{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:bfe26d5d-0e1d-5cd2-a414-e78aa4a60474", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:npm/%40astrojs/upgrade@3.6.5-tuxcare.1", "type": "library", "name": "@astrojs/upgrade", "version": "3.6.5-tuxcare.1", "purl": "pkg:npm/%40astrojs/upgrade@3.6.5-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:fa769654-2877-59d5-a084-0edf5cbd2eb9", "id": "CVE-2024-47885", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-47885 is fixed in version 3.6.5-tuxcare.1 of @astrojs/upgrade." }, "affects": [ { "ref": "pkg:npm/%40astrojs/upgrade@3.6.5-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:893f99f7-5fbc-55fa-af92-7092aea2deac", "id": "CVE-2024-56140", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-56140 is fixed in version 3.6.5-tuxcare.1 of @astrojs/upgrade." }, "affects": [ { "ref": "pkg:npm/%40astrojs/upgrade@3.6.5-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:328a0881-1a13-5d6c-94c2-011f1fb71429", "id": "CVE-2024-56159", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-56159 is fixed in version 3.6.5-tuxcare.1 of @astrojs/upgrade." }, "affects": [ { "ref": "pkg:npm/%40astrojs/upgrade@3.6.5-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7f2bed97-b399-5f82-aad7-3394dfafba71", "id": "CVE-2025-55303", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55303 is fixed in version 3.6.5-tuxcare.1 of @astrojs/upgrade." }, "affects": [ { "ref": "pkg:npm/%40astrojs/upgrade@3.6.5-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1f584bd1-5d11-5c89-92f5-3c7984fa970a", "id": "CVE-2025-61925", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-61925 is fixed in version 3.6.5-tuxcare.1 of @astrojs/upgrade." }, "affects": [ { "ref": "pkg:npm/%40astrojs/upgrade@3.6.5-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:520d4508-7486-57e8-8ddb-f5872b25fd22", "id": "CVE-2025-64525", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-64525 is fixed in version 3.6.5-tuxcare.1 of @astrojs/upgrade." }, "affects": [ { "ref": "pkg:npm/%40astrojs/upgrade@3.6.5-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c5967eb5-532c-5638-881f-248499e01e60", "id": "CVE-2025-64757", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-64757 is fixed in version 3.6.5-tuxcare.1 of @astrojs/upgrade." }, "affects": [ { "ref": "pkg:npm/%40astrojs/upgrade@3.6.5-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:88d838ac-506d-53ee-8d4b-638d6fb7dbf1", "id": "CVE-2025-64764", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-64764 is fixed in version 3.6.5-tuxcare.1 of @astrojs/upgrade." }, "affects": [ { "ref": "pkg:npm/%40astrojs/upgrade@3.6.5-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:befd0428-f152-58b4-8489-9c3e45c1a1ff", "id": "CVE-2025-64765", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-64765 is fixed in version 3.6.5-tuxcare.1 of @astrojs/upgrade." }, "affects": [ { "ref": "pkg:npm/%40astrojs/upgrade@3.6.5-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:cdfc429b-7451-56eb-b85b-a7252c62b13b", "id": "CVE-2025-65019", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-65019 is fixed in version 3.6.5-tuxcare.1 of @astrojs/upgrade." }, "affects": [ { "ref": "pkg:npm/%40astrojs/upgrade@3.6.5-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:03f95162-3f74-5124-8d4c-24db189893f0", "id": "CVE-2025-66202", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-66202 is fixed in version 3.6.5-tuxcare.1 of @astrojs/upgrade." }, "affects": [ { "ref": "pkg:npm/%40astrojs/upgrade@3.6.5-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:68fbca18-a02c-5786-8da4-32f77fc81fcb", "id": "CVE-2026-33769", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-33769 is fixed in version 3.6.5-tuxcare.1 of @astrojs/upgrade." }, "affects": [ { "ref": "pkg:npm/%40astrojs/upgrade@3.6.5-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:689fe90a-6c5e-5473-b3f4-d2f0d351a701", "id": "CVE-2026-41067", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-41067 is fixed in version 3.6.5-tuxcare.1 of @astrojs/upgrade." }, "affects": [ { "ref": "pkg:npm/%40astrojs/upgrade@3.6.5-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3b255588-652c-5e04-a2d9-b5edcbfd337e", "id": "CVE-2026-45028", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-45028 affects version 3.6.5-tuxcare.1 of @astrojs/upgrade." }, "affects": [ { "ref": "pkg:npm/%40astrojs/upgrade@3.6.5-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2e279f09-bdb4-53f9-8a1e-5401e4faa007", "id": "CVE-2026-50146", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-50146 affects version 3.6.5-tuxcare.1 of @astrojs/upgrade." }, "affects": [ { "ref": "pkg:npm/%40astrojs/upgrade@3.6.5-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e7c98a6f-5f2f-529a-9d20-c93cca0c10e4", "id": "CVE-2026-54298", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-54298 affects version 3.6.5-tuxcare.1 of @astrojs/upgrade." }, "affects": [ { "ref": "pkg:npm/%40astrojs/upgrade@3.6.5-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d8efd56e-685c-5005-9514-7b103e84e2dd", "id": "CVE-2026-54299", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-54299 affects version 3.6.5-tuxcare.1 of @astrojs/upgrade." }, "affects": [ { "ref": "pkg:npm/%40astrojs/upgrade@3.6.5-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:npm/%40astrojs/upgrade@3.6.5-tuxcare.1" } ] }