upstream=openssl&distro=alpine-3.18.5&package-id=e37b0015aff83d58",
+        "pkg:apk/alpine/musl@1.2.4-r2?arch=x86_64&distro=alpine-3.18.5&package-id=ac337824ccfe44f2"
+      ]
+    },
+    {
+      "ref": "pkg:apk/alpine/freetype@2.13.0-r5?arch=x86_64&distro=alpine-3.18.5&package-id=b888151d4bc51ee8",
+      "dependsOn": [
+        "pkg:apk/alpine/brotli-libs@1.0.9-r14?arch=x86_64&upstream=brotli&distro=alpine-3.18.5&package-id=31257dfa21df951d",
+        "pkg:apk/alpine/libbz2@1.0.8-r5?arch=x86_64&upstream=bzip2&distro=alpine-3.18.5&package-id=18e5911103cbf51c",
+        "pkg:apk/alpine/libpng@1.6.39-r3?arch=x86_64&distro=alpine-3.18.5&package-id=fae14a749f94b4a9",
+        "pkg:apk/alpine/musl@1.2.4-r2?arch=x86_64&distro=alpine-3.18.5&package-id=ac337824ccfe44f2",
+        "pkg:apk/alpine/zlib@1.2.13-r1?arch=x86_64&distro=alpine-3.18.5&package-id=c8e7fc9f117e52bc"
+      ]
+    },
+    {
+      "ref": "pkg:apk/alpine/giflib@5.2.1-r4?arch=x86_64&distro=alpine-3.18.5&package-id=81c4b631ebed9634",
+      "dependsOn": [
+        "pkg:apk/alpine/musl@1.2.4-r2?arch=x86_64&distro=alpine-3.18.5&package-id=ac337824ccfe44f2"
+      ]
+    },
+    {
+      "ref": "pkg:apk/alpine/java-cacerts@1.0-r1?arch=x86_64&distro=alpine-3.18.5&package-id=abd7dc90169ab0fe",
+      "dependsOn": [
+        "pkg:apk/alpine/busybox-binsh@1.36.1-r5?arch=x86_64&upstream=busybox&distro=alpine-3.18.5&package-id=ea8601e6fdd7765c",
+        "pkg:apk/alpine/ca-certificates@20230506-r0?arch=x86_64&distro=alpine-3.18.5&package-id=34619f88311d4e5e",
+        "pkg:apk/alpine/p11-kit-trust@0.24.1-r2?arch=x86_64&upstream=p11-kit&distro=alpine-3.18.5&package-id=e63dedeb4498fbaa",
+        "pkg:apk/alpine/p11-kit@0.24.1-r2?arch=x86_64&distro=alpine-3.18.5&package-id=8409881a29df5d99"
+      ]
+    },
+    {
+      "ref": "pkg:apk/alpine/java-common@0.5-r0?arch=x86_64&distro=alpine-3.18.5&package-id=854cda365d24a3ac",
+      "dependsOn": [
+        "pkg:apk/alpine/busybox-binsh@1.36.1-r5?arch=x86_64&upstream=busybox&distro=alpine-3.18.5&package-id=ea8601e6fdd7765c"
+      ]
+    },
+    {
+      "ref": "pkg:apk/alpine/lcms2@2.15-r2?arch=x86_64&distro=alpine-3.18.5&package-id=761e2c68d5f5fab4",
+      "dependsOn": [
+        "pkg:apk/alpine/musl@1.2.4-r2?arch=x86_64&distro=alpine-3.18.5&package-id=ac337824ccfe44f2"
+      ]
+    },
+    {
+      "ref": "pkg:apk/alpine/libbsd@0.11.7-r1?arch=x86_64&distro=alpine-3.18.5&package-id=be56281be99ee143",
+      "dependsOn": [
+        "pkg:apk/alpine/libmd@1.0.4-r2?arch=x86_64&distro=alpine-3.18.5&package-id=3cad17c3657f9a8c",
+        "pkg:apk/alpine/musl@1.2.4-r2?arch=x86_64&distro=alpine-3.18.5&package-id=ac337824ccfe44f2"
+      ]
+    },
+    {
+      "ref": "pkg:apk/alpine/libbz2@1.0.8-r5?arch=x86_64&upstream=bzip2&distro=alpine-3.18.5&package-id=18e5911103cbf51c",
+      "dependsOn": [
+        "pkg:apk/alpine/musl@1.2.4-r2?arch=x86_64&distro=alpine-3.18.5&package-id=ac337824ccfe44f2"
+      ]
+    },
+    {
+      "ref": "pkg:apk/alpine/libc-utils@0.7.2-r5?arch=x86_64&upstream=libc-dev&distro=alpine-3.18.5&package-id=caef79f1fe0b500a",
+      "dependsOn": [
+        "pkg:apk/alpine/musl-utils@1.2.4-r2?arch=x86_64&upstream=musl&distro=alpine-3.18.5&package-id=58216dd6469af95a"
+      ]
+    },
+    {
+      "ref": "pkg:apk/alpine/libcrypto3@3.1.4-r1?arch=x86_64&upstream=openssl&distro=alpine-3.18.5&package-id=e37b0015aff83d58",
+      "dependsOn": [
+        "pkg:apk/alpine/musl@1.2.4-r2?arch=x86_64&distro=alpine-3.18.5&package-id=ac337824ccfe44f2"
+      ]
+    },
+    {
+      "ref": "pkg:apk/alpine/libffi@3.4.4-r2?arch=x86_64&distro=alpine-3.18.5&package-id=4398410e101bab31",
+      "dependsOn": [
+        "pkg:apk/alpine/musl@1.2.4-r2?arch=x86_64&distro=alpine-3.18.5&package-id=ac337824ccfe44f2"
+      ]
+    },
+    {
+      "ref": "pkg:apk/alpine/libjpeg-turbo@2.1.5.1-r3?arch=x86_64&distro=alpine-3.18.5&package-id=cb5c16be818a9da1",
+      "dependsOn": [
+        "pkg:apk/alpine/musl@1.2.4-r2?arch=x86_64&distro=alpine-3.18.5&package-id=ac337824ccfe44f2"
+      ]
+    },
+    {
+      "ref": "pkg:apk/alpine/libmd@1.0.4-r2?arch=x86_64&distro=alpine-3.18.5&package-id=3cad17c3657f9a8c",
+      "dependsOn": [
+        "pkg:apk/alpine/musl@1.2.4-r2?arch=x86_64&distro=alpine-3.18.5&package-id=ac337824ccfe44f2"
+      ]
+    },
+    {
+      "ref": "pkg:apk/alpine/libncursesw@6.4_p20230506-r0?arch=x86_64&upstream=ncurses&distro=alpine-3.18.5&package-id=fecedb8a52a992aa",
+      "dependsOn": [
+        "pkg:apk/alpine/musl@1.2.4-r2?arch=x86_64&distro=alpine-3.18.5&package-id=ac337824ccfe44f2",
+        "pkg:apk/alpine/ncurses-terminfo-base@6.4_p20230506-r0?arch=x86_64&upstream=ncurses&distro=alpine-3.18.5&package-id=e8554058cb4c7d6d"
+      ]
+    },
+    {
+      "ref": "pkg:apk/alpine/libpng@1.6.39-r3?arch=x86_64&distro=alpine-3.18.5&package-id=fae14a749f94b4a9",
+      "dependsOn": [
+        "pkg:apk/alpine/musl@1.2.4-r2?arch=x86_64&distro=alpine-3.18.5&package-id=ac337824ccfe44f2",
+        "pkg:apk/alpine/zlib@1.2.13-r1?arch=x86_64&distro=alpine-3.18.5&package-id=c8e7fc9f117e52bc"
+      ]
+    },
+    {
+      "ref": "pkg:apk/alpine/libssl3@3.1.4-r1?arch=x86_64&upstream=openssl&distro=alpine-3.18.5&package-id=8dd02cc858a89430",
+      "dependsOn": [
+        "pkg:apk/alpine/libcrypto3@3.1.4-r1?arch=x86_64&upstream=openssl&distro=alpine-3.18.5&package-id=e37b0015aff83d58",
+        "pkg:apk/alpine/musl@1.2.4-r2?arch=x86_64&distro=alpine-3.18.5&package-id=ac337824ccfe44f2"
+      ]
+    },
+    {
+      "ref": "pkg:apk/alpine/libtasn1@4.19.0-r1?arch=x86_64&distro=alpine-3.18.5&package-id=dab129c365cfba5f",
+      "dependsOn": [
+        "pkg:apk/alpine/musl@1.2.4-r2?arch=x86_64&distro=alpine-3.18.5&package-id=ac337824ccfe44f2"
+      ]
+    },
+    {
+      "ref": "pkg:apk/alpine/libx11@1.8.7-r0?arch=x86_64&distro=alpine-3.18.5&package-id=0ca45a0d92ec397a",
+      "dependsOn": [
+        "pkg:apk/alpine/libxcb@1.15-r1?arch=x86_64&distro=alpine-3.18.5&package-id=c1b8a0b48dc24735",
+        "pkg:apk/alpine/musl@1.2.4-r2?arch=x86_64&distro=alpine-3.18.5&package-id=ac337824ccfe44f2"
+      ]
+    },
+    {
+      "ref": "pkg:apk/alpine/libxau@1.0.11-r2?arch=x86_64&distro=alpine-3.18.5&package-id=bfc32cdeb41f936d",
+      "dependsOn": [
+        "pkg:apk/alpine/musl@1.2.4-r2?arch=x86_64&distro=alpine-3.18.5&package-id=ac337824ccfe44f2"
+      ]
+    },
+    {
+      "ref": "pkg:apk/alpine/libxcb@1.15-r1?arch=x86_64&distro=alpine-3.18.5&package-id=c1b8a0b48dc24735",
+      "dependsOn": [
+        "pkg:apk/alpine/libxau@1.0.11-r2?arch=x86_64&distro=alpine-3.18.5&package-id=bfc32cdeb41f936d",
+        "pkg:apk/alpine/libxdmcp@1.1.4-r2?arch=x86_64&distro=alpine-3.18.5&package-id=b27c714be4aa474b",
+        "pkg:apk/alpine/musl@1.2.4-r2?arch=x86_64&distro=alpine-3.18.5&package-id=ac337824ccfe44f2"
+      ]
+    },
+    {
+      "ref": "pkg:apk/alpine/libxdmcp@1.1.4-r2?arch=x86_64&distro=alpine-3.18.5&package-id=b27c714be4aa474b",
+      "dependsOn": [
+        "pkg:apk/alpine/libbsd@0.11.7-r1?arch=x86_64&distro=alpine-3.18.5&package-id=be56281be99ee143",
+        "pkg:apk/alpine/musl@1.2.4-r2?arch=x86_64&distro=alpine-3.18.5&package-id=ac337824ccfe44f2"
+      ]
+    },
+    {
+      "ref": "pkg:apk/alpine/libxext@1.3.5-r2?arch=x86_64&distro=alpine-3.18.5&package-id=8796daa88f7456f5",
+      "dependsOn": [
+        "pkg:apk/alpine/libx11@1.8.7-r0?arch=x86_64&distro=alpine-3.18.5&package-id=0ca45a0d92ec397a",
+        "pkg:apk/alpine/musl@1.2.4-r2?arch=x86_64&distro=alpine-3.18.5&package-id=ac337824ccfe44f2"
+      ]
+    },
+    {
+      "ref": "pkg:apk/alpine/libxi@1.8.1-r0?arch=x86_64&distro=alpine-3.18.5&package-id=797b290ab96926c4",
+      "dependsOn": [
+        "pkg:apk/alpine/libx11@1.8.7-r0?arch=x86_64&distro=alpine-3.18.5&package-id=0ca45a0d92ec397a",
+        "pkg:apk/alpine/libxext@1.3.5-r2?arch=x86_64&distro=alpine-3.18.5&package-id=8796daa88f7456f5",
+        "pkg:apk/alpine/musl@1.2.4-r2?arch=x86_64&distro=alpine-3.18.5&package-id=ac337824ccfe44f2"
+      ]
+    },
+    {
+      "ref": "pkg:apk/alpine/libxrender@0.9.11-r3?arch=x86_64&distro=alpine-3.18.5&package-id=f8718eabf47ab91f",
+      "dependsOn": [
+        "pkg:apk/alpine/libx11@1.8.7-r0?arch=x86_64&distro=alpine-3.18.5&package-id=0ca45a0d92ec397a",
+        "pkg:apk/alpine/musl@1.2.4-r2?arch=x86_64&distro=alpine-3.18.5&package-id=ac337824ccfe44f2"
+      ]
+    },
+    {
+      "ref": "pkg:apk/alpine/libxtst@1.2.4-r2?arch=x86_64&distro=alpine-3.18.5&package-id=89f76e217990632b",
+      "dependsOn": [
+        "pkg:apk/alpine/libx11@1.8.7-r0?arch=x86_64&distro=alpine-3.18.5&package-id=0ca45a0d92ec397a",
+        "pkg:apk/alpine/libxext@1.3.5-r2?arch=x86_64&distro=alpine-3.18.5&package-id=8796daa88f7456f5",
+        "pkg:apk/alpine/musl@1.2.4-r2?arch=x86_64&distro=alpine-3.18.5&package-id=ac337824ccfe44f2"
+      ]
+    },
+    {
+      "ref": "pkg:apk/alpine/musl-utils@1.2.4-r2?arch=x86_64&upstream=musl&distro=alpine-3.18.5&package-id=58216dd6469af95a",
+      "dependsOn": [
+        "pkg:apk/alpine/musl@1.2.4-r2?arch=x86_64&distro=alpine-3.18.5&package-id=ac337824ccfe44f2",
+        "pkg:apk/alpine/scanelf@1.3.7-r1?arch=x86_64&upstream=pax-utils&distro=alpine-3.18.5&package-id=701300eef0967970"
+      ]
+    },
+    {
+      "ref": "pkg:apk/alpine/openjdk11-jdk@11.0.21_p9-r0?arch=x86_64&upstream=openjdk11&distro=alpine-3.18.5&package-id=f4c8aaccc90d995e",
+      "dependsOn": [
+        "pkg:apk/alpine/musl@1.2.4-r2?arch=x86_64&distro=alpine-3.18.5&package-id=ac337824ccfe44f2",
+        "pkg:apk/alpine/openjdk11-jmods@11.0.21_p9-r0?arch=x86_64&upstream=openjdk11&distro=alpine-3.18.5&package-id=ca527a5de9a8839a",
+        "pkg:apk/alpine/openjdk11-jre-headless@11.0.21_p9-r0?arch=x86_64&upstream=openjdk11&distro=alpine-3.18.5&package-id=34fd74d73b447e27",
+        "pkg:apk/alpine/openjdk11-jre@11.0.21_p9-r0?arch=x86_64&upstream=openjdk11&distro=alpine-3.18.5&package-id=d34cbfbd5f8e3526"
+      ]
+    },
+    {
+      "ref": "pkg:apk/alpine/openjdk11-jre-headless@11.0.21_p9-r0?arch=x86_64&upstream=openjdk11&distro=alpine-3.18.5&package-id=34fd74d73b447e27",
+      "dependsOn": [
+        "pkg:apk/alpine/java-cacerts@1.0-r1?arch=x86_64&distro=alpine-3.18.5&package-id=abd7dc90169ab0fe",
+        "pkg:apk/alpine/java-common@0.5-r0?arch=x86_64&distro=alpine-3.18.5&package-id=854cda365d24a3ac",
+        "pkg:apk/alpine/musl@1.2.4-r2?arch=x86_64&distro=alpine-3.18.5&package-id=ac337824ccfe44f2",
+        "pkg:apk/alpine/zlib@1.2.13-r1?arch=x86_64&distro=alpine-3.18.5&package-id=c8e7fc9f117e52bc"
+      ]
+    },
+    {
+      "ref": "pkg:apk/alpine/openjdk11-jre@11.0.21_p9-r0?arch=x86_64&upstream=openjdk11&distro=alpine-3.18.5&package-id=d34cbfbd5f8e3526",
+      "dependsOn": [
+        "pkg:apk/alpine/alsa-lib@1.2.9-r1?arch=x86_64&distro=alpine-3.18.5&package-id=84af028d92e1ce12",
+        "pkg:apk/alpine/freetype@2.13.0-r5?arch=x86_64&distro=alpine-3.18.5&package-id=b888151d4bc51ee8",
+        "pkg:apk/alpine/giflib@5.2.1-r4?arch=x86_64&distro=alpine-3.18.5&package-id=81c4b631ebed9634",
+        "pkg:apk/alpine/lcms2@2.15-r2?arch=x86_64&distro=alpine-3.18.5&package-id=761e2c68d5f5fab4",
+        "pkg:apk/alpine/libjpeg-turbo@2.1.5.1-r3?arch=x86_64&distro=alpine-3.18.5&package-id=cb5c16be818a9da1",
+        "pkg:apk/alpine/libpng@1.6.39-r3?arch=x86_64&distro=alpine-3.18.5&package-id=fae14a749f94b4a9",
+        "pkg:apk/alpine/libx11@1.8.7-r0?arch=x86_64&distro=alpine-3.18.5&package-id=0ca45a0d92ec397a",
+        "pkg:apk/alpine/libxext@1.3.5-r2?arch=x86_64&distro=alpine-3.18.5&package-id=8796daa88f7456f5",
+        "pkg:apk/alpine/libxi@1.8.1-r0?arch=x86_64&distro=alpine-3.18.5&package-id=797b290ab96926c4",
+        "pkg:apk/alpine/libxrender@0.9.11-r3?arch=x86_64&distro=alpine-3.18.5&package-id=f8718eabf47ab91f",
+        "pkg:apk/alpine/libxtst@1.2.4-r2?arch=x86_64&distro=alpine-3.18.5&package-id=89f76e217990632b",
+        "pkg:apk/alpine/musl@1.2.4-r2?arch=x86_64&distro=alpine-3.18.5&package-id=ac337824ccfe44f2",
+        "pkg:apk/alpine/openjdk11-jre-headless@11.0.21_p9-r0?arch=x86_64&upstream=openjdk11&distro=alpine-3.18.5&package-id=34fd74d73b447e27"
+      ]
+    },
+    {
+      "ref": "pkg:apk/alpine/p11-kit-trust@0.24.1-r2?arch=x86_64&upstream=p11-kit&distro=alpine-3.18.5&package-id=e63dedeb4498fbaa",
+      "dependsOn": [
+        "pkg:apk/alpine/libtasn1@4.19.0-r1?arch=x86_64&distro=alpine-3.18.5&package-id=dab129c365cfba5f",
+        "pkg:apk/alpine/musl@1.2.4-r2?arch=x86_64&distro=alpine-3.18.5&package-id=ac337824ccfe44f2",
+        "pkg:apk/alpine/p11-kit@0.24.1-r2?arch=x86_64&distro=alpine-3.18.5&package-id=8409881a29df5d99"
+      ]
+    },
+    {
+      "ref": "pkg:apk/alpine/p11-kit@0.24.1-r2?arch=x86_64&distro=alpine-3.18.5&package-id=8409881a29df5d99",
+      "dependsOn": [
+        "pkg:apk/alpine/libffi@3.4.4-r2?arch=x86_64&distro=alpine-3.18.5&package-id=4398410e101bab31",
+        "pkg:apk/alpine/musl@1.2.4-r2?arch=x86_64&distro=alpine-3.18.5&package-id=ac337824ccfe44f2"
+      ]
+    },
+    {
+      "ref": "pkg:apk/alpine/perl@5.36.2-r0?arch=x86_64&distro=alpine-3.18.5&package-id=c5ed3402efe8f143",
+      "dependsOn": [
+        "pkg:apk/alpine/libbz2@1.0.8-r5?arch=x86_64&upstream=bzip2&distro=alpine-3.18.5&package-id=18e5911103cbf51c",
+        "pkg:apk/alpine/musl@1.2.4-r2?arch=x86_64&distro=alpine-3.18.5&package-id=ac337824ccfe44f2",
+        "pkg:apk/alpine/zlib@1.2.13-r1?arch=x86_64&distro=alpine-3.18.5&package-id=c8e7fc9f117e52bc"
+      ]
+    },
+    {
+      "ref": "pkg:apk/alpine/readline@8.2.1-r1?arch=x86_64&distro=alpine-3.18.5&package-id=78533b9a80a3c727",
+      "dependsOn": [
+        "pkg:apk/alpine/libncursesw@6.4_p20230506-r0?arch=x86_64&upstream=ncurses&distro=alpine-3.18.5&package-id=fecedb8a52a992aa",
+        "pkg:apk/alpine/musl@1.2.4-r2?arch=x86_64&distro=alpine-3.18.5&package-id=ac337824ccfe44f2"
+      ]
+    },
+    {
+      "ref": "pkg:apk/alpine/scanelf@1.3.7-r1?arch=x86_64&upstream=pax-utils&distro=alpine-3.18.5&package-id=701300eef0967970",
+      "dependsOn": [
+        "pkg:apk/alpine/musl@1.2.4-r2?arch=x86_64&distro=alpine-3.18.5&package-id=ac337824ccfe44f2"
+      ]
+    },
+    {
+      "ref": "pkg:apk/alpine/ssl_client@1.36.1-r5?arch=x86_64&upstream=busybox&distro=alpine-3.18.5&package-id=9a41fe1896e4ce46",
+      "dependsOn": [
+        "pkg:apk/alpine/libcrypto3@3.1.4-r1?arch=x86_64&upstream=openssl&distro=alpine-3.18.5&package-id=e37b0015aff83d58",
+        "pkg:apk/alpine/libssl3@3.1.4-r1?arch=x86_64&upstream=openssl&distro=alpine-3.18.5&package-id=8dd02cc858a89430",
+        "pkg:apk/alpine/musl@1.2.4-r2?arch=x86_64&distro=alpine-3.18.5&package-id=ac337824ccfe44f2"
+      ]
+    },
+    {
+      "ref": "pkg:apk/alpine/zlib@1.2.13-r1?arch=x86_64&distro=alpine-3.18.5&package-id=c8e7fc9f117e52bc",
+      "dependsOn": [
+        "pkg:apk/alpine/musl@1.2.4-r2?arch=x86_64&distro=alpine-3.18.5&package-id=ac337824ccfe44f2"
+      ]
+    }
+  ],
+  "vulnerabilities": [
+    {
+      "bom-ref": "urn:uuid:c0a76b32-e6e1-4994-bd3b-d2886acf4a53",
+      "id": "CVE-2023-31484",
+      "source": {
+        "name": "nvd-cpe",
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-31484"
+      },
+      "references": [
+        {
+          "id": "CVE-2023-31484",
+          "source": {
+            "name": "nvd-cpe",
+            "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-31484"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "score": 8.1,
+          "severity": "high",
+          "method": "CVSSv31",
+          "vector": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H"
+        }
+      ],
+      "description": "CPAN.pm before 2.35 does not verify TLS certificates when downloading distributions over HTTPS.",
+      "advisories": [
+        {
+          "url": "http://www.openwall.com/lists/oss-security/2023/04/29/1"
+        },
+        {
+          "url": "http://www.openwall.com/lists/oss-security/2023/05/03/3"
+        },
+        {
+          "url": "http://www.openwall.com/lists/oss-security/2023/05/03/5"
+        },
+        {
+          "url": "http://www.openwall.com/lists/oss-security/2023/05/07/2"
+        },
+        {
+          "url": "https://blog.hackeriet.no/perl-http-tiny-insecure-tls-default-affects-cpan-modules/"
+        },
+        {
+          "url": "https://github.com/andk/cpanpm/pull/175"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BM6UW55CNFUTNGD5ZRKGUKKKFDJGMFHL/"
+        },
+        {
+          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LEGCEOKFJVBJ2QQ6S2H4NAEWTUERC7SB/"
+        },
+        {
+          "url": "https://metacpan.org/dist/CPAN/changes"
+        },
+        {
+          "url": "https://www.openwall.com/lists/oss-security/2023/04/18/14"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:apk/alpine/perl@5.36.2-r0?arch=x86_64&distro=alpine-3.18.5&package-id=c5ed3402efe8f143"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:fb9a369c-9c12-4932-94f3-cb4439558a74",
+      "id": "CVE-2023-31486",
+      "source": {
+        "name": "nvd-cpe",
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-31486"
+      },
+      "references": [
+        {
+          "id": "CVE-2023-31486",
+          "source": {
+            "name": "nvd-cpe",
+            "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-31486"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "score": 8.1,
+          "severity": "high",
+          "method": "CVSSv31",
+          "vector": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H"
+        }
+      ],
+      "description": "HTTP::Tiny before 0.083, a Perl core module since 5.13.9 and available standalone on CPAN, has an insecure default TLS configuration where users must opt in to verify certificates.",
+      "advisories": [
+        {
+          "url": "http://www.openwall.com/lists/oss-security/2023/04/29/1"
+        },
+        {
+          "url": "http://www.openwall.com/lists/oss-security/2023/05/03/3"
+        },
+        {
+          "url": "http://www.openwall.com/lists/oss-security/2023/05/03/5"
+        },
+        {
+          "url": "http://www.openwall.com/lists/oss-security/2023/05/07/2"
+        },
+        {
+          "url": "https://blog.hackeriet.no/perl-http-tiny-insecure-tls-default-affects-cpan-modules/"
+        },
+        {
+          "url": "https://github.com/chansen/p5-http-tiny/pull/153"
+        },
+        {
+          "url": "https://hackeriet.github.io/cpan-http-tiny-overview/"
+        },
+        {
+          "url": "https://www.openwall.com/lists/oss-security/2023/04/18/14"
+        },
+        {
+          "url": "https://www.openwall.com/lists/oss-security/2023/05/03/4"
+        },
+        {
+          "url": "https://www.reddit.com/r/perl/comments/111tadi/psa_httptiny_disabled_ssl_verification_by_default/"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:apk/alpine/perl@5.36.2-r0?arch=x86_64&distro=alpine-3.18.5&package-id=c5ed3402efe8f143"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:b1bbd5db-131f-4be2-9b55-d7e4e9150c69",
+      "id": "CVE-2023-42363",
+      "source": {
+        "name": "nvd-cpe",
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-42363"
+      },
+      "references": [
+        {
+          "id": "CVE-2023-42363",
+          "source": {
+            "name": "nvd-cpe",
+            "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-42363"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "score": 5.5,
+          "severity": "medium",
+          "method": "CVSSv31",
+          "vector": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"
+        }
+      ],
+      "description": "A use-after-free vulnerability was discovered in xasprintf function in xfuncs_printf.c:344 in BusyBox v.1.36.1.",
+      "advisories": [
+        {
+          "url": "https://bugs.busybox.net/show_bug.cgi?id=15865"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:apk/alpine/busybox@1.36.1-r5?arch=x86_64&distro=alpine-3.18.5&package-id=c4cadec7a04f67ce"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:b6598e4e-ab61-4d0e-8983-b0dc2bf9b95f",
+      "id": "CVE-2023-42363",
+      "source": {
+        "name": "nvd-cpe",
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-42363"
+      },
+      "references": [
+        {
+          "id": "CVE-2023-42363",
+          "source": {
+            "name": "nvd-cpe",
+            "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-42363"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "score": 5.5,
+          "severity": "medium",
+          "method": "CVSSv31",
+          "vector": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"
+        }
+      ],
+      "description": "A use-after-free vulnerability was discovered in xasprintf function in xfuncs_printf.c:344 in BusyBox v.1.36.1.",
+      "advisories": [
+        {
+          "url": "https://bugs.busybox.net/show_bug.cgi?id=15865"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:apk/alpine/busybox-binsh@1.36.1-r5?arch=x86_64&upstream=busybox&distro=alpine-3.18.5&package-id=ea8601e6fdd7765c"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:bb01f12d-b046-430c-a6ff-f6ba7cd6b376",
+      "id": "CVE-2023-42363",
+      "source": {
+        "name": "nvd-cpe",
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-42363"
+      },
+      "references": [
+        {
+          "id": "CVE-2023-42363",
+          "source": {
+            "name": "nvd-cpe",
+            "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-42363"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "score": 5.5,
+          "severity": "medium",
+          "method": "CVSSv31",
+          "vector": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"
+        }
+      ],
+      "description": "A use-after-free vulnerability was discovered in xasprintf function in xfuncs_printf.c:344 in BusyBox v.1.36.1.",
+      "advisories": [
+        {
+          "url": "https://bugs.busybox.net/show_bug.cgi?id=15865"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:apk/alpine/ssl_client@1.36.1-r5?arch=x86_64&upstream=busybox&distro=alpine-3.18.5&package-id=9a41fe1896e4ce46"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:a7874616-8e2e-40ac-b0ec-33b0fbac39f6",
+      "id": "CVE-2023-42364",
+      "source": {
+        "name": "nvd-cpe",
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-42364"
+      },
+      "references": [
+        {
+          "id": "CVE-2023-42364",
+          "source": {
+            "name": "nvd-cpe",
+            "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-42364"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "score": 5.5,
+          "severity": "medium",
+          "method": "CVSSv31",
+          "vector": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"
+        }
+      ],
+      "description": "A use-after-free vulnerability in BusyBox v.1.36.1 allows attackers to cause a denial of service via a crafted awk pattern in the awk.c evaluate function.",
+      "advisories": [
+        {
+          "url": "https://bugs.busybox.net/show_bug.cgi?id=15868"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:apk/alpine/busybox@1.36.1-r5?arch=x86_64&distro=alpine-3.18.5&package-id=c4cadec7a04f67ce"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:1a5067c4-d54b-44bc-af7d-15bdd7cf6364",
+      "id": "CVE-2023-42364",
+      "source": {
+        "name": "nvd-cpe",
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-42364"
+      },
+      "references": [
+        {
+          "id": "CVE-2023-42364",
+          "source": {
+            "name": "nvd-cpe",
+            "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-42364"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "score": 5.5,
+          "severity": "medium",
+          "method": "CVSSv31",
+          "vector": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"
+        }
+      ],
+      "description": "A use-after-free vulnerability in BusyBox v.1.36.1 allows attackers to cause a denial of service via a crafted awk pattern in the awk.c evaluate function.",
+      "advisories": [
+        {
+          "url": "https://bugs.busybox.net/show_bug.cgi?id=15868"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:apk/alpine/busybox-binsh@1.36.1-r5?arch=x86_64&upstream=busybox&distro=alpine-3.18.5&package-id=ea8601e6fdd7765c"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:d5a2e8bc-47b7-4737-a3a7-046f58cdab57",
+      "id": "CVE-2023-42364",
+      "source": {
+        "name": "nvd-cpe",
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-42364"
+      },
+      "references": [
+        {
+          "id": "CVE-2023-42364",
+          "source": {
+            "name": "nvd-cpe",
+            "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-42364"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "score": 5.5,
+          "severity": "medium",
+          "method": "CVSSv31",
+          "vector": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"
+        }
+      ],
+      "description": "A use-after-free vulnerability in BusyBox v.1.36.1 allows attackers to cause a denial of service via a crafted awk pattern in the awk.c evaluate function.",
+      "advisories": [
+        {
+          "url": "https://bugs.busybox.net/show_bug.cgi?id=15868"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:apk/alpine/ssl_client@1.36.1-r5?arch=x86_64&upstream=busybox&distro=alpine-3.18.5&package-id=9a41fe1896e4ce46"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:1a547029-8cd5-48ab-b591-d16dc5f82c55",
+      "id": "CVE-2023-42365",
+      "source": {
+        "name": "nvd-cpe",
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-42365"
+      },
+      "references": [
+        {
+          "id": "CVE-2023-42365",
+          "source": {
+            "name": "nvd-cpe",
+            "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-42365"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "score": 5.5,
+          "severity": "medium",
+          "method": "CVSSv31",
+          "vector": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"
+        }
+      ],
+      "description": "A use-after-free vulnerability was discovered in BusyBox v.1.36.1 via a crafted awk pattern in the awk.c copyvar function.",
+      "advisories": [
+        {
+          "url": "https://bugs.busybox.net/show_bug.cgi?id=15871"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:apk/alpine/busybox@1.36.1-r5?arch=x86_64&distro=alpine-3.18.5&package-id=c4cadec7a04f67ce"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:7b152611-051d-426f-a0dc-254794c2fa18",
+      "id": "CVE-2023-42365",
+      "source": {
+        "name": "nvd-cpe",
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-42365"
+      },
+      "references": [
+        {
+          "id": "CVE-2023-42365",
+          "source": {
+            "name": "nvd-cpe",
+            "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-42365"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "score": 5.5,
+          "severity": "medium",
+          "method": "CVSSv31",
+          "vector": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"
+        }
+      ],
+      "description": "A use-after-free vulnerability was discovered in BusyBox v.1.36.1 via a crafted awk pattern in the awk.c copyvar function.",
+      "advisories": [
+        {
+          "url": "https://bugs.busybox.net/show_bug.cgi?id=15871"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:apk/alpine/busybox-binsh@1.36.1-r5?arch=x86_64&upstream=busybox&distro=alpine-3.18.5&package-id=ea8601e6fdd7765c"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:b425a01d-ba6d-40c3-83b0-379477768cda",
+      "id": "CVE-2023-42365",
+      "source": {
+        "name": "nvd-cpe",
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-42365"
+      },
+      "references": [
+        {
+          "id": "CVE-2023-42365",
+          "source": {
+            "name": "nvd-cpe",
+            "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-42365"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "score": 5.5,
+          "severity": "medium",
+          "method": "CVSSv31",
+          "vector": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"
+        }
+      ],
+      "description": "A use-after-free vulnerability was discovered in BusyBox v.1.36.1 via a crafted awk pattern in the awk.c copyvar function.",
+      "advisories": [
+        {
+          "url": "https://bugs.busybox.net/show_bug.cgi?id=15871"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:apk/alpine/ssl_client@1.36.1-r5?arch=x86_64&upstream=busybox&distro=alpine-3.18.5&package-id=9a41fe1896e4ce46"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:27123dc7-d7d0-4fd7-a78b-c51d554074fd",
+      "id": "CVE-2023-42366",
+      "source": {
+        "name": "nvd-cpe",
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-42366"
+      },
+      "references": [
+        {
+          "id": "CVE-2023-42366",
+          "source": {
+            "name": "nvd-cpe",
+            "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-42366"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "score": 5.5,
+          "severity": "medium",
+          "method": "CVSSv31",
+          "vector": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"
+        }
+      ],
+      "description": "A heap-buffer-overflow was discovered in BusyBox v.1.36.1 in the next_token function at awk.c:1159.",
+      "advisories": [
+        {
+          "url": "https://bugs.busybox.net/show_bug.cgi?id=15874"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:apk/alpine/busybox@1.36.1-r5?arch=x86_64&distro=alpine-3.18.5&package-id=c4cadec7a04f67ce"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:20d85a1d-8cec-4abb-9622-95def230a0f4",
+      "id": "CVE-2023-42366",
+      "source": {
+        "name": "nvd-cpe",
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-42366"
+      },
+      "references": [
+        {
+          "id": "CVE-2023-42366",
+          "source": {
+            "name": "nvd-cpe",
+            "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-42366"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "score": 5.5,
+          "severity": "medium",
+          "method": "CVSSv31",
+          "vector": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"
+        }
+      ],
+      "description": "A heap-buffer-overflow was discovered in BusyBox v.1.36.1 in the next_token function at awk.c:1159.",
+      "advisories": [
+        {
+          "url": "https://bugs.busybox.net/show_bug.cgi?id=15874"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:apk/alpine/busybox-binsh@1.36.1-r5?arch=x86_64&upstream=busybox&distro=alpine-3.18.5&package-id=ea8601e6fdd7765c"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:52c25d0c-01a9-4b9f-90d0-2fc43b74c87d",
+      "id": "CVE-2023-42366",
+      "source": {
+        "name": "nvd-cpe",
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-42366"
+      },
+      "references": [
+        {
+          "id": "CVE-2023-42366",
+          "source": {
+            "name": "nvd-cpe",
+            "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-42366"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "score": 5.5,
+          "severity": "medium",
+          "method": "CVSSv31",
+          "vector": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"
+        }
+      ],
+      "description": "A heap-buffer-overflow was discovered in BusyBox v.1.36.1 in the next_token function at awk.c:1159.",
+      "advisories": [
+        {
+          "url": "https://bugs.busybox.net/show_bug.cgi?id=15874"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:apk/alpine/ssl_client@1.36.1-r5?arch=x86_64&upstream=busybox&distro=alpine-3.18.5&package-id=9a41fe1896e4ce46"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:5f509cf9-4cb7-4160-a261-74194d257524",
+      "id": "CVE-2023-47100",
+      "source": {
+        "name": "nvd-cpe",
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-47100"
+      },
+      "references": [
+        {
+          "id": "CVE-2023-47100",
+          "source": {
+            "name": "nvd-cpe",
+            "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-47100"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "score": 9.8,
+          "severity": "critical",
+          "method": "CVSSv31",
+          "vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"
+        }
+      ],
+      "description": "In Perl before 5.38.2, S_parse_uniprop_string in regcomp.c can write to unallocated space because a property name associated with a \\p{...} regular expression construct is mishandled. The earliest affected version is 5.30.0.",
+      "advisories": [
+        {
+          "url": "https://github.com/Perl/perl5/commit/12c313ce49b36160a7ca2e9b07ad5bd92ee4a010"
+        },
+        {
+          "url": "https://github.com/Perl/perl5/commit/7047915eef37fccd93e7cd985c29fe6be54650b6"
+        },
+        {
+          "url": "https://github.com/Perl/perl5/commit/ff1f9f59360afeebd6f75ca1502f5c3ebf077da3"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:apk/alpine/perl@5.36.2-r0?arch=x86_64&distro=alpine-3.18.5&package-id=c5ed3402efe8f143"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:120f6342-ad41-43e6-b6b3-76a561d77819",
+      "id": "CVE-2023-6129",
+      "source": {
+        "name": "alpine-distro-alpine-3.18",
+        "url": "https://www.cve.org/CVERecord?id=CVE-2023-6129"
+      },
+      "references": [
+        {
+          "id": "CVE-2023-6129",
+          "source": {
+            "name": "alpine-distro-alpine-3.18",
+            "url": "https://www.cve.org/CVERecord?id=CVE-2023-6129"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "advisories": [
+        {
+          "url": "https://www.cve.org/CVERecord?id=CVE-2023-6129"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:apk/alpine/libcrypto3@3.1.4-r1?arch=x86_64&upstream=openssl&distro=alpine-3.18.5&package-id=e37b0015aff83d58"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:691b784d-a433-45c6-8e25-4bd4a39c7c07",
+      "id": "CVE-2023-6129",
+      "source": {
+        "name": "alpine-distro-alpine-3.18",
+        "url": "https://www.cve.org/CVERecord?id=CVE-2023-6129"
+      },
+      "references": [
+        {
+          "id": "CVE-2023-6129",
+          "source": {
+            "name": "alpine-distro-alpine-3.18",
+            "url": "https://www.cve.org/CVERecord?id=CVE-2023-6129"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "advisories": [
+        {
+          "url": "https://www.cve.org/CVERecord?id=CVE-2023-6129"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:apk/alpine/libssl3@3.1.4-r1?arch=x86_64&upstream=openssl&distro=alpine-3.18.5&package-id=8dd02cc858a89430"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:9499bc9f-f396-403c-afdf-10bbfcc337d3",
+      "id": "CVE-2023-6237",
+      "source": {
+        "name": "alpine-distro-alpine-3.18",
+        "url": "https://www.cve.org/CVERecord?id=CVE-2023-6237"
+      },
+      "references": [
+        {
+          "id": "CVE-2023-6237",
+          "source": {
+            "name": "alpine-distro-alpine-3.18",
+            "url": "https://www.cve.org/CVERecord?id=CVE-2023-6237"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "unknown"
+        }
+      ],
+      "advisories": [
+        {
+          "url": "https://www.cve.org/CVERecord?id=CVE-2023-6237"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:apk/alpine/libcrypto3@3.1.4-r1?arch=x86_64&upstream=openssl&distro=alpine-3.18.5&package-id=e37b0015aff83d58"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:a185a478-a15a-475c-831a-e7cc9d196366",
+      "id": "CVE-2023-6237",
+      "source": {
+        "name": "alpine-distro-alpine-3.18",
+        "url": "https://www.cve.org/CVERecord?id=CVE-2023-6237"
+      },
+      "references": [
+        {
+          "id": "CVE-2023-6237",
+          "source": {
+            "name": "alpine-distro-alpine-3.18",
+            "url": "https://www.cve.org/CVERecord?id=CVE-2023-6237"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "unknown"
+        }
+      ],
+      "advisories": [
+        {
+          "url": "https://www.cve.org/CVERecord?id=CVE-2023-6237"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:apk/alpine/libssl3@3.1.4-r1?arch=x86_64&upstream=openssl&distro=alpine-3.18.5&package-id=8dd02cc858a89430"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:19c467de-0ea8-4837-86ae-0c4055329adb",
+      "id": "CVE-2024-0727",
+      "source": {
+        "name": "alpine-distro-alpine-3.18",
+        "url": "https://www.cve.org/CVERecord?id=CVE-2024-0727"
+      },
+      "references": [
+        {
+          "id": "CVE-2024-0727",
+          "source": {
+            "name": "alpine-distro-alpine-3.18",
+            "url": "https://www.cve.org/CVERecord?id=CVE-2024-0727"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "unknown"
+        }
+      ],
+      "advisories": [
+        {
+          "url": "https://www.cve.org/CVERecord?id=CVE-2024-0727"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:apk/alpine/libcrypto3@3.1.4-r1?arch=x86_64&upstream=openssl&distro=alpine-3.18.5&package-id=e37b0015aff83d58"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:6583ae46-14e0-4780-a251-d8cbca74f73d",
+      "id": "CVE-2024-0727",
+      "source": {
+        "name": "alpine-distro-alpine-3.18",
+        "url": "https://www.cve.org/CVERecord?id=CVE-2024-0727"
+      },
+      "references": [
+        {
+          "id": "CVE-2024-0727",
+          "source": {
+            "name": "alpine-distro-alpine-3.18",
+            "url": "https://www.cve.org/CVERecord?id=CVE-2024-0727"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "unknown"
+        }
+      ],
+      "advisories": [
+        {
+          "url": "https://www.cve.org/CVERecord?id=CVE-2024-0727"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:apk/alpine/libssl3@3.1.4-r1?arch=x86_64&upstream=openssl&distro=alpine-3.18.5&package-id=8dd02cc858a89430"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:b74c1aa7-c63b-4453-92d9-c736f82f2b32",
+      "id": "CVE-2024-20918",
+      "source": {
+        "name": "alpine-distro-alpine-3.18",
+        "url": "https://www.cve.org/CVERecord?id=CVE-2024-20918"
+      },
+      "references": [
+        {
+          "id": "CVE-2024-20918",
+          "source": {
+            "name": "alpine-distro-alpine-3.18",
+            "url": "https://www.cve.org/CVERecord?id=CVE-2024-20918"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "high"
+        }
+      ],
+      "advisories": [
+        {
+          "url": "https://www.cve.org/CVERecord?id=CVE-2024-20918"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:apk/alpine/openjdk11-jdk@11.0.21_p9-r0?arch=x86_64&upstream=openjdk11&distro=alpine-3.18.5&package-id=f4c8aaccc90d995e"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:cb41e3c8-50ca-4f2a-961a-e0b348c2f722",
+      "id": "CVE-2024-20918",
+      "source": {
+        "name": "alpine-distro-alpine-3.18",
+        "url": "https://www.cve.org/CVERecord?id=CVE-2024-20918"
+      },
+      "references": [
+        {
+          "id": "CVE-2024-20918",
+          "source": {
+            "name": "alpine-distro-alpine-3.18",
+            "url": "https://www.cve.org/CVERecord?id=CVE-2024-20918"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "high"
+        }
+      ],
+      "advisories": [
+        {
+          "url": "https://www.cve.org/CVERecord?id=CVE-2024-20918"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:apk/alpine/openjdk11-jmods@11.0.21_p9-r0?arch=x86_64&upstream=openjdk11&distro=alpine-3.18.5&package-id=ca527a5de9a8839a"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:b14f5261-427f-4421-8933-875c5b6ae35f",
+      "id": "CVE-2024-20918",
+      "source": {
+        "name": "alpine-distro-alpine-3.18",
+        "url": "https://www.cve.org/CVERecord?id=CVE-2024-20918"
+      },
+      "references": [
+        {
+          "id": "CVE-2024-20918",
+          "source": {
+            "name": "alpine-distro-alpine-3.18",
+            "url": "https://www.cve.org/CVERecord?id=CVE-2024-20918"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "high"
+        }
+      ],
+      "advisories": [
+        {
+          "url": "https://www.cve.org/CVERecord?id=CVE-2024-20918"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:apk/alpine/openjdk11-jre@11.0.21_p9-r0?arch=x86_64&upstream=openjdk11&distro=alpine-3.18.5&package-id=d34cbfbd5f8e3526"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:2c36da56-ab5d-4c3b-9078-9a8efd5fb7a6",
+      "id": "CVE-2024-20918",
+      "source": {
+        "name": "alpine-distro-alpine-3.18",
+        "url": "https://www.cve.org/CVERecord?id=CVE-2024-20918"
+      },
+      "references": [
+        {
+          "id": "CVE-2024-20918",
+          "source": {
+            "name": "alpine-distro-alpine-3.18",
+            "url": "https://www.cve.org/CVERecord?id=CVE-2024-20918"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "high"
+        }
+      ],
+      "advisories": [
+        {
+          "url": "https://www.cve.org/CVERecord?id=CVE-2024-20918"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:apk/alpine/openjdk11-jre-headless@11.0.21_p9-r0?arch=x86_64&upstream=openjdk11&distro=alpine-3.18.5&package-id=34fd74d73b447e27"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:f2b08d13-93c6-49a9-8ad7-9135c5865c83",
+      "id": "CVE-2024-20919",
+      "source": {
+        "name": "alpine-distro-alpine-3.18",
+        "url": "https://www.cve.org/CVERecord?id=CVE-2024-20919"
+      },
+      "references": [
+        {
+          "id": "CVE-2024-20919",
+          "source": {
+            "name": "alpine-distro-alpine-3.18",
+            "url": "https://www.cve.org/CVERecord?id=CVE-2024-20919"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "unknown"
+        }
+      ],
+      "advisories": [
+        {
+          "url": "https://www.cve.org/CVERecord?id=CVE-2024-20919"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:apk/alpine/openjdk11-jdk@11.0.21_p9-r0?arch=x86_64&upstream=openjdk11&distro=alpine-3.18.5&package-id=f4c8aaccc90d995e"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:d26fd19a-f3d9-4773-9a7e-95462a9875ef",
+      "id": "CVE-2024-20919",
+      "source": {
+        "name": "alpine-distro-alpine-3.18",
+        "url": "https://www.cve.org/CVERecord?id=CVE-2024-20919"
+      },
+      "references": [
+        {
+          "id": "CVE-2024-20919",
+          "source": {
+            "name": "alpine-distro-alpine-3.18",
+            "url": "https://www.cve.org/CVERecord?id=CVE-2024-20919"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "unknown"
+        }
+      ],
+      "advisories": [
+        {
+          "url": "https://www.cve.org/CVERecord?id=CVE-2024-20919"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:apk/alpine/openjdk11-jmods@11.0.21_p9-r0?arch=x86_64&upstream=openjdk11&distro=alpine-3.18.5&package-id=ca527a5de9a8839a"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:b05e7fe5-32a6-4559-b8dc-e56771c70169",
+      "id": "CVE-2024-20919",
+      "source": {
+        "name": "alpine-distro-alpine-3.18",
+        "url": "https://www.cve.org/CVERecord?id=CVE-2024-20919"
+      },
+      "references": [
+        {
+          "id": "CVE-2024-20919",
+          "source": {
+            "name": "alpine-distro-alpine-3.18",
+            "url": "https://www.cve.org/CVERecord?id=CVE-2024-20919"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "unknown"
+        }
+      ],
+      "advisories": [
+        {
+          "url": "https://www.cve.org/CVERecord?id=CVE-2024-20919"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:apk/alpine/openjdk11-jre@11.0.21_p9-r0?arch=x86_64&upstream=openjdk11&distro=alpine-3.18.5&package-id=d34cbfbd5f8e3526"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:bf8a7923-b47c-4596-9b82-6142728aeef7",
+      "id": "CVE-2024-20919",
+      "source": {
+        "name": "alpine-distro-alpine-3.18",
+        "url": "https://www.cve.org/CVERecord?id=CVE-2024-20919"
+      },
+      "references": [
+        {
+          "id": "CVE-2024-20919",
+          "source": {
+            "name": "alpine-distro-alpine-3.18",
+            "url": "https://www.cve.org/CVERecord?id=CVE-2024-20919"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "unknown"
+        }
+      ],
+      "advisories": [
+        {
+          "url": "https://www.cve.org/CVERecord?id=CVE-2024-20919"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:apk/alpine/openjdk11-jre-headless@11.0.21_p9-r0?arch=x86_64&upstream=openjdk11&distro=alpine-3.18.5&package-id=34fd74d73b447e27"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:e2e569e9-ec8e-41a2-bff2-f4cdd941c85a",
+      "id": "CVE-2024-20921",
+      "source": {
+        "name": "alpine-distro-alpine-3.18",
+        "url": "https://www.cve.org/CVERecord?id=CVE-2024-20921"
+      },
+      "references": [
+        {
+          "id": "CVE-2024-20921",
+          "source": {
+            "name": "alpine-distro-alpine-3.18",
+            "url": "https://www.cve.org/CVERecord?id=CVE-2024-20921"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "unknown"
+        }
+      ],
+      "advisories": [
+        {
+          "url": "https://www.cve.org/CVERecord?id=CVE-2024-20921"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:apk/alpine/openjdk11-jdk@11.0.21_p9-r0?arch=x86_64&upstream=openjdk11&distro=alpine-3.18.5&package-id=f4c8aaccc90d995e"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:6c870588-7ae3-4383-9b35-6322467d356e",
+      "id": "CVE-2024-20921",
+      "source": {
+        "name": "alpine-distro-alpine-3.18",
+        "url": "https://www.cve.org/CVERecord?id=CVE-2024-20921"
+      },
+      "references": [
+        {
+          "id": "CVE-2024-20921",
+          "source": {
+            "name": "alpine-distro-alpine-3.18",
+            "url": "https://www.cve.org/CVERecord?id=CVE-2024-20921"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "unknown"
+        }
+      ],
+      "advisories": [
+        {
+          "url": "https://www.cve.org/CVERecord?id=CVE-2024-20921"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:apk/alpine/openjdk11-jmods@11.0.21_p9-r0?arch=x86_64&upstream=openjdk11&distro=alpine-3.18.5&package-id=ca527a5de9a8839a"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:46d9d84e-f8ae-43f4-ae54-59d8f43250ef",
+      "id": "CVE-2024-20921",
+      "source": {
+        "name": "alpine-distro-alpine-3.18",
+        "url": "https://www.cve.org/CVERecord?id=CVE-2024-20921"
+      },
+      "references": [
+        {
+          "id": "CVE-2024-20921",
+          "source": {
+            "name": "alpine-distro-alpine-3.18",
+            "url": "https://www.cve.org/CVERecord?id=CVE-2024-20921"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "unknown"
+        }
+      ],
+      "advisories": [
+        {
+          "url": "https://www.cve.org/CVERecord?id=CVE-2024-20921"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:apk/alpine/openjdk11-jre@11.0.21_p9-r0?arch=x86_64&upstream=openjdk11&distro=alpine-3.18.5&package-id=d34cbfbd5f8e3526"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:3efc91d8-f82f-4583-a346-482a714cd62b",
+      "id": "CVE-2024-20921",
+      "source": {
+        "name": "alpine-distro-alpine-3.18",
+        "url": "https://www.cve.org/CVERecord?id=CVE-2024-20921"
+      },
+      "references": [
+        {
+          "id": "CVE-2024-20921",
+          "source": {
+            "name": "alpine-distro-alpine-3.18",
+            "url": "https://www.cve.org/CVERecord?id=CVE-2024-20921"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "unknown"
+        }
+      ],
+      "advisories": [
+        {
+          "url": "https://www.cve.org/CVERecord?id=CVE-2024-20921"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:apk/alpine/openjdk11-jre-headless@11.0.21_p9-r0?arch=x86_64&upstream=openjdk11&distro=alpine-3.18.5&package-id=34fd74d73b447e27"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:f69dcdbd-ca90-4111-9f32-0ac77ec929a9",
+      "id": "CVE-2024-20926",
+      "source": {
+        "name": "alpine-distro-alpine-3.18",
+        "url": "https://www.cve.org/CVERecord?id=CVE-2024-20926"
+      },
+      "references": [
+        {
+          "id": "CVE-2024-20926",
+          "source": {
+            "name": "alpine-distro-alpine-3.18",
+            "url": "https://www.cve.org/CVERecord?id=CVE-2024-20926"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "advisories": [
+        {
+          "url": "https://www.cve.org/CVERecord?id=CVE-2024-20926"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:apk/alpine/openjdk11-jdk@11.0.21_p9-r0?arch=x86_64&upstream=openjdk11&distro=alpine-3.18.5&package-id=f4c8aaccc90d995e"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:f664df40-08a9-41d7-8d02-c9b25a5c2eee",
+      "id": "CVE-2024-20926",
+      "source": {
+        "name": "alpine-distro-alpine-3.18",
+        "url": "https://www.cve.org/CVERecord?id=CVE-2024-20926"
+      },
+      "references": [
+        {
+          "id": "CVE-2024-20926",
+          "source": {
+            "name": "alpine-distro-alpine-3.18",
+            "url": "https://www.cve.org/CVERecord?id=CVE-2024-20926"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "advisories": [
+        {
+          "url": "https://www.cve.org/CVERecord?id=CVE-2024-20926"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:apk/alpine/openjdk11-jmods@11.0.21_p9-r0?arch=x86_64&upstream=openjdk11&distro=alpine-3.18.5&package-id=ca527a5de9a8839a"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:4a9502a8-50d8-4bd6-a14f-43988199d478",
+      "id": "CVE-2024-20926",
+      "source": {
+        "name": "alpine-distro-alpine-3.18",
+        "url": "https://www.cve.org/CVERecord?id=CVE-2024-20926"
+      },
+      "references": [
+        {
+          "id": "CVE-2024-20926",
+          "source": {
+            "name": "alpine-distro-alpine-3.18",
+            "url": "https://www.cve.org/CVERecord?id=CVE-2024-20926"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "advisories": [
+        {
+          "url": "https://www.cve.org/CVERecord?id=CVE-2024-20926"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:apk/alpine/openjdk11-jre@11.0.21_p9-r0?arch=x86_64&upstream=openjdk11&distro=alpine-3.18.5&package-id=d34cbfbd5f8e3526"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:d226f41b-93e9-40ce-a40b-c76424a8bd78",
+      "id": "CVE-2024-20926",
+      "source": {
+        "name": "alpine-distro-alpine-3.18",
+        "url": "https://www.cve.org/CVERecord?id=CVE-2024-20926"
+      },
+      "references": [
+        {
+          "id": "CVE-2024-20926",
+          "source": {
+            "name": "alpine-distro-alpine-3.18",
+            "url": "https://www.cve.org/CVERecord?id=CVE-2024-20926"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "medium"
+        }
+      ],
+      "advisories": [
+        {
+          "url": "https://www.cve.org/CVERecord?id=CVE-2024-20926"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:apk/alpine/openjdk11-jre-headless@11.0.21_p9-r0?arch=x86_64&upstream=openjdk11&distro=alpine-3.18.5&package-id=34fd74d73b447e27"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:606b3b09-5312-4ca3-9306-9f9dd9a64fdd",
+      "id": "CVE-2024-20945",
+      "source": {
+        "name": "alpine-distro-alpine-3.18",
+        "url": "https://www.cve.org/CVERecord?id=CVE-2024-20945"
+      },
+      "references": [
+        {
+          "id": "CVE-2024-20945",
+          "source": {
+            "name": "alpine-distro-alpine-3.18",
+            "url": "https://www.cve.org/CVERecord?id=CVE-2024-20945"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "unknown"
+        }
+      ],
+      "advisories": [
+        {
+          "url": "https://www.cve.org/CVERecord?id=CVE-2024-20945"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:apk/alpine/openjdk11-jdk@11.0.21_p9-r0?arch=x86_64&upstream=openjdk11&distro=alpine-3.18.5&package-id=f4c8aaccc90d995e"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:85de6080-e247-47c1-9ea4-13812dcdc39f",
+      "id": "CVE-2024-20945",
+      "source": {
+        "name": "alpine-distro-alpine-3.18",
+        "url": "https://www.cve.org/CVERecord?id=CVE-2024-20945"
+      },
+      "references": [
+        {
+          "id": "CVE-2024-20945",
+          "source": {
+            "name": "alpine-distro-alpine-3.18",
+            "url": "https://www.cve.org/CVERecord?id=CVE-2024-20945"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "unknown"
+        }
+      ],
+      "advisories": [
+        {
+          "url": "https://www.cve.org/CVERecord?id=CVE-2024-20945"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:apk/alpine/openjdk11-jmods@11.0.21_p9-r0?arch=x86_64&upstream=openjdk11&distro=alpine-3.18.5&package-id=ca527a5de9a8839a"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:c412b091-65c3-41da-9d72-c556a24bd551",
+      "id": "CVE-2024-20945",
+      "source": {
+        "name": "alpine-distro-alpine-3.18",
+        "url": "https://www.cve.org/CVERecord?id=CVE-2024-20945"
+      },
+      "references": [
+        {
+          "id": "CVE-2024-20945",
+          "source": {
+            "name": "alpine-distro-alpine-3.18",
+            "url": "https://www.cve.org/CVERecord?id=CVE-2024-20945"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "unknown"
+        }
+      ],
+      "advisories": [
+        {
+          "url": "https://www.cve.org/CVERecord?id=CVE-2024-20945"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:apk/alpine/openjdk11-jre@11.0.21_p9-r0?arch=x86_64&upstream=openjdk11&distro=alpine-3.18.5&package-id=d34cbfbd5f8e3526"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:dbfda454-3137-4e9a-a161-35df59a1b15e",
+      "id": "CVE-2024-20945",
+      "source": {
+        "name": "alpine-distro-alpine-3.18",
+        "url": "https://www.cve.org/CVERecord?id=CVE-2024-20945"
+      },
+      "references": [
+        {
+          "id": "CVE-2024-20945",
+          "source": {
+            "name": "alpine-distro-alpine-3.18",
+            "url": "https://www.cve.org/CVERecord?id=CVE-2024-20945"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "unknown"
+        }
+      ],
+      "advisories": [
+        {
+          "url": "https://www.cve.org/CVERecord?id=CVE-2024-20945"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:apk/alpine/openjdk11-jre-headless@11.0.21_p9-r0?arch=x86_64&upstream=openjdk11&distro=alpine-3.18.5&package-id=34fd74d73b447e27"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:05087327-8310-44da-9c66-21e9a691566c",
+      "id": "CVE-2024-20952",
+      "source": {
+        "name": "alpine-distro-alpine-3.18",
+        "url": "https://www.cve.org/CVERecord?id=CVE-2024-20952"
+      },
+      "references": [
+        {
+          "id": "CVE-2024-20952",
+          "source": {
+            "name": "alpine-distro-alpine-3.18",
+            "url": "https://www.cve.org/CVERecord?id=CVE-2024-20952"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "high"
+        }
+      ],
+      "advisories": [
+        {
+          "url": "https://www.cve.org/CVERecord?id=CVE-2024-20952"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:apk/alpine/openjdk11-jdk@11.0.21_p9-r0?arch=x86_64&upstream=openjdk11&distro=alpine-3.18.5&package-id=f4c8aaccc90d995e"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:09b2c16d-4977-404f-9109-70355ef00192",
+      "id": "CVE-2024-20952",
+      "source": {
+        "name": "alpine-distro-alpine-3.18",
+        "url": "https://www.cve.org/CVERecord?id=CVE-2024-20952"
+      },
+      "references": [
+        {
+          "id": "CVE-2024-20952",
+          "source": {
+            "name": "alpine-distro-alpine-3.18",
+            "url": "https://www.cve.org/CVERecord?id=CVE-2024-20952"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "high"
+        }
+      ],
+      "advisories": [
+        {
+          "url": "https://www.cve.org/CVERecord?id=CVE-2024-20952"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:apk/alpine/openjdk11-jmods@11.0.21_p9-r0?arch=x86_64&upstream=openjdk11&distro=alpine-3.18.5&package-id=ca527a5de9a8839a"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:32742858-4e11-4463-84c6-eb489e1f13e9",
+      "id": "CVE-2024-20952",
+      "source": {
+        "name": "alpine-distro-alpine-3.18",
+        "url": "https://www.cve.org/CVERecord?id=CVE-2024-20952"
+      },
+      "references": [
+        {
+          "id": "CVE-2024-20952",
+          "source": {
+            "name": "alpine-distro-alpine-3.18",
+            "url": "https://www.cve.org/CVERecord?id=CVE-2024-20952"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "high"
+        }
+      ],
+      "advisories": [
+        {
+          "url": "https://www.cve.org/CVERecord?id=CVE-2024-20952"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:apk/alpine/openjdk11-jre@11.0.21_p9-r0?arch=x86_64&upstream=openjdk11&distro=alpine-3.18.5&package-id=d34cbfbd5f8e3526"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:daf5ee78-d61f-469d-8285-3266b7a2a71d",
+      "id": "CVE-2024-20952",
+      "source": {
+        "name": "alpine-distro-alpine-3.18",
+        "url": "https://www.cve.org/CVERecord?id=CVE-2024-20952"
+      },
+      "references": [
+        {
+          "id": "CVE-2024-20952",
+          "source": {
+            "name": "alpine-distro-alpine-3.18",
+            "url": "https://www.cve.org/CVERecord?id=CVE-2024-20952"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "severity": "high"
+        }
+      ],
+      "advisories": [
+        {
+          "url": "https://www.cve.org/CVERecord?id=CVE-2024-20952"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:apk/alpine/openjdk11-jre-headless@11.0.21_p9-r0?arch=x86_64&upstream=openjdk11&distro=alpine-3.18.5&package-id=34fd74d73b447e27"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:a6b037cc-0873-4f02-954b-d5329f17bfb2",
+      "id": "GHSA-vmq6-5m68-f53m",
+      "source": {
+        "name": "github-language-java",
+        "url": "https://github.com/advisories/GHSA-vmq6-5m68-f53m"
+      },
+      "references": [
+        {
+          "id": "GHSA-vmq6-5m68-f53m",
+          "source": {
+            "name": "github-language-java",
+            "url": "https://github.com/advisories/GHSA-vmq6-5m68-f53m"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "score": 7.1,
+          "severity": "high",
+          "method": "CVSSv31",
+          "vector": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H"
+        }
+      ],
+      "description": "logback serialization vulnerability",
+      "advisories": [
+        {
+          "url": "https://github.com/advisories/GHSA-vmq6-5m68-f53m"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:maven/ch.qos.logback/logback-classic@1.2.11?package-id=d4b244158479a3ec"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:a3d65fa0-afd2-4441-ad8a-4a4dd33c43b1",
+      "id": "GHSA-vmq6-5m68-f53m",
+      "source": {
+        "name": "github-language-java",
+        "url": "https://github.com/advisories/GHSA-vmq6-5m68-f53m"
+      },
+      "references": [
+        {
+          "id": "GHSA-vmq6-5m68-f53m",
+          "source": {
+            "name": "github-language-java",
+            "url": "https://github.com/advisories/GHSA-vmq6-5m68-f53m"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "score": 7.1,
+          "severity": "high",
+          "method": "CVSSv31",
+          "vector": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H"
+        }
+      ],
+      "description": "logback serialization vulnerability",
+      "advisories": [
+        {
+          "url": "https://github.com/advisories/GHSA-vmq6-5m68-f53m"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:maven/ch.qos.logback/logback-core@1.2.11?package-id=7001209f42b8b100"
+        }
+      ]
+    },
+    {
+      "bom-ref": "urn:uuid:fe7713df-5d05-4d1e-a27b-34b861269fdb",
+      "id": "GHSA-xpw8-rcwv-8f8p",
+      "source": {
+        "name": "github-language-java",
+        "url": "https://github.com/advisories/GHSA-xpw8-rcwv-8f8p"
+      },
+      "references": [
+        {
+          "id": "GHSA-xpw8-rcwv-8f8p",
+          "source": {
+            "name": "github-language-java",
+            "url": "https://github.com/advisories/GHSA-xpw8-rcwv-8f8p"
+          }
+        }
+      ],
+      "ratings": [
+        {
+          "score": 7.5,
+          "severity": "high",
+          "method": "CVSSv31",
+          "vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"
+        }
+      ],
+      "description": "io.netty:netty-codec-http2 vulnerable to HTTP/2 Rapid Reset Attack",
+      "advisories": [
+        {
+          "url": "https://github.com/advisories/GHSA-xpw8-rcwv-8f8p"
+        }
+      ],
+      "affects": [
+        {
+          "ref": "pkg:maven/io.netty/netty-codec-http2@4.1.96.Final?package-id=a6474e7b3a95f1dc"
+        }
+      ]
+    }
+  ]
+}
diff --git a/src/graph_notebook/notebooks/02-Neptune-Analytics/03-Sample-Use-Cases/03-Software-Bill-Of-Materials/example_sboms/__init__.py b/src/graph_notebook/notebooks/02-Neptune-Analytics/03-Sample-Use-Cases/03-Software-Bill-Of-Materials/example_sboms/__init__.py
new file mode 100644
index 00000000..fa84f3bc
--- /dev/null
+++ b/src/graph_notebook/notebooks/02-Neptune-Analytics/03-Sample-Use-Cases/03-Software-Bill-Of-Materials/example_sboms/__init__.py
@@ -0,0 +1,4 @@
+"""
+Copyright Amazon.com, Inc. or its affiliates. All Rights Reserved.
+SPDX-License-Identifier: Apache-2.0
+"""
\ No newline at end of file
diff --git a/src/graph_notebook/notebooks/02-Neptune-Analytics/03-Sample-Use-Cases/03-Software-Bill-Of-Materials/nodestream_template.yaml b/src/graph_notebook/notebooks/02-Neptune-Analytics/03-Sample-Use-Cases/03-Software-Bill-Of-Materials/nodestream_template.yaml
new file mode 100644
index 00000000..479f66d0
--- /dev/null
+++ b/src/graph_notebook/notebooks/02-Neptune-Analytics/03-Sample-Use-Cases/03-Software-Bill-Of-Materials/nodestream_template.yaml
@@ -0,0 +1,8 @@
+plugins:
+- name: sbom
+  config:
+    paths: ./example_sboms/
+
+targets:
+  my-neptune:
+      database: neptune
\ No newline at end of file
diff --git a/src/graph_notebook/notebooks/02-Neptune-Analytics/03-Sample-Use-Cases/03-Software-Bill-Of-Materials/sbom_code/__init__.py b/src/graph_notebook/notebooks/02-Neptune-Analytics/03-Sample-Use-Cases/03-Software-Bill-Of-Materials/sbom_code/__init__.py
new file mode 100644
index 00000000..fa84f3bc
--- /dev/null
+++ b/src/graph_notebook/notebooks/02-Neptune-Analytics/03-Sample-Use-Cases/03-Software-Bill-Of-Materials/sbom_code/__init__.py
@@ -0,0 +1,4 @@
+"""
+Copyright Amazon.com, Inc. or its affiliates. All Rights Reserved.
+SPDX-License-Identifier: Apache-2.0
+"""
\ No newline at end of file
diff --git a/src/graph_notebook/notebooks/02-Neptune-Analytics/03-Sample-Use-Cases/03-Software-Bill-Of-Materials/sbom_code/sbom_helper.py b/src/graph_notebook/notebooks/02-Neptune-Analytics/03-Sample-Use-Cases/03-Software-Bill-Of-Materials/sbom_code/sbom_helper.py
new file mode 100644
index 00000000..dcb49d90
--- /dev/null
+++ b/src/graph_notebook/notebooks/02-Neptune-Analytics/03-Sample-Use-Cases/03-Software-Bill-Of-Materials/sbom_code/sbom_helper.py
@@ -0,0 +1,27 @@
+import json
+import os
+import yaml
+
+def set_nodesteam_yaml(config, directory):   
+    with open(f'nodestream_template.yaml','r') as f:
+        file = yaml.safe_load(f)
+        
+        # Set the example sbom location and strip any prefixed slashes
+        directory = directory.lstrip("/")
+        file['plugins'][0]['config']['paths'] = f"{file['plugins'][0]['config']['paths']}{directory}"
+        
+        # Set the configuration based on if this is a Neptune Database or Neptune Analytics Graph
+        if config['neptune_service'] == 'neptune-graph':
+            print("Setting configuration for Neptune Analytics")
+            file['targets']['my-neptune']['graph_id'] = config['host'].split('.')[0]
+            file['targets']['my-neptune']['mode'] = 'analytics'
+        else:
+            print("Setting configuration for Neptune Database")
+            file['targets']['my-neptune']['graph_id'] = f"https://{config['host']}:{config['port']}"
+            file['targets']['my-neptune']['region'] = config['aws_region']
+            file['targets']['my-neptune']['mdoe'] = 'database'
+
+    with open(f'nodestream.yaml','w') as f:
+        yaml.dump(file, f, sort_keys = False)
+    
+    print("Nodestrean SBOM configuration written.")
\ No newline at end of file
diff --git a/test/unit/notebooks/test_validate_notebooks.py b/test/unit/notebooks/test_validate_notebooks.py
index 76ba9165..f507bfc4 100644
--- a/test/unit/notebooks/test_validate_notebooks.py
+++ b/test/unit/notebooks/test_validate_notebooks.py
@@ -56,6 +56,9 @@ def test_no_extra_notebooks(self):
             f'{NOTEBOOK_BASE_DIR}/02-Neptune-Analytics/03-Sample-Use-Cases/Overview.ipynb',
             f'{NOTEBOOK_BASE_DIR}/02-Neptune-Analytics/03-Sample-Use-Cases/01-FinTech/01-Fraud-Ring-Identifcation.ipynb',
             f'{NOTEBOOK_BASE_DIR}/02-Neptune-Analytics/03-Sample-Use-Cases/02-Investment-Analysis/01-EDGAR-Competitor-Analysis-using-Knowledge-Graph-Graph-Algorithms-and-Vector-Search.ipynb',
+            f'{NOTEBOOK_BASE_DIR}/02-Neptune-Analytics/03-Sample-Use-Cases/03-Software-Bill-Of-Materials/00-Intro-to-Software-Bill-Of-Materials.ipynb',
+            f'{NOTEBOOK_BASE_DIR}/02-Neptune-Analytics/03-Sample-Use-Cases/03-Software-Bill-Of-Materials/01-SBOM-Dependency-Analysis.ipynb',
+            f'{NOTEBOOK_BASE_DIR}/02-Neptune-Analytics/03-Sample-Use-Cases/03-Software-Bill-Of-Materials/02-SBOM-Vulnerability-Analysis.ipynb',
             f'{NOTEBOOK_BASE_DIR}/03-Neptune-ML/01-Gremlin/01-Getting-Started-with-Neptune-ML-Gremlin.ipynb',
             f'{NOTEBOOK_BASE_DIR}/03-Neptune-ML/01-Gremlin/02-Introduction-to-Node-Classification-Gremlin.ipynb',
             f'{NOTEBOOK_BASE_DIR}/03-Neptune-ML/01-Gremlin/03-Introduction-to-Node-Regression-Gremlin.ipynb',