{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:84529b30-da8e-5f60-b6b3-6897f0c11eb3", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:npm/astro@4.16.19-tuxcare.1", "type": "library", "name": "astro", "version": "4.16.19-tuxcare.1", "purl": "pkg:npm/astro@4.16.19-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:e568d21e-f736-5910-bac4-2e21b41abdd7", "id": "AIKIDO-2025-10879", "analysis": { "state": "resolved", "detail": "Vulnerability AIKIDO-2025-10879 is fixed in version 4.16.19-tuxcare.1 of astro." }, "affects": [ { "ref": "pkg:npm/astro@4.16.19-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b391d424-6fb0-5c77-8022-619fba40f103", "id": "CVE-2025-55303", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-55303 affects version 4.16.19-tuxcare.1 of astro." }, "affects": [ { "ref": "pkg:npm/astro@4.16.19-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2d1b0b4a-36c9-5837-af1f-648a27fcc4e0", "id": "CVE-2025-61925", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-61925 is fixed in version 4.16.19-tuxcare.1 of astro." }, "affects": [ { "ref": "pkg:npm/astro@4.16.19-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:fc233fa2-c7a2-5233-9615-2128601bf577", "id": "CVE-2025-64525", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-64525 is fixed in version 4.16.19-tuxcare.1 of astro." }, "affects": [ { "ref": "pkg:npm/astro@4.16.19-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:fd17e85b-4d30-5cb4-96c1-078990ec2144", "id": "CVE-2025-64757", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-64757 is fixed in version 4.16.19-tuxcare.1 of astro." }, "affects": [ { "ref": "pkg:npm/astro@4.16.19-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:fdec0c5b-a3a5-50d0-b63b-e82dd5915f64", "id": "CVE-2025-64764", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-64764 is fixed in version 4.16.19-tuxcare.1 of astro." }, "affects": [ { "ref": "pkg:npm/astro@4.16.19-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:555791eb-649f-554c-b59f-924daad3cdfe", "id": "CVE-2025-64765", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-64765 is fixed in version 4.16.19-tuxcare.1 of astro." }, "affects": [ { "ref": "pkg:npm/astro@4.16.19-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:01296b87-b2ce-5a39-98cc-7188c30562a1", "id": "CVE-2025-65019", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-65019 is fixed in version 4.16.19-tuxcare.1 of astro." }, "affects": [ { "ref": "pkg:npm/astro@4.16.19-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f752c62b-3ce6-597b-8eed-a393c35ecf43", "id": "CVE-2025-66202", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-66202 is fixed in version 4.16.19-tuxcare.1 of astro." }, "affects": [ { "ref": "pkg:npm/astro@4.16.19-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a1d9bb88-87b5-5187-b483-716e875c2659", "id": "CVE-2026-32887", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-32887 affects version 4.16.19-tuxcare.1 of astro." }, "affects": [ { "ref": "pkg:npm/astro@4.16.19-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9b5aad2e-45d8-58da-a6a1-1208bacf965b", "id": "CVE-2026-33128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33128 affects version 4.16.19-tuxcare.1 of astro." }, "affects": [ { "ref": "pkg:npm/astro@4.16.19-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c3745619-9092-5293-a8f1-e10f038391f4", "id": "CVE-2026-33131", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33131 affects version 4.16.19-tuxcare.1 of astro." }, "affects": [ { "ref": "pkg:npm/astro@4.16.19-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:87268777-0940-5041-9072-f101d1e4b996", "id": "CVE-2026-33490", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33490 affects version 4.16.19-tuxcare.1 of astro." }, "affects": [ { "ref": "pkg:npm/astro@4.16.19-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ba989013-a0b6-5e8e-bc95-1812b8959209", "id": "CVE-2026-33769", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-33769 is fixed in version 4.16.19-tuxcare.1 of astro." }, "affects": [ { "ref": "pkg:npm/astro@4.16.19-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a3af9bed-f4d7-502f-a5b1-8d1e816c4ea1", "id": "CVE-2026-41067", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-41067 is fixed in version 4.16.19-tuxcare.1 of astro." }, "affects": [ { "ref": "pkg:npm/astro@4.16.19-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f9800b8f-e97b-584d-8a26-c68fdc614c66", "id": "CVE-2026-45028", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-45028 affects version 4.16.19-tuxcare.1 of astro." }, "affects": [ { "ref": "pkg:npm/astro@4.16.19-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9bf4477e-aeeb-5ee9-ab2e-633ef2101a9d", "id": "GHSA-4hxc-9384-m385", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-4hxc-9384-m385 affects version 4.16.19-tuxcare.1 of astro." }, "affects": [ { "ref": "pkg:npm/astro@4.16.19-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a439b652-91e1-58e2-b3a7-1ada6ae00bcc", "id": "GHSA-q5pr-72pq-83v3", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-q5pr-72pq-83v3 affects version 4.16.19-tuxcare.1 of astro." }, "affects": [ { "ref": "pkg:npm/astro@4.16.19-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ba036183-ce77-50ae-aeed-5f81f5646afe", "id": "GHSA-wr4h-v87w-p3r7", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-wr4h-v87w-p3r7 affects version 4.16.19-tuxcare.1 of astro." }, "affects": [ { "ref": "pkg:npm/astro@4.16.19-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:npm/astro@4.16.19-tuxcare.1" } ] }