{
  "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json",
  "bomFormat": "CycloneDX",
  "specVersion": "1.6",
  "serialNumber": "urn:uuid:66b548a3-b200-5556-8bd0-bc9c0beda16c",
  "version": 1,
  "metadata": {
    "tools": [
      {
        "name": "tuxcare-vex-generator",
        "version": "1.0.0"
      }
    ]
  },
  "components": [
    {
      "bom-ref": "pkg:npm/astrojs-upgrade@4.16.19-tuxcare.1",
      "type": "library",
      "name": "astrojs-upgrade",
      "version": "4.16.19-tuxcare.1",
      "purl": "pkg:npm/astrojs-upgrade@4.16.19-tuxcare.1"
    }
  ],
  "vulnerabilities": [
    {
      "bom-ref": "urn:uuid:baff4dd6-19b5-557b-b62b-fa497c711d07",
      "id": "AIKIDO-2025-10879",
      "analysis": {
        "state": "resolved",
        "detail": "Vulnerability AIKIDO-2025-10879 is fixed in version 4.16.19-tuxcare.1 of astrojs-upgrade."
      },
      "affects": [
        {
          "ref": "pkg:npm/astrojs-upgrade@4.16.19-tuxcare.1"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:6d1c41c6-919e-5c9c-a1e7-2b68353ee2a5",
      "id": "CVE-2025-55303",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2025-55303 affects version 4.16.19-tuxcare.1 of astrojs-upgrade."
      },
      "affects": [
        {
          "ref": "pkg:npm/astrojs-upgrade@4.16.19-tuxcare.1"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:692024e8-1e5b-5188-a159-f839cfaf3149",
      "id": "CVE-2025-61925",
      "analysis": {
        "state": "resolved",
        "detail": "Vulnerability CVE-2025-61925 is fixed in version 4.16.19-tuxcare.1 of astrojs-upgrade."
      },
      "affects": [
        {
          "ref": "pkg:npm/astrojs-upgrade@4.16.19-tuxcare.1"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:a8780f84-2833-580f-918e-7f4f28e4db41",
      "id": "CVE-2025-64525",
      "analysis": {
        "state": "resolved",
        "detail": "Vulnerability CVE-2025-64525 is fixed in version 4.16.19-tuxcare.1 of astrojs-upgrade."
      },
      "affects": [
        {
          "ref": "pkg:npm/astrojs-upgrade@4.16.19-tuxcare.1"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:d889e77f-7534-5125-9a6c-d074415fd720",
      "id": "CVE-2025-64757",
      "analysis": {
        "state": "resolved",
        "detail": "Vulnerability CVE-2025-64757 is fixed in version 4.16.19-tuxcare.1 of astrojs-upgrade."
      },
      "affects": [
        {
          "ref": "pkg:npm/astrojs-upgrade@4.16.19-tuxcare.1"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:f259f40b-66aa-5293-b3d2-ab295e1d2a8a",
      "id": "CVE-2025-64764",
      "analysis": {
        "state": "resolved",
        "detail": "Vulnerability CVE-2025-64764 is fixed in version 4.16.19-tuxcare.1 of astrojs-upgrade."
      },
      "affects": [
        {
          "ref": "pkg:npm/astrojs-upgrade@4.16.19-tuxcare.1"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:377fc905-3997-5817-88e8-b09d4ff91baa",
      "id": "CVE-2025-64765",
      "analysis": {
        "state": "resolved",
        "detail": "Vulnerability CVE-2025-64765 is fixed in version 4.16.19-tuxcare.1 of astrojs-upgrade."
      },
      "affects": [
        {
          "ref": "pkg:npm/astrojs-upgrade@4.16.19-tuxcare.1"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:e1c5e15d-8550-508e-ba35-29637e4ba1f4",
      "id": "CVE-2025-65019",
      "analysis": {
        "state": "resolved",
        "detail": "Vulnerability CVE-2025-65019 is fixed in version 4.16.19-tuxcare.1 of astrojs-upgrade."
      },
      "affects": [
        {
          "ref": "pkg:npm/astrojs-upgrade@4.16.19-tuxcare.1"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:5cba23db-4610-5ae7-9c96-57be3f13e57f",
      "id": "CVE-2025-66202",
      "analysis": {
        "state": "resolved",
        "detail": "Vulnerability CVE-2025-66202 is fixed in version 4.16.19-tuxcare.1 of astrojs-upgrade."
      },
      "affects": [
        {
          "ref": "pkg:npm/astrojs-upgrade@4.16.19-tuxcare.1"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:00fc7eea-81ac-5a54-8b97-e24df2c71f03",
      "id": "CVE-2026-32887",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-32887 affects version 4.16.19-tuxcare.1 of astrojs-upgrade."
      },
      "affects": [
        {
          "ref": "pkg:npm/astrojs-upgrade@4.16.19-tuxcare.1"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:746b3424-e0da-565b-afa7-92ae44fb51bf",
      "id": "CVE-2026-33128",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-33128 affects version 4.16.19-tuxcare.1 of astrojs-upgrade."
      },
      "affects": [
        {
          "ref": "pkg:npm/astrojs-upgrade@4.16.19-tuxcare.1"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:0a121e91-c900-5a23-9697-eaa897a0eafc",
      "id": "CVE-2026-33131",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-33131 affects version 4.16.19-tuxcare.1 of astrojs-upgrade."
      },
      "affects": [
        {
          "ref": "pkg:npm/astrojs-upgrade@4.16.19-tuxcare.1"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:6875778a-6122-590e-9098-1a69b7946cad",
      "id": "CVE-2026-33490",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-33490 affects version 4.16.19-tuxcare.1 of astrojs-upgrade."
      },
      "affects": [
        {
          "ref": "pkg:npm/astrojs-upgrade@4.16.19-tuxcare.1"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:37dab940-755b-58e7-a9a1-0e7ae6879652",
      "id": "CVE-2026-33769",
      "analysis": {
        "state": "resolved",
        "detail": "Vulnerability CVE-2026-33769 is fixed in version 4.16.19-tuxcare.1 of astrojs-upgrade."
      },
      "affects": [
        {
          "ref": "pkg:npm/astrojs-upgrade@4.16.19-tuxcare.1"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:daa8221e-82e6-5dc3-af60-013ac0379a66",
      "id": "CVE-2026-41067",
      "analysis": {
        "state": "resolved",
        "detail": "Vulnerability CVE-2026-41067 is fixed in version 4.16.19-tuxcare.1 of astrojs-upgrade."
      },
      "affects": [
        {
          "ref": "pkg:npm/astrojs-upgrade@4.16.19-tuxcare.1"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:e96ea3b6-46b7-5d45-84bb-f2b091788c94",
      "id": "CVE-2026-45028",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-45028 affects version 4.16.19-tuxcare.1 of astrojs-upgrade."
      },
      "affects": [
        {
          "ref": "pkg:npm/astrojs-upgrade@4.16.19-tuxcare.1"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:5ef46c0b-5f52-5523-8612-95e5b82aef29",
      "id": "GHSA-4hxc-9384-m385",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability GHSA-4hxc-9384-m385 affects version 4.16.19-tuxcare.1 of astrojs-upgrade."
      },
      "affects": [
        {
          "ref": "pkg:npm/astrojs-upgrade@4.16.19-tuxcare.1"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:117e9d12-6aa9-5cdf-b536-c867ff75fa9c",
      "id": "GHSA-q5pr-72pq-83v3",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability GHSA-q5pr-72pq-83v3 affects version 4.16.19-tuxcare.1 of astrojs-upgrade."
      },
      "affects": [
        {
          "ref": "pkg:npm/astrojs-upgrade@4.16.19-tuxcare.1"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:a0deaf5b-b578-54e6-aa98-11ee61e46bd2",
      "id": "GHSA-wr4h-v87w-p3r7",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability GHSA-wr4h-v87w-p3r7 affects version 4.16.19-tuxcare.1 of astrojs-upgrade."
      },
      "affects": [
        {
          "ref": "pkg:npm/astrojs-upgrade@4.16.19-tuxcare.1"
        }
      ]
    }
  ],
  "dependencies": [
    {
      "ref": "pkg:npm/astrojs-upgrade@4.16.19-tuxcare.1"
    }
  ]
}